@bloomneo/appkit 1.2.9 → 1.5.2

package/dist/security/index.js

@@ -78,7 +78,7 @@ function isProduction() {
  * Generate a secure encryption key for production use
  * @llm-rule WHEN: Setting up encryption for the first time or rotating keys
  * @llm-rule AVOID: Using weak or predictable keys - always use this for key generation
- * @llm-rule NOTE: Returns 64-character hex string suitable for VOILA_SECURITY_ENCRYPTION_KEY
+ * @llm-rule NOTE: Returns 64-character hex string suitable for BLOOM_SECURITY_ENCRYPTION_KEY
  */
 function generateKey() {
     const security = get();
@@ -113,10 +113,10 @@ function validateRequired(checks = {}) {
     const config = getConfig();
     const missing = [];
     if (checks.csrf && !config.csrf.secret) {
-        missing.push('VOILA_SECURITY_CSRF_SECRET or VOILA_AUTH_SECRET');
+        missing.push('BLOOM_SECURITY_CSRF_SECRET or BLOOM_AUTH_SECRET');
     }
     if (checks.encryption && !config.encryption.key) {
-        missing.push('VOILA_SECURITY_ENCRYPTION_KEY');
+        missing.push('BLOOM_SECURITY_ENCRYPTION_KEY');
     }
     if (missing.length > 0) {
         throw new Error(`Missing required security configuration: ${missing.join(', ')}\n` +

package/dist/security/security.d.ts

@@ -111,7 +111,7 @@ export declare class SecurityClass {
      * Generates a cryptographically secure 256-bit encryption key
      * @llm-rule WHEN: Setting up encryption for the first time or rotating keys
      * @llm-rule AVOID: Using weak or predictable keys - always use this method for key generation
-     * @llm-rule NOTE: Returns 64-character hex string suitable for VOILA_SECURITY_ENCRYPTION_KEY
+     * @llm-rule NOTE: Returns 64-character hex string suitable for BLOOM_SECURITY_ENCRYPTION_KEY
      */
     generateKey(): string;
     /**

package/dist/security/security.js

@@ -30,7 +30,7 @@ export class SecurityClass {
     forms(options = {}) {
         const csrfSecret = options.secret || this.config.csrf.secret;
         if (!csrfSecret) {
-            throw createSecurityError('CSRF secret required. Set VOILA_SECURITY_CSRF_SECRET or VOILA_AUTH_SECRET environment variable', 500);
+            throw createSecurityError('CSRF secret required. Set BLOOM_SECURITY_CSRF_SECRET or BLOOM_AUTH_SECRET environment variable', 500);
         }
         const tokenField = options.tokenField || this.config.csrf.tokenField;
         const headerField = options.headerField || this.config.csrf.headerField;
@@ -242,7 +242,7 @@ export class SecurityClass {
         }
         const encryptionKey = key || this.config.encryption.key;
         if (!encryptionKey) {
-            throw createSecurityError('Encryption key required. Provide as argument or set VOILA_SECURITY_ENCRYPTION_KEY environment variable', 500);
+            throw createSecurityError('Encryption key required. Provide as argument or set BLOOM_SECURITY_ENCRYPTION_KEY environment variable', 500);
         }
         this.validateEncryptionKey(encryptionKey);
         const keyBuffer = typeof encryptionKey === 'string'
@@ -284,7 +284,7 @@ export class SecurityClass {
         }
         const decryptionKey = key || this.config.encryption.key;
         if (!decryptionKey) {
-            throw createSecurityError('Decryption key required. Provide as argument or set VOILA_SECURITY_ENCRYPTION_KEY environment variable', 500);
+            throw createSecurityError('Decryption key required. Provide as argument or set BLOOM_SECURITY_ENCRYPTION_KEY environment variable', 500);
         }
         this.validateEncryptionKey(decryptionKey);
         const keyBuffer = typeof decryptionKey === 'string'
@@ -331,7 +331,7 @@ export class SecurityClass {
      * Generates a cryptographically secure 256-bit encryption key
      * @llm-rule WHEN: Setting up encryption for the first time or rotating keys
      * @llm-rule AVOID: Using weak or predictable keys - always use this method for key generation
-     * @llm-rule NOTE: Returns 64-character hex string suitable for VOILA_SECURITY_ENCRYPTION_KEY
+     * @llm-rule NOTE: Returns 64-character hex string suitable for BLOOM_SECURITY_ENCRYPTION_KEY
      */
     generateKey() {
         try {

package/dist/storage/defaults.js

@@ -27,11 +27,11 @@ export function getSmartDefaults() {
         strategy,
         // Local configuration (only used when strategy is 'local')
         local: {
-            dir: process.env.VOILA_STORAGE_DIR || './uploads',
-            baseUrl: process.env.VOILA_STORAGE_BASE_URL || '/uploads',
-            maxFileSize: parseInt(process.env.VOILA_STORAGE_MAX_SIZE || '52428800'), // 50MB default
+            dir: process.env.BLOOM_STORAGE_DIR || './uploads',
+            baseUrl: process.env.BLOOM_STORAGE_BASE_URL || '/uploads',
+            maxFileSize: parseInt(process.env.BLOOM_STORAGE_MAX_SIZE || '52428800'), // 50MB default
             allowedTypes: parseAllowedTypes(),
-            createDirs: process.env.VOILA_STORAGE_CREATE_DIRS !== 'false',
+            createDirs: process.env.BLOOM_STORAGE_CREATE_DIRS !== 'false',
         },
         // S3 configuration (only used when strategy is 's3')
         s3: {
@@ -41,8 +41,8 @@ export function getSmartDefaults() {
             accessKeyId: process.env.AWS_ACCESS_KEY_ID || process.env.S3_ACCESS_KEY_ID || '',
             secretAccessKey: process.env.AWS_SECRET_ACCESS_KEY || process.env.S3_SECRET_ACCESS_KEY || '',
             forcePathStyle: process.env.S3_FORCE_PATH_STYLE === 'true',
-            signedUrlExpiry: parseInt(process.env.VOILA_STORAGE_SIGNED_EXPIRY || '3600'), // 1 hour
-            cdnUrl: process.env.VOILA_STORAGE_CDN_URL,
+            signedUrlExpiry: parseInt(process.env.BLOOM_STORAGE_SIGNED_EXPIRY || '3600'), // 1 hour
+            cdnUrl: process.env.BLOOM_STORAGE_CDN_URL,
         },
         // R2 configuration (only used when strategy is 'r2')
         r2: {
@@ -51,7 +51,7 @@ export function getSmartDefaults() {
             accessKeyId: process.env.CLOUDFLARE_R2_ACCESS_KEY_ID || '',
             secretAccessKey: process.env.CLOUDFLARE_R2_SECRET_ACCESS_KEY || '',
             cdnUrl: process.env.CLOUDFLARE_R2_CDN_URL,
-            signedUrlExpiry: parseInt(process.env.VOILA_STORAGE_SIGNED_EXPIRY || '3600'), // 1 hour
+            signedUrlExpiry: parseInt(process.env.BLOOM_STORAGE_SIGNED_EXPIRY || '3600'), // 1 hour
         },
         // Environment information
         environment: {
@@ -70,7 +70,7 @@ export function getSmartDefaults() {
  */
 function detectStorageStrategy() {
     // Explicit override wins (for testing/debugging)
-    const explicit = process.env.VOILA_STORAGE_STRATEGY?.toLowerCase();
+    const explicit = process.env.BLOOM_STORAGE_STRATEGY?.toLowerCase();
     if (explicit && ['local', 's3', 'r2'].includes(explicit)) {
         return explicit;
     }
@@ -83,7 +83,7 @@ function detectStorageStrategy() {
     }
     // Default to local for development/single server
     if (process.env.NODE_ENV === 'production') {
-        console.warn('[VoilaJSX AppKit] No cloud storage configured in production. ' +
+        console.warn('[Bloomneo AppKit] No cloud storage configured in production. ' +
             'Using local filesystem which may not scale. ' +
             'Set AWS_S3_BUCKET or CLOUDFLARE_R2_BUCKET for cloud storage.');
     }
@@ -95,7 +95,7 @@ function detectStorageStrategy() {
  * @llm-rule AVOID: Allowing all file types in production - security risk
  */
 function parseAllowedTypes() {
-    const envTypes = process.env.VOILA_STORAGE_ALLOWED_TYPES;
+    const envTypes = process.env.BLOOM_STORAGE_ALLOWED_TYPES;
     if (!envTypes) {
         // Safe defaults - common web file types
         return [
@@ -107,8 +107,8 @@ function parseAllowedTypes() {
     }
     if (envTypes === '*') {
         if (process.env.NODE_ENV === 'production') {
-            console.warn('[VoilaJSX AppKit] SECURITY WARNING: All file types allowed in production. ' +
-                'Set VOILA_STORAGE_ALLOWED_TYPES to specific types for security.');
+            console.warn('[Bloomneo AppKit] SECURITY WARNING: All file types allowed in production. ' +
+                'Set BLOOM_STORAGE_ALLOWED_TYPES to specific types for security.');
         }
         return ['*']; // Allow all types (use with caution)
     }
@@ -122,13 +122,13 @@ function parseAllowedTypes() {
  */
 function validateEnvironment() {
     // Validate storage strategy if explicitly set
-    const strategy = process.env.VOILA_STORAGE_STRATEGY;
+    const strategy = process.env.BLOOM_STORAGE_STRATEGY;
     if (strategy && !['local', 's3', 'r2'].includes(strategy.toLowerCase())) {
-        throw new Error(`Invalid VOILA_STORAGE_STRATEGY: "${strategy}". Must be "local", "s3", or "r2"`);
+        throw new Error(`Invalid BLOOM_STORAGE_STRATEGY: "${strategy}". Must be "local", "s3", or "r2"`);
     }
     // Validate numeric values
-    validateNumericEnv('VOILA_STORAGE_MAX_SIZE', 1048576, 1073741824); // 1MB to 1GB
-    validateNumericEnv('VOILA_STORAGE_SIGNED_EXPIRY', 60, 604800); // 1 minute to 7 days
+    validateNumericEnv('BLOOM_STORAGE_MAX_SIZE', 1048576, 1073741824); // 1MB to 1GB
+    validateNumericEnv('BLOOM_STORAGE_SIGNED_EXPIRY', 60, 604800); // 1 minute to 7 days
     // Validate S3 configuration if S3 strategy detected
     if (shouldValidateS3()) {
         validateS3Config();
@@ -148,7 +148,7 @@ function validateEnvironment() {
     }
     // Validate NODE_ENV
     if (nodeEnv && !['development', 'production', 'test', 'staging'].includes(nodeEnv)) {
-        console.warn(`[VoilaJSX AppKit] Unusual NODE_ENV: "${nodeEnv}". ` +
+        console.warn(`[Bloomneo AppKit] Unusual NODE_ENV: "${nodeEnv}". ` +
             `Expected: development, production, test, or staging`);
     }
 }
@@ -214,14 +214,14 @@ function validateR2Config() {
  * Validates local configuration
  */
 function validateLocalConfig() {
-    const dir = process.env.VOILA_STORAGE_DIR;
+    const dir = process.env.BLOOM_STORAGE_DIR;
     if (dir && (dir.includes('..') || dir.startsWith('/') && process.env.NODE_ENV === 'production')) {
-        console.warn(`[VoilaJSX AppKit] Potentially unsafe storage directory: "${dir}". ` +
+        console.warn(`[Bloomneo AppKit] Potentially unsafe storage directory: "${dir}". ` +
             `Consider using a relative path for security.`);
     }
-    const baseUrl = process.env.VOILA_STORAGE_BASE_URL;
+    const baseUrl = process.env.BLOOM_STORAGE_BASE_URL;
     if (baseUrl && !baseUrl.startsWith('/') && !isValidUrl(baseUrl)) {
-        throw new Error(`Invalid VOILA_STORAGE_BASE_URL: "${baseUrl}". Must be a path or valid URL`);
+        throw new Error(`Invalid BLOOM_STORAGE_BASE_URL: "${baseUrl}". Must be a path or valid URL`);
     }
 }
 /**
@@ -232,15 +232,15 @@ function validateLocalConfig() {
 function validateProductionConfig() {
     const strategy = detectStorageStrategy();
     if (strategy === 'local') {
-        console.warn('[VoilaJSX AppKit] Using local storage in production. ' +
+        console.warn('[Bloomneo AppKit] Using local storage in production. ' +
             'Files will only exist on single server instance. ' +
             'Set AWS_S3_BUCKET or CLOUDFLARE_R2_BUCKET for distributed storage.');
     }
     // Warn about missing CDN in production
-    const cdnUrl = process.env.VOILA_STORAGE_CDN_URL || process.env.CLOUDFLARE_R2_CDN_URL;
+    const cdnUrl = process.env.BLOOM_STORAGE_CDN_URL || process.env.CLOUDFLARE_R2_CDN_URL;
     if (!cdnUrl && strategy !== 'local') {
-        console.warn('[VoilaJSX AppKit] No CDN URL configured in production. ' +
-            'Set VOILA_STORAGE_CDN_URL for better performance.');
+        console.warn('[Bloomneo AppKit] No CDN URL configured in production. ' +
+            'Set BLOOM_STORAGE_CDN_URL for better performance.');
     }
 }
 /**
@@ -339,7 +339,7 @@ export function getDeploymentConfig(type) {
         case 'production':
             const strategy = detectStorageStrategy();
             if (strategy === 'local') {
-                console.warn('[VoilaJSX AppKit] Local storage not recommended for production');
+                console.warn('[Bloomneo AppKit] Local storage not recommended for production');
             }
             return {
                 strategy,

package/dist/storage/index.js

@@ -100,17 +100,17 @@ function validateConfig() {
     try {
         const strategy = getStrategy();
         if (strategy === 'local' && process.env.NODE_ENV === 'production') {
-            console.warn('[VoilaJSX AppKit] Using local storage in production. ' +
+            console.warn('[Bloomneo AppKit] Using local storage in production. ' +
                 'Files will only exist on single server instance. ' +
                 'Set AWS_S3_BUCKET or CLOUDFLARE_R2_BUCKET for distributed storage.');
         }
         if (process.env.NODE_ENV === 'production' && !hasCloudStorage()) {
-            console.warn('[VoilaJSX AppKit] No cloud storage configured in production. ' +
+            console.warn('[Bloomneo AppKit] No cloud storage configured in production. ' +
                 'Set AWS_S3_BUCKET or CLOUDFLARE_R2_BUCKET for scalable file storage.');
         }
     }
     catch (error) {
-        console.error('[VoilaJSX AppKit] Storage configuration validation failed:', error.message);
+        console.error('[Bloomneo AppKit] Storage configuration validation failed:', error.message);
     }
 }
 /**

package/dist/util/defaults.d.ts

@@ -51,7 +51,7 @@ export interface UtilConfig {
     environment: EnvironmentConfig;
 }
 /**
- * Gets smart defaults using VOILA_UTIL_* environment variables
+ * Gets smart defaults using BLOOM_UTIL_* environment variables
  * @llm-rule WHEN: App startup to get production-ready utility configuration
  * @llm-rule AVOID: Calling repeatedly - expensive validation, cache the result
  * @llm-rule NOTE: Called once at startup, cached globally for performance

package/dist/util/defaults.js

@@ -8,7 +8,7 @@
  * @llm-rule NOTE: Called once at startup, cached globally for performance like other modules
  */
 /**
- * Gets smart defaults using VOILA_UTIL_* environment variables
+ * Gets smart defaults using BLOOM_UTIL_* environment variables
  * @llm-rule WHEN: App startup to get production-ready utility configuration
  * @llm-rule AVOID: Calling repeatedly - expensive validation, cache the result
  * @llm-rule NOTE: Called once at startup, cached globally for performance
@@ -23,36 +23,36 @@ export function getSmartDefaults() {
         version: process.env.npm_package_version || '1.0.0',
         // Cache configuration with direct environment access
         cache: {
-            enabled: process.env.VOILA_UTIL_CACHE !== 'false' && !isTest,
-            maxSize: parseInt(process.env.VOILA_UTIL_CACHE_SIZE || '1000'),
-            ttl: parseInt(process.env.VOILA_UTIL_CACHE_TTL || '300000'), // 5 minutes
+            enabled: process.env.BLOOM_UTIL_CACHE !== 'false' && !isTest,
+            maxSize: parseInt(process.env.BLOOM_UTIL_CACHE_SIZE || '1000'),
+            ttl: parseInt(process.env.BLOOM_UTIL_CACHE_TTL || '300000'), // 5 minutes
         },
         // Performance optimization settings
         performance: {
-            enabled: process.env.VOILA_UTIL_PERFORMANCE !== 'false',
-            memoization: process.env.VOILA_UTIL_MEMOIZATION !== 'false' && !isTest,
-            largeArrayThreshold: parseInt(process.env.VOILA_UTIL_ARRAY_THRESHOLD || '10000'),
-            chunkSizeLimit: parseInt(process.env.VOILA_UTIL_CHUNK_LIMIT || '100000'),
+            enabled: process.env.BLOOM_UTIL_PERFORMANCE !== 'false',
+            memoization: process.env.BLOOM_UTIL_MEMOIZATION !== 'false' && !isTest,
+            largeArrayThreshold: parseInt(process.env.BLOOM_UTIL_ARRAY_THRESHOLD || '10000'),
+            chunkSizeLimit: parseInt(process.env.BLOOM_UTIL_CHUNK_LIMIT || '100000'),
         },
         // Debug configuration - enabled in development
         debug: {
-            enabled: process.env.VOILA_UTIL_DEBUG === 'true' || isDevelopment,
-            logOperations: process.env.VOILA_UTIL_LOG_OPS === 'true' || isDevelopment,
-            trackPerformance: process.env.VOILA_UTIL_TRACK_PERF === 'true' || isDevelopment,
+            enabled: process.env.BLOOM_UTIL_DEBUG === 'true' || isDevelopment,
+            logOperations: process.env.BLOOM_UTIL_LOG_OPS === 'true' || isDevelopment,
+            trackPerformance: process.env.BLOOM_UTIL_TRACK_PERF === 'true' || isDevelopment,
         },
         // Slugify configuration with locale support
         slugify: {
-            lowercase: process.env.VOILA_UTIL_SLUGIFY_LOWERCASE !== 'false',
-            strict: process.env.VOILA_UTIL_SLUGIFY_STRICT === 'true',
-            locale: process.env.VOILA_UTIL_LOCALE || 'en',
-            replacement: process.env.VOILA_UTIL_SLUGIFY_REPLACEMENT || '-',
+            lowercase: process.env.BLOOM_UTIL_SLUGIFY_LOWERCASE !== 'false',
+            strict: process.env.BLOOM_UTIL_SLUGIFY_STRICT === 'true',
+            locale: process.env.BLOOM_UTIL_LOCALE || 'en',
+            replacement: process.env.BLOOM_UTIL_SLUGIFY_REPLACEMENT || '-',
         },
         // Format configuration for locale-aware formatting
         format: {
-            locale: process.env.VOILA_UTIL_LOCALE || 'en-US',
-            currency: process.env.VOILA_UTIL_CURRENCY || 'USD',
-            dateFormat: process.env.VOILA_UTIL_DATE_FORMAT || 'YYYY-MM-DD',
-            numberPrecision: parseInt(process.env.VOILA_UTIL_NUMBER_PRECISION || '2'),
+            locale: process.env.BLOOM_UTIL_LOCALE || 'en-US',
+            currency: process.env.BLOOM_UTIL_CURRENCY || 'USD',
+            dateFormat: process.env.BLOOM_UTIL_DATE_FORMAT || 'YYYY-MM-DD',
+            numberPrecision: parseInt(process.env.BLOOM_UTIL_NUMBER_PRECISION || '2'),
         },
         // Environment information
         environment: {
@@ -72,75 +72,75 @@ export function getSmartDefaults() {
 function validateEnvironment() {
     const nodeEnv = process.env.NODE_ENV || 'development';
     // Validate cache configuration
-    const cacheSize = process.env.VOILA_UTIL_CACHE_SIZE;
+    const cacheSize = process.env.BLOOM_UTIL_CACHE_SIZE;
     if (cacheSize) {
         const cacheSizeNum = parseInt(cacheSize);
         if (isNaN(cacheSizeNum) || cacheSizeNum <= 0) {
-            throw new Error(`Invalid VOILA_UTIL_CACHE_SIZE: "${cacheSize}". Must be a positive number.`);
+            throw new Error(`Invalid BLOOM_UTIL_CACHE_SIZE: "${cacheSize}". Must be a positive number.`);
         }
         if (cacheSizeNum > 100000) {
-            console.warn(`[VoilaJSX AppKit] Large cache size: ${cacheSizeNum}. This may impact memory usage.`);
+            console.warn(`[Bloomneo AppKit] Large cache size: ${cacheSizeNum}. This may impact memory usage.`);
         }
     }
     // Validate cache TTL
-    const cacheTTL = process.env.VOILA_UTIL_CACHE_TTL;
+    const cacheTTL = process.env.BLOOM_UTIL_CACHE_TTL;
     if (cacheTTL) {
         const cacheTTLNum = parseInt(cacheTTL);
         if (isNaN(cacheTTLNum) || cacheTTLNum <= 0) {
-            throw new Error(`Invalid VOILA_UTIL_CACHE_TTL: "${cacheTTL}". Must be a positive number (milliseconds).`);
+            throw new Error(`Invalid BLOOM_UTIL_CACHE_TTL: "${cacheTTL}". Must be a positive number (milliseconds).`);
         }
     }
     // Validate array threshold
-    const arrayThreshold = process.env.VOILA_UTIL_ARRAY_THRESHOLD;
+    const arrayThreshold = process.env.BLOOM_UTIL_ARRAY_THRESHOLD;
     if (arrayThreshold) {
         const thresholdNum = parseInt(arrayThreshold);
         if (isNaN(thresholdNum) || thresholdNum <= 0) {
-            throw new Error(`Invalid VOILA_UTIL_ARRAY_THRESHOLD: "${arrayThreshold}". Must be a positive number.`);
+            throw new Error(`Invalid BLOOM_UTIL_ARRAY_THRESHOLD: "${arrayThreshold}". Must be a positive number.`);
         }
     }
     // Validate chunk size limit
-    const chunkLimit = process.env.VOILA_UTIL_CHUNK_LIMIT;
+    const chunkLimit = process.env.BLOOM_UTIL_CHUNK_LIMIT;
     if (chunkLimit) {
         const chunkLimitNum = parseInt(chunkLimit);
         if (isNaN(chunkLimitNum) || chunkLimitNum <= 0) {
-            throw new Error(`Invalid VOILA_UTIL_CHUNK_LIMIT: "${chunkLimit}". Must be a positive number.`);
+            throw new Error(`Invalid BLOOM_UTIL_CHUNK_LIMIT: "${chunkLimit}". Must be a positive number.`);
         }
     }
     // Validate number precision
-    const numberPrecision = process.env.VOILA_UTIL_NUMBER_PRECISION;
+    const numberPrecision = process.env.BLOOM_UTIL_NUMBER_PRECISION;
     if (numberPrecision) {
         const precisionNum = parseInt(numberPrecision);
         if (isNaN(precisionNum) || precisionNum < 0 || precisionNum > 20) {
-            throw new Error(`Invalid VOILA_UTIL_NUMBER_PRECISION: "${numberPrecision}". Must be between 0 and 20.`);
+            throw new Error(`Invalid BLOOM_UTIL_NUMBER_PRECISION: "${numberPrecision}". Must be between 0 and 20.`);
         }
     }
     // Validate locale if provided
-    const locale = process.env.VOILA_UTIL_LOCALE;
+    const locale = process.env.BLOOM_UTIL_LOCALE;
     if (locale && !isValidLocale(locale)) {
-        console.warn(`[VoilaJSX AppKit] Invalid locale: "${locale}". Using default 'en-US'.`);
+        console.warn(`[Bloomneo AppKit] Invalid locale: "${locale}". Using default 'en-US'.`);
     }
     // Validate currency if provided
-    const currency = process.env.VOILA_UTIL_CURRENCY;
+    const currency = process.env.BLOOM_UTIL_CURRENCY;
     if (currency && !isValidCurrency(currency)) {
-        console.warn(`[VoilaJSX AppKit] Invalid currency: "${currency}". Using default 'USD'.`);
+        console.warn(`[Bloomneo AppKit] Invalid currency: "${currency}". Using default 'USD'.`);
     }
     // Validate slugify replacement
-    const replacement = process.env.VOILA_UTIL_SLUGIFY_REPLACEMENT;
+    const replacement = process.env.BLOOM_UTIL_SLUGIFY_REPLACEMENT;
     if (replacement && replacement.length > 5) {
-        console.warn(`[VoilaJSX AppKit] Long slugify replacement: "${replacement}". Consider using shorter replacement.`);
+        console.warn(`[Bloomneo AppKit] Long slugify replacement: "${replacement}". Consider using shorter replacement.`);
     }
     // Production-specific warnings
     if (nodeEnv === 'production') {
-        if (process.env.VOILA_UTIL_DEBUG === 'true') {
-            console.warn('[VoilaJSX AppKit] Debug mode enabled in production. This may impact performance.');
+        if (process.env.BLOOM_UTIL_DEBUG === 'true') {
+            console.warn('[Bloomneo AppKit] Debug mode enabled in production. This may impact performance.');
         }
-        if (process.env.VOILA_UTIL_LOG_OPS === 'true') {
-            console.warn('[VoilaJSX AppKit] Operation logging enabled in production. This may impact performance.');
+        if (process.env.BLOOM_UTIL_LOG_OPS === 'true') {
+            console.warn('[Bloomneo AppKit] Operation logging enabled in production. This may impact performance.');
         }
     }
     // Validate NODE_ENV
     if (nodeEnv && !['development', 'production', 'test', 'staging'].includes(nodeEnv)) {
-        console.warn(`[VoilaJSX AppKit] Unusual NODE_ENV: "${nodeEnv}". ` +
+        console.warn(`[Bloomneo AppKit] Unusual NODE_ENV: "${nodeEnv}". ` +
             `Expected: development, production, test, or staging`);
     }
 }

package/dist/util/env.d.ts

@@ -0,0 +1,35 @@
+/**
+ * Environment variable reader for @bloomneo/appkit.
+ *
+ * Canonical prefix is `BLOOM_`. The legacy `VOILA_*` prefix from the original
+ * `@voilajsx/appkit` package was removed entirely in 1.5.2 — there is no
+ * backwards-compatibility, no fallback, no deprecation warning. Consumers
+ * upgrading must rename their env vars in one go.
+ *
+ * Internal use only. Consumers should call `configClass.get()` instead of
+ * touching env vars directly. This file exists so future code has one
+ * canonical helper for reading env vars, instead of scattering
+ * `process.env.BLOOM_*` calls across the codebase.
+ *
+ * @file src/util/env.ts
+ */
+/**
+ * Read an env var by its bare name (no prefix).
+ *
+ * @example
+ *   env('AUTH_SECRET')         // → process.env.BLOOM_AUTH_SECRET
+ *   env('DB_TENANT')           // → process.env.BLOOM_DB_TENANT
+ *   env('FOO', 'default-val')  // → returns 'default-val' if BLOOM_FOO unset
+ */
+export declare function env(name: string, fallback?: string): string | undefined;
+/**
+ * Read a numeric env var. Returns the fallback if the var is unset or
+ * the value can't be parsed as a finite number.
+ */
+export declare function envNumber(name: string, fallback: number): number;
+/**
+ * Read a boolean env var. Truthy: 'true' / '1' / 'yes' / 'on' (case-insensitive).
+ * Returns the fallback if the var is unset.
+ */
+export declare function envBool(name: string, fallback: boolean): boolean;
+//# sourceMappingURL=env.d.ts.map

package/dist/util/env.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"env.d.ts","sourceRoot":"","sources":["../../src/util/env.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAEH;;;;;;;GAOG;AACH,wBAAgB,GAAG,CAAC,IAAI,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,MAAM,GAAG,SAAS,CAGvE;AAED;;;GAGG;AACH,wBAAgB,SAAS,CAAC,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,MAAM,CAKhE;AAED;;;GAGG;AACH,wBAAgB,OAAO,CAAC,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,OAAO,GAAG,OAAO,CAKhE"}

package/dist/util/env.js

@@ -0,0 +1,50 @@
+/**
+ * Environment variable reader for @bloomneo/appkit.
+ *
+ * Canonical prefix is `BLOOM_`. The legacy `VOILA_*` prefix from the original
+ * `@voilajsx/appkit` package was removed entirely in 1.5.2 — there is no
+ * backwards-compatibility, no fallback, no deprecation warning. Consumers
+ * upgrading must rename their env vars in one go.
+ *
+ * Internal use only. Consumers should call `configClass.get()` instead of
+ * touching env vars directly. This file exists so future code has one
+ * canonical helper for reading env vars, instead of scattering
+ * `process.env.BLOOM_*` calls across the codebase.
+ *
+ * @file src/util/env.ts
+ */
+/**
+ * Read an env var by its bare name (no prefix).
+ *
+ * @example
+ *   env('AUTH_SECRET')         // → process.env.BLOOM_AUTH_SECRET
+ *   env('DB_TENANT')           // → process.env.BLOOM_DB_TENANT
+ *   env('FOO', 'default-val')  // → returns 'default-val' if BLOOM_FOO unset
+ */
+export function env(name, fallback) {
+    const value = process.env[`BLOOM_${name}`];
+    return value !== undefined ? value : fallback;
+}
+/**
+ * Read a numeric env var. Returns the fallback if the var is unset or
+ * the value can't be parsed as a finite number.
+ */
+export function envNumber(name, fallback) {
+    const raw = env(name);
+    if (raw === undefined)
+        return fallback;
+    const parsed = Number(raw);
+    return Number.isFinite(parsed) ? parsed : fallback;
+}
+/**
+ * Read a boolean env var. Truthy: 'true' / '1' / 'yes' / 'on' (case-insensitive).
+ * Returns the fallback if the var is unset.
+ */
+export function envBool(name, fallback) {
+    const raw = env(name);
+    if (raw === undefined)
+        return fallback;
+    const v = raw.toLowerCase();
+    return v === 'true' || v === '1' || v === 'yes' || v === 'on';
+}
+//# sourceMappingURL=env.js.map

package/dist/util/env.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"env.js","sourceRoot":"","sources":["../../src/util/env.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAEH;;;;;;;GAOG;AACH,MAAM,UAAU,GAAG,CAAC,IAAY,EAAE,QAAiB;IACjD,MAAM,KAAK,GAAG,OAAO,CAAC,GAAG,CAAC,SAAS,IAAI,EAAE,CAAC,CAAC;IAC3C,OAAO,KAAK,KAAK,SAAS,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAC;AAChD,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,SAAS,CAAC,IAAY,EAAE,QAAgB;IACtD,MAAM,GAAG,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC;IACtB,IAAI,GAAG,KAAK,SAAS;QAAE,OAAO,QAAQ,CAAC;IACvC,MAAM,MAAM,GAAG,MAAM,CAAC,GAAG,CAAC,CAAC;IAC3B,OAAO,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAC;AACrD,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,OAAO,CAAC,IAAY,EAAE,QAAiB;IACrD,MAAM,GAAG,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC;IACtB,IAAI,GAAG,KAAK,SAAS;QAAE,OAAO,QAAQ,CAAC;IACvC,MAAM,CAAC,GAAG,GAAG,CAAC,WAAW,EAAE,CAAC;IAC5B,OAAO,CAAC,KAAK,MAAM,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,KAAK,KAAK,IAAI,CAAC,KAAK,IAAI,CAAC;AAChE,CAAC"}

package/dist/util/errors.d.ts

@@ -0,0 +1,52 @@
+/**
+ * Educational runtime errors for @bloomneo/appkit.
+ *
+ * Modules throw these (instead of plain TypeError or generic Error) so that
+ * humans AND AI coding agents reading the error message get an actionable
+ * fix-it-now message that names the missing thing AND points at the canonical
+ * pattern in AGENTS.md or the relevant example file.
+ *
+ * Format is intentionally consistent across all 12 modules:
+ *
+ *   [@bloomneo/appkit] <Module> requires <thing>. <reason>.
+ *   See: <docs URL or example file>
+ *
+ * Agents that read errors and self-correct will fetch the link and recover
+ * on the next iteration. Without this, agents get cryptic "X is undefined"
+ * messages and have to guess.
+ *
+ * @file src/util/errors.ts
+ */
+export declare class AppKitError extends Error {
+    readonly module: string;
+    readonly docsUrl: string;
+    constructor(module: string, message: string, slug?: string);
+}
+/**
+ * Throw if a required env var is missing. Use at module init / first .get()
+ * call so the error is loud and immediate, not deferred to the first request.
+ *
+ * @example
+ *   requireEnv('Auth', 'BLOOM_AUTH_SECRET',
+ *     'Set this to a 32+ character random string. See examples/.env.example.');
+ */
+export declare function requireEnv(module: string, varName: string, hint?: string): string;
+/**
+ * Throw if `value` is missing or wrongly typed. Use at the top of public
+ * methods that depend on caller-provided data.
+ *
+ * @example
+ *   const auth = authClass.get();
+ *   auth.signToken = (payload) => {
+ *     requireProp('Auth', 'signToken.payload', payload);
+ *     // ...
+ *   };
+ */
+export declare function requireProp<T>(module: string, prop: string, value: T | undefined | null, hint?: string): T;
+/**
+ * Lighter-weight version that only warns in development. Use for nice-to-have
+ * conventions ("you should pass a 32-char secret, not a 16-char one") that
+ * shouldn't crash a production app on startup.
+ */
+export declare function warnInDev(module: string, message: string, slug?: string): void;
+//# sourceMappingURL=errors.d.ts.map

package/dist/util/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../../src/util/errors.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;GAkBG;AAIH,qBAAa,WAAY,SAAQ,KAAK;IACpC,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;IACxB,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;gBAEb,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM;CAO3D;AAED;;;;;;;GAOG;AACH,wBAAgB,UAAU,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,GAAG,MAAM,CASjF;AAED;;;;;;;;;;GAUG;AACH,wBAAgB,WAAW,CAAC,CAAC,EAC3B,MAAM,EAAE,MAAM,EACd,IAAI,EAAE,MAAM,EACZ,KAAK,EAAE,CAAC,GAAG,SAAS,GAAG,IAAI,EAC3B,IAAI,CAAC,EAAE,MAAM,GACZ,CAAC,CAQH;AAED;;;;GAIG;AACH,wBAAgB,SAAS,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,GAAG,IAAI,CAK9E"}

package/dist/util/errors.js

@@ -0,0 +1,82 @@
+/**
+ * Educational runtime errors for @bloomneo/appkit.
+ *
+ * Modules throw these (instead of plain TypeError or generic Error) so that
+ * humans AND AI coding agents reading the error message get an actionable
+ * fix-it-now message that names the missing thing AND points at the canonical
+ * pattern in AGENTS.md or the relevant example file.
+ *
+ * Format is intentionally consistent across all 12 modules:
+ *
+ *   [@bloomneo/appkit] <Module> requires <thing>. <reason>.
+ *   See: <docs URL or example file>
+ *
+ * Agents that read errors and self-correct will fetch the link and recover
+ * on the next iteration. Without this, agents get cryptic "X is undefined"
+ * messages and have to guess.
+ *
+ * @file src/util/errors.ts
+ */
+const DOCS_BASE = 'https://github.com/bloomneo/appkit/blob/main/AGENTS.md';
+export class AppKitError extends Error {
+    module;
+    docsUrl;
+    constructor(module, message, slug) {
+        const url = slug ? `${DOCS_BASE}#${slug}` : DOCS_BASE;
+        super(`[@bloomneo/appkit] ${module}: ${message}\nSee: ${url}`);
+        this.name = 'AppKitError';
+        this.module = module;
+        this.docsUrl = url;
+    }
+}
+/**
+ * Throw if a required env var is missing. Use at module init / first .get()
+ * call so the error is loud and immediate, not deferred to the first request.
+ *
+ * @example
+ *   requireEnv('Auth', 'BLOOM_AUTH_SECRET',
+ *     'Set this to a 32+ character random string. See examples/.env.example.');
+ */
+export function requireEnv(module, varName, hint) {
+    const value = process.env[varName];
+    if (value === undefined || value === '') {
+        const msg = hint
+            ? `requires env var \`${varName}\` to be set. ${hint}`
+            : `requires env var \`${varName}\` to be set.`;
+        throw new AppKitError(module, msg, 'environment-variables');
+    }
+    return value;
+}
+/**
+ * Throw if `value` is missing or wrongly typed. Use at the top of public
+ * methods that depend on caller-provided data.
+ *
+ * @example
+ *   const auth = authClass.get();
+ *   auth.signToken = (payload) => {
+ *     requireProp('Auth', 'signToken.payload', payload);
+ *     // ...
+ *   };
+ */
+export function requireProp(module, prop, value, hint) {
+    if (value === undefined || value === null) {
+        const msg = hint
+            ? `\`${prop}\` is required. ${hint}`
+            : `\`${prop}\` is required.`;
+        throw new AppKitError(module, msg);
+    }
+    return value;
+}
+/**
+ * Lighter-weight version that only warns in development. Use for nice-to-have
+ * conventions ("you should pass a 32-char secret, not a 16-char one") that
+ * shouldn't crash a production app on startup.
+ */
+export function warnInDev(module, message, slug) {
+    if (process.env.NODE_ENV === 'production')
+        return;
+    const url = slug ? `${DOCS_BASE}#${slug}` : DOCS_BASE;
+    // eslint-disable-next-line no-console
+    console.warn(`[@bloomneo/appkit] ${module}: ${message}\nSee: ${url}`);
+}
+//# sourceMappingURL=errors.js.map