@bugspotter/sdk 1.0.0 → 1.1.0

package/dist/capture/console.js

@@ -2,7 +2,7 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.ConsoleCapture = exports.SDK_LOG_PREFIX = void 0;
 const base_capture_1 = require("./base-capture");
-const circular_buffer_1 = require("../core/circular-buffer");
+const common_1 = require("@bugspotter/common");
 const CONSOLE_METHODS = [
     'log',
     'warn',
@@ -21,7 +21,7 @@ class ConsoleCapture extends base_capture_1.BaseCapture {
         super(options);
         this.originalMethods = new Map();
         const maxLogs = (_a = options.maxLogs) !== null && _a !== void 0 ? _a : 100;
-        this.buffer = new circular_buffer_1.CircularBuffer(maxLogs);
+        this.buffer = new common_1.CircularBuffer(maxLogs);
         this.captureStackTrace = (_b = options.captureStackTrace) !== null && _b !== void 0 ? _b : true;
         this.interceptConsole((_c = options.levels) !== null && _c !== void 0 ? _c : CONSOLE_METHODS);
     }

package/dist/capture/network.js

@@ -2,14 +2,14 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.NetworkCapture = void 0;
 const base_capture_1 = require("./base-capture");
-const circular_buffer_1 = require("../core/circular-buffer");
+const common_1 = require("@bugspotter/common");
 class NetworkCapture extends base_capture_1.BaseCapture {
     constructor(options = {}) {
         var _a;
         super(options);
         this.isIntercepting = false;
         const maxRequests = (_a = options.maxRequests) !== null && _a !== void 0 ? _a : 50;
-        this.buffer = new circular_buffer_1.CircularBuffer(maxRequests);
+        this.buffer = new common_1.CircularBuffer(maxRequests);
         this.filterUrls = options.filterUrls;
         this.originalFetch = window.fetch;
         this.originalXHR = {

package/dist/index.esm.js

@@ -1940,106 +1940,124 @@ class ScreenshotProcessor {
 }
 
 /**
- * PII Pattern Definitions
- * Configurable regex patterns for detecting sensitive data (PII + credentials)
+ * Generic circular buffer — fixed-size FIFO that overwrites oldest items.
+ *
+ * @template T The type of items stored in the buffer
  */
+let CircularBuffer$1 = class CircularBuffer {
+    constructor(maxSize) {
+        this.maxSize = maxSize;
+        this.items = [];
+        this.index = 0;
+        this.count = 0;
+        if (maxSize <= 0) {
+            throw new Error('CircularBuffer maxSize must be greater than 0');
+        }
+    }
+    /**
+     * Add an item to the buffer. If full, the oldest item is overwritten.
+     */
+    add(item) {
+        if (this.count < this.maxSize) {
+            this.items.push(item);
+            this.count++;
+        }
+        else {
+            this.items[this.index] = item;
+        }
+        this.index = (this.index + 1) % this.maxSize;
+    }
+    /**
+     * Get all items in chronological order (oldest to newest).
+     * Returns a copy of the internal array.
+     */
+    getAll() {
+        if (this.count < this.maxSize) {
+            return [...this.items];
+        }
+        return [
+            ...this.items.slice(this.index),
+            ...this.items.slice(0, this.index),
+        ];
+    }
+    /**
+     * Clear all items from the buffer.
+     */
+    clear() {
+        this.items = [];
+        this.index = 0;
+        this.count = 0;
+    }
+    get size() {
+        return this.count;
+    }
+    get capacity() {
+        return this.maxSize;
+    }
+    get isEmpty() {
+        return this.count === 0;
+    }
+    get isFull() {
+        return this.count >= this.maxSize;
+    }
+};
+
 /**
- * Default built-in patterns
+ * PII pattern definitions for data sanitization.
  */
 const DEFAULT_PATTERNS = {
     email: {
         name: 'email',
         regex: /\b[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\.[A-Z|a-z]{2,}\b/g,
         description: 'Email addresses',
-        examples: [
-            'user@example.com',
-            'john.doe+tag@company.co.uk',
-            'test_user@sub.domain.com',
-        ],
-        priority: 1, // Highest priority - most specific
+        priority: 1,
     },
     creditcard: {
         name: 'creditcard',
         regex: /\b(?:\d{4}[-\s]){3}\d{4}\b|\b\d{4}[-\s]\d{6}[-\s]\d{5}\b|\b\d{13,19}\b/g,
-        description: 'Credit card numbers (Visa, MC, Amex, Discover, etc.)',
-        examples: [
-            '4532-1488-0343-6467',
-            '4532148803436467',
-            '5425 2334 3010 9903',
-            '3782 822463 10005',
-        ],
+        description: 'Credit card numbers',
         priority: 2,
     },
     ssn: {
         name: 'ssn',
         regex: /\b\d{3}-\d{2}-\d{4}\b|\b(?<!\d)\d{9}(?!\d)\b/g,
         description: 'US Social Security Numbers',
-        examples: ['123-45-6789', '987654321'],
         priority: 3,
     },
     iin: {
         name: 'iin',
         regex: /\b[0-9]{2}(?:0[1-9]|1[0-2])(?:0[1-9]|[12][0-9]|3[01])\d{6}\b/g,
-        description: 'Kazakhstan IIN/BIN (12 digits with date validation)',
-        examples: ['950315300123', '880612500456', '021225123456'],
+        description: 'Kazakhstan IIN/BIN',
         priority: 4,
     },
     ip: {
         name: 'ip',
         regex: /\b(?:(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\b|(?:[0-9a-fA-F]{1,4}:){7}[0-9a-fA-F]{1,4}\b/g,
         description: 'IPv4 and IPv6 addresses',
-        examples: [
-            '192.168.1.100',
-            '127.0.0.1',
-            '2001:0db8:85a3:0000:0000:8a2e:0370:7334',
-        ],
         priority: 5,
     },
     phone: {
         name: 'phone',
         regex: /\+\d{1,3}[-.\s]\d{3}[-.\s]\d{4}\b|\+\d{1,3}[-.\s]\d{3}[-.\s]\d{3}[-.\s]\d{4}\b|\(\d{3}\)\s*\d{3}[-.\s]\d{4}\b|\b\d{3}[-.\s]\d{3}[-.\s]\d{4}\b/g,
-        description: 'International phone numbers',
-        examples: [
-            '+1-555-1234',
-            '+1-555-123-4567',
-            '(555) 123-4567',
-            '555-123-4567',
-            '+7 777 123 4567',
-        ],
+        description: 'Phone numbers',
         priority: 6,
     },
     apikey: {
         name: 'apikey',
         regex: /\b(?:sk|pk)_(?:live|test)_[a-zA-Z0-9]{24,}\b|AIza[a-zA-Z0-9_-]{35}|ya29\.[a-zA-Z0-9_-]+|AKIA[a-zA-Z0-9]{16}\b/g,
-        description: 'API keys (Stripe, Google, AWS, etc.)',
-        examples: [
-            'sk_live_abc123def456ghi789jkl',
-            'pk_test_xyz789abc123def456',
-            'AIzaSyD1234567890abcdefghijklmnopqrst',
-            'AKIAIOSFODNN7EXAMPLE',
-        ],
+        description: 'API keys (Stripe, Google, AWS)',
         priority: 7,
     },
     token: {
         name: 'token',
         regex: /\b(?:Bearer\s+)?[a-zA-Z0-9_-]{32,}\b|ghp_[a-zA-Z0-9]{36}|gho_[a-zA-Z0-9]{36}|github_pat_[a-zA-Z0-9_]{82}/g,
-        description: 'Authentication tokens (Bearer, GitHub, JWT-like)',
-        examples: [
-            'Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9',
-            'ghp_abc123def456ghi789jkl012mno345pqr',
-            'gho_xyz789abc123def456ghi789jkl012mno',
-        ],
+        description: 'Auth tokens (Bearer, GitHub, JWT-like)',
         priority: 8,
     },
     password: {
         name: 'password',
         regex: /(?:password|passwd|pwd)[\s:=]+[^\s]{6,}|(?:password|passwd|pwd)["']?\s*[:=]\s*["']?[^\s"']{6,}/gi,
-        description: 'Password fields in text (password=..., pwd:...)',
-        examples: [
-            'password: MySecret123!',
-            'passwd=SecurePass456',
-            'pwd: "MyP@ssw0rd"',
-        ],
+        description: 'Password fields in text',
         priority: 9,
     },
 };
@@ -2055,13 +2073,147 @@ const PATTERN_CATEGORIES = {
     kazakhstan: ['iin'],
 };
 /**
- * Get patterns sorted by priority
+ * Pre-configured pattern sets for common compliance/use cases
  */
+const PATTERN_PRESETS = {
+    all: Object.keys(DEFAULT_PATTERNS),
+    minimal: ['email', 'creditcard', 'ssn'],
+    financial: ['creditcard', 'ssn'],
+    contact: ['email', 'phone'],
+    identification: ['ssn', 'iin'],
+    credentials: ['apikey', 'token', 'password'],
+    kazakhstan: ['email', 'phone', 'iin'],
+    gdpr: ['email', 'phone', 'ip'],
+    pci: ['creditcard'],
+    security: [
+        'email',
+        'phone',
+        'creditcard',
+        'ssn',
+        'apikey',
+        'token',
+        'password',
+    ],
+};
 function getPatternsByPriority(patterns) {
-    return [...patterns].sort((a, b) => {
-        return a.priority - b.priority;
-    });
+    return [...patterns].sort((a, b) => a.priority - b.priority);
+}
+function createPatternConfig(preset) {
+    const names = typeof preset === 'string' ? PATTERN_PRESETS[preset] : preset;
+    return names.map((name) => DEFAULT_PATTERNS[name]);
 }
+/**
+ * Validate a custom pattern regex for performance issues
+ */
+function validatePattern(pattern) {
+    const errors = [];
+    if (!pattern.name)
+        errors.push('Pattern must have a name');
+    if (!pattern.regex) {
+        errors.push('Pattern must have a regex');
+    }
+    else {
+        if (!pattern.regex.global)
+            errors.push('Pattern regex must have global flag');
+        try {
+            const testString = 'a'.repeat(1000);
+            const start = Date.now();
+            testString.match(pattern.regex);
+            if (Date.now() - start > 100) {
+                errors.push('Pattern regex may cause performance issues');
+            }
+        }
+        catch (e) {
+            errors.push(`Pattern regex error: ${e.message}`);
+        }
+    }
+    return { valid: errors.length === 0, errors };
+}
+
+/**
+ * URL helper utilities for endpoint validation and parsing.
+ */
+/**
+ * Custom error for invalid endpoint URLs
+ */
+class InvalidEndpointError extends Error {
+    constructor(endpoint, reason) {
+        super(`Invalid endpoint URL: ${endpoint}. ${reason}`);
+        this.endpoint = endpoint;
+        this.reason = reason;
+        this.name = 'InvalidEndpointError';
+    }
+}
+/**
+ * Custom error for insecure endpoints
+ */
+class InsecureEndpointError extends Error {
+    constructor(endpoint) {
+        super(`Secure HTTPS connection required. Attempted to connect to insecure endpoint: "${endpoint}"`);
+        this.endpoint = endpoint;
+        this.name = 'InsecureEndpointError';
+    }
+}
+/**
+ * Strip known endpoint suffixes from path.
+ * Removes /api/v1/reports path.
+ */
+function stripEndpointSuffix(path) {
+    const reportsIndex = path.lastIndexOf('/api/v1/reports');
+    if (reportsIndex !== -1) {
+        return path.substring(0, reportsIndex);
+    }
+    return path.replace(/\/$/, '') || '';
+}
+/**
+ * Extract base API URL from endpoint.
+ * Returns scheme + host + base path (without /api/v1/reports suffix).
+ *
+ * @example
+ * getApiBaseUrl('https://api.example.com/api/v1/reports')
+ * // Returns: 'https://api.example.com'
+ *
+ * @throws InvalidEndpointError if endpoint is not a valid absolute URL
+ */
+function getApiBaseUrl(endpoint) {
+    if (!endpoint) {
+        throw new InvalidEndpointError('', 'No endpoint configured');
+    }
+    try {
+        const url = new URL(endpoint);
+        const basePath = stripEndpointSuffix(url.pathname);
+        return url.origin + basePath;
+    }
+    catch {
+        throw new InvalidEndpointError(endpoint, 'Must be a valid absolute URL (e.g., https://api.example.com/api/v1/reports)');
+    }
+}
+/**
+ * Checks if the endpoint uses a secure protocol.
+ * Uses the URL API for robust parsing.
+ *
+ * Allows HTTPS in production, HTTP only on localhost/127.0.0.1 for development.
+ */
+function isSecureEndpoint(endpoint) {
+    if (!endpoint)
+        return false;
+    try {
+        const url = new URL(endpoint.trim());
+        return (url.protocol === 'https:' ||
+            (url.protocol === 'http:' &&
+                (url.hostname === 'localhost' || url.hostname === '127.0.0.1')));
+    }
+    catch {
+        return false;
+    }
+}
+
+/**
+ * PII Pattern Definitions
+ * Re-exports from @bugspotter/common + SDK-specific extensions
+ */
+// Re-export everything from @bugspotter/common
+// SDK-specific extensions
 /**
  * Get pattern by name
  */
@@ -2076,12 +2228,6 @@ function getPatternsByCategory(category) {
         return DEFAULT_PATTERNS[name];
     });
 }
-/**
- * Get all pattern names
- */
-function getAllPatternNames() {
-    return Object.keys(DEFAULT_PATTERNS);
-}
 /**
  * Custom pattern builder for advanced use cases
  */
@@ -2094,7 +2240,6 @@ class PatternBuilder {
         return this;
     }
     regex(regex) {
-        // Ensure global flag
         if (!regex.global) {
             const flags = regex.flags.includes('g') ? regex.flags : regex.flags + 'g';
             this.pattern.regex = new RegExp(regex.source, flags);
@@ -2130,85 +2275,6 @@ class PatternBuilder {
         };
     }
 }
-/**
- * Pre-configured pattern sets for common use cases
- */
-const PATTERN_PRESETS = {
-    /** All patterns enabled (PII + credentials) - default */
-    all: getAllPatternNames(),
-    /** Minimal - only most critical PII */
-    minimal: ['email', 'creditcard', 'ssn'],
-    /** Financial data only */
-    financial: PATTERN_CATEGORIES.financial,
-    /** Contact information only */
-    contact: PATTERN_CATEGORIES.contact,
-    /** Identification numbers only */
-    identification: PATTERN_CATEGORIES.identification,
-    /** Credentials and secrets only */
-    credentials: PATTERN_CATEGORIES.credentials,
-    /** Kazakhstan-specific patterns */
-    kazakhstan: ['email', 'phone', 'iin'],
-    /** GDPR compliance recommended set */
-    gdpr: ['email', 'phone', 'ip'],
-    /** PCI DSS compliance required */
-    pci: ['creditcard'],
-    /** Security-focused: PII + credentials */
-    security: [
-        'email',
-        'phone',
-        'creditcard',
-        'ssn',
-        'apikey',
-        'token',
-        'password',
-    ],
-};
-/**
- * Create custom pattern configuration
- */
-function createPatternConfig(preset) {
-    const names = typeof preset === 'string' ? PATTERN_PRESETS[preset] : preset;
-    return names.map((name) => {
-        return DEFAULT_PATTERNS[name];
-    });
-}
-/**
- * Validate pattern regex
- */
-function validatePattern(pattern) {
-    const errors = [];
-    if (!pattern.name) {
-        errors.push('Pattern must have a name');
-    }
-    if (!pattern.regex) {
-        errors.push('Pattern must have a regex');
-    }
-    else {
-        if (!pattern.regex.global) {
-            errors.push('Pattern regex must have global flag');
-        }
-        // Test regex doesn't cause catastrophic backtracking
-        try {
-            const testString = 'a'.repeat(1000);
-            const start = Date.now();
-            testString.match(pattern.regex);
-            const duration = Date.now() - start;
-            if (duration > 100) {
-                errors.push(`Pattern regex may cause performance issues (took ${duration}ms on test)`);
-            }
-        }
-        catch (error) {
-            errors.push(`Pattern regex error: ${error.message}`);
-        }
-    }
-    if (pattern.priority < 0) {
-        errors.push('Pattern priority must be non-negative');
-    }
-    return {
-        valid: errors.length === 0,
-        errors,
-    };
-}
 
 /**
  * PII Detection and Sanitization Utility - REFACTORED
@@ -2530,7 +2596,7 @@ function createLogger(config) {
     return new BugSpotterLogger(config);
 }
 
-const logger$8 = getLogger();
+const logger$7 = getLogger();
 /**
  * BugReportModal
  *
@@ -2810,7 +2876,7 @@ class BugReportModal {
                     finalScreenshot = yield this.screenshotProcessor.mergeRedactions(this.originalScreenshot, this.redactionCanvas.getCanvas());
                 }
                 catch (mergeError) {
-                    logger$8.error('Failed to merge redactions:', mergeError);
+                    logger$7.error('Failed to merge redactions:', mergeError);
                     finalScreenshot = this.originalScreenshot;
                 }
             }
@@ -2871,98 +2937,6 @@ const DEFAULT_REPLAY_DURATION_SECONDS = 15;
  */
 const MAX_RECOMMENDED_REPLAY_DURATION_SECONDS = 30;
 
-/**
- * URL Helper Utilities
- * Extract base API URL from endpoint configuration
- */
-const logger$7 = getLogger();
-/**
- * Custom error for invalid endpoint URLs
- */
-class InvalidEndpointError extends Error {
-    constructor(endpoint, reason) {
-        super(`Invalid endpoint URL: ${endpoint}. ${reason}`);
-        this.endpoint = endpoint;
-        this.reason = reason;
-        this.name = 'InvalidEndpointError';
-    }
-}
-/**
- * Strip known endpoint suffixes from path
- * Removes /api/v1/reports path
- */
-function stripEndpointSuffix(path) {
-    // Use lastIndexOf to handle paths like '/prefix/api/v1/reports'
-    const reportsIndex = path.lastIndexOf('/api/v1/reports');
-    if (reportsIndex !== -1) {
-        return path.substring(0, reportsIndex);
-    }
-    // Remove trailing slash
-    return path.replace(/\/$/, '') || '';
-}
-/**
- * Extract base API URL from endpoint
- * Returns scheme + host + base path (without /api/v1/reports suffix)
- *
- * @example
- * getApiBaseUrl('https://api.example.com/api/v1/reports')
- * // Returns: 'https://api.example.com'
- *
- * @throws InvalidEndpointError if endpoint is not a valid absolute URL
- */
-function getApiBaseUrl(endpoint) {
-    if (!endpoint) {
-        throw new InvalidEndpointError('', 'No endpoint configured');
-    }
-    try {
-        const url = new URL(endpoint);
-        const basePath = stripEndpointSuffix(url.pathname);
-        return url.origin + basePath;
-    }
-    catch (error) {
-        const errorMessage = error instanceof Error ? error.message : String(error);
-        logger$7.error('Invalid endpoint URL - must be a valid absolute URL', {
-            endpoint,
-            error: errorMessage,
-        });
-        throw new InvalidEndpointError(endpoint, 'Must be a valid absolute URL (e.g., https://api.example.com/api/v1/reports)');
-    }
-}
-/**
- * specific error for insecure endpoints
- */
-class InsecureEndpointError extends Error {
-    constructor(endpoint) {
-        super(`Secure HTTPS connection required. Attempted to connect to insecure endpoint: "${endpoint}"`);
-        this.endpoint = endpoint;
-        this.name = 'InsecureEndpointError';
-    }
-}
-/**
- * Checks if the endpoint uses the secure HTTPS protocol.
- * Uses the URL API for robust parsing.
- *
- * @param endpoint The endpoint URL to check
- * @returns True if the endpoint uses HTTPS
- */
-function isSecureEndpoint(endpoint) {
-    if (!endpoint)
-        return false;
-    try {
-        const url = new URL(endpoint.trim());
-        // STRICT SECURITY:
-        // 1. Production must use HTTPS
-        // 2. Development allowed on localhost/127.0.0.1 via HTTP
-        return (url.protocol === 'https:' ||
-            (url.protocol === 'http:' &&
-                (url.hostname === 'localhost' || url.hostname === '127.0.0.1')));
-    }
-    catch (_a) {
-        // If it's not a valid URL, it's definitely not a secure endpoint
-        return false;
-    }
-}
-
 /**
  * SDK version - auto-generated from package.json
  * DO NOT EDIT THIS FILE MANUALLY
@@ -2970,7 +2944,7 @@ function isSecureEndpoint(endpoint) {
  * This file is automatically generated during the build process.
  * To update the version, modify package.json
  */
-const VERSION = '1.0.0';
+const VERSION = '1.1.0';
 
 /**
  * Configuration Validation Utilities
@@ -11089,83 +11063,6 @@ class ScreenshotCapture extends BaseCapture {
     }
 }
 
-/**
- * A generic circular buffer implementation for storing a fixed number of items.
- * When the buffer is full, new items overwrite the oldest items.
- *
- * @template T The type of items stored in the buffer
- */
-let CircularBuffer$1 = class CircularBuffer {
-    constructor(maxSize) {
-        this.maxSize = maxSize;
-        this.items = [];
-        this.index = 0;
-        this.count = 0;
-        if (maxSize <= 0) {
-            throw new Error('CircularBuffer maxSize must be greater than 0');
-        }
-    }
-    /**
-     * Add an item to the buffer. If the buffer is full, the oldest item is overwritten.
-     */
-    add(item) {
-        if (this.count < this.maxSize) {
-            this.items.push(item);
-            this.count++;
-        }
-        else {
-            this.items[this.index] = item;
-        }
-        this.index = (this.index + 1) % this.maxSize;
-    }
-    /**
-     * Get all items in chronological order (oldest to newest).
-     * Returns a copy of the internal array.
-     */
-    getAll() {
-        if (this.count < this.maxSize) {
-            return [...this.items];
-        }
-        // Return items in chronological order when buffer is full
-        return [
-            ...this.items.slice(this.index),
-            ...this.items.slice(0, this.index),
-        ];
-    }
-    /**
-     * Clear all items from the buffer.
-     */
-    clear() {
-        this.items = [];
-        this.index = 0;
-        this.count = 0;
-    }
-    /**
-     * Get the current number of items in the buffer.
-     */
-    get size() {
-        return this.count;
-    }
-    /**
-     * Get the maximum capacity of the buffer.
-     */
-    get capacity() {
-        return this.maxSize;
-    }
-    /**
-     * Check if the buffer is empty.
-     */
-    get isEmpty() {
-        return this.count === 0;
-    }
-    /**
-     * Check if the buffer is full.
-     */
-    get isFull() {
-        return this.count >= this.maxSize;
-    }
-};
-
 const CONSOLE_METHODS = [
     'log',
     'warn',