@cap-kit/integrity 8.0.0-next.6

package/dist/esm/web.js

@@ -0,0 +1,51 @@
+import { WebPlugin } from '@capacitor/core';
+/**
+ * Web implementation of the Integrity plugin.
+ *
+ * This implementation exists to preserve API parity
+ * across all platforms.
+ *
+ * The Web platform does NOT provide native integrity signals.
+ * Therefore, most methods are explicitly unavailable.
+ */
+export class IntegrityWeb extends WebPlugin {
+    constructor() {
+        super();
+    }
+    // ---------------------------------------------------------------------------
+    // Check
+    // ---------------------------------------------------------------------------
+    /**
+     * Executes a runtime integrity check.
+     *
+     * On Web, this feature is not available.
+     */
+    async check() {
+        throw this.unimplemented('Integrity checks are not implemented on web.');
+    }
+    // ---------------------------------------------------------------------------
+    // PresentBlockPage
+    // ---------------------------------------------------------------------------
+    /**
+     * Presents the integrity block page.
+     *
+     * On Web, this feature is not available.
+     */
+    async presentBlockPage() {
+        // Web platform cannot present native block pages.
+        // Throw to satisfy TypeScript return flow analysis.
+        throw this.unavailable('Integrity block page is not available on the Web platform.');
+    }
+    // ---------------------------------------------------------------------------
+    // Plugin info
+    // ---------------------------------------------------------------------------
+    /**
+     * Returns the plugin version.
+     *
+     * On Web, this represents the JavaScript package version.
+     */
+    async getPluginVersion() {
+        return { version: 'web' };
+    }
+}
+//# sourceMappingURL=web.js.map

package/dist/esm/web.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"web.js","sourceRoot":"","sources":["../../src/web.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAI5C;;;;;;;;GAQG;AACH,MAAM,OAAO,YAAa,SAAQ,SAAS;IACzC;QACE,KAAK,EAAE,CAAC;IACV,CAAC;IAED,8EAA8E;IAC9E,QAAQ;IACR,8EAA8E;IAE9E;;;;OAIG;IACH,KAAK,CAAC,KAAK;QACT,MAAM,IAAI,CAAC,aAAa,CAAC,8CAA8C,CAAC,CAAC;IAC3E,CAAC;IAED,8EAA8E;IAC9E,mBAAmB;IACnB,8EAA8E;IAE9E;;;;OAIG;IACH,KAAK,CAAC,gBAAgB;QACpB,kDAAkD;QAClD,oDAAoD;QACpD,MAAM,IAAI,CAAC,WAAW,CAAC,4DAA4D,CAAC,CAAC;IACvF,CAAC;IAED,8EAA8E;IAC9E,cAAc;IACd,8EAA8E;IAE9E;;;;OAIG;IACH,KAAK,CAAC,gBAAgB;QACpB,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;IAC5B,CAAC;CACF"}

package/dist/plugin.cjs.js

@@ -0,0 +1,130 @@
+'use strict';
+
+var core = require('@capacitor/core');
+
+/// <reference types="@capacitor/cli" />
+// -----------------------------------------------------------------------------
+// Enums
+// -----------------------------------------------------------------------------
+/**
+ * Standardized error codes used by the Integrity plugin.
+ *
+ * Errors are delivered via Promise rejection with a structured
+ * `{ message, code }` object matching `IntegrityError`.
+ *
+ * @since 8.0.0
+ */
+exports.IntegrityErrorCode = void 0;
+(function (IntegrityErrorCode) {
+    /** Required data is missing or the feature is not available. */
+    IntegrityErrorCode["UNAVAILABLE"] = "UNAVAILABLE";
+    /** The user denied a required permission or the feature is disabled. */
+    IntegrityErrorCode["PERMISSION_DENIED"] = "PERMISSION_DENIED";
+    /** The SSL pinning operation failed due to a runtime or initialization error. */
+    IntegrityErrorCode["INIT_FAILED"] = "INIT_FAILED";
+    /** Invalid or unsupported input was provided. */
+    IntegrityErrorCode["UNKNOWN_TYPE"] = "UNKNOWN_TYPE";
+})(exports.IntegrityErrorCode || (exports.IntegrityErrorCode = {}));
+/**
+ * Standard reason codes that MAY be used when presenting
+ * the integrity block page.
+ *
+ * These values are OPTIONAL and provided for convenience only.
+ * Applications may define and use their own custom reason strings.
+ *
+ * @since 8.0.0
+ */
+exports.IntegrityBlockReason = void 0;
+(function (IntegrityBlockReason) {
+    IntegrityBlockReason["COMPROMISED_ENVIRONMENT"] = "compromised_environment";
+    IntegrityBlockReason["ROOT_DETECTED"] = "root_detected";
+    IntegrityBlockReason["JAILBREAK_DETECTED"] = "jailbreak_detected";
+    IntegrityBlockReason["EMULATOR_DETECTED"] = "emulator_detected";
+    IntegrityBlockReason["DEBUG_ENVIRONMENT"] = "debug_environment";
+    IntegrityBlockReason["INTEGRITY_FAILED"] = "integrity_failed";
+})(exports.IntegrityBlockReason || (exports.IntegrityBlockReason = {}));
+/**
+ * Internal confidence levels used by native implementations.
+ *
+ * IMPORTANT:
+ * This enum is INTERNAL and MUST NOT be considered a public API.
+ * It exists to freeze semantic meaning and avoid string drift
+ * across platforms and future refactors.
+ */
+var IntegrityConfidenceLevel;
+(function (IntegrityConfidenceLevel) {
+    IntegrityConfidenceLevel["LOW"] = "low";
+    IntegrityConfidenceLevel["MEDIUM"] = "medium";
+    IntegrityConfidenceLevel["HIGH"] = "high";
+})(IntegrityConfidenceLevel || (IntegrityConfidenceLevel = {}));
+
+/**
+ * Import the `registerPlugin` method from the Capacitor core library.
+ * This method is used to register a custom plugin.
+ */
+/**
+ * The Integrity plugin instance.
+ * It automatically lazy-loads the web implementation if running in a browser environment.
+ * Use this instance to access all ssl pinning functionality.
+ */
+const Integrity = core.registerPlugin('Integrity', {
+    web: () => Promise.resolve().then(function () { return web; }).then((m) => new m.IntegrityWeb()),
+});
+
+/**
+ * Web implementation of the Integrity plugin.
+ *
+ * This implementation exists to preserve API parity
+ * across all platforms.
+ *
+ * The Web platform does NOT provide native integrity signals.
+ * Therefore, most methods are explicitly unavailable.
+ */
+class IntegrityWeb extends core.WebPlugin {
+    constructor() {
+        super();
+    }
+    // ---------------------------------------------------------------------------
+    // Check
+    // ---------------------------------------------------------------------------
+    /**
+     * Executes a runtime integrity check.
+     *
+     * On Web, this feature is not available.
+     */
+    async check() {
+        throw this.unimplemented('Integrity checks are not implemented on web.');
+    }
+    // ---------------------------------------------------------------------------
+    // PresentBlockPage
+    // ---------------------------------------------------------------------------
+    /**
+     * Presents the integrity block page.
+     *
+     * On Web, this feature is not available.
+     */
+    async presentBlockPage() {
+        // Web platform cannot present native block pages.
+        // Throw to satisfy TypeScript return flow analysis.
+        throw this.unavailable('Integrity block page is not available on the Web platform.');
+    }
+    // ---------------------------------------------------------------------------
+    // Plugin info
+    // ---------------------------------------------------------------------------
+    /**
+     * Returns the plugin version.
+     *
+     * On Web, this represents the JavaScript package version.
+     */
+    async getPluginVersion() {
+        return { version: 'web' };
+    }
+}
+
+var web = /*#__PURE__*/Object.freeze({
+    __proto__: null,
+    IntegrityWeb: IntegrityWeb
+});
+
+exports.Integrity = Integrity;
+//# sourceMappingURL=plugin.cjs.js.map

package/dist/plugin.cjs.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"plugin.cjs.js","sources":["esm/definitions.js","esm/index.js","esm/web.js"],"sourcesContent":["/// <reference types=\"@capacitor/cli\" />\n// -----------------------------------------------------------------------------\n// Enums\n// -----------------------------------------------------------------------------\n/**\n * Standardized error codes used by the Integrity plugin.\n *\n * Errors are delivered via Promise rejection with a structured\n * `{ message, code }` object matching `IntegrityError`.\n *\n * @since 8.0.0\n */\nexport var IntegrityErrorCode;\n(function (IntegrityErrorCode) {\n    /** Required data is missing or the feature is not available. */\n    IntegrityErrorCode[\"UNAVAILABLE\"] = \"UNAVAILABLE\";\n    /** The user denied a required permission or the feature is disabled. */\n    IntegrityErrorCode[\"PERMISSION_DENIED\"] = \"PERMISSION_DENIED\";\n    /** The SSL pinning operation failed due to a runtime or initialization error. */\n    IntegrityErrorCode[\"INIT_FAILED\"] = \"INIT_FAILED\";\n    /** Invalid or unsupported input was provided. */\n    IntegrityErrorCode[\"UNKNOWN_TYPE\"] = \"UNKNOWN_TYPE\";\n})(IntegrityErrorCode || (IntegrityErrorCode = {}));\n/**\n * Standard reason codes that MAY be used when presenting\n * the integrity block page.\n *\n * These values are OPTIONAL and provided for convenience only.\n * Applications may define and use their own custom reason strings.\n *\n * @since 8.0.0\n */\nexport var IntegrityBlockReason;\n(function (IntegrityBlockReason) {\n    IntegrityBlockReason[\"COMPROMISED_ENVIRONMENT\"] = \"compromised_environment\";\n    IntegrityBlockReason[\"ROOT_DETECTED\"] = \"root_detected\";\n    IntegrityBlockReason[\"JAILBREAK_DETECTED\"] = \"jailbreak_detected\";\n    IntegrityBlockReason[\"EMULATOR_DETECTED\"] = \"emulator_detected\";\n    IntegrityBlockReason[\"DEBUG_ENVIRONMENT\"] = \"debug_environment\";\n    IntegrityBlockReason[\"INTEGRITY_FAILED\"] = \"integrity_failed\";\n})(IntegrityBlockReason || (IntegrityBlockReason = {}));\n/**\n * Internal confidence levels used by native implementations.\n *\n * IMPORTANT:\n * This enum is INTERNAL and MUST NOT be considered a public API.\n * It exists to freeze semantic meaning and avoid string drift\n * across platforms and future refactors.\n */\nvar IntegrityConfidenceLevel;\n(function (IntegrityConfidenceLevel) {\n    IntegrityConfidenceLevel[\"LOW\"] = \"low\";\n    IntegrityConfidenceLevel[\"MEDIUM\"] = \"medium\";\n    IntegrityConfidenceLevel[\"HIGH\"] = \"high\";\n})(IntegrityConfidenceLevel || (IntegrityConfidenceLevel = {}));\n//# sourceMappingURL=definitions.js.map","/**\n * Import the `registerPlugin` method from the Capacitor core library.\n * This method is used to register a custom plugin.\n */\nimport { registerPlugin } from '@capacitor/core';\n/**\n * The Integrity plugin instance.\n * It automatically lazy-loads the web implementation if running in a browser environment.\n * Use this instance to access all ssl pinning functionality.\n */\nconst Integrity = registerPlugin('Integrity', {\n    web: () => import('./web').then((m) => new m.IntegrityWeb()),\n});\nexport * from './definitions';\nexport { Integrity };\n//# sourceMappingURL=index.js.map","import { WebPlugin } from '@capacitor/core';\n/**\n * Web implementation of the Integrity plugin.\n *\n * This implementation exists to preserve API parity\n * across all platforms.\n *\n * The Web platform does NOT provide native integrity signals.\n * Therefore, most methods are explicitly unavailable.\n */\nexport class IntegrityWeb extends WebPlugin {\n    constructor() {\n        super();\n    }\n    // ---------------------------------------------------------------------------\n    // Check\n    // ---------------------------------------------------------------------------\n    /**\n     * Executes a runtime integrity check.\n     *\n     * On Web, this feature is not available.\n     */\n    async check() {\n        throw this.unimplemented('Integrity checks are not implemented on web.');\n    }\n    // ---------------------------------------------------------------------------\n    // PresentBlockPage\n    // ---------------------------------------------------------------------------\n    /**\n     * Presents the integrity block page.\n     *\n     * On Web, this feature is not available.\n     */\n    async presentBlockPage() {\n        // Web platform cannot present native block pages.\n        // Throw to satisfy TypeScript return flow analysis.\n        throw this.unavailable('Integrity block page is not available on the Web platform.');\n    }\n    // ---------------------------------------------------------------------------\n    // Plugin info\n    // ---------------------------------------------------------------------------\n    /**\n     * Returns the plugin version.\n     *\n     * On Web, this represents the JavaScript package version.\n     */\n    async getPluginVersion() {\n        return { version: 'web' };\n    }\n}\n//# sourceMappingURL=web.js.map"],"names":["IntegrityErrorCode","IntegrityBlockReason","registerPlugin","WebPlugin"],"mappings":";;;;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACWA;AACX,CAAC,UAAU,kBAAkB,EAAE;AAC/B;AACA,IAAI,kBAAkB,CAAC,aAAa,CAAC,GAAG,aAAa;AACrD;AACA,IAAI,kBAAkB,CAAC,mBAAmB,CAAC,GAAG,mBAAmB;AACjE;AACA,IAAI,kBAAkB,CAAC,aAAa,CAAC,GAAG,aAAa;AACrD;AACA,IAAI,kBAAkB,CAAC,cAAc,CAAC,GAAG,cAAc;AACvD,CAAC,EAAEA,0BAAkB,KAAKA,0BAAkB,GAAG,EAAE,CAAC,CAAC;AACnD;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACWC;AACX,CAAC,UAAU,oBAAoB,EAAE;AACjC,IAAI,oBAAoB,CAAC,yBAAyB,CAAC,GAAG,yBAAyB;AAC/E,IAAI,oBAAoB,CAAC,eAAe,CAAC,GAAG,eAAe;AAC3D,IAAI,oBAAoB,CAAC,oBAAoB,CAAC,GAAG,oBAAoB;AACrE,IAAI,oBAAoB,CAAC,mBAAmB,CAAC,GAAG,mBAAmB;AACnE,IAAI,oBAAoB,CAAC,mBAAmB,CAAC,GAAG,mBAAmB;AACnE,IAAI,oBAAoB,CAAC,kBAAkB,CAAC,GAAG,kBAAkB;AACjE,CAAC,EAAEA,4BAAoB,KAAKA,4BAAoB,GAAG,EAAE,CAAC,CAAC;AACvD;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,IAAI,wBAAwB;AAC5B,CAAC,UAAU,wBAAwB,EAAE;AACrC,IAAI,wBAAwB,CAAC,KAAK,CAAC,GAAG,KAAK;AAC3C,IAAI,wBAAwB,CAAC,QAAQ,CAAC,GAAG,QAAQ;AACjD,IAAI,wBAAwB,CAAC,MAAM,CAAC,GAAG,MAAM;AAC7C,CAAC,EAAE,wBAAwB,KAAK,wBAAwB,GAAG,EAAE,CAAC,CAAC;;ACtD/D;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACK,MAAC,SAAS,GAAGC,mBAAc,CAAC,WAAW,EAAE;AAC9C,IAAI,GAAG,EAAE,MAAM,mDAAe,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,IAAI,CAAC,CAAC,YAAY,EAAE,CAAC;AAChE,CAAC;;ACXD;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACO,MAAM,YAAY,SAASC,cAAS,CAAC;AAC5C,IAAI,WAAW,GAAG;AAClB,QAAQ,KAAK,EAAE;AACf,IAAI;AACJ;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,IAAI,MAAM,KAAK,GAAG;AAClB,QAAQ,MAAM,IAAI,CAAC,aAAa,CAAC,8CAA8C,CAAC;AAChF,IAAI;AACJ;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,IAAI,MAAM,gBAAgB,GAAG;AAC7B;AACA;AACA,QAAQ,MAAM,IAAI,CAAC,WAAW,CAAC,4DAA4D,CAAC;AAC5F,IAAI;AACJ;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,IAAI,MAAM,gBAAgB,GAAG;AAC7B,QAAQ,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE;AACjC,IAAI;AACJ;;;;;;;;;"}

package/dist/plugin.js

@@ -0,0 +1,133 @@
+var capacitorIntegrity = (function (exports, core) {
+    'use strict';
+
+    /// <reference types="@capacitor/cli" />
+    // -----------------------------------------------------------------------------
+    // Enums
+    // -----------------------------------------------------------------------------
+    /**
+     * Standardized error codes used by the Integrity plugin.
+     *
+     * Errors are delivered via Promise rejection with a structured
+     * `{ message, code }` object matching `IntegrityError`.
+     *
+     * @since 8.0.0
+     */
+    exports.IntegrityErrorCode = void 0;
+    (function (IntegrityErrorCode) {
+        /** Required data is missing or the feature is not available. */
+        IntegrityErrorCode["UNAVAILABLE"] = "UNAVAILABLE";
+        /** The user denied a required permission or the feature is disabled. */
+        IntegrityErrorCode["PERMISSION_DENIED"] = "PERMISSION_DENIED";
+        /** The SSL pinning operation failed due to a runtime or initialization error. */
+        IntegrityErrorCode["INIT_FAILED"] = "INIT_FAILED";
+        /** Invalid or unsupported input was provided. */
+        IntegrityErrorCode["UNKNOWN_TYPE"] = "UNKNOWN_TYPE";
+    })(exports.IntegrityErrorCode || (exports.IntegrityErrorCode = {}));
+    /**
+     * Standard reason codes that MAY be used when presenting
+     * the integrity block page.
+     *
+     * These values are OPTIONAL and provided for convenience only.
+     * Applications may define and use their own custom reason strings.
+     *
+     * @since 8.0.0
+     */
+    exports.IntegrityBlockReason = void 0;
+    (function (IntegrityBlockReason) {
+        IntegrityBlockReason["COMPROMISED_ENVIRONMENT"] = "compromised_environment";
+        IntegrityBlockReason["ROOT_DETECTED"] = "root_detected";
+        IntegrityBlockReason["JAILBREAK_DETECTED"] = "jailbreak_detected";
+        IntegrityBlockReason["EMULATOR_DETECTED"] = "emulator_detected";
+        IntegrityBlockReason["DEBUG_ENVIRONMENT"] = "debug_environment";
+        IntegrityBlockReason["INTEGRITY_FAILED"] = "integrity_failed";
+    })(exports.IntegrityBlockReason || (exports.IntegrityBlockReason = {}));
+    /**
+     * Internal confidence levels used by native implementations.
+     *
+     * IMPORTANT:
+     * This enum is INTERNAL and MUST NOT be considered a public API.
+     * It exists to freeze semantic meaning and avoid string drift
+     * across platforms and future refactors.
+     */
+    var IntegrityConfidenceLevel;
+    (function (IntegrityConfidenceLevel) {
+        IntegrityConfidenceLevel["LOW"] = "low";
+        IntegrityConfidenceLevel["MEDIUM"] = "medium";
+        IntegrityConfidenceLevel["HIGH"] = "high";
+    })(IntegrityConfidenceLevel || (IntegrityConfidenceLevel = {}));
+
+    /**
+     * Import the `registerPlugin` method from the Capacitor core library.
+     * This method is used to register a custom plugin.
+     */
+    /**
+     * The Integrity plugin instance.
+     * It automatically lazy-loads the web implementation if running in a browser environment.
+     * Use this instance to access all ssl pinning functionality.
+     */
+    const Integrity = core.registerPlugin('Integrity', {
+        web: () => Promise.resolve().then(function () { return web; }).then((m) => new m.IntegrityWeb()),
+    });
+
+    /**
+     * Web implementation of the Integrity plugin.
+     *
+     * This implementation exists to preserve API parity
+     * across all platforms.
+     *
+     * The Web platform does NOT provide native integrity signals.
+     * Therefore, most methods are explicitly unavailable.
+     */
+    class IntegrityWeb extends core.WebPlugin {
+        constructor() {
+            super();
+        }
+        // ---------------------------------------------------------------------------
+        // Check
+        // ---------------------------------------------------------------------------
+        /**
+         * Executes a runtime integrity check.
+         *
+         * On Web, this feature is not available.
+         */
+        async check() {
+            throw this.unimplemented('Integrity checks are not implemented on web.');
+        }
+        // ---------------------------------------------------------------------------
+        // PresentBlockPage
+        // ---------------------------------------------------------------------------
+        /**
+         * Presents the integrity block page.
+         *
+         * On Web, this feature is not available.
+         */
+        async presentBlockPage() {
+            // Web platform cannot present native block pages.
+            // Throw to satisfy TypeScript return flow analysis.
+            throw this.unavailable('Integrity block page is not available on the Web platform.');
+        }
+        // ---------------------------------------------------------------------------
+        // Plugin info
+        // ---------------------------------------------------------------------------
+        /**
+         * Returns the plugin version.
+         *
+         * On Web, this represents the JavaScript package version.
+         */
+        async getPluginVersion() {
+            return { version: 'web' };
+        }
+    }
+
+    var web = /*#__PURE__*/Object.freeze({
+        __proto__: null,
+        IntegrityWeb: IntegrityWeb
+    });
+
+    exports.Integrity = Integrity;
+
+    return exports;
+
+})({}, capacitorExports);
+//# sourceMappingURL=plugin.js.map

package/dist/plugin.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"plugin.js","sources":["esm/definitions.js","esm/index.js","esm/web.js"],"sourcesContent":["/// <reference types=\"@capacitor/cli\" />\n// -----------------------------------------------------------------------------\n// Enums\n// -----------------------------------------------------------------------------\n/**\n * Standardized error codes used by the Integrity plugin.\n *\n * Errors are delivered via Promise rejection with a structured\n * `{ message, code }` object matching `IntegrityError`.\n *\n * @since 8.0.0\n */\nexport var IntegrityErrorCode;\n(function (IntegrityErrorCode) {\n    /** Required data is missing or the feature is not available. */\n    IntegrityErrorCode[\"UNAVAILABLE\"] = \"UNAVAILABLE\";\n    /** The user denied a required permission or the feature is disabled. */\n    IntegrityErrorCode[\"PERMISSION_DENIED\"] = \"PERMISSION_DENIED\";\n    /** The SSL pinning operation failed due to a runtime or initialization error. */\n    IntegrityErrorCode[\"INIT_FAILED\"] = \"INIT_FAILED\";\n    /** Invalid or unsupported input was provided. */\n    IntegrityErrorCode[\"UNKNOWN_TYPE\"] = \"UNKNOWN_TYPE\";\n})(IntegrityErrorCode || (IntegrityErrorCode = {}));\n/**\n * Standard reason codes that MAY be used when presenting\n * the integrity block page.\n *\n * These values are OPTIONAL and provided for convenience only.\n * Applications may define and use their own custom reason strings.\n *\n * @since 8.0.0\n */\nexport var IntegrityBlockReason;\n(function (IntegrityBlockReason) {\n    IntegrityBlockReason[\"COMPROMISED_ENVIRONMENT\"] = \"compromised_environment\";\n    IntegrityBlockReason[\"ROOT_DETECTED\"] = \"root_detected\";\n    IntegrityBlockReason[\"JAILBREAK_DETECTED\"] = \"jailbreak_detected\";\n    IntegrityBlockReason[\"EMULATOR_DETECTED\"] = \"emulator_detected\";\n    IntegrityBlockReason[\"DEBUG_ENVIRONMENT\"] = \"debug_environment\";\n    IntegrityBlockReason[\"INTEGRITY_FAILED\"] = \"integrity_failed\";\n})(IntegrityBlockReason || (IntegrityBlockReason = {}));\n/**\n * Internal confidence levels used by native implementations.\n *\n * IMPORTANT:\n * This enum is INTERNAL and MUST NOT be considered a public API.\n * It exists to freeze semantic meaning and avoid string drift\n * across platforms and future refactors.\n */\nvar IntegrityConfidenceLevel;\n(function (IntegrityConfidenceLevel) {\n    IntegrityConfidenceLevel[\"LOW\"] = \"low\";\n    IntegrityConfidenceLevel[\"MEDIUM\"] = \"medium\";\n    IntegrityConfidenceLevel[\"HIGH\"] = \"high\";\n})(IntegrityConfidenceLevel || (IntegrityConfidenceLevel = {}));\n//# sourceMappingURL=definitions.js.map","/**\n * Import the `registerPlugin` method from the Capacitor core library.\n * This method is used to register a custom plugin.\n */\nimport { registerPlugin } from '@capacitor/core';\n/**\n * The Integrity plugin instance.\n * It automatically lazy-loads the web implementation if running in a browser environment.\n * Use this instance to access all ssl pinning functionality.\n */\nconst Integrity = registerPlugin('Integrity', {\n    web: () => import('./web').then((m) => new m.IntegrityWeb()),\n});\nexport * from './definitions';\nexport { Integrity };\n//# sourceMappingURL=index.js.map","import { WebPlugin } from '@capacitor/core';\n/**\n * Web implementation of the Integrity plugin.\n *\n * This implementation exists to preserve API parity\n * across all platforms.\n *\n * The Web platform does NOT provide native integrity signals.\n * Therefore, most methods are explicitly unavailable.\n */\nexport class IntegrityWeb extends WebPlugin {\n    constructor() {\n        super();\n    }\n    // ---------------------------------------------------------------------------\n    // Check\n    // ---------------------------------------------------------------------------\n    /**\n     * Executes a runtime integrity check.\n     *\n     * On Web, this feature is not available.\n     */\n    async check() {\n        throw this.unimplemented('Integrity checks are not implemented on web.');\n    }\n    // ---------------------------------------------------------------------------\n    // PresentBlockPage\n    // ---------------------------------------------------------------------------\n    /**\n     * Presents the integrity block page.\n     *\n     * On Web, this feature is not available.\n     */\n    async presentBlockPage() {\n        // Web platform cannot present native block pages.\n        // Throw to satisfy TypeScript return flow analysis.\n        throw this.unavailable('Integrity block page is not available on the Web platform.');\n    }\n    // ---------------------------------------------------------------------------\n    // Plugin info\n    // ---------------------------------------------------------------------------\n    /**\n     * Returns the plugin version.\n     *\n     * On Web, this represents the JavaScript package version.\n     */\n    async getPluginVersion() {\n        return { version: 'web' };\n    }\n}\n//# sourceMappingURL=web.js.map"],"names":["IntegrityErrorCode","IntegrityBlockReason","registerPlugin","WebPlugin"],"mappings":";;;IAAA;IACA;IACA;IACA;IACA;IACA;IACA;IACA;IACA;IACA;IACA;IACA;AACWA;IACX,CAAC,UAAU,kBAAkB,EAAE;IAC/B;IACA,IAAI,kBAAkB,CAAC,aAAa,CAAC,GAAG,aAAa;IACrD;IACA,IAAI,kBAAkB,CAAC,mBAAmB,CAAC,GAAG,mBAAmB;IACjE;IACA,IAAI,kBAAkB,CAAC,aAAa,CAAC,GAAG,aAAa;IACrD;IACA,IAAI,kBAAkB,CAAC,cAAc,CAAC,GAAG,cAAc;IACvD,CAAC,EAAEA,0BAAkB,KAAKA,0BAAkB,GAAG,EAAE,CAAC,CAAC;IACnD;IACA;IACA;IACA;IACA;IACA;IACA;IACA;IACA;AACWC;IACX,CAAC,UAAU,oBAAoB,EAAE;IACjC,IAAI,oBAAoB,CAAC,yBAAyB,CAAC,GAAG,yBAAyB;IAC/E,IAAI,oBAAoB,CAAC,eAAe,CAAC,GAAG,eAAe;IAC3D,IAAI,oBAAoB,CAAC,oBAAoB,CAAC,GAAG,oBAAoB;IACrE,IAAI,oBAAoB,CAAC,mBAAmB,CAAC,GAAG,mBAAmB;IACnE,IAAI,oBAAoB,CAAC,mBAAmB,CAAC,GAAG,mBAAmB;IACnE,IAAI,oBAAoB,CAAC,kBAAkB,CAAC,GAAG,kBAAkB;IACjE,CAAC,EAAEA,4BAAoB,KAAKA,4BAAoB,GAAG,EAAE,CAAC,CAAC;IACvD;IACA;IACA;IACA;IACA;IACA;IACA;IACA;IACA,IAAI,wBAAwB;IAC5B,CAAC,UAAU,wBAAwB,EAAE;IACrC,IAAI,wBAAwB,CAAC,KAAK,CAAC,GAAG,KAAK;IAC3C,IAAI,wBAAwB,CAAC,QAAQ,CAAC,GAAG,QAAQ;IACjD,IAAI,wBAAwB,CAAC,MAAM,CAAC,GAAG,MAAM;IAC7C,CAAC,EAAE,wBAAwB,KAAK,wBAAwB,GAAG,EAAE,CAAC,CAAC;;ICtD/D;IACA;IACA;IACA;IAEA;IACA;IACA;IACA;IACA;AACK,UAAC,SAAS,GAAGC,mBAAc,CAAC,WAAW,EAAE;IAC9C,IAAI,GAAG,EAAE,MAAM,mDAAe,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,IAAI,CAAC,CAAC,YAAY,EAAE,CAAC;IAChE,CAAC;;ICXD;IACA;IACA;IACA;IACA;IACA;IACA;IACA;IACA;IACO,MAAM,YAAY,SAASC,cAAS,CAAC;IAC5C,IAAI,WAAW,GAAG;IAClB,QAAQ,KAAK,EAAE;IACf,IAAI;IACJ;IACA;IACA;IACA;IACA;IACA;IACA;IACA;IACA,IAAI,MAAM,KAAK,GAAG;IAClB,QAAQ,MAAM,IAAI,CAAC,aAAa,CAAC,8CAA8C,CAAC;IAChF,IAAI;IACJ;IACA;IACA;IACA;IACA;IACA;IACA;IACA;IACA,IAAI,MAAM,gBAAgB,GAAG;IAC7B;IACA;IACA,QAAQ,MAAM,IAAI,CAAC,WAAW,CAAC,4DAA4D,CAAC;IAC5F,IAAI;IACJ;IACA;IACA;IACA;IACA;IACA;IACA;IACA;IACA,IAAI,MAAM,gBAAgB,GAAG;IAC7B,QAAQ,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE;IACjC,IAAI;IACJ;;;;;;;;;;;;;;;"}

package/ios/Sources/IntegrityPlugin/IntegrityCheckOptions.swift

@@ -0,0 +1,41 @@
+/**
+ Options controlling the behavior of `Integrity.check()`.
+
+ This model represents the JavaScript options object
+ passed to the native layer.
+
+ Design principles:
+ - Decodable from JS input
+ - Independent from Capacitor APIs
+ - Safe to use inside the native implementation layer
+ - Does NOT affect the public JS API shape
+
+ Notes:
+ - Default values are applied in the Plugin layer
+ - The Impl layer MUST NOT assume non-optional values
+ */
+struct IntegrityCheckOptions: Decodable {
+
+    /**
+     Desired strictness level for integrity checks.
+
+     Supported values:
+     - "basic": minimal checks (root/jailbreak, emulator)
+     - "standard": adds debug and instrumentation heuristics
+     - "strict": enables all available checks
+
+     Defaults to "basic" when not provided.
+     */
+    let level: String?
+
+    /**
+     Whether additional debug information should be
+     included in returned integrity signals.
+
+     When enabled, signals MAY include a human-readable
+     `description` field intended for diagnostics only.
+
+     Defaults to false.
+     */
+    let includeDebugInfo: Bool?
+}

package/ios/Sources/IntegrityPlugin/IntegrityConfig.swift

@@ -0,0 +1,135 @@
+import Foundation
+import Capacitor
+
+/**
+ Plugin configuration container.
+
+ This struct is responsible for reading and exposing
+ static configuration values defined under the
+ `Integrity` key in capacitor.config.ts.
+
+ Configuration rules:
+ - Read once during plugin initialization
+ - Treated as immutable runtime input
+ - Accessible only from native code
+ */
+public struct IntegrityConfig {
+
+    // MARK: - Configuration Keys
+
+    /**
+     Centralized definition of configuration keys.
+     Avoids string duplication and typos.
+     */
+    private struct Keys {
+        static let verboseLogging = "verboseLogging"
+        static let blockPage = "blockPage"
+        static let blockPageEnabled = "enabled"
+        static let blockPageUrl = "url"
+
+        // Jailbreak URL scheme probing (opt-in)
+        static let jailbreakUrlSchemes = "jailbreakUrlSchemes"
+        static let jailbreakUrlSchemesEnabled = "enabled"
+        static let jailbreakUrlSchemesList = "schemes"
+    }
+
+    // MARK: - Public Configuration Values
+
+    /**
+     Enables verbose native logging.
+
+     When enabled, the plugin prints additional
+     debug information to the Xcode console.
+
+     Default: false
+     */
+    public let verboseLogging: Bool
+
+    /**
+     Optional configuration for the integrity block page.
+     */
+    public let blockPage: BlockPageConfig?
+
+    // Optional jailbreak URL scheme probing configuration
+    public let jailbreakUrlSchemes: JailbreakUrlSchemeConfig?
+
+    // MARK: - Defaults
+
+    private static let defaultVerboseLogging: Bool = false
+    // private static let defaultBlockPage
+    // private static let defaultBlockPageEnabled
+    // private static let defaultBlockPageUrl
+
+    // MARK: - Initialization
+
+    /**
+     Initializes the configuration by reading values
+     from the Capacitor PluginConfig.
+
+     - Parameter plugin: The CAPPlugin instance used
+     to access typed configuration values.
+     */
+    init(plugin: CAPPlugin) {
+        let config = plugin.getConfig()
+
+        // Verbose logging flag
+        self.verboseLogging =
+            config.getBoolean(
+                Keys.verboseLogging,
+                Self.defaultVerboseLogging
+            )
+
+        // Block page configuration
+        if let blockPageConfig = config.getObject(Keys.blockPage) {
+
+            let enabled =
+                blockPageConfig[Keys.blockPageEnabled] as? Bool ?? false
+
+            let url =
+                blockPageConfig[Keys.blockPageUrl] as? String
+
+            self.blockPage = BlockPageConfig(
+                enabled: enabled,
+                url: url
+            )
+        } else {
+            self.blockPage = nil
+        }
+
+        // Jailbreak URL scheme probing configuration (opt-in)
+        if let schemeConfig = config.getObject(Keys.jailbreakUrlSchemes) {
+            let enabled =
+                schemeConfig[Keys.jailbreakUrlSchemesEnabled] as? Bool ?? false
+
+            let schemes =
+                schemeConfig[Keys.jailbreakUrlSchemesList] as? [String] ?? []
+
+            self.jailbreakUrlSchemes = JailbreakUrlSchemeConfig(
+                enabled: enabled,
+                schemes: schemes
+            )
+        } else {
+            self.jailbreakUrlSchemes = nil
+        }
+    }
+}
+
+// MARK: - Block Page Config
+
+/**
+ Configuration for the optional integrity block page.
+ */
+public struct BlockPageConfig {
+    public let enabled: Bool
+    public let url: String?
+}
+
+// MARK: - Jailbreak Url Scheme Config
+
+/**
+ Configuration for jailbreak URL scheme probing.
+ */
+public struct JailbreakUrlSchemeConfig {
+    public let enabled: Bool
+    public let schemes: [String]
+}

package/ios/Sources/IntegrityPlugin/IntegrityEntitlementChecks.swift

@@ -0,0 +1,58 @@
+import Foundation
+
+/**
+ Utility to verify the integrity of the application's entitlements
+ and provisioning profile.
+ */
+internal struct IntegrityEntitlementChecks {
+
+    /**
+     Reads the embedded.mobileprovision file to extract entitlements.
+     NOTE: This is a complex check as the file is a CMS/PKCS7 signed message.
+     We perform a simplified string-based heuristic for performance.
+     */
+    static func checkEntitlements() -> [String: Any]? {
+        guard let path = Bundle.main.path(forResource: "embedded", ofType: "mobileprovision") else {
+            // If the file is missing in a production build, it's a signal
+            return ["error": "Provisioning profile missing"]
+        }
+
+        do {
+            let data = try Data(contentsOf: URL(fileURLWithPath: path))
+            // Convert to string to look for specific entitlement keys
+            // In a real RASP implementation, we would parse the full ASN.1/XML structure
+            if let content = String(data: data, encoding: .ascii) {
+                let hasGetTaskAllow = content.contains("<key>get-task-allow</key>\n\t\t<true/>")
+
+                // Extraction of Keychain Access Groups (Heuristic)
+                // Re-signed apps will have different or missing access groups.
+                var keychainGroups: [String] = []
+                if content.contains("<key>keychain-access-groups</key>") {
+                    // Simple scan for common team-prefixed group patterns
+                    let pattern = "<string>$(AppIdentifierPrefix)[^<]+"
+                    if let regex = try? NSRegularExpression(pattern: pattern, options: []) {
+                        let nsString = content as NSString
+                        let results = regex.matches(
+                            in: content,
+                            options: [],
+                            range: NSRange(location: 0, length: nsString.length)
+                        )
+                        keychainGroups = results.map { nsString.substring(with: $0.range)
+                            .replacingOccurrences(of: "<string>$(AppIdentifierPrefix)", with: "") }
+                    }
+                }
+
+                return [
+                    "debuggable": hasGetTaskAllow,
+                    "provisioning_present": true,
+                    "keychain_groups_found": keychainGroups.count,
+                    "has_keychain_access": !keychainGroups.isEmpty
+                ]
+            }
+        } catch {
+            return ["error": "Failed to read profile"]
+        }
+
+        return nil
+    }
+}

package/ios/Sources/IntegrityPlugin/IntegrityError.swift

@@ -0,0 +1,49 @@
+import Foundation
+
+/**
+ Native error model for the Integrity plugin (iOS).
+
+ This enum represents all error categories that can be
+ produced by the native implementation layer.
+
+ Architectural rules:
+ - Must NOT reference Capacitor
+ - Must NOT reference JavaScript
+ - Must be throwable from the Impl layer
+ - Mapping to JS-facing error codes happens ONLY in the Plugin layer
+ */
+enum IntegrityError: Error {
+
+    /// Feature or capability is not available on this device or configuration
+    case unavailable(String)
+
+    /// Required permission was denied or not granted
+    case permissionDenied(String)
+
+    /// Plugin failed to initialize or perform a required operation
+    case initFailed(String)
+
+    /// Invalid or unsupported input was provided
+    case unknownType(String)
+
+    // MARK: - Human-readable message
+
+    /**
+     Human-readable error message.
+
+     This message is intended to be passed verbatim
+     to JavaScript via `call.reject(message, code)`.
+     */
+    var message: String {
+        switch self {
+        case .unavailable(let message):
+            return message
+        case .permissionDenied(let message):
+            return message
+        case .initFailed(let message):
+            return message
+        case .unknownType(let message):
+            return message
+        }
+    }
+}