@classytic/social 0.1.0

package/dist/schemas/index.d.mts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.mts","names":[],"sources":["../../src/schemas/shared.ts","../../src/schemas/youtube.ts","../../src/schemas/tiktok.ts","../../src/schemas/instagram.ts","../../src/schemas/facebook.ts","../../src/schemas/linkedin.ts","../../src/schemas/telegram.ts","../../src/schemas/whatsapp.ts","../../src/schemas/twitter.ts","../../src/schemas/reddit.ts","../../src/schemas/index.ts"],"mappings":";;;;cAWa,cAAA,EAAc,CAAA,CAAA,SAAA;;cAGd,SAAA,EAAS,CAAA,CAAA,MAAA;AAAA,cAET,WAAA,EAAW,CAAA,CAAA,QAAA,WAAA,CAAA,CAAA,cAAA,EAAA,CAAA,CAAA,OAAA;AAAA,cAGX,YAAA,EAAY,CAAA,CAAA,OAAA;;;;;KACb,YAAA,GAAe,CAAA,CAAE,KAAA,QAAa,YAAA;AAAA,cAI7B,iBAAA,EAAiB,CAAA,CAAA,SAAA;;;;;;;KAQlB,gBAAA,GAAmB,CAAA,CAAE,KAAA,QAAa,iBAAA;AAAA,cAIjC,iBAAA,EAAiB,CAAA,CAAA,SAAA;;;;;;AAjB9B;;;UA6BiB,SAAA;EACf,IAAA;EACA,WAAA;EACA,IAAA;EACA,QAAA;EACA,WAAA;EACA,WAAA;EACA,OAAA;IAAY,KAAA;IAAe,KAAA;EAAA;AAAA;;;;;;AA/B7B;;;;;iBA8CgB,gBAAA,WAA2B,CAAA,CAAE,SAAA,CAAA,CAC3C,MAAA,EAAQ,CAAA,EACR,SAAA,GAAW,OAAA,CAAQ,MAAA,OAAa,CAAA,CAAE,KAAA,CAAM,CAAA,YAAa,OAAA,CAAQ,SAAA,MAC5D,SAAA;AAAA;;;cC3DU,wBAAA,EAAwB,CAAA,CAAA,SAAA;;;;;KAKzB,uBAAA,GAA0B,CAAA,CAAE,KAAA,QAAa,wBAAA;AAAA,cAExC,2BAAA,EAA2B,CAAA,CAAA,SAAA;;;;;;;;;;;;cAM3B,cAAA,EAAc,CAAA,CAAA,OAAA;;;;;cAEd,yBAAA,EAAyB,CAAA,CAAA,SAAA;;;;;;;;;;;;;;;KAc1B,wBAAA,GAA2B,CAAA,CAAE,KAAA,QAAa,yBAAA;AAAA,cAIzC,wBAAA,EAAwB,CAAA,CAAA,SAAA;;;;;;;;;;;cAUxB,uBAAA,EAAuB,CAAA,CAAA,SAAA;;;;;;;;;;;;;cAUvB,mBAAA,EAAqB,oBAAA;AAAA,cAerB,WAAA;EAAA;;;;;;;;;;;;;;;;;cCvEA,uBAAA,EAAuB,CAAA,CAAA,SAAA;;;;;KAKxB,sBAAA,GAAyB,CAAA,CAAE,KAAA,QAAa,uBAAA;AAAA,cAEvC,0BAAA,EAA0B,CAAA,CAAA,SAAA;;;;;;;;;;;;cAM1B,kBAAA,EAAkB,CAAA,CAAA,OAAA;;;;;;cAOlB,aAAA,EAAa,CAAA,CAAA,OAAA;;;;;;;cAIb,uBAAA,EAAuB,CAAA,CAAA,SAAA;;;;;;;;;;;;;;;;;;cAevB,uBAAA,EAAuB,CAAA,CAAA,SAAA;;;;;;;;;;;;cASvB,sBAAA,EAAsB,CAAA,CAAA,SAAA;;;;cAOtB,kBAAA,EAAoB,oBAAA;AAAA,cAapB,UAAA;EAAA;;;;;;;;;;;;;;;;;;;;cCrEA,0BAAA,EAA0B,CAAA,CAAA,SAAA;;;;;KAK3B,yBAAA,GAA4B,CAAA,CAAE,KAAA,QAAa,0BAAA;AAAA,cAE1C,6BAAA,EAA6B,CAAA,CAAA,SAAA;;;;;;;;;;;;cAM7B,0BAAA,EAA0B,CAAA,CAAA,SAAA;;;;;;;cAQ1B,0BAAA,EAA0B,CAAA,CAAA,SAAA;;;;;cAM1B,2BAAA,EAA2B,CAAA,CAAA,SAAA;;;;;;;cAK3B,6BAAA,EAA6B,CAAA,CAAA,SAAA;;;;;;;;;;;cAQ7B,wBAAA,EAAwB,CAAA,CAAA,SAAA;;;;cAOxB,qBAAA,EAAuB,oBAAA;AAAA,cAavB,aAAA;EAAA;;;;;;;;;;;;;;;;;;;;;;;;cC5DA,yBAAA,EAAyB,CAAA,CAAA,SAAA;;;;;KAK1B,wBAAA,GAA2B,CAAA,CAAE,KAAA,QAAa,yBAAA;AAAA,cAEzC,4BAAA,EAA4B,CAAA,CAAA,SAAA;;;;;;;;;;;;cAS5B,wBAAA,EAAwB,CAAA,CAAA,SAAA;;;;cAKxB,4BAAA,EAA4B,CAAA,CAAA,SAAA;;;;;cAM5B,6BAAA,EAA6B,CAAA,CAAA,SAAA;;;;;cAM7B,yBAAA,EAAyB,CAAA,CAAA,SAAA;;;;;;cASzB,kBAAA,EAAkB,CAAA,CAAA,SAAA;;;;cAKlB,sBAAA,EAAsB,CAAA,CAAA,OAAA;;;;;cAItB,oBAAA,EAAsB,oBAAA;AAAA,cAatB,YAAA;EAAA;;;;;;;;;;;;;;;;;;;;;cChEA,yBAAA,EAAyB,CAAA,CAAA,SAAA;;;;;KAK1B,wBAAA,GAA2B,CAAA,CAAE,KAAA,QAAa,yBAAA;AAAA,cAEzC,4BAAA,EAA4B,CAAA,CAAA,SAAA;;;;;;;;;;;;cAM5B,kBAAA,EAAkB,CAAA,CAAA,OAAA;;;;;;cAClB,sBAAA,EAAsB,CAAA,CAAA,OAAA;;;;;cAGtB,WAAA,EAAW,CAAA,CAAA,SAAA;AAAA,cAOX,sBAAA,EAAsB,CAAA,CAAA,SAAA;;;;;;;;;;cAMtB,yBAAA,EAAyB,CAAA,CAAA,SAAA;;;;;;;;;;;;;cASzB,uBAAA,EAAuB,CAAA,CAAA,SAAA;;;;;;;;;;;;cAWvB,yBAAA,EAAyB,CAAA,CAAA,SAAA;;;;;;;;;;;cASzB,oBAAA,EAAsB,oBAAA;AAAA,cAatB,YAAA;EAAA;;;;;;;;;;;;;;;;;;;;cCrEA,yBAAA,EAAyB,CAAA,CAAA,SAAA;;;;KAM1B,wBAAA,GAA2B,CAAA,CAAE,KAAA,QAAa,yBAAA;AAAA,cAUzC,yBAAA,EAAyB,CAAA,CAAA,SAAA;;;;;;;;;;;;cASzB,uBAAA,EAAuB,CAAA,CAAA,SAAA;;;;;;;;;;cAOvB,uBAAA,EAAuB,CAAA,CAAA,SAAA;;;;;;;;;;;;;;cAWvB,0BAAA,EAA0B,CAAA,CAAA,SAAA;;;;;;;;;;cAO1B,uBAAA,EAAuB,CAAA,CAAA,qBAAA,EAAA,CAAA,CAAA,SAAA;;;;;;;;;;cAcvB,4BAAA,EAA4B,CAAA,CAAA,SAAA;;;;;;;;;;;;;cAO5B,oBAAA,EAAsB,oBAAA;AAAA,cAatB,YAAA;EAAA;;;;;;;;;;;;;;;;;;;;;;;cCvFA,yBAAA,EAAyB,CAAA,CAAA,SAAA;;;;;KAK1B,wBAAA,GAA2B,CAAA,CAAE,KAAA,QAAa,yBAAA;AAAA,cAQzC,yBAAA,EAAyB,CAAA,CAAA,SAAA;;;;;cAMzB,6BAAA,EAA6B,CAAA,CAAA,SAAA;;;;;;;;;;;;;;cAU7B,0BAAA,EAA0B,CAAA,CAAA,SAAA;;;;;;;;;;;;cAY1B,wBAAA,EAAwB,CAAA,CAAA,OAAA;;;;;cAExB,4BAAA,EAA4B,CAAA,CAAA,SAAA;;;;;;;;;;;;;;;;;;cAY5B,oBAAA,EAAsB,oBAAA;AAAA,cAatB,YAAA;EAAA;;;;;;;;;;;cCpEA,wBAAA,EAAwB,CAAA,CAAA,SAAA;;;;;KAKzB,uBAAA,GAA0B,CAAA,CAAE,KAAA,QAAa,wBAAA;AAAA,cAExC,2BAAA,EAA2B,CAAA,CAAA,SAAA;;;;;;;;;;;;cAM3B,oBAAA,EAAoB,CAAA,CAAA,OAAA;;;;;cAEpB,wBAAA,EAAwB,CAAA,CAAA,SAAA;;;;;;;;;;;;;;cAcxB,yBAAA,EAAyB,CAAA,CAAA,SAAA;;;;;;;cAQzB,mBAAA,EAAmB,CAAA,CAAA,SAAA;;;;cAOnB,mBAAA,EAAqB,oBAAA;AAAA,cAarB,WAAA;EAAA;;;;;;;;;;;;;;;;;;;;cCzDA,uBAAA,EAAuB,CAAA,CAAA,SAAA;;;;;;KAOxB,sBAAA,GAAyB,CAAA,CAAE,KAAA,QAAa,uBAAA;AAAA,cAEvC,0BAAA,EAA0B,CAAA,CAAA,SAAA;;;;;;;;;;;;;cAa1B,cAAA,EAAc,CAAA,CAAA,OAAA;;;;;;cAEd,sBAAA,EAAsB,CAAA,CAAA,qBAAA,EAAA,CAAA,CAAA,SAAA;;;;;;;;;;;;;;;;;;;;;cA2BtB,yBAAA,EAAyB,CAAA,CAAA,SAAA;;;;cAKzB,gBAAA,EAAgB,CAAA,CAAA,SAAA;;;;cAQhB,cAAA,EAAc,CAAA,CAAA,OAAA;;;;;;;cAEd,qBAAA,EAAqB,CAAA,CAAA,SAAA;;;;;;;;;;;;;cAQrB,kBAAA,EAAkB,CAAA,CAAA,SAAA;;;;;;;;;;;;cASlB,kBAAA,EAAoB,oBAAA;AAAA,cAapB,UAAA;EAAA;;oHT1ED;EAAA;;;;;;;cUuBC,eAAA,EAAiB,MAAA,SAAe,oBAAA;;iBAa7B,uBAAA,iBAAwC,oBAAA,CAAA,CACtD,GAAA,EAAK,CAAA,EACL,KAAA,GAAO,oBAAA,CAAqB,CAAA"}

package/dist/schemas/index.mjs

@@ -0,0 +1,31 @@
+import { a as PrivacyLevel, i as OAuthTokensSchema, n as ISODateTime, o as PublicUrl, r as NonEmptyString, s as fieldsFromSchema, t as ClientCredentials } from "../shared-Fvc6xQku.mjs";
+import { i as twitter_exports, n as twitterCapabilities, r as twitterInfo, t as TwitterCredentialsSchema } from "../twitter-BC22zfuc.mjs";
+import { i as facebook_exports, n as facebookCapabilities, r as facebookInfo, t as FacebookCredentialsSchema } from "../facebook-l_4CghaA.mjs";
+import { i as linkedin_exports, n as linkedinCapabilities, r as linkedinInfo, t as LinkedInCredentialsSchema } from "../linkedin-70whtVKa.mjs";
+import { i as reddit_exports, n as redditCapabilities, r as redditInfo, t as RedditCredentialsSchema } from "../reddit-B10kS4Se.mjs";
+import { i as instagram_exports, n as instagramCapabilities, r as instagramInfo, t as InstagramCredentialsSchema } from "../instagram-BGaeUFU2.mjs";
+import { i as youtube_exports, n as youtubeCapabilities, r as youtubeInfo, t as YouTubeCredentialsSchema } from "../youtube-Bs0fdY7H.mjs";
+import { i as tiktok_exports, n as tiktokCapabilities, r as tiktokInfo, t as TikTokCredentialsSchema } from "../tiktok-B_bMk4G-.mjs";
+import { i as telegram_exports, n as telegramCapabilities, r as telegramInfo, t as TelegramCredentialsSchema } from "../telegram-FaUHpZgB.mjs";
+import { i as whatsapp_exports, n as whatsappCapabilities, r as whatsappInfo, t as WhatsAppCredentialsSchema } from "../whatsapp-CFp7ryR4.mjs";
+
+//#region src/schemas/index.ts
+const allCapabilities = {
+	youtube: youtubeCapabilities,
+	tiktok: tiktokCapabilities,
+	instagram: instagramCapabilities,
+	facebook: facebookCapabilities,
+	linkedin: linkedinCapabilities,
+	telegram: telegramCapabilities,
+	whatsapp: whatsappCapabilities,
+	twitter: twitterCapabilities,
+	reddit: redditCapabilities
+};
+/** Convenience: list provider names that have a given capability. */
+function providersWithCapability(key, value = true) {
+	return Object.entries(allCapabilities).filter(([, caps]) => caps[key] === value).map(([name]) => name);
+}
+
+//#endregion
+export { ClientCredentials, facebook_exports as Facebook, FacebookCredentialsSchema, ISODateTime, instagram_exports as Instagram, InstagramCredentialsSchema, linkedin_exports as LinkedIn, LinkedInCredentialsSchema, NonEmptyString, OAuthTokensSchema, PrivacyLevel, PublicUrl, reddit_exports as Reddit, RedditCredentialsSchema, telegram_exports as Telegram, TelegramCredentialsSchema, tiktok_exports as TikTok, TikTokCredentialsSchema, twitter_exports as Twitter, TwitterCredentialsSchema, whatsapp_exports as WhatsApp, WhatsAppCredentialsSchema, youtube_exports as YouTube, YouTubeCredentialsSchema, allCapabilities, facebookCapabilities, facebookInfo, fieldsFromSchema, instagramCapabilities, instagramInfo, linkedinCapabilities, linkedinInfo, providersWithCapability, redditCapabilities, redditInfo, telegramCapabilities, telegramInfo, tiktokCapabilities, tiktokInfo, twitterCapabilities, twitterInfo, whatsappCapabilities, whatsappInfo, youtubeCapabilities, youtubeInfo };
+//# sourceMappingURL=index.mjs.map

package/dist/schemas/index.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.mjs","names":[],"sources":["../../src/schemas/index.ts"],"sourcesContent":["/**\n * `@classytic/social/schemas`\n * ===========================\n * Authoritative zod v4 schemas for every provider — credentials, request inputs,\n * capability declarations. Consumers (e.g., `@classytic/arc`) import from this\n * subpath to:\n *   - Validate input at API boundaries\n *   - Render UI forms (via `fieldsFromSchema()` or `z.toJSONSchema()`)\n *   - Generate OpenAPI/MCP tool contracts\n *   - Filter providers by capability (`{ posting: true }`, `{ scheduling: true }`)\n *\n * Example:\n *\n *   import { YouTubeUploadParamsSchema, youtubeCapabilities } from '@classytic/social/schemas';\n *   const parsed = YouTubeUploadParamsSchema.parse(input);\n *   const json = z.toJSONSchema(YouTubeUploadParamsSchema);\n */\n\n// Shared building blocks\nexport * from './shared.js';\n\n// Per-provider schemas (re-exported under namespaces to avoid name clashes)\nexport * as YouTube from './youtube.js';\nexport * as TikTok from './tiktok.js';\nexport * as Instagram from './instagram.js';\nexport * as Facebook from './facebook.js';\nexport * as LinkedIn from './linkedin.js';\nexport * as Telegram from './telegram.js';\nexport * as WhatsApp from './whatsapp.js';\nexport * as Twitter from './twitter.js';\nexport * as Reddit from './reddit.js';\n\n// Direct re-exports for the most-used schemas (capabilities map + credentials)\nexport { youtubeCapabilities, YouTubeCredentialsSchema, youtubeInfo } from './youtube.js';\nexport { tiktokCapabilities, TikTokCredentialsSchema, tiktokInfo } from './tiktok.js';\nexport { instagramCapabilities, InstagramCredentialsSchema, instagramInfo } from './instagram.js';\nexport { facebookCapabilities, FacebookCredentialsSchema, facebookInfo } from './facebook.js';\nexport { linkedinCapabilities, LinkedInCredentialsSchema, linkedinInfo } from './linkedin.js';\nexport { telegramCapabilities, TelegramCredentialsSchema, telegramInfo } from './telegram.js';\nexport { whatsappCapabilities, WhatsAppCredentialsSchema, whatsappInfo } from './whatsapp.js';\nexport { twitterCapabilities, TwitterCredentialsSchema, twitterInfo } from './twitter.js';\nexport { redditCapabilities, RedditCredentialsSchema, redditInfo } from './reddit.js';\n\n// Capability map — keyed by provider name\nimport type { ProviderCapabilities } from '../common/contracts.js';\nimport { youtubeCapabilities } from './youtube.js';\nimport { tiktokCapabilities } from './tiktok.js';\nimport { instagramCapabilities } from './instagram.js';\nimport { facebookCapabilities } from './facebook.js';\nimport { linkedinCapabilities } from './linkedin.js';\nimport { telegramCapabilities } from './telegram.js';\nimport { whatsappCapabilities } from './whatsapp.js';\nimport { twitterCapabilities } from './twitter.js';\nimport { redditCapabilities } from './reddit.js';\n\nexport const allCapabilities: Record<string, ProviderCapabilities> = {\n  youtube: youtubeCapabilities,\n  tiktok: tiktokCapabilities,\n  instagram: instagramCapabilities,\n  facebook: facebookCapabilities,\n  linkedin: linkedinCapabilities,\n  telegram: telegramCapabilities,\n  whatsapp: whatsappCapabilities,\n  twitter: twitterCapabilities,\n  reddit: redditCapabilities,\n};\n\n/** Convenience: list provider names that have a given capability. */\nexport function providersWithCapability<K extends keyof ProviderCapabilities>(\n  key: K,\n  value: ProviderCapabilities[K] = true as ProviderCapabilities[K],\n): string[] {\n  return Object.entries(allCapabilities)\n    .filter(([, caps]) => caps[key] === value)\n    .map(([name]) => name);\n}\n"],"mappings":";;;;;;;;;;;;AAuDA,MAAa,kBAAwD;CACnE,SAAS;CACT,QAAQ;CACR,WAAW;CACX,UAAU;CACV,UAAU;CACV,UAAU;CACV,UAAU;CACV,SAAS;CACT,QAAQ;CACT;;AAGD,SAAgB,wBACd,KACA,QAAiC,MACvB;AACV,QAAO,OAAO,QAAQ,gBAAgB,CACnC,QAAQ,GAAG,UAAU,KAAK,SAAS,MAAM,CACzC,KAAK,CAAC,UAAU,KAAK"}

package/dist/security-BXhfebWm.d.mts

@@ -0,0 +1,338 @@
+import { o as OAuthTokens } from "./base-DBtKFiSX.mjs";
+
+//#region src/common/meta.d.ts
+/**
+ * Shared Meta Graph API constants for Facebook, Instagram, and WhatsApp.
+ * Update META_GRAPH_VERSION here to upgrade all three providers at once.
+ *
+ * @see packages/social/wiki/facebook.md
+ * @see packages/social/wiki/instagram.md
+ * @see packages/social/wiki/whatsapp.md
+ */
+declare const META_GRAPH_VERSION = "v25.0";
+declare const META_GRAPH_BASE = "https://graph.facebook.com/v25.0";
+declare const META_GRAPH_VIDEO_BASE = "https://graph-video.facebook.com/v25.0";
+declare const META_AUTH_URL = "https://www.facebook.com/v25.0/dialog/oauth";
+declare const META_TOKEN_URL = "https://graph.facebook.com/v25.0/oauth/access_token";
+//#endregion
+//#region src/errors.d.ts
+/**
+ * Social Provider Error
+ * =====================
+ * Standalone error class for social media provider failures.
+ * Mirrors the behavior of ProviderError but with zero app dependencies.
+ *
+ * Usage:
+ *   throw new SocialError('youtube', 'Upload failed', { errorCode: 403, retryable: false });
+ *   throw new SocialError('telegram', 'Rate limited', { retryable: true, retryAfter: 30 });
+ */
+interface SocialErrorOptions {
+  statusCode?: number;
+  errorCode?: string | number | null;
+  hint?: string | null;
+  retryable?: boolean | null;
+  retryAfter?: number | null;
+  originalError?: Error | null;
+  [key: string]: unknown;
+}
+declare class SocialError extends Error {
+  readonly provider: string;
+  readonly statusCode: number;
+  readonly status: string;
+  readonly isOperational: boolean;
+  readonly errorCode: string | number | null;
+  readonly hint: string | null;
+  readonly retryable: boolean | null;
+  readonly retryAfter: number | null;
+  readonly originalError: Error | null;
+  constructor(provider: string, message: string, options?: SocialErrorOptions | Error);
+}
+//#endregion
+//#region src/common/http.d.ts
+type HttpMethod = 'GET' | 'POST' | 'PUT' | 'PATCH' | 'DELETE';
+type ParseError<E> = (raw: unknown, status: number, headers: Headers) => {
+  message: string;
+  errorCode?: string | number | null;
+  hint?: string | null;
+  retryable?: boolean | null;
+  retryAfter?: number | null;
+  extras?: Record<string, unknown>;
+} | null;
+interface RetryConfig {
+  /** Max retry attempts (in addition to the initial request). Default 0. */
+  attempts: number;
+  /** HTTP status codes that should trigger a retry. Default [429, 502, 503, 504]. */
+  on?: number[];
+  /** Base delay in ms before exponential backoff. Default 500. */
+  baseDelayMs?: number;
+  /** Cap on backoff delay. Default 30_000. */
+  maxDelayMs?: number;
+}
+interface HttpRequestOptions<E = unknown> {
+  method?: HttpMethod;
+  url: string;
+  query?: Record<string, string | number | boolean | undefined | null>;
+  /** JSON body. Mutually exclusive with `form`, `urlencoded`, `binary`, `text`. */
+  json?: unknown;
+  /** multipart/form-data body. */
+  form?: FormData;
+  /** application/x-www-form-urlencoded body. */
+  urlencoded?: URLSearchParams | Record<string, string>;
+  /** Raw binary body. */
+  binary?: ArrayBuffer | Uint8Array | Buffer;
+  /** Raw text body. */
+  text?: string;
+  headers?: Record<string, string>;
+  /** Convenience: sets `Authorization: Bearer <token>`. */
+  bearer?: string;
+  /** Request timeout in ms. Default 30_000. Use 0 to disable. */
+  timeout?: number;
+  /** Retry policy. Default no retries. */
+  retry?: RetryConfig;
+  /** Provider-specific error parser invoked when the response is not OK. */
+  parseError?: ParseError<E>;
+  /** AbortSignal for caller-driven cancellation. */
+  signal?: AbortSignal;
+}
+interface HttpResponse<T> {
+  data: T;
+  status: number;
+  headers: Headers;
+}
+/**
+ * Core request function. Throws SocialError on failure. Returns parsed body on success.
+ *
+ * @param provider — provider name used for error attribution
+ * @param opts — request options
+ */
+declare function httpRequest<T = unknown, E = unknown>(provider: string, opts: HttpRequestOptions<E>): Promise<HttpResponse<T>>;
+//#endregion
+//#region src/common/oauth/pkce.d.ts
+/**
+ * PKCE (Proof Key for Code Exchange) helpers for OAuth 2.0.
+ *
+ * @see https://datatracker.ietf.org/doc/html/rfc7636
+ */
+/**
+ * Generate a cryptographically random code verifier.
+ * Length: 43 characters (RFC 7636 §4.1 allows 43-128).
+ */
+declare function generateCodeVerifier(length?: number): string;
+/**
+ * Generate the SHA-256 challenge for a verifier (PKCE method `S256`).
+ */
+declare function generateCodeChallenge(verifier: string): Promise<string>;
+/**
+ * Default in-memory verifier store with TTL-based eviction.
+ *
+ * **Note:** This is a single-process default. In multi-instance deployments,
+ * persist verifiers alongside `state` (e.g., in a session, Redis, or DB) and
+ * pass them back to `exchangeCode`. Do NOT rely on this store across servers.
+ */
+declare class PkceStore {
+  private ttlMs;
+  private entries;
+  constructor(ttlMs?: number);
+  set(state: string, verifier: string): void;
+  /** Returns and removes the verifier (single-use semantics). */
+  take(state: string): string | undefined;
+  delete(state: string): void;
+  size(): number;
+  private evictExpired;
+}
+//#endregion
+//#region src/common/oauth/oauth2.d.ts
+interface OAuth2ExchangeParams {
+  /** Token endpoint URL. */
+  tokenUrl: string;
+  /** Authorization code from the redirect callback. */
+  code: string;
+  clientId: string;
+  /** Required for confidential clients; sent via Basic auth or body. */
+  clientSecret?: string;
+  redirectUri: string;
+  /** PKCE verifier (S256 or plain). Required by Twitter, TikTok, etc. */
+  codeVerifier?: string;
+  /** Use HTTP Basic auth for client credentials (Reddit, Twitter confidential). */
+  basicAuth?: boolean;
+  /** Additional body params to merge in. */
+  extra?: Record<string, string>;
+  /** Additional headers (e.g., User-Agent for Reddit). */
+  headers?: Record<string, string>;
+}
+interface OAuth2RefreshParams {
+  tokenUrl: string;
+  refreshToken: string;
+  clientId: string;
+  clientSecret?: string;
+  basicAuth?: boolean;
+  extra?: Record<string, string>;
+  headers?: Record<string, string>;
+}
+/**
+ * Exchange an authorization code for an access token.
+ *
+ * The body is `application/x-www-form-urlencoded` per RFC 6749 §4.1.3. Client
+ * credentials may be sent in the body (`client_secret`) or via Basic auth — the
+ * latter is required by some providers (Reddit). Use `basicAuth: true` to opt in.
+ *
+ * @throws SocialError on HTTP failure (rate-limit, server error, parse error).
+ */
+declare function oauth2ExchangeCode(provider: string, params: OAuth2ExchangeParams): Promise<OAuthTokens>;
+/**
+ * Refresh an access token using a refresh token (RFC 6749 §6).
+ */
+declare function oauth2RefreshToken(provider: string, params: OAuth2RefreshParams): Promise<OAuthTokens>;
+/**
+ * Build an OAuth 2.0 authorization URL (RFC 6749 §4.1.1).
+ */
+declare function buildAuthUrl(authUrl: string, params: {
+  clientId: string;
+  redirectUri: string;
+  state: string;
+  scope: string | string[]; /** Default `code` for authorization-code grant. */
+  responseType?: string; /** Scope separator — space (default) or comma (Facebook). */
+  scopeSeparator?: ' ' | ','; /** PKCE challenge (S256 or plain). */
+  codeChallenge?: string;
+  codeChallengeMethod?: 'S256' | 'plain'; /** Provider-specific extras (access_type, prompt, etc.). */
+  extra?: Record<string, string>;
+}): string;
+//#endregion
+//#region src/common/oauth/meta.d.ts
+declare const IG_REFRESH_URL = "https://graph.instagram.com/refresh_access_token";
+interface MetaExchangeParams {
+  graphVersion: string;
+  clientId: string;
+  clientSecret: string;
+  redirectUri: string;
+  code: string;
+}
+/**
+ * Two-step Meta token exchange: code → short-lived → long-lived.
+ *
+ * @param provider — `'facebook'` or `'instagram'` (used for error attribution).
+ * @returns Long-lived OAuth tokens. `refresh_token` is set to `access_token`
+ *   because Meta uses the access token itself for refresh.
+ */
+declare function metaExchangeLongLived(provider: 'facebook' | 'instagram', params: MetaExchangeParams): Promise<OAuthTokens>;
+/**
+ * Refresh a long-lived Facebook user token.
+ * Page tokens derived from the long-lived user token never expire.
+ */
+declare function metaRefreshLongLivedFacebook(params: {
+  graphVersion: string;
+  clientId: string;
+  clientSecret: string;
+  refreshToken: string;
+}): Promise<OAuthTokens>;
+/**
+ * Refresh a long-lived Instagram token (must be ≥24h old, not yet expired).
+ */
+declare function metaRefreshLongLivedInstagram(params: {
+  refreshToken: string;
+}): Promise<OAuthTokens>;
+/**
+ * Parser for Graph API error envelope: `{ error: { message, code, error_subcode, type, fbtrace_id } }`.
+ */
+declare function parseGraphError(raw: unknown): ReturnType<NonNullable<Parameters<typeof httpRequest>[1]['parseError']>>;
+//#endregion
+//#region src/common/paginate.d.ts
+/**
+ * Generic pagination helper.
+ *
+ * Wraps a per-page fetcher in an `AsyncIterable` so consumers can do:
+ *
+ *   for await (const post of paginate(fetchPage)) { ... }
+ *
+ * Use `.toArray()` for the simple case, or `.take(n)` to bound results.
+ */
+interface Page<T> {
+  items: T[];
+  /** Opaque cursor for the next page, or `undefined` when exhausted. */
+  nextCursor?: string;
+}
+interface PaginateOptions {
+  /** Hard cap on items returned across pages. */
+  maxItems?: number;
+  /** Hard cap on page fetches (defense against infinite loops). Default 100. */
+  maxPages?: number;
+}
+interface PaginatedIterable<T> extends AsyncIterable<T> {
+  toArray(): Promise<T[]>;
+  take(n: number): Promise<T[]>;
+}
+declare function paginate<T>(fetchPage: (cursor: string | undefined) => Promise<Page<T>>, opts?: PaginateOptions): PaginatedIterable<T>;
+//#endregion
+//#region src/utils/polling.d.ts
+/**
+ * Generic Polling Utility
+ * =======================
+ * Reusable poll-until-complete pattern for platform API status checks.
+ *
+ * Used by Instagram (container status) and TikTok (publish status).
+ *
+ * Usage:
+ *   import { pollUntilComplete } from '../utils/polling.js';
+ *
+ *   const result = await pollUntilComplete({
+ *     fn: () => fetchStatus(id),
+ *     isComplete: (data) => data.status === 'FINISHED',
+ *     getError: (data) => data.status === 'FAILED' ? data.reason : null,
+ *     label: 'Instagram container',
+ *   });
+ */
+interface PollOptions<T> {
+  /** Async function to call each iteration. Receives attempt index. */
+  fn: (attempt: number) => Promise<T>;
+  /** Predicate: return true when the operation is complete. */
+  isComplete: (data: T) => boolean;
+  /** Return an Error, string message, or null to keep polling. */
+  getError: (data: T) => Error | string | null;
+  /** Max polling iterations before timeout (default 30). */
+  maxAttempts?: number;
+  /** Delay between polls in milliseconds (default 5000). */
+  intervalMs?: number;
+  /** Label for timeout warning logs (default 'polling'). */
+  label?: string;
+}
+/**
+ * Poll an async function until a completion or failure condition is met.
+ *
+ * @returns The data from `fn()` when `isComplete` returns true, or null on timeout.
+ * @throws Whatever `getError` returns (wrapped in Error if string).
+ */
+declare function pollUntilComplete<T>({
+  fn,
+  isComplete,
+  getError,
+  maxAttempts,
+  intervalMs,
+  label
+}: PollOptions<T>): Promise<T | null>;
+//#endregion
+//#region src/common/security.d.ts
+/**
+ * Security helpers used at provider boundaries.
+ */
+/**
+ * Validate that a URL is safe to fetch on the server side.
+ *
+ * Rejects:
+ * - Non-HTTP(S) schemes (file://, data://, gopher://, etc.)
+ * - Localhost / loopback (127.0.0.0/8, ::1)
+ * - RFC 1918 private ranges (10/8, 172.16/12, 192.168/16)
+ * - Link-local (169.254/16) — blocks AWS/GCP metadata endpoints
+ * - Multicast / reserved blocks
+ *
+ * **Note:** This is a literal-IP guard; it does not resolve DNS. For complete
+ * protection (DNS-rebinding), validate again after resolution at fetch time.
+ */
+declare function assertPublicHttpUrl(provider: string, raw: string, context?: string): URL;
+/**
+ * Redact secrets from arbitrary objects for safe logging.
+ * Replaces values for keys matching common secret patterns with `'[REDACTED]'`.
+ */
+declare function redactSecrets(input: unknown): unknown;
+//#endregion
+export { SocialErrorOptions as A, HttpMethod as C, RetryConfig as D, ParseError as E, META_TOKEN_URL as F, META_GRAPH_BASE as M, META_GRAPH_VERSION as N, httpRequest as O, META_GRAPH_VIDEO_BASE as P, generateCodeVerifier as S, HttpResponse as T, buildAuthUrl as _, Page as a, PkceStore as b, paginate as c, metaExchangeLongLived as d, metaRefreshLongLivedFacebook as f, OAuth2RefreshParams as g, OAuth2ExchangeParams as h, pollUntilComplete as i, META_AUTH_URL as j, SocialError as k, IG_REFRESH_URL as l, parseGraphError as m, redactSecrets as n, PaginateOptions as o, metaRefreshLongLivedInstagram as p, PollOptions as r, PaginatedIterable as s, assertPublicHttpUrl as t, MetaExchangeParams as u, oauth2ExchangeCode as v, HttpRequestOptions as w, generateCodeChallenge as x, oauth2RefreshToken as y };
+//# sourceMappingURL=security-BXhfebWm.d.mts.map

package/dist/security-BXhfebWm.d.mts.map

@@ -0,0 +1 @@
+{"version":3,"file":"security-BXhfebWm.d.mts","names":[],"sources":["../src/common/meta.ts","../src/errors.ts","../src/common/http.ts","../src/common/oauth/pkce.ts","../src/common/oauth/oauth2.ts","../src/common/oauth/meta.ts","../src/common/paginate.ts","../src/utils/polling.ts","../src/common/security.ts"],"mappings":";;;;;;AASA;;;;;cAAa,kBAAA;AAAA,cAEA,eAAA;AAAA,cACA,qBAAA;AAAA,cACA,aAAA;AAAA,cACA,cAAA;;;;;;AALb;;;;;AAEA;;UCAiB,kBAAA;EACf,UAAA;EACA,SAAA;EACA,IAAA;EACA,SAAA;EACA,UAAA;EACA,aAAA,GAAgB,KAAA;EAAA,CACf,GAAA;AAAA;AAAA,cAGU,WAAA,SAAoB,KAAA;EAAA,SACf,QAAA;EAAA,SACA,UAAA;EAAA,SACA,MAAA;EAAA,SACA,aAAA;EAAA,SACA,SAAA;EAAA,SACA,IAAA;EAAA,SACA,SAAA;EAAA,SACA,UAAA;EAAA,SACA,aAAA,EAAe,KAAA;cAEnB,QAAA,UAAkB,OAAA,UAAiB,OAAA,GAAS,kBAAA,GAAqB,KAAA;AAAA;;;KCjBnE,UAAA;AAAA,KAEA,UAAA,OAAiB,GAAA,WAAc,MAAA,UAAgB,OAAA,EAAS,OAAA;EAClE,OAAA;EACA,SAAA;EACA,IAAA;EACA,SAAA;EACA,UAAA;EACA,MAAA,GAAS,MAAA;AAAA;AAAA,UAGM,WAAA;EFZJ;EEcX,QAAA;;EAEA,EAAA;EFhByB;EEkBzB,WAAA;;EAEA,UAAA;AAAA;AAAA,UAGe,kBAAA;EACf,MAAA,GAAS,UAAA;EACT,GAAA;EACA,KAAA,GAAQ,MAAA;ED3BR;EC6BA,IAAA;ED3BA;EC6BA,IAAA,GAAO,QAAA;ED3BP;EC6BA,UAAA,GAAa,eAAA,GAAkB,MAAA;ED5B9B;EC8BD,MAAA,GAAS,WAAA,GAAc,UAAA,GAAa,MAAA;ED9BxB;ECgCZ,IAAA;EACA,OAAA,GAAU,MAAA;;EAEV,MAAA;EDrBwD;ECuBxD,OAAA;EDlC+B;ECoC/B,KAAA,GAAQ,WAAA;EDpC4B;ECsCpC,UAAA,GAAa,UAAA,CAAW,CAAA;EDrCR;ECuChB,MAAA,GAAS,WAAA;AAAA;AAAA,UAGM,YAAA;EACf,IAAA,EAAM,CAAA;EACN,MAAA;EACA,OAAA,EAAS,OAAA;AAAA;;;;;;;iBAsGW,WAAA,0BAAA,CACpB,QAAA,UACA,IAAA,EAAM,kBAAA,CAAmB,CAAA,IACxB,OAAA,CAAQ,YAAA,CAAa,CAAA;;;;;;AFnKxB;;;;;AAEA;iBGDgB,oBAAA,CAAqB,MAAA;;;;iBASf,qBAAA,CAAsB,QAAA,WAAmB,OAAA;;;;;AHN/D;;;cGyBa,SAAA;EAAA,QAGS,KAAA;EAAA,QAFZ,OAAA;cAEY,KAAA;EAEpB,GAAA,CAAI,KAAA,UAAe,QAAA;EH7BM;EGmCzB,IAAA,CAAK,KAAA;EASL,MAAA,CAAO,KAAA;EAIP,IAAA,CAAA;EAAA,QAKQ,YAAA;AAAA;;;UCxDO,oBAAA;EJAW;EIE1B,QAAA;EJF0B;EII1B,IAAA;EACA,QAAA;EJJgC;EIMhC,YAAA;EACA,WAAA;EJPgC;EIShC,YAAA;EJRwB;EIUxB,SAAA;EJVwB;EIYxB,KAAA,GAAQ,MAAA;EJXG;EIaX,OAAA,GAAU,MAAA;AAAA;AAAA,UAGK,mBAAA;EACf,QAAA;EACA,YAAA;EACA,QAAA;EACA,YAAA;EACA,SAAA;EACA,KAAA,GAAQ,MAAA;EACR,OAAA,GAAU,MAAA;AAAA;;;;;;;;;;iBAYU,kBAAA,CACpB,QAAA,UACA,MAAA,EAAQ,oBAAA,GACP,OAAA,CAAQ,WAAA;AH/BX;;;AAAA,iBGwEsB,kBAAA,CACpB,QAAA,UACA,MAAA,EAAQ,mBAAA,GACP,OAAA,CAAQ,WAAA;;;;iBAkDK,YAAA,CAAa,OAAA,UAAiB,MAAA;EAC5C,QAAA;EACA,WAAA;EACA,KAAA;EACA,KAAA,qBH9HgB;EGgIhB,YAAA,WH9HgB;EGgIhB,cAAA,cH9HgB;EGgIhB,aAAA;EACA,mBAAA,qBH/H+B;EGiI/B,KAAA,GAAQ,MAAA;AAAA;;;cC7IG,cAAA;AAAA,UAEI,kBAAA;EACf,YAAA;EACA,QAAA;EACA,YAAA;EACA,WAAA;EACA,IAAA;AAAA;;;;ALXF;;;;iBKqBsB,qBAAA,CACpB,QAAA,4BACA,MAAA,EAAQ,kBAAA,GACP,OAAA,CAAQ,WAAA;;;;AJ3BX;iBIyEsB,4BAAA,CAA6B,MAAA;EACjD,YAAA;EACA,QAAA;EACA,YAAA;EACA,YAAA;AAAA,IACE,OAAA,CAAQ,WAAA;;;;iBAwBU,6BAAA,CAA8B,MAAA;EAClD,YAAA;AAAA,IACE,OAAA,CAAQ,WAAA;;AJ9FZ;;iBImHgB,eAAA,CAAgB,GAAA,YAAe,UAAA,CAAW,WAAA,CAAY,UAAA,QAAkB,WAAA;;;;;;AL/HxF;;;;;AAEA;UMDiB,IAAA;EACf,KAAA,EAAO,CAAA;ENAmB;EME1B,UAAA;AAAA;AAAA,UAGe,eAAA;;EAEf,QAAA;ENNgC;EMQhC,QAAA;AAAA;AAAA,UAGe,iBAAA,YAA6B,aAAA,CAAc,CAAA;EAC1D,OAAA,IAAW,OAAA,CAAQ,CAAA;EACnB,IAAA,CAAK,CAAA,WAAY,OAAA,CAAQ,CAAA;AAAA;AAAA,iBAGX,QAAA,GAAA,CACd,SAAA,GAAY,MAAA,yBAA+B,OAAA,CAAQ,IAAA,CAAK,CAAA,IACxD,IAAA,GAAM,eAAA,GACL,iBAAA,CAAkB,CAAA;;;;;;ANtBrB;;;;;AAEA;;;;;AACA;;;;UOMiB,WAAA;EPLJ;EOOX,EAAA,GAAK,OAAA,aAAoB,OAAA,CAAQ,CAAA;;EAEjC,UAAA,GAAa,IAAA,EAAM,CAAA;EPTK;EOWxB,QAAA,GAAW,IAAA,EAAM,CAAA,KAAM,KAAA;EPVE;EOYzB,WAAA;EPZyB;EOczB,UAAA;;EAEA,KAAA;AAAA;ANnBF;;;;;;AAAA,iBM4BsB,iBAAA,GAAA,CAAA;EACpB,EAAA;EACA,UAAA;EACA,QAAA;EACA,WAAA;EACA,UAAA;EACA;AAAA,GACC,WAAA,CAAY,CAAA,IAAK,OAAA,CAAQ,CAAA;;;;;;APrC5B;;;;;AAEA;;;;;AACA;;;AAHA,iBQUgB,mBAAA,CAAoB,QAAA,UAAkB,GAAA,UAAa,OAAA,YAAkB,GAAA;;ARNrF;;;iBQ8CgB,aAAA,CAAc,KAAA"}

package/dist/shared-Fvc6xQku.mjs

@@ -0,0 +1,100 @@
+import { z } from "zod";
+
+//#region src/schemas/shared.ts
+/**
+* Shared zod v4 building blocks used by per-provider schemas.
+*
+* Consumers (e.g., `@classytic/arc`) import from `@classytic/social/schemas`
+* to render forms, validate inputs, and generate API contracts.
+*/
+const NonEmptyString = z.string().min(1);
+/** Public URL. Use `assertPublicHttpUrl` from `common/security.ts` for SSRF guards. */
+const PublicUrl = z.url();
+const ISODateTime = z.union([z.iso.datetime(), z.date()]).describe("ISO 8601 datetime string or Date instance");
+const PrivacyLevel = z.enum([
+	"public",
+	"private",
+	"unlisted"
+]);
+const OAuthTokensSchema = z.looseObject({
+	access_token: NonEmptyString,
+	refresh_token: z.string().optional(),
+	expires_in: z.number().optional(),
+	token_type: z.string().optional(),
+	scope: z.string().optional()
+});
+const ClientCredentials = z.object({
+	clientId: NonEmptyString.describe("OAuth client ID"),
+	clientSecret: NonEmptyString.describe("OAuth client secret"),
+	redirectUri: z.url().optional().describe("OAuth redirect URI override")
+});
+const SECRET_NAME = /token|secret|password|key|credential/i;
+/**
+* Derive `FieldMeta[]` from a zod object schema. Used by providers to expose a
+* UI form schema without manually duplicating field metadata.
+*
+* Heuristics:
+* - field name matching `/token|secret|password|key|credential/i` ⇒ `password`
+* - `z.url()` ⇒ `url`
+* - `z.enum([...])` ⇒ `select`
+* - everything else ⇒ `text`
+*/
+function fieldsFromSchema(schema, overrides = {}) {
+	const fields = [];
+	const shape = schema.shape;
+	for (const [name, def] of Object.entries(shape)) {
+		const inner = unwrap(def);
+		const optional = isOptional(def);
+		const description = def.description;
+		let type = "text";
+		let options;
+		if (SECRET_NAME.test(name)) type = "password";
+		else if (isUrl(inner)) type = "url";
+		else if (inner instanceof z.ZodEnum) {
+			type = "select";
+			options = inner.options.map((v) => ({
+				label: v,
+				value: v
+			}));
+		}
+		const ovr = overrides[name] ?? {};
+		fields.push({
+			name,
+			displayName: ovr.displayName ?? toDisplayName(name),
+			type: ovr.type ?? type,
+			required: ovr.required ?? !optional,
+			description: ovr.description ?? description,
+			placeholder: ovr.placeholder,
+			options: ovr.options ?? options
+		});
+	}
+	return fields;
+}
+function unwrap(t) {
+	let cur = t;
+	while (true) {
+		const def = cur.def;
+		const inner = def?.innerType;
+		if (!inner) return cur;
+		if (def?.type === "optional" || def?.type === "nullable" || def?.type === "default") {
+			cur = inner;
+			continue;
+		}
+		return cur;
+	}
+}
+function isOptional(t) {
+	const def = t.def;
+	return def?.type === "optional" || def?.type === "default" || def?.type === "nullable";
+}
+function isUrl(t) {
+	const def = t.def;
+	return def?.type === "url" || def?.format === "url";
+}
+function toDisplayName(name) {
+	return name.replace(/([A-Z])/g, " $1").replace(/^./, (c) => c.toUpperCase()).replace(/\bid\b/i, "ID").replace(/\burl\b/i, "URL").trim();
+}
+
+//#endregion
+export { PrivacyLevel as a, OAuthTokensSchema as i, ISODateTime as n, PublicUrl as o, NonEmptyString as r, fieldsFromSchema as s, ClientCredentials as t };
+//# sourceMappingURL=shared-Fvc6xQku.mjs.map

package/dist/shared-Fvc6xQku.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"shared-Fvc6xQku.mjs","names":[],"sources":["../src/schemas/shared.ts"],"sourcesContent":["/**\n * Shared zod v4 building blocks used by per-provider schemas.\n *\n * Consumers (e.g., `@classytic/arc`) import from `@classytic/social/schemas`\n * to render forms, validate inputs, and generate API contracts.\n */\n\nimport { z } from 'zod';\n\n// ─── Primitives ─────────────────────────────────────────────────────────────\n\nexport const NonEmptyString = z.string().min(1);\n\n/** Public URL. Use `assertPublicHttpUrl` from `common/security.ts` for SSRF guards. */\nexport const PublicUrl = z.url();\n\nexport const ISODateTime = z.union([z.iso.datetime(), z.date()])\n  .describe('ISO 8601 datetime string or Date instance');\n\nexport const PrivacyLevel = z.enum(['public', 'private', 'unlisted']);\nexport type PrivacyLevel = z.infer<typeof PrivacyLevel>;\n\n// ─── OAuth tokens ───────────────────────────────────────────────────────────\n\nexport const OAuthTokensSchema = z.looseObject({\n  access_token: NonEmptyString,\n  refresh_token: z.string().optional(),\n  expires_in: z.number().optional(),\n  token_type: z.string().optional(),\n  scope: z.string().optional(),\n});\n\nexport type OAuthTokensInput = z.infer<typeof OAuthTokensSchema>;\n\n// ─── Common credential field shape ──────────────────────────────────────────\n\nexport const ClientCredentials = z.object({\n  clientId: NonEmptyString.describe('OAuth client ID'),\n  clientSecret: NonEmptyString.describe('OAuth client secret'),\n  redirectUri: z.url().optional().describe('OAuth redirect URI override'),\n});\n\n// ─── Form-field metadata derivation ─────────────────────────────────────────\n\n/**\n * UI form-field descriptor derived from a zod schema. Mirrors the shape of\n * `CredentialField` in base.ts for backward compatibility.\n */\nexport interface FieldMeta {\n  name: string;\n  displayName: string;\n  type: 'text' | 'password' | 'url' | 'select' | 'textarea';\n  required: boolean;\n  description?: string;\n  placeholder?: string;\n  options?: { label: string; value: string }[];\n}\n\nconst SECRET_NAME = /token|secret|password|key|credential/i;\n\n/**\n * Derive `FieldMeta[]` from a zod object schema. Used by providers to expose a\n * UI form schema without manually duplicating field metadata.\n *\n * Heuristics:\n * - field name matching `/token|secret|password|key|credential/i` ⇒ `password`\n * - `z.url()` ⇒ `url`\n * - `z.enum([...])` ⇒ `select`\n * - everything else ⇒ `text`\n */\nexport function fieldsFromSchema<T extends z.ZodObject>(\n  schema: T,\n  overrides: Partial<Record<keyof z.infer<T> & string, Partial<FieldMeta>>> = {},\n): FieldMeta[] {\n  const fields: FieldMeta[] = [];\n  const shape = schema.shape;\n  for (const [name, def] of Object.entries(shape)) {\n    const inner = unwrap(def as z.ZodType);\n    const optional = isOptional(def as z.ZodType);\n    const description = (def as z.ZodType).description;\n\n    let type: FieldMeta['type'] = 'text';\n    let options: FieldMeta['options'];\n\n    if (SECRET_NAME.test(name)) {\n      type = 'password';\n    } else if (isUrl(inner)) {\n      type = 'url';\n    } else if (inner instanceof z.ZodEnum) {\n      type = 'select';\n      const enumValues = (inner as z.ZodEnum).options as readonly string[];\n      options = enumValues.map((v: string) => ({ label: v, value: v }));\n    }\n\n    const ovr = overrides[name as keyof typeof overrides] ?? {};\n    fields.push({\n      name,\n      displayName: ovr.displayName ?? toDisplayName(name),\n      type: ovr.type ?? type,\n      required: ovr.required ?? !optional,\n      description: ovr.description ?? description,\n      placeholder: ovr.placeholder,\n      options: ovr.options ?? options,\n    });\n  }\n  return fields;\n}\n\nfunction unwrap(t: z.ZodType): z.ZodType {\n  let cur: z.ZodType = t;\n  // Peel optional / nullable / default wrappers\n  while (true) {\n    const def = (cur as { def?: { type?: string; innerType?: z.ZodType } }).def;\n    const inner = def?.innerType;\n    if (!inner) return cur;\n    if (def?.type === 'optional' || def?.type === 'nullable' || def?.type === 'default') {\n      cur = inner;\n      continue;\n    }\n    return cur;\n  }\n}\n\nfunction isOptional(t: z.ZodType): boolean {\n  const def = (t as { def?: { type?: string } }).def;\n  return def?.type === 'optional' || def?.type === 'default' || def?.type === 'nullable';\n}\n\nfunction isUrl(t: z.ZodType): boolean {\n  const def = (t as { def?: { type?: string; format?: string } }).def;\n  return def?.type === 'url' || def?.format === 'url';\n}\n\nfunction toDisplayName(name: string): string {\n  return name\n    .replace(/([A-Z])/g, ' $1')\n    .replace(/^./, c => c.toUpperCase())\n    .replace(/\\bid\\b/i, 'ID')\n    .replace(/\\burl\\b/i, 'URL')\n    .trim();\n}\n"],"mappings":";;;;;;;;;AAWA,MAAa,iBAAiB,EAAE,QAAQ,CAAC,IAAI,EAAE;;AAG/C,MAAa,YAAY,EAAE,KAAK;AAEhC,MAAa,cAAc,EAAE,MAAM,CAAC,EAAE,IAAI,UAAU,EAAE,EAAE,MAAM,CAAC,CAAC,CAC7D,SAAS,4CAA4C;AAExD,MAAa,eAAe,EAAE,KAAK;CAAC;CAAU;CAAW;CAAW,CAAC;AAKrE,MAAa,oBAAoB,EAAE,YAAY;CAC7C,cAAc;CACd,eAAe,EAAE,QAAQ,CAAC,UAAU;CACpC,YAAY,EAAE,QAAQ,CAAC,UAAU;CACjC,YAAY,EAAE,QAAQ,CAAC,UAAU;CACjC,OAAO,EAAE,QAAQ,CAAC,UAAU;CAC7B,CAAC;AAMF,MAAa,oBAAoB,EAAE,OAAO;CACxC,UAAU,eAAe,SAAS,kBAAkB;CACpD,cAAc,eAAe,SAAS,sBAAsB;CAC5D,aAAa,EAAE,KAAK,CAAC,UAAU,CAAC,SAAS,8BAA8B;CACxE,CAAC;AAkBF,MAAM,cAAc;;;;;;;;;;;AAYpB,SAAgB,iBACd,QACA,YAA4E,EAAE,EACjE;CACb,MAAM,SAAsB,EAAE;CAC9B,MAAM,QAAQ,OAAO;AACrB,MAAK,MAAM,CAAC,MAAM,QAAQ,OAAO,QAAQ,MAAM,EAAE;EAC/C,MAAM,QAAQ,OAAO,IAAiB;EACtC,MAAM,WAAW,WAAW,IAAiB;EAC7C,MAAM,cAAe,IAAkB;EAEvC,IAAI,OAA0B;EAC9B,IAAI;AAEJ,MAAI,YAAY,KAAK,KAAK,CACxB,QAAO;WACE,MAAM,MAAM,CACrB,QAAO;WACE,iBAAiB,EAAE,SAAS;AACrC,UAAO;AAEP,aADoB,MAAoB,QACnB,KAAK,OAAe;IAAE,OAAO;IAAG,OAAO;IAAG,EAAE;;EAGnE,MAAM,MAAM,UAAU,SAAmC,EAAE;AAC3D,SAAO,KAAK;GACV;GACA,aAAa,IAAI,eAAe,cAAc,KAAK;GACnD,MAAM,IAAI,QAAQ;GAClB,UAAU,IAAI,YAAY,CAAC;GAC3B,aAAa,IAAI,eAAe;GAChC,aAAa,IAAI;GACjB,SAAS,IAAI,WAAW;GACzB,CAAC;;AAEJ,QAAO;;AAGT,SAAS,OAAO,GAAyB;CACvC,IAAI,MAAiB;AAErB,QAAO,MAAM;EACX,MAAM,MAAO,IAA2D;EACxE,MAAM,QAAQ,KAAK;AACnB,MAAI,CAAC,MAAO,QAAO;AACnB,MAAI,KAAK,SAAS,cAAc,KAAK,SAAS,cAAc,KAAK,SAAS,WAAW;AACnF,SAAM;AACN;;AAEF,SAAO;;;AAIX,SAAS,WAAW,GAAuB;CACzC,MAAM,MAAO,EAAkC;AAC/C,QAAO,KAAK,SAAS,cAAc,KAAK,SAAS,aAAa,KAAK,SAAS;;AAG9E,SAAS,MAAM,GAAuB;CACpC,MAAM,MAAO,EAAmD;AAChE,QAAO,KAAK,SAAS,SAAS,KAAK,WAAW;;AAGhD,SAAS,cAAc,MAAsB;AAC3C,QAAO,KACJ,QAAQ,YAAY,MAAM,CAC1B,QAAQ,OAAM,MAAK,EAAE,aAAa,CAAC,CACnC,QAAQ,WAAW,KAAK,CACxB,QAAQ,YAAY,MAAM,CAC1B,MAAM"}

package/dist/telegram-FaUHpZgB.mjs

@@ -0,0 +1,107 @@
+import { t as __exportAll } from "./chunk-DQk6qfdC.mjs";
+import { r as NonEmptyString } from "./shared-Fvc6xQku.mjs";
+import { z } from "zod";
+
+//#region src/schemas/telegram.ts
+/**
+* Telegram zod v4 schemas.
+*
+* Telegram uses bot tokens (no OAuth). Chat IDs are numeric — supergroups and
+* channels prefix with `-100`, regular groups with `-`.
+*/
+var telegram_exports = /* @__PURE__ */ __exportAll({
+	TelegramCredentialsSchema: () => TelegramCredentialsSchema,
+	TelegramMediaItemSchema: () => TelegramMediaItemSchema,
+	TelegramSendDocumentSchema: () => TelegramSendDocumentSchema,
+	TelegramSendMediaGroupSchema: () => TelegramSendMediaGroupSchema,
+	TelegramSendMessageSchema: () => TelegramSendMessageSchema,
+	TelegramSendPhotoSchema: () => TelegramSendPhotoSchema,
+	TelegramSendVideoSchema: () => TelegramSendVideoSchema,
+	telegramCapabilities: () => telegramCapabilities,
+	telegramInfo: () => telegramInfo
+});
+const TelegramCredentialsSchema = z.object({
+	botToken: NonEmptyString.regex(/^\d+:[A-Za-z0-9_-]+$/, "Bot token must be in `<bot_id>:<token>` format").describe("Bot token from @BotFather"),
+	chatId: z.union([z.string(), z.number()]).optional().describe("Optional default chat ID to validate against")
+});
+const ChatId = z.union([z.string().min(1), z.number()]);
+const ParseMode = z.enum([
+	"MarkdownV2",
+	"Markdown",
+	"HTML"
+]);
+const TelegramSendMessageSchema = z.object({
+	chatId: ChatId,
+	text: z.string().min(1).max(4096),
+	parseMode: ParseMode.optional(),
+	disableNotification: z.boolean().optional(),
+	disableWebPagePreview: z.boolean().optional(),
+	replyToMessageId: z.union([z.string(), z.number()]).optional()
+});
+const TelegramSendPhotoSchema = z.object({
+	chatId: ChatId,
+	photo: z.union([z.url(), z.string().min(1)]).describe("URL or file_id"),
+	caption: z.string().max(1024).optional(),
+	parseMode: ParseMode.optional()
+});
+const TelegramSendVideoSchema = z.object({
+	chatId: ChatId,
+	video: z.union([z.url(), z.string().min(1)]),
+	caption: z.string().max(1024).optional(),
+	duration: z.number().int().nonnegative().optional(),
+	width: z.number().int().positive().optional(),
+	height: z.number().int().positive().optional(),
+	supportsStreaming: z.boolean().optional(),
+	parseMode: ParseMode.optional()
+});
+const TelegramSendDocumentSchema = z.object({
+	chatId: ChatId,
+	document: z.union([z.url(), z.string().min(1)]),
+	caption: z.string().max(1024).optional(),
+	parseMode: ParseMode.optional()
+});
+const TelegramMediaItemSchema = z.discriminatedUnion("type", [z.object({
+	type: z.literal("photo"),
+	media: z.union([z.url(), z.string().min(1)]),
+	caption: z.string().max(1024).optional()
+}), z.object({
+	type: z.literal("video"),
+	media: z.union([z.url(), z.string().min(1)]),
+	caption: z.string().max(1024).optional(),
+	duration: z.number().int().nonnegative().optional()
+})]);
+const TelegramSendMediaGroupSchema = z.object({
+	chatId: ChatId,
+	media: z.array(TelegramMediaItemSchema).min(2).max(10)
+});
+const telegramCapabilities = {
+	auth: "token",
+	posting: false,
+	upload: true,
+	messaging: true,
+	scheduling: false,
+	deletion: true,
+	listing: false,
+	analytics: false,
+	environments: false,
+	pkce: false
+};
+const telegramInfo = {
+	name: "telegram",
+	displayName: "Telegram",
+	scopes: [],
+	rateLimits: {
+		perSecondToDifferentChats: 30,
+		perSecondToSameChat: 1
+	},
+	fileLimits: {
+		photo: { maxSizeBytes: 10 * 1024 * 1024 },
+		video: { maxSizeBytes: 50 * 1024 * 1024 },
+		document: { maxSizeBytes: 50 * 1024 * 1024 }
+	},
+	docsUrl: "https://core.telegram.org/bots/api"
+};
+
+//#endregion
+export { telegram_exports as i, telegramCapabilities as n, telegramInfo as r, TelegramCredentialsSchema as t };
+//# sourceMappingURL=telegram-FaUHpZgB.mjs.map

package/dist/telegram-FaUHpZgB.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"telegram-FaUHpZgB.mjs","names":[],"sources":["../src/schemas/telegram.ts"],"sourcesContent":["/**\n * Telegram zod v4 schemas.\n *\n * Telegram uses bot tokens (no OAuth). Chat IDs are numeric — supergroups and\n * channels prefix with `-100`, regular groups with `-`.\n */\n\nimport { z } from 'zod';\nimport type { ProviderCapabilities } from '../common/contracts.js';\nimport { NonEmptyString } from './shared.js';\n\n// ─── Credentials ────────────────────────────────────────────────────────────\n\nexport const TelegramCredentialsSchema = z.object({\n  botToken: NonEmptyString.regex(/^\\d+:[A-Za-z0-9_-]+$/, 'Bot token must be in `<bot_id>:<token>` format')\n    .describe('Bot token from @BotFather'),\n  chatId: z.union([z.string(), z.number()]).optional()\n    .describe('Optional default chat ID to validate against'),\n});\nexport type TelegramCredentialsInput = z.infer<typeof TelegramCredentialsSchema>;\n\n// ─── Chat IDs ───────────────────────────────────────────────────────────────\n\nconst ChatId = z.union([z.string().min(1), z.number()]);\n\nconst ParseMode = z.enum(['MarkdownV2', 'Markdown', 'HTML']);\n\n// ─── Send message ───────────────────────────────────────────────────────────\n\nexport const TelegramSendMessageSchema = z.object({\n  chatId: ChatId,\n  text: z.string().min(1).max(4096),\n  parseMode: ParseMode.optional(),\n  disableNotification: z.boolean().optional(),\n  disableWebPagePreview: z.boolean().optional(),\n  replyToMessageId: z.union([z.string(), z.number()]).optional(),\n});\n\nexport const TelegramSendPhotoSchema = z.object({\n  chatId: ChatId,\n  photo: z.union([z.url(), z.string().min(1)]).describe('URL or file_id'),\n  caption: z.string().max(1024).optional(),\n  parseMode: ParseMode.optional(),\n});\n\nexport const TelegramSendVideoSchema = z.object({\n  chatId: ChatId,\n  video: z.union([z.url(), z.string().min(1)]),\n  caption: z.string().max(1024).optional(),\n  duration: z.number().int().nonnegative().optional(),\n  width: z.number().int().positive().optional(),\n  height: z.number().int().positive().optional(),\n  supportsStreaming: z.boolean().optional(),\n  parseMode: ParseMode.optional(),\n});\n\nexport const TelegramSendDocumentSchema = z.object({\n  chatId: ChatId,\n  document: z.union([z.url(), z.string().min(1)]),\n  caption: z.string().max(1024).optional(),\n  parseMode: ParseMode.optional(),\n});\n\nexport const TelegramMediaItemSchema = z.discriminatedUnion('type', [\n  z.object({\n    type: z.literal('photo'),\n    media: z.union([z.url(), z.string().min(1)]),\n    caption: z.string().max(1024).optional(),\n  }),\n  z.object({\n    type: z.literal('video'),\n    media: z.union([z.url(), z.string().min(1)]),\n    caption: z.string().max(1024).optional(),\n    duration: z.number().int().nonnegative().optional(),\n  }),\n]);\n\nexport const TelegramSendMediaGroupSchema = z.object({\n  chatId: ChatId,\n  media: z.array(TelegramMediaItemSchema).min(2).max(10),\n});\n\n// ─── Capabilities ───────────────────────────────────────────────────────────\n\nexport const telegramCapabilities: ProviderCapabilities = {\n  auth: 'token',\n  posting: false,\n  upload: true,\n  messaging: true,\n  scheduling: false,\n  deletion: true,\n  listing: false,\n  analytics: false,\n  environments: false,\n  pkce: false,\n};\n\nexport const telegramInfo = {\n  name: 'telegram' as const,\n  displayName: 'Telegram',\n  scopes: [],\n  rateLimits: { perSecondToDifferentChats: 30, perSecondToSameChat: 1 },\n  fileLimits: {\n    photo: { maxSizeBytes: 10 * 1024 * 1024 },\n    video: { maxSizeBytes: 50 * 1024 * 1024 },\n    document: { maxSizeBytes: 50 * 1024 * 1024 },\n  },\n  docsUrl: 'https://core.telegram.org/bots/api',\n} as const;\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;AAaA,MAAa,4BAA4B,EAAE,OAAO;CAChD,UAAU,eAAe,MAAM,wBAAwB,iDAAiD,CACrG,SAAS,4BAA4B;CACxC,QAAQ,EAAE,MAAM,CAAC,EAAE,QAAQ,EAAE,EAAE,QAAQ,CAAC,CAAC,CAAC,UAAU,CACjD,SAAS,+CAA+C;CAC5D,CAAC;AAKF,MAAM,SAAS,EAAE,MAAM,CAAC,EAAE,QAAQ,CAAC,IAAI,EAAE,EAAE,EAAE,QAAQ,CAAC,CAAC;AAEvD,MAAM,YAAY,EAAE,KAAK;CAAC;CAAc;CAAY;CAAO,CAAC;AAI5D,MAAa,4BAA4B,EAAE,OAAO;CAChD,QAAQ;CACR,MAAM,EAAE,QAAQ,CAAC,IAAI,EAAE,CAAC,IAAI,KAAK;CACjC,WAAW,UAAU,UAAU;CAC/B,qBAAqB,EAAE,SAAS,CAAC,UAAU;CAC3C,uBAAuB,EAAE,SAAS,CAAC,UAAU;CAC7C,kBAAkB,EAAE,MAAM,CAAC,EAAE,QAAQ,EAAE,EAAE,QAAQ,CAAC,CAAC,CAAC,UAAU;CAC/D,CAAC;AAEF,MAAa,0BAA0B,EAAE,OAAO;CAC9C,QAAQ;CACR,OAAO,EAAE,MAAM,CAAC,EAAE,KAAK,EAAE,EAAE,QAAQ,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,SAAS,iBAAiB;CACvE,SAAS,EAAE,QAAQ,CAAC,IAAI,KAAK,CAAC,UAAU;CACxC,WAAW,UAAU,UAAU;CAChC,CAAC;AAEF,MAAa,0BAA0B,EAAE,OAAO;CAC9C,QAAQ;CACR,OAAO,EAAE,MAAM,CAAC,EAAE,KAAK,EAAE,EAAE,QAAQ,CAAC,IAAI,EAAE,CAAC,CAAC;CAC5C,SAAS,EAAE,QAAQ,CAAC,IAAI,KAAK,CAAC,UAAU;CACxC,UAAU,EAAE,QAAQ,CAAC,KAAK,CAAC,aAAa,CAAC,UAAU;CACnD,OAAO,EAAE,QAAQ,CAAC,KAAK,CAAC,UAAU,CAAC,UAAU;CAC7C,QAAQ,EAAE,QAAQ,CAAC,KAAK,CAAC,UAAU,CAAC,UAAU;CAC9C,mBAAmB,EAAE,SAAS,CAAC,UAAU;CACzC,WAAW,UAAU,UAAU;CAChC,CAAC;AAEF,MAAa,6BAA6B,EAAE,OAAO;CACjD,QAAQ;CACR,UAAU,EAAE,MAAM,CAAC,EAAE,KAAK,EAAE,EAAE,QAAQ,CAAC,IAAI,EAAE,CAAC,CAAC;CAC/C,SAAS,EAAE,QAAQ,CAAC,IAAI,KAAK,CAAC,UAAU;CACxC,WAAW,UAAU,UAAU;CAChC,CAAC;AAEF,MAAa,0BAA0B,EAAE,mBAAmB,QAAQ,CAClE,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,QAAQ;CACxB,OAAO,EAAE,MAAM,CAAC,EAAE,KAAK,EAAE,EAAE,QAAQ,CAAC,IAAI,EAAE,CAAC,CAAC;CAC5C,SAAS,EAAE,QAAQ,CAAC,IAAI,KAAK,CAAC,UAAU;CACzC,CAAC,EACF,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,QAAQ;CACxB,OAAO,EAAE,MAAM,CAAC,EAAE,KAAK,EAAE,EAAE,QAAQ,CAAC,IAAI,EAAE,CAAC,CAAC;CAC5C,SAAS,EAAE,QAAQ,CAAC,IAAI,KAAK,CAAC,UAAU;CACxC,UAAU,EAAE,QAAQ,CAAC,KAAK,CAAC,aAAa,CAAC,UAAU;CACpD,CAAC,CACH,CAAC;AAEF,MAAa,+BAA+B,EAAE,OAAO;CACnD,QAAQ;CACR,OAAO,EAAE,MAAM,wBAAwB,CAAC,IAAI,EAAE,CAAC,IAAI,GAAG;CACvD,CAAC;AAIF,MAAa,uBAA6C;CACxD,MAAM;CACN,SAAS;CACT,QAAQ;CACR,WAAW;CACX,YAAY;CACZ,UAAU;CACV,SAAS;CACT,WAAW;CACX,cAAc;CACd,MAAM;CACP;AAED,MAAa,eAAe;CAC1B,MAAM;CACN,aAAa;CACb,QAAQ,EAAE;CACV,YAAY;EAAE,2BAA2B;EAAI,qBAAqB;EAAG;CACrE,YAAY;EACV,OAAO,EAAE,cAAc,KAAK,OAAO,MAAM;EACzC,OAAO,EAAE,cAAc,KAAK,OAAO,MAAM;EACzC,UAAU,EAAE,cAAc,KAAK,OAAO,MAAM;EAC7C;CACD,SAAS;CACV"}