@depup/otplib 13.3.0-depup.0

package/dist/types-BBT_82HF.d.cts

@@ -0,0 +1,122 @@
+import { CryptoPlugin, Base32Plugin, OTPGuardrails, HashAlgorithm, Digits, OTPHooks } from '@otplib/core';
+
+/**
+ * Type definitions for otplib package
+ */
+
+/**
+ * OTP Strategy Type
+ */
+type OTPStrategy = "totp" | "hotp";
+/**
+ * Options with plugin overrides
+ */
+type OTPAuthOptions = {
+    /**
+     * Crypto plugin to use (default: NobleCryptoPlugin)
+     */
+    readonly crypto?: CryptoPlugin;
+    /**
+     * Base32 plugin to use (default: ScureBase32Plugin)
+     */
+    readonly base32?: Base32Plugin;
+};
+/**
+ * Common options for OTP generation
+ *
+ * These options apply to both TOTP and HOTP strategies.
+ */
+type OTPGenerateOptions = {
+    /**
+     * Base32-encoded secret key
+     *
+     * **Note**: By default, strings are assumed to be Base32 encoded.
+     * If you have a raw string/passphrase, you must convert it to Uint8Array first.
+     */
+    secret: string | Uint8Array;
+    /**
+     * OTP strategy to use (default: 'totp')
+     * - 'totp': Time-based OTP
+     * - 'hotp': HMAC-based OTP
+     */
+    strategy?: OTPStrategy;
+    /**
+     * Crypto plugin to use (default: NobleCryptoPlugin)
+     */
+    crypto?: CryptoPlugin;
+    /**
+     * Base32 plugin to use (default: ScureBase32Plugin)
+     */
+    base32?: Base32Plugin;
+    /**
+     * Validation guardrails
+     */
+    guardrails?: OTPGuardrails;
+    /**
+     * Hash algorithm (default: 'sha1')
+     */
+    algorithm?: HashAlgorithm;
+    /**
+     * Number of digits (default: 6)
+     */
+    digits?: Digits;
+    /**
+     * Time step in seconds (default: 30)
+     * Used by TOTP strategy
+     */
+    period?: number;
+    /**
+     * Current Unix epoch timestamp in seconds (default: now)
+     * Used by TOTP strategy
+     */
+    epoch?: number;
+    /**
+     * Initial Unix time to start counting time steps (default: 0)
+     * Used by TOTP strategy
+     */
+    t0?: number;
+    /**
+     * Counter value
+     * Used by HOTP strategy (required)
+     */
+    counter?: number;
+    /**
+     * Hooks for customizing token encoding and validation.
+     * Allows non-standard OTP variants (e.g., Steam Guard) to replace
+     * the default numeric encoding with custom schemes.
+     */
+    hooks?: OTPHooks;
+};
+/**
+ * Options for OTP verification
+ *
+ * Extends OTPFunctionalOptions with token and tolerance parameters.
+ */
+type OTPVerifyOptions = OTPGenerateOptions & {
+    /**
+     * OTP code to verify
+     */
+    token: string;
+    /**
+     * Time tolerance in seconds for TOTP verification (default: 0)
+     * - Number: symmetric tolerance (same for past and future)
+     * - Tuple [past, future]: asymmetric tolerance
+     *   Use [5, 0] for RFC-compliant past-only verification.
+     */
+    epochTolerance?: number | [number, number];
+    /**
+     * Counter tolerance for HOTP verification (default: 0)
+     * - Number: creates look-ahead only tolerance [0, n]
+     * - Tuple [past, future]: explicit window control
+     */
+    counterTolerance?: number | [number, number];
+    /**
+     * Minimum allowed TOTP time step for replay protection (optional)
+     *
+     * Rejects tokens with timeStep <= afterTimeStep.
+     * Only used by TOTP strategy.
+     */
+    afterTimeStep?: number;
+};
+
+export type { OTPAuthOptions as O, OTPGenerateOptions as a, OTPStrategy as b, OTPVerifyOptions as c };

package/dist/types-BBT_82HF.d.ts

@@ -0,0 +1,122 @@
+import { CryptoPlugin, Base32Plugin, OTPGuardrails, HashAlgorithm, Digits, OTPHooks } from '@otplib/core';
+
+/**
+ * Type definitions for otplib package
+ */
+
+/**
+ * OTP Strategy Type
+ */
+type OTPStrategy = "totp" | "hotp";
+/**
+ * Options with plugin overrides
+ */
+type OTPAuthOptions = {
+    /**
+     * Crypto plugin to use (default: NobleCryptoPlugin)
+     */
+    readonly crypto?: CryptoPlugin;
+    /**
+     * Base32 plugin to use (default: ScureBase32Plugin)
+     */
+    readonly base32?: Base32Plugin;
+};
+/**
+ * Common options for OTP generation
+ *
+ * These options apply to both TOTP and HOTP strategies.
+ */
+type OTPGenerateOptions = {
+    /**
+     * Base32-encoded secret key
+     *
+     * **Note**: By default, strings are assumed to be Base32 encoded.
+     * If you have a raw string/passphrase, you must convert it to Uint8Array first.
+     */
+    secret: string | Uint8Array;
+    /**
+     * OTP strategy to use (default: 'totp')
+     * - 'totp': Time-based OTP
+     * - 'hotp': HMAC-based OTP
+     */
+    strategy?: OTPStrategy;
+    /**
+     * Crypto plugin to use (default: NobleCryptoPlugin)
+     */
+    crypto?: CryptoPlugin;
+    /**
+     * Base32 plugin to use (default: ScureBase32Plugin)
+     */
+    base32?: Base32Plugin;
+    /**
+     * Validation guardrails
+     */
+    guardrails?: OTPGuardrails;
+    /**
+     * Hash algorithm (default: 'sha1')
+     */
+    algorithm?: HashAlgorithm;
+    /**
+     * Number of digits (default: 6)
+     */
+    digits?: Digits;
+    /**
+     * Time step in seconds (default: 30)
+     * Used by TOTP strategy
+     */
+    period?: number;
+    /**
+     * Current Unix epoch timestamp in seconds (default: now)
+     * Used by TOTP strategy
+     */
+    epoch?: number;
+    /**
+     * Initial Unix time to start counting time steps (default: 0)
+     * Used by TOTP strategy
+     */
+    t0?: number;
+    /**
+     * Counter value
+     * Used by HOTP strategy (required)
+     */
+    counter?: number;
+    /**
+     * Hooks for customizing token encoding and validation.
+     * Allows non-standard OTP variants (e.g., Steam Guard) to replace
+     * the default numeric encoding with custom schemes.
+     */
+    hooks?: OTPHooks;
+};
+/**
+ * Options for OTP verification
+ *
+ * Extends OTPFunctionalOptions with token and tolerance parameters.
+ */
+type OTPVerifyOptions = OTPGenerateOptions & {
+    /**
+     * OTP code to verify
+     */
+    token: string;
+    /**
+     * Time tolerance in seconds for TOTP verification (default: 0)
+     * - Number: symmetric tolerance (same for past and future)
+     * - Tuple [past, future]: asymmetric tolerance
+     *   Use [5, 0] for RFC-compliant past-only verification.
+     */
+    epochTolerance?: number | [number, number];
+    /**
+     * Counter tolerance for HOTP verification (default: 0)
+     * - Number: creates look-ahead only tolerance [0, n]
+     * - Tuple [past, future]: explicit window control
+     */
+    counterTolerance?: number | [number, number];
+    /**
+     * Minimum allowed TOTP time step for replay protection (optional)
+     *
+     * Rejects tokens with timeStep <= afterTimeStep.
+     * Only used by TOTP strategy.
+     */
+    afterTimeStep?: number;
+};
+
+export type { OTPAuthOptions as O, OTPGenerateOptions as a, OTPStrategy as b, OTPVerifyOptions as c };

package/package.json

@@ -0,0 +1,108 @@
+{
+  "name": "@depup/otplib",
+  "version": "13.3.0-depup.0",
+  "description": "TypeScript-first library for TOTP and HOTP with multi-runtime and plugin support (with updated dependencies)",
+  "license": "MIT",
+  "author": "Gerald Yeo <support@yeojz.dev>",
+  "homepage": "https://otplib.yeojz.dev",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/yeojz/otplib.git",
+    "directory": "packages/otplib"
+  },
+  "bugs": {
+    "url": "https://github.com/yeojz/otplib/issues"
+  },
+  "keywords": [
+    "otplib",
+    "depup",
+    "updated-dependencies",
+    "security",
+    "latest",
+    "patched",
+    "otp",
+    "hotp",
+    "totp",
+    "rfc4226",
+    "rfc6238",
+    "2fa",
+    "mfa",
+    "authenticator",
+    "google-authenticator",
+    "one-time-password"
+  ],
+  "sideEffects": false,
+  "type": "module",
+  "main": "./dist/index.cjs",
+  "module": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "import": {
+        "types": "./dist/index.d.ts",
+        "default": "./dist/index.js"
+      },
+      "require": {
+        "types": "./dist/index.d.cts",
+        "default": "./dist/index.cjs"
+      }
+    },
+    "./functional": {
+      "import": {
+        "types": "./dist/functional.d.ts",
+        "default": "./dist/functional.js"
+      },
+      "require": {
+        "types": "./dist/functional.d.cts",
+        "default": "./dist/functional.cjs"
+      }
+    },
+    "./class": {
+      "import": {
+        "types": "./dist/class.d.ts",
+        "default": "./dist/class.js"
+      },
+      "require": {
+        "types": "./dist/class.d.cts",
+        "default": "./dist/class.cjs"
+      }
+    }
+  },
+  "files": [
+    "dist",
+    "README.md",
+    "LICENSE",
+    "changes.json"
+  ],
+  "dependencies": {
+    "@otplib/uri": "13.3.0",
+    "@otplib/hotp": "13.3.0",
+    "@otplib/totp": "13.3.0",
+    "@otplib/plugin-crypto-noble": "13.3.0",
+    "@otplib/plugin-base32-scure": "13.3.0",
+    "@otplib/core": "13.3.0"
+  },
+  "devDependencies": {
+    "tsup": "^8.5.1",
+    "typescript": "^5.9.3",
+    "vitest": "^4.0.18",
+    "@repo/testing": "13.0.1"
+  },
+  "scripts": {
+    "build": "tsup",
+    "dev": "tsup --watch",
+    "test": "vitest",
+    "test:ci": "vitest run --coverage",
+    "typecheck": "tsc --noEmit",
+    "lint": "eslint src/",
+    "clean": "rm -rf dist .tsbuildinfo"
+  },
+  "depup": {
+    "changes": {},
+    "depsUpdated": 0,
+    "originalPackage": "otplib",
+    "originalVersion": "13.3.0",
+    "processedAt": "2026-03-19T03:03:40.527Z",
+    "smokeTest": "failed"
+  }
+}