@directive-run/core 0.8.6 → 0.8.8

package/dist/chunk-KQKNE23L.cjs

@@ -1,2 +0,0 @@
-'use strict';async function w(n,i,s){let o,a=new Promise((g,d)=>{o=setTimeout(()=>d(new Error(s)),i);});try{return await Promise.race([n,a])}finally{clearTimeout(o);}}function m(n,i=50){let s=new WeakSet;function o(r){if(r===null)return "null";if(r===void 0)return "undefined";let e=typeof r;if(e==="string")return JSON.stringify(r);if(e==="number"||e==="boolean")return String(r);if(e==="function")return '"[function]"';if(e==="symbol")return '"[symbol]"'}function a(r,e){if(s.has(r))return '"[circular]"';s.add(r);let t=e();return s.delete(r),t}function g(r,e){return a(r,()=>`[${r.map(t=>c(t,e+1)).join(",")}]`)}function d(r,e){return a(r,()=>`{${Object.keys(r).sort().map(f=>`${JSON.stringify(f)}:${c(r[f],e+1)}`).join(",")}}`)}function c(r,e){if(e>i)return '"[max depth exceeded]"';let t=o(r);return t!==void 0?t:Array.isArray(r)?g(r,e):typeof r=="object"?d(r,e):'"[unknown]"'}return c(n,0)}function b(n,i=50){let s=new Set(["__proto__","constructor","prototype"]),o=new WeakSet;function a(r,e){if(o.has(r))return  true;o.add(r);let t=e();return o.delete(r),t}function g(r,e){for(let t of r)if(!c(t,e+1))return  false;return  true}function d(r,e){for(let t of Object.keys(r))if(s.has(t)||!c(r[t],e+1))return  false;return  true}function c(r,e){if(e>i)return  false;if(r==null||typeof r!="object")return  true;let t=r;return Array.isArray(t)?a(t,()=>g(t,e)):a(t,()=>d(t,e))}return c(n,0)}function S(n,i){if(n===i)return  true;if(!n||!i)return  false;let s=Object.keys(n),o=Object.keys(i);if(s.length!==o.length)return  false;for(let a of s)if(n[a]!==i[a])return  false;return  true}function A(n){let i=m(n),s=5381;for(let o=0;o<i.length;o++)s=(s<<5)+s^i.charCodeAt(o);return (s>>>0).toString(16)}function k(n,i=Date.now()){return n.expiresAt!==void 0&&i>n.expiresAt}function x(n,i=Date.now()){if(!n||typeof n!="object")throw new Error("[Directive] Invalid snapshot: expected an object with 'data' and 'createdAt' properties.");if(!("data"in n))throw new Error("[Directive] Invalid snapshot: missing required 'data' property.");if(!("createdAt"in n)||typeof n.createdAt!="number")throw new Error("[Directive] Invalid snapshot: missing or invalid 'createdAt' property (expected number).");if(k(n,i)){let s=new Date(n.expiresAt).toISOString();throw new Error(`[Directive] Snapshot expired at ${s}. Obtain a fresh snapshot from the source.`)}return n.data}function T(n,i){let s=[];function o(e,t,u,f){s.push({path:e,oldValue:t,newValue:u,type:f});}function a(e,t,u){return e==null?(t!=null&&o(u,e,t,"added"),true):t==null?(o(u,e,t,"removed"),true):false}function g(e,t,u){if(e.length!==t.length){o(u,e,t,"changed");return}for(let f=0;f<e.length;f++)c(e[f],t[f],`${u}[${f}]`);}function d(e,t,u){let f=new Set([...Object.keys(e),...Object.keys(t)]);for(let y of f){let l=u?`${u}.${y}`:y;y in e?y in t?c(e[y],t[y],l):o(l,e[y],void 0,"removed"):o(l,void 0,t[y],"added");}}function c(e,t,u){if(!a(e,t,u)){if(typeof e!="object"||typeof t!="object"){Object.is(e,t)||o(u,e,t,"changed");return}if(Array.isArray(e)&&Array.isArray(t)){g(e,t,u);return}d(e,t,u);}}c(n.data,i.data,"");let r=n.version!==i.version&&(n.version!==void 0||i.version!==void 0);return {identical:s.length===0,changes:s,versionChanged:r,oldVersion:n.version,newVersion:i.version}}function v(n){return "signature"in n&&typeof n.signature=="string"}async function D(n,i){let s=m({data:n.data,createdAt:n.createdAt,expiresAt:n.expiresAt,version:n.version,metadata:n.metadata}),o=await p(s,i);return {...n,signature:o,algorithm:"hmac-sha256"}}async function E(n,i){if(!n.signature||n.algorithm!=="hmac-sha256")return  false;let s=m({data:n.data,createdAt:n.createdAt,expiresAt:n.expiresAt,version:n.version,metadata:n.metadata}),o=await p(s,i);return h(n.signature,o)}async function p(n,i){let s=typeof i=="string"?new TextEncoder().encode(i):i,o={name:"HMAC",hash:{name:"SHA-256"}},a=await crypto.subtle.importKey("raw",s,o,false,["sign"]),g=new TextEncoder().encode(n),d=await crypto.subtle.sign("HMAC",a,g);return Array.from(new Uint8Array(d)).map(c=>c.toString(16).padStart(2,"0")).join("")}function h(n,i){if(n.length!==i.length)return  false;let s=0;for(let o=0;o<n.length;o++)s|=n.charCodeAt(o)^i.charCodeAt(o);return s===0}exports.a=w;exports.b=m;exports.c=b;exports.d=S;exports.e=A;exports.f=k;exports.g=x;exports.h=T;exports.i=v;exports.j=D;exports.k=E;//# sourceMappingURL=chunk-KQKNE23L.cjs.map
-//# sourceMappingURL=chunk-KQKNE23L.cjs.map

package/dist/chunk-KQKNE23L.cjs.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../src/utils/utils.ts"],"names":["withTimeout","promise","ms","errorMessage","timeoutId","timeoutPromise","_","reject","stableStringify","value","maxDepth","seen","stringifyPrimitive","val","type","withCircularGuard","obj","fn","result","stringifyArray","depth","v","stringify","stringifyObject","k","primitive","isPrototypeSafe","dangerousKeys","objVal","checkArray","arr","item","check","checkObject","key","shallowEqual","a","b","keysA","keysB","hashObject","str","hash","i","isSnapshotExpired","snapshot","now","validateSnapshot","expiredAt","diffSnapshots","oldSnapshot","newSnapshot","changes","pushChange","path","oldValue","newValue","compareNullish","oldObj","newObj","compareArrays","oldArr","newArr","compare","compareObjects","oldRecord","newRecord","allKeys","childPath","versionChanged","isSignedSnapshot","signSnapshot","secret","payload","signature","hmacSha256","verifySnapshotSignature","signedSnapshot","expectedSignature","timingSafeEqual","message","secretBytes","algorithm","messageBytes"],"mappings":"aAcA,eAAsBA,CAAAA,CACpBC,CAAAA,CACAC,CAAAA,CACAC,CAAAA,CACY,CACZ,IAAIC,CAAAA,CAEEC,CAAAA,CAAiB,IAAI,OAAA,CAAe,CAACC,CAAAA,CAAGC,CAAAA,GAAW,CACvDH,CAAAA,CAAY,UAAA,CAAW,IAAMG,CAAAA,CAAO,IAAI,KAAA,CAAMJ,CAAY,CAAC,CAAA,CAAGD,CAAE,EAClE,CAAC,CAAA,CAED,GAAI,CACF,OAAO,MAAM,OAAA,CAAQ,IAAA,CAAK,CAACD,CAAAA,CAASI,CAAc,CAAC,CACrD,CAAA,OAAE,CACA,YAAA,CAAaD,CAAU,EACzB,CACF,CAwBO,SAASI,CAAAA,CAAgBC,CAAAA,CAAgBC,CAAAA,CAAW,EAAA,CAAY,CACrE,IAAMC,CAAAA,CAAO,IAAI,OAAA,CAGjB,SAASC,CAAAA,CAAmBC,CAAAA,CAAkC,CAC5D,GAAIA,CAAAA,GAAQ,IAAA,CAAM,OAAO,MAAA,CACzB,GAAIA,CAAAA,GAAQ,MAAA,CAAW,OAAO,WAAA,CAE9B,IAAMC,CAAAA,CAAO,OAAOD,CAAAA,CACpB,GAAIC,CAAAA,GAAS,QAAA,CAAU,OAAO,IAAA,CAAK,SAAA,CAAUD,CAAG,CAAA,CAChD,GAAIC,CAAAA,GAAS,QAAA,EAAYA,CAAAA,GAAS,SAAA,CAAW,OAAO,MAAA,CAAOD,CAAG,CAAA,CAC9D,GAAIC,CAAAA,GAAS,UAAA,CAAY,OAAO,cAAA,CAChC,GAAIA,CAAAA,GAAS,QAAA,CAAU,OAAO,YAGhC,CAGA,SAASC,CAAAA,CACPC,CAAAA,CACAC,CAAAA,CACQ,CACR,GAAIN,CAAAA,CAAK,GAAA,CAAIK,CAAG,CAAA,CACd,OAAO,cAAA,CAETL,CAAAA,CAAK,GAAA,CAAIK,CAAG,CAAA,CACZ,IAAME,CAAAA,CAASD,CAAAA,EAAG,CAClB,OAAAN,CAAAA,CAAK,MAAA,CAAOK,CAAG,CAAA,CAERE,CACT,CAGA,SAASC,CAAAA,CAAeN,CAAAA,CAAgBO,CAAAA,CAAuB,CAC7D,OAAOL,CAAAA,CAAkBF,CAAAA,CAAK,IAC5B,CAAA,CAAA,EAAIA,CAAAA,CAAI,GAAA,CAAKQ,CAAAA,EAAMC,CAAAA,CAAUD,CAAAA,CAAGD,CAAAA,CAAQ,CAAC,CAAC,CAAA,CAAE,IAAA,CAAK,GAAG,CAAC,CAAA,CAAA,CACvD,CACF,CAGA,SAASG,CAAAA,CAAgBP,CAAAA,CAA8BI,CAAAA,CAAuB,CAC5E,OAAOL,CAAAA,CAAkBC,CAAAA,CAAK,IAMrB,CAAA,CAAA,EALM,MAAA,CAAO,IAAA,CAAKA,CAAG,CAAA,CAAE,IAAA,EAAK,CAChB,GAAA,CAChBQ,CAAAA,EAAM,CAAA,EAAG,IAAA,CAAK,SAAA,CAAUA,CAAC,CAAC,CAAA,CAAA,EAAIF,CAAAA,CAAUN,CAAAA,CAAIQ,CAAC,CAAA,CAAGJ,CAAAA,CAAQ,CAAC,CAAC,CAAA,CAC7D,CAAA,CAEiB,IAAA,CAAK,GAAG,CAAC,CAAA,CAAA,CAC3B,CACH,CAGA,SAASE,CAAAA,CAAUT,CAAAA,CAAcO,CAAAA,CAAuB,CACtD,GAAIA,CAAAA,CAAQV,CAAAA,CACV,OAAO,wBAAA,CAGT,IAAMe,CAAAA,CAAYb,CAAAA,CAAmBC,CAAG,CAAA,CACxC,OAAIY,CAAAA,GAAc,MAAA,CACTA,CAAAA,CAGL,KAAA,CAAM,OAAA,CAAQZ,CAAG,CAAA,CACZM,CAAAA,CAAeN,CAAAA,CAAKO,CAAK,CAAA,CAG9B,OAAOP,CAAAA,EAAQ,QAAA,CACVU,CAAAA,CAAgBV,CAAAA,CAAgCO,CAAK,CAAA,CAGvD,aACT,CAEA,OAAOE,CAAAA,CAAUb,CAAAA,CAAO,CAAC,CAC3B,CAUO,SAASiB,CAAAA,CAAgBV,CAAAA,CAAcN,CAAAA,CAAW,EAAA,CAAa,CACpE,IAAMiB,CAAAA,CAAgB,IAAI,GAAA,CAAI,CAAC,WAAA,CAAa,aAAA,CAAe,WAAW,CAAC,CAAA,CACjEhB,CAAAA,CAAO,IAAI,OAAA,CAGjB,SAASI,CAAAA,CACPa,CAAAA,CACAX,CAAAA,CACS,CACT,GAAIN,CAAAA,CAAK,GAAA,CAAIiB,CAAM,CAAA,CAAG,OAAO,KAAA,CAC7BjB,CAAAA,CAAK,GAAA,CAAIiB,CAAM,CAAA,CACf,IAAMV,CAAAA,CAASD,CAAAA,EAAG,CAClB,OAAAN,CAAAA,CAAK,MAAA,CAAOiB,CAAM,CAAA,CAEXV,CACT,CAGA,SAASW,CAAAA,CAAWC,CAAAA,CAAgBV,CAAAA,CAAwB,CAC1D,IAAA,IAAWW,CAAAA,IAAQD,CAAAA,CACjB,GAAI,CAACE,CAAAA,CAAMD,CAAAA,CAAMX,CAAAA,CAAQ,CAAC,CAAA,CACxB,OAAO,MAAA,CAIX,OAAO,KACT,CAGA,SAASa,CAAAA,CAAYL,CAAAA,CAAiCR,CAAAA,CAAwB,CAC5E,IAAA,IAAWc,CAAAA,IAAO,MAAA,CAAO,IAAA,CAAKN,CAAM,CAAA,CAIlC,GAHID,CAAAA,CAAc,GAAA,CAAIO,CAAG,CAAA,EAGrB,CAACF,CAAAA,CAAMJ,CAAAA,CAAOM,CAAG,CAAA,CAAGd,CAAAA,CAAQ,CAAC,CAAA,CAC/B,OAAO,MAAA,CAIX,OAAO,KACT,CAGA,SAASY,CAAAA,CAAMnB,CAAAA,CAAcO,CAAAA,CAAwB,CACnD,GAAIA,CAAAA,CAAQV,CAAAA,CAAU,OAAO,MAAA,CAE7B,GADIG,CAAAA,EAAQ,IAAA,EACR,OAAOA,CAAAA,EAAQ,QAAA,CAAU,OAAO,KAAA,CAEpC,IAAMe,CAAAA,CAASf,CAAAA,CAEf,OAAI,KAAA,CAAM,OAAA,CAAQe,CAAM,CAAA,CACfb,CAAAA,CAAkBa,CAAAA,CAAQ,IAAMC,CAAAA,CAAWD,CAAAA,CAAQR,CAAK,CAAC,CAAA,CAG3DL,CAAAA,CAAkBa,CAAAA,CAAQ,IAAMK,CAAAA,CAAYL,CAAAA,CAAQR,CAAK,CAAC,CACnE,CAEA,OAAOY,CAAAA,CAAMhB,CAAAA,CAAK,CAAC,CACrB,CAUO,SAASmB,CAAAA,CACdC,CAAAA,CACAC,CAAAA,CACS,CACT,GAAID,CAAAA,GAAMC,CAAAA,CAAG,OAAO,KAAA,CACpB,GAAI,CAACD,CAAAA,EAAK,CAACC,CAAAA,CAAG,OAAO,MAAA,CAErB,IAAMC,CAAAA,CAAQ,MAAA,CAAO,IAAA,CAAKF,CAAC,CAAA,CACrBG,CAAAA,CAAQ,MAAA,CAAO,IAAA,CAAKF,CAAC,CAAA,CAE3B,GAAIC,CAAAA,CAAM,MAAA,GAAWC,CAAAA,CAAM,MAAA,CAAQ,OAAO,MAAA,CAE1C,IAAA,IAAWL,CAAAA,IAAOI,CAAAA,CAChB,GAAIF,CAAAA,CAAEF,CAAG,CAAA,GAAMG,CAAAA,CAAEH,CAAG,CAAA,CAAG,OAAO,MAAA,CAGhC,OAAO,KACT,CAkBO,SAASM,CAAAA,CAAW/B,CAAAA,CAAwB,CACjD,IAAMgC,CAAAA,CAAMjC,CAAAA,CAAgBC,CAAK,CAAA,CAC7BiC,CAAAA,CAAO,IAAA,CACX,IAAA,IAASC,CAAAA,CAAI,CAAA,CAAGA,CAAAA,CAAIF,CAAAA,CAAI,MAAA,CAAQE,CAAAA,EAAAA,CAC9BD,CAAAA,CAAAA,CAASA,CAAAA,EAAQ,CAAA,EAAKA,CAAAA,CAAQD,CAAAA,CAAI,UAAA,CAAWE,CAAC,CAAA,CAGhD,OAAA,CAAQD,CAAAA,GAAS,CAAA,EAAG,QAAA,CAAS,EAAE,CACjC,CAkCO,SAASE,CAAAA,CACdC,CAAAA,CACAC,CAAAA,CAAc,IAAA,CAAK,GAAA,EAAI,CACd,CACT,OAAOD,CAAAA,CAAS,SAAA,GAAc,MAAA,EAAaC,CAAAA,CAAMD,CAAAA,CAAS,SAC5D,CA6BO,SAASE,CAAAA,CACdF,CAAAA,CACAC,CAAAA,CAAc,IAAA,CAAK,GAAA,EAAI,CACpB,CAEH,GAAI,CAACD,CAAAA,EAAY,OAAOA,CAAAA,EAAa,QAAA,CACnC,MAAM,IAAI,KAAA,CACR,0FACF,CAAA,CAEF,GAAI,EAAE,MAAA,GAAUA,CAAAA,CAAAA,CACd,MAAM,IAAI,KAAA,CACR,iEACF,CAAA,CAEF,GAAI,EAAE,WAAA,GAAeA,CAAAA,CAAAA,EAAa,OAAOA,CAAAA,CAAS,SAAA,EAAc,QAAA,CAC9D,MAAM,IAAI,KAAA,CACR,0FACF,CAAA,CAIF,GAAID,CAAAA,CAAkBC,CAAAA,CAAUC,CAAG,CAAA,CAAG,CACpC,IAAME,CAAAA,CAAY,IAAI,IAAA,CAAKH,CAAAA,CAAS,SAAU,CAAA,CAAE,WAAA,EAAY,CAC5D,MAAM,IAAI,KAAA,CACR,CAAA,gCAAA,EAAmCG,CAAS,CAAA,0CAAA,CAC9C,CACF,CACA,OAAOH,CAAAA,CAAS,IAClB,CAqDO,SAASI,CAAAA,CACdC,CAAAA,CACAC,CAAAA,CACc,CACd,IAAMC,CAAAA,CAA+B,EAAC,CAGtC,SAASC,CAAAA,CACPC,CAAAA,CACAC,CAAAA,CACAC,CAAAA,CACA1C,CAAAA,CACM,CACNsC,CAAAA,CAAQ,IAAA,CAAK,CAAE,IAAA,CAAAE,CAAAA,CAAM,QAAA,CAAAC,CAAAA,CAAU,QAAA,CAAAC,CAAAA,CAAU,IAAA,CAAA1C,CAAK,CAAC,EACjD,CAGA,SAAS2C,CAAAA,CACPC,CAAAA,CACAC,CAAAA,CACAL,CAAAA,CACS,CACT,OAAII,CAAAA,EAAW,IAAA,EACTC,CAAAA,EAAW,IAAA,EACbN,CAAAA,CAAWC,CAAAA,CAAMI,CAAAA,CAAQC,CAAAA,CAAQ,OAAO,CAAA,CAGnC,IAAA,EAELA,CAAAA,EAAW,IAAA,EACbN,CAAAA,CAAWC,CAAAA,CAAMI,CAAAA,CAAQC,CAAAA,CAAQ,SAAS,CAAA,CAEnC,IAAA,EAGF,KACT,CAGA,SAASC,CAAAA,CACPC,CAAAA,CACAC,CAAAA,CACAR,CAAAA,CACM,CACN,GAAIO,CAAAA,CAAO,MAAA,GAAWC,CAAAA,CAAO,MAAA,CAAQ,CACnCT,CAAAA,CAAWC,CAAAA,CAAMO,CAAAA,CAAQC,CAAAA,CAAQ,SAAS,CAAA,CAE1C,MACF,CACA,IAAA,IAASnB,CAAAA,CAAI,CAAA,CAAGA,CAAAA,CAAIkB,CAAAA,CAAO,MAAA,CAAQlB,CAAAA,EAAAA,CACjCoB,CAAAA,CAAQF,CAAAA,CAAOlB,CAAC,CAAA,CAAGmB,CAAAA,CAAOnB,CAAC,CAAA,CAAG,CAAA,EAAGW,CAAI,CAAA,CAAA,EAAIX,CAAC,CAAA,CAAA,CAAG,EAEjD,CAGA,SAASqB,CAAAA,CACPC,CAAAA,CACAC,CAAAA,CACAZ,CAAAA,CACM,CACN,IAAMa,CAAAA,CAAU,IAAI,GAAA,CAAI,CACtB,GAAG,MAAA,CAAO,IAAA,CAAKF,CAAS,CAAA,CACxB,GAAG,MAAA,CAAO,IAAA,CAAKC,CAAS,CAC1B,CAAC,CAAA,CAED,IAAA,IAAWhC,CAAAA,IAAOiC,CAAAA,CAAS,CACzB,IAAMC,CAAAA,CAAYd,CAAAA,CAAO,CAAA,EAAGA,CAAI,CAAA,CAAA,EAAIpB,CAAG,CAAA,CAAA,CAAKA,CAAAA,CACtCA,CAAAA,IAAO+B,CAAAA,CAEA/B,CAAAA,IAAOgC,CAAAA,CAGlBH,CAAAA,CAAQE,CAAAA,CAAU/B,CAAG,CAAA,CAAGgC,CAAAA,CAAUhC,CAAG,CAAA,CAAGkC,CAAS,CAAA,CAFjDf,CAAAA,CAAWe,CAAAA,CAAWH,CAAAA,CAAU/B,CAAG,CAAA,CAAG,MAAA,CAAW,SAAS,CAAA,CAF1DmB,CAAAA,CAAWe,CAAAA,CAAW,MAAA,CAAWF,CAAAA,CAAUhC,CAAG,CAAA,CAAG,OAAO,EAM5D,CACF,CAGA,SAAS6B,CAAAA,CAAQL,CAAAA,CAAiBC,CAAAA,CAAiBL,CAAAA,CAAoB,CACrE,GAAI,CAAAG,CAAAA,CAAeC,CAAAA,CAAQC,CAAAA,CAAQL,CAAI,CAAA,CAKvC,CAAA,GAAI,OAAOI,CAAAA,EAAW,QAAA,EAAY,OAAOC,CAAAA,EAAW,QAAA,CAAU,CACvD,MAAA,CAAO,EAAA,CAAGD,CAAAA,CAAQC,CAAM,CAAA,EAC3BN,CAAAA,CAAWC,CAAAA,CAAMI,CAAAA,CAAQC,CAAAA,CAAQ,SAAS,CAAA,CAG5C,MACF,CAGA,GAAI,KAAA,CAAM,OAAA,CAAQD,CAAM,CAAA,EAAK,KAAA,CAAM,OAAA,CAAQC,CAAM,CAAA,CAAG,CAClDC,CAAAA,CAAcF,CAAAA,CAAQC,CAAAA,CAAQL,CAAI,CAAA,CAElC,MACF,CAGAU,CAAAA,CACEN,CAAAA,CACAC,CAAAA,CACAL,CACF,EAAA,CACF,CAGAS,CAAAA,CAAQb,CAAAA,CAAY,IAAA,CAAMC,CAAAA,CAAY,IAAA,CAAM,EAAE,CAAA,CAG9C,IAAMkB,CAAAA,CACJnB,CAAAA,CAAY,OAAA,GAAYC,CAAAA,CAAY,OAAA,GACnCD,CAAAA,CAAY,OAAA,GAAY,MAAA,EAAaC,CAAAA,CAAY,OAAA,GAAY,MAAA,CAAA,CAEhE,OAAO,CACL,SAAA,CAAWC,CAAAA,CAAQ,MAAA,GAAW,CAAA,CAC9B,OAAA,CAAAA,CAAAA,CACA,cAAA,CAAAiB,CAAAA,CACA,UAAA,CAAYnB,CAAAA,CAAY,OAAA,CACxB,UAAA,CAAYC,CAAAA,CAAY,OAC1B,CACF,CAwBO,SAASmB,CAAAA,CACdzB,CAAAA,CAC+B,CAC/B,OAAO,WAAA,GAAeA,CAAAA,EAAY,OAAOA,CAAAA,CAAS,SAAA,EAAc,QAClE,CAoCA,eAAsB0B,CAAAA,CACpB1B,CAAAA,CACA2B,CAAAA,CAC4B,CAE5B,IAAMC,CAAAA,CAAUjE,CAAAA,CAAgB,CAC9B,IAAA,CAAMqC,CAAAA,CAAS,IAAA,CACf,SAAA,CAAWA,CAAAA,CAAS,SAAA,CACpB,SAAA,CAAWA,CAAAA,CAAS,SAAA,CACpB,OAAA,CAASA,CAAAA,CAAS,OAAA,CAClB,QAAA,CAAUA,CAAAA,CAAS,QACrB,CAAC,CAAA,CAEK6B,CAAAA,CAAY,MAAMC,CAAAA,CAAWF,CAAAA,CAASD,CAAM,CAAA,CAElD,OAAO,CACL,GAAG3B,CAAAA,CACH,SAAA,CAAA6B,CAAAA,CACA,SAAA,CAAW,aACb,CACF,CA8BA,eAAsBE,CAAAA,CACpBC,CAAAA,CACAL,CAAAA,CACkB,CAClB,GAAI,CAACK,CAAAA,CAAe,SAAA,EAAaA,CAAAA,CAAe,SAAA,GAAc,aAAA,CAC5D,OAAO,MAAA,CAIT,IAAMJ,CAAAA,CAAUjE,CAAAA,CAAgB,CAC9B,IAAA,CAAMqE,CAAAA,CAAe,IAAA,CACrB,SAAA,CAAWA,CAAAA,CAAe,SAAA,CAC1B,SAAA,CAAWA,CAAAA,CAAe,SAAA,CAC1B,OAAA,CAASA,CAAAA,CAAe,OAAA,CACxB,QAAA,CAAUA,CAAAA,CAAe,QAC3B,CAAC,CAAA,CAEKC,CAAAA,CAAoB,MAAMH,CAAAA,CAAWF,CAAAA,CAASD,CAAM,CAAA,CAG1D,OAAOO,CAAAA,CAAgBF,CAAAA,CAAe,SAAA,CAAWC,CAAiB,CACpE,CAMA,eAAeH,CAAAA,CACbK,CAAAA,CACAR,CAAAA,CACiB,CAEjB,IAAMS,CAAAA,CACJ,OAAOT,CAAAA,EAAW,QAAA,CAAW,IAAI,WAAA,EAAY,CAAE,MAAA,CAAOA,CAAM,CAAA,CAAIA,CAAAA,CAG5DU,CAAAA,CAA8B,CAClC,IAAA,CAAM,MAAA,CACN,IAAA,CAAM,CAAE,IAAA,CAAM,SAAU,CAC1B,CAAA,CACMhD,CAAAA,CAAM,MAAM,MAAA,CAAO,MAAA,CAAO,SAAA,CAC9B,KAAA,CACA+C,CAAAA,CACAC,CAAAA,CACA,KAAA,CACA,CAAC,MAAM,CACT,CAAA,CAGMC,CAAAA,CAAe,IAAI,WAAA,EAAY,CAAE,MAAA,CAAOH,CAAO,CAAA,CAC/CN,CAAAA,CAAY,MAAM,MAAA,CAAO,MAAA,CAAO,IAAA,CAAK,MAAA,CAAQxC,CAAAA,CAAKiD,CAAY,CAAA,CAGpE,OAAO,KAAA,CAAM,IAAA,CAAK,IAAI,UAAA,CAAWT,CAAS,CAAC,CAAA,CACxC,GAAA,CAAKrC,CAAAA,EAAMA,CAAAA,CAAE,QAAA,CAAS,EAAE,CAAA,CAAE,QAAA,CAAS,CAAA,CAAG,GAAG,CAAC,CAAA,CAC1C,IAAA,CAAK,EAAE,CACZ,CAMA,SAAS0C,CAAAA,CAAgB3C,CAAAA,CAAWC,CAAAA,CAAoB,CACtD,GAAID,CAAAA,CAAE,MAAA,GAAWC,CAAAA,CAAE,MAAA,CACjB,OAAO,MAAA,CAGT,IAAInB,CAAAA,CAAS,CAAA,CACb,IAAA,IAASyB,CAAAA,CAAI,CAAA,CAAGA,CAAAA,CAAIP,CAAAA,CAAE,MAAA,CAAQO,CAAAA,EAAAA,CAC5BzB,CAAAA,EAAUkB,CAAAA,CAAE,UAAA,CAAWO,CAAC,CAAA,CAAIN,CAAAA,CAAE,UAAA,CAAWM,CAAC,CAAA,CAE5C,OAAOzB,CAAAA,GAAW,CACpB","file":"chunk-KQKNE23L.cjs","sourcesContent":["/**\n * Shared utilities for Directive\n */\n\n/**\n * Execute a promise with a timeout, properly cleaning up the timer.\n * Used by both constraints and resolvers for timeout handling.\n *\n * @param promise - The promise to wrap with a timeout\n * @param ms - Timeout duration in milliseconds\n * @param errorMessage - Error message if timeout occurs\n * @returns The promise result\n * @throws Error if timeout is exceeded\n */\nexport async function withTimeout<T>(\n  promise: Promise<T>,\n  ms: number,\n  errorMessage: string,\n): Promise<T> {\n  let timeoutId: ReturnType<typeof setTimeout>;\n\n  const timeoutPromise = new Promise<never>((_, reject) => {\n    timeoutId = setTimeout(() => reject(new Error(errorMessage)), ms);\n  });\n\n  try {\n    return await Promise.race([promise, timeoutPromise]);\n  } finally {\n    clearTimeout(timeoutId!);\n  }\n}\n\n/**\n * Normalize an error to an Error instance.\n * Ensures consistent error handling throughout the library.\n *\n * @param error - The error to normalize (can be anything)\n * @returns An Error instance\n */\nexport function normalizeError(error: unknown): Error {\n  if (error instanceof Error) {\n    return error;\n  }\n  return new Error(String(error));\n}\n\n/**\n * Create a stable JSON string with sorted keys.\n * Handles circular references and deeply nested objects safely.\n *\n * @param value - The value to stringify\n * @param maxDepth - Maximum nesting depth (default: 50)\n * @returns A stable JSON string\n */\nexport function stableStringify(value: unknown, maxDepth = 50): string {\n  const seen = new WeakSet();\n\n  /** Stringify a primitive value (null, undefined, string, number, boolean, function, symbol). */\n  function stringifyPrimitive(val: unknown): string | undefined {\n    if (val === null) return \"null\";\n    if (val === undefined) return \"undefined\";\n\n    const type = typeof val;\n    if (type === \"string\") return JSON.stringify(val);\n    if (type === \"number\" || type === \"boolean\") return String(val);\n    if (type === \"function\") return '\"[function]\"';\n    if (type === \"symbol\") return '\"[symbol]\"';\n\n    return undefined;\n  }\n\n  /** Guard against circular references using a seen-set, then delegate to fn. */\n  function withCircularGuard(\n    obj: object,\n    fn: () => string,\n  ): string {\n    if (seen.has(obj)) {\n      return '\"[circular]\"';\n    }\n    seen.add(obj);\n    const result = fn();\n    seen.delete(obj);\n\n    return result;\n  }\n\n  /** Stringify an array with circular reference protection. */\n  function stringifyArray(val: unknown[], depth: number): string {\n    return withCircularGuard(val, () =>\n      `[${val.map((v) => stringify(v, depth + 1)).join(\",\")}]`,\n    );\n  }\n\n  /** Stringify an object with sorted keys and circular reference protection. */\n  function stringifyObject(obj: Record<string, unknown>, depth: number): string {\n    return withCircularGuard(obj, () => {\n      const keys = Object.keys(obj).sort();\n      const pairs = keys.map(\n        (k) => `${JSON.stringify(k)}:${stringify(obj[k], depth + 1)}`,\n      );\n\n      return `{${pairs.join(\",\")}}`;\n    });\n  }\n\n  /** Recursively stringify a value with depth limit and circular detection. */\n  function stringify(val: unknown, depth: number): string {\n    if (depth > maxDepth) {\n      return '\"[max depth exceeded]\"';\n    }\n\n    const primitive = stringifyPrimitive(val);\n    if (primitive !== undefined) {\n      return primitive;\n    }\n\n    if (Array.isArray(val)) {\n      return stringifyArray(val, depth);\n    }\n\n    if (typeof val === \"object\") {\n      return stringifyObject(val as Record<string, unknown>, depth);\n    }\n\n    return '\"[unknown]\"';\n  }\n\n  return stringify(value, 0);\n}\n\n/**\n * Check for prototype pollution in an object, including nested objects.\n * Returns true if the object is safe, false if dangerous keys are found.\n *\n * @param obj - The object to check\n * @param maxDepth - Maximum nesting depth to check (default: 50)\n * @returns True if safe, false if dangerous keys found\n */\nexport function isPrototypeSafe(obj: unknown, maxDepth = 50): boolean {\n  const dangerousKeys = new Set([\"__proto__\", \"constructor\", \"prototype\"]);\n  const seen = new WeakSet();\n\n  /** Guard against circular references using a seen-set, then delegate to fn. */\n  function withCircularGuard(\n    objVal: object,\n    fn: () => boolean,\n  ): boolean {\n    if (seen.has(objVal)) return true;\n    seen.add(objVal);\n    const result = fn();\n    seen.delete(objVal);\n\n    return result;\n  }\n\n  /** Check array elements for prototype pollution keys. */\n  function checkArray(arr: unknown[], depth: number): boolean {\n    for (const item of arr) {\n      if (!check(item, depth + 1)) {\n        return false;\n      }\n    }\n\n    return true;\n  }\n\n  /** Check object keys and values for prototype pollution. */\n  function checkObject(objVal: Record<string, unknown>, depth: number): boolean {\n    for (const key of Object.keys(objVal)) {\n      if (dangerousKeys.has(key)) {\n        return false;\n      }\n      if (!check(objVal[key], depth + 1)) {\n        return false;\n      }\n    }\n\n    return true;\n  }\n\n  /** Recursively check a value tree for dangerous prototype keys. */\n  function check(val: unknown, depth: number): boolean {\n    if (depth > maxDepth) return false; // Fail safe at max depth - don't assume safety\n    if (val === null || val === undefined) return true;\n    if (typeof val !== \"object\") return true;\n\n    const objVal = val as Record<string, unknown>;\n\n    if (Array.isArray(objVal)) {\n      return withCircularGuard(objVal, () => checkArray(objVal, depth));\n    }\n\n    return withCircularGuard(objVal, () => checkObject(objVal, depth));\n  }\n\n  return check(obj, 0);\n}\n\n/**\n * Shallow equality comparison for objects.\n * Used by React hooks to avoid unnecessary re-renders.\n *\n * @param a - First object\n * @param b - Second object\n * @returns True if objects are shallowly equal\n */\nexport function shallowEqual<T extends Record<string, unknown>>(\n  a: T,\n  b: T,\n): boolean {\n  if (a === b) return true;\n  if (!a || !b) return false;\n\n  const keysA = Object.keys(a);\n  const keysB = Object.keys(b);\n\n  if (keysA.length !== keysB.length) return false;\n\n  for (const key of keysA) {\n    if (a[key] !== b[key]) return false;\n  }\n\n  return true;\n}\n\n/**\n * Generate a simple hash string from an object.\n * Uses djb2 algorithm on the stable stringified value.\n *\n * **Limitations:**\n * - 32-bit hash output means collision probability increases with data set size\n *   (birthday paradox: ~50% collision chance at ~77,000 distinct values)\n * - Suitable for: cache invalidation, change detection, deduplication of small sets\n * - NOT suitable for: cryptographic use, security-sensitive operations, large-scale deduplication\n *\n * For security-sensitive use cases requiring stronger collision resistance,\n * consider using a cryptographic hash like SHA-256.\n *\n * @param value - The value to hash\n * @returns A hex hash string (8 characters, 32 bits)\n */\nexport function hashObject(value: unknown): string {\n  const str = stableStringify(value);\n  let hash = 5381;\n  for (let i = 0; i < str.length; i++) {\n    hash = ((hash << 5) + hash) ^ str.charCodeAt(i);\n  }\n  // Convert to unsigned 32-bit and then to hex\n  return (hash >>> 0).toString(16);\n}\n\n// ============================================================================\n// Distributable Snapshot Utilities\n// ============================================================================\n\n/**\n * Distributable snapshot type for type-safe helper functions.\n */\nexport interface DistributableSnapshotLike<T = Record<string, unknown>> {\n  data: T;\n  createdAt: number;\n  expiresAt?: number;\n  version?: string;\n  metadata?: Record<string, unknown>;\n}\n\n/**\n * Check if a distributable snapshot has expired.\n * Returns false if the snapshot has no expiresAt field.\n *\n * @example\n * ```typescript\n * const snapshot = system.getDistributableSnapshot({ ttlSeconds: 3600 });\n * // ... later ...\n * if (isSnapshotExpired(snapshot)) {\n *   // Refresh the snapshot\n * }\n * ```\n *\n * @param snapshot - The snapshot to check\n * @param now - Optional current timestamp (defaults to Date.now())\n * @returns True if the snapshot has expired, false otherwise\n */\nexport function isSnapshotExpired<T>(\n  snapshot: DistributableSnapshotLike<T>,\n  now: number = Date.now(),\n): boolean {\n  return snapshot.expiresAt !== undefined && now > snapshot.expiresAt;\n}\n\n/**\n * Validate a distributable snapshot and return its data.\n * Throws if the snapshot is malformed or has expired.\n *\n * @example\n * ```typescript\n * const cached = JSON.parse(await redis.get(`entitlements:${userId}`));\n * try {\n *   const data = validateSnapshot(cached);\n *   // Use data.canUseFeature, etc.\n * } catch (e) {\n *   // Snapshot invalid or expired, refresh it\n * }\n * ```\n *\n * @example Using custom timestamp for testing\n * ```typescript\n * const snapshot = { data: { test: true }, createdAt: 1000, expiresAt: 2000 };\n * validateSnapshot(snapshot, 1500); // Returns { test: true }\n * validateSnapshot(snapshot, 2500); // Throws: Snapshot expired\n * ```\n *\n * @param snapshot - The snapshot to validate\n * @param now - Optional current timestamp (defaults to Date.now())\n * @returns The snapshot data if valid\n * @throws Error if the snapshot is malformed or has expired\n */\nexport function validateSnapshot<T>(\n  snapshot: DistributableSnapshotLike<T>,\n  now: number = Date.now(),\n): T {\n  // Structural validation\n  if (!snapshot || typeof snapshot !== \"object\") {\n    throw new Error(\n      \"[Directive] Invalid snapshot: expected an object with 'data' and 'createdAt' properties.\",\n    );\n  }\n  if (!(\"data\" in snapshot)) {\n    throw new Error(\n      \"[Directive] Invalid snapshot: missing required 'data' property.\",\n    );\n  }\n  if (!(\"createdAt\" in snapshot) || typeof snapshot.createdAt !== \"number\") {\n    throw new Error(\n      \"[Directive] Invalid snapshot: missing or invalid 'createdAt' property (expected number).\",\n    );\n  }\n\n  // Expiration validation\n  if (isSnapshotExpired(snapshot, now)) {\n    const expiredAt = new Date(snapshot.expiresAt!).toISOString();\n    throw new Error(\n      `[Directive] Snapshot expired at ${expiredAt}. Obtain a fresh snapshot from the source.`,\n    );\n  }\n  return snapshot.data;\n}\n\n/**\n * Diff result for a single changed value.\n */\nexport interface SnapshotDiffEntry {\n  /** The key path that changed (e.g., \"canUseApi\" or \"limits.apiCalls\") */\n  path: string;\n  /** The value in the old snapshot */\n  oldValue: unknown;\n  /** The value in the new snapshot */\n  newValue: unknown;\n  /** Type of change: \"added\", \"removed\", or \"changed\" */\n  type: \"added\" | \"removed\" | \"changed\";\n}\n\n/**\n * Result of diffing two snapshots.\n */\nexport interface SnapshotDiff {\n  /** Whether the snapshots are identical */\n  identical: boolean;\n  /** List of changes between snapshots */\n  changes: SnapshotDiffEntry[];\n  /** Whether the version changed (if both have versions) */\n  versionChanged: boolean;\n  /** Old version (if available) */\n  oldVersion?: string;\n  /** New version (if available) */\n  newVersion?: string;\n}\n\n/**\n * Compare two distributable snapshots and return the differences.\n * Useful for debugging, audit logs, and webhook payloads.\n *\n * @example\n * ```typescript\n * const oldSnapshot = system.getDistributableSnapshot({ includeVersion: true });\n * system.dispatch({ type: \"upgradePlan\", plan: \"pro\" });\n * const newSnapshot = system.getDistributableSnapshot({ includeVersion: true });\n *\n * const diff = diffSnapshots(oldSnapshot, newSnapshot);\n * if (!diff.identical) {\n *   console.log(\"Changes:\", diff.changes);\n *   // [{ path: \"canUseApi\", oldValue: false, newValue: true, type: \"changed\" }]\n * }\n * ```\n *\n * @param oldSnapshot - The previous snapshot\n * @param newSnapshot - The new snapshot\n * @returns A diff result with all changes\n */\nexport function diffSnapshots<T = Record<string, unknown>>(\n  oldSnapshot: DistributableSnapshotLike<T>,\n  newSnapshot: DistributableSnapshotLike<T>,\n): SnapshotDiff {\n  const changes: SnapshotDiffEntry[] = [];\n\n  /** Push a change entry to the diff results. */\n  function pushChange(\n    path: string,\n    oldValue: unknown,\n    newValue: unknown,\n    type: SnapshotDiffEntry[\"type\"],\n  ): void {\n    changes.push({ path, oldValue, newValue, type });\n  }\n\n  /** Handle null/undefined comparison cases. Returns true if fully handled. */\n  function compareNullish(\n    oldObj: unknown,\n    newObj: unknown,\n    path: string,\n  ): boolean {\n    if (oldObj === null || oldObj === undefined) {\n      if (newObj !== null && newObj !== undefined) {\n        pushChange(path, oldObj, newObj, \"added\");\n      }\n\n      return true;\n    }\n    if (newObj === null || newObj === undefined) {\n      pushChange(path, oldObj, newObj, \"removed\");\n\n      return true;\n    }\n\n    return false;\n  }\n\n  /** Compare two arrays element by element, recursing into each. */\n  function compareArrays(\n    oldArr: unknown[],\n    newArr: unknown[],\n    path: string,\n  ): void {\n    if (oldArr.length !== newArr.length) {\n      pushChange(path, oldArr, newArr, \"changed\");\n\n      return;\n    }\n    for (let i = 0; i < oldArr.length; i++) {\n      compare(oldArr[i], newArr[i], `${path}[${i}]`);\n    }\n  }\n\n  /** Compare two objects by key union, detecting added/removed/changed. */\n  function compareObjects(\n    oldRecord: Record<string, unknown>,\n    newRecord: Record<string, unknown>,\n    path: string,\n  ): void {\n    const allKeys = new Set([\n      ...Object.keys(oldRecord),\n      ...Object.keys(newRecord),\n    ]);\n\n    for (const key of allKeys) {\n      const childPath = path ? `${path}.${key}` : key;\n      if (!(key in oldRecord)) {\n        pushChange(childPath, undefined, newRecord[key], \"added\");\n      } else if (!(key in newRecord)) {\n        pushChange(childPath, oldRecord[key], undefined, \"removed\");\n      } else {\n        compare(oldRecord[key], newRecord[key], childPath);\n      }\n    }\n  }\n\n  /** Recursively compare two values and record differences. */\n  function compare(oldObj: unknown, newObj: unknown, path: string): void {\n    if (compareNullish(oldObj, newObj, path)) {\n      return;\n    }\n\n    // Handle primitives\n    if (typeof oldObj !== \"object\" || typeof newObj !== \"object\") {\n      if (!Object.is(oldObj, newObj)) {\n        pushChange(path, oldObj, newObj, \"changed\");\n      }\n\n      return;\n    }\n\n    // Handle arrays\n    if (Array.isArray(oldObj) && Array.isArray(newObj)) {\n      compareArrays(oldObj, newObj, path);\n\n      return;\n    }\n\n    // Handle objects\n    compareObjects(\n      oldObj as Record<string, unknown>,\n      newObj as Record<string, unknown>,\n      path,\n    );\n  }\n\n  // Compare data\n  compare(oldSnapshot.data, newSnapshot.data, \"\");\n\n  // Check version change\n  const versionChanged =\n    oldSnapshot.version !== newSnapshot.version &&\n    (oldSnapshot.version !== undefined || newSnapshot.version !== undefined);\n\n  return {\n    identical: changes.length === 0,\n    changes,\n    versionChanged,\n    oldVersion: oldSnapshot.version,\n    newVersion: newSnapshot.version,\n  };\n}\n\n// ============================================================================\n// Snapshot Signing (HMAC)\n// ============================================================================\n\n/**\n * A signed distributable snapshot.\n * Contains the original snapshot plus a cryptographic signature.\n */\nexport interface SignedSnapshot<T = Record<string, unknown>>\n  extends DistributableSnapshotLike<T> {\n  /** HMAC-SHA256 signature in hex format */\n  signature: string;\n  /** Signing algorithm used */\n  algorithm: \"hmac-sha256\";\n}\n\n/**\n * Check if a snapshot is signed.\n *\n * @param snapshot - The snapshot to check\n * @returns True if the snapshot has a signature\n */\nexport function isSignedSnapshot<T>(\n  snapshot: DistributableSnapshotLike<T> | SignedSnapshot<T>,\n): snapshot is SignedSnapshot<T> {\n  return \"signature\" in snapshot && typeof snapshot.signature === \"string\";\n}\n\n/**\n * Sign a distributable snapshot using HMAC-SHA256.\n * Creates a tamper-proof signature that can be verified later.\n *\n * **Security Notes:**\n * - Use a cryptographically random secret of at least 32 bytes\n * - Store the secret securely (environment variable, secrets manager)\n * - Never expose the secret to clients\n * - The signature covers all snapshot fields for integrity\n *\n * @example\n * ```typescript\n * const snapshot = system.getDistributableSnapshot({\n *   includeDerivations: ['canUseFeature', 'limits'],\n *   ttlSeconds: 3600,\n * });\n *\n * // Sign the snapshot (server-side only)\n * const signed = await signSnapshot(snapshot, process.env.SNAPSHOT_SECRET);\n *\n * // Store in JWT, Redis, or send to client\n * const jwt = createJWT({ snapshot: signed });\n *\n * // Later, verify the signature\n * const isValid = await verifySnapshotSignature(signed, process.env.SNAPSHOT_SECRET);\n * if (!isValid) {\n *   throw new Error('Snapshot has been tampered with');\n * }\n * ```\n *\n * @param snapshot - The snapshot to sign\n * @param secret - The HMAC secret (string or Uint8Array)\n * @returns A signed snapshot with the signature attached\n */\nexport async function signSnapshot<T>(\n  snapshot: DistributableSnapshotLike<T>,\n  secret: string | Uint8Array,\n): Promise<SignedSnapshot<T>> {\n  // Create a canonical representation for signing\n  const payload = stableStringify({\n    data: snapshot.data,\n    createdAt: snapshot.createdAt,\n    expiresAt: snapshot.expiresAt,\n    version: snapshot.version,\n    metadata: snapshot.metadata,\n  });\n\n  const signature = await hmacSha256(payload, secret);\n\n  return {\n    ...snapshot,\n    signature,\n    algorithm: \"hmac-sha256\",\n  };\n}\n\n/**\n * Verify the signature of a signed snapshot.\n * Returns true if the signature is valid, false otherwise.\n *\n * **Important:** Always verify signatures before trusting snapshot data,\n * especially if the snapshot was received from an untrusted source (client, cache).\n *\n * @example\n * ```typescript\n * // Receive signed snapshot from client or cache\n * const snapshot = JSON.parse(cachedData);\n *\n * // Verify before using\n * const isValid = await verifySnapshotSignature(snapshot, process.env.SNAPSHOT_SECRET);\n * if (!isValid) {\n *   throw new Error('Invalid snapshot signature - possible tampering');\n * }\n *\n * // Now safe to use snapshot.data\n * if (snapshot.data.canUseFeature.api) {\n *   // Grant access\n * }\n * ```\n *\n * @param signedSnapshot - The signed snapshot to verify\n * @param secret - The HMAC secret (must match the signing secret)\n * @returns True if signature is valid, false otherwise\n */\nexport async function verifySnapshotSignature<T>(\n  signedSnapshot: SignedSnapshot<T>,\n  secret: string | Uint8Array,\n): Promise<boolean> {\n  if (!signedSnapshot.signature || signedSnapshot.algorithm !== \"hmac-sha256\") {\n    return false;\n  }\n\n  // Recreate the canonical payload (same as signing)\n  const payload = stableStringify({\n    data: signedSnapshot.data,\n    createdAt: signedSnapshot.createdAt,\n    expiresAt: signedSnapshot.expiresAt,\n    version: signedSnapshot.version,\n    metadata: signedSnapshot.metadata,\n  });\n\n  const expectedSignature = await hmacSha256(payload, secret);\n\n  // Use timing-safe comparison\n  return timingSafeEqual(signedSnapshot.signature, expectedSignature);\n}\n\n/**\n * Create HMAC-SHA256 signature of a message.\n * Uses Web Crypto API for cross-platform support (Node.js, browsers, Deno, Bun).\n */\nasync function hmacSha256(\n  message: string,\n  secret: string | Uint8Array,\n): Promise<string> {\n  // Convert secret to Uint8Array if string\n  const secretBytes: Uint8Array =\n    typeof secret === \"string\" ? new TextEncoder().encode(secret) : secret;\n\n  // Import key for HMAC\n  const algorithm: HmacImportParams = {\n    name: \"HMAC\",\n    hash: { name: \"SHA-256\" },\n  };\n  const key = await crypto.subtle.importKey(\n    \"raw\",\n    secretBytes as unknown as ArrayBuffer,\n    algorithm,\n    false,\n    [\"sign\"],\n  );\n\n  // Sign the message\n  const messageBytes = new TextEncoder().encode(message);\n  const signature = await crypto.subtle.sign(\"HMAC\", key, messageBytes);\n\n  // Convert to hex string\n  return Array.from(new Uint8Array(signature))\n    .map((b) => b.toString(16).padStart(2, \"0\"))\n    .join(\"\");\n}\n\n/**\n * Timing-safe string comparison to prevent timing attacks.\n * Both strings should be the same length (hex signatures from same algorithm).\n */\nfunction timingSafeEqual(a: string, b: string): boolean {\n  if (a.length !== b.length) {\n    return false;\n  }\n\n  let result = 0;\n  for (let i = 0; i < a.length; i++) {\n    result |= a.charCodeAt(i) ^ b.charCodeAt(i);\n  }\n  return result === 0;\n}\n"]}

package/dist/chunk-PK2EH26L.cjs

@@ -1,2 +0,0 @@
-'use strict';function a(t,e,r){t[e]=r;}function c(t,e){return t[e]}function u(t,e){return {name:t,onRequirementCreated:e.onRequirementCreated?r=>e.onRequirementCreated(r.requirement):void 0,onRequirementMet:e.onRequirementResolved?r=>e.onRequirementResolved(r.requirement):void 0,onError:e.onError}}function d(t){return e=>e.type===t}function p(t){let e=new Set(t);return r=>e.has(r.type)}var n=[];function o(){let t=new Set;return {get isTracking(){return  true},track(e){t.add(e);},getDependencies(){return t}}}var i={isTracking:false,track(){},getDependencies(){return new Set}};function s(){return n[n.length-1]??i}function m(){return n.length>0}function x(t){let e=o();n.push(e);try{return {value:t(),deps:e.getDependencies()}}finally{n.pop();}}function f(t){let e=n.splice(0,n.length);try{return t()}finally{for(let r of e)n.push(r);}}function g(t){s().track(t);}var q=Object.freeze(new Set(["__proto__","constructor","prototype"]));exports.a=a;exports.b=c;exports.c=u;exports.d=d;exports.e=p;exports.f=s;exports.g=m;exports.h=x;exports.i=f;exports.j=g;exports.k=q;//# sourceMappingURL=chunk-PK2EH26L.cjs.map
-//# sourceMappingURL=chunk-PK2EH26L.cjs.map

package/dist/system-CIWPXJOP.js

@@ -1,2 +0,0 @@
-export{a as createSystem}from'./chunk-7DJCOAZH.js';import'./chunk-JVDQ2CBC.js';import'./chunk-O75OISQ2.js';import'./chunk-GO63IIN5.js';//# sourceMappingURL=system-CIWPXJOP.js.map
-//# sourceMappingURL=system-CIWPXJOP.js.map

package/dist/system-VBZ3OJEO.cjs

@@ -1,2 +0,0 @@
-'use strict';var chunkKZZBWL4M_cjs=require('./chunk-KZZBWL4M.cjs');require('./chunk-JXYZ755I.cjs'),require('./chunk-PK2EH26L.cjs'),require('./chunk-KQKNE23L.cjs');Object.defineProperty(exports,"createSystem",{enumerable:true,get:function(){return chunkKZZBWL4M_cjs.a}});//# sourceMappingURL=system-VBZ3OJEO.cjs.map
-//# sourceMappingURL=system-VBZ3OJEO.cjs.map