@elliemae/pui-cli 9.0.0-next.6 → 9.0.0-next.61

package/dist/esm/monorepo/utils.js

@@ -9,7 +9,7 @@ const getPNPMWorkspaceLocation = (cwd) => {
       const result = execSync(`npx find-up ${fileName}`, { cwd });
       location = result.toString().trim();
       break;
-    } catch (err) {
+    } catch (_err) {
     }
   }
   return location;

package/dist/esm/pui-config.js

@@ -3,13 +3,12 @@ import fs from "node:fs";
 import { merge } from "lodash";
 const baseConfig = {
   esBuild: {
-    target: "es2020"
+    target: "es2022"
   }
 };
 const getPUIConfig = () => {
   const configPath = path.resolve(process.cwd(), "./pui.config.js");
-  if (!fs.existsSync(configPath))
-    return baseConfig;
+  if (!fs.existsSync(configPath)) return baseConfig;
   const config = JSON.parse(fs.readFileSync(configPath, "utf8"));
   return merge(baseConfig, config);
 };

package/dist/esm/release.config.js

@@ -0,0 +1,26 @@
+var release_config_default = {
+  branches: [
+    "+([0-9])?(.{+([0-9]),x}).x",
+    "master",
+    "next-major",
+    { name: "beta", prerelease: true },
+    { name: "alpha", prerelease: true },
+    { name: "hotfix", prerelease: true },
+    { name: "next", prerelease: true }
+  ],
+  plugins: [
+    "@semantic-release/commit-analyzer",
+    "@semantic-release/release-notes-generator",
+    [
+      "@semantic-release/changelog",
+      {
+        changelogTitle: "# Changelog\n\nAll notable changes to this project will be documented in this file. See\n[Conventional Commits](https://conventionalcommits.org) for commit guidelines."
+      }
+    ],
+    "@semantic-release/npm",
+    "@semantic-release/github"
+  ]
+};
+export {
+  release_config_default as default
+};

package/dist/esm/server/appRoutes.js

@@ -6,14 +6,12 @@ const serviceEndpoints = /\.endpoint\.js$/;
 const getFilesMatching = (filePattern) => {
   const getFiles = (dir) => {
     let routeFiles = [];
-    if (!fs.existsSync(dir))
-      return routeFiles;
+    if (!fs.existsSync(dir)) return routeFiles;
     fs.readdirSync(dir).forEach((file) => {
       const fullPath = path.join(dir, file);
       if (fs.lstatSync(fullPath).isDirectory()) {
         routeFiles = routeFiles.concat(getFiles(fullPath));
-      } else if (filePattern.test(fullPath))
-        routeFiles.push(fullPath);
+      } else if (filePattern.test(fullPath)) routeFiles.push(fullPath);
     });
     return routeFiles;
   };
@@ -32,8 +30,7 @@ const loadRoutes = async (app) => {
       const routeFileURL = pathToFileURL(routeFile).href;
       const { default: init } = await import(routeFileURL);
       try {
-        if (typeof init === "function")
-          init(app);
+        if (typeof init === "function") init(app);
       } catch (err) {
         console.error(
           `unable to load routes from ${routeFile}. ${err.message}`

package/dist/esm/server/cert.js

@@ -0,0 +1,14 @@
+import fs from "fs";
+import path from "path";
+import { fileURLToPath } from "url";
+const getCertOptions = () => {
+  const __filename = fileURLToPath(import.meta.url);
+  const __dirname = path.dirname(__filename);
+  return {
+    pfx: fs.readFileSync(path.join(__dirname, "./certs/cert.pfx")),
+    passphrase: "uiplatform"
+  };
+};
+export {
+  getCertOptions
+};

package/dist/esm/server/certs/cert.crt

@@ -0,0 +1,25 @@
+-----BEGIN CERTIFICATE-----
+MIIERjCCAy6gAwIBAgIURZDLMeITZ77a7OqWfmuim11w3/0wDQYJKoZIhvcNAQEL
+BQAwgZYxCzAJBgNVBAYTAlVTMQswCQYDVQQIDAJDQTETMBEGA1UEBwwKUGxlYXNh
+bnRvbjEMMAoGA1UECgwDSUNFMRQwEgYDVQQLDAtVSSBQbGF0Zm9ybTESMBAGA1UE
+AwwJbG9jYWxob3N0MS0wKwYJKoZIhvcNAQkBFh52aW5vdGgua2FseWFuYXN1bmRh
+cmFtQGljZS5jb20wHhcNMjQxMDMxMTg1ODI1WhcNMjUxMDMxMTg1ODI1WjCBmzEL
+MAkGA1UEBhMCVVMxCzAJBgNVBAgMAkNBMRMwEQYDVQQHDApQbGVhc2FudG9uMQww
+CgYDVQQKDANJQ0UxFDASBgNVBAsMC1VJIFBsYXRmb3JtMRcwFQYDVQQDDA5sb2Nh
+bGhvc3Q6ODA4MDEtMCsGCSqGSIb3DQEJARYedmlub3RoLmthbHlhbmFzdW5kYXJh
+bUBpY2UuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwfAgF1AN
+m/RnbzKzoXS7SU3JkQWTeQ1ndaZRwiD4Xkg5bvdhzWUJORVYQTWIJJrL3KxqZzGM
+gVj4UJt3AaQD73A+bQagS5EgYxLqg1v34HZvhwMfdoZfw9epQt5KCF3JQXyH+lJk
+RyklnjHVZbYE1/eF1pb0KosIWPXY+kCYTi2b0oPifyO90bVOw3QvxLDF4fgk+QqL
+7HU1EOAak4wj07dNi83xqCOqjtWzmlYokvYELFgCUMzWFEjxuWZMuGu8+28JAMX9
+oXni9K8f4SJX5eZrRrtAHt+LwsxcLQPTmHHeTxvEc/L8//jAVUTohUr+/IfC59z0
+dko7ulPQKjgsFwIDAQABo4GEMIGBMB8GA1UdIwQYMBaAFB/8xooBufI/rf2vXZBh
+sLmQARwoMAkGA1UdEwQCMAAwNAYDVR0RBC0wK4IJbG9jYWxob3N0gg5sb2NhbGhv
+c3Q6ODA4MIIObG9jYWxob3N0OjMwMDAwHQYDVR0OBBYEFLQKGRQF7uuWmv1mYPGF
+lWd8FxjbMA0GCSqGSIb3DQEBCwUAA4IBAQAVqVVBtbkQo1JI7+3oPSgL+CPQC37x
+szF+vXLeswBS6OYrqA4AgW0R3vnhB64t/+oRmUu59vi+PuC1ff4w23g2HMZ+MlY2
+smgJ8XMoxyEn4aVAPLECzBuR67uGzCxJbqtg/avb6EIWTXzBwHI95PWVcWaLav1q
+sf3Mc60LVlAFQb1Ec5MlQHgMHaGJSDE3UwPL+JOOTG1XLnqMt+WFfqG6gN6G3FkY
+dSg3HOR2m2VHaQWvA8Zb34uTUan40K+/hlpbzfgDXF8nvg1Fwivje8+7L3FOcCw0
+k3yHwccxFqhPkXXaByZzaBKIlFXtLA4LiUwVQ7JEwPsJS5U108tuAQ8V
+-----END CERTIFICATE-----

package/dist/esm/server/certs/cert.csr

@@ -0,0 +1,18 @@
+-----BEGIN CERTIFICATE REQUEST-----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+-----END CERTIFICATE REQUEST-----

package/dist/esm/server/certs/cert.ext

@@ -0,0 +1,7 @@
+authorityKeyIdentifier=keyid,issuer
+basicConstraints=CA:FALSE
+subjectAltName = @alt_names
+[alt_names]
+DNS.1 = localhost
+DNS.2 = localhost:8080
+DNS.3 = localhost:3000

package/dist/esm/server/certs/cert.key

@@ -0,0 +1,30 @@
+-----BEGIN ENCRYPTED PRIVATE KEY-----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+-----END ENCRYPTED PRIVATE KEY-----

package/dist/esm/server/certs/rootCA.crt

@@ -0,0 +1,24 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

package/dist/esm/server/certs/rootCA.key

@@ -0,0 +1,30 @@
+-----BEGIN ENCRYPTED PRIVATE KEY-----
+MIIFJDBWBgkqhkiG9w0BBQ0wSTAxBgkqhkiG9w0BBQwwJAQQRf+eVHsoPx56J/99
+1cmVewICCAAwDAYIKoZIhvcNAgkFADAUBggqhkiG9w0DBwQIQyQkzwnWuQgEggTI
+7CvoMlZgiMKLQsZ1+I+ZhKdezUacrMw2vGkCx+Gwuehf/ZdH3VGUAhb8PEV9DPrU
+nAWl8E8opWl/1kjxp9OCNBTxm7Nhg2fF9SriYa0gX+B+9DYMwgu626UC4bBzs6gn
+qDVhPzbYa6WGhK3wOZoAFWw6TFfuztmPc3dZxRX6akVtCL/LA64GQvsYvvLDp+LZ
+jlaceogKyyXiyCLWrNLPQlPsw1OzmXw5FV30zZWjxdqNnB9YfVfWOOYpaxE0Z+yX
+ARrAN8Yg8yRcfAwJmxAwsmDIBJymR97dXEs2yeTYvEcxSjA0ZY5X3n10eIYayfoi
+JBPoeTqmHgkKghR2JrveZkYUIQhCgchHzrGsb+rIqKP1gaXdyaWJvItvEm5Ou7tg
+R2pNMepzlKoyntIyYhMEXJjUwisX5sqzcHa3nKQVfDjWiSViymjxGwOUAUqLhC+j
+DhIlVbf9ZHZm4+jIpJAPrlT3PsfDO9tQ718GliERVLPaHB33BJqB1C0fqM3YCmYH
+6LaRkgP8dAUKc+VN8roy17NLUxWQKCvNKLRKkLrAXlJ1RYK3EKX0J7RRhUKX35Wj
+llYq39P/nCfw56D4Kh/vHUd0Vn0eoZQAbPnriftpk405C3pQCbbkuDaTnmEJGUj3
+g8h6ctkHDnj4Ord7TeTolMtKlQpt1DbNPKFwEZpR1+E7ojt//DIwaerE6NO1itxG
+xKTMqXUqmcKgQlCmuRzjZKlMmVfQI2cuCiBkWR6O45PXj6JFNipM4qNTVZz3RsH6
+tuLB/JfHhwglP2P/OsCyB39yhfsFhLQXLo5/fUqA9yHUJdd4Nq7V9G36vtQQaUs9
+AQt34ithtWZcmrGxIu/UL6xGYrVSbUZRIlkrWTkRuMw6WGMmv+P5ptG/ZAxsATGp
+A5jSCt4wMGTJMy8s3ksImv0dr8x8NgsEAPKBpxPpktdoj5e0C/ovnsrR0/SJ4SYl
+WB2gFQv9cWwDziQB9SQ+OwvpZ7BwEuHqtsY0vYemvY4m99wSTydHEBL+hCqlbTxo
+00Rq1BNJrEAYJ0olzc2Uwyw392W9jDFjUSmIcOfYVG6sdbyOaAgTzA4fDNasLfEl
+sEOmNeQfeeaOgVXmXUZpioVeiDxsmaGZMHwwQlmLgdefBsUvh4JxdNxTZFwbttCD
+t1mbH/OaJ8eahCGXREY32qfNb2xwz4oTkwrJxT9lbC82DBSgn+IzZCm3CfjcqZ+j
+kJoXnsAiCRljHSHYE6sTxOr0b5ND8E/x3f9O9rjbR5IcNMO7S6P9q3FwHKGpgKFx
+NTPVBHrnTehkCjEr8uED+VIWkodrk1mLNQt2hGITlkqEiAD209OAl8DuaMtX49FE
+/Op90vfIn7WBxVHLO0Q82NNkHPSDS8N0bhQZFe8IZME3JfIlKn1/6SiZ+0EnYP58
+FdS4EPc3z1ajyI/Q7CEwAt3eMM+w1KA9ypaD33pcpBP3OKP04ps5jSviY2V0UwJY
+iOLvGLoY2cQ4xwAS68ljjoHtSRz76pQlKAG8zHwx+RbtIkkUvtX5lYpSa70YIM1O
+oy3TJwIxvv1ZXyUWn5qm6qLnrmyAj/1/Jknh0+TkjUfsSYLqoOzu1+E0hPGEByJ+
+eG1+pj5536megxAPm8DIZVe208oiwc+e
+-----END ENCRYPTED PRIVATE KEY-----

package/dist/esm/server/certs/rootCA.srl

@@ -0,0 +1 @@
+4590CB31E21367BEDAECEA967E6BA29B5D70DFFD

package/dist/esm/server/csp.js

@@ -1,20 +1,18 @@
 import fs from "node:fs";
 import path from "node:path";
-import express from "express";
-import cspPolicy from "helmet-csp";
 import crypto from "crypto";
+import express from "express";
+import helmet from "helmet";
 const CSP_REPORT_URI = "/diagnostics/v1/csp";
 const sources = [
-  "'self'",
   "http://localhost:*",
+  "https://localhost:*",
+  "ws://localhost:*",
+  "*.ice.com",
   "*.elliemae.io",
   "*.elliemae.com",
-  "*.elliservices.com",
-  "*.ellielabs.com",
-  "http://pdx-col.eum-appdynamics.com",
-  "https://pdx-col.eum-appdynamics.com/",
-  "https://www.google-analytics.com",
-  "https://www.googletagmanager.com"
+  "*.ellieservices.com",
+  "*.ellielabs.com"
 ];
 const sendFileWithCSPNonce = ({
   buildPath,
@@ -28,41 +26,55 @@ const sendFileWithCSPNonce = ({
       res.sendStatus(404);
     } else {
       res.set("Content-Type", "text/html");
+      res.set("Reporting-Endpoints", `csp-report-uri="${CSP_REPORT_URI}"`);
+      res.set(
+        "Permissions-Policy",
+        "geolocation=(), camera=(), microphone=(), interest-cohort=()"
+      );
       res.send(html.replace(nonceRegex, res.locals.cspNonce));
     }
   });
 };
 const getScriptSrc = () => {
-  const source = (req, res) => `'nonce-${res.locals.cspNonce}'`;
-  const scriptSrc = sources.concat([source]);
+  const source = (_req, res) => `'nonce-${res.locals.cspNonce}'`;
+  const scriptSrc = [source, "'strict-dynamic'"];
   return true ? scriptSrc.concat(["'unsafe-eval'"]) : scriptSrc;
 };
 const csp = (app) => {
-  app.use((req, res, next) => {
-    res.locals.cspNonce = crypto.randomBytes(16).toString("hex");
+  app.use((_req, res, next) => {
+    res.locals.cspNonce = crypto.randomBytes(32).toString("base64");
     next();
   });
   app.use(
-    cspPolicy({
-      directives: {
-        defaultSrc: ["'self'"],
-        baseUri: ["'self'"],
-        blockAllMixedContent: [],
-        connectSrc: sources,
-        fontSrc: sources.concat(["data:"]),
-        frameAncestors: sources,
-        imgSrc: sources.concat(["data:"]),
-        objectSrc: ["'none'"],
-        scriptSrc: getScriptSrc(),
-        scriptSrcAttr: ["'none'"],
-        styleSrc: sources.concat(["'unsafe-inline'"]),
-        upgradeInsecureRequests: [],
-        reportUri: CSP_REPORT_URI
+    helmet({
+      crossOriginOpenerPolicy: { policy: "same-origin-allow-popups" },
+      crossOriginResourcePolicy: false,
+      contentSecurityPolicy: {
+        useDefaults: false,
+        directives: {
+          defaultSrc: helmet.contentSecurityPolicy.dangerouslyDisableDefaultSrc,
+          baseUri: ["'self'"],
+          frameAncestors: sources,
+          objectSrc: ["'none'"],
+          scriptSrc: getScriptSrc(),
+          upgradeInsecureRequests: [],
+          reportUri: CSP_REPORT_URI,
+          reportTo: "csp-report-uri"
+        },
+        reportOnly: process.env.CSP_REPORT_ONLY !== "false"
       },
-      reportOnly: true
+      xFrameOptions: false,
+      xPermittedCrossDomainPolicies: false,
+      xDownloadOptions: false,
+      xXssProtection: false
+    })
+  );
+  app.use(
+    CSP_REPORT_URI,
+    express.json({
+      type: ["application/csp-report", "application/reports+json"]
     })
   );
-  app.use(CSP_REPORT_URI, express.json({ type: "application/csp-report" }));
   app.use(CSP_REPORT_URI, (req, res) => {
     console.log("CSP Violation: ", req.body);
     res.status(204).end();

package/dist/esm/server/index.js

@@ -1,20 +1,30 @@
+import https from "node:https";
+import http from "node:http";
 import express from "express";
+import { getCertOptions } from "./cert.js";
 import { logger } from "./logger.js";
 import {
   setupDefaultMiddlewares,
   setupAdditionalMiddlewars
 } from "./middlewares.js";
-import { port, host } from "./utils.js";
+import { port, wsPort, host } from "./utils.js";
+import { isHttps } from "../utils.js";
 import { loadRoutes } from "./appRoutes.js";
-(async function startServer() {
+import { createWSServer } from "./wsServer.js";
+void async function startServer() {
   const app = express();
   setupDefaultMiddlewares(app);
   await loadRoutes(app);
   setupAdditionalMiddlewars(app);
-  app.listen(port, host, () => {
+  const server = isHttps() ? https.createServer(getCertOptions(), app) : http.createServer(app);
+  server.listen(port, host, () => {
     logger.appStarted(port.toString(), host || "localhost");
   }).on("error", (err) => {
     logger.error(err);
     process.exit(1);
   });
-})();
+  const { wsServer } = await createWSServer({
+    port: wsPort
+  });
+  app.locals.wsServer = wsServer;
+}();

package/dist/esm/server/logger.js

@@ -1,5 +1,6 @@
 import chalk from "chalk";
 import ip from "ip";
+import { isHttps } from "../utils.js";
 const divider = chalk.gray("\n-----------------------------------");
 const logger = {
   // Called whenever there's an error on the server we want to print
@@ -15,10 +16,12 @@ const logger = {
     const accessUrls = `${chalk.bold("Access URLs:")}${divider}
 `;
     const localHostUrl = `Localhost: ${chalk.magenta(
-      `http://${host}:${port}`
+      `${isHttps() ? "https" : "http"}://${host}:${port}`
     )}
 `;
-    const lanUrl = `LAN: ${chalk.magenta(`http://${ip.address()}:${port}`)}
+    const lanUrl = `LAN: ${chalk.magenta(
+      `${isHttps() ? "https" : "http"}://${ip.address()}:${port}`
+    )}
 `;
     const proxy = tunnelStarted ? `
     Proxy: ${chalk.magenta(tunnelStarted)}` : "";

package/dist/esm/server/middlewares.js

@@ -27,7 +27,7 @@ const setupDefaultMiddlewares = (app) => {
 const setupAdditionalMiddlewars = (app, options = {}) => {
   const { buildPath = paths.buildPath, basePath = paths.basePath } = options;
   app.use(compression());
-  app.get(basePath, (req, res) => {
+  app.get(basePath, (_req, res) => {
     sendFileWithCSPNonce({ buildPath, res });
   });
   app.use(
@@ -41,7 +41,7 @@ const setupAdditionalMiddlewars = (app, options = {}) => {
   app.use(expressStaticGzip("cdn", {}));
   app.get(
     "*",
-    (req, res) => sendFileWithCSPNonce({ buildPath, res })
+    (_req, res) => sendFileWithCSPNonce({ buildPath, res })
   );
   return app;
 };

package/dist/esm/server/utils.js

@@ -1,13 +1,20 @@
 import minimist from "minimist";
-const argv = minimist(process.argv.slice(2));
+const argv = minimist(
+  process.argv.slice(2)
+);
 const getCWD = () => process.cwd();
 const port = parseInt(
-  argv.port || process.env.port || process.env.PORT || "3000",
+  argv.port ?? process.env.port ?? process.env.PORT ?? "3000",
+  10
+);
+const host = argv.host ?? process.env.HOST ?? "localhost";
+const wsPort = parseInt(
+  argv.wsport ?? process.env.wsport ?? process.env.WSPORT ?? "5000",
   10
 );
-const host = argv.host || process.env.HOST || "localhost";
 export {
   getCWD,
   host,
-  port
+  port,
+  wsPort
 };

package/dist/esm/server/wsServer.js

@@ -0,0 +1,98 @@
+import https from "node:https";
+import http from "node:http";
+import * as wsLib from "ws";
+import { getCertOptions } from "./cert.js";
+import { isHttps } from "../utils.js";
+const PING_INTERVAL = 3e4;
+const DEFAULT_PORT = 5001;
+const onSocketError = (err) => {
+  console.error(err);
+};
+const authenticate = (token, cb) => {
+  if (!token) cb(4401);
+  else cb();
+};
+const getAuthToken = (protocols) => {
+  const authProtocol = protocols.find(
+    (protocol) => protocol.startsWith("auth--")
+  );
+  if (!authProtocol) return "";
+  return authProtocol.split("--")[1]?.trim?.();
+};
+const createWSServer = ({
+  port = DEFAULT_PORT,
+  pingInterval = PING_INTERVAL,
+  onOpen
+}) => {
+  let isAlive = false;
+  const heartbeat = () => {
+    isAlive = true;
+  };
+  const server = isHttps() ? https.createServer(getCertOptions()) : http.createServer();
+  const wsServer = new wsLib.WebSocketServer({ noServer: true });
+  server.on("upgrade", (req, socket, head) => {
+    socket.on("error", onSocketError);
+    wsServer.handleUpgrade(req, socket, head, (ws) => {
+      const protocols = req.headers["sec-websocket-protocol"]?.split(",");
+      if (!protocols) {
+        console.error("no protocols");
+        ws.close(4401, "unauthorized");
+        socket.destroy();
+        socket.removeListener("error", onSocketError);
+        return;
+      }
+      authenticate(getAuthToken(protocols) || "", (errCode) => {
+        if (errCode) {
+          switch (errCode) {
+            case 4401:
+              ws.close(errCode, "unauthorized");
+              break;
+            default:
+              ws.close(4400, "Unknown error");
+              break;
+          }
+          socket.destroy();
+          socket.removeListener("error", onSocketError);
+        } else {
+          socket.removeListener("error", onSocketError);
+          wsServer.emit("connection", ws, req);
+        }
+      });
+    });
+  });
+  wsServer.on("connection", (ws) => {
+    isAlive = true;
+    ws.on("error", console.error);
+    ws.on("pong", () => {
+      heartbeat();
+    });
+    ws.on("message", (message) => {
+      console.log(
+        "message from client:",
+        JSON.parse(message)
+      );
+      ws.send(JSON.stringify(JSON.parse(message)));
+    });
+    console.log("client connected");
+    onOpen?.(ws);
+  });
+  const interval = setInterval(() => {
+    wsServer.clients.forEach((ws) => {
+      if (isAlive === false) ws.terminate();
+      isAlive = false;
+      ws.ping();
+    });
+  }, pingInterval);
+  wsServer.on("close", function close() {
+    clearInterval(interval);
+  });
+  return new Promise((resolve) => {
+    server.listen(port, () => {
+      console.log(`Websocket server listening on port ${port}`);
+      return resolve({ server, wsServer });
+    });
+  });
+};
+export {
+  createWSServer
+};

package/dist/esm/testing/ExtendedJSDomEnv.cjs

@@ -0,0 +1,27 @@
+const { TestEnvironment } = require('jest-environment-jsdom');
+
+// ICE platform is meant to be run on  node > 18
+//   "jest-environment-jsdom": "~29.6.3" is instead meant to support node >16
+//   features that are supported since node 17 & 18 are not supported in jsdom env
+//      the limitation is not relevant for us since we are already running on node 18 anyway,
+//      this "ExtendedJSDomEnv" is an extension of the
+//         jest.config.cjs
+//         {
+//           ...
+//           testEnvironment: 'jsdom'
+//           ...
+//         }
+//      that actually uses node 18 features that are not supported in "jest-environment-jsdom": "~29.6.3"
+
+// https://github.com/facebook/jest/blob/v29.4.3/website/versioned_docs/version-29.4/Configuration.md#testenvironment-string
+class FixJSDOMEnvironment extends TestEnvironment {
+  constructor(...args) {
+    super(...args);
+
+    // From here on we are using "node" (currently running version of it) to polyfill jsdom this.global
+
+    // FIXME https://github.com/jsdom/jsdom/issues/3363
+    if (structuredClone) this.global.structuredClone = structuredClone;
+  }
+}
+module.exports = FixJSDOMEnvironment;

package/dist/esm/testing/extended/axe-core/getMessageAndPass.js

@@ -0,0 +1,16 @@
+import { matcherHint } from "jest-matcher-utils";
+import { reporter } from "./reporter.js";
+const getMessageAndPass = (violations) => {
+  const formatedViolations = reporter(violations);
+  const pass = formatedViolations.length === 0;
+  if (pass) return { message: () => "", pass };
+  return {
+    message: () => `${matcherHint(".toHaveNoViolations")}
+
+${formatedViolations}`,
+    pass
+  };
+};
+export {
+  getMessageAndPass
+};

package/dist/esm/testing/extended/axe-core/index.js

@@ -0,0 +1,4 @@
+import { toHaveNoViolations } from "./toHaveNoViolations.js";
+export {
+  toHaveNoViolations
+};

package/dist/esm/testing/extended/axe-core/reporter.js

@@ -0,0 +1,30 @@
+import { printReceived } from "jest-matcher-utils";
+const colorYellow = (arg) => `\x1B[93m ${arg ?? ""} \x1B[0m`;
+const colorGrey = (arg) => `\x1B[90m ${arg ?? ""} \x1B[0m`;
+const colorBlue = (arg) => `\x1B[34m ${arg ?? ""} \x1B[0m`;
+const reporter = (violToFormat) => {
+  if (violToFormat.length === 0) return "";
+  const lineBreak = "\n\n";
+  const horizontalLine = "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500";
+  return violToFormat.map((violation) => {
+    const errorBody = violation.nodes.map((node) => {
+      const selector = node.target.join(", ");
+      const expectedText = `Expected the HTML found at $('${selector}') to have no violations:${lineBreak}`;
+      let violationHelpUrl = "";
+      if (violation.helpUrl)
+        violationHelpUrl = `You can find more information on this issue here: 
+${colorBlue(
+          violation.helpUrl
+        )}`;
+      return `${expectedText + colorGrey(node.html) + lineBreak}Received:${lineBreak}${printReceived(
+        `${violation.help} (${violation.id})`
+      )}${lineBreak}${colorYellow(
+        node.failureSummary
+      )}${lineBreak}${violationHelpUrl}`;
+    }).join(lineBreak);
+    return errorBody;
+  }).join(lineBreak + horizontalLine + lineBreak);
+};
+export {
+  reporter
+};

package/dist/esm/testing/extended/axe-core/shouldIgnoreNodeViolation.js

@@ -0,0 +1,11 @@
+const dataAttributeRegexp = /(data-[\S]*)=["']([\S]*)["']/gm;
+const shouldIgnoreNodeViolation = (node, violation) => [...node.html.matchAll(dataAttributeRegexp)].map(([fullMatch, dataKey, dataValue]) => ({
+  fullMatch,
+  dataKey,
+  dataValue
+})).some(
+  ({ dataKey, dataValue }) => dataKey === `data-axe-ignore-${violation.id}` && dataValue === "true"
+);
+export {
+  shouldIgnoreNodeViolation
+};