@fedify/fedify 2.3.0-dev.1069 → 2.3.0-dev.1099

package/dist/sig/http.test.mjs

@@ -6,9 +6,9 @@ import { i as assertExists, t as assertStringIncludes } from "../std__assert-CRD
 import { n as assertFalse, t as assertRejects } from "../assert_rejects-B-qJtC9Z.mjs";
 import { t as assertThrows } from "../assert_throws-4NwKEy2q.mjs";
 import { t as assert } from "../assert-DikXweDx.mjs";
-import { t as esm_default } from "../esm-DhnRLoG9.mjs";
-import { t as exportJwk } from "../key-CpAxygvh.mjs";
-import { a as parseRfc9421Signature, c as timingSafeEqual, i as formatRfc9421SignatureParameters, l as verifyRequest, n as doubleKnock, o as parseRfc9421SignatureInput, r as formatRfc9421Signature, s as signRequest, t as createRfc9421SignatureBase, u as verifyRequestDetailed } from "../http-QHJGzUe8.mjs";
+import { t as esm_default } from "../esm-sdtqOUPu.mjs";
+import { t as exportJwk } from "../key-D9dUsyow.mjs";
+import { a as parseRfc9421Signature, c as timingSafeEqual, i as formatRfc9421SignatureParameters, l as verifyRequest, n as doubleKnock, o as parseRfc9421SignatureInput, r as formatRfc9421Signature, s as signRequest, t as createRfc9421SignatureBase, u as verifyRequestDetailed } from "../http-5G18W3NP.mjs";
 import { i as rsaPrivateKey2, l as rsaPublicKey5, o as rsaPublicKey1, s as rsaPublicKey2 } from "../keys-C3kae-6B.mjs";
 import { createTestTracerProvider, mockDocumentLoader, test } from "@fedify/fixture";
 import { FetchError, exportSpki } from "@fedify/vocab-runtime";
@@ -335,15 +335,12 @@ test("createRfc9421SignatureBase()", () => {
 	].join("\n"));
 });
 test("formatRfc9421Signature()", () => {
-	const signature = new Uint8Array([
+	const [signatureInput, signatureHeader] = formatRfc9421Signature(new Uint8Array([
 		1,
 		2,
 		3,
 		4
-	]);
-	const keyId = new URL("https://example.com/key");
-	const algorithm = "rsa-v1_5-sha256";
-	const [signatureInput, signatureHeader] = formatRfc9421Signature(signature, [
+	]), [
 		{
 			"value": "@method",
 			params: {}
@@ -357,8 +354,8 @@ test("formatRfc9421Signature()", () => {
 			params: {}
 		}
 	], formatRfc9421SignatureParameters({
-		algorithm,
-		keyId,
+		algorithm: "rsa-v1_5-sha256",
+		keyId: new URL("https://example.com/key"),
 		created: 1709626184
 	}));
 	assertEquals(signatureInput, `sig1=("@method" "@target-uri" "host");alg="rsa-v1_5-sha256";keyid="https://example.com/key";created=1709626184`);
@@ -855,12 +852,6 @@ test("doubleKnock() function with specDeterminer choosing draft-cavage first", a
 		else if (req.headers.has("Signature")) firstSpec = "draft-cavage";
 		return new Response("", { status: 202 });
 	});
-	const specDeterminer = {
-		determineSpec(_origin) {
-			return "draft-cavage-http-signatures-12";
-		},
-		rememberSpec(_origin, _spec) {}
-	};
 	assertEquals((await doubleKnock(new Request("https://example.com/inbox-accepts-any", {
 		method: "POST",
 		body: "Test message with draft-cavage preference",
@@ -868,7 +859,12 @@ test("doubleKnock() function with specDeterminer choosing draft-cavage first", a
 	}), {
 		keyId: rsaPublicKey2.id,
 		privateKey: rsaPrivateKey2
-	}, { specDeterminer })).status, 202, "Response status should be 202 Accepted");
+	}, { specDeterminer: {
+		determineSpec(_origin) {
+			return "draft-cavage-http-signatures-12";
+		},
+		rememberSpec(_origin, _spec) {}
+	} })).status, 202, "Response status should be 202 Accepted");
 	assertEquals(requestCount, 1, "Only one request should have been made");
 	assertEquals(firstSpec, "draft-cavage", "First attempt should use draft-cavage");
 	esm_default.hardReset();
@@ -979,6 +975,124 @@ test("doubleKnock() detects redirect loops", async () => {
 	assertEquals(requestCount, 2);
 	esm_default.hardReset();
 });
+test("doubleKnock() retries idempotent request transport errors", async () => {
+	esm_default.spyGlobal();
+	try {
+		let requestCount = 0;
+		esm_default.get("https://example.com/flaky-document", () => {
+			requestCount++;
+			if (requestCount === 1) throw new TypeError("temporary DNS failure");
+			return new Response("Success", { status: 200 });
+		});
+		const response = await doubleKnock(new Request("https://example.com/flaky-document"), {
+			keyId: rsaPublicKey2.id,
+			privateKey: rsaPrivateKey2
+		});
+		assertEquals(response.status, 200);
+		assertEquals(await response.text(), "Success");
+		assertEquals(requestCount, 2);
+	} finally {
+		esm_default.hardReset();
+	}
+});
+test("doubleKnock() wraps repeated transport errors", async () => {
+	esm_default.spyGlobal();
+	try {
+		let requestCount = 0;
+		const failure = /* @__PURE__ */ new TypeError("DNS lookup failed");
+		esm_default.get("https://example.com/unreachable-document", () => {
+			requestCount++;
+			throw failure;
+		});
+		const request = new Request("https://example.com/unreachable-document");
+		const error = await assertRejects(() => doubleKnock(request, {
+			keyId: rsaPublicKey2.id,
+			privateKey: rsaPrivateKey2
+		}), FetchError, "DNS lookup failed");
+		assertEquals(error.url.href, "https://example.com/unreachable-document");
+		assertEquals(error.cause, failure);
+		assertEquals(requestCount, 2);
+	} finally {
+		esm_default.hardReset();
+	}
+});
+test("doubleKnock() does not retry non-idempotent transport errors", async () => {
+	esm_default.spyGlobal();
+	try {
+		let requestCount = 0;
+		const failure = /* @__PURE__ */ new TypeError("connection reset");
+		esm_default.post("https://example.com/flaky-inbox", () => {
+			requestCount++;
+			throw failure;
+		});
+		const request = new Request("https://example.com/flaky-inbox", {
+			method: "POST",
+			body: "Test activity content",
+			headers: { "Content-Type": "application/activity+json" }
+		});
+		const error = await assertRejects(() => doubleKnock(request, {
+			keyId: rsaPublicKey2.id,
+			privateKey: rsaPrivateKey2
+		}), FetchError, "connection reset");
+		assertEquals(error.url.href, "https://example.com/flaky-inbox");
+		assertEquals(error.cause, failure);
+		assertEquals(requestCount, 1);
+	} finally {
+		esm_default.hardReset();
+	}
+});
+test("doubleKnock() preserves Request signal abort reasons", async () => {
+	const controller = new AbortController();
+	const abortReason = "request aborted";
+	controller.abort(abortReason);
+	const request = new Request("https://example.com/request-abort", { signal: controller.signal });
+	assertEquals(await assertRejects(() => doubleKnock(request, {
+		keyId: rsaPublicKey2.id,
+		privateKey: rsaPrivateKey2
+	})), abortReason);
+});
+test("doubleKnock() preserves Request signal aborts during retry delay", async () => {
+	esm_default.spyGlobal();
+	try {
+		let requestCount = 0;
+		const controller = new AbortController();
+		const abortReason = "retry aborted";
+		esm_default.get("https://example.com/aborted-retry", () => {
+			requestCount++;
+			setTimeout(() => controller.abort(abortReason));
+			throw new TypeError("temporary DNS failure");
+		});
+		const request = new Request("https://example.com/aborted-retry", { signal: controller.signal });
+		assertEquals(await assertRejects(() => doubleKnock(request, {
+			keyId: rsaPublicKey2.id,
+			privateKey: rsaPrivateKey2
+		})), abortReason);
+		assertEquals(requestCount, 1);
+	} finally {
+		esm_default.hardReset();
+	}
+});
+test("doubleKnock() prefers Request aborts over transport errors", async () => {
+	esm_default.spyGlobal();
+	try {
+		let requestCount = 0;
+		const controller = new AbortController();
+		const abortReason = "transport aborted";
+		esm_default.get("https://example.com/abort-with-transport-error", () => {
+			requestCount++;
+			controller.abort(abortReason);
+			throw new TypeError("temporary DNS failure");
+		});
+		const request = new Request("https://example.com/abort-with-transport-error", { signal: controller.signal });
+		assertEquals(await assertRejects(() => doubleKnock(request, {
+			keyId: rsaPublicKey2.id,
+			privateKey: rsaPrivateKey2
+		})), abortReason);
+		assertEquals(requestCount, 1);
+	} finally {
+		esm_default.hardReset();
+	}
+});
 test("doubleKnock() async specDeterminer test", async () => {
 	esm_default.spyGlobal();
 	let requestCount = 0;
@@ -990,15 +1104,6 @@ test("doubleKnock() async specDeterminer test", async () => {
 		else if (req.headers.has("Signature")) specUsed = "draft-cavage-http-signatures-12";
 		return new Response("", { status: 202 });
 	});
-	const specDeterminer = {
-		async determineSpec(_origin) {
-			await new Promise((resolve) => setTimeout(resolve, 10));
-			return "draft-cavage-http-signatures-12";
-		},
-		async rememberSpec(_origin, _spec) {
-			await new Promise((resolve) => setTimeout(resolve, 10));
-		}
-	};
 	assertEquals((await doubleKnock(new Request("https://example.com/inbox-async-determiner", {
 		method: "POST",
 		body: "Test message with async spec determiner",
@@ -1006,7 +1111,15 @@ test("doubleKnock() async specDeterminer test", async () => {
 	}), {
 		keyId: rsaPublicKey2.id,
 		privateKey: rsaPrivateKey2
-	}, { specDeterminer })).status, 202, "Response status should be 202 Accepted");
+	}, { specDeterminer: {
+		async determineSpec(_origin) {
+			await new Promise((resolve) => setTimeout(resolve, 10));
+			return "draft-cavage-http-signatures-12";
+		},
+		async rememberSpec(_origin, _spec) {
+			await new Promise((resolve) => setTimeout(resolve, 10));
+		}
+	} })).status, 202, "Response status should be 202 Accepted");
 	assertEquals(requestCount, 1, "Only one request should have been made");
 	assertEquals(specUsed, "draft-cavage-http-signatures-12", "Should use spec from async determiner");
 	esm_default.hardReset();

package/dist/sig/key.test.mjs

@@ -5,10 +5,10 @@ import { t as assertEquals } from "../assert_equals-Ew3jOFa3.mjs";
 import "../std__assert-CRDpx_HF.mjs";
 import { t as assertRejects } from "../assert_rejects-B-qJtC9Z.mjs";
 import { t as assertThrows } from "../assert_throws-4NwKEy2q.mjs";
-import { a as importJwk, i as generateCryptoKeyPair, n as fetchKey, o as validateCryptoKey, r as fetchKeyDetailed, t as exportJwk } from "../key-CpAxygvh.mjs";
+import { a as importJwk, i as generateCryptoKeyPair, n as fetchKey, o as validateCryptoKey, r as fetchKeyDetailed, t as exportJwk } from "../key-D9dUsyow.mjs";
 import { c as rsaPublicKey3, i as rsaPrivateKey2, o as rsaPublicKey1, s as rsaPublicKey2, t as ed25519Multikey } from "../keys-C3kae-6B.mjs";
-import { createTestTracerProvider, mockDocumentLoader, test } from "@fedify/fixture";
 import { CryptographicKey, Multikey } from "@fedify/vocab";
+import { createTestTracerProvider, mockDocumentLoader, test } from "@fedify/fixture";
 import { FetchError } from "@fedify/vocab-runtime";
 //#region src/sig/key.test.ts
 test("validateCryptoKey()", async () => {

package/dist/sig/ld.test.mjs

@@ -5,11 +5,11 @@ import { t as assertEquals } from "../assert_equals-Ew3jOFa3.mjs";
 import { n as assertFalse, t as assertRejects } from "../assert_rejects-B-qJtC9Z.mjs";
 import { t as assertThrows } from "../assert_throws-4NwKEy2q.mjs";
 import { t as assert } from "../assert-DikXweDx.mjs";
-import { i as generateCryptoKeyPair } from "../key-CpAxygvh.mjs";
+import { i as generateCryptoKeyPair } from "../key-D9dUsyow.mjs";
 import { a as rsaPrivateKey3, c as rsaPublicKey3, i as rsaPrivateKey2, n as ed25519PrivateKey, s as rsaPublicKey2, t as ed25519Multikey } from "../keys-C3kae-6B.mjs";
-import { a as signJsonLd, i as hasSignatureLike, n as createSignature, o as verifyJsonLd, r as detachSignature, s as verifySignature, t as attachSignature } from "../ld-Ce_vkKjG.mjs";
-import { mockDocumentLoader, test } from "@fedify/fixture";
+import { a as signJsonLd, i as hasSignatureLike, n as createSignature, o as verifyJsonLd, r as detachSignature, s as verifySignature, t as attachSignature } from "../ld-hbxDLO1k.mjs";
 import { CryptographicKey } from "@fedify/vocab";
+import { mockDocumentLoader, test } from "@fedify/fixture";
 import { encodeBase64 } from "byte-encodings/base64";
 //#region src/sig/ld.test.ts
 test("attachSignature()", () => {

package/dist/sig/mod.cjs

@@ -1,8 +1,8 @@
 const { Temporal } = require("@js-temporal/polyfill");
 const { URLPattern } = require("urlpattern-polyfill");
 Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
-const require_http = require("../http-e1wtIlFo.cjs");
-const require_proof = require("../proof-BU1TpFYI.cjs");
+const require_http = require("../http-W2u_KBoQ.cjs");
+const require_proof = require("../proof-CZCaAURh.cjs");
 exports.attachSignature = require_proof.attachSignature;
 exports.createProof = require_proof.createProof;
 exports.createSignature = require_proof.createSignature;

package/dist/sig/mod.d.cts

@@ -1,4 +1,5 @@
-import { C as exportJwk, D as importJwk, E as generateCryptoKeyPair, S as KeyCache, T as fetchKeyDetailed, _ as validateAcceptSignature, a as VerifyRequestDetailedResult, b as FetchKeyOptions, c as signRequest, d as AcceptSignatureMember, f as AcceptSignatureParameters, g as parseAcceptSignature, h as fulfillAcceptSignature, i as SignRequestOptions, l as verifyRequest, m as formatAcceptSignature, n as HttpMessageSignaturesSpecDeterminer, o as VerifyRequestFailureReason, p as FulfillAcceptSignatureResult, r as Rfc9421SignRequestOptions, s as VerifyRequestOptions, t as HttpMessageSignaturesSpec, u as verifyRequestDetailed, v as FetchKeyDetailedResult, w as fetchKey, x as FetchKeyResult, y as FetchKeyErrorResult } from "../http-CrGuipxe.cjs";
-import { i as getKeyOwner, n as GetKeyOwnerOptions, r as doesActorOwnKey, t as DoesActorOwnKeyOptions } from "../owner-CptqhsOy.cjs";
-import { _ as hasSignatureLike, a as createProof, b as verifySignature, c as verifyObject, d as SignJsonLdOptions, f as VerifyJsonLdOptions, g as detachSignature, h as createSignature, i as VerifyProofOptions, l as verifyProof, m as attachSignature, n as SignObjectOptions, o as hasProofLike, p as VerifySignatureOptions, r as VerifyObjectOptions, s as signObject, t as CreateProofOptions, u as CreateSignatureOptions, v as signJsonLd, y as verifyJsonLd } from "../mod-Cr3f-ACa.cjs";
+/// <reference lib="esnext.temporal" />
+import { C as exportJwk, D as importJwk, E as generateCryptoKeyPair, S as KeyCache, T as fetchKeyDetailed, _ as validateAcceptSignature, a as VerifyRequestDetailedResult, b as FetchKeyOptions, c as signRequest, d as AcceptSignatureMember, f as AcceptSignatureParameters, g as parseAcceptSignature, h as fulfillAcceptSignature, i as SignRequestOptions, l as verifyRequest, m as formatAcceptSignature, n as HttpMessageSignaturesSpecDeterminer, o as VerifyRequestFailureReason, p as FulfillAcceptSignatureResult, r as Rfc9421SignRequestOptions, s as VerifyRequestOptions, t as HttpMessageSignaturesSpec, u as verifyRequestDetailed, v as FetchKeyDetailedResult, w as fetchKey, x as FetchKeyResult, y as FetchKeyErrorResult } from "../http-C87EWkO0.cjs";
+import { i as getKeyOwner, n as GetKeyOwnerOptions, r as doesActorOwnKey, t as DoesActorOwnKeyOptions } from "../owner-DEvZuyOE.cjs";
+import { _ as hasSignatureLike, a as createProof, b as verifySignature, c as verifyObject, d as SignJsonLdOptions, f as VerifyJsonLdOptions, g as detachSignature, h as createSignature, i as VerifyProofOptions, l as verifyProof, m as attachSignature, n as SignObjectOptions, o as hasProofLike, p as VerifySignatureOptions, r as VerifyObjectOptions, s as signObject, t as CreateProofOptions, u as CreateSignatureOptions, v as signJsonLd, y as verifyJsonLd } from "../mod-DXY9JF28.cjs";
 export { AcceptSignatureMember, AcceptSignatureParameters, CreateProofOptions, CreateSignatureOptions, DoesActorOwnKeyOptions, FetchKeyDetailedResult, FetchKeyErrorResult, FetchKeyOptions, FetchKeyResult, FulfillAcceptSignatureResult, GetKeyOwnerOptions, HttpMessageSignaturesSpec, HttpMessageSignaturesSpecDeterminer, KeyCache, Rfc9421SignRequestOptions, SignJsonLdOptions, SignObjectOptions, SignRequestOptions, VerifyJsonLdOptions, VerifyObjectOptions, VerifyProofOptions, VerifyRequestDetailedResult, VerifyRequestFailureReason, VerifyRequestOptions, VerifySignatureOptions, attachSignature, createProof, createSignature, detachSignature, doesActorOwnKey, exportJwk, fetchKey, fetchKeyDetailed, formatAcceptSignature, fulfillAcceptSignature, generateCryptoKeyPair, getKeyOwner, hasProofLike, hasSignatureLike, importJwk, parseAcceptSignature, signJsonLd, signObject, signRequest, validateAcceptSignature, verifyJsonLd, verifyObject, verifyProof, verifyRequest, verifyRequestDetailed, verifySignature };

package/dist/sig/mod.d.ts

@@ -1,6 +1,5 @@
-import { Temporal } from "@js-temporal/polyfill";
-import { URLPattern } from "urlpattern-polyfill";
-import { C as exportJwk, D as importJwk, E as generateCryptoKeyPair, S as KeyCache, T as fetchKeyDetailed, _ as validateAcceptSignature, a as VerifyRequestDetailedResult, b as FetchKeyOptions, c as signRequest, d as AcceptSignatureMember, f as AcceptSignatureParameters, g as parseAcceptSignature, h as fulfillAcceptSignature, i as SignRequestOptions, l as verifyRequest, m as formatAcceptSignature, n as HttpMessageSignaturesSpecDeterminer, o as VerifyRequestFailureReason, p as FulfillAcceptSignatureResult, r as Rfc9421SignRequestOptions, s as VerifyRequestOptions, t as HttpMessageSignaturesSpec, u as verifyRequestDetailed, v as FetchKeyDetailedResult, w as fetchKey, x as FetchKeyResult, y as FetchKeyErrorResult } from "../http-aQzN9Ayi.js";
-import { i as getKeyOwner, n as GetKeyOwnerOptions, r as doesActorOwnKey, t as DoesActorOwnKeyOptions } from "../owner-74ARJ5TL.js";
-import { _ as hasSignatureLike, a as createProof, b as verifySignature, c as verifyObject, d as SignJsonLdOptions, f as VerifyJsonLdOptions, g as detachSignature, h as createSignature, i as VerifyProofOptions, l as verifyProof, m as attachSignature, n as SignObjectOptions, o as hasProofLike, p as VerifySignatureOptions, r as VerifyObjectOptions, s as signObject, t as CreateProofOptions, u as CreateSignatureOptions, v as signJsonLd, y as verifyJsonLd } from "../mod-CR8soWa9.js";
+/// <reference lib="esnext.temporal" />
+import { C as exportJwk, D as importJwk, E as generateCryptoKeyPair, S as KeyCache, T as fetchKeyDetailed, _ as validateAcceptSignature, a as VerifyRequestDetailedResult, b as FetchKeyOptions, c as signRequest, d as AcceptSignatureMember, f as AcceptSignatureParameters, g as parseAcceptSignature, h as fulfillAcceptSignature, i as SignRequestOptions, l as verifyRequest, m as formatAcceptSignature, n as HttpMessageSignaturesSpecDeterminer, o as VerifyRequestFailureReason, p as FulfillAcceptSignatureResult, r as Rfc9421SignRequestOptions, s as VerifyRequestOptions, t as HttpMessageSignaturesSpec, u as verifyRequestDetailed, v as FetchKeyDetailedResult, w as fetchKey, x as FetchKeyResult, y as FetchKeyErrorResult } from "../http-BDZeS5om.js";
+import { i as getKeyOwner, n as GetKeyOwnerOptions, r as doesActorOwnKey, t as DoesActorOwnKeyOptions } from "../owner-CnngXDNJ.js";
+import { _ as hasSignatureLike, a as createProof, b as verifySignature, c as verifyObject, d as SignJsonLdOptions, f as VerifyJsonLdOptions, g as detachSignature, h as createSignature, i as VerifyProofOptions, l as verifyProof, m as attachSignature, n as SignObjectOptions, o as hasProofLike, p as VerifySignatureOptions, r as VerifyObjectOptions, s as signObject, t as CreateProofOptions, u as CreateSignatureOptions, v as signJsonLd, y as verifyJsonLd } from "../mod-DHO9lk3D.js";
 export { AcceptSignatureMember, AcceptSignatureParameters, CreateProofOptions, CreateSignatureOptions, DoesActorOwnKeyOptions, FetchKeyDetailedResult, FetchKeyErrorResult, FetchKeyOptions, FetchKeyResult, FulfillAcceptSignatureResult, GetKeyOwnerOptions, HttpMessageSignaturesSpec, HttpMessageSignaturesSpecDeterminer, KeyCache, Rfc9421SignRequestOptions, SignJsonLdOptions, SignObjectOptions, SignRequestOptions, VerifyJsonLdOptions, VerifyObjectOptions, VerifyProofOptions, VerifyRequestDetailedResult, VerifyRequestFailureReason, VerifyRequestOptions, VerifySignatureOptions, attachSignature, createProof, createSignature, detachSignature, doesActorOwnKey, exportJwk, fetchKey, fetchKeyDetailed, formatAcceptSignature, fulfillAcceptSignature, generateCryptoKeyPair, getKeyOwner, hasProofLike, hasSignatureLike, importJwk, parseAcceptSignature, signJsonLd, signObject, signRequest, validateAcceptSignature, verifyJsonLd, verifyObject, verifyProof, verifyRequest, verifyRequestDetailed, verifySignature };

package/dist/sig/mod.js

@@ -1,5 +1,5 @@
-import "@js-temporal/polyfill";
-import "urlpattern-polyfill";
-import { a as verifyRequestDetailed, c as fetchKeyDetailed, f as formatAcceptSignature, h as validateAcceptSignature, i as verifyRequest, l as generateCryptoKeyPair, m as parseAcceptSignature, o as exportJwk, p as fulfillAcceptSignature, r as signRequest, s as fetchKey, u as importJwk } from "../http-D2EDlTr2.js";
-import { a as verifyProof, c as getKeyOwner, d as detachSignature, f as hasSignatureLike, h as verifySignature, i as verifyObject, l as attachSignature, m as verifyJsonLd, n as hasProofLike, p as signJsonLd, r as signObject, s as doesActorOwnKey, t as createProof, u as createSignature } from "../proof-DLDsFYfD.js";
+import { Temporal } from "@js-temporal/polyfill";
+import { URLPattern } from "urlpattern-polyfill";
+import { a as verifyRequestDetailed, c as fetchKeyDetailed, f as formatAcceptSignature, h as validateAcceptSignature, i as verifyRequest, l as generateCryptoKeyPair, m as parseAcceptSignature, o as exportJwk, p as fulfillAcceptSignature, r as signRequest, s as fetchKey, u as importJwk } from "../http-Dzy5c472.js";
+import { a as verifyProof, c as getKeyOwner, d as detachSignature, f as hasSignatureLike, h as verifySignature, i as verifyObject, l as attachSignature, m as verifyJsonLd, n as hasProofLike, p as signJsonLd, r as signObject, s as doesActorOwnKey, t as createProof, u as createSignature } from "../proof-DMJJZnKd.js";
 export { attachSignature, createProof, createSignature, detachSignature, doesActorOwnKey, exportJwk, fetchKey, fetchKeyDetailed, formatAcceptSignature, fulfillAcceptSignature, generateCryptoKeyPair, getKeyOwner, hasProofLike, hasSignatureLike, importJwk, parseAcceptSignature, signJsonLd, signObject, signRequest, validateAcceptSignature, verifyJsonLd, verifyObject, verifyProof, verifyRequest, verifyRequestDetailed, verifySignature };

package/dist/sig/owner.test.mjs

@@ -6,9 +6,9 @@ import "../std__assert-CRDpx_HF.mjs";
 import { n as assertFalse } from "../assert_rejects-B-qJtC9Z.mjs";
 import { t as assert } from "../assert-DikXweDx.mjs";
 import { o as rsaPublicKey1, s as rsaPublicKey2 } from "../keys-C3kae-6B.mjs";
-import { n as getKeyOwner, t as doesActorOwnKey } from "../owner-DmgzyItA.mjs";
-import { createTestTracerProvider, mockDocumentLoader, test } from "@fedify/fixture";
+import { n as getKeyOwner, t as doesActorOwnKey } from "../owner-DwJe0BH9.mjs";
 import { Create, CryptographicKey, lookupObject } from "@fedify/vocab";
+import { createTestTracerProvider, mockDocumentLoader, test } from "@fedify/fixture";
 //#region src/sig/owner.test.ts
 test("doesActorOwnKey()", async () => {
 	const options = {

package/dist/sig/proof.test.mjs

@@ -7,10 +7,10 @@ import { n as assertFalse, t as assertRejects } from "../assert_rejects-B-qJtC9Z
 import { t as assertInstanceOf } from "../assert_instance_of-C4Ri6VuN.mjs";
 import { t as assert } from "../assert-DikXweDx.mjs";
 import { i as rsaPrivateKey2, n as ed25519PrivateKey, r as ed25519PublicKey, s as rsaPublicKey2, t as ed25519Multikey } from "../keys-C3kae-6B.mjs";
-import { r as normalizeOutgoingActivityJsonLd } from "../outgoing-jsonld-Bi7n-dEy.mjs";
-import { a as verifyProof, i as verifyObject, n as hasProofLike, r as signObject, t as createProof } from "../proof-C3q2IhUr.mjs";
-import { mockDocumentLoader, test } from "@fedify/fixture";
+import { r as normalizeOutgoingActivityJsonLd } from "../outgoing-jsonld-BgFLCJQ_.mjs";
+import { a as verifyProof, i as verifyObject, n as hasProofLike, r as signObject, t as createProof } from "../proof-erpV_J_n.mjs";
 import { Create, DataIntegrityProof, Document, Multikey, Note, PUBLIC_COLLECTION, Place } from "@fedify/vocab";
+import { mockDocumentLoader, test } from "@fedify/fixture";
 import { decodeMultibase, importMultibaseKey } from "@fedify/vocab-runtime";
 import { decodeHex } from "byte-encodings/hex";
 //#region src/sig/proof.test.ts

package/dist/testing/mod.d.mts

@@ -1,6 +1,6 @@
 import { Temporal } from "@js-temporal/polyfill";
 import { URLPattern } from "urlpattern-polyfill";
-import { testDefinitions } from "@fedify/fixture";
+import { ExportResultCode } from "@opentelemetry/core";
 import { Activity, Actor, Collection, CryptographicKey, Hashtag, Link, LookupObjectOptions, Multikey, Object as Object$1, Recipient, Tombstone, TraverseCollectionOptions } from "@fedify/vocab";
 import { Link as Link$1, LookupWebFingerOptions, ResourceDescriptor } from "@fedify/webfinger";
 import { MeterProvider, TracerProvider } from "@opentelemetry/api";
@@ -2392,4 +2392,9 @@ declare function createOutboxContext<TContextData>(args: Partial<OutboxContext<T
   federation: Federation<TContextData>;
 }): OutboxContext<TContextData>;
 //#endregion
+//#region ../fixture/dist/mod.d.ts
+//#endregion
+//#region src/test.d.ts
+declare const testDefinitions: Deno.TestDefinition[];
+//#endregion
 export { createInboxContext, createOutboxContext, createRequestContext, testDefinitions };

package/dist/testing/mod.mjs

@@ -1,6 +1,5 @@
 import "@js-temporal/polyfill";
 import "urlpattern-polyfill";
 globalThis.addEventListener = () => {};
-import { n as createOutboxContext, r as createRequestContext, t as createInboxContext } from "../context-7Azky82W.mjs";
-import { testDefinitions } from "@fedify/fixture";
+import { i as testDefinitions, n as createOutboxContext, r as createRequestContext, t as createInboxContext } from "../context-BAE7AKLA.mjs";
 export { createInboxContext, createOutboxContext, createRequestContext, testDefinitions };

package/dist/{transformers-ve6e2xcg.js → transformers-BGMIq1cs.js}

@@ -1,5 +1,5 @@
-import "@js-temporal/polyfill";
-import "urlpattern-polyfill";
+import { Temporal } from "@js-temporal/polyfill";
+import { URLPattern } from "urlpattern-polyfill";
 import { getLogger } from "@logtape/logtape";
 //#region src/compat/transformers.ts
 const logger = getLogger([

package/dist/{types-hvL8ElAs.js → types-CAY3OdLq.js}

@@ -1,5 +1,5 @@
-import "@js-temporal/polyfill";
-import "urlpattern-polyfill";
+import { Temporal } from "@js-temporal/polyfill";
+import { URLPattern } from "urlpattern-polyfill";
 import { getLogger } from "@logtape/logtape";
 import { getUserAgent } from "@fedify/vocab-runtime";
 //#region src/nodeinfo/client.ts

package/dist/utils/docloader.test.mjs

@@ -4,10 +4,10 @@ globalThis.addEventListener = () => {};
 import { t as assertEquals } from "../assert_equals-Ew3jOFa3.mjs";
 import "../std__assert-CRDpx_HF.mjs";
 import { t as assertRejects } from "../assert_rejects-B-qJtC9Z.mjs";
-import { t as esm_default } from "../esm-DhnRLoG9.mjs";
-import { l as verifyRequest } from "../http-QHJGzUe8.mjs";
+import { t as esm_default } from "../esm-sdtqOUPu.mjs";
+import { l as verifyRequest } from "../http-5G18W3NP.mjs";
 import { i as rsaPrivateKey2 } from "../keys-C3kae-6B.mjs";
-import { t as getAuthenticatedDocumentLoader } from "../docloader-QNtAtTZF.mjs";
+import { t as getAuthenticatedDocumentLoader } from "../docloader-DA5FzJOR.mjs";
 import { mockDocumentLoader, test } from "@fedify/fixture";
 import { UrlError } from "@fedify/vocab-runtime";
 //#region src/utils/docloader.test.ts

package/dist/utils/kv-cache.test.mjs

@@ -1,9 +1,9 @@
 import { Temporal } from "@js-temporal/polyfill";
 import { URLPattern } from "urlpattern-polyfill";
 globalThis.addEventListener = () => {};
-import { n as kvCache, t as MockKvStore } from "../kv-cache-Bmv7tUzz.mjs";
-import { mockDocumentLoader, test } from "@fedify/fixture";
+import { n as kvCache, t as MockKvStore } from "../kv-cache-CiiNwT6W.mjs";
 import { deepStrictEqual, throws } from "node:assert";
+import { mockDocumentLoader, test } from "@fedify/fixture";
 import { preloadedContexts } from "@fedify/vocab-runtime";
 //#region src/utils/kv-cache.test.ts
 test("kvCache()", async (t) => {

package/dist/utils/mod.cjs

@@ -1,6 +1,6 @@
 const { Temporal } = require("@js-temporal/polyfill");
 const { URLPattern } = require("urlpattern-polyfill");
 Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
-const require_kv_cache = require("../kv-cache-B3GfB70S.cjs");
+const require_kv_cache = require("../kv-cache-BygrlQ1c.cjs");
 exports.getAuthenticatedDocumentLoader = require_kv_cache.getAuthenticatedDocumentLoader;
 exports.kvCache = require_kv_cache.kvCache;

package/dist/utils/mod.d.cts

@@ -1,2 +1,3 @@
-import { n as getAuthenticatedDocumentLoader, t as kvCache } from "../mod-CMEbIaNh.cjs";
+/// <reference lib="esnext.temporal" />
+import { n as getAuthenticatedDocumentLoader, t as kvCache } from "../mod-B0rWmfW5.cjs";
 export { getAuthenticatedDocumentLoader, kvCache };

package/dist/utils/mod.d.ts

@@ -1,4 +1,3 @@
-import { Temporal } from "@js-temporal/polyfill";
-import { URLPattern } from "urlpattern-polyfill";
-import { n as getAuthenticatedDocumentLoader, t as kvCache } from "../mod-CLgIXe9w.js";
+/// <reference lib="esnext.temporal" />
+import { n as getAuthenticatedDocumentLoader, t as kvCache } from "../mod-BhU_H1I_.js";
 export { getAuthenticatedDocumentLoader, kvCache };

package/dist/utils/mod.js

@@ -1,4 +1,4 @@
-import "@js-temporal/polyfill";
-import "urlpattern-polyfill";
-import { n as getAuthenticatedDocumentLoader, t as kvCache } from "../kv-cache-KLjvIlKt.js";
+import { Temporal } from "@js-temporal/polyfill";
+import { URLPattern } from "urlpattern-polyfill";
+import { n as getAuthenticatedDocumentLoader, t as kvCache } from "../kv-cache-CBSgxEsZ.js";
 export { getAuthenticatedDocumentLoader, kvCache };

package/dist/vocab/cjs.test.mjs

@@ -2,8 +2,8 @@ import "@js-temporal/polyfill";
 import "urlpattern-polyfill";
 globalThis.addEventListener = () => {};
 import { createRequire } from "node:module";
-import { test } from "@fedify/fixture";
 import { strictEqual } from "node:assert";
+import { test } from "@fedify/fixture";
 //#region src/vocab/cjs.test.ts
 test("CommonJS vocab entry exports Object", { ignore: "Deno" in globalThis }, () => {
 	const vocab = createRequire(import.meta.url)("./mod.cjs");

package/dist/vocab/mod.d.cts

@@ -1 +1,2 @@
+/// <reference lib="esnext.temporal" />
 export * from "@fedify/vocab";

package/dist/vocab/mod.d.ts

@@ -1,3 +1,2 @@
-import { Temporal } from "@js-temporal/polyfill";
-import { URLPattern } from "urlpattern-polyfill";
+/// <reference lib="esnext.temporal" />
 export * from "@fedify/vocab";

package/dist/vocab/mod.js

@@ -1,3 +1,3 @@
-import "@js-temporal/polyfill";
-import "urlpattern-polyfill";
+import { Temporal } from "@js-temporal/polyfill";
+import { URLPattern } from "urlpattern-polyfill";
 export * from "@fedify/vocab";

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@fedify/fedify",
-  "version": "2.3.0-dev.1069+81e910ce",
+  "version": "2.3.0-dev.1099+fafcfa78",
   "description": "An ActivityPub server framework",
   "keywords": [
     "ActivityPub",
@@ -140,36 +140,36 @@
   },
   "dependencies": {
     "@js-temporal/polyfill": "^0.5.1",
-    "@logtape/logtape": "^2.0.5",
-    "@opentelemetry/api": "^1.9.0",
-    "@opentelemetry/core": "^2.5.0",
-    "@opentelemetry/sdk-trace-base": "^2.5.0",
-    "@opentelemetry/semantic-conventions": "^1.39.0",
+    "@logtape/logtape": "^2.0.7",
+    "@opentelemetry/api": "^1.9.1",
+    "@opentelemetry/core": "^2.7.1",
+    "@opentelemetry/sdk-trace-base": "^2.7.1",
+    "@opentelemetry/semantic-conventions": "^1.40.0",
     "byte-encodings": "^1.0.11",
-    "es-toolkit": "1.43.0",
+    "es-toolkit": "1.46.1",
     "json-canon": "^1.0.1",
     "jsonld": "^9.0.0",
     "structured-field-values": "^2.0.4",
     "uri-template-router": "^1.0.0",
     "url-template": "^3.1.1",
     "urlpattern-polyfill": "^10.1.0",
-    "@fedify/vocab": "2.3.0-dev.1069+81e910ce",
-    "@fedify/vocab-runtime": "2.3.0-dev.1069+81e910ce",
-    "@fedify/webfinger": "2.3.0-dev.1069+81e910ce"
+    "@fedify/vocab": "2.3.0-dev.1099+fafcfa78",
+    "@fedify/webfinger": "2.3.0-dev.1099+fafcfa78",
+    "@fedify/vocab-runtime": "2.3.0-dev.1099+fafcfa78"
   },
   "devDependencies": {
-    "@opentelemetry/sdk-metrics": "2.5.0",
+    "@opentelemetry/sdk-metrics": "2.7.1",
     "@std/assert": "npm:@jsr/std__assert@^0.226.0",
     "@std/path": "npm:@jsr/std__path@^1.0.6",
     "@types/node": "^24.2.1",
     "fetch-mock": "^12.5.4",
     "miniflare": "^4.20250523.0",
-    "tsdown": "^0.21.6",
-    "tsx": "^4.19.4",
-    "typescript": "^5.9.2",
+    "tsdown": "^0.22.0",
+    "tsx": "^4.21.0",
+    "typescript": "^6.0.0",
     "wrangler": "^4.17.0",
     "@fedify/fixture": "2.0.0",
-    "@fedify/vocab-tools": "^2.3.0-dev.1069+81e910ce"
+    "@fedify/vocab-tools": "^2.3.0-dev.1099+fafcfa78"
   },
   "scripts": {
     "build:self": "tsdown",

package/dist/middleware-CibncbiT.cjs

@@ -1,4 +0,0 @@
-const { Temporal } = require("@js-temporal/polyfill");
-const { URLPattern } = require("urlpattern-polyfill");
-const require_middleware = require("./middleware-DOLrvK_b.cjs");
-exports.FederationImpl = require_middleware.FederationImpl;

package/dist/{client-CIiz1WX7.mjs → client-B_A6mfn3.mjs}

@@ -1,8 +1,8 @@
 import "@js-temporal/polyfill";
 import "urlpattern-polyfill";
 globalThis.addEventListener = () => {};
-import { getUserAgent } from "@fedify/vocab-runtime";
 import { getLogger } from "@logtape/logtape";
+import { getUserAgent } from "@fedify/vocab-runtime";
 //#region src/nodeinfo/client.ts
 const logger = getLogger([
 	"fedify",

package/dist/{public-audience-PVTwU_Ex.mjs → public-audience-N3pyOx2p.mjs}

@@ -1,9 +1,9 @@
 import "@js-temporal/polyfill";
 import "urlpattern-polyfill";
 globalThis.addEventListener = () => {};
+import { getLogger } from "@logtape/logtape";
 import { PUBLIC_COLLECTION } from "@fedify/vocab";
 import { preloadedContexts } from "@fedify/vocab-runtime";
-import { getLogger } from "@logtape/logtape";
 import jsonld from "@fedify/vocab-runtime/jsonld";
 //#region src/compat/preloaded-context-loader.ts
 /**