@fedify/fedify 2.3.0-dev.1145 → 2.3.0-dev.1150

package/dist/{builder-ShiR1K6b.mjs → builder-Bjm1Jq9n.mjs}

@@ -1,7 +1,7 @@
 import "@js-temporal/polyfill";
 import "urlpattern-polyfill";
 globalThis.addEventListener = () => {};
-import { n as version, t as name } from "./deno-h0TWFuEz.mjs";
+import { n as version, t as name } from "./deno-CKFE6Uya.mjs";
 import { t as ActivityListenerSet } from "./activity-listener-tztVvlNb.mjs";
 import { getLogger } from "@logtape/logtape";
 import { Router, RouterError, assertPath } from "@fedify/uri-template";
@@ -73,7 +73,7 @@ var FederationBuilderImpl = class {
 		this.collectionTypeIds = {};
 	}
 	async build(options) {
-		const { FederationImpl } = await import("./middleware-mToCR2tG.mjs");
+		const { FederationImpl } = await import("./middleware-Db1_qAFG.mjs");
 		const f = new FederationImpl(options);
 		const trailingSlashInsensitiveValue = f.router.trailingSlashInsensitive;
 		f.router = this.router.clone();

package/dist/compat/mod.d.cts

@@ -1,5 +1,5 @@
 /// <reference lib="esnext.temporal" />
-import { n as Context, vt as ActivityTransformer } from "../context-DI2gRbyN.cjs";
+import { n as Context, vt as ActivityTransformer } from "../context-CRXCkTM6.cjs";
 import { Activity } from "@fedify/vocab";
 
 //#region src/compat/transformers.d.ts

package/dist/compat/mod.d.ts

@@ -1,5 +1,5 @@
 /// <reference lib="esnext.temporal" />
-import { n as Context, vt as ActivityTransformer } from "../context-DCtsSHDv.js";
+import { n as Context, vt as ActivityTransformer } from "../context-MgCh7YGu.js";
 import { Activity } from "@fedify/vocab";
 
 //#region src/compat/transformers.d.ts

package/dist/compat/transformers.test.mjs

@@ -5,7 +5,7 @@ import { t as assertEquals } from "../assert_equals-C-ZRDbaf.mjs";
 import { t as assertInstanceOf } from "../assert_instance_of-DBC5X09g.mjs";
 import { t as assert } from "../assert-OguE97r2.mjs";
 import { t as MemoryKvStore } from "../kv-x2IvBUyq.mjs";
-import { n as FederationImpl, v as actorDehydrator, y as autoIdAssigner } from "../middleware-CyJDCmNg.mjs";
+import { n as FederationImpl, v as actorDehydrator, y as autoIdAssigner } from "../middleware-ZuUcO0t1.mjs";
 import { Follow, Person } from "@fedify/vocab";
 import { test } from "@fedify/fixture";
 //#region src/compat/transformers.test.ts

package/dist/{context-DI2gRbyN.d.cts → context-CRXCkTM6.d.cts}

@@ -483,6 +483,42 @@ interface InboxMessage {
   readonly id: ReturnType<typeof crypto.randomUUID>;
   readonly baseUrl: string;
   readonly activity: unknown;
+  /**
+  * The normalized JSON-LD representation of a signed inbox activity that
+  * Fedify already compacted successfully while accepting the request.  Queue
+  * workers can reuse this producer-side parse cache under stricter loader or
+  * network constraints without changing the raw payload preserved for
+  * forwarding.
+  *
+  * This may exist even when {@link ldSignatureVerified} is `false`, because
+  * fallback-authenticated traffic and already-queued backlog items can still
+  * depend on the cached normalized form to avoid re-fetching remote custom
+  * contexts during worker processing.
+  *
+  * This is optional for backward compatibility with messages that were
+  * queued by older Fedify versions or that were already in a queue before
+  * upgrading.
+  *
+  * Fedify keeps this on the queued message itself instead of an external
+  * sidecar because generic queue backends do not provide reliable lifecycle
+  * guarantees for auxiliary storage across retries and redeliveries.
+  *
+  * @internal
+  */
+  readonly normalizedActivity?: unknown;
+  /**
+  * Whether the producer actually verified the Linked Data Signature before
+  * queueing this message.  This lets workers distinguish verified LDS replay
+  * from other authenticated inbox traffic that merely happened to include a
+  * signature block.  This provenance marker is separate from the optional
+  * normalizedActivity parse cache.
+  *
+  * `undefined` preserves backward compatibility with older queued messages
+  * that predate this marker.
+  *
+  * @internal
+  */
+  readonly ldSignatureVerified?: boolean;
   readonly started: string;
   readonly attempt: number;
   readonly identifier: string | null;
@@ -2269,9 +2305,12 @@ interface InboxContext<TContextData> extends Context<TContextData> {
   * Forwards a received activity to the recipients' inboxes.  The forwarded
   * activity will be signed in HTTP Signatures by the forwarder, but its
   * payload will not be modified, i.e., Linked Data Signatures and Object
-  * Integrity Proofs will not be added.  Therefore, if the activity is not
-  * signed (i.e., it has neither Linked Data Signatures nor Object Integrity
-  * Proofs), the recipient probably will not trust the activity.
+  * Integrity Proofs will not be added.  Even when Fedify internally
+  * normalizes a Linked Data Signature activity for parsing, this method still
+  * forwards the original received payload so the sender's signatures/proofs
+  * are preserved as-is.  Therefore, if the activity is not signed (i.e., it
+  * has neither Linked Data Signatures nor Object Integrity Proofs), the
+  * recipient probably will not trust the activity.
   * @param forwarder The forwarder's identifier or the forwarder's username
   *                  or the forwarder's key pair(s).
   * @param recipients The recipients of the activity.
@@ -2287,9 +2326,12 @@ interface InboxContext<TContextData> extends Context<TContextData> {
   * Forwards a received activity to the recipients' inboxes.  The forwarded
   * activity will be signed in HTTP Signatures by the forwarder, but its
   * payload will not be modified, i.e., Linked Data Signatures and Object
-  * Integrity Proofs will not be added.  Therefore, if the activity is not
-  * signed (i.e., it has neither Linked Data Signatures nor Object Integrity
-  * Proofs), the recipient probably will not trust the activity.
+  * Integrity Proofs will not be added.  Even when Fedify internally
+  * normalizes a Linked Data Signature activity for parsing, this method still
+  * forwards the original received payload so the sender's signatures/proofs
+  * are preserved as-is.  Therefore, if the activity is not signed (i.e., it
+  * has neither Linked Data Signatures nor Object Integrity Proofs), the
+  * recipient probably will not trust the activity.
   * @param forwarder The forwarder's identifier or the forwarder's username.
   * @param recipients In this case, it must be `"followers"`.
   * @param options Options for forwarding the activity.

package/dist/{context-DCtsSHDv.d.ts → context-MgCh7YGu.d.ts}

@@ -485,6 +485,42 @@ interface InboxMessage {
   readonly id: ReturnType<typeof crypto.randomUUID>;
   readonly baseUrl: string;
   readonly activity: unknown;
+  /**
+  * The normalized JSON-LD representation of a signed inbox activity that
+  * Fedify already compacted successfully while accepting the request.  Queue
+  * workers can reuse this producer-side parse cache under stricter loader or
+  * network constraints without changing the raw payload preserved for
+  * forwarding.
+  *
+  * This may exist even when {@link ldSignatureVerified} is `false`, because
+  * fallback-authenticated traffic and already-queued backlog items can still
+  * depend on the cached normalized form to avoid re-fetching remote custom
+  * contexts during worker processing.
+  *
+  * This is optional for backward compatibility with messages that were
+  * queued by older Fedify versions or that were already in a queue before
+  * upgrading.
+  *
+  * Fedify keeps this on the queued message itself instead of an external
+  * sidecar because generic queue backends do not provide reliable lifecycle
+  * guarantees for auxiliary storage across retries and redeliveries.
+  *
+  * @internal
+  */
+  readonly normalizedActivity?: unknown;
+  /**
+  * Whether the producer actually verified the Linked Data Signature before
+  * queueing this message.  This lets workers distinguish verified LDS replay
+  * from other authenticated inbox traffic that merely happened to include a
+  * signature block.  This provenance marker is separate from the optional
+  * normalizedActivity parse cache.
+  *
+  * `undefined` preserves backward compatibility with older queued messages
+  * that predate this marker.
+  *
+  * @internal
+  */
+  readonly ldSignatureVerified?: boolean;
   readonly started: string;
   readonly attempt: number;
   readonly identifier: string | null;
@@ -2271,9 +2307,12 @@ interface InboxContext<TContextData> extends Context<TContextData> {
   * Forwards a received activity to the recipients' inboxes.  The forwarded
   * activity will be signed in HTTP Signatures by the forwarder, but its
   * payload will not be modified, i.e., Linked Data Signatures and Object
-  * Integrity Proofs will not be added.  Therefore, if the activity is not
-  * signed (i.e., it has neither Linked Data Signatures nor Object Integrity
-  * Proofs), the recipient probably will not trust the activity.
+  * Integrity Proofs will not be added.  Even when Fedify internally
+  * normalizes a Linked Data Signature activity for parsing, this method still
+  * forwards the original received payload so the sender's signatures/proofs
+  * are preserved as-is.  Therefore, if the activity is not signed (i.e., it
+  * has neither Linked Data Signatures nor Object Integrity Proofs), the
+  * recipient probably will not trust the activity.
   * @param forwarder The forwarder's identifier or the forwarder's username
   *                  or the forwarder's key pair(s).
   * @param recipients The recipients of the activity.
@@ -2289,9 +2328,12 @@ interface InboxContext<TContextData> extends Context<TContextData> {
   * Forwards a received activity to the recipients' inboxes.  The forwarded
   * activity will be signed in HTTP Signatures by the forwarder, but its
   * payload will not be modified, i.e., Linked Data Signatures and Object
-  * Integrity Proofs will not be added.  Therefore, if the activity is not
-  * signed (i.e., it has neither Linked Data Signatures nor Object Integrity
-  * Proofs), the recipient probably will not trust the activity.
+  * Integrity Proofs will not be added.  Even when Fedify internally
+  * normalizes a Linked Data Signature activity for parsing, this method still
+  * forwards the original received payload so the sender's signatures/proofs
+  * are preserved as-is.  Therefore, if the activity is not signed (i.e., it
+  * has neither Linked Data Signatures nor Object Integrity Proofs), the
+  * recipient probably will not trust the activity.
   * @param forwarder The forwarder's identifier or the forwarder's username.
   * @param recipients In this case, it must be `"followers"`.
   * @param options Options for forwarding the activity.

package/dist/{deno-h0TWFuEz.mjs → deno-CKFE6Uya.mjs}

@@ -3,6 +3,6 @@ import "urlpattern-polyfill";
 globalThis.addEventListener = () => {};
 //#region deno.json
 var name = "@fedify/fedify";
-var version = "2.3.0-dev.1145+3fe78022";
+var version = "2.3.0-dev.1150+8db5848a";
 //#endregion
 export { version as n, name as t };

package/dist/{docloader-BdDN0Aqx.mjs → docloader-B-ZE1cZf.mjs}

@@ -1,8 +1,8 @@
 import "@js-temporal/polyfill";
 import "urlpattern-polyfill";
 globalThis.addEventListener = () => {};
-import { o as validateCryptoKey } from "./key-Dh2OK1XQ.mjs";
-import { n as doubleKnock } from "./http-QzW9IWfs.mjs";
+import { o as validateCryptoKey } from "./key-N0zP_oJA.mjs";
+import { n as doubleKnock } from "./http-vHCgbhTg.mjs";
 import { getLogger } from "@logtape/logtape";
 import { UrlError, createActivityPubRequest, getRemoteDocument, logRequest, validatePublicUrl } from "@fedify/vocab-runtime";
 import { curry } from "es-toolkit";

package/dist/federation/builder.test.mjs

@@ -5,7 +5,7 @@ import { t as assertEquals } from "../assert_equals-C-ZRDbaf.mjs";
 import { r as assertExists } from "../std__assert-BBjXFNOb.mjs";
 import { t as assertThrows } from "../assert_throws-BOkhLGYc.mjs";
 import { t as MemoryKvStore } from "../kv-x2IvBUyq.mjs";
-import { r as createFederationBuilder } from "../builder-ShiR1K6b.mjs";
+import { r as createFederationBuilder } from "../builder-Bjm1Jq9n.mjs";
 import { DisallowedOperatorError, DisallowedVarSpecModifierError, DuplicateRouteVariableError, RouteTemplateOptionsNotMatchedError, RouterError } from "@fedify/uri-template";
 import { Activity, Note, Person } from "@fedify/vocab";
 import { test } from "@fedify/fixture";