@fedpulse/sdk 1.0.0

package/dist/types/types/webhooks.d.cts

@@ -0,0 +1,106 @@
+/**
+ * Types for the Webhooks domain (/v1/webhooks).
+ */
+import type { PaginationParams } from './common.cjs';
+import type { AiCategory, AiDifficulty } from './opportunities.cjs';
+export type WebhookEvent = 'opportunity.new' | 'opportunity.modified' | 'opportunity.awarded' | 'opportunity.archived' | 'exclusion.new' | 'exclusion.terminated' | 'entity.new' | 'entity.updated' | 'entity.expired' | 'assistance.new' | 'assistance.updated';
+export interface WebhookFilters {
+    /** NAICS codes to match (4–6 digit strings). Up to 50. */
+    naics?: string[];
+    /** Agency name substring filter (case-insensitive). */
+    agency?: string;
+    /** Set-aside type codes to match (e.g. '8A', 'WOSB'). Up to 20. */
+    setAside?: string[];
+    /** 2-letter US state code for place of performance. */
+    state?: string;
+    /** Minimum award amount in cents (inclusive). */
+    minAwardAmount?: number;
+    /** Maximum award amount in cents (inclusive). */
+    maxAwardAmount?: number;
+    /** AI-assigned category filter. */
+    aiCategory?: AiCategory;
+    /** AI-assigned difficulty filter. */
+    aiDifficulty?: AiDifficulty;
+    /** SAM.gov notice type codes to match. Up to 10. */
+    noticeType?: string[];
+}
+export interface Webhook {
+    id: string;
+    userId: string;
+    url: string;
+    events: WebhookEvent[];
+    filters: WebhookFilters;
+    isActive: boolean;
+    pausedAt: string | null;
+    pauseReason: string | null;
+    consecutiveFailures: number;
+    lastTriggeredAt: string | null;
+    lastDeliveryStatus: string | null;
+    createdAt: string;
+    updatedAt: string;
+}
+export type DeliveryStatus = 'pending' | 'success' | 'failed' | 'abandoned';
+export interface WebhookDelivery {
+    id: string;
+    webhookId: string;
+    eventType: WebhookEvent;
+    attempt: number;
+    status: DeliveryStatus;
+    httpStatus: number | null;
+    responseBody?: string | null;
+    failureReason: string | null;
+    durationMs: number | null;
+    nextRetryAt: string | null;
+    deliveredAt: string | null;
+    createdAt: string;
+    /** Full payload envelope — only present on single-delivery detail response. */
+    payload?: WebhookPayload | null;
+}
+export interface WebhookPayload<T = unknown> {
+    event: WebhookEvent;
+    timestamp: string;
+    apiVersion: string;
+    data: T;
+}
+export interface WebhookVerifyOptions {
+    /**
+     * Maximum age of a webhook delivery in seconds before it is considered a
+     * potential replay attack. Default: 300 (5 minutes).
+     */
+    maxAgeSeconds?: number;
+}
+export interface CreateWebhookParams {
+    /** Target URL — must be HTTPS and publicly reachable. */
+    url: string;
+    /** Event types to subscribe to (1–11). */
+    events: WebhookEvent[];
+    /** Optional delivery filters. Unset filters match all values. */
+    filters?: WebhookFilters;
+}
+export interface UpdateWebhookParams {
+    url?: string;
+    events?: WebhookEvent[];
+    filters?: WebhookFilters;
+    /** Set to false to pause the webhook. Set to true to resume. */
+    is_active?: boolean;
+    /**
+     * Set to true to rotate the signing secret.
+     * The new raw secret is returned in the response — store it immediately.
+     */
+    rotateSecret?: boolean;
+}
+export interface ListDeliveriesParams extends PaginationParams {
+    status?: DeliveryStatus;
+    event_type?: WebhookEvent;
+}
+export interface CreateWebhookResult {
+    webhook: Webhook;
+    /** Raw signing secret (64-char hex). Shown once — store immediately. */
+    secret: string;
+}
+export interface RotateSecretResult {
+    webhook: Webhook;
+    /** New raw signing secret (64-char hex). Shown once — store immediately. */
+    secret: string;
+}
+//# sourceMappingURL=webhooks.d.ts.map

package/dist/types/types/webhooks.d.ts

@@ -0,0 +1,106 @@
+/**
+ * Types for the Webhooks domain (/v1/webhooks).
+ */
+import type { PaginationParams } from './common.js';
+import type { AiCategory, AiDifficulty } from './opportunities.js';
+export type WebhookEvent = 'opportunity.new' | 'opportunity.modified' | 'opportunity.awarded' | 'opportunity.archived' | 'exclusion.new' | 'exclusion.terminated' | 'entity.new' | 'entity.updated' | 'entity.expired' | 'assistance.new' | 'assistance.updated';
+export interface WebhookFilters {
+    /** NAICS codes to match (4–6 digit strings). Up to 50. */
+    naics?: string[];
+    /** Agency name substring filter (case-insensitive). */
+    agency?: string;
+    /** Set-aside type codes to match (e.g. '8A', 'WOSB'). Up to 20. */
+    setAside?: string[];
+    /** 2-letter US state code for place of performance. */
+    state?: string;
+    /** Minimum award amount in cents (inclusive). */
+    minAwardAmount?: number;
+    /** Maximum award amount in cents (inclusive). */
+    maxAwardAmount?: number;
+    /** AI-assigned category filter. */
+    aiCategory?: AiCategory;
+    /** AI-assigned difficulty filter. */
+    aiDifficulty?: AiDifficulty;
+    /** SAM.gov notice type codes to match. Up to 10. */
+    noticeType?: string[];
+}
+export interface Webhook {
+    id: string;
+    userId: string;
+    url: string;
+    events: WebhookEvent[];
+    filters: WebhookFilters;
+    isActive: boolean;
+    pausedAt: string | null;
+    pauseReason: string | null;
+    consecutiveFailures: number;
+    lastTriggeredAt: string | null;
+    lastDeliveryStatus: string | null;
+    createdAt: string;
+    updatedAt: string;
+}
+export type DeliveryStatus = 'pending' | 'success' | 'failed' | 'abandoned';
+export interface WebhookDelivery {
+    id: string;
+    webhookId: string;
+    eventType: WebhookEvent;
+    attempt: number;
+    status: DeliveryStatus;
+    httpStatus: number | null;
+    responseBody?: string | null;
+    failureReason: string | null;
+    durationMs: number | null;
+    nextRetryAt: string | null;
+    deliveredAt: string | null;
+    createdAt: string;
+    /** Full payload envelope — only present on single-delivery detail response. */
+    payload?: WebhookPayload | null;
+}
+export interface WebhookPayload<T = unknown> {
+    event: WebhookEvent;
+    timestamp: string;
+    apiVersion: string;
+    data: T;
+}
+export interface WebhookVerifyOptions {
+    /**
+     * Maximum age of a webhook delivery in seconds before it is considered a
+     * potential replay attack. Default: 300 (5 minutes).
+     */
+    maxAgeSeconds?: number;
+}
+export interface CreateWebhookParams {
+    /** Target URL — must be HTTPS and publicly reachable. */
+    url: string;
+    /** Event types to subscribe to (1–11). */
+    events: WebhookEvent[];
+    /** Optional delivery filters. Unset filters match all values. */
+    filters?: WebhookFilters;
+}
+export interface UpdateWebhookParams {
+    url?: string;
+    events?: WebhookEvent[];
+    filters?: WebhookFilters;
+    /** Set to false to pause the webhook. Set to true to resume. */
+    is_active?: boolean;
+    /**
+     * Set to true to rotate the signing secret.
+     * The new raw secret is returned in the response — store it immediately.
+     */
+    rotateSecret?: boolean;
+}
+export interface ListDeliveriesParams extends PaginationParams {
+    status?: DeliveryStatus;
+    event_type?: WebhookEvent;
+}
+export interface CreateWebhookResult {
+    webhook: Webhook;
+    /** Raw signing secret (64-char hex). Shown once — store immediately. */
+    secret: string;
+}
+export interface RotateSecretResult {
+    webhook: Webhook;
+    /** New raw signing secret (64-char hex). Shown once — store immediately. */
+    secret: string;
+}
+//# sourceMappingURL=webhooks.d.ts.map

package/dist/types/types/webhooks.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"webhooks.d.ts","sourceRoot":"","sources":["../../../src/types/webhooks.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AACpD,OAAO,KAAK,EAAE,UAAU,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAInE,MAAM,MAAM,YAAY,GACpB,iBAAiB,GACjB,sBAAsB,GACtB,qBAAqB,GACrB,sBAAsB,GACtB,eAAe,GACf,sBAAsB,GACtB,YAAY,GACZ,gBAAgB,GAChB,gBAAgB,GAChB,gBAAgB,GAChB,oBAAoB,CAAC;AAIzB,MAAM,WAAW,cAAc;IAC7B,0DAA0D;IAC1D,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IACjB,uDAAuD;IACvD,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,mEAAmE;IACnE,QAAQ,CAAC,EAAE,MAAM,EAAE,CAAC;IACpB,uDAAuD;IACvD,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,iDAAiD;IACjD,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,iDAAiD;IACjD,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,mCAAmC;IACnC,UAAU,CAAC,EAAE,UAAU,CAAC;IACxB,qCAAqC;IACrC,YAAY,CAAC,EAAE,YAAY,CAAC;IAC5B,oDAAoD;IACpD,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;CACvB;AAID,MAAM,WAAW,OAAO;IACtB,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,MAAM,CAAC;IACf,GAAG,EAAE,MAAM,CAAC;IACZ,MAAM,EAAE,YAAY,EAAE,CAAC;IACvB,OAAO,EAAE,cAAc,CAAC;IACxB,QAAQ,EAAE,OAAO,CAAC;IAClB,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,eAAe,EAAE,MAAM,GAAG,IAAI,CAAC;IAC/B,kBAAkB,EAAE,MAAM,GAAG,IAAI,CAAC;IAClC,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;CACnB;AAID,MAAM,MAAM,cAAc,GAAG,SAAS,GAAG,SAAS,GAAG,QAAQ,GAAG,WAAW,CAAC;AAE5E,MAAM,WAAW,eAAe;IAC9B,EAAE,EAAE,MAAM,CAAC;IACX,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,YAAY,CAAC;IACxB,OAAO,EAAE,MAAM,CAAC;IAChB,MAAM,EAAE,cAAc,CAAC;IACvB,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,YAAY,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,aAAa,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,SAAS,EAAE,MAAM,CAAC;IAClB,+EAA+E;IAC/E,OAAO,CAAC,EAAE,cAAc,GAAG,IAAI,CAAC;CACjC;AAID,MAAM,WAAW,cAAc,CAAC,CAAC,GAAG,OAAO;IACzC,KAAK,EAAE,YAAY,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;IACnB,IAAI,EAAE,CAAC,CAAC;CACT;AAID,MAAM,WAAW,oBAAoB;IACnC;;;OAGG;IACH,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB;AAID,MAAM,WAAW,mBAAmB;IAClC,yDAAyD;IACzD,GAAG,EAAE,MAAM,CAAC;IACZ,0CAA0C;IAC1C,MAAM,EAAE,YAAY,EAAE,CAAC;IACvB,iEAAiE;IACjE,OAAO,CAAC,EAAE,cAAc,CAAC;CAC1B;AAED,MAAM,WAAW,mBAAmB;IAClC,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,MAAM,CAAC,EAAE,YAAY,EAAE,CAAC;IACxB,OAAO,CAAC,EAAE,cAAc,CAAC;IACzB,gEAAgE;IAChE,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB;;;OAGG;IACH,YAAY,CAAC,EAAE,OAAO,CAAC;CACxB;AAED,MAAM,WAAW,oBAAqB,SAAQ,gBAAgB;IAC5D,MAAM,CAAC,EAAE,cAAc,CAAC;IACxB,UAAU,CAAC,EAAE,YAAY,CAAC;CAC3B;AAID,MAAM,WAAW,mBAAmB;IAClC,OAAO,EAAE,OAAO,CAAC;IACjB,wEAAwE;IACxE,MAAM,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,kBAAkB;IACjC,OAAO,EAAE,OAAO,CAAC;IACjB,4EAA4E;IAC5E,MAAM,EAAE,MAAM,CAAC;CAChB"}

package/dist/types/webhooks-verify.d.cts

@@ -0,0 +1,102 @@
+/**
+ * Webhook signature verification for FedPulse webhook deliveries.
+ *
+ * FedPulse signs every outgoing webhook POST with HMAC-SHA256.
+ * Use these utilities to verify that incoming requests are genuinely from
+ * FedPulse and have not been tampered with or replayed.
+ *
+ * ## Signing algorithm:
+ *   signed_body = `${timestampSeconds}.${rawPayloadJson}`
+ *   signature   = HMAC-SHA256(rawSecret, signed_body) → hex
+ *
+ * ## Delivery headers (all present on every POST):
+ *   X-FedPulse-Signature   : `sha256={hex_hmac}`
+ *   X-FedPulse-Timestamp   : Unix epoch seconds (string)
+ *   X-FedPulse-Event       : Event type (e.g. "opportunity.new")
+ *   X-FedPulse-Delivery-Id : UUIDv4 delivery identifier
+ *
+ * ## Replay protection:
+ *   Reject deliveries where |now − timestamp| > maxAgeSeconds (default 300s).
+ */
+import type { WebhookPayload, WebhookVerifyOptions } from './types/webhooks.cjs';
+import { FedPulseError } from './errors.cjs';
+/** Thrown when webhook signature verification fails. */
+export declare class WebhookVerificationError extends FedPulseError {
+    constructor(message: string);
+}
+export interface VerifyWebhookInput {
+    /**
+     * The raw request body as a string or Buffer.
+     * Must be the **exact** bytes received, before any JSON parsing.
+     */
+    rawBody: string | Buffer;
+    /** Value of the `X-FedPulse-Signature` header (e.g. `sha256=abc...`). */
+    signatureHeader: string;
+    /** Value of the `X-FedPulse-Timestamp` header (Unix epoch seconds as string). */
+    timestampHeader: string;
+    /** The raw webhook secret you received at creation time (64-char hex string). */
+    secret: string;
+    /** Verification options. */
+    options?: WebhookVerifyOptions;
+}
+/**
+ * Verify a FedPulse webhook delivery and parse the payload.
+ *
+ * This function performs three checks:
+ *   1. **Format check** — headers are present and in the expected format.
+ *   2. **Timestamp check** — delivery is not older than `maxAgeSeconds`.
+ *   3. **Signature check** — HMAC-SHA256 matches using constant-time comparison.
+ *
+ * Throws `WebhookVerificationError` on any failure.
+ * Returns the parsed, verified `WebhookPayload<T>`.
+ *
+ * @param input  Headers, raw body, and secret.
+ * @returns Parsed and verified webhook payload.
+ *
+ * @throws {WebhookVerificationError} If the signature is invalid, the timestamp
+ *   is out of range, or the headers are malformed.
+ *
+ * @example
+ * ```ts
+ * // Express.js example (use bodyParser.raw() to get the raw buffer):
+ * app.post('/webhooks', express.raw({ type: 'application/json' }), (req, res) => {
+ *   let payload;
+ *   try {
+ *     payload = FedPulse.verifyWebhook({
+ *       rawBody: req.body,
+ *       signatureHeader: req.headers['x-fedpulse-signature'] as string,
+ *       timestampHeader: req.headers['x-fedpulse-timestamp'] as string,
+ *       secret: process.env.FEDPULSE_WEBHOOK_SECRET!,
+ *     });
+ *   } catch (err) {
+ *     return res.status(400).send('Invalid signature');
+ *   }
+ *   console.log('Event:', payload.event, 'Data:', payload.data);
+ *   res.status(200).send('OK');
+ * });
+ * ```
+ */
+export declare function verifyWebhook<T = unknown>(input: VerifyWebhookInput): WebhookPayload<T>;
+/**
+ * Extract the FedPulse webhook headers from a plain headers object.
+ *
+ * Normalises both lowercase and original-casing variants so you don't
+ * have to worry about header casing differences between frameworks.
+ *
+ * @param headers  A plain object or Map of request headers.
+ * @returns  Extracted signature and timestamp values.
+ *
+ * @example
+ * ```ts
+ * // Works with Express, Fastify, Koa, Next.js API routes, etc.
+ * const { signatureHeader, timestampHeader } = extractWebhookHeaders(req.headers);
+ * const payload = FedPulse.verifyWebhook({ rawBody, signatureHeader, timestampHeader, secret });
+ * ```
+ */
+export declare function extractWebhookHeaders(headers: Record<string, string | string[] | undefined> | Headers): {
+    signatureHeader: string;
+    timestampHeader: string;
+    event: string;
+    deliveryId: string;
+};
+//# sourceMappingURL=webhooks-verify.d.ts.map

package/dist/types/webhooks-verify.d.ts

@@ -0,0 +1,102 @@
+/**
+ * Webhook signature verification for FedPulse webhook deliveries.
+ *
+ * FedPulse signs every outgoing webhook POST with HMAC-SHA256.
+ * Use these utilities to verify that incoming requests are genuinely from
+ * FedPulse and have not been tampered with or replayed.
+ *
+ * ## Signing algorithm:
+ *   signed_body = `${timestampSeconds}.${rawPayloadJson}`
+ *   signature   = HMAC-SHA256(rawSecret, signed_body) → hex
+ *
+ * ## Delivery headers (all present on every POST):
+ *   X-FedPulse-Signature   : `sha256={hex_hmac}`
+ *   X-FedPulse-Timestamp   : Unix epoch seconds (string)
+ *   X-FedPulse-Event       : Event type (e.g. "opportunity.new")
+ *   X-FedPulse-Delivery-Id : UUIDv4 delivery identifier
+ *
+ * ## Replay protection:
+ *   Reject deliveries where |now − timestamp| > maxAgeSeconds (default 300s).
+ */
+import type { WebhookPayload, WebhookVerifyOptions } from './types/webhooks.js';
+import { FedPulseError } from './errors.js';
+/** Thrown when webhook signature verification fails. */
+export declare class WebhookVerificationError extends FedPulseError {
+    constructor(message: string);
+}
+export interface VerifyWebhookInput {
+    /**
+     * The raw request body as a string or Buffer.
+     * Must be the **exact** bytes received, before any JSON parsing.
+     */
+    rawBody: string | Buffer;
+    /** Value of the `X-FedPulse-Signature` header (e.g. `sha256=abc...`). */
+    signatureHeader: string;
+    /** Value of the `X-FedPulse-Timestamp` header (Unix epoch seconds as string). */
+    timestampHeader: string;
+    /** The raw webhook secret you received at creation time (64-char hex string). */
+    secret: string;
+    /** Verification options. */
+    options?: WebhookVerifyOptions;
+}
+/**
+ * Verify a FedPulse webhook delivery and parse the payload.
+ *
+ * This function performs three checks:
+ *   1. **Format check** — headers are present and in the expected format.
+ *   2. **Timestamp check** — delivery is not older than `maxAgeSeconds`.
+ *   3. **Signature check** — HMAC-SHA256 matches using constant-time comparison.
+ *
+ * Throws `WebhookVerificationError` on any failure.
+ * Returns the parsed, verified `WebhookPayload<T>`.
+ *
+ * @param input  Headers, raw body, and secret.
+ * @returns Parsed and verified webhook payload.
+ *
+ * @throws {WebhookVerificationError} If the signature is invalid, the timestamp
+ *   is out of range, or the headers are malformed.
+ *
+ * @example
+ * ```ts
+ * // Express.js example (use bodyParser.raw() to get the raw buffer):
+ * app.post('/webhooks', express.raw({ type: 'application/json' }), (req, res) => {
+ *   let payload;
+ *   try {
+ *     payload = FedPulse.verifyWebhook({
+ *       rawBody: req.body,
+ *       signatureHeader: req.headers['x-fedpulse-signature'] as string,
+ *       timestampHeader: req.headers['x-fedpulse-timestamp'] as string,
+ *       secret: process.env.FEDPULSE_WEBHOOK_SECRET!,
+ *     });
+ *   } catch (err) {
+ *     return res.status(400).send('Invalid signature');
+ *   }
+ *   console.log('Event:', payload.event, 'Data:', payload.data);
+ *   res.status(200).send('OK');
+ * });
+ * ```
+ */
+export declare function verifyWebhook<T = unknown>(input: VerifyWebhookInput): WebhookPayload<T>;
+/**
+ * Extract the FedPulse webhook headers from a plain headers object.
+ *
+ * Normalises both lowercase and original-casing variants so you don't
+ * have to worry about header casing differences between frameworks.
+ *
+ * @param headers  A plain object or Map of request headers.
+ * @returns  Extracted signature and timestamp values.
+ *
+ * @example
+ * ```ts
+ * // Works with Express, Fastify, Koa, Next.js API routes, etc.
+ * const { signatureHeader, timestampHeader } = extractWebhookHeaders(req.headers);
+ * const payload = FedPulse.verifyWebhook({ rawBody, signatureHeader, timestampHeader, secret });
+ * ```
+ */
+export declare function extractWebhookHeaders(headers: Record<string, string | string[] | undefined> | Headers): {
+    signatureHeader: string;
+    timestampHeader: string;
+    event: string;
+    deliveryId: string;
+};
+//# sourceMappingURL=webhooks-verify.d.ts.map

package/dist/types/webhooks-verify.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"webhooks-verify.d.ts","sourceRoot":"","sources":["../../src/webhooks-verify.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;GAmBG;AAGH,OAAO,KAAK,EAAE,cAAc,EAAgB,oBAAoB,EAAE,MAAM,qBAAqB,CAAC;AAC9F,OAAO,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAQ5C,wDAAwD;AACxD,qBAAa,wBAAyB,SAAQ,aAAa;gBAC7C,OAAO,EAAE,MAAM;CAK5B;AAID,MAAM,WAAW,kBAAkB;IACjC;;;OAGG;IACH,OAAO,EAAE,MAAM,GAAG,MAAM,CAAC;IACzB,yEAAyE;IACzE,eAAe,EAAE,MAAM,CAAC;IACxB,iFAAiF;IACjF,eAAe,EAAE,MAAM,CAAC;IACxB,iFAAiF;IACjF,MAAM,EAAE,MAAM,CAAC;IACf,4BAA4B;IAC5B,OAAO,CAAC,EAAE,oBAAoB,CAAC;CAChC;AAID;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAoCG;AACH,wBAAgB,aAAa,CAAC,CAAC,GAAG,OAAO,EACvC,KAAK,EAAE,kBAAkB,GACxB,cAAc,CAAC,CAAC,CAAC,CAyGnB;AAED;;;;;;;;;;;;;;;GAeG;AACH,wBAAgB,qBAAqB,CACnC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,EAAE,GAAG,SAAS,CAAC,GAAG,OAAO,GAC/D;IAAE,eAAe,EAAE,MAAM,CAAC;IAAC,eAAe,EAAE,MAAM,CAAC;IAAC,KAAK,EAAE,MAAM,CAAC;IAAC,UAAU,EAAE,MAAM,CAAA;CAAE,CAuBzF"}

package/package.json

@@ -0,0 +1,62 @@
+{
+  "name": "@fedpulse/sdk",
+  "version": "1.0.0",
+  "description": "Official JavaScript/TypeScript SDK for the FedPulse API — federal contracts, exclusions, entities, assistance listings, and market intelligence.",
+  "keywords": [
+    "fedpulse",
+    "sam.gov",
+    "federal-contracts",
+    "government",
+    "api-sdk",
+    "typescript"
+  ],
+  "homepage": "https://fedpulse.dev",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/fedpulse/sdk.git"
+  },
+  "bugs": {
+    "url": "https://github.com/fedpulse/sdk/issues"
+  },
+  "license": "MIT",
+  "type": "module",
+  "engines": {
+    "node": ">=18.0.0"
+  },
+  "main": "./dist/cjs/index.cjs",
+  "module": "./dist/esm/index.js",
+  "types": "./dist/types/index.d.ts",
+  "exports": {
+    ".": {
+      "import": {
+        "types": "./dist/types/index.d.ts",
+        "default": "./dist/esm/index.js"
+      },
+      "require": {
+        "types": "./dist/types/index.d.cts",
+        "default": "./dist/cjs/index.cjs"
+      }
+    }
+  },
+  "files": [
+    "dist",
+    "README.md",
+    "LICENSE"
+  ],
+  "scripts": {
+    "build": "npm run build:esm && npm run build:cjs && npm run build:types && node scripts/make-dcts.mjs",
+    "build:esm": "tsc -p tsconfig.esm.json",
+    "build:cjs": "tsc -p tsconfig.cjs.json && node scripts/rename-cjs.mjs",
+    "build:types": "tsc -p tsconfig.types.json",
+    "test": "vitest run",
+    "test:watch": "vitest",
+    "test:coverage": "vitest run --coverage",
+    "lint": "tsc --noEmit",
+    "prepublishOnly": "npm run build && npm test"
+  },
+  "devDependencies": {
+    "@vitest/coverage-v8": "^2.0.0",
+    "typescript": "^5.5.0",
+    "vitest": "^2.0.0"
+  }
+}