@glubean/redaction 0.1.3 → 0.1.7

package/dist/defaults.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"defaults.d.ts","sourceRoot":"","sources":["../src/defaults.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAIlD;;;GAGG;AACH,eAAO,MAAM,uBAAuB,EAAE,SAAS,MAAM,EAqBpD,CAAC;AAIF;;;;GAIG;AACH,eAAO,MAAM,eAAe,EAAE,MAAM,CAClC,MAAM,EACN;IAAE,MAAM,EAAE,MAAM,CAAC;IAAC,KAAK,EAAE,MAAM,CAAA;CAAE,CAkClC,CAAC;AAIF;;;;;GAKG;AACH,eAAO,MAAM,cAAc,EAAE,eA4B5B,CAAC"}
+{"version":3,"file":"defaults.d.ts","sourceRoot":"","sources":["../src/defaults.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,EACV,WAAW,EACX,eAAe,EACf,yBAAyB,EAC1B,MAAM,YAAY,CAAC;AAIpB;;;;;GAKG;AACH,eAAO,MAAM,cAAc,EAAE,yBAAyB,EAuJrD,CAAC;AAIF;;;GAGG;AACH,eAAO,MAAM,eAAe,EAAE,MAAM,CAClC,MAAM,EACN;IAAE,MAAM,EAAE,MAAM,CAAC;IAAC,KAAK,EAAE,MAAM,CAAA;CAAE,CAkClC,CAAC;AAIF;;;;;GAKG;AACH,eAAO,MAAM,oBAAoB,EAAE,WAalC,CAAC;AAIF;;;;;GAKG;AACH,eAAO,MAAM,cAAc,EAAE,eAO5B,CAAC"}

package/dist/defaults.js

@@ -1,41 +1,174 @@
 /**
  * @module defaults
  *
- * Built-in sensitive keys, pattern source strings, and the default
- * redaction configuration used as the mandatory baseline for --share.
+ * Built-in scope declarations, pattern source strings, and default config.
+ *
+ * v2: HTTP scopes are declared as data, not as a fixed interface.
+ * They use the same shape as external plugin declarations.
  */
-// ── Built-in sensitive keys ─────────────────────────────────────────────────
+// ── Built-in HTTP scope declarations ─────────────────────────────────────────
 /**
- * Keys whose values are always redacted when matched (case-insensitive
- * substring match). Ported from glubean-v1 RedactionService for parity.
+ * Built-in scope declarations for HTTP, log, error, assertion, and step events.
+ *
+ * These are the "http-plugin" built-in contributor — they use the same
+ * declaration model as any external plugin.
  */
-export const BUILT_IN_SENSITIVE_KEYS = [
-    "password",
-    "passwd",
-    "secret",
-    "token",
-    "api_key",
-    "apikey",
-    "api-key",
-    "access_token",
-    "refresh_token",
-    "authorization",
-    "auth",
-    "credential",
-    "credentials",
-    "private_key",
-    "privatekey",
-    "private-key",
-    "ssh_key",
-    "client_secret",
-    "client-secret",
-    "bearer",
+export const BUILTIN_SCOPES = [
+    {
+        id: "http.request.headers",
+        name: "HTTP request headers",
+        event: "trace",
+        target: "data.requestHeaders",
+        handler: "headers",
+        rules: {
+            sensitiveKeys: ["authorization", "cookie", "x-api-key", "proxy-authorization"],
+        },
+    },
+    {
+        id: "http.request.query",
+        name: "HTTP request query",
+        event: "trace",
+        target: "data.url",
+        handler: "url-query",
+        rules: {
+            sensitiveKeys: [
+                "token",
+                "access_token",
+                "refresh_token",
+                "api_key",
+                "apikey",
+                "api-key",
+                "secret",
+                "password",
+            ],
+        },
+    },
+    {
+        id: "http.request.body",
+        name: "HTTP request body",
+        event: "trace",
+        target: "data.requestBody",
+        handler: "json",
+        rules: {
+            sensitiveKeys: [
+                "password",
+                "passwd",
+                "secret",
+                "token",
+                "client_secret",
+                "client-secret",
+                "private_key",
+                "privatekey",
+                "private-key",
+            ],
+        },
+    },
+    {
+        id: "http.response.headers",
+        name: "HTTP response headers",
+        event: "trace",
+        target: "data.responseHeaders",
+        handler: "headers",
+        rules: {
+            sensitiveKeys: ["set-cookie"],
+        },
+    },
+    {
+        id: "http.response.body",
+        name: "HTTP response body",
+        event: "trace",
+        target: "data.responseBody",
+        handler: "json",
+    },
+    {
+        id: "log.message",
+        name: "Log message",
+        event: "log",
+        target: "message",
+        handler: "raw-string",
+    },
+    {
+        id: "log.data",
+        name: "Log data",
+        event: "log",
+        target: "data",
+        handler: "json",
+    },
+    {
+        id: "error.message",
+        name: "Error message",
+        event: "error",
+        target: "message",
+        handler: "raw-string",
+    },
+    {
+        id: "error.stack",
+        name: "Error stack",
+        event: "error",
+        target: "stack",
+        handler: "raw-string",
+    },
+    {
+        id: "status.error",
+        name: "Status error",
+        event: "status",
+        target: "error",
+        handler: "raw-string",
+    },
+    {
+        id: "status.stack",
+        name: "Status stack",
+        event: "status",
+        target: "stack",
+        handler: "raw-string",
+    },
+    {
+        id: "assertion.message",
+        name: "Assertion message",
+        event: "assertion",
+        target: "message",
+        handler: "raw-string",
+    },
+    {
+        id: "assertion.actual",
+        name: "Assertion actual",
+        event: "assertion",
+        target: "actual",
+        handler: "json",
+    },
+    {
+        id: "assertion.expected",
+        name: "Assertion expected",
+        event: "assertion",
+        target: "expected",
+        handler: "json",
+    },
+    {
+        id: "warning.message",
+        name: "Warning message",
+        event: "warning",
+        target: "message",
+        handler: "raw-string",
+    },
+    {
+        id: "schema_validation.message",
+        name: "Schema validation message",
+        event: "schema_validation",
+        target: "message",
+        handler: "raw-string",
+    },
+    {
+        id: "step.returnState",
+        name: "Step return state",
+        event: "step_end",
+        target: "returnState",
+        handler: "json",
+    },
 ];
-// ── Built-in pattern source strings ─────────────────────────────────────────
+// ── Built-in pattern source strings ──────────────────────────────────────────
 /**
  * Regex source strings for built-in value-level patterns.
- * Plugins create new RegExp instances from these on each call
- * to avoid stale lastIndex state.
+ * Plugins create new RegExp instances from these on each call.
  */
 export const PATTERN_SOURCES = {
     jwt: {
@@ -71,40 +204,40 @@ export const PATTERN_SOURCES = {
         flags: "gi",
     },
 };
-// ── Default config ──────────────────────────────────────────────────────────
+// ── Default global rules ─────────────────────────────────────────────────────
+/**
+ * Default global additive rules.
+ *
+ * These are intentionally minimal — most sensitive keys now live
+ * in scope-specific declarations, not in globals.
+ */
+export const DEFAULT_GLOBAL_RULES = {
+    sensitiveKeys: [],
+    patterns: [
+        "jwt",
+        "bearer",
+        "awsKeys",
+        "githubTokens",
+        "email",
+        "ipAddress",
+        "creditCard",
+        "hexKeys",
+    ],
+    customPatterns: [],
+};
+// ── Default config ───────────────────────────────────────────────────────────
 /**
- * The mandatory baseline configuration for --share.
+ * Default redaction config v2.
  *
- * All scopes on, all patterns on, useBuiltIn keys, simple replacement.
- * User .glubean/redact.json can only add rules on top — never weaken this.
+ * All built-in scopes enabled, all patterns enabled globally,
+ * scope-specific sensitive keys declared per scope.
  */
 export const DEFAULT_CONFIG = {
-    scopes: {
-        requestHeaders: true,
-        requestQuery: true,
-        requestBody: true,
-        responseHeaders: true,
-        responseBody: true,
-        consoleOutput: true,
-        errorMessages: true,
-        returnState: true,
-    },
-    sensitiveKeys: {
-        useBuiltIn: true,
-        additional: [],
-        excluded: [],
-    },
-    patterns: {
-        jwt: true,
-        bearer: true,
-        awsKeys: true,
-        githubTokens: true,
-        email: true,
-        ipAddress: true,
-        creditCard: true,
-        hexKeys: true,
-        custom: [],
-    },
+    scopes: BUILTIN_SCOPES.map((s) => ({
+        ...s,
+        enabled: true,
+    })),
+    globalRules: DEFAULT_GLOBAL_RULES,
     replacementFormat: "partial",
 };
 //# sourceMappingURL=defaults.js.map

package/dist/defaults.js.map

@@ -1 +1 @@
-{"version":3,"file":"defaults.js","sourceRoot":"","sources":["../src/defaults.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAIH,+EAA+E;AAE/E;;;GAGG;AACH,MAAM,CAAC,MAAM,uBAAuB,GAAsB;IACxD,UAAU;IACV,QAAQ;IACR,QAAQ;IACR,OAAO;IACP,SAAS;IACT,QAAQ;IACR,SAAS;IACT,cAAc;IACd,eAAe;IACf,eAAe;IACf,MAAM;IACN,YAAY;IACZ,aAAa;IACb,aAAa;IACb,YAAY;IACZ,aAAa;IACb,SAAS;IACT,eAAe;IACf,eAAe;IACf,QAAQ;CACT,CAAC;AAEF,+EAA+E;AAE/E;;;;GAIG;AACH,MAAM,CAAC,MAAM,eAAe,GAGxB;IACF,GAAG,EAAE;QACH,MAAM,EAAE,2DAA2D;QACnE,KAAK,EAAE,GAAG;KACX;IACD,MAAM,EAAE;QACN,MAAM,EAAE,8BAA8B;QACtC,KAAK,EAAE,IAAI;KACZ;IACD,OAAO,EAAE;QACP,MAAM,EAAE,wBAAwB;QAChC,KAAK,EAAE,GAAG;KACX;IACD,YAAY,EAAE;QACZ,MAAM,EAAE,kDAAkD;QAC1D,KAAK,EAAE,GAAG;KACX;IACD,KAAK,EAAE;QACL,MAAM,EAAE,uDAAuD;QAC/D,KAAK,EAAE,GAAG;KACX;IACD,SAAS,EAAE;QACT,MAAM,EAAE,iDAAiD;QACzD,KAAK,EAAE,GAAG;KACX;IACD,UAAU,EAAE;QACV,MAAM,EAAE,+CAA+C;QACvD,KAAK,EAAE,GAAG;KACX;IACD,OAAO,EAAE;QACP,MAAM,EAAE,qBAAqB;QAC7B,KAAK,EAAE,IAAI;KACZ;CACF,CAAC;AAEF,+EAA+E;AAE/E;;;;;GAKG;AACH,MAAM,CAAC,MAAM,cAAc,GAAoB;IAC7C,MAAM,EAAE;QACN,cAAc,EAAE,IAAI;QACpB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,IAAI;QACjB,eAAe,EAAE,IAAI;QACrB,YAAY,EAAE,IAAI;QAClB,aAAa,EAAE,IAAI;QACnB,aAAa,EAAE,IAAI;QACnB,WAAW,EAAE,IAAI;KAClB;IACD,aAAa,EAAE;QACb,UAAU,EAAE,IAAI;QAChB,UAAU,EAAE,EAAE;QACd,QAAQ,EAAE,EAAE;KACb;IACD,QAAQ,EAAE;QACR,GAAG,EAAE,IAAI;QACT,MAAM,EAAE,IAAI;QACZ,OAAO,EAAE,IAAI;QACb,YAAY,EAAE,IAAI;QAClB,KAAK,EAAE,IAAI;QACX,SAAS,EAAE,IAAI;QACf,UAAU,EAAE,IAAI;QAChB,OAAO,EAAE,IAAI;QACb,MAAM,EAAE,EAAE;KACX;IACD,iBAAiB,EAAE,SAAS;CAC7B,CAAC"}
+{"version":3,"file":"defaults.js","sourceRoot":"","sources":["../src/defaults.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAQH,gFAAgF;AAEhF;;;;;GAKG;AACH,MAAM,CAAC,MAAM,cAAc,GAAgC;IACzD;QACE,EAAE,EAAE,sBAAsB;QAC1B,IAAI,EAAE,sBAAsB;QAC5B,KAAK,EAAE,OAAO;QACd,MAAM,EAAE,qBAAqB;QAC7B,OAAO,EAAE,SAAS;QAClB,KAAK,EAAE;YACL,aAAa,EAAE,CAAC,eAAe,EAAE,QAAQ,EAAE,WAAW,EAAE,qBAAqB,CAAC;SAC/E;KACF;IACD;QACE,EAAE,EAAE,oBAAoB;QACxB,IAAI,EAAE,oBAAoB;QAC1B,KAAK,EAAE,OAAO;QACd,MAAM,EAAE,UAAU;QAClB,OAAO,EAAE,WAAW;QACpB,KAAK,EAAE;YACL,aAAa,EAAE;gBACb,OAAO;gBACP,cAAc;gBACd,eAAe;gBACf,SAAS;gBACT,QAAQ;gBACR,SAAS;gBACT,QAAQ;gBACR,UAAU;aACX;SACF;KACF;IACD;QACE,EAAE,EAAE,mBAAmB;QACvB,IAAI,EAAE,mBAAmB;QACzB,KAAK,EAAE,OAAO;QACd,MAAM,EAAE,kBAAkB;QAC1B,OAAO,EAAE,MAAM;QACf,KAAK,EAAE;YACL,aAAa,EAAE;gBACb,UAAU;gBACV,QAAQ;gBACR,QAAQ;gBACR,OAAO;gBACP,eAAe;gBACf,eAAe;gBACf,aAAa;gBACb,YAAY;gBACZ,aAAa;aACd;SACF;KACF;IACD;QACE,EAAE,EAAE,uBAAuB;QAC3B,IAAI,EAAE,uBAAuB;QAC7B,KAAK,EAAE,OAAO;QACd,MAAM,EAAE,sBAAsB;QAC9B,OAAO,EAAE,SAAS;QAClB,KAAK,EAAE;YACL,aAAa,EAAE,CAAC,YAAY,CAAC;SAC9B;KACF;IACD;QACE,EAAE,EAAE,oBAAoB;QACxB,IAAI,EAAE,oBAAoB;QAC1B,KAAK,EAAE,OAAO;QACd,MAAM,EAAE,mBAAmB;QAC3B,OAAO,EAAE,MAAM;KAChB;IACD;QACE,EAAE,EAAE,aAAa;QACjB,IAAI,EAAE,aAAa;QACnB,KAAK,EAAE,KAAK;QACZ,MAAM,EAAE,SAAS;QACjB,OAAO,EAAE,YAAY;KACtB;IACD;QACE,EAAE,EAAE,UAAU;QACd,IAAI,EAAE,UAAU;QAChB,KAAK,EAAE,KAAK;QACZ,MAAM,EAAE,MAAM;QACd,OAAO,EAAE,MAAM;KAChB;IACD;QACE,EAAE,EAAE,eAAe;QACnB,IAAI,EAAE,eAAe;QACrB,KAAK,EAAE,OAAO;QACd,MAAM,EAAE,SAAS;QACjB,OAAO,EAAE,YAAY;KACtB;IACD;QACE,EAAE,EAAE,aAAa;QACjB,IAAI,EAAE,aAAa;QACnB,KAAK,EAAE,OAAO;QACd,MAAM,EAAE,OAAO;QACf,OAAO,EAAE,YAAY;KACtB;IACD;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,cAAc;QACpB,KAAK,EAAE,QAAQ;QACf,MAAM,EAAE,OAAO;QACf,OAAO,EAAE,YAAY;KACtB;IACD;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,cAAc;QACpB,KAAK,EAAE,QAAQ;QACf,MAAM,EAAE,OAAO;QACf,OAAO,EAAE,YAAY;KACtB;IACD;QACE,EAAE,EAAE,mBAAmB;QACvB,IAAI,EAAE,mBAAmB;QACzB,KAAK,EAAE,WAAW;QAClB,MAAM,EAAE,SAAS;QACjB,OAAO,EAAE,YAAY;KACtB;IACD;QACE,EAAE,EAAE,kBAAkB;QACtB,IAAI,EAAE,kBAAkB;QACxB,KAAK,EAAE,WAAW;QAClB,MAAM,EAAE,QAAQ;QAChB,OAAO,EAAE,MAAM;KAChB;IACD;QACE,EAAE,EAAE,oBAAoB;QACxB,IAAI,EAAE,oBAAoB;QAC1B,KAAK,EAAE,WAAW;QAClB,MAAM,EAAE,UAAU;QAClB,OAAO,EAAE,MAAM;KAChB;IACD;QACE,EAAE,EAAE,iBAAiB;QACrB,IAAI,EAAE,iBAAiB;QACvB,KAAK,EAAE,SAAS;QAChB,MAAM,EAAE,SAAS;QACjB,OAAO,EAAE,YAAY;KACtB;IACD;QACE,EAAE,EAAE,2BAA2B;QAC/B,IAAI,EAAE,2BAA2B;QACjC,KAAK,EAAE,mBAAmB;QAC1B,MAAM,EAAE,SAAS;QACjB,OAAO,EAAE,YAAY;KACtB;IACD;QACE,EAAE,EAAE,kBAAkB;QACtB,IAAI,EAAE,mBAAmB;QACzB,KAAK,EAAE,UAAU;QACjB,MAAM,EAAE,aAAa;QACrB,OAAO,EAAE,MAAM;KAChB;CACF,CAAC;AAEF,gFAAgF;AAEhF;;;GAGG;AACH,MAAM,CAAC,MAAM,eAAe,GAGxB;IACF,GAAG,EAAE;QACH,MAAM,EAAE,2DAA2D;QACnE,KAAK,EAAE,GAAG;KACX;IACD,MAAM,EAAE;QACN,MAAM,EAAE,8BAA8B;QACtC,KAAK,EAAE,IAAI;KACZ;IACD,OAAO,EAAE;QACP,MAAM,EAAE,wBAAwB;QAChC,KAAK,EAAE,GAAG;KACX;IACD,YAAY,EAAE;QACZ,MAAM,EAAE,kDAAkD;QAC1D,KAAK,EAAE,GAAG;KACX;IACD,KAAK,EAAE;QACL,MAAM,EAAE,uDAAuD;QAC/D,KAAK,EAAE,GAAG;KACX;IACD,SAAS,EAAE;QACT,MAAM,EAAE,iDAAiD;QACzD,KAAK,EAAE,GAAG;KACX;IACD,UAAU,EAAE;QACV,MAAM,EAAE,+CAA+C;QACvD,KAAK,EAAE,GAAG;KACX;IACD,OAAO,EAAE;QACP,MAAM,EAAE,qBAAqB;QAC7B,KAAK,EAAE,IAAI;KACZ;CACF,CAAC;AAEF,gFAAgF;AAEhF;;;;;GAKG;AACH,MAAM,CAAC,MAAM,oBAAoB,GAAgB;IAC/C,aAAa,EAAE,EAAE;IACjB,QAAQ,EAAE;QACR,KAAK;QACL,QAAQ;QACR,SAAS;QACT,cAAc;QACd,OAAO;QACP,WAAW;QACX,YAAY;QACZ,SAAS;KACV;IACD,cAAc,EAAE,EAAE;CACnB,CAAC;AAEF,gFAAgF;AAEhF;;;;;GAKG;AACH,MAAM,CAAC,MAAM,cAAc,GAAoB;IAC7C,MAAM,EAAE,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACjC,GAAG,CAAC;QACJ,OAAO,EAAE,IAAI;KACd,CAAC,CAAC;IACH,WAAW,EAAE,oBAAoB;IACjC,iBAAiB,EAAE,SAAS;CAC7B,CAAC"}

package/dist/engine.d.ts

@@ -1,46 +1,45 @@
 /**
  * @module engine
  *
- * RedactionEngine — the core recursive JSON walker that applies plugins
+ * RedactionEngine — recursive JSON walker that applies plugins
  * to detect and mask sensitive data.
  *
- * Ported from glubean-v1 RedactionService (policyRedactValue / policyRedactObject /
- * policyRedactString) with the monolithic class decomposed into a plugin pipeline.
+ * v2: the engine is instantiated per-scope with a scope-specific plugin pipeline.
+ * It no longer does scope gating — that responsibility moves to the compiler/dispatcher.
  */
-import type { RedactionConfig, RedactionPlugin, RedactionResult } from "./types.js";
+import type { RedactionPlugin, RedactionResult, ScopeContext } from "./types.js";
 /** Options for constructing a RedactionEngine instance. */
-export interface RedactionEngineOptions<C extends RedactionConfig = RedactionConfig> {
-    config: C;
+export interface RedactionEngineOptions {
+    /** Plugin pipeline for this engine instance. */
     plugins: RedactionPlugin[];
+    /** Replacement format. */
+    replacementFormat: "simple" | "labeled" | "partial";
     /** Max object nesting depth before truncation. Default: 10. */
     maxDepth?: number;
 }
 /**
  * Generic partial mask: show first 3 and last 3 characters for long values,
  * less for shorter values, full mask for very short ones.
- *
- * Used as fallback when a plugin does not provide its own partialMask().
  */
 export declare function genericPartialMask(value: string): string;
 /**
  * Plugin-based redaction engine.
  *
  * Walks JSON values recursively, applying registered plugins for key-level
- * and value-level redaction. Supports three replacement formats:
- * "simple" ([REDACTED]), "labeled" ([REDACTED:plugin_name]), "partial" (smart masking).
+ * and value-level redaction.
  */
-export declare class RedactionEngine<C extends RedactionConfig = RedactionConfig> {
-    private readonly config;
+export declare class RedactionEngine {
     private readonly plugins;
+    private readonly replacementFormat;
     private readonly maxDepth;
-    constructor(options: RedactionEngineOptions<C>);
+    constructor(options: RedactionEngineOptions);
     /**
      * Redact a value. Recursively walks objects and arrays.
      *
-     * @param value   The value to redact (deep-cloned internally).
-     * @param scope   Optional scope key — if the scope is disabled in config, returns value unchanged.
+     * @param value The value to redact.
+     * @param ctx   Optional scope context for plugin dispatch.
      */
-    redact(value: unknown, scope?: keyof C["scopes"] & string): RedactionResult;
+    redact(value: unknown, ctx?: ScopeContext): RedactionResult;
     private walkValue;
     private walkObject;
     private walkString;

package/dist/engine.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"engine.d.ts","sourceRoot":"","sources":["../src/engine.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,KAAK,EAAE,eAAe,EAAoB,eAAe,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAEtG,2DAA2D;AAC3D,MAAM,WAAW,sBAAsB,CACrC,CAAC,SAAS,eAAe,GAAG,eAAe;IAE3C,MAAM,EAAE,CAAC,CAAC;IACV,OAAO,EAAE,eAAe,EAAE,CAAC;IAC3B,+DAA+D;IAC/D,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;;;;GAKG;AACH,wBAAgB,kBAAkB,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CAKxD;AAED;;;;;;GAMG;AACH,qBAAa,eAAe,CAAC,CAAC,SAAS,eAAe,GAAG,eAAe;IACtE,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAI;IAC3B,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAoB;IAC5C,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAS;gBAEtB,OAAO,EAAE,sBAAsB,CAAC,CAAC,CAAC;IAM9C;;;;;OAKG;IACH,MAAM,CAAC,KAAK,EAAE,OAAO,EAAE,KAAK,CAAC,EAAE,MAAM,CAAC,CAAC,QAAQ,CAAC,GAAG,MAAM,GAAG,eAAe;IAqB3E,OAAO,CAAC,SAAS;IAiDjB,OAAO,CAAC,UAAU;IA4DlB,OAAO,CAAC,UAAU;CA8CnB"}
+{"version":3,"file":"engine.d.ts","sourceRoot":"","sources":["../src/engine.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,KAAK,EAEV,eAAe,EACf,eAAe,EACf,YAAY,EACb,MAAM,YAAY,CAAC;AAEpB,2DAA2D;AAC3D,MAAM,WAAW,sBAAsB;IACrC,gDAAgD;IAChD,OAAO,EAAE,eAAe,EAAE,CAAC;IAC3B,0BAA0B;IAC1B,iBAAiB,EAAE,QAAQ,GAAG,SAAS,GAAG,SAAS,CAAC;IACpD,+DAA+D;IAC/D,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;;GAGG;AACH,wBAAgB,kBAAkB,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CAKxD;AAED;;;;;GAKG;AACH,qBAAa,eAAe;IAC1B,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAoB;IAC5C,OAAO,CAAC,QAAQ,CAAC,iBAAiB,CAAmC;IACrE,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAS;gBAEtB,OAAO,EAAE,sBAAsB;IAM3C;;;;;OAKG;IACH,MAAM,CAAC,KAAK,EAAE,OAAO,EAAE,GAAG,CAAC,EAAE,YAAY,GAAG,eAAe;IAa3D,OAAO,CAAC,SAAS;IAiDjB,OAAO,CAAC,UAAU;IA4DlB,OAAO,CAAC,UAAU;CA4CnB"}

package/dist/engine.js

@@ -1,17 +1,15 @@
 /**
  * @module engine
  *
- * RedactionEngine — the core recursive JSON walker that applies plugins
+ * RedactionEngine — recursive JSON walker that applies plugins
  * to detect and mask sensitive data.
  *
- * Ported from glubean-v1 RedactionService (policyRedactValue / policyRedactObject /
- * policyRedactString) with the monolithic class decomposed into a plugin pipeline.
+ * v2: the engine is instantiated per-scope with a scope-specific plugin pipeline.
+ * It no longer does scope gating — that responsibility moves to the compiler/dispatcher.
  */
 /**
  * Generic partial mask: show first 3 and last 3 characters for long values,
  * less for shorter values, full mask for very short ones.
- *
- * Used as fallback when a plugin does not provide its own partialMask().
  */
 export function genericPartialMask(value) {
     const len = value.length;
@@ -25,34 +23,26 @@ export function genericPartialMask(value) {
  * Plugin-based redaction engine.
  *
  * Walks JSON values recursively, applying registered plugins for key-level
- * and value-level redaction. Supports three replacement formats:
- * "simple" ([REDACTED]), "labeled" ([REDACTED:plugin_name]), "partial" (smart masking).
+ * and value-level redaction.
  */
 export class RedactionEngine {
-    config;
     plugins;
+    replacementFormat;
     maxDepth;
     constructor(options) {
-        this.config = options.config;
         this.plugins = options.plugins;
+        this.replacementFormat = options.replacementFormat;
         this.maxDepth = options.maxDepth ?? 10;
     }
     /**
      * Redact a value. Recursively walks objects and arrays.
      *
-     * @param value   The value to redact (deep-cloned internally).
-     * @param scope   Optional scope key — if the scope is disabled in config, returns value unchanged.
+     * @param value The value to redact.
+     * @param ctx   Optional scope context for plugin dispatch.
      */
-    redact(value, scope) {
-        // Scope gate: if scope is specified and disabled, skip entirely
-        if (scope) {
-            const scopes = this.config.scopes;
-            if (scopes[scope] === false) {
-                return { value, redacted: false, details: [] };
-            }
-        }
+    redact(value, ctx) {
+        const scopeStr = ctx?.id ?? "";
         const details = [];
-        const scopeStr = scope ?? "";
         const result = this.walkValue(value, scopeStr, [], details, 0);
         return {
             value: result.value,
@@ -107,8 +97,7 @@ export class RedactionEngine {
                 }
             }
             if (keySensitive) {
-                const replacement = this.config.replacementFormat;
-                if (replacement === "partial") {
+                if (this.replacementFormat === "partial") {
                     const str = value === null || value === undefined ? "" : String(value);
                     result[key] = genericPartialMask(str);
                 }
@@ -145,15 +134,13 @@ export class RedactionEngine {
             const regex = plugin.matchValue(result, ctx);
             if (!regex)
                 continue;
-            // Test if the pattern matches
             if (regex.test(result)) {
                 regex.lastIndex = 0; // Reset after test()
-                const replacement = this.config.replacementFormat;
-                if (replacement === "partial") {
+                if (this.replacementFormat === "partial") {
                     const maskFn = plugin.partialMask ?? genericPartialMask;
                     result = result.replace(regex, (match) => maskFn(match));
                 }
-                else if (replacement === "labeled") {
+                else if (this.replacementFormat === "labeled") {
                     const tag = `[REDACTED:${plugin.name}]`;
                     result = result.replace(regex, tag);
                 }

package/dist/engine.js.map

@@ -1 +1 @@
-{"version":3,"file":"engine.js","sourceRoot":"","sources":["../src/engine.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAcH;;;;;GAKG;AACH,MAAM,UAAU,kBAAkB,CAAC,KAAa;IAC9C,MAAM,GAAG,GAAG,KAAK,CAAC,MAAM,CAAC;IACzB,IAAI,GAAG,IAAI,CAAC;QAAE,OAAO,MAAM,CAAC;IAC5B,IAAI,GAAG,IAAI,CAAC;QAAE,OAAO,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;IACjE,OAAO,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;AACrD,CAAC;AAED;;;;;;GAMG;AACH,MAAM,OAAO,eAAe;IACT,MAAM,CAAI;IACV,OAAO,CAAoB;IAC3B,QAAQ,CAAS;IAElC,YAAY,OAAkC;QAC5C,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;QAC7B,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;QAC/B,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC,QAAQ,IAAI,EAAE,CAAC;IACzC,CAAC;IAED;;;;;OAKG;IACH,MAAM,CAAC,KAAc,EAAE,KAAkC;QACvD,gEAAgE;QAChE,IAAI,KAAK,EAAE,CAAC;YACV,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,MAA4C,CAAC;YACxE,IAAI,MAAM,CAAC,KAAK,CAAC,KAAK,KAAK,EAAE,CAAC;gBAC5B,OAAO,EAAE,KAAK,EAAE,QAAQ,EAAE,KAAK,EAAE,OAAO,EAAE,EAAE,EAAE,CAAC;YACjD,CAAC;QACH,CAAC;QAED,MAAM,OAAO,GAA+B,EAAE,CAAC;QAC/C,MAAM,QAAQ,GAAG,KAAK,IAAI,EAAE,CAAC;QAC7B,MAAM,MAAM,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,QAAQ,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC,CAAC;QAC/D,OAAO;YACL,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,QAAQ,EAAE,MAAM,CAAC,SAAS;YAC1B,OAAO;SACR,CAAC;IACJ,CAAC;IAED,yEAAyE;IAEjE,SAAS,CACf,KAAc,EACd,KAAa,EACb,IAAc,EACd,OAAmC,EACnC,KAAa;QAEb,IAAI,KAAK,GAAG,IAAI,CAAC,QAAQ,EAAE,CAAC;YAC1B,OAAO,EAAE,KAAK,EAAE,sBAAsB,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;QAC5D,CAAC;QAED,IAAI,KAAK,KAAK,IAAI,IAAI,KAAK,KAAK,SAAS,EAAE,CAAC;YAC1C,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;QACrC,CAAC;QAED,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,IAAI,CAAC,UAAU,CAAC,KAAK,EAAE,KAAK,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;QACtD,CAAC;QAED,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;YACzB,IAAI,SAAS,GAAG,KAAK,CAAC;YACtB,MAAM,aAAa,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC,EAAE,EAAE;gBAC1C,MAAM,MAAM,GAAG,IAAI,CAAC,SAAS,CAC3B,IAAI,EACJ,KAAK,EACL,CAAC,GAAG,IAAI,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,EACpB,OAAO,EACP,KAAK,GAAG,CAAC,CACV,CAAC;gBACF,IAAI,MAAM,CAAC,SAAS;oBAAE,SAAS,GAAG,IAAI,CAAC;gBACvC,OAAO,MAAM,CAAC,KAAK,CAAC;YACtB,CAAC,CAAC,CAAC;YACH,OAAO,EAAE,KAAK,EAAE,aAAa,EAAE,SAAS,EAAE,CAAC;QAC7C,CAAC;QAED,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,IAAI,CAAC,UAAU,CACpB,KAAgC,EAChC,KAAK,EACL,IAAI,EACJ,OAAO,EACP,KAAK,CACN,CAAC;QACJ,CAAC;QAED,yCAAyC;QACzC,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;IACrC,CAAC;IAEO,UAAU,CAChB,GAA4B,EAC5B,KAAa,EACb,IAAc,EACd,OAAmC,EACnC,KAAa;QAEb,IAAI,SAAS,GAAG,KAAK,CAAC;QACtB,MAAM,MAAM,GAA4B,EAAE,CAAC;QAE3C,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;YAC/C,MAAM,OAAO,GAAG,CAAC,GAAG,IAAI,EAAE,GAAG,CAAC,CAAC;YAC/B,MAAM,GAAG,GAAqB,EAAE,KAAK,EAAE,IAAI,EAAE,OAAO,EAAE,GAAG,EAAE,CAAC;YAE5D,oDAAoD;YACpD,IAAI,YAAY,GAAG,KAAK,CAAC;YACzB,IAAI,aAAa,GAAG,EAAE,CAAC;YACvB,KAAK,MAAM,MAAM,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;gBAClC,IAAI,MAAM,CAAC,cAAc,EAAE,CAAC;oBAC1B,MAAM,GAAG,GAAG,MAAM,CAAC,cAAc,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;oBAC5C,IAAI,GAAG,KAAK,IAAI,EAAE,CAAC;wBACjB,YAAY,GAAG,IAAI,CAAC;wBACpB,aAAa,GAAG,MAAM,CAAC,IAAI,CAAC;wBAC5B,MAAM;oBACR,CAAC;gBACH,CAAC;YACH,CAAC;YAED,IAAI,YAAY,EAAE,CAAC;gBACjB,MAAM,WAAW,GAAG,IAAI,CAAC,MAAM,CAAC,iBAAiB,CAAC;gBAClD,IAAI,WAAW,KAAK,SAAS,EAAE,CAAC;oBAC9B,MAAM,GAAG,GAAG,KAAK,KAAK,IAAI,IAAI,KAAK,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;oBACvE,MAAM,CAAC,GAAG,CAAC,GAAG,kBAAkB,CAAC,GAAG,CAAC,CAAC;gBACxC,CAAC;qBAAM,CAAC;oBACN,MAAM,CAAC,GAAG,CAAC,GAAG,YAAY,CAAC;gBAC7B,CAAC;gBACD,SAAS,GAAG,IAAI,CAAC;gBACjB,OAAO,CAAC,IAAI,CAAC;oBACX,IAAI,EAAE,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC;oBACvB,MAAM,EAAE,aAAa;oBACrB,QAAQ,EAAE,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS;iBACxD,CAAC,CAAC;gBACH,SAAS;YACX,CAAC;YAED,qBAAqB;YACrB,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,CAC7B,KAAK,EACL,KAAK,EACL,OAAO,EACP,OAAO,EACP,KAAK,GAAG,CAAC,CACV,CAAC;YACF,MAAM,CAAC,GAAG,CAAC,GAAG,QAAQ,CAAC,KAAK,CAAC;YAC7B,IAAI,QAAQ,CAAC,SAAS;gBAAE,SAAS,GAAG,IAAI,CAAC;QAC3C,CAAC;QAED,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,SAAS,EAAE,CAAC;IACtC,CAAC;IAEO,UAAU,CAChB,GAAW,EACX,KAAa,EACb,IAAc,EACd,OAAmC;QAEnC,IAAI,MAAM,GAAG,GAAG,CAAC;QACjB,IAAI,SAAS,GAAG,KAAK,CAAC;QACtB,MAAM,GAAG,GAAqB;YAC5B,KAAK;YACL,IAAI;YACJ,GAAG,EAAE,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE;SAClD,CAAC;QAEF,KAAK,MAAM,MAAM,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YAClC,IAAI,CAAC,MAAM,CAAC,UAAU;gBAAE,SAAS;YAEjC,MAAM,KAAK,GAAG,MAAM,CAAC,UAAU,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;YAC7C,IAAI,CAAC,KAAK;gBAAE,SAAS;YAErB,8BAA8B;YAC9B,IAAI,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBACvB,KAAK,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC,qBAAqB;gBAE1C,MAAM,WAAW,GAAG,IAAI,CAAC,MAAM,CAAC,iBAAiB,CAAC;gBAClD,IAAI,WAAW,KAAK,SAAS,EAAE,CAAC;oBAC9B,MAAM,MAAM,GAAG,MAAM,CAAC,WAAW,IAAI,kBAAkB,CAAC;oBACxD,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC,KAAK,EAAE,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;gBAC3D,CAAC;qBAAM,IAAI,WAAW,KAAK,SAAS,EAAE,CAAC;oBACrC,MAAM,GAAG,GAAG,aAAa,MAAM,CAAC,IAAI,GAAG,CAAC;oBACxC,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;gBACtC,CAAC;qBAAM,CAAC;oBACN,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,KAAK,EAAE,YAAY,CAAC,CAAC;gBAC/C,CAAC;gBAED,SAAS,GAAG,IAAI,CAAC;gBACjB,OAAO,CAAC,IAAI,CAAC;oBACX,IAAI,EAAE,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC;oBACpB,MAAM,EAAE,MAAM,CAAC,IAAI;oBACnB,QAAQ,EAAE,GAAG;iBACd,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,SAAS,EAAE,CAAC;IACtC,CAAC;CACF"}
+{"version":3,"file":"engine.js","sourceRoot":"","sources":["../src/engine.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAmBH;;;GAGG;AACH,MAAM,UAAU,kBAAkB,CAAC,KAAa;IAC9C,MAAM,GAAG,GAAG,KAAK,CAAC,MAAM,CAAC;IACzB,IAAI,GAAG,IAAI,CAAC;QAAE,OAAO,MAAM,CAAC;IAC5B,IAAI,GAAG,IAAI,CAAC;QAAE,OAAO,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;IACjE,OAAO,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;AACrD,CAAC;AAED;;;;;GAKG;AACH,MAAM,OAAO,eAAe;IACT,OAAO,CAAoB;IAC3B,iBAAiB,CAAmC;IACpD,QAAQ,CAAS;IAElC,YAAY,OAA+B;QACzC,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;QAC/B,IAAI,CAAC,iBAAiB,GAAG,OAAO,CAAC,iBAAiB,CAAC;QACnD,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC,QAAQ,IAAI,EAAE,CAAC;IACzC,CAAC;IAED;;;;;OAKG;IACH,MAAM,CAAC,KAAc,EAAE,GAAkB;QACvC,MAAM,QAAQ,GAAG,GAAG,EAAE,EAAE,IAAI,EAAE,CAAC;QAC/B,MAAM,OAAO,GAA+B,EAAE,CAAC;QAC/C,MAAM,MAAM,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,QAAQ,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC,CAAC;QAC/D,OAAO;YACL,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,QAAQ,EAAE,MAAM,CAAC,SAAS;YAC1B,OAAO;SACR,CAAC;IACJ,CAAC;IAED,yEAAyE;IAEjE,SAAS,CACf,KAAc,EACd,KAAa,EACb,IAAc,EACd,OAAmC,EACnC,KAAa;QAEb,IAAI,KAAK,GAAG,IAAI,CAAC,QAAQ,EAAE,CAAC;YAC1B,OAAO,EAAE,KAAK,EAAE,sBAAsB,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;QAC5D,CAAC;QAED,IAAI,KAAK,KAAK,IAAI,IAAI,KAAK,KAAK,SAAS,EAAE,CAAC;YAC1C,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;QACrC,CAAC;QAED,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,IAAI,CAAC,UAAU,CAAC,KAAK,EAAE,KAAK,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;QACtD,CAAC;QAED,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;YACzB,IAAI,SAAS,GAAG,KAAK,CAAC;YACtB,MAAM,aAAa,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC,EAAE,EAAE;gBAC1C,MAAM,MAAM,GAAG,IAAI,CAAC,SAAS,CAC3B,IAAI,EACJ,KAAK,EACL,CAAC,GAAG,IAAI,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,EACpB,OAAO,EACP,KAAK,GAAG,CAAC,CACV,CAAC;gBACF,IAAI,MAAM,CAAC,SAAS;oBAAE,SAAS,GAAG,IAAI,CAAC;gBACvC,OAAO,MAAM,CAAC,KAAK,CAAC;YACtB,CAAC,CAAC,CAAC;YACH,OAAO,EAAE,KAAK,EAAE,aAAa,EAAE,SAAS,EAAE,CAAC;QAC7C,CAAC;QAED,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,IAAI,CAAC,UAAU,CACpB,KAAgC,EAChC,KAAK,EACL,IAAI,EACJ,OAAO,EACP,KAAK,CACN,CAAC;QACJ,CAAC;QAED,yCAAyC;QACzC,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;IACrC,CAAC;IAEO,UAAU,CAChB,GAA4B,EAC5B,KAAa,EACb,IAAc,EACd,OAAmC,EACnC,KAAa;QAEb,IAAI,SAAS,GAAG,KAAK,CAAC;QACtB,MAAM,MAAM,GAA4B,EAAE,CAAC;QAE3C,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;YAC/C,MAAM,OAAO,GAAG,CAAC,GAAG,IAAI,EAAE,GAAG,CAAC,CAAC;YAC/B,MAAM,GAAG,GAAqB,EAAE,KAAK,EAAE,IAAI,EAAE,OAAO,EAAE,GAAG,EAAE,CAAC;YAE5D,oDAAoD;YACpD,IAAI,YAAY,GAAG,KAAK,CAAC;YACzB,IAAI,aAAa,GAAG,EAAE,CAAC;YACvB,KAAK,MAAM,MAAM,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;gBAClC,IAAI,MAAM,CAAC,cAAc,EAAE,CAAC;oBAC1B,MAAM,GAAG,GAAG,MAAM,CAAC,cAAc,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;oBAC5C,IAAI,GAAG,KAAK,IAAI,EAAE,CAAC;wBACjB,YAAY,GAAG,IAAI,CAAC;wBACpB,aAAa,GAAG,MAAM,CAAC,IAAI,CAAC;wBAC5B,MAAM;oBACR,CAAC;gBACH,CAAC;YACH,CAAC;YAED,IAAI,YAAY,EAAE,CAAC;gBACjB,IAAI,IAAI,CAAC,iBAAiB,KAAK,SAAS,EAAE,CAAC;oBACzC,MAAM,GAAG,GACP,KAAK,KAAK,IAAI,IAAI,KAAK,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;oBAC7D,MAAM,CAAC,GAAG,CAAC,GAAG,kBAAkB,CAAC,GAAG,CAAC,CAAC;gBACxC,CAAC;qBAAM,CAAC;oBACN,MAAM,CAAC,GAAG,CAAC,GAAG,YAAY,CAAC;gBAC7B,CAAC;gBACD,SAAS,GAAG,IAAI,CAAC;gBACjB,OAAO,CAAC,IAAI,CAAC;oBACX,IAAI,EAAE,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC;oBACvB,MAAM,EAAE,aAAa;oBACrB,QAAQ,EAAE,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS;iBACxD,CAAC,CAAC;gBACH,SAAS;YACX,CAAC;YAED,qBAAqB;YACrB,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,CAC7B,KAAK,EACL,KAAK,EACL,OAAO,EACP,OAAO,EACP,KAAK,GAAG,CAAC,CACV,CAAC;YACF,MAAM,CAAC,GAAG,CAAC,GAAG,QAAQ,CAAC,KAAK,CAAC;YAC7B,IAAI,QAAQ,CAAC,SAAS;gBAAE,SAAS,GAAG,IAAI,CAAC;QAC3C,CAAC;QAED,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,SAAS,EAAE,CAAC;IACtC,CAAC;IAEO,UAAU,CAChB,GAAW,EACX,KAAa,EACb,IAAc,EACd,OAAmC;QAEnC,IAAI,MAAM,GAAG,GAAG,CAAC;QACjB,IAAI,SAAS,GAAG,KAAK,CAAC;QACtB,MAAM,GAAG,GAAqB;YAC5B,KAAK;YACL,IAAI;YACJ,GAAG,EAAE,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE;SAClD,CAAC;QAEF,KAAK,MAAM,MAAM,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YAClC,IAAI,CAAC,MAAM,CAAC,UAAU;gBAAE,SAAS;YAEjC,MAAM,KAAK,GAAG,MAAM,CAAC,UAAU,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;YAC7C,IAAI,CAAC,KAAK;gBAAE,SAAS;YAErB,IAAI,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBACvB,KAAK,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC,qBAAqB;gBAE1C,IAAI,IAAI,CAAC,iBAAiB,KAAK,SAAS,EAAE,CAAC;oBACzC,MAAM,MAAM,GAAG,MAAM,CAAC,WAAW,IAAI,kBAAkB,CAAC;oBACxD,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC,KAAK,EAAE,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;gBAC3D,CAAC;qBAAM,IAAI,IAAI,CAAC,iBAAiB,KAAK,SAAS,EAAE,CAAC;oBAChD,MAAM,GAAG,GAAG,aAAa,MAAM,CAAC,IAAI,GAAG,CAAC;oBACxC,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;gBACtC,CAAC;qBAAM,CAAC;oBACN,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,KAAK,EAAE,YAAY,CAAC,CAAC;gBAC/C,CAAC;gBAED,SAAS,GAAG,IAAI,CAAC;gBACjB,OAAO,CAAC,IAAI,CAAC;oBACX,IAAI,EAAE,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC;oBACpB,MAAM,EAAE,MAAM,CAAC,IAAI;oBACnB,QAAQ,EAAE,GAAG;iBACd,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,SAAS,EAAE,CAAC;IACtC,CAAC;CACF"}

package/dist/handlers.d.ts

@@ -0,0 +1,37 @@
+/**
+ * @module handlers
+ *
+ * Built-in redaction handlers. Each handler interprets a specific payload shape.
+ *
+ * - `json` — recursive object/array walker (delegates to engine.redact)
+ * - `raw-string` — value-pattern matching only
+ * - `url-query` — parse URL, redact query param names/values, serialize back
+ * - `headers` — header map with case-insensitive keys, cookie/set-cookie parsing
+ */
+import type { RedactionHandler } from "./types.js";
+/**
+ * Default handler: delegates directly to engine.redact() which recursively
+ * walks objects/arrays and applies key-level + value-level plugins.
+ */
+export declare const jsonHandler: RedactionHandler;
+/**
+ * Handles plain string values. Wraps the string in an object so the engine
+ * can apply value-level pattern plugins, then extracts the result.
+ */
+export declare const rawStringHandler: RedactionHandler;
+/**
+ * Parses a URL string, redacts query parameter names/values using the engine,
+ * then serializes back to a URL string.
+ */
+export declare const urlQueryHandler: RedactionHandler;
+/**
+ * Handles HTTP header maps with special treatment for cookie headers.
+ *
+ * - Normal headers: redact as key/value pairs
+ * - `cookie`: parse into name/value pairs, redact, serialize back
+ * - `set-cookie`: parse value portion, preserve attributes (Path, Domain, etc.)
+ */
+export declare const headersHandler: RedactionHandler;
+/** All built-in handlers indexed by name. */
+export declare const BUILTIN_HANDLERS: Record<string, RedactionHandler>;
+//# sourceMappingURL=handlers.d.ts.map

package/dist/handlers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"handlers.d.ts","sourceRoot":"","sources":["../src/handlers.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,gBAAgB,EAA6D,MAAM,YAAY,CAAC;AAI9G;;;GAGG;AACH,eAAO,MAAM,WAAW,EAAE,gBAKzB,CAAC;AAIF;;;GAGG;AACH,eAAO,MAAM,gBAAgB,EAAE,gBAe9B,CAAC;AAIF;;;GAGG;AACH,eAAO,MAAM,eAAe,EAAE,gBA0D7B,CAAC;AA4BF;;;;;;GAMG;AACH,eAAO,MAAM,cAAc,EAAE,gBA+E5B,CAAC;AAkDF,6CAA6C;AAC7C,eAAO,MAAM,gBAAgB,EAAE,MAAM,CAAC,MAAM,EAAE,gBAAgB,CAK7D,CAAC"}