@glw907/cairn-cms 0.60.0 → 0.62.1

package/dist/delivery/CairnHead.svelte

@@ -5,17 +5,14 @@ tags, and one escaped JSON-LD script. The title renders from seo.title by defaul
 lets the site own the <title>, and a string overrides it. It carries no CSS, so it pulls in no
 admin styles.
 -->
-<script lang="ts">
-  import type { SeoMeta } from './seo.js';
-  import { jsonLdScript } from './json-ld.js';
-
-  let {
-    /** The plain-data head to render. */
-    seo,
-    /** Title override: a string replaces seo.title, false lets the site own <title>. */
-    title,
-  }: { seo: SeoMeta; title?: string | false } = $props();
-  const titleText = $derived(title === undefined ? seo.title : title);
+<script lang="ts">import { jsonLdScript } from "./json-ld.js";
+let {
+  /** The plain-data head to render. */
+  seo,
+  /** Title override: a string replaces seo.title, false lets the site own <title>. */
+  title
+} = $props();
+const titleText = $derived(title === void 0 ? seo.title : title);
 </script>
 
 <svelte:head>

package/dist/delivery/content-index.d.ts

@@ -6,8 +6,10 @@ export interface RawFile {
 }
 /** The cheap, plain-data view of one entry, for lists, feeds, and the sitemap. */
 export interface ContentSummary {
-    /** The descriptor id this entry belongs to, e.g. "posts". Lets a list or page branch per
-     *  concept without re-deriving it from a proxy like `entry.date`. */
+    /**
+     * The descriptor id this entry belongs to, e.g. "posts". Lets a list or page branch per
+     *  concept without re-deriving it from a proxy like `entry.date`.
+     */
     concept: string;
     id: string;
     slug: string;
@@ -15,22 +17,28 @@ export interface ContentSummary {
     title: string;
     date?: string;
     updated?: string;
-    /** The entry's tags, always present as an array and empty when the file declares none. This is the
+    /**
+     * The entry's tags, always present as an array and empty when the file declares none. This is the
      *  read-model normalization. It differs on purpose from the validated `frontmatter.tags`, which the
      *  validator omits when empty, so a published file carries no `tags: []` noise. Read `tags` here for
-     *  a list; read `frontmatter.tags` only when you need the validated, possibly-absent value. */
+     *  a list; read `frontmatter.tags` only when you need the validated, possibly-absent value.
+     */
     tags: string[];
     excerpt: string;
     wordCount: number;
     draft: boolean;
-    /** The frontmatter keys the descriptor nominated via `summaryFields`, read off the validated,
+    /**
+     * The frontmatter keys the descriptor nominated via `summaryFields`, read off the validated,
      *  normalized frontmatter. Held in a separate record so a nominated key cannot collide with a
-     *  typed summary field. Empty when the concept declares no `summaryFields`. */
+     *  typed summary field. Empty when the concept declares no `summaryFields`.
+     */
     fields: Record<string, unknown>;
 }
-/** The detail view: a summary plus the frontmatter and the body to render. The frontmatter
+/**
+ * The detail view: a summary plus the frontmatter and the body to render. The frontmatter
  *  type defaults to `Record<string, unknown>`; the typed-reads pass infers it from the concept
- *  fields. Generic now so that change does not break this signature. */
+ *  fields. Generic now so that change does not break this signature.
+ */
 export interface ContentEntry<F = Record<string, unknown>> extends ContentSummary {
     frontmatter: F;
     body: string;

package/dist/delivery/feeds.js

@@ -7,8 +7,10 @@ import { escapeXml } from './xml.js';
 function cdataSafe(value) {
     return value.replace(/]]>/g, ']]]]><![CDATA[>');
 }
-/** Parse a YYYY-MM-DD (or ISO) string as a UTC instant. Returns undefined for an absent or
- *  unparseable date, so a feed omits the date field rather than emit Invalid Date or throw. */
+/**
+ * Parse a YYYY-MM-DD (or ISO) string as a UTC instant. Returns undefined for an absent or
+ *  unparseable date, so a feed omits the date field rather than emit Invalid Date or throw.
+ */
 function parseFeedDate(date) {
     if (!date)
         return undefined;

package/dist/delivery/json-ld.d.ts

@@ -1 +1,4 @@
+/**
+ *
+ */
 export declare function jsonLdScript(data: Record<string, unknown>): string;

package/dist/delivery/json-ld.js

@@ -5,6 +5,9 @@
 // The line separator U+2028 and paragraph separator U+2029 get the same treatment: they are
 // legal inside a JSON string but unsafe in inline script text, where some parsers read them as
 // line terminators, so an author pasting one into frontmatter would corrupt the JSON-LD block.
+/**
+ *
+ */
 export function jsonLdScript(data) {
     const json = JSON.stringify(data)
         .replace(/</g, '\\u003c')

package/dist/delivery/manifest.d.ts

@@ -2,6 +2,8 @@ import type { Manifest } from '../content/manifest.js';
 import type { SiteConfig } from '../nav/site-config.js';
 import type { CairnAdapter } from '../content/types.js';
 import type { SiteGlobs } from './site-indexes.js';
-/** Build the whole-corpus manifest from a site's adapter, config, and per-concept globs. Drafts are
- *  included and flagged, so the admin picker and the guards see the full graph. */
+/**
+ * Build the whole-corpus manifest from a site's adapter, config, and per-concept globs. Drafts are
+ *  included and flagged, so the admin picker and the guards see the full graph.
+ */
 export declare function buildSiteManifest<A extends CairnAdapter>(adapter: A, config: SiteConfig, globs: SiteGlobs<A>): Manifest;

package/dist/delivery/manifest.js

@@ -6,8 +6,10 @@ import { siteDescriptors } from './site-descriptors.js';
 import { fromGlob } from './content-index.js';
 import { parseMarkdown } from '../content/frontmatter.js';
 import { emptyManifest, manifestEntryFromFile } from '../content/manifest.js';
-/** Build the whole-corpus manifest from a site's adapter, config, and per-concept globs. Drafts are
- *  included and flagged, so the admin picker and the guards see the full graph. */
+/**
+ * Build the whole-corpus manifest from a site's adapter, config, and per-concept globs. Drafts are
+ *  included and flagged, so the admin picker and the guards see the full graph.
+ */
 export function buildSiteManifest(adapter, config, globs) {
     const globRecord = globs;
     const manifest = emptyManifest();

package/dist/delivery/public-routes.d.ts

@@ -20,12 +20,16 @@ export interface PublicRoutesDeps {
         rss?: string;
         json?: string;
     };
-    /** A site-wide default OG image, used when an entry declares none. Resolved to absolute like the
-     *  canonical URL, so a relative path such as "/og/default.png" works. */
+    /**
+     * A site-wide default OG image, used when an entry declares none. Resolved to absolute like the
+     *  canonical URL, so a relative path such as "/og/default.png" works.
+     */
     defaultImage?: string;
-    /** Resolve a frontmatter `media:` hero reference to its delivery path. The site builds this from its
+    /**
+     * Resolve a frontmatter `media:` hero reference to its delivery path. The site builds this from its
      *  committed `media.json` exactly as it builds the body resolver (`makeMediaResolver`). When absent,
-     *  media is off and no `heroImage` projection is derived. */
+     *  media is off and no `heroImage` projection is derived.
+     */
     resolveMedia?: MediaResolve;
 }
 /** The archive and tag list data: summaries the template renders. */
@@ -52,11 +56,13 @@ export interface EntryData {
     seo: SeoMeta;
     newer?: ContentSummary;
     older?: ContentSummary;
-    /** The resolved hero image, a derived projection of the frontmatter `image` field. `url` is the
+    /**
+     * The resolved hero image, a derived projection of the frontmatter `image` field. `url` is the
      *  root-relative delivery path for an `<img>`, `absoluteUrl` the origin-anchored form for the
      *  og:image, and `alt`/`caption` carry from the stored object. The canonical token is untouched:
      *  `entry.frontmatter.image.src` stays the `media:` token. Undefined when no hero is set, media is
-     *  off, the reference does not parse, or the resolver finds no asset. */
+     *  off, the reference does not parse, or the resolver finds no asset.
+     */
     heroImage?: {
         url: string;
         absoluteUrl?: string;

package/dist/delivery/public-routes.js

@@ -11,7 +11,8 @@ import { parseMediaToken } from '../media/reference.js';
 /** Build the public loaders for a site's unified index. */
 export function createPublicRoutes(deps) {
     const { site, render, origin, siteName, description, feeds, defaultImage, resolveMedia } = deps;
-    /** Derive the hero projection from an entry's frontmatter, without mutating it (locked decision 5).
+    /**
+     * Derive the hero projection from an entry's frontmatter, without mutating it (locked decision 5).
      *  The hero lives at the conventional `image` key as the validated nested object `{ src, alt, caption }`;
      *  only an image field's validate arm produces an object-with-string-`src` shape, so detecting that
      *  structure is enough (a text field stores a string, a tags field an array). Returns undefined when
@@ -22,7 +23,8 @@ export function createPublicRoutes(deps) {
      *  and renders in the editor, but its delivery resolution is not wired here yet, since the field
      *  declarations are not reachable in the delivery read path. Honoring a renamed `seo`-flagged field
      *  (and a second image field per concept) at delivery is a carried follow-up; every consumer today
-     *  uses `image`. */
+     *  uses `image`.
+     */
     function deriveHeroImage(frontmatter) {
         if (!resolveMedia)
             return undefined;

package/dist/delivery/seo-fields.d.ts

@@ -1,21 +1,27 @@
-/** The head fields a concept can carry in frontmatter. Each is optional and omitted when absent.
+/**
+ * The head fields a concept can carry in frontmatter. Each is optional and omitted when absent.
  *  `author` is article-scoped downstream: the head builder emits `article:author` only for a dated
- *  entry, so an `author` on an undated Page is read here but not rendered. */
+ *  entry, so an `author` on an undated Page is read here but not rendered.
+ */
 export interface SeoFields {
     description?: string;
     image?: string;
     robots?: string;
     author?: string;
 }
-/** Read the known SEO head fields off an entry's normalized frontmatter. Keeps a present string,
+/**
+ * Read the known SEO head fields off an entry's normalized frontmatter. Keeps a present string,
  *  trimmed, and omits an absent, empty, or non-string value. Trimming the stored value keeps a stray
  *  `robots: "  noindex  "` from reaching the head tag with surrounding whitespace. The field must be
  *  declared in the concept's schema to survive the validate-once read; an undeclared key is not on the
- *  normalized frontmatter. */
+ *  normalized frontmatter.
+ */
 export declare function readSeoFields(frontmatter: Record<string, unknown>): SeoFields;
-/** Resolve an author-supplied image path to an absolute URL against the site origin. An absolute or
+/**
+ * Resolve an author-supplied image path to an absolute URL against the site origin. An absolute or
  *  protocol-relative URL passes through; a root-relative path anchors to the origin; a malformed
  *  string returns undefined rather than throwing at build. The sites use a bare-domain origin, so a
  *  bare path also anchors to the origin root; against a sub-path origin it would resolve relative to
- *  that path, per the WHATWG URL rules. */
+ *  that path, per the WHATWG URL rules.
+ */
 export declare function resolveImageUrl(image: string, origin: string): string | undefined;

package/dist/delivery/seo-fields.js

@@ -3,11 +3,13 @@
 // typed Record<string, unknown>; this reads the known head fields by name and coerces. Kept apart
 // from seo.ts (the head builder) so reading frontmatter and building the head stay distinct concerns.
 const KEYS = ['description', 'image', 'robots', 'author'];
-/** Read the known SEO head fields off an entry's normalized frontmatter. Keeps a present string,
+/**
+ * Read the known SEO head fields off an entry's normalized frontmatter. Keeps a present string,
  *  trimmed, and omits an absent, empty, or non-string value. Trimming the stored value keeps a stray
  *  `robots: "  noindex  "` from reaching the head tag with surrounding whitespace. The field must be
  *  declared in the concept's schema to survive the validate-once read; an undeclared key is not on the
- *  normalized frontmatter. */
+ *  normalized frontmatter.
+ */
 export function readSeoFields(frontmatter) {
     const fields = {};
     for (const key of KEYS) {
@@ -17,11 +19,13 @@ export function readSeoFields(frontmatter) {
     }
     return fields;
 }
-/** Resolve an author-supplied image path to an absolute URL against the site origin. An absolute or
+/**
+ * Resolve an author-supplied image path to an absolute URL against the site origin. An absolute or
  *  protocol-relative URL passes through; a root-relative path anchors to the origin; a malformed
  *  string returns undefined rather than throwing at build. The sites use a bare-domain origin, so a
  *  bare path also anchors to the origin root; against a sub-path origin it would resolve relative to
- *  that path, per the WHATWG URL rules. */
+ *  that path, per the WHATWG URL rules.
+ */
 export function resolveImageUrl(image, origin) {
     try {
         const url = new URL(image, origin);

package/dist/delivery/site-indexes.d.ts

@@ -7,8 +7,10 @@ import type { SiteResolver } from './site-resolver.js';
 export type SiteGlobs<A extends CairnAdapter> = {
     [K in keyof A['content']]?: Record<string, string>;
 };
-/** The typed per-concept indexes plus the cross-concept `site` resolver. A concept literally named
- *  `site` is not supported, since `site` is the reserved resolver key. */
+/**
+ * The typed per-concept indexes plus the cross-concept `site` resolver. A concept literally named
+ *  `site` is not supported, since `site` is the reserved resolver key.
+ */
 export type SiteIndexes<A extends CairnAdapter> = {
     [K in keyof A['content']]: ContentIndex<NonNullable<A['content'][K]> extends ConceptConfig<infer S> ? Infer<S> : Record<string, unknown>>;
 } & {

package/dist/delivery/site-resolver.d.ts

@@ -32,6 +32,8 @@ export interface SiteResolver {
 export declare function createSiteResolver(concepts: ConceptIndex[], opts?: {
     validate?: boolean;
 }): SiteResolver;
-/** A resolver backed by the site resolver, for the build. A miss throws, so a dangling cairn: token
- *  fails the prerender (the build backstop). The preview uses manifestLinkResolver, which marks. */
+/**
+ * A resolver backed by the site resolver, for the build. A miss throws, so a dangling cairn: token
+ *  fails the prerender (the build backstop). The preview uses manifestLinkResolver, which marks.
+ */
 export declare function buildLinkResolver(site: SiteResolver): LinkResolve;

package/dist/delivery/site-resolver.js

@@ -60,8 +60,10 @@ export function createSiteResolver(concepts, opts = {}) {
         },
     };
 }
-/** A resolver backed by the site resolver, for the build. A miss throws, so a dangling cairn: token
- *  fails the prerender (the build backstop). The preview uses manifestLinkResolver, which marks. */
+/**
+ * A resolver backed by the site resolver, for the build. A miss throws, so a dangling cairn: token
+ *  fails the prerender (the build backstop). The preview uses manifestLinkResolver, which marks.
+ */
 export function buildLinkResolver(site) {
     return (ref) => {
         const url = site.concept(ref.concept)?.byId(ref.id)?.permalink;

package/dist/doctor/cloudflare-api.d.ts

@@ -3,5 +3,11 @@ export declare const CF_API = "https://api.cloudflare.com/client/v4";
 export declare const NO_TOKEN: CheckResult;
 export declare const NO_FROM: CheckResult;
 export declare const NO_ACCOUNT: CheckResult;
+/**
+ *
+ */
 export declare function cfGet(ctx: DoctorContext, path: string): Promise<Response>;
+/**
+ *
+ */
 export declare function cfPost(ctx: DoctorContext, path: string, body: unknown): Promise<Response>;

package/dist/doctor/cloudflare-api.js

@@ -7,11 +7,17 @@ export const CF_API = 'https://api.cloudflare.com/client/v4';
 export const NO_TOKEN = skip('set CLOUDFLARE_API_TOKEN to run this check');
 export const NO_FROM = skip('pass --from, set CAIRN_FROM, or configure the cairnManifest plugin so the doctor can read the adapter');
 export const NO_ACCOUNT = skip('set CLOUDFLARE_API_TOKEN, and CLOUDFLARE_ACCOUNT_ID or a wrangler account_id, to run this check');
+/**
+ *
+ */
 export function cfGet(ctx, path) {
     return ctx.fetch(`${CF_API}${path}`, {
         headers: { authorization: `Bearer ${ctx.cfToken}` },
     });
 }
+/**
+ *
+ */
 export function cfPost(ctx, path, body) {
     return ctx.fetch(`${CF_API}${path}`, {
         method: 'POST',

package/dist/doctor/index.d.ts

@@ -5,8 +5,10 @@ export interface DoctorArgs {
     from?: string;
     repo?: string;
     sendTest?: string;
-    /** The live admin probe: a URL when --probe carried one, true for the bare flag (probe the
-     *  PUBLIC_ORIGIN input), absent when the flag never appeared (the probe does not run). */
+    /**
+     * The live admin probe: a URL when --probe carried one, true for the bare flag (probe the
+     *  PUBLIC_ORIGIN input), absent when the flag never appeared (the probe does not run).
+     */
     probe?: string | true;
 }
 /** Parse the bin's argv (long flags only). Throws with a usage line on anything unexpected. */
@@ -18,12 +20,16 @@ export declare function parseArgs(argv: string[]): DoctorArgs;
  * readFile stay with the bin, which injects the real ones.
  */
 export declare function contextFromEnv(env: Record<string, string | undefined>, args: DoctorArgs, cwd: string): Omit<DoctorContext, 'fetch' | 'readFile'>;
-/** The lazy derivation sources the bin wires up: the adapter read through the consumer's own
+/**
+ * The lazy derivation sources the bin wires up: the adapter read through the consumer's own
  *  Vite resolution and the wrangler config's account_id. Each runs only when an input it feeds
- *  is still missing, so a doctor run with full flags touches neither. */
+ *  is still missing, so a doctor run with full flags touches neither.
+ */
 export interface DerivationSources {
-    /** Returns { owner, repo, from, mediaBucketBinding } off the adapter, or null when nothing is
-     *  derivable. */
+    /**
+     * Returns `{ owner, repo, from, mediaBucketBinding }` off the adapter, or null when nothing is
+     *  derivable.
+     */
     adapterFacts: () => Promise<{
         owner?: string;
         repo?: string;

package/dist/doctor/report.d.ts

@@ -1,4 +1,7 @@
 import type { CheckResult, DoctorCheck } from './types.js';
+/**
+ *
+ */
 export declare function formatReport(results: {
     check: DoctorCheck;
     result: CheckResult;

package/dist/doctor/report.js

@@ -8,6 +8,9 @@ const TAG = {
     fail: 'FAIL',
     skip: 'SKIP',
 };
+/**
+ *
+ */
 export function formatReport(results) {
     const lines = results.map(({ check, result }) => `${TAG[result.status]}  ${check.title}: ${result.detail}`);
     const failures = results.filter(({ result }) => result.status === 'fail');

package/dist/doctor/run.d.ts

@@ -1,4 +1,7 @@
 import type { CheckResult, DoctorCheck, DoctorContext } from './types.js';
+/**
+ *
+ */
 export declare function runDoctor(checks: DoctorCheck[], ctx: DoctorContext): Promise<{
     results: {
         check: DoctorCheck;

package/dist/doctor/run.js

@@ -1,6 +1,9 @@
 // The doctor's runner: every check executes, every result lands in the table. A throwing check
 // records a fail and the run continues, so one broken probe never hides the rest of the picture.
 import { fail } from './types.js';
+/**
+ *
+ */
 export async function runDoctor(checks, ctx) {
     const results = [];
     let failed = 0;

package/dist/doctor/types.d.ts

@@ -6,7 +6,13 @@ export interface CheckResult {
 }
 /** Result constructors, so a check body reads one outcome per line instead of object literals. */
 export declare function pass(detail: string): CheckResult;
+/**
+ *
+ */
 export declare function fail(detail: string): CheckResult;
+/**
+ *
+ */
 export declare function skip(detail: string): CheckResult;
 export interface DoctorCheck {
     /** Stable id, e.g. 'email.sender-onboarded'. */
@@ -30,8 +36,10 @@ export interface DoctorContext {
     cfAccountId?: string;
     /** PUBLIC_ORIGIN, the env fallback when the wrangler vars carry none. */
     publicOrigin?: string;
-    /** The adapter's media bucket binding (cairn.assets.bucketBinding), derived off the adapter.
-     *  Undefined when the site declares no media assets; the media-bucket check skips in that case. */
+    /**
+     * The adapter's media bucket binding (cairn.assets.bucketBinding), derived off the adapter.
+     *  Undefined when the site declares no media assets; the media-bucket check skips in that case.
+     */
     mediaBucketBinding?: string;
     /** GITHUB_APP_ID / GITHUB_APP_INSTALLATION_ID / GITHUB_APP_PRIVATE_KEY_B64. */
     github?: {

package/dist/doctor/types.js

@@ -2,9 +2,15 @@
 export function pass(detail) {
     return { status: 'pass', detail };
 }
+/**
+ *
+ */
 export function fail(detail) {
     return { status: 'fail', detail };
 }
+/**
+ *
+ */
 export function skip(detail) {
     return { status: 'skip', detail };
 }

package/dist/doctor/wrangler-config.d.ts

@@ -12,8 +12,13 @@ export interface WranglerFacts {
     publicOrigin?: string;
     /** The top-level account_id, when declared; a fallback for CLOUDFLARE_ACCOUNT_ID. */
     accountId?: string;
-    /** The declared r2_buckets binding names; the conditional media check matches the adapter's
-     *  bucketBinding against this. Not part of the hard config.bindings check (decision 9). */
+    /**
+     * The declared r2_buckets binding names; the conditional media check matches the adapter's
+     *  bucketBinding against this. Not part of the hard config.bindings check (decision 9).
+     */
     r2Buckets: string[];
 }
+/**
+ *
+ */
 export declare function readWranglerConfig(readFile: DoctorContext['readFile']): Promise<WranglerFacts | null>;

package/dist/doctor/wrangler-config.js

@@ -1,3 +1,6 @@
+/**
+ *
+ */
 export async function readWranglerConfig(readFile) {
     const jsonc = await readFile('wrangler.jsonc');
     if (jsonc !== null)

package/dist/email.d.ts

@@ -15,9 +15,11 @@ export interface AuthBranding {
     from: string;
     replyTo?: string;
 }
-/** The injected send. Production uses `cloudflareSend`; tests pass a sink. A thrown error's
+/**
+ * The injected send. Production uses `cloudflareSend`; tests pass a sink. A thrown error's
  *  text reaches the structured log (scrubbed and truncated), so a custom sender must not embed
- *  the message body or the magic link in what it throws. */
+ *  the message body or the magic link in what it throws.
+ */
 export type SendMagicLink = (env: AuthEnv, message: MagicLinkMessage) => Promise<void>;
 /** Build the confirmation email. The link is the only action; the copy stays plain. */
 export declare function buildMagicLinkMessage(input: {

package/dist/env.d.ts

@@ -5,7 +5,6 @@ import type { DeliveryBucket } from './media/delivery-bucket.js';
  *
  * The origin is always config-derived, never read from a request header, so a
  * forged Host header cannot redirect a magic link (spec 7.1, risk H3).
- *
  * @throws CairnError (`config.public-origin-invalid`) when `PUBLIC_ORIGIN` is unset or
  * empty, fails to parse as a URL, or uses http on a non-local host.
  */
@@ -17,7 +16,6 @@ export declare function requireOrigin(env: {
  *
  * The handlers read D1 off `event.platform.env`; without this a misconfigured binding
  * surfaces as a raw `TypeError` deep in a store call. This gives the failure a name.
- *
  * @throws CairnError (`config.bindings-missing`) when `AUTH_DB` is missing.
  */
 export declare function requireDb(env: {
@@ -37,7 +35,6 @@ export declare function requireDb(env: {
  * which is truthy but carries no callable `get`. Without that check the cast would succeed and the
  * first `bucket.get(...)` would throw an uncaught 500 rather than the drained 503 a missing binding
  * earns.
- *
  * @throws CairnError (`config.bindings-missing`) when the named binding is absent or not an R2 bucket.
  */
 export declare function requireBucket(env: Record<string, unknown>, bindingName: string): DeliveryBucket;

package/dist/env.js

@@ -4,7 +4,6 @@ import { CairnError } from './diagnostics/index.js';
  *
  * The origin is always config-derived, never read from a request header, so a
  * forged Host header cannot redirect a magic link (spec 7.1, risk H3).
- *
  * @throws CairnError (`config.public-origin-invalid`) when `PUBLIC_ORIGIN` is unset or
  * empty, fails to parse as a URL, or uses http on a non-local host.
  */
@@ -38,7 +37,6 @@ export function requireOrigin(env) {
  *
  * The handlers read D1 off `event.platform.env`; without this a misconfigured binding
  * surfaces as a raw `TypeError` deep in a store call. This gives the failure a name.
- *
  * @throws CairnError (`config.bindings-missing`) when `AUTH_DB` is missing.
  */
 export function requireDb(env) {
@@ -61,7 +59,6 @@ export function requireDb(env) {
  * which is truthy but carries no callable `get`. Without that check the cast would succeed and the
  * first `bucket.get(...)` would throw an uncaught 500 rather than the drained 503 a missing binding
  * earns.
- *
  * @throws CairnError (`config.bindings-missing`) when the named binding is absent or not an R2 bucket.
  */
 export function requireBucket(env, bindingName) {

package/dist/github/branches.d.ts

@@ -5,7 +5,9 @@ export declare function branchHeadSha(repo: RepoRef, branch: string, token: stri
 export declare function createBranch(repo: RepoRef, branch: string, fromSha: string, token: string): Promise<void>;
 /** Delete `branch`. A 404 (already gone) is success: the desired state holds. */
 export declare function deleteBranch(repo: RepoRef, branch: string, token: string): Promise<void>;
-/** Branch names under `prefix`, sorted. The matching-refs API paginates at 30 by default, so a
+/**
+ * Branch names under `prefix`, sorted. The matching-refs API paginates at 30 by default, so a
  *  site with 31+ pending entries would silently truncate; request the 100-per-page maximum and
- *  follow the Link rel="next" chain until exhausted. */
+ *  follow the Link rel="next" chain until exhausted.
+ */
 export declare function listBranches(repo: RepoRef, prefix: string, token: string): Promise<string[]>;

package/dist/github/branches.js

@@ -57,9 +57,11 @@ function nextPageUrl(link) {
     }
     return null;
 }
-/** Branch names under `prefix`, sorted. The matching-refs API paginates at 30 by default, so a
+/**
+ * Branch names under `prefix`, sorted. The matching-refs API paginates at 30 by default, so a
  *  site with 31+ pending entries would silently truncate; request the 100-per-page maximum and
- *  follow the Link rel="next" chain until exhausted. */
+ *  follow the Link rel="next" chain until exhausted.
+ */
 export async function listBranches(repo, prefix, token) {
     const names = [];
     let url = `${gitUrl(repo, `matching-refs/heads/${prefix}`)}?per_page=100`;

package/dist/github/signing.d.ts

@@ -7,7 +7,7 @@ export declare function installationToken(creds: AppCredentials): Promise<string
  * Build an installation-token cache. A module-global instance memoizes the minted token per
  * installation for most of its one-hour life, so a warm Worker isolate reuses it across requests
  * instead of re-signing and re-calling GitHub on every list and commit. A cold isolate re-mints,
- * which is always safe. This mirrors the default of @octokit/auth-app, which caches installation
+ * which is always safe. This mirrors the default of `@octokit/auth-app`, which caches installation
  * tokens in memory and returns them until expiry. The TTL stays under GitHub's documented one-hour
  * lifetime, so a fixed margin avoids parsing the API expiry. The cache holds the in-flight
  * promise, not the resolved token, so a cold isolate's parallel loads coalesce into one mint;

package/dist/github/signing.js

@@ -10,7 +10,7 @@ function bytesToB64url(bytes) {
 function buf(bytes) {
     return bytes.buffer.slice(bytes.byteOffset, bytes.byteOffset + bytes.byteLength);
 }
-/** DER length octets for a value of `n` bytes (short form < 128, else long form). */
+/** DER length octets for a value of `n` bytes (short form `< 128`, else long form). */
 function derLength(n) {
     if (n < 0x80)
         return [n];
@@ -63,7 +63,7 @@ export async function installationToken(creds) {
  * Build an installation-token cache. A module-global instance memoizes the minted token per
  * installation for most of its one-hour life, so a warm Worker isolate reuses it across requests
  * instead of re-signing and re-calling GitHub on every list and commit. A cold isolate re-mints,
- * which is always safe. This mirrors the default of @octokit/auth-app, which caches installation
+ * which is always safe. This mirrors the default of `@octokit/auth-app`, which caches installation
  * tokens in memory and returns them until expiry. The TTL stays under GitHub's documented one-hour
  * lifetime, so a fixed margin avoids parsing the API expiry. The cache holds the in-flight
  * promise, not the resolved token, so a cold isolate's parallel loads coalesce into one mint;

package/dist/log/events.d.ts

@@ -1 +1 @@
-export type CairnLogEvent = 'auth.link.requested' | 'auth.link.send_failed' | 'auth.token.minted' | 'auth.token.confirmed' | 'auth.session.created' | 'auth.session.destroyed' | 'commit.succeeded' | 'commit.failed' | 'config.invalid' | 'entry.published' | 'entry.discarded' | 'publish.failed' | 'github.unreachable' | 'guard.rejected' | 'media.uploaded' | 'media.upload_failed' | 'media.delivery_failed' | 'media.orphan_reconcile' | 'media.resolve_missing' | 'media.deleted' | 'media.delete_blocked' | 'media.bulk_deleted' | 'media.orphans_purged' | 'media.replaced' | 'media.replace_blocked' | 'media.alt_propagated' | 'dictionary.added' | 'dictionary.add_conflict' | 'tidy.done' | 'tidy.error' | 'tidy.refused' | 'tidy.empty';
+export type CairnLogEvent = 'auth.link.requested' | 'auth.link.send_failed' | 'auth.token.minted' | 'auth.token.confirmed' | 'auth.session.created' | 'auth.session.destroyed' | 'commit.succeeded' | 'commit.failed' | 'config.invalid' | 'entry.published' | 'entry.discarded' | 'publish.failed' | 'publish.address_collision' | 'github.unreachable' | 'guard.rejected' | 'media.uploaded' | 'media.upload_failed' | 'media.delivery_failed' | 'media.orphan_reconcile' | 'media.resolve_missing' | 'media.deleted' | 'media.delete_blocked' | 'media.bulk_deleted' | 'media.orphans_purged' | 'media.replaced' | 'media.replace_blocked' | 'media.alt_propagated' | 'dictionary.added' | 'dictionary.add_conflict' | 'tidy.done' | 'tidy.error' | 'tidy.refused' | 'tidy.empty';