@interop/storage-core 0.1.0

package/LICENSE.md

@@ -0,0 +1,20 @@
+MIT License
+
+Copyright (c) 2026 Interop Alliance
+
+Permission is hereby granted, free of charge, to any person obtaining a copy of
+this software and associated documentation files (the "Software"), to deal in
+the Software without restriction, including without limitation the rights to
+use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of
+the Software, and to permit persons to whom the Software is furnished to do so,
+subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS
+FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR
+COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER
+IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
+CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

package/README.md

@@ -0,0 +1,94 @@
+# Storage Core _(@interop/storage-core)_
+
+[![Node.js CI](https://github.com/interop-alliance/storage-core/workflows/CI/badge.svg)](https://github.com/interop-alliance/storage-core/actions?query=workflow%3A%22CI%22)
+[![NPM Version](https://img.shields.io/npm/v/@interop/storage-core.svg)](https://npm.im/@interop/storage-core)
+
+> Shared wire-model types and error vocabulary for Wallet Attached Storage (WAS)
+> -- the single source of truth imported by both the WAS server and client.
+
+## Table of Contents
+
+- [Background](#background)
+- [Security](#security)
+- [Install](#install)
+- [Usage](#usage)
+- [Contribute](#contribute)
+- [License](#license)
+
+## Background
+
+This package holds the **wire shapes** (the JSON a WAS server emits and a client
+parses) and the **error vocabulary** (problem-type URIs plus their HTTP-status
+mapping) shared between
+[`was-teaching-server`](https://github.com/interop-alliance/was-teaching-server)
+and [`was-client`](https://github.com/interop-alliance/was-client). Extracting
+them here keeps the two repos from silently drifting apart.
+
+It is named `storage-core` rather than `was-core` because the WAS and encrypted
+data vault (EDV) data models are being aligned, and the shared EDV types will
+live here too. The source is organized by domain to leave room for that:
+
+- `src/common.ts` -- cross-spec primitives: the capability-action vocabulary,
+  the RFC9457 problem-type registry + `application/problem+json` body shapes +
+  canonical code-to-status map, the storage-limit shape, the RFC9264 linkset
+  shapes, and the reserved path-segment registry.
+- `src/was.ts` -- the WAS data model: Space / Collection / Resource descriptions
+  and summaries, listing shapes, resource metadata, backend descriptor / usage,
+  the quota report, and the policy document.
+- `src/edv.ts` -- (later) the EDV data model.
+
+The package is **pure types plus a few `const` values** (`ProblemTypes`,
+`ProblemStatusCodes`, the reserved-segment sets); it has no platform APIs and no
+runtime dependency surface beyond a type-only reference to
+`@interop/data-integrity-core` (`IDID`), which it uses but does not re-export.
+
+## Install
+
+- Node.js 22+ is recommended.
+
+### PNPM
+
+To install via PNPM:
+
+```
+pnpm install @interop/storage-core
+```
+
+### Development
+
+To install locally (for development):
+
+```
+git clone https://github.com/interop-alliance/storage-core.git
+cd storage-core
+pnpm install
+```
+
+## Usage
+
+```ts
+import {
+  ProblemTypes,
+  ProblemStatusCodes,
+  type SpaceDescription,
+  type SpaceQuotaReport
+} from '@interop/storage-core'
+
+const status = ProblemStatusCodes[ProblemTypes.QUOTA_EXCEEDED] // 507
+```
+
+Consumers that need `IDID` / `IZcap` / `ISigner` import them directly from
+`@interop/data-integrity-core`; this package references but does not re-export
+them.
+
+## Contribute
+
+PRs accepted. See [CONTRIBUTING.md](CONTRIBUTING.md) for editor setup (Prettier,
+ESLint, and EditorConfig) and how it maps to CI.
+
+If editing the Readme, please conform to the
+[standard-readme](https://github.com/RichardLitt/standard-readme) specification.
+
+## License
+
+[MIT License](LICENSE.md) © 2026 Interop Alliance.

package/dist/common.d.ts

@@ -0,0 +1,187 @@
+/*!
+ * Copyright (c) 2026 Interop Alliance. All rights reserved.
+ */
+/**
+ * Cross-spec primitives shared by the WAS (and, later, EDV) data models: the
+ * capability-action vocabulary, the RFC9457 problem-type registry plus its
+ * `application/problem+json` body shape and canonical code -> HTTP-status map,
+ * the storage-limit shape, the RFC9264 linkset shapes, and the reserved
+ * path-segment registry.
+ *
+ * This module is pure types plus a handful of `const` values; it has no runtime
+ * dependencies and is fully isomorphic.
+ */
+/**
+ * A capability action -- an HTTP verb in its canonical uppercase form, as it
+ * appears in the signed zcap. WAS servers match actions case-sensitively.
+ */
+export type Action = 'GET' | 'PUT' | 'POST' | 'DELETE';
+/**
+ * The action input accepted by delegation helpers: canonical uppercase or
+ * lowercase. Lowercase is normalized to uppercase before the zcap is signed, so
+ * a grant of `'get'` still validates on the server (which expects `'GET'`).
+ */
+export type ActionInput = Action | Lowercase<Action>;
+/**
+ * Catalog of `type` URIs emitted in `application/problem+json` error responses.
+ *
+ * Per [[RFC9457]], a problem `type` identifies the *kind* of problem and is
+ * reused across operations; the per-occurrence specifics live in the `errors`
+ * array (`detail` / `pointer`) and the human summary in `title`. So these URIs
+ * are keyed by problem-kind, not by operation -- a single `type` such as
+ * `INVALID_ID` is emitted by Create / Update / Read across Spaces, Collections,
+ * and Resources alike.
+ *
+ * **Privacy-merged kinds.** Under the spec's maximum-privacy principle, an
+ * unauthorized caller MUST NOT be able to tell a missing resource from one they
+ * simply cannot access. `NOT_FOUND` therefore deliberately covers both the
+ * "resource absent" and "invalid authorization" conditions (Space / Collection
+ * / Resource not found, and failed capability invocation) -- callers cannot use
+ * `type` to probe existence.
+ *
+ * Each URI is a fragment anchor into the WAS specification's Error Type
+ * Registry appendix.
+ */
+export declare const ProblemTypes: {
+    /**
+     * Privacy-merged -- the resource does not exist, OR the caller is not
+     * authorized to access it. The two conditions are intentionally
+     * indistinguishable; do not split this kind (see file header).
+     */
+    readonly NOT_FOUND: "https://wallet.storage/spec#not-found";
+    /** A Space / Collection / Resource id is missing or not URL-safe. */
+    readonly INVALID_ID: "https://wallet.storage/spec#invalid-id";
+    /**
+     * A client-supplied `id` in a `POST` create operation already exists.
+     * (Create-or-replace at a chosen id is the idempotent `PUT` path, which does
+     * not conflict.) Typical status 409.
+     */
+    readonly ID_CONFLICT: "https://wallet.storage/spec#id-conflict";
+    /**
+     * A client-supplied `id` collides with a segment from the spec's Reserved
+     * Path Segment Registry (e.g. a Collection named `export` would shadow
+     * `/space/{id}/export`). Typical status 409.
+     */
+    readonly RESERVED_ID: "https://wallet.storage/spec#reserved-id";
+    /**
+     * A Collection create/update names a `backend` id that is not in the Space's
+     * backends-available list. Typical status 409.
+     */
+    readonly UNSUPPORTED_BACKEND: "https://wallet.storage/spec#unsupported-backend";
+    /** The request body is missing or invalid (missing required fields, etc.). */
+    readonly INVALID_REQUEST_BODY: "https://wallet.storage/spec#invalid-request-body";
+    /** A required `Content-Type` header is missing. */
+    readonly MISSING_CONTENT_TYPE: "https://wallet.storage/spec#missing-content-type";
+    /** Required `Authorization` / `Capability-Invocation` headers are missing. */
+    readonly MISSING_AUTHORIZATION: "https://wallet.storage/spec#missing-authorization";
+    /**
+     * The `Authorization`, `Capability-Invocation`, or `Digest` header is
+     * malformed, unparseable, or failed verification.
+     */
+    readonly INVALID_AUTHORIZATION_HEADER: "https://wallet.storage/spec#invalid-authorization-header";
+    /**
+     * The DID that signed the capability invocation does not match the
+     * `controller` supplied in a Create Space request body.
+     */
+    readonly CONTROLLER_MISMATCH: "https://wallet.storage/spec#controller-mismatch";
+    /** An uploaded archive is not a valid WAS space export. */
+    readonly INVALID_IMPORT: "https://wallet.storage/spec#invalid-import";
+    /** An underlying storage operation failed (server-side fault). */
+    readonly STORAGE_ERROR: "https://wallet.storage/spec#storage-error";
+    /**
+     * A write was rejected because the target backend's per-Space storage quota
+     * is exhausted (see the spec "Quotas" section). Typical status 507.
+     */
+    readonly QUOTA_EXCEEDED: "https://wallet.storage/spec#quota-exceeded";
+    /**
+     * An upload exceeds the target backend's `maxUploadBytes` constraint (see
+     * the spec "Quotas" section). Unlike `quota-exceeded`, this rejection is
+     * per-request, not cumulative: smaller uploads may still succeed. Typical
+     * status 413.
+     */
+    readonly PAYLOAD_TOO_LARGE: "https://wallet.storage/spec#payload-too-large";
+    /**
+     * The server does not implement this OPTIONAL operation (e.g. updating
+     * Resource Metadata). Typical status 501.
+     */
+    readonly UNSUPPORTED_OPERATION: "https://wallet.storage/spec#unsupported-operation";
+    /** Fallback for an unexpected server-side fault with no more specific kind. */
+    readonly INTERNAL_ERROR: "https://wallet.storage/spec#internal-error";
+};
+/** One of the problem-type URIs in {@link ProblemTypes}. */
+export type ProblemType = (typeof ProblemTypes)[keyof typeof ProblemTypes];
+/**
+ * A single entry in the `errors` array of an `application/problem+json`
+ * response body.
+ *
+ * - `detail` -- a specific explanation of this occurrence.
+ * - `pointer` -- an RFC6901 JSON Pointer (in `#/field` form) identifying the
+ *   offending part of the request body.
+ */
+export interface Problem {
+    detail: string;
+    pointer?: string;
+}
+/**
+ * The `application/problem+json` response body a WAS server emits (RFC9457).
+ * `type` is one of {@link ProblemTypes}; `title` is a short human-readable
+ * summary; `errors` carries the per-occurrence {@link Problem} entries.
+ *
+ * Note: the wire field is `errors`. A server's internal error object may carry
+ * these under a different name (the reference server's `ProblemError` uses
+ * `problems`); the mapping to `errors` happens at serialization time.
+ */
+export interface ProblemDocument {
+    type: ProblemType | string;
+    title: string;
+    errors: Problem[];
+}
+/**
+ * The canonical HTTP status code for each problem kind. Both the server (when
+ * throwing) and the client (when interpreting a response) treat these as the
+ * default status associated with a `type`; a server MAY still override per
+ * occurrence, but the reference implementation does not.
+ */
+export declare const ProblemStatusCodes: Record<ProblemType, number>;
+/**
+ * The storage limit for a backend (spec "Quotas"). When `isUnlimited` is
+ * `true`, `capacityBytes` MAY be omitted (the reference filesystem backend
+ * omits it unless a capacity was configured).
+ */
+export interface StorageLimit {
+    capacityBytes?: number;
+    isUnlimited: boolean;
+}
+/**
+ * One member of a {@link LinkSet} (RFC9264): an `anchor` plus relation keys
+ * (e.g. `https://wallet.storage/spec#policy`) mapping to arrays of link
+ * targets.
+ */
+export interface LinkSetEntry {
+    anchor?: string;
+    [relation: string]: unknown;
+}
+/**
+ * An RFC9264 `application/linkset+json` document, the return shape of the
+ * `linkset` reserved resource on a Space or Collection.
+ */
+export interface LinkSet {
+    linkset: LinkSetEntry[];
+}
+/**
+ * Reserved Collection-id path segments (the spec's Reserved Path Segment
+ * Registry, plus the reference server's non-spec `import` endpoint). A
+ * client-chosen Collection id matching one of these would shadow the reserved
+ * route at that position (e.g. a Collection named `export` would shadow
+ * `/space/{id}/export`), so it MUST be rejected with 409 `reserved-id`.
+ */
+export declare const RESERVED_COLLECTION_IDS: Set<string>;
+/**
+ * Reserved Resource-id path segments (the spec's Reserved Path Segment
+ * Registry). A client-chosen Resource id matching one of these would shadow the
+ * reserved route at that position, so it MUST be rejected with 409
+ * `reserved-id`. Space ids have no reserved siblings, so no set exists for the
+ * `space` kind.
+ */
+export declare const RESERVED_RESOURCE_IDS: Set<string>;
+//# sourceMappingURL=common.d.ts.map

package/dist/common.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"common.d.ts","sourceRoot":"","sources":["../src/common.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH;;;;;;;;;GASG;AAEH;;;GAGG;AACH,MAAM,MAAM,MAAM,GAAG,KAAK,GAAG,KAAK,GAAG,MAAM,GAAG,QAAQ,CAAA;AAEtD;;;;GAIG;AACH,MAAM,MAAM,WAAW,GAAG,MAAM,GAAG,SAAS,CAAC,MAAM,CAAC,CAAA;AAIpD;;;;;;;;;;;;;;;;;;;GAmBG;AACH,eAAO,MAAM,YAAY;IACvB;;;;OAIG;;IAGH,qEAAqE;;IAGrE;;;;OAIG;;IAGH;;;;OAIG;;IAGH;;;OAGG;;IAGH,8EAA8E;;IAG9E,mDAAmD;;IAGnD,8EAA8E;;IAG9E;;;OAGG;;IAGH;;;OAGG;;IAGH,2DAA2D;;IAG3D,kEAAkE;;IAGlE;;;OAGG;;IAGH;;;;;OAKG;;IAGH;;;OAGG;;IAGH,+EAA+E;;CAEvE,CAAA;AAEV,4DAA4D;AAC5D,MAAM,MAAM,WAAW,GAAG,CAAC,OAAO,YAAY,CAAC,CAAC,MAAM,OAAO,YAAY,CAAC,CAAA;AAE1E;;;;;;;GAOG;AACH,MAAM,WAAW,OAAO;IACtB,MAAM,EAAE,MAAM,CAAA;IACd,OAAO,CAAC,EAAE,MAAM,CAAA;CACjB;AAED;;;;;;;;GAQG;AACH,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,WAAW,GAAG,MAAM,CAAA;IAC1B,KAAK,EAAE,MAAM,CAAA;IACb,MAAM,EAAE,OAAO,EAAE,CAAA;CAClB;AAED;;;;;GAKG;AACH,eAAO,MAAM,kBAAkB,EAAE,MAAM,CAAC,WAAW,EAAE,MAAM,CAiB1D,CAAA;AAED;;;;GAIG;AACH,MAAM,WAAW,YAAY;IAC3B,aAAa,CAAC,EAAE,MAAM,CAAA;IACtB,WAAW,EAAE,OAAO,CAAA;CACrB;AAED;;;;GAIG;AACH,MAAM,WAAW,YAAY;IAC3B,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAA;CAC5B;AAED;;;GAGG;AACH,MAAM,WAAW,OAAO;IACtB,OAAO,EAAE,YAAY,EAAE,CAAA;CACxB;AAED;;;;;;GAMG;AACH,eAAO,MAAM,uBAAuB,aASlC,CAAA;AAEF;;;;;;GAMG;AACH,eAAO,MAAM,qBAAqB,aAMhC,CAAA"}

package/dist/common.js

@@ -0,0 +1,156 @@
+/*!
+ * Copyright (c) 2026 Interop Alliance. All rights reserved.
+ */
+/**
+ * Cross-spec primitives shared by the WAS (and, later, EDV) data models: the
+ * capability-action vocabulary, the RFC9457 problem-type registry plus its
+ * `application/problem+json` body shape and canonical code -> HTTP-status map,
+ * the storage-limit shape, the RFC9264 linkset shapes, and the reserved
+ * path-segment registry.
+ *
+ * This module is pure types plus a handful of `const` values; it has no runtime
+ * dependencies and is fully isomorphic.
+ */
+const SPEC_URL = 'https://wallet.storage/spec';
+/**
+ * Catalog of `type` URIs emitted in `application/problem+json` error responses.
+ *
+ * Per [[RFC9457]], a problem `type` identifies the *kind* of problem and is
+ * reused across operations; the per-occurrence specifics live in the `errors`
+ * array (`detail` / `pointer`) and the human summary in `title`. So these URIs
+ * are keyed by problem-kind, not by operation -- a single `type` such as
+ * `INVALID_ID` is emitted by Create / Update / Read across Spaces, Collections,
+ * and Resources alike.
+ *
+ * **Privacy-merged kinds.** Under the spec's maximum-privacy principle, an
+ * unauthorized caller MUST NOT be able to tell a missing resource from one they
+ * simply cannot access. `NOT_FOUND` therefore deliberately covers both the
+ * "resource absent" and "invalid authorization" conditions (Space / Collection
+ * / Resource not found, and failed capability invocation) -- callers cannot use
+ * `type` to probe existence.
+ *
+ * Each URI is a fragment anchor into the WAS specification's Error Type
+ * Registry appendix.
+ */
+export const ProblemTypes = {
+    /**
+     * Privacy-merged -- the resource does not exist, OR the caller is not
+     * authorized to access it. The two conditions are intentionally
+     * indistinguishable; do not split this kind (see file header).
+     */
+    NOT_FOUND: `${SPEC_URL}#not-found`,
+    /** A Space / Collection / Resource id is missing or not URL-safe. */
+    INVALID_ID: `${SPEC_URL}#invalid-id`,
+    /**
+     * A client-supplied `id` in a `POST` create operation already exists.
+     * (Create-or-replace at a chosen id is the idempotent `PUT` path, which does
+     * not conflict.) Typical status 409.
+     */
+    ID_CONFLICT: `${SPEC_URL}#id-conflict`,
+    /**
+     * A client-supplied `id` collides with a segment from the spec's Reserved
+     * Path Segment Registry (e.g. a Collection named `export` would shadow
+     * `/space/{id}/export`). Typical status 409.
+     */
+    RESERVED_ID: `${SPEC_URL}#reserved-id`,
+    /**
+     * A Collection create/update names a `backend` id that is not in the Space's
+     * backends-available list. Typical status 409.
+     */
+    UNSUPPORTED_BACKEND: `${SPEC_URL}#unsupported-backend`,
+    /** The request body is missing or invalid (missing required fields, etc.). */
+    INVALID_REQUEST_BODY: `${SPEC_URL}#invalid-request-body`,
+    /** A required `Content-Type` header is missing. */
+    MISSING_CONTENT_TYPE: `${SPEC_URL}#missing-content-type`,
+    /** Required `Authorization` / `Capability-Invocation` headers are missing. */
+    MISSING_AUTHORIZATION: `${SPEC_URL}#missing-authorization`,
+    /**
+     * The `Authorization`, `Capability-Invocation`, or `Digest` header is
+     * malformed, unparseable, or failed verification.
+     */
+    INVALID_AUTHORIZATION_HEADER: `${SPEC_URL}#invalid-authorization-header`,
+    /**
+     * The DID that signed the capability invocation does not match the
+     * `controller` supplied in a Create Space request body.
+     */
+    CONTROLLER_MISMATCH: `${SPEC_URL}#controller-mismatch`,
+    /** An uploaded archive is not a valid WAS space export. */
+    INVALID_IMPORT: `${SPEC_URL}#invalid-import`,
+    /** An underlying storage operation failed (server-side fault). */
+    STORAGE_ERROR: `${SPEC_URL}#storage-error`,
+    /**
+     * A write was rejected because the target backend's per-Space storage quota
+     * is exhausted (see the spec "Quotas" section). Typical status 507.
+     */
+    QUOTA_EXCEEDED: `${SPEC_URL}#quota-exceeded`,
+    /**
+     * An upload exceeds the target backend's `maxUploadBytes` constraint (see
+     * the spec "Quotas" section). Unlike `quota-exceeded`, this rejection is
+     * per-request, not cumulative: smaller uploads may still succeed. Typical
+     * status 413.
+     */
+    PAYLOAD_TOO_LARGE: `${SPEC_URL}#payload-too-large`,
+    /**
+     * The server does not implement this OPTIONAL operation (e.g. updating
+     * Resource Metadata). Typical status 501.
+     */
+    UNSUPPORTED_OPERATION: `${SPEC_URL}#unsupported-operation`,
+    /** Fallback for an unexpected server-side fault with no more specific kind. */
+    INTERNAL_ERROR: `${SPEC_URL}#internal-error`
+};
+/**
+ * The canonical HTTP status code for each problem kind. Both the server (when
+ * throwing) and the client (when interpreting a response) treat these as the
+ * default status associated with a `type`; a server MAY still override per
+ * occurrence, but the reference implementation does not.
+ */
+export const ProblemStatusCodes = {
+    [ProblemTypes.NOT_FOUND]: 404,
+    [ProblemTypes.INVALID_ID]: 400,
+    [ProblemTypes.ID_CONFLICT]: 409,
+    [ProblemTypes.RESERVED_ID]: 409,
+    [ProblemTypes.UNSUPPORTED_BACKEND]: 409,
+    [ProblemTypes.INVALID_REQUEST_BODY]: 400,
+    [ProblemTypes.MISSING_CONTENT_TYPE]: 400,
+    [ProblemTypes.MISSING_AUTHORIZATION]: 401,
+    [ProblemTypes.INVALID_AUTHORIZATION_HEADER]: 400,
+    [ProblemTypes.CONTROLLER_MISMATCH]: 400,
+    [ProblemTypes.INVALID_IMPORT]: 400,
+    [ProblemTypes.STORAGE_ERROR]: 500,
+    [ProblemTypes.QUOTA_EXCEEDED]: 507,
+    [ProblemTypes.PAYLOAD_TOO_LARGE]: 413,
+    [ProblemTypes.UNSUPPORTED_OPERATION]: 501,
+    [ProblemTypes.INTERNAL_ERROR]: 500
+};
+/**
+ * Reserved Collection-id path segments (the spec's Reserved Path Segment
+ * Registry, plus the reference server's non-spec `import` endpoint). A
+ * client-chosen Collection id matching one of these would shadow the reserved
+ * route at that position (e.g. a Collection named `export` would shadow
+ * `/space/{id}/export`), so it MUST be rejected with 409 `reserved-id`.
+ */
+export const RESERVED_COLLECTION_IDS = new Set([
+    'backends',
+    'collections',
+    'export',
+    'import',
+    'linkset',
+    'policy',
+    'query',
+    'quotas'
+]);
+/**
+ * Reserved Resource-id path segments (the spec's Reserved Path Segment
+ * Registry). A client-chosen Resource id matching one of these would shadow the
+ * reserved route at that position, so it MUST be rejected with 409
+ * `reserved-id`. Space ids have no reserved siblings, so no set exists for the
+ * `space` kind.
+ */
+export const RESERVED_RESOURCE_IDS = new Set([
+    'backend',
+    'linkset',
+    'policy',
+    'query',
+    'quota'
+]);
+//# sourceMappingURL=common.js.map

package/dist/common.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"common.js","sourceRoot":"","sources":["../src/common.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH;;;;;;;;;GASG;AAeH,MAAM,QAAQ,GAAG,6BAA6B,CAAA;AAE9C;;;;;;;;;;;;;;;;;;;GAmBG;AACH,MAAM,CAAC,MAAM,YAAY,GAAG;IAC1B;;;;OAIG;IACH,SAAS,EAAE,GAAG,QAAQ,YAAY;IAElC,qEAAqE;IACrE,UAAU,EAAE,GAAG,QAAQ,aAAa;IAEpC;;;;OAIG;IACH,WAAW,EAAE,GAAG,QAAQ,cAAc;IAEtC;;;;OAIG;IACH,WAAW,EAAE,GAAG,QAAQ,cAAc;IAEtC;;;OAGG;IACH,mBAAmB,EAAE,GAAG,QAAQ,sBAAsB;IAEtD,8EAA8E;IAC9E,oBAAoB,EAAE,GAAG,QAAQ,uBAAuB;IAExD,mDAAmD;IACnD,oBAAoB,EAAE,GAAG,QAAQ,uBAAuB;IAExD,8EAA8E;IAC9E,qBAAqB,EAAE,GAAG,QAAQ,wBAAwB;IAE1D;;;OAGG;IACH,4BAA4B,EAAE,GAAG,QAAQ,+BAA+B;IAExE;;;OAGG;IACH,mBAAmB,EAAE,GAAG,QAAQ,sBAAsB;IAEtD,2DAA2D;IAC3D,cAAc,EAAE,GAAG,QAAQ,iBAAiB;IAE5C,kEAAkE;IAClE,aAAa,EAAE,GAAG,QAAQ,gBAAgB;IAE1C;;;OAGG;IACH,cAAc,EAAE,GAAG,QAAQ,iBAAiB;IAE5C;;;;;OAKG;IACH,iBAAiB,EAAE,GAAG,QAAQ,oBAAoB;IAElD;;;OAGG;IACH,qBAAqB,EAAE,GAAG,QAAQ,wBAAwB;IAE1D,+EAA+E;IAC/E,cAAc,EAAE,GAAG,QAAQ,iBAAiB;CACpC,CAAA;AAiCV;;;;;GAKG;AACH,MAAM,CAAC,MAAM,kBAAkB,GAAgC;IAC7D,CAAC,YAAY,CAAC,SAAS,CAAC,EAAE,GAAG;IAC7B,CAAC,YAAY,CAAC,UAAU,CAAC,EAAE,GAAG;IAC9B,CAAC,YAAY,CAAC,WAAW,CAAC,EAAE,GAAG;IAC/B,CAAC,YAAY,CAAC,WAAW,CAAC,EAAE,GAAG;IAC/B,CAAC,YAAY,CAAC,mBAAmB,CAAC,EAAE,GAAG;IACvC,CAAC,YAAY,CAAC,oBAAoB,CAAC,EAAE,GAAG;IACxC,CAAC,YAAY,CAAC,oBAAoB,CAAC,EAAE,GAAG;IACxC,CAAC,YAAY,CAAC,qBAAqB,CAAC,EAAE,GAAG;IACzC,CAAC,YAAY,CAAC,4BAA4B,CAAC,EAAE,GAAG;IAChD,CAAC,YAAY,CAAC,mBAAmB,CAAC,EAAE,GAAG;IACvC,CAAC,YAAY,CAAC,cAAc,CAAC,EAAE,GAAG;IAClC,CAAC,YAAY,CAAC,aAAa,CAAC,EAAE,GAAG;IACjC,CAAC,YAAY,CAAC,cAAc,CAAC,EAAE,GAAG;IAClC,CAAC,YAAY,CAAC,iBAAiB,CAAC,EAAE,GAAG;IACrC,CAAC,YAAY,CAAC,qBAAqB,CAAC,EAAE,GAAG;IACzC,CAAC,YAAY,CAAC,cAAc,CAAC,EAAE,GAAG;CACnC,CAAA;AA8BD;;;;;;GAMG;AACH,MAAM,CAAC,MAAM,uBAAuB,GAAG,IAAI,GAAG,CAAC;IAC7C,UAAU;IACV,aAAa;IACb,QAAQ;IACR,QAAQ;IACR,SAAS;IACT,QAAQ;IACR,OAAO;IACP,QAAQ;CACT,CAAC,CAAA;AAEF;;;;;;GAMG;AACH,MAAM,CAAC,MAAM,qBAAqB,GAAG,IAAI,GAAG,CAAC;IAC3C,SAAS;IACT,SAAS;IACT,QAAQ;IACR,OAAO;IACP,OAAO;CACR,CAAC,CAAA"}

package/dist/index.d.ts

@@ -0,0 +1,11 @@
+/*!
+ * Copyright (c) 2026 Interop Alliance. All rights reserved.
+ */
+/**
+ * Public entry point for `@interop/storage-core`: a flat re-export of the
+ * cross-spec primitives (`./common`) and the WAS data model (`./was`). The EDV
+ * data model will be added as `./edv` without changing this surface.
+ */
+export * from './common.js';
+export * from './was.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH;;;;GAIG;AACH,cAAc,aAAa,CAAA;AAC3B,cAAc,UAAU,CAAA"}

package/dist/index.js

@@ -0,0 +1,11 @@
+/*!
+ * Copyright (c) 2026 Interop Alliance. All rights reserved.
+ */
+/**
+ * Public entry point for `@interop/storage-core`: a flat re-export of the
+ * cross-spec primitives (`./common`) and the WAS data model (`./was`). The EDV
+ * data model will be added as `./edv` without changing this surface.
+ */
+export * from './common.js';
+export * from './was.js';
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH;;;;GAIG;AACH,cAAc,aAAa,CAAA;AAC3B,cAAc,UAAU,CAAA"}

package/dist/was.d.ts

@@ -0,0 +1,266 @@
+/*!
+ * Copyright (c) 2026 Interop Alliance. All rights reserved.
+ */
+/**
+ * The Wallet Attached Storage (WAS) data model: the on-the-wire JSON shapes a
+ * WAS server emits and a client parses -- Space / Collection / Resource
+ * descriptions and summaries, listing shapes, resource metadata, the backend
+ * descriptor / usage shapes, the quota report, and the access-control policy
+ * document.
+ *
+ * These types are modeled to what the spec *guarantees* (e.g. on a
+ * {@link BackendDescriptor} only `id` is required). A producer that always
+ * populates the optional fields asserts that locally with `satisfies
+ * Required<T>` at the construction site rather than declaring a stricter type
+ * here.
+ *
+ * `controller` references `IDID` from `@interop/data-integrity-core` via a
+ * type-only import; that type is *used* in declarations but not re-exported --
+ * consumers that need `IDID` import it directly from `data-integrity-core`.
+ */
+import type { IDID } from '@interop/data-integrity-core';
+import type { Action, StorageLimit } from './common.js';
+/**
+ * A Space Description object -- the metadata stored for a Space.
+ */
+export interface SpaceDescription {
+    id: string;
+    /** e.g. `['Space']` */
+    type: string[];
+    /** optional human-readable name for the Space (see spec) */
+    name?: string;
+    /** the `did:key` that owns (controls) the Space */
+    controller: IDID;
+    /** absolute URL of the Space, when the server populates it */
+    url?: string;
+    /**
+     * URL of the Space's linkset resource (RFC9264), where auxiliary resources
+     * such as the access-control `policy` are discovered. Attached at response
+     * time, not persisted.
+     */
+    linkset?: string;
+}
+/**
+ * A reference to a storage backend, used when creating or configuring a
+ * Collection and when describing the backend a Collection is stored on.
+ */
+export interface BackendReference {
+    id: string;
+}
+/**
+ * A Collection Description object -- the metadata stored for a Collection.
+ */
+export interface CollectionDescription {
+    id: string;
+    /** e.g. `['Collection']` */
+    type: string[];
+    name?: string;
+    /** absolute URL of the Collection, when the server populates it */
+    url?: string;
+    /**
+     * The storage backend selected for this Collection (spec "Collection Backend
+     * Selected"). Its `id` MUST be one of the Space's backends-available. Omitted
+     * by a client at create time, the server fills it with the default
+     * `{ id: 'default' }`; persisted thereafter.
+     */
+    backend?: BackendReference;
+    /**
+     * URL of the Collection's linkset resource (RFC9264); see
+     * `SpaceDescription.linkset`. Attached at response time, not persisted.
+     */
+    linkset?: string;
+}
+/**
+ * An access-control policy document attached to a Space, Collection, or
+ * Resource (the `policy` reserved resource at each level). A `type`-discriminated
+ * open shape: v1 recognizes only `{ "type": "PublicCanRead" }`. Unrecognized
+ * `type` values grant nothing (fail-closed), so the request falls through to the
+ * normal zcap-only authorization decision. Policies are permissive-only: they
+ * can broaden access beyond what a capability grants, never restrict a valid
+ * capability holder.
+ */
+export interface PolicyDocument {
+    type: string;
+    [key: string]: unknown;
+}
+/** One entry in a {@link SpaceListing} (a Space within the repository). */
+export interface SpaceSummary {
+    id: string;
+    name?: string;
+    /** relative URL of the Space */
+    url: string;
+}
+/**
+ * Return shape of the List Spaces operation (`GET /spaces/`): the Spaces within
+ * the repository the caller is authorized to see.
+ */
+export interface SpaceListing {
+    url: string;
+    totalItems: number;
+    items: SpaceSummary[];
+}
+/** One entry in a {@link CollectionsList} (a Collection within a Space). */
+export interface CollectionSummary {
+    id: string;
+    /** relative URL, `/space/:spaceId/:collectionId` */
+    url: string;
+    name: string;
+}
+/**
+ * Return shape of the List Collections operation (the Collections within one
+ * Space). Renamed from the former `CollectionListing` to disambiguate it from
+ * {@link CollectionResourcesList}.
+ */
+export interface CollectionsList {
+    url: string;
+    totalItems: number;
+    items: CollectionSummary[];
+}
+/** One entry in a {@link CollectionResourcesList} (a Resource within a Collection). */
+export interface ResourceSummary {
+    id: string;
+    /** relative URL of the Resource */
+    url: string;
+    contentType: string;
+    /** human-readable name from the Resource's `custom.name`, when set */
+    name?: string;
+}
+/**
+ * Return shape of the List Collection operation (the Resources within one
+ * Collection). Renamed from the former `CollectionListing` (server) /
+ * `ResourceListing` (client) to disambiguate it from {@link CollectionsList}.
+ */
+export interface CollectionResourcesList {
+    id: string;
+    url: string;
+    /**
+     * The listing-level name (the Collection's name). Mirrors the Collection
+     * Description's `name`.
+     */
+    name?: string;
+    type: string[];
+    totalItems: number;
+    items: ResourceSummary[];
+}
+/**
+ * The user-writable portion of a Resource's Metadata object (spec "Resource
+ * Metadata Data Model"), nested under `custom`. Set via Update Resource Metadata
+ * (`PUT .../meta`); a full replacement, so any property omitted is cleared.
+ */
+export interface ResourceMetadataCustom {
+    /**
+     * Human-readable name for the Resource. The same `name` returned by List
+     * Collection -- updating it here updates the name shown in listings.
+     */
+    name?: string;
+    /** Application-defined annotations; values SHOULD be strings (spec). */
+    tags?: Record<string, string>;
+}
+/**
+ * A Resource Metadata object (spec "Resource Metadata Data Model"), addressable
+ * at the reserved `/meta` segment under a Resource. `contentType` and `size` are
+ * the REQUIRED server-managed fields; `createdAt` / `updatedAt` are the OPTIONAL
+ * server-managed timestamps, and `custom` holds the user-writable properties.
+ */
+export interface ResourceMetadata {
+    /** MIME type of the stored representation */
+    contentType: string;
+    /** length in bytes of the stored representation */
+    size: number;
+    /** RFC3339 date-time the Resource was created */
+    createdAt?: string;
+    /** RFC3339 date-time the Resource's content or custom metadata last changed */
+    updatedAt?: string;
+    /** user-writable properties (omitted when none are set) */
+    custom?: ResourceMetadataCustom;
+}
+/**
+ * A Backend description object (spec "Backend Data Model"), as returned in the
+ * array at `GET /space/:spaceId/backends`. The spec only REQUIRES `id` and
+ * defines defaults for the rest; a server that always populates the optional
+ * fields asserts that at its construction site (`satisfies
+ * Required<BackendDescriptor>`).
+ *
+ * - `id` -- the registration id under the Space (`default` for the single
+ *   server-configured backend the reference server ships with).
+ * - `name` -- a human-readable label.
+ * - `managedBy` -- who operates the backend: `server` (configured server-side)
+ *   or `external` (a Bring Your Own Storage provider registered by the client).
+ *   Spec default: `server`.
+ * - `storageMode` -- which representations the backend can store: `document`
+ *   (structured JSON) and/or `blob` (opaque binary). Spec default: both.
+ * - `persistence` -- whether the storage engine keeps data on persistent media
+ *   that survives a restart (`durable`) or only in memory (`volatile`). Spec
+ *   default: `durable`.
+ */
+export interface BackendDescriptor {
+    id: string;
+    name?: string;
+    managedBy?: 'server' | 'external';
+    storageMode?: Array<'document' | 'blob'>;
+    persistence?: 'durable' | 'volatile';
+}
+/**
+ * A backend's current condition in a quota report (spec "Quotas"). `ok`,
+ * `near-limit`, and `over-quota` are derived from usage vs the configured limit;
+ * `unreachable` is reserved for `external` backends whose provider cannot be
+ * queried (the server-managed filesystem backend never reports it).
+ */
+export type BackendState = 'ok' | 'near-limit' | 'over-quota' | 'unreachable';
+/** One Collection's consumption within a backend's `usageByCollection` array. */
+export interface CollectionUsage {
+    id: string;
+    usageBytes: number;
+}
+/**
+ * One backend's entry in a {@link SpaceQuotaReport} (spec "Quotas"). Combines
+ * the backend's identifying properties (`id` / `name` / `managedBy`, from its
+ * `describe()`) with the measured usage for the reporting Space.
+ *
+ * - `usageBytes` -- total bytes this Space consumes on this backend.
+ * - `restrictedActions` -- capability actions (uppercase HTTP verbs) currently
+ *   unavailable on the backend; e.g. a full backend reports `["POST", "PUT"]`
+ *   while still permitting reads and deletes.
+ * - `measuredAt` -- when the usage numbers were measured (distinct from the
+ *   report's top-level `respondedAt`).
+ * - `usageByCollection` -- per-Collection breakdown. The spec makes this opt-in
+ *   via `?include=collections`; the field stays optional so a backend may omit
+ *   it.
+ */
+export interface BackendUsage {
+    id: string;
+    name?: string;
+    managedBy: 'server' | 'external';
+    state: BackendState;
+    usageBytes: number;
+    limit: StorageLimit;
+    /** operational constraints such as `maxUploadBytes` */
+    constraints?: {
+        maxUploadBytes?: number;
+        [key: string]: unknown;
+    };
+    restrictedActions: Action[];
+    measuredAt: string;
+    usageByCollection?: CollectionUsage[];
+}
+/**
+ * The Space Quota report (spec "Quotas"), returned by
+ * `GET /space/:spaceId/quotas`: a measurement timestamp plus one
+ * {@link BackendUsage} entry per backend registered for the Space.
+ */
+export interface SpaceQuotaReport {
+    respondedAt: string;
+    backends: BackendUsage[];
+}
+/**
+ * Return shape of the Import Space operation: a per-merge tally.
+ */
+export interface ImportStats {
+    collectionsCreated: number;
+    collectionsSkipped: number;
+    resourcesCreated: number;
+    resourcesSkipped: number;
+    policiesCreated: number;
+    policiesSkipped: number;
+}
+//# sourceMappingURL=was.d.ts.map

package/dist/was.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"was.d.ts","sourceRoot":"","sources":["../src/was.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH;;;;;;;;;;;;;;;;GAgBG;AACH,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,8BAA8B,CAAA;AAExD,OAAO,KAAK,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,aAAa,CAAA;AAEvD;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,EAAE,EAAE,MAAM,CAAA;IACV,uBAAuB;IACvB,IAAI,EAAE,MAAM,EAAE,CAAA;IACd,4DAA4D;IAC5D,IAAI,CAAC,EAAE,MAAM,CAAA;IACb,mDAAmD;IACnD,UAAU,EAAE,IAAI,CAAA;IAChB,8DAA8D;IAC9D,GAAG,CAAC,EAAE,MAAM,CAAA;IACZ;;;;OAIG;IACH,OAAO,CAAC,EAAE,MAAM,CAAA;CACjB;AAED;;;GAGG;AACH,MAAM,WAAW,gBAAgB;IAC/B,EAAE,EAAE,MAAM,CAAA;CACX;AAED;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC,EAAE,EAAE,MAAM,CAAA;IACV,4BAA4B;IAC5B,IAAI,EAAE,MAAM,EAAE,CAAA;IACd,IAAI,CAAC,EAAE,MAAM,CAAA;IACb,mEAAmE;IACnE,GAAG,CAAC,EAAE,MAAM,CAAA;IACZ;;;;;OAKG;IACH,OAAO,CAAC,EAAE,gBAAgB,CAAA;IAC1B;;;OAGG;IACH,OAAO,CAAC,EAAE,MAAM,CAAA;CACjB;AAED;;;;;;;;GAQG;AACH,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAA;IACZ,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAA;CACvB;AAED,2EAA2E;AAC3E,MAAM,WAAW,YAAY;IAC3B,EAAE,EAAE,MAAM,CAAA;IACV,IAAI,CAAC,EAAE,MAAM,CAAA;IACb,gCAAgC;IAChC,GAAG,EAAE,MAAM,CAAA;CACZ;AAED;;;GAGG;AACH,MAAM,WAAW,YAAY;IAC3B,GAAG,EAAE,MAAM,CAAA;IACX,UAAU,EAAE,MAAM,CAAA;IAClB,KAAK,EAAE,YAAY,EAAE,CAAA;CACtB;AAED,4EAA4E;AAC5E,MAAM,WAAW,iBAAiB;IAChC,EAAE,EAAE,MAAM,CAAA;IACV,oDAAoD;IACpD,GAAG,EAAE,MAAM,CAAA;IACX,IAAI,EAAE,MAAM,CAAA;CACb;AAED;;;;GAIG;AACH,MAAM,WAAW,eAAe;IAC9B,GAAG,EAAE,MAAM,CAAA;IACX,UAAU,EAAE,MAAM,CAAA;IAClB,KAAK,EAAE,iBAAiB,EAAE,CAAA;CAC3B;AAED,uFAAuF;AACvF,MAAM,WAAW,eAAe;IAC9B,EAAE,EAAE,MAAM,CAAA;IACV,mCAAmC;IACnC,GAAG,EAAE,MAAM,CAAA;IACX,WAAW,EAAE,MAAM,CAAA;IACnB,sEAAsE;IACtE,IAAI,CAAC,EAAE,MAAM,CAAA;CACd;AAED;;;;GAIG;AACH,MAAM,WAAW,uBAAuB;IACtC,EAAE,EAAE,MAAM,CAAA;IACV,GAAG,EAAE,MAAM,CAAA;IACX;;;OAGG;IACH,IAAI,CAAC,EAAE,MAAM,CAAA;IACb,IAAI,EAAE,MAAM,EAAE,CAAA;IACd,UAAU,EAAE,MAAM,CAAA;IAClB,KAAK,EAAE,eAAe,EAAE,CAAA;CACzB;AAED;;;;GAIG;AACH,MAAM,WAAW,sBAAsB;IACrC;;;OAGG;IACH,IAAI,CAAC,EAAE,MAAM,CAAA;IACb,wEAAwE;IACxE,IAAI,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;CAC9B;AAED;;;;;GAKG;AACH,MAAM,WAAW,gBAAgB;IAC/B,6CAA6C;IAC7C,WAAW,EAAE,MAAM,CAAA;IACnB,mDAAmD;IACnD,IAAI,EAAE,MAAM,CAAA;IACZ,iDAAiD;IACjD,SAAS,CAAC,EAAE,MAAM,CAAA;IAClB,+EAA+E;IAC/E,SAAS,CAAC,EAAE,MAAM,CAAA;IAClB,2DAA2D;IAC3D,MAAM,CAAC,EAAE,sBAAsB,CAAA;CAChC;AAED;;;;;;;;;;;;;;;;;;GAkBG;AACH,MAAM,WAAW,iBAAiB;IAChC,EAAE,EAAE,MAAM,CAAA;IACV,IAAI,CAAC,EAAE,MAAM,CAAA;IACb,SAAS,CAAC,EAAE,QAAQ,GAAG,UAAU,CAAA;IACjC,WAAW,CAAC,EAAE,KAAK,CAAC,UAAU,GAAG,MAAM,CAAC,CAAA;IACxC,WAAW,CAAC,EAAE,SAAS,GAAG,UAAU,CAAA;CACrC;AAED;;;;;GAKG;AACH,MAAM,MAAM,YAAY,GAAG,IAAI,GAAG,YAAY,GAAG,YAAY,GAAG,aAAa,CAAA;AAE7E,iFAAiF;AACjF,MAAM,WAAW,eAAe;IAC9B,EAAE,EAAE,MAAM,CAAA;IACV,UAAU,EAAE,MAAM,CAAA;CACnB;AAED;;;;;;;;;;;;;;GAcG;AACH,MAAM,WAAW,YAAY;IAC3B,EAAE,EAAE,MAAM,CAAA;IACV,IAAI,CAAC,EAAE,MAAM,CAAA;IACb,SAAS,EAAE,QAAQ,GAAG,UAAU,CAAA;IAChC,KAAK,EAAE,YAAY,CAAA;IACnB,UAAU,EAAE,MAAM,CAAA;IAClB,KAAK,EAAE,YAAY,CAAA;IACnB,uDAAuD;IACvD,WAAW,CAAC,EAAE;QAAE,cAAc,CAAC,EAAE,MAAM,CAAC;QAAC,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAA;KAAE,CAAA;IACjE,iBAAiB,EAAE,MAAM,EAAE,CAAA;IAC3B,UAAU,EAAE,MAAM,CAAA;IAClB,iBAAiB,CAAC,EAAE,eAAe,EAAE,CAAA;CACtC;AAED;;;;GAIG;AACH,MAAM,WAAW,gBAAgB;IAC/B,WAAW,EAAE,MAAM,CAAA;IACnB,QAAQ,EAAE,YAAY,EAAE,CAAA;CACzB;AAED;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,kBAAkB,EAAE,MAAM,CAAA;IAC1B,kBAAkB,EAAE,MAAM,CAAA;IAC1B,gBAAgB,EAAE,MAAM,CAAA;IACxB,gBAAgB,EAAE,MAAM,CAAA;IACxB,eAAe,EAAE,MAAM,CAAA;IACvB,eAAe,EAAE,MAAM,CAAA;CACxB"}

package/dist/was.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=was.js.map

package/dist/was.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"was.js","sourceRoot":"","sources":["../src/was.ts"],"names":[],"mappings":""}

package/package.json

@@ -0,0 +1,76 @@
+{
+  "name": "@interop/storage-core",
+  "description": "Shared WAS/EDV wire-model types and error vocabulary for the Wallet Attached Storage server and client.",
+  "version": "0.1.0",
+  "type": "module",
+  "scripts": {
+    "build": "pnpm run clear && tsc",
+    "clear": "rimraf dist/*",
+    "fix": "eslint --fix src test && pnpm run format",
+    "format": "prettier --write \"src/**/*.ts\" \"test/**/*.ts\" \"*.md\"",
+    "lint": "eslint src test",
+    "prepare": "pnpm run build",
+    "rebuild": "pnpm run clear && pnpm run build",
+    "test": "pnpm run fix && pnpm run lint && pnpm run test:node",
+    "test:node": "vitest run",
+    "test:coverage": "vitest run --coverage"
+  },
+  "files": [
+    "dist",
+    "README.md",
+    "LICENSE.md"
+  ],
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "react-native": "./dist/index.js",
+      "import": "./dist/index.js",
+      "default": "./dist/index.js"
+    }
+  },
+  "module": "dist/index.js",
+  "browser": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "sideEffects": false,
+  "dependencies": {
+    "@interop/data-integrity-core": "^8.0.0"
+  },
+  "devDependencies": {
+    "@eslint/js": "^10.0.1",
+    "@types/node": "^25.9.1",
+    "@vitest/coverage-v8": "^4.1.7",
+    "eslint": "^10.4.0",
+    "eslint-config-prettier": "^10.1.8",
+    "globals": "^17.6.0",
+    "prettier": "^3.8.3",
+    "rimraf": "^6.1.3",
+    "typescript": "^5.9.3",
+    "typescript-eslint": "^8.59.4",
+    "vitest": "^4.1.7"
+  },
+  "publishConfig": {
+    "access": "public"
+  },
+  "keywords": [
+    "wallet-attached-storage",
+    "was",
+    "edv",
+    "storage",
+    "isomorphic"
+  ],
+  "packageManager": "pnpm@11.5.0",
+  "engines": {
+    "node": ">=22.0"
+  },
+  "author": {
+    "name": "Interop Alliance",
+    "url": "https://github.com/interop-alliance/"
+  },
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/interop-alliance/storage-core.git"
+  },
+  "homepage": "https://github.com/interop-alliance/storage-core",
+  "bugs": "https://github.com/interop-alliance/storage-core/issues"
+}