npm - @jmruthers/pace-core - Versions diffs - 0.5.135 → 0.5.136 - Mend

@jmruthers/pace-core 0.5.135 → 0.5.136

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (522) hide show

package/dist/utils.js CHANGED Viewed

@@ -7,45 +7,116 @@ import {
   formatPercent,
   getAppConfig,
   getCurrentAppId,
-  getCurrentAppName,
   setAppConfig,
   useSessionTracking
-} from "./chunk-M6DDYFUD.js";
+} from "./chunk-LS353YLY.js";
 import {
-  LoadingSpinner
-} from "./chunk-CDQ3PX7L.js";
+  CachedAppIdResolver,
+  LoadingSpinner,
+  cachedAppIdResolver,
+  getAppId,
+  getAppIds
+} from "./chunk-S5OFRT4M.js";
 import {
   getAppNameFromBuildTime,
   getAppNameFromEnvironment,
   getAppNameFromGlobal,
   getAppNameFromPackageJson,
+  getCurrentAppName,
   getCurrentAppNameWithFallback,
   setRBACAppName
-} from "./chunk-JCQZ6LA7.js";
+} from "./chunk-Q5QRDWKI.js";
+import {
+  buildSafeQueryParams,
+  calculatePasswordStrength,
+  csrfManager,
+  dateSchema,
+  deepMerge,
+  detectSQLInjection,
+  emailSchema,
+  emailSchema2,
+  escapeLikeQuery,
+  generateCSRFToken,
+  getCSRFToken,
+  isEmpty,
+  isObject,
+  isStrongPassword,
+  isValidDate,
+  isValidEmail,
+  isValidUrl,
+  isWithinRange,
+  limitOffsetSchema,
+  matchesPattern,
+  nameSchema,
+  nameSchema2,
+  orderBySchema,
+  passwordSchema,
+  passwordSchema2,
+  phoneSchema,
+  phoneSchema2,
+  sanitizeFilters,
+  sanitizeFormData,
+  sanitizeSearchQuery,
+  sanitizeUserInput,
+  sanitizeUserInput_deprecated,
+  searchQuerySchema,
+  sqlIdentifierSchema,
+  urlSchema,
+  urlSchema2,
+  userPreferencesSchema,
+  userSettingsSchema,
+  usernameSchema,
+  validateCSRFToken,
+  validateUserInput
+} from "./chunk-APIBCTL2.js";
+import {
+  renderSafeHtml,
+  sanitizeHtml,
+  validateHtml
+} from "./chunk-5DPZ5EAT.js";
 import {
   useComponentPerformance
-} from "./chunk-66C4BSAY.js";
+} from "./chunk-ANBQRTPX.js";
 import {
   PERFORMANCE_BUDGETS,
   performanceBudgetMonitor
-} from "./chunk-O3NWNXDY.js";
+} from "./chunk-FMUCXFII.js";
 import {
   cn
-} from "./chunk-PYUXFQJ3.js";
+} from "./chunk-56XJ3TU6.js";
 import {
   clearOrganisationContext,
   getOrganisationContext,
   init_organisationContext,
   isOrganisationContextAvailable,
   setOrganisationContext
-} from "./chunk-BDZUMRBD.js";
+} from "./chunk-K2WWTH7O.js";
 import {
   init_secureStorage,
   secureStorage
-} from "./chunk-UJI6WSMD.js";
+} from "./chunk-444EZN6N.js";
+import {
+  changePasswordSchema,
+  combineSchemas,
+  contactFormSchema,
+  loginSchema,
+  passwordResetSchema,
+  pickSchema,
+  registrationSchema,
+  secureLoginSchema,
+  securePasswordSchema,
+  userProfileSchema
+} from "./chunk-LMC26NLJ.js";
+import {
+  LogLevel,
+  Logger,
+  createLogger,
+  init_logger,
+  logger
+} from "./chunk-XDNLUEXI.js";
 import "./chunk-PLDDJCW6.js";
-// src/utils/debugLogger.ts
+// src/utils/core/debugLogger.ts
 var DebugLogger = class {
   /**
    * Check if we're in development mode
@@ -95,261 +166,14 @@ var DebugLogger = class {
   }
 };
-// src/utils/validation.ts
-function isValidEmail(email) {
-  const emailPattern = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
-  return emailPattern.test(email);
-}
-function isEmpty(value) {
-  return value === null || value === void 0 || value.trim() === "";
-}
-function isStrongPassword(password) {
-  const passwordPattern = /^(?=.*[a-z])(?=.*[A-Z])(?=.*\d).{8,}$/;
-  return passwordPattern.test(password);
-}
-function isValidUrl(url) {
-  try {
-    new URL(url);
-    return true;
-  } catch {
-    return false;
-  }
-}
-function isValidDate(dateStr) {
-  const date = new Date(dateStr);
-  return !isNaN(date.getTime());
-}
-function isWithinRange(value, min, max) {
-  return value >= min && value <= max;
-}
-function matchesPattern(value, pattern) {
-  return pattern.test(value);
-}
-function deepMerge(target, source) {
-  const output = { ...target };
-  if (isObject(target) && isObject(source)) {
-    Object.keys(source).forEach((key) => {
-      if (isObject(source[key])) {
-        if (!(key in target)) {
-          Object.assign(output, { [key]: source[key] });
-        } else {
-          const targetKey = key;
-          const targetValue = target[targetKey];
-          if (isObject(targetValue)) {
-            output[targetKey] = deepMerge(
-              targetValue,
-              source[key]
-            );
-          }
-        }
-      } else {
-        Object.assign(output, { [key]: source[key] });
-      }
-    });
-  }
-  return output;
-}
-function isObject(item) {
-  return item !== null && typeof item === "object" && !Array.isArray(item);
-}
-// src/utils/validationUtils.ts
-import { z as z2 } from "zod";
-// src/utils/sanitization.ts
-import { z } from "zod";
-var DEFAULT_OPTIONS = {
-  allowHtml: false,
-  allowedTags: [],
-  maxLength: 1e3,
-  trim: true,
-  removeScripts: true,
-  removeEvents: true
-};
-function sanitizeUserInput(input, options = {}) {
-  if (typeof input !== "string") {
-    return "";
-  }
-  const opts = { ...DEFAULT_OPTIONS, ...options };
-  let sanitized = input;
-  if (opts.trim) {
-    sanitized = sanitized.trim();
-  }
-  if (opts.maxLength && sanitized.length > opts.maxLength) {
-    sanitized = sanitized.substring(0, opts.maxLength);
-  }
-  if (!opts.allowHtml) {
-    sanitized = sanitized.replace(/</g, "&lt;").replace(/>/g, "&gt;").replace(/"/g, "&quot;").replace(/'/g, "&#x27;").replace(/\//g, "&#x2F;");
-  } else if (opts.allowedTags && opts.allowedTags.length > 0) {
-    const allowedTagsRegex = new RegExp(`<(?!/?(?:${opts.allowedTags.join("|")})s*/?>)[^>]+>`, "gi");
-    sanitized = sanitized.replace(allowedTagsRegex, "");
-  }
-  if (opts.removeScripts) {
-    sanitized = sanitized.replace(/<script[^>]*>.*?<\/script>/gi, "").replace(/javascript:/gi, "").replace(/vbscript:/gi, "").replace(/data:/gi, "");
-  }
-  if (opts.removeEvents) {
-    sanitized = sanitized.replace(/on\w+\s*=/gi, "");
-  }
-  return sanitized;
-}
-function sanitizeEmail(email) {
-  if (typeof email !== "string") {
-    return "";
-  }
-  return email.trim().toLowerCase().replace(/[^\w@.-]/g, "");
-}
-function sanitizePhoneNumber(phone) {
-  if (typeof phone !== "string") {
-    return "";
-  }
-  return phone.replace(/[^\d+\-\s()]/g, "").trim();
-}
-function sanitizeUrl(url) {
-  if (typeof url !== "string") {
-    return "";
-  }
-  const sanitized = url.trim();
-  if (!/^https?:\/\/|^ftp:\/\//i.test(sanitized)) {
-    return "";
-  }
-  if (/javascript:|data:|vbscript:/i.test(sanitized)) {
-    return "";
-  }
-  return sanitized;
-}
-function sanitizeFileName(fileName) {
-  if (typeof fileName !== "string") {
-    return "";
-  }
-  return fileName.trim().replace(/[<>:"/\\|?*]/g, "").replace(/\.\./g, "").substring(0, 255);
-}
-function sanitizeSqlInput(input) {
-  if (typeof input !== "string") {
-    return "";
-  }
-  return input.replace(/['";\\]/g, "").replace(/--.*$/gm, "").replace(/\/\*.*?\*\//g, "").trim();
-}
-function sanitizeFormData(data, schema, sanitizationRules) {
-  try {
-    if (sanitizationRules && typeof data === "object" && data !== null) {
-      const sanitizedData = { ...data };
-      Object.entries(sanitizationRules).forEach(([field, options]) => {
-        if (typeof sanitizedData[field] === "string") {
-          sanitizedData[field] = sanitizeUserInput(sanitizedData[field], options);
-        }
-      });
-      data = sanitizedData;
-    }
-    const result = schema.parse(data);
-    return { success: true, data: result };
-  } catch (error) {
-    if (error instanceof z.ZodError) {
-      return {
-        success: false,
-        error: error.errors.map((e) => e.message).join(", ")
-      };
-    }
-    return {
-      success: false,
-      error: "Validation failed"
-    };
-  }
-}
-var CSP_DIRECTIVES = {
-  default: "default-src 'self'",
-  script: "script-src 'self' 'unsafe-inline'",
-  style: "style-src 'self' 'unsafe-inline'",
-  img: "img-src 'self' data: https:",
-  font: "font-src 'self'",
-  connect: "connect-src 'self'",
-  frame: "frame-src 'none'"
-};
-function generateCSPHeader(customDirectives) {
-  const directives = { ...CSP_DIRECTIVES, ...customDirectives };
-  return Object.values(directives).join("; ");
-}
-var RateLimiter = class {
-  constructor(maxAttempts = 5, windowMs = 15 * 60 * 1e3) {
-    this.maxAttempts = maxAttempts;
-    this.windowMs = windowMs;
-    this.attempts = /* @__PURE__ */ new Map();
-  }
-  isAllowed(identifier) {
-    const now = Date.now();
-    const record = this.attempts.get(identifier);
-    if (!record || now > record.resetTime) {
-      this.attempts.set(identifier, { count: 1, resetTime: now + this.windowMs });
-      return true;
-    }
-    if (record.count >= this.maxAttempts) {
-      return false;
-    }
-    record.count++;
-    return true;
-  }
-  getRemainingAttempts(identifier) {
-    const record = this.attempts.get(identifier);
-    if (!record || Date.now() > record.resetTime) {
-      return this.maxAttempts;
-    }
-    return Math.max(0, this.maxAttempts - record.count);
-  }
-  reset(identifier) {
-    this.attempts.delete(identifier);
-  }
-};
-// src/utils/validationUtils.ts
-function validateUserInput(schema, data, sanitizationRules) {
-  return sanitizeFormData(data, schema, sanitizationRules);
-}
-function sanitizeUserInput_deprecated(input) {
-  console.warn("sanitizeUserInput is deprecated. Use sanitizeUserInput from lib/sanitization instead.");
-  return sanitizeUserInput(input);
-}
-var emailSchema = z2.string().transform((email) => email.toLowerCase().trim()).pipe(z2.string().min(1, "Email is required").email("Invalid email format").max(254, "Email too long"));
-var passwordSchema = z2.string().min(8, "Password must be at least 8 characters").max(128, "Password too long").regex(/[A-Z]/, "Password must contain at least one uppercase letter").regex(/[a-z]/, "Password must contain at least one lowercase letter").regex(/[0-9]/, "Password must contain at least one number").regex(/[^A-Za-z0-9]/, "Password must contain at least one special character");
-var usernameSchema = z2.string().transform((username) => username.toLowerCase().trim()).pipe(z2.string().min(3, "Username must be at least 3 characters").max(30, "Username too long").regex(/^[a-zA-Z0-9_-]+$/, "Username can only contain letters, numbers, hyphens, and underscores"));
-var nameSchema = z2.string().min(1, "Name is required").max(100, "Name too long").refine((name) => {
-  const dangerousPatterns = [
-    /<script/i,
-    /<img/i,
-    /on\w+\s*=/i,
-    /javascript:/i,
-    /data:/i,
-    /vbscript:/i
-  ];
-  return !dangerousPatterns.some((pattern) => pattern.test(name));
-}, "Name contains invalid characters").transform((name) => sanitizeUserInput(name, {
-  allowHtml: false,
-  maxLength: 100,
-  trim: true
-}));
-var phoneSchema = z2.string().min(10, "Phone number must be at least 10 digits").max(20, "Phone number too long").regex(/^[\+]?[0-9\s\-\(\)\.]+$/, "Invalid phone number format").refine((phone) => {
-  const digitsOnly = phone.replace(/\D/g, "");
-  return digitsOnly.length >= 10 && digitsOnly.length <= 15;
-}, "Phone number must be between 10 and 15 digits");
-var urlSchema = z2.string().min(1, "URL is required").max(2048, "URL too long").refine((url) => {
-  try {
-    const parsed = new URL(url);
-    return ["http:", "https:"].includes(parsed.protocol);
-  } catch {
-    return false;
-  }
-}, "Invalid URL format").refine((url) => {
-  const dangerousPatterns = [
-    /javascript:/i,
-    /data:/i,
-    /vbscript:/i,
-    /file:/i,
-    /mailto:/i
-  ];
-  return !dangerousPatterns.some((pattern) => pattern.test(url));
-}, "URL contains invalid protocol");
+// src/utils/index.ts
+init_logger();
-// src/utils/security.ts
+// src/utils/security/security.ts
+init_logger();
+var log = createLogger("Security");
 function logSecurityEvent(event) {
-  console.warn("[SECURITY EVENT]", {
+  log.warn("Security event:", {
     ...event,
     timestamp: event.timestamp.toISOString()
   });
@@ -377,6 +201,35 @@ function validateSecurityHeaders(headers) {
   return true;
 }
+// src/utils/security/securityMonitor.ts
+var SecurityMonitor = class {
+  constructor() {
+    this.events = [];
+  }
+  logEvent(event) {
+    const eventWithId = {
+      ...event,
+      id: Math.random().toString(36).substr(2, 9),
+      timestamp: Date.now()
+    };
+    this.events.push(eventWithId);
+  }
+  getEvents() {
+    return [...this.events];
+  }
+  clearEvents() {
+    this.events = [];
+  }
+  createAlert(alert) {
+    return {
+      ...alert,
+      id: Math.random().toString(36).substr(2, 9),
+      timestamp: /* @__PURE__ */ new Date()
+    };
+  }
+};
+var securityMonitor = new SecurityMonitor();
 // src/constants/performance.ts
 var PERFORMANCE_THRESHOLDS = {
   RENDER_TIME: 16,
@@ -393,7 +246,7 @@ var PERFORMANCE_THRESHOLDS = {
   // 250KB bundle size limit
 };
-// src/utils/performanceBenchmark.ts
+// src/utils/performance/performanceBenchmark.ts
 function createPerformanceBenchmark(name) {
   const startTime = performance.now();
   const startMemory = performance.memory?.usedJSHeapSize || 0;
@@ -436,7 +289,7 @@ function measureRenderPerformance(componentName, renderFn) {
   return metrics;
 }
-// src/utils/bundleAnalysis.ts
+// src/utils/performance/bundleAnalysis.ts
 var BundleAnalyzer = class {
   constructor() {
     this.enabled = import.meta.env.MODE === "development";
@@ -522,7 +375,7 @@ function trackDynamicImport(moduleName) {
   console.log("Dynamic import: " + moduleName + " - Good for code splitting!");
 }
-// src/utils/dynamicUtils.ts
+// src/utils/dynamic/dynamicUtils.ts
 var loadLodash = async () => {
   const [debounceModule, throttleModule] = await Promise.all([
     import("lodash.debounce"),
@@ -579,7 +432,7 @@ var lazyChartUtils = createLazyUtility(loadChartUtils);
 var lazyFormUtils = createLazyUtility(loadFormUtils);
 var lazyCSVUtils = createLazyUtility(loadCSVUtils);
-// src/utils/lazyLoad.tsx
+// src/utils/dynamic/lazyLoad.tsx
 import { Suspense, lazy } from "react";
 import { jsx } from "react/jsx-runtime";
 function createLazyComponent(importFn, componentName, options = {}) {
@@ -596,11 +449,11 @@ function createLazyComponent(importFn, componentName, options = {}) {
   return WrappedComponent;
 }
 var LazyDataTable = createLazyComponent(
-  () => import("./DataTable-A36PJG6N.js").then((module) => ({ default: module.DataTable })),
+  () => import("./DataTable-CYOHOX3O.js").then((module) => ({ default: module.DataTable })),
   "DataTable"
 );
-// src/utils/permissionUtils.ts
+// src/utils/permissions/permissionUtils.ts
 function transformPermissionMapToBoolean(permissions) {
   const result = {};
   Object.entries(permissions).forEach(([key, value]) => {
@@ -625,7 +478,7 @@ function hasAllPermissions(permissions, permissionList) {
   return permissionList.every((permission) => hasPermission(permissions, permission));
 }
-// src/utils/permissionTypes.ts
+// src/utils/permissions/permissionTypes.ts
 var PermissionType = /* @__PURE__ */ ((PermissionType2) => {
   PermissionType2["READ"] = "read";
   PermissionType2["WRITE"] = "write";
@@ -651,52 +504,7 @@ function parsePermission(permission) {
   };
 }
-// src/utils/schemaUtils.ts
-import { z as z3 } from "zod";
-function pickSchema(schema, keys) {
-  const shape = Object.entries(schema.shape).filter(([key]) => keys.includes(key)).reduce((acc, [key, value]) => {
-    acc[key] = value;
-    return acc;
-  }, {});
-  return z3.object(shape);
-}
-function combineSchemas(schemas) {
-  return schemas.reduce(
-    (merged, schema) => merged.merge(schema),
-    z3.object({})
-  );
-}
-// src/utils/securityMonitor.ts
-var SecurityMonitor = class {
-  constructor() {
-    this.events = [];
-  }
-  logEvent(event) {
-    const eventWithId = {
-      ...event,
-      id: Math.random().toString(36).substr(2, 9),
-      timestamp: Date.now()
-    };
-    this.events.push(eventWithId);
-  }
-  getEvents() {
-    return [...this.events];
-  }
-  clearEvents() {
-    this.events = [];
-  }
-  createAlert(alert) {
-    return {
-      ...alert,
-      id: Math.random().toString(36).substr(2, 9),
-      timestamp: /* @__PURE__ */ new Date()
-    };
-  }
-};
-var securityMonitor = new SecurityMonitor();
-// src/utils/audit.ts
+// src/utils/audit/audit.ts
 var AuditLogger = class {
   constructor() {
     this.events = [];
@@ -777,7 +585,7 @@ function logAuditEvent(action, user, details) {
   });
 }
-// src/utils/deviceFingerprint.ts
+// src/utils/device/deviceFingerprint.ts
 init_secureStorage();
 function generateDeviceFingerprint() {
   try {
@@ -908,37 +716,56 @@ function generateFallbackFingerprint() {
 // src/utils/index.ts
 init_organisationContext();
 export {
-  CSP_DIRECTIVES,
+  CachedAppIdResolver,
   DebugLogger,
   LazyDataTable,
+  LogLevel,
+  Logger,
   PERFORMANCE_BUDGETS,
   PERFORMANCE_THRESHOLDS,
   PermissionType,
-  RateLimiter,
   auditLog,
   auditLogger,
+  buildSafeQueryParams,
   bundleAnalyzer,
+  cachedAppIdResolver,
+  calculatePasswordStrength,
+  changePasswordSchema,
   clearOrganisationContext,
   cn,
   combineSchemas,
+  contactFormSchema,
   createLazyComponent,
   createLazyUtility,
+  createLogger,
   createPerformanceBenchmark,
+  csrfManager,
+  dateSchema,
   deepMerge,
-  emailSchema,
+  detectSQLInjection,
+  emailSchema2 as emailSchema,
+  emailSchema as enhancedEmailSchema,
+  nameSchema as enhancedNameSchema,
+  passwordSchema as enhancedPasswordSchema,
+  phoneSchema as enhancedPhoneSchema,
+  urlSchema as enhancedUrlSchema,
+  escapeLikeQuery,
   formatCompactNumber,
   formatCurrency,
   formatDate,
   formatFileSize,
   formatNumber,
   formatPercent,
-  generateCSPHeader,
+  generateCSRFToken,
   generateDeviceFingerprint,
   getAppConfig,
+  getAppId,
+  getAppIds,
   getAppNameFromBuildTime,
   getAppNameFromEnvironment,
   getAppNameFromGlobal,
   getAppNameFromPackageJson,
+  getCSRFToken,
   getCurrentAppId,
   getCurrentAppName,
   getCurrentAppNameWithFallback,
@@ -960,6 +787,7 @@ export {
   lazyDateUtils,
   lazyFormUtils,
   lazyLodash,
+  limitOffsetSchema,
   loadCSVUtils,
   loadChartUtils,
   loadDateUtils,
@@ -969,33 +797,47 @@ export {
   logAuthEvent,
   logPermissionEvent,
   logSecurityEvent2 as logSecurityEvent,
+  logger,
+  loginSchema,
   matchesPattern,
   measureRenderPerformance,
-  nameSchema,
+  nameSchema2 as nameSchema,
+  orderBySchema,
   parsePermission,
-  passwordSchema,
+  passwordResetSchema,
+  passwordSchema2 as passwordSchema,
   performanceBudgetMonitor,
-  phoneSchema,
+  phoneSchema2 as phoneSchema,
   pickSchema,
-  sanitizeEmail,
-  sanitizeFileName,
+  registrationSchema,
+  renderSafeHtml,
+  sanitizeFilters,
   sanitizeFormData,
-  sanitizePhoneNumber,
-  sanitizeSqlInput,
-  sanitizeUrl,
+  sanitizeHtml,
+  sanitizeHtml as sanitizeHtmlAdvanced,
+  sanitizeSearchQuery,
   sanitizeUserInput,
   sanitizeUserInput_deprecated,
+  searchQuerySchema,
+  secureLoginSchema,
+  securePasswordSchema,
   securityMonitor,
   setAppConfig,
   setOrganisationContext,
   setRBACAppName,
+  sqlIdentifierSchema,
   trackDynamicImport,
   transformPermissionMapToBoolean,
-  urlSchema,
+  urlSchema2 as urlSchema,
   useComponentPerformance,
   useSessionTracking,
+  userPreferencesSchema,
+  userProfileSchema,
+  userSettingsSchema,
   usernameSchema,
+  validateCSRFToken,
   validateDeviceFingerprint,
+  validateHtml,
   validateImportPattern,
   validateSecurityHeaders,
   validateUserInput