@jmruthers/pace-core 0.6.5 → 0.6.7

package/dist/chunk-VBXEHIUJ.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../src/utils/context/organisationContext.ts","../src/utils/security/secureStorage.ts"],"sourcesContent":["/**\n * @file Organisation Context Utility\n * @package @jmruthers/pace-core\n * @module Utils/OrganisationContext\n * @since 0.4.0\n *\n * Utility functions for managing organisation context in database sessions.\n * Provides fallback mechanisms for when database functions are not available.\n */\n\nimport type { SupabaseClient } from '@supabase/supabase-js';\nimport { createLogger } from '../core/logger';\n\nconst log = createLogger('organisationContext');\n\n/**\n * Set organisation context in the database session\n * \n * This function attempts to set the organisation context using a database function.\n * If the function is not available, it falls back gracefully without throwing errors.\n * \n * @param supabase - Supabase client instance\n * @param organisationId - The organisation ID to set as context\n * @returns Promise that resolves when context is set (or falls back gracefully)\n */\nexport async function setOrganisationContext(\n  supabase: SupabaseClient,\n  organisationId: string\n): Promise<void> {\n  if (!supabase || !organisationId) {\n    // TODO: Replace with proper logging service integration\n    return;\n  }\n\n  try {\n    // Add timeout to prevent hanging RPC calls\n    const timeoutPromise = new Promise((_, reject) => {\n      setTimeout(() => reject(new Error('RPC timeout after 3 seconds')), 3000);\n    });\n    \n    // Call the database function to set organisation context\n    const rpcPromise = supabase.rpc('set_organisation_context', {\n      org_id: organisationId\n    });\n\n    const { error } = await Promise.race([rpcPromise, timeoutPromise]) as any;\n\n    if (error) {\n      // Function might not exist yet - this is expected during migration\n      // Silent fail - will fall back to client-side filtering\n      log.debug('RPC function not available or failed, continuing without database context');\n    } else {\n      log.debug('Organisation context set in database successfully');\n    }\n  } catch (error) {\n    // Handle any other errors gracefully\n    // Silent fail - will fall back to client-side filtering\n    log.debug('Failed to set database context, continuing without it:', error);\n  }\n}\n\n/**\n * Clear organisation context from the database session\n * \n * @param supabase - Supabase client instance\n * @returns Promise that resolves when context is cleared\n */\nexport async function clearOrganisationContext(\n  supabase: SupabaseClient\n): Promise<void> {\n  if (!supabase) {\n    // TODO: Replace with proper logging service integration\n    return;\n  }\n\n  try {\n    const { error } = await supabase.rpc('rbac_audit_log', {\n      p_event_type: 'organisation_switched',\n      p_metadata: { action: 'clear_context' }\n    });\n    \n    if (error) {\n      // Silent fail - function not available\n      // TODO: Replace with proper logging service integration\n    } else {\n      // TODO: Replace with proper logging service integration\n    }\n  } catch (error) {\n    // Silent fail - error occurred\n    // TODO: Replace with proper logging service integration\n  }\n}\n\n/**\n * Get current organisation context from the database session\n * \n * @param supabase - Supabase client instance\n * @returns Promise that resolves to the current organisation ID or null\n */\nexport async function getOrganisationContext(\n  supabase: SupabaseClient\n): Promise<string | null> {\n  if (!supabase) {\n    // TODO: Replace with proper logging service integration\n    return null;\n  }\n\n  try {\n    // For now, return null since we're not using database context\n    // This will be replaced with proper context management\n    const data = null;\n    const error = null;\n    \n    if (error) {\n      // TODO: Replace with proper logging service integration\n      return null;\n    }\n    \n    // Validate that data is a string (allow empty strings)\n    if (typeof data === 'string') {\n      return data;\n    }\n    \n    // Return null for invalid data formats\n    return null;\n  } catch (error) {\n    // TODO: Replace with proper logging service integration\n    return null;\n  }\n}\n\n/**\n * Check if organisation context functions are available in the database\n * \n * @param supabase - Supabase client instance\n * @returns Promise that resolves to true if functions are available\n */\nexport async function isOrganisationContextAvailable(\n  supabase: SupabaseClient\n): Promise<boolean> {\n  if (!supabase) {\n    return false;\n  }\n\n  try {\n    const { error } = await supabase.rpc('get_organisation_context');\n    \n    if (error) {\n      return false;\n    }\n    \n    return true;\n  } catch (error) {\n    return false;\n  }\n} ","\n/**\n * @file Secure Storage Utilities\n * @description Encrypted storage wrapper for sensitive data\n */\n\nexport interface SecureStorageOptions {\n  encrypt?: boolean;\n  expiry?: number; // TTL in milliseconds\n}\n\n/**\n * Secure storage implementation with encryption support\n */\nclass SecureStorageImpl {\n  private encryptionKey: CryptoKey | null = null;\n  private initialized = false;\n\n  /**\n   * Initialize secure storage with encryption\n   */\n  async init(): Promise<void> {\n    if (this.initialized) return;\n\n    try {\n      // Check if Web Crypto API is available\n      if (window.crypto && window.crypto.subtle) {\n        // Generate or retrieve encryption key\n        const keyData = localStorage.getItem('_sec_key');\n        if (keyData) {\n          try {\n            const keyBuffer = this.base64ToArrayBuffer(keyData);\n            this.encryptionKey = await window.crypto.subtle.importKey(\n              'raw',\n              keyBuffer,\n              { name: 'AES-GCM' },\n              false,\n              ['encrypt', 'decrypt']\n            );\n          } catch (error) {\n            await this.generateNewKey();\n          }\n        } else {\n          await this.generateNewKey();\n        }\n      }\n      this.initialized = true;\n    } catch (error) {\n      this.initialized = true;\n    }\n  }\n\n  /**\n   * Store item securely\n   */\n  async setItem(\n    key: string,\n    value: string,\n    options: SecureStorageOptions = {}\n  ): Promise<void> {\n    await this.init();\n\n    const data = {\n      value,\n      timestamp: Date.now(),\n      expiry: options.expiry ? Date.now() + options.expiry : undefined,\n    };\n\n    const serialized = JSON.stringify(data);\n    \n    if (options.encrypt && this.encryptionKey) {\n      try {\n        const encrypted = await this.encrypt(serialized);\n        localStorage.setItem(`_sec_${key}`, encrypted);\n        return;\n      } catch (error) {\n        // Silent fail - store as plain text\n      }\n    }\n\n    localStorage.setItem(key, serialized);\n  }\n\n  /**\n   * Retrieve item securely\n   */\n  async getItem(key: string): Promise<string | null> {\n    await this.init();\n\n    // Try encrypted storage first\n    const encryptedData = localStorage.getItem(`_sec_${key}`);\n    if (encryptedData && this.encryptionKey) {\n      try {\n        const decrypted = await this.decrypt(encryptedData);\n        const parsed = JSON.parse(decrypted);\n        \n        // Check expiry\n        if (parsed.expiry && Date.now() > parsed.expiry) {\n          await this.removeItem(key);\n          return null;\n        }\n        \n        return parsed.value;\n      } catch (error) {\n        // Silent fail - try plain storage\n      }\n    }\n\n    // Fallback to plain storage\n    const plainData = localStorage.getItem(key);\n    if (!plainData) return null;\n\n    try {\n      const parsed = JSON.parse(plainData);\n      \n      // Check expiry\n      if (parsed.expiry && Date.now() > parsed.expiry) {\n        await this.removeItem(key);\n        return null;\n      }\n      \n      return parsed.value || plainData;\n    } catch (error) {\n      // If parsing fails, return as-is (backward compatibility)\n      return plainData;\n    }\n  }\n\n  /**\n   * Remove item\n   */\n  async removeItem(key: string): Promise<void> {\n    localStorage.removeItem(key);\n    localStorage.removeItem(`_sec_${key}`);\n  }\n\n  /**\n   * Clear all secure storage\n   */\n  async clear(): Promise<void> {\n    const keys = Object.keys(localStorage);\n    for (const key of keys) {\n      if (key.startsWith('_sec_')) {\n        localStorage.removeItem(key);\n      }\n    }\n  }\n\n  /**\n   * Generate new encryption key\n   */\n  private async generateNewKey(): Promise<void> {\n    if (!window.crypto?.subtle) return;\n\n    try {\n      this.encryptionKey = await window.crypto.subtle.generateKey(\n        { name: 'AES-GCM', length: 256 },\n        true,\n        ['encrypt', 'decrypt']\n      );\n\n      // Export and store key\n      const exportedKey = await window.crypto.subtle.exportKey('raw', this.encryptionKey);\n      const keyData = this.arrayBufferToBase64(exportedKey);\n      localStorage.setItem('_sec_key', keyData);\n    } catch (error) {\n      // Silent fail - encryption not available\n    }\n  }\n\n  /**\n   * Encrypt data\n   */\n  private async encrypt(data: string): Promise<string> {\n    if (!this.encryptionKey || !window.crypto?.subtle) {\n      throw new Error('Encryption not available');\n    }\n\n    const encoder = new TextEncoder();\n    const dataBuffer = encoder.encode(data);\n    const iv = window.crypto.getRandomValues(new Uint8Array(12));\n\n    const encrypted = await window.crypto.subtle.encrypt(\n      { name: 'AES-GCM', iv },\n      this.encryptionKey,\n      dataBuffer\n    );\n\n    // Combine IV and encrypted data\n    const combined = new Uint8Array(iv.length + encrypted.byteLength);\n    combined.set(iv);\n    combined.set(new Uint8Array(encrypted), iv.length);\n\n    return this.arrayBufferToBase64(combined.buffer);\n  }\n\n  /**\n   * Decrypt data\n   */\n  private async decrypt(encryptedData: string): Promise<string> {\n    if (!this.encryptionKey || !window.crypto?.subtle) {\n      throw new Error('Decryption not available');\n    }\n\n    const combined = this.base64ToArrayBuffer(encryptedData);\n    const iv = combined.slice(0, 12);\n    const encrypted = combined.slice(12);\n\n    const decrypted = await window.crypto.subtle.decrypt(\n      { name: 'AES-GCM', iv },\n      this.encryptionKey,\n      encrypted\n    );\n\n    const decoder = new TextDecoder();\n    return decoder.decode(decrypted);\n  }\n\n  /**\n   * Convert ArrayBuffer to base64\n   */\n  private arrayBufferToBase64(buffer: ArrayBuffer): string {\n    const bytes = new Uint8Array(buffer);\n    let binary = '';\n    for (let i = 0; i < bytes.byteLength; i++) {\n      binary += String.fromCharCode(bytes[i]);\n    }\n    return btoa(binary);\n  }\n\n  /**\n   * Convert base64 to ArrayBuffer\n   */\n  private base64ToArrayBuffer(base64: string): ArrayBuffer {\n    const binary = atob(base64);\n    const bytes = new Uint8Array(binary.length);\n    for (let i = 0; i < binary.length; i++) {\n      bytes[i] = binary.charCodeAt(i);\n    }\n    return bytes.buffer;\n  }\n}\n\nexport const secureStorage = new SecureStorageImpl();\n"],"mappings":";;;;;AAaA,IAAM,MAAM,aAAa,qBAAqB;AAY9C,eAAsB,uBACpB,UACA,gBACe;AACf,MAAI,CAAC,YAAY,CAAC,gBAAgB;AAEhC;AAAA,EACF;AAEA,MAAI;AAEF,UAAM,iBAAiB,IAAI,QAAQ,CAAC,GAAG,WAAW;AAChD,iBAAW,MAAM,OAAO,IAAI,MAAM,6BAA6B,CAAC,GAAG,GAAI;AAAA,IACzE,CAAC;AAGD,UAAM,aAAa,SAAS,IAAI,4BAA4B;AAAA,MAC1D,QAAQ;AAAA,IACV,CAAC;AAED,UAAM,EAAE,MAAM,IAAI,MAAM,QAAQ,KAAK,CAAC,YAAY,cAAc,CAAC;AAEjE,QAAI,OAAO;AAGT,UAAI,MAAM,2EAA2E;AAAA,IACvF,OAAO;AACL,UAAI,MAAM,mDAAmD;AAAA,IAC/D;AAAA,EACF,SAAS,OAAO;AAGd,QAAI,MAAM,0DAA0D,KAAK;AAAA,EAC3E;AACF;AAQA,eAAsB,yBACpB,UACe;AACf,MAAI,CAAC,UAAU;AAEb;AAAA,EACF;AAEA,MAAI;AACF,UAAM,EAAE,MAAM,IAAI,MAAM,SAAS,IAAI,kBAAkB;AAAA,MACrD,cAAc;AAAA,MACd,YAAY,EAAE,QAAQ,gBAAgB;AAAA,IACxC,CAAC;AAED,QAAI,OAAO;AAAA,IAGX,OAAO;AAAA,IAEP;AAAA,EACF,SAAS,OAAO;AAAA,EAGhB;AACF;AAQA,eAAsB,uBACpB,UACwB;AACxB,MAAI,CAAC,UAAU;AAEb,WAAO;AAAA,EACT;AAEA,MAAI;AAGF,UAAM,OAAO;AACb,UAAM,QAAQ;AAEd,QAAI,OAAO;AAET,aAAO;AAAA,IACT;AAGA,QAAI,OAAO,SAAS,UAAU;AAC5B,aAAO;AAAA,IACT;AAGA,WAAO;AAAA,EACT,SAAS,OAAO;AAEd,WAAO;AAAA,EACT;AACF;AAQA,eAAsB,+BACpB,UACkB;AAClB,MAAI,CAAC,UAAU;AACb,WAAO;AAAA,EACT;AAEA,MAAI;AACF,UAAM,EAAE,MAAM,IAAI,MAAM,SAAS,IAAI,0BAA0B;AAE/D,QAAI,OAAO;AACT,aAAO;AAAA,IACT;AAEA,WAAO;AAAA,EACT,SAAS,OAAO;AACd,WAAO;AAAA,EACT;AACF;;;AC7IA,IAAM,oBAAN,MAAwB;AAAA,EAAxB;AACE,SAAQ,gBAAkC;AAC1C,SAAQ,cAAc;AAAA;AAAA;AAAA;AAAA;AAAA,EAKtB,MAAM,OAAsB;AAC1B,QAAI,KAAK,YAAa;AAEtB,QAAI;AAEF,UAAI,OAAO,UAAU,OAAO,OAAO,QAAQ;AAEzC,cAAM,UAAU,aAAa,QAAQ,UAAU;AAC/C,YAAI,SAAS;AACX,cAAI;AACF,kBAAM,YAAY,KAAK,oBAAoB,OAAO;AAClD,iBAAK,gBAAgB,MAAM,OAAO,OAAO,OAAO;AAAA,cAC9C;AAAA,cACA;AAAA,cACA,EAAE,MAAM,UAAU;AAAA,cAClB;AAAA,cACA,CAAC,WAAW,SAAS;AAAA,YACvB;AAAA,UACF,SAAS,OAAO;AACd,kBAAM,KAAK,eAAe;AAAA,UAC5B;AAAA,QACF,OAAO;AACL,gBAAM,KAAK,eAAe;AAAA,QAC5B;AAAA,MACF;AACA,WAAK,cAAc;AAAA,IACrB,SAAS,OAAO;AACd,WAAK,cAAc;AAAA,IACrB;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,QACJ,KACA,OACA,UAAgC,CAAC,GAClB;AACf,UAAM,KAAK,KAAK;AAEhB,UAAM,OAAO;AAAA,MACX;AAAA,MACA,WAAW,KAAK,IAAI;AAAA,MACpB,QAAQ,QAAQ,SAAS,KAAK,IAAI,IAAI,QAAQ,SAAS;AAAA,IACzD;AAEA,UAAM,aAAa,KAAK,UAAU,IAAI;AAEtC,QAAI,QAAQ,WAAW,KAAK,eAAe;AACzC,UAAI;AACF,cAAM,YAAY,MAAM,KAAK,QAAQ,UAAU;AAC/C,qBAAa,QAAQ,QAAQ,GAAG,IAAI,SAAS;AAC7C;AAAA,MACF,SAAS,OAAO;AAAA,MAEhB;AAAA,IACF;AAEA,iBAAa,QAAQ,KAAK,UAAU;AAAA,EACtC;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,QAAQ,KAAqC;AACjD,UAAM,KAAK,KAAK;AAGhB,UAAM,gBAAgB,aAAa,QAAQ,QAAQ,GAAG,EAAE;AACxD,QAAI,iBAAiB,KAAK,eAAe;AACvC,UAAI;AACF,cAAM,YAAY,MAAM,KAAK,QAAQ,aAAa;AAClD,cAAM,SAAS,KAAK,MAAM,SAAS;AAGnC,YAAI,OAAO,UAAU,KAAK,IAAI,IAAI,OAAO,QAAQ;AAC/C,gBAAM,KAAK,WAAW,GAAG;AACzB,iBAAO;AAAA,QACT;AAEA,eAAO,OAAO;AAAA,MAChB,SAAS,OAAO;AAAA,MAEhB;AAAA,IACF;AAGA,UAAM,YAAY,aAAa,QAAQ,GAAG;AAC1C,QAAI,CAAC,UAAW,QAAO;AAEvB,QAAI;AACF,YAAM,SAAS,KAAK,MAAM,SAAS;AAGnC,UAAI,OAAO,UAAU,KAAK,IAAI,IAAI,OAAO,QAAQ;AAC/C,cAAM,KAAK,WAAW,GAAG;AACzB,eAAO;AAAA,MACT;AAEA,aAAO,OAAO,SAAS;AAAA,IACzB,SAAS,OAAO;AAEd,aAAO;AAAA,IACT;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,WAAW,KAA4B;AAC3C,iBAAa,WAAW,GAAG;AAC3B,iBAAa,WAAW,QAAQ,GAAG,EAAE;AAAA,EACvC;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,QAAuB;AAC3B,UAAM,OAAO,OAAO,KAAK,YAAY;AACrC,eAAW,OAAO,MAAM;AACtB,UAAI,IAAI,WAAW,OAAO,GAAG;AAC3B,qBAAa,WAAW,GAAG;AAAA,MAC7B;AAAA,IACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAc,iBAAgC;AAC5C,QAAI,CAAC,OAAO,QAAQ,OAAQ;AAE5B,QAAI;AACF,WAAK,gBAAgB,MAAM,OAAO,OAAO,OAAO;AAAA,QAC9C,EAAE,MAAM,WAAW,QAAQ,IAAI;AAAA,QAC/B;AAAA,QACA,CAAC,WAAW,SAAS;AAAA,MACvB;AAGA,YAAM,cAAc,MAAM,OAAO,OAAO,OAAO,UAAU,OAAO,KAAK,aAAa;AAClF,YAAM,UAAU,KAAK,oBAAoB,WAAW;AACpD,mBAAa,QAAQ,YAAY,OAAO;AAAA,IAC1C,SAAS,OAAO;AAAA,IAEhB;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAc,QAAQ,MAA+B;AACnD,QAAI,CAAC,KAAK,iBAAiB,CAAC,OAAO,QAAQ,QAAQ;AACjD,YAAM,IAAI,MAAM,0BAA0B;AAAA,IAC5C;AAEA,UAAM,UAAU,IAAI,YAAY;AAChC,UAAM,aAAa,QAAQ,OAAO,IAAI;AACtC,UAAM,KAAK,OAAO,OAAO,gBAAgB,IAAI,WAAW,EAAE,CAAC;AAE3D,UAAM,YAAY,MAAM,OAAO,OAAO,OAAO;AAAA,MAC3C,EAAE,MAAM,WAAW,GAAG;AAAA,MACtB,KAAK;AAAA,MACL;AAAA,IACF;AAGA,UAAM,WAAW,IAAI,WAAW,GAAG,SAAS,UAAU,UAAU;AAChE,aAAS,IAAI,EAAE;AACf,aAAS,IAAI,IAAI,WAAW,SAAS,GAAG,GAAG,MAAM;AAEjD,WAAO,KAAK,oBAAoB,SAAS,MAAM;AAAA,EACjD;AAAA;AAAA;AAAA;AAAA,EAKA,MAAc,QAAQ,eAAwC;AAC5D,QAAI,CAAC,KAAK,iBAAiB,CAAC,OAAO,QAAQ,QAAQ;AACjD,YAAM,IAAI,MAAM,0BAA0B;AAAA,IAC5C;AAEA,UAAM,WAAW,KAAK,oBAAoB,aAAa;AACvD,UAAM,KAAK,SAAS,MAAM,GAAG,EAAE;AAC/B,UAAM,YAAY,SAAS,MAAM,EAAE;AAEnC,UAAM,YAAY,MAAM,OAAO,OAAO,OAAO;AAAA,MAC3C,EAAE,MAAM,WAAW,GAAG;AAAA,MACtB,KAAK;AAAA,MACL;AAAA,IACF;AAEA,UAAM,UAAU,IAAI,YAAY;AAChC,WAAO,QAAQ,OAAO,SAAS;AAAA,EACjC;AAAA;AAAA;AAAA;AAAA,EAKQ,oBAAoB,QAA6B;AACvD,UAAM,QAAQ,IAAI,WAAW,MAAM;AACnC,QAAI,SAAS;AACb,aAAS,IAAI,GAAG,IAAI,MAAM,YAAY,KAAK;AACzC,gBAAU,OAAO,aAAa,MAAM,CAAC,CAAC;AAAA,IACxC;AACA,WAAO,KAAK,MAAM;AAAA,EACpB;AAAA;AAAA;AAAA;AAAA,EAKQ,oBAAoB,QAA6B;AACvD,UAAM,SAAS,KAAK,MAAM;AAC1B,UAAM,QAAQ,IAAI,WAAW,OAAO,MAAM;AAC1C,aAAS,IAAI,GAAG,IAAI,OAAO,QAAQ,KAAK;AACtC,YAAM,CAAC,IAAI,OAAO,WAAW,CAAC;AAAA,IAChC;AACA,WAAO,MAAM;AAAA,EACf;AACF;AAEO,IAAM,gBAAgB,IAAI,kBAAkB;","names":[]}

package/dist/chunk-ZSAAAMVR.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../src/types/file-reference.ts"],"sourcesContent":["// File Reference System Types\n// These types define the structure for the centralized file reference system\n\nimport type { AppId } from './core';\n\nexport interface FileReference {\n  id: string;\n  table_name: string;\n  record_id: string;\n  file_path: string;\n  file_metadata: FileMetadata;\n  organisation_id: string | null; // Nullable for user-scoped files (e.g., profile photos)\n  app_id: AppId;\n  is_public: boolean;\n  created_at: string;\n  updated_at: string;\n}\n\nexport interface FileMetadata {\n  fileName: string;\n  fileType: string;\n  fileSize?: number;\n  width?: number;\n  height?: number;\n  category: FileCategory;\n  hash?: string;\n  uploadedBy?: string;\n  uploadedAt?: string;\n  tags?: string[];\n  customMetadata?: Record<string, unknown>;\n}\n\nexport enum FileCategory {\n  PROFILE_PHOTOS = 'profile_photos',\n  ID_DOCUMENTS = 'id_documents',\n  QUALIFICATIONS = 'qualifications',\n  MEDICAL_DOCUMENTS = 'medical_documents',\n  DISH_IMAGES = 'dish_images',\n  EVENT_LOGOS = 'event_logos',\n  GENERAL_DOCUMENTS = 'general_documents',\n  IMAGES = 'images',\n  AUDIO = 'audio',\n  VIDEO = 'video',\n  ARCHIVES = 'archives',\n  // CAKE-specific categories\n  CAKE_DISH = 'cake_dish',\n  // TRAC-specific categories\n  TRAC_ACCOMMODATION = 'trac_accommodation',\n  TRAC_ACTIVITY = 'trac_activity',\n  TRAC_JOURNAL = 'trac_journal',\n  TRAC_TRANSPORT = 'trac_transport'\n}\n\n/**\n * Options for uploading a file with a file reference\n * @property pageContext - The page context where the file upload occurs (e.g., 'configuration', 'forms', 'applications')\n *                          Used for context-aware permission checks. Required to check appropriate page-level permissions.\n * @property event_id - Optional event ID for event-scoped permission checks. Required for event-based apps.\n * @property organisation_id - Optional organisation ID. If not provided, the file is user-owned (record_id must match user_id).\n *                              For user-owned files, users can only access their own files.\n */\nexport interface FileUploadOptions {\n  table_name: string;\n  record_id: string;\n  organisation_id: string | null; // Nullable for user-scoped files (e.g., profile photos)\n  app_id: AppId;\n  category: FileCategory;\n  folder: string; // Folder name in storage bucket (e.g., 'profile_photos', 'documents')\n  pageContext: string;\n  event_id?: string;\n  is_public?: boolean;\n  custom_metadata?: Record<string, unknown>;\n  userId?: string; // Optional userId for user-scoped files\n}\n\n\nexport interface FileReferenceService {\n  createFileReference(options: FileUploadOptions, file: File): Promise<FileReference>;\n  getFileReference(table_name: string, record_id: string, organisation_id?: string): Promise<FileReference | null>;\n  getFileReferenceById(id: string, organisation_id?: string): Promise<FileReference | null>;\n  getFileUrl(table_name: string, record_id: string, organisation_id?: string): Promise<string | null>;\n  getSignedUrl(table_name: string, record_id: string, organisation_id?: string, expires_in?: number): Promise<string | null>;\n  updateFileReference(id: string, updates: Partial<FileReference>): Promise<FileReference>;\n  deleteFileReference(table_name: string, record_id: string, organisation_id?: string, delete_file?: boolean): Promise<boolean>;\n  listFileReferences(table_name: string, record_id: string, organisation_id?: string): Promise<FileReference[]>;\n  getFilesByCategory(table_name: string, record_id: string, category: FileCategory, organisation_id?: string): Promise<FileReference[]>;\n  getFileCount(table_name: string, record_id: string, organisation_id?: string): Promise<number>;\n  uploadMultipleFiles(options: FileUploadOptions, files: File[]): Promise<BulkUploadResult>;\n}\n\nexport interface StorageUploadOptions {\n  orgId: string;\n  isPublic?: boolean;\n  customPath?: string;\n}\n\nexport interface FileUploadResult {\n  file_reference: FileReference;\n  file_url: string;\n  signed_url?: string;\n}\n\n/**\n * File reference with pre-fetched URL\n * Useful for display components that need both metadata and URL\n */\nexport interface FileReferenceWithUrl extends FileReference {\n  url: string;\n  isSignedUrl: boolean;\n  expiresAt?: Date;\n}\n\n/**\n * Upload progress information\n */\nexport interface UploadProgress {\n  loaded: number;\n  total: number;\n  percentage: number;\n  fileName: string;\n  status: 'idle' | 'uploading' | 'processing' | 'completed' | 'error';\n  error?: string;\n}\n\n/**\n * Bulk upload result\n */\nexport interface BulkUploadResult {\n  /** Successfully created file references */\n  success: FileReference[];\n  /** Per-file failures with associated errors */\n  failed: { file: File; error: string }[];\n\n  // Optional aggregate fields for consumers that need totals\n  total?: number;\n  successful?: number;\n  results?: Array<{\n    file: File;\n    result: FileUploadResult | null;\n    error?: string;\n  }>;\n}\n\n/**\n * Bucket information for file storage\n */\nexport interface BucketInfo {\n  name: 'files' | 'public-files';\n  isPublic: boolean;\n  description: string;\n}\n\n/**\n * File URL information (public or signed)\n */\nexport interface FileUrlInfo {\n  url: string;\n  isPublic: boolean;\n  isSignedUrl: boolean;\n  expiresAt?: Date;\n  bucket: BucketInfo;\n}\n"],"mappings":";AAgCO,IAAK,eAAL,kBAAKA,kBAAL;AACL,EAAAA,cAAA,oBAAiB;AACjB,EAAAA,cAAA,kBAAe;AACf,EAAAA,cAAA,oBAAiB;AACjB,EAAAA,cAAA,uBAAoB;AACpB,EAAAA,cAAA,iBAAc;AACd,EAAAA,cAAA,iBAAc;AACd,EAAAA,cAAA,uBAAoB;AACpB,EAAAA,cAAA,YAAS;AACT,EAAAA,cAAA,WAAQ;AACR,EAAAA,cAAA,WAAQ;AACR,EAAAA,cAAA,cAAW;AAEX,EAAAA,cAAA,eAAY;AAEZ,EAAAA,cAAA,wBAAqB;AACrB,EAAAA,cAAA,mBAAgB;AAChB,EAAAA,cAAA,kBAAe;AACf,EAAAA,cAAA,oBAAiB;AAlBP,SAAAA;AAAA,GAAA;","names":["FileCategory"]}

package/dist/components.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../src/components/DateTimeField/DateTimeField.tsx","../src/components/DatePickerWithTimezone/DatePickerWithTimezone.tsx"],"sourcesContent":["/**\n * @file DateTimeField Component\n * @package @jmruthers/pace-core\n * @module Components/DateTimeField\n * @since 0.1.0\n *\n * Form input component for datetime values with timezone support.\n * Handles UTC ↔ timezone conversion automatically.\n *\n * Features:\n * - Automatic UTC ↔ timezone conversion\n * - Prevents unwanted conversions during user editing\n * - Shows timezone information below the input field when not UTC\n * - Supports both ISO string and Date object values\n * - Uses native datetime-local input type\n * - Accessible form field with proper labels\n *\n * @example\n * ```tsx\n * import { DateTimeField } from '@jmruthers/pace-core/components';\n * import { useState } from 'react';\n *\n * function EventForm() {\n *   const [startTime, setStartTime] = useState<string>();\n *\n *   return (\n *     <DateTimeField\n *       label=\"Start Time\"\n *       value={startTime}\n *       onChange={setStartTime}\n *       timezone=\"America/New_York\"\n *       required\n *     />\n *   );\n * }\n * ```\n *\n * @accessibility\n * - Proper label association with htmlFor\n * - Required field indicators\n * - Screen reader friendly\n * - Keyboard navigation support\n * - Focus management\n */\n\nimport * as React from 'react';\nimport { format, parse } from 'date-fns';\nimport { Label } from '../Label';\nimport { Input } from '../Input';\nimport { cn } from '../../utils/core/cn';\nimport { toZonedTime, fromZonedTime, getUserTimeZone } from '../../utils/timezone';\n\n/**\n * Props for the DateTimeField component\n */\nexport interface DateTimeFieldProps {\n  /**\n   * Field label\n   */\n  label: string;\n  /**\n   * UTC date value (ISO string, Date object, or undefined)\n   */\n  value: string | Date | undefined;\n  /**\n   * Change handler that receives UTC value (ISO string or Date object)\n   */\n  onChange: (value: string | Date | undefined) => void;\n  /**\n   * Target timezone for display (default: 'UTC')\n   */\n  timezone?: string;\n  /**\n   * Whether the field is required\n   */\n  required?: boolean;\n  /**\n   * Additional CSS classes\n   */\n  className?: string;\n  /**\n   * If true, onChange returns Date object instead of ISO string\n   */\n  returnAsDate?: boolean;\n  /**\n   * Input id (auto-generated if not provided)\n   */\n  id?: string;\n  /**\n   * Helper text to display below the label\n   */\n  helperText?: string;\n  /**\n   * Error message to display\n   */\n  error?: string;\n}\n\n/**\n * DateTimeField component\n * Form input for datetime values with automatic timezone conversion\n *\n * @param props - DateTimeField configuration\n * @returns JSX.Element - The rendered datetime field\n */\nexport function DateTimeField({\n  label,\n  value,\n  onChange,\n  timezone = 'UTC',\n  required = false,\n  className,\n  returnAsDate = false,\n  id,\n  helperText,\n  error\n}: DateTimeFieldProps) {\n  const [isEditing, setIsEditing] = React.useState(false);\n  const inputRef = React.useRef<HTMLInputElement>(null);\n  const fieldId = id || `datetime-field-${React.useId()}`;\n\n  // Convert UTC value to timezone for display\n  const getDisplayValue = React.useCallback((): string => {\n    if (!value) {\n      return '';\n    }\n\n    try {\n      let dateObj: Date;\n      if (typeof value === 'string') {\n        dateObj = new Date(value);\n      } else {\n        dateObj = value;\n      }\n\n      if (!dateObj || isNaN(dateObj.getTime())) {\n        return '';\n      }\n\n      // Convert UTC to timezone\n      const zonedDate = toZonedTime(dateObj, timezone);\n\n      // Format for datetime-local input (YYYY-MM-DDTHH:mm)\n      return format(zonedDate, \"yyyy-MM-dd'T'HH:mm\");\n    } catch {\n      return '';\n    }\n  }, [value, timezone]);\n\n  const displayValue = isEditing ? undefined : getDisplayValue();\n\n  // Handle input change\n  const handleChange = React.useCallback((e: React.ChangeEvent<HTMLInputElement>) => {\n    setIsEditing(true);\n    const inputValue = e.target.value;\n\n    if (!inputValue) {\n      onChange(undefined);\n      return;\n    }\n\n    try {\n      // Parse the datetime-local value (in timezone)\n      const localDate = parse(inputValue, \"yyyy-MM-dd'T'HH:mm\", new Date());\n\n      if (isNaN(localDate.getTime())) {\n        onChange(undefined);\n        return;\n      }\n\n      // Convert from timezone to UTC\n      const utcDate = fromZonedTime(localDate, timezone);\n\n      // Return as ISO string or Date object\n      if (returnAsDate) {\n        onChange(utcDate);\n      } else {\n        onChange(utcDate.toISOString());\n      }\n    } catch {\n      onChange(undefined);\n    }\n  }, [timezone, returnAsDate, onChange]);\n\n  // Handle blur to stop editing mode\n  const handleBlur = React.useCallback(() => {\n    setIsEditing(false);\n  }, []);\n\n  // Get timezone display text\n  const getTimezoneDisplay = React.useCallback((): string => {\n    if (timezone === 'UTC') {\n      return '';\n    }\n\n    const userTz = getUserTimeZone();\n    if (timezone === userTz) {\n      return 'Local';\n    }\n\n    return timezone;\n  }, [timezone]);\n\n  const timezoneDisplay = getTimezoneDisplay();\n\n  return (\n    <div className={cn('space-y-2', className)}>\n      <Label htmlFor={fieldId} required={required} helperText={helperText} error={error}>\n        {label}\n      </Label>\n      <Input\n        ref={inputRef}\n        id={fieldId}\n        type=\"datetime-local\"\n        value={displayValue}\n        onChange={handleChange}\n        onBlur={handleBlur}\n        required={required}\n        error={!!error}\n        className=\"w-full\"\n      />\n      {timezoneDisplay && !error && (\n        <p className=\"text-sm text-muted-foreground\">\n          {timezoneDisplay}\n        </p>\n      )}\n    </div>\n  );\n}\n\n","/**\n * @file DatePickerWithTimezone Component\n * @package @jmruthers/pace-core\n * @module Components/DatePickerWithTimezone\n * @since 0.1.0\n *\n * Date picker component that displays timezone information alongside the calendar.\n * Provides a calendar interface with timezone context for date selection.\n *\n * Features:\n * - Calendar date selection\n * - Timezone display (shows \"Local\" when matches user timezone)\n * - Optional \"Done\" button\n * - Accessible date selection\n * - Keyboard navigation support\n *\n * @example\n * ```tsx\n * import { DatePickerWithTimezone } from '@jmruthers/pace-core/components';\n * import { useState } from 'react';\n *\n * function DateSelector() {\n *   const [date, setDate] = useState<Date>();\n *\n *   return (\n *     <DatePickerWithTimezone\n *       selected={date}\n *       onSelect={setDate}\n *       timezone=\"America/New_York\"\n *       onDone={() => console.log('Date selected')}\n *     />\n *   );\n * }\n * ```\n *\n * @accessibility\n * - WCAG 2.1 AA compliant\n * - Keyboard navigation support\n * - Screen reader friendly\n * - Focus management\n * - Proper ARIA attributes\n */\n\nimport * as React from 'react';\nimport { Calendar } from '../Calendar';\nimport { Button } from '../Button';\nimport { Clock } from 'lucide-react';\nimport { getUserTimeZone } from '../../utils/timezone';\nimport { cn } from '../../utils/core/cn';\n\n/**\n * Props for the DatePickerWithTimezone component\n */\nexport interface DatePickerWithTimezoneProps {\n  /**\n   * Currently selected date\n   */\n  selected?: Date;\n  /**\n   * Date selection handler\n   */\n  onSelect: (date: Date | undefined) => void;\n  /**\n   * Optional callback when \"Done\" button is clicked\n   */\n  onDone?: () => void;\n  /**\n   * Timezone to display (defaults to user's timezone)\n   */\n  timezone?: string;\n  /**\n   * Additional CSS classes\n   */\n  className?: string;\n}\n\n/**\n * DatePickerWithTimezone component\n * Date picker with timezone information display\n *\n * @param props - DatePickerWithTimezone configuration\n * @returns JSX.Element - The rendered date picker with timezone\n */\nexport function DatePickerWithTimezone({\n  selected,\n  onSelect,\n  onDone,\n  timezone,\n  className\n}: DatePickerWithTimezoneProps) {\n  const userTimezone = getUserTimeZone();\n  const displayTimezone = timezone || userTimezone;\n  const timezoneDisplay = displayTimezone === userTimezone ? 'Local' : displayTimezone;\n\n  return (\n    <div className={cn('flex flex-col', className)}>\n      <div className=\"p-3\">\n        <Calendar\n          mode=\"single\"\n          selected={selected}\n          onSelect={onSelect}\n          initialFocus\n          captionLayout=\"dropdown\"\n          startMonth={new Date(1900, 0)}\n          endMonth={new Date(2100, 11)}\n          className=\"p-0\"\n        />\n      </div>\n\n      <div className=\"flex items-center justify-between border-t border-border px-3 py-2\">\n        <div className=\"flex items-center gap-2 text-sm text-muted-foreground\">\n          <Clock className=\"size-4\" aria-hidden=\"true\" />\n          <span>\n            Timezone: <span aria-label={`Timezone ${timezoneDisplay}`}>{timezoneDisplay}</span>\n          </span>\n        </div>\n        {onDone && (\n          <Button onClick={onDone} size=\"sm\" className=\"h-8\">\n            Done\n          </Button>\n        )}\n      </div>\n    </div>\n  );\n}\n\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA6CA,YAAY,WAAW;AACvB,SAAS,QAAQ,aAAa;AAgK1B,SACE,KADF;AArGG,SAAS,cAAc;AAAA,EAC5B;AAAA,EACA;AAAA,EACA;AAAA,EACA,WAAW;AAAA,EACX,WAAW;AAAA,EACX;AAAA,EACA,eAAe;AAAA,EACf;AAAA,EACA;AAAA,EACA;AACF,GAAuB;AACrB,QAAM,CAAC,WAAW,YAAY,IAAU,eAAS,KAAK;AACtD,QAAM,WAAiB,aAAyB,IAAI;AACpD,QAAM,UAAU,MAAM,kBAAwB,YAAM,CAAC;AAGrD,QAAM,kBAAwB,kBAAY,MAAc;AACtD,QAAI,CAAC,OAAO;AACV,aAAO;AAAA,IACT;AAEA,QAAI;AACF,UAAI;AACJ,UAAI,OAAO,UAAU,UAAU;AAC7B,kBAAU,IAAI,KAAK,KAAK;AAAA,MAC1B,OAAO;AACL,kBAAU;AAAA,MACZ;AAEA,UAAI,CAAC,WAAW,MAAM,QAAQ,QAAQ,CAAC,GAAG;AACxC,eAAO;AAAA,MACT;AAGA,YAAM,YAAY,YAAY,SAAS,QAAQ;AAG/C,aAAO,OAAO,WAAW,oBAAoB;AAAA,IAC/C,QAAQ;AACN,aAAO;AAAA,IACT;AAAA,EACF,GAAG,CAAC,OAAO,QAAQ,CAAC;AAEpB,QAAM,eAAe,YAAY,SAAY,gBAAgB;AAG7D,QAAM,eAAqB,kBAAY,CAAC,MAA2C;AACjF,iBAAa,IAAI;AACjB,UAAM,aAAa,EAAE,OAAO;AAE5B,QAAI,CAAC,YAAY;AACf,eAAS,MAAS;AAClB;AAAA,IACF;AAEA,QAAI;AAEF,YAAM,YAAY,MAAM,YAAY,sBAAsB,oBAAI,KAAK,CAAC;AAEpE,UAAI,MAAM,UAAU,QAAQ,CAAC,GAAG;AAC9B,iBAAS,MAAS;AAClB;AAAA,MACF;AAGA,YAAM,UAAU,cAAc,WAAW,QAAQ;AAGjD,UAAI,cAAc;AAChB,iBAAS,OAAO;AAAA,MAClB,OAAO;AACL,iBAAS,QAAQ,YAAY,CAAC;AAAA,MAChC;AAAA,IACF,QAAQ;AACN,eAAS,MAAS;AAAA,IACpB;AAAA,EACF,GAAG,CAAC,UAAU,cAAc,QAAQ,CAAC;AAGrC,QAAM,aAAmB,kBAAY,MAAM;AACzC,iBAAa,KAAK;AAAA,EACpB,GAAG,CAAC,CAAC;AAGL,QAAM,qBAA2B,kBAAY,MAAc;AACzD,QAAI,aAAa,OAAO;AACtB,aAAO;AAAA,IACT;AAEA,UAAM,SAAS,gBAAgB;AAC/B,QAAI,aAAa,QAAQ;AACvB,aAAO;AAAA,IACT;AAEA,WAAO;AAAA,EACT,GAAG,CAAC,QAAQ,CAAC;AAEb,QAAM,kBAAkB,mBAAmB;AAE3C,SACE,qBAAC,SAAI,WAAW,GAAG,aAAa,SAAS,GACvC;AAAA,wBAAC,SAAM,SAAS,SAAS,UAAoB,YAAwB,OAClE,iBACH;AAAA,IACA;AAAA,MAAC;AAAA;AAAA,QACC,KAAK;AAAA,QACL,IAAI;AAAA,QACJ,MAAK;AAAA,QACL,OAAO;AAAA,QACP,UAAU;AAAA,QACV,QAAQ;AAAA,QACR;AAAA,QACA,OAAO,CAAC,CAAC;AAAA,QACT,WAAU;AAAA;AAAA,IACZ;AAAA,IACC,mBAAmB,CAAC,SACnB,oBAAC,OAAE,WAAU,iCACV,2BACH;AAAA,KAEJ;AAEJ;;;ACtLA,SAAS,aAAa;AAmDd,gBAAAA,MAeE,QAAAC,aAfF;AAdD,SAAS,uBAAuB;AAAA,EACrC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF,GAAgC;AAC9B,QAAM,eAAe,gBAAgB;AACrC,QAAM,kBAAkB,YAAY;AACpC,QAAM,kBAAkB,oBAAoB,eAAe,UAAU;AAErE,SACE,gBAAAA,MAAC,SAAI,WAAW,GAAG,iBAAiB,SAAS,GAC3C;AAAA,oBAAAD,KAAC,SAAI,WAAU,OACb,0BAAAA;AAAA,MAAC;AAAA;AAAA,QACC,MAAK;AAAA,QACL;AAAA,QACA;AAAA,QACA,cAAY;AAAA,QACZ,eAAc;AAAA,QACd,YAAY,IAAI,KAAK,MAAM,CAAC;AAAA,QAC5B,UAAU,IAAI,KAAK,MAAM,EAAE;AAAA,QAC3B,WAAU;AAAA;AAAA,IACZ,GACF;AAAA,IAEA,gBAAAC,MAAC,SAAI,WAAU,sEACb;AAAA,sBAAAA,MAAC,SAAI,WAAU,yDACb;AAAA,wBAAAD,KAAC,SAAM,WAAU,UAAS,eAAY,QAAO;AAAA,QAC7C,gBAAAC,MAAC,UAAK;AAAA;AAAA,UACM,gBAAAD,KAAC,UAAK,cAAY,YAAY,eAAe,IAAK,2BAAgB;AAAA,WAC9E;AAAA,SACF;AAAA,MACC,UACC,gBAAAA,KAAC,UAAO,SAAS,QAAQ,MAAK,MAAK,WAAU,OAAM,kBAEnD;AAAA,OAEJ;AAAA,KACF;AAEJ;","names":["jsx","jsxs"]}

package/dist/contextValidator-5OGXSPKS.js

@@ -1,9 +0,0 @@
-import {
-  ContextValidator
-} from "./chunk-AFVQODI2.js";
-import "./chunk-PWLANIRT.js";
-import "./chunk-DGUM43GV.js";
-export {
-  ContextValidator
-};
-//# sourceMappingURL=contextValidator-5OGXSPKS.js.map

package/dist/contextValidator-5OGXSPKS.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":[],"sourcesContent":[],"mappings":"","names":[]}

package/dist/eslint-rules/pace-core-compliance.cjs

@@ -1,510 +0,0 @@
-/**
- * ESLint Rules for pace-core Compliance Enforcement
- * @package @jmruthers/pace-core
- * @module ESLintRules/pace-core-compliance
- * @since 1.0.0
- * 
- * This module provides ESLint rules to enforce pace-core usage patterns
- * and prevent consuming apps from creating local alternatives.
- */
-
-const fs = require('fs');
-const path = require('path');
-
-// Load manifest data
-let manifestData = null;
-try {
-  const manifestPath = path.join(__dirname, '../../core-usage-manifest.json');
-  if (fs.existsSync(manifestPath)) {
-    manifestData = JSON.parse(fs.readFileSync(manifestPath, 'utf8'));
-  }
-} catch (error) {
-  // If manifest can't be loaded, rules will use hardcoded defaults
-  console.warn('Warning: Could not load core-usage-manifest.json, using defaults');
-}
-
-// Get restricted imports from manifest or use defaults
-const getRestrictedImports = () => {
-  if (manifestData && manifestData.restrictedImports) {
-    return manifestData.restrictedImports;
-  }
-  // Fallback defaults
-  return [
-    { module: '@radix-ui/react-avatar', reason: 'Use Avatar component from pace-core instead' },
-    { module: '@radix-ui/react-checkbox', reason: 'Use Checkbox component from pace-core instead' },
-    { module: '@radix-ui/react-dialog', reason: 'Use Dialog component from pace-core instead' },
-    { module: '@radix-ui/react-label', reason: 'Use Label component from pace-core instead' },
-    { module: '@radix-ui/react-slot', reason: 'Use Button component from pace-core which handles slot composition' },
-    { module: '@radix-ui/react-switch', reason: 'Use Switch component from pace-core instead' },
-    { module: '@radix-ui/react-tabs', reason: 'Use Tabs component from pace-core instead' },
-    { module: '@radix-ui/react-toast', reason: 'Use Toast component and useToast hook from pace-core instead' },
-    { module: '@radix-ui/react-tooltip', reason: 'Use Tooltip component from pace-core instead' },
-    { module: 'react-day-picker', reason: 'Use Calendar component from pace-core instead' },
-    { module: '@tanstack/react-table', reason: 'Use DataTable component and related hooks from pace-core instead. DataTable wraps and standardizes table functionality' },
-    { module: 'react-hook-form', reason: 'Use Form component and useZodForm hook from pace-core instead' },
-    { module: 'zod', reason: 'Use validation utilities and schemas from pace-core instead. pace-core provides standardized validation helpers' }
-  ];
-};
-
-// Get pace-core components from manifest or use defaults
-const getPaceCoreComponents = () => {
-  if (manifestData && manifestData.components) {
-    return manifestData.components;
-  }
-  return ['Button', 'Card', 'Dialog', 'Input', 'Form', 'Select', 'Alert', 'Badge', 'Checkbox', 'Switch', 'Textarea', 'Label', 'Table', 'DataTable', 'Toast', 'Tooltip', 'Tabs', 'Calendar', 'Avatar', 'Progress'];
-};
-
-// Get pace-core hooks from manifest or use defaults
-const getPaceCoreHooks = () => {
-  if (manifestData && manifestData.hooks) {
-    return manifestData.hooks;
-  }
-  return ['useToast', 'useDebounce', 'useUnifiedAuth', 'useEvents', 'useOrganisations', 'useFileReference', 'useStorage', 'useZodForm', 'useRBAC', 'usePermissions'];
-};
-
-// Get pace-core utils from manifest or use defaults
-const getPaceCoreUtils = () => {
-  if (manifestData && manifestData.utils) {
-    return manifestData.utils;
-  }
-  return ['formatDate', 'formatCurrency', 'formatNumber', 'formatTime', 'formatDateTime', 'cn', 'validateUserInput', 'sanitizeUserInput', 'hasPermission', 'getAppConfig'];
-};
-
-module.exports = {
-  rules: {
-    /**
-     * Block direct imports of libraries wrapped by pace-core
-     */
-    'no-restricted-imports': {
-      meta: {
-        type: 'problem',
-        docs: {
-          description: 'Disallow direct imports of libraries that pace-core wraps',
-          category: 'Best Practices',
-          recommended: true
-        },
-        fixable: 'code',
-        hasSuggestions: true,
-        messages: {
-          restrictedImport: '{{message}} Import from {{alternative}} instead.',
-          restrictedImportWithReason: '{{message}} {{reason}}'
-        }
-      },
-      create(context) {
-        const restrictedImports = getRestrictedImports();
-        const restrictedModules = restrictedImports.map(imp => imp.module);
-        
-        // Also catch @radix-ui/* patterns
-        const radixPattern = /^@radix-ui\//;
-        
-        return {
-          ImportDeclaration(node) {
-            const importSource = node.source.value;
-            
-            // Check exact matches
-            const restricted = restrictedImports.find(imp => imp.module === importSource);
-            if (restricted) {
-              context.report({
-                node: node.source,
-                messageId: 'restrictedImportWithReason',
-                data: {
-                  message: `Direct import of '${importSource}' is not allowed.`,
-                  reason: restricted.reason
-                },
-                suggest: [{
-                  desc: `Use pace-core alternative: ${restricted.reason}`,
-                  fix(fixer) {
-                    // Suggest importing from pace-core instead
-                    const paceCoreAlternative = getPaceCoreAlternative(importSource);
-                    if (paceCoreAlternative) {
-                      return fixer.replaceText(
-                        node.source,
-                        `'@jmruthers/pace-core${paceCoreAlternative}'`
-                      );
-                    }
-                    return null;
-                  }
-                }]
-              });
-              return;
-            }
-            
-            // Check @radix-ui/* pattern
-            if (radixPattern.test(importSource) && !restrictedModules.includes(importSource)) {
-              context.report({
-                node: node.source,
-                messageId: 'restrictedImport',
-                data: {
-                  message: `Direct import of '${importSource}' is not allowed.`,
-                  alternative: '@jmruthers/pace-core'
-                },
-                suggest: [{
-                  desc: 'Use pace-core component instead',
-                  fix(fixer) {
-                    return fixer.replaceText(
-                      node.source,
-                      "'@jmruthers/pace-core'"
-                    );
-                  }
-                }]
-              });
-            }
-          }
-        };
-      }
-    },
-
-    /**
-     * Prefer pace-core components over native HTML elements or custom implementations
-     */
-    'prefer-pace-core-components': {
-      meta: {
-        type: 'suggestion',
-        docs: {
-          description: 'Suggest using pace-core components instead of native HTML elements',
-          category: 'Best Practices',
-          recommended: true
-        },
-        hasSuggestions: true,
-        messages: {
-          preferButton: "Use 'Button' component from '@jmruthers/pace-core' instead of <button>",
-          preferInput: "Use 'Input' component from '@jmruthers/pace-core' instead of <input>",
-          preferTextarea: "Use 'Textarea' component from '@jmruthers/pace-core' instead of <textarea>",
-          preferLabel: "Use 'Label' component from '@jmruthers/pace-core' instead of <label>",
-          preferForm: "Use 'Form' component from '@jmruthers/pace-core' instead of custom form implementation"
-        }
-      },
-      create(context) {
-        const paceCoreComponents = getPaceCoreComponents();
-        
-        return {
-          JSXOpeningElement(node) {
-            const elementName = node.name.name;
-            
-            if (!elementName) return;
-            
-            // Check for native HTML elements that have pace-core alternatives
-            const nativeToPaceCore = {
-              'button': 'Button',
-              'input': 'Input',
-              'textarea': 'Textarea',
-              'label': 'Label'
-            };
-            
-            if (nativeToPaceCore[elementName.toLowerCase()]) {
-              const paceCoreComponent = nativeToPaceCore[elementName.toLowerCase()];
-              if (paceCoreComponents.includes(paceCoreComponent)) {
-                context.report({
-                  node,
-                  messageId: `prefer${paceCoreComponent}`,
-                  suggest: [{
-                    desc: `Import and use ${paceCoreComponent} from pace-core`,
-                    fix(fixer) {
-                      // This is a complex fix, so we'll just report
-                      return null;
-                    }
-                  }]
-                });
-              }
-            }
-          }
-        };
-      }
-    },
-
-    /**
-     * Detect custom hooks that duplicate pace-core functionality
-     */
-    'prefer-pace-core-hooks': {
-      meta: {
-        type: 'suggestion',
-        docs: {
-          description: 'Suggest using pace-core hooks instead of custom implementations',
-          category: 'Best Practices',
-          recommended: true
-        },
-        messages: {
-          preferPaceCoreHook: "Consider using '{{hook}}' from '@jmruthers/pace-core' instead of custom hook '{{customHook}}'"
-        }
-      },
-      create(context) {
-        const paceCoreHooks = getPaceCoreHooks();
-        const hookPatterns = {
-          'useToast': ['useToast', 'useNotification', 'useSnackbar'],
-          'useDebounce': ['useDebounce', 'useDebounced'],
-          'useAuth': ['useAuth', 'useAuthentication', 'useUser'],
-          'useFile': ['useFile', 'useFileUpload', 'useFileReference'],
-          'useForm': ['useForm', 'useZodForm'],
-          'useTable': ['useTable', 'useDataTable']
-        };
-        
-        return {
-          FunctionDeclaration(node) {
-            const functionName = node.id?.name;
-            if (!functionName || !functionName.startsWith('use')) return;
-            
-            // Check if this looks like a hook that pace-core provides
-            for (const [paceCoreHook, patterns] of Object.entries(hookPatterns)) {
-              if (paceCoreHooks.includes(paceCoreHook)) {
-                for (const pattern of patterns) {
-                  if (functionName.toLowerCase().includes(pattern.toLowerCase().replace('use', ''))) {
-                    context.report({
-                      node: node.id,
-                      messageId: 'preferPaceCoreHook',
-                      data: {
-                        hook: paceCoreHook,
-                        customHook: functionName
-                      }
-                    });
-                    return;
-                  }
-                }
-              }
-            }
-          }
-        };
-      }
-    },
-
-    /**
-     * Detect utility functions that duplicate pace-core functionality
-     */
-    'prefer-pace-core-utils': {
-      meta: {
-        type: 'suggestion',
-        docs: {
-          description: 'Suggest using pace-core utilities instead of custom implementations',
-          category: 'Best Practices',
-          recommended: true
-        },
-        messages: {
-          preferPaceCoreUtil: "Consider using '{{util}}' from '@jmruthers/pace-core' instead of custom function '{{customUtil}}'"
-        }
-      },
-      create(context) {
-        const paceCoreUtils = getPaceCoreUtils();
-        const utilPatterns = {
-          'formatDate': ['formatDate', 'formatDateTime', 'dateFormat'],
-          'formatCurrency': ['formatCurrency', 'formatMoney', 'currencyFormat'],
-          'formatNumber': ['formatNumber', 'numberFormat'],
-          'cn': ['cn', 'classNames', 'clsx', 'mergeClasses'],
-          'validateUserInput': ['validate', 'validateInput', 'validateUser'],
-          'sanitizeUserInput': ['sanitize', 'sanitizeInput', 'sanitizeUser']
-        };
-        
-        return {
-          FunctionDeclaration(node) {
-            const functionName = node.id?.name;
-            if (!functionName) return;
-            
-            // Check if this looks like a util that pace-core provides
-            for (const [paceCoreUtil, patterns] of Object.entries(utilPatterns)) {
-              if (paceCoreUtils.includes(paceCoreUtil)) {
-                for (const pattern of patterns) {
-                  if (functionName.toLowerCase().includes(pattern.toLowerCase())) {
-                    context.report({
-                      node: node.id,
-                      messageId: 'preferPaceCoreUtil',
-                      data: {
-                        util: paceCoreUtil,
-                        customUtil: functionName
-                      }
-                    });
-                    return;
-                  }
-                }
-              }
-            }
-          }
-        };
-      }
-    },
-
-    /**
-     * Detect component files with names matching pace-core components
-     */
-    'no-local-component-duplication': {
-      meta: {
-        type: 'problem',
-        docs: {
-          description: 'Disallow local components with names matching pace-core components',
-          category: 'Best Practices',
-          recommended: true
-        },
-        messages: {
-          duplicateComponent: "Component '{{componentName}}' conflicts with pace-core component. Use '@jmruthers/pace-core' instead of creating a local version."
-        }
-      },
-      create(context) {
-        const paceCoreComponents = getPaceCoreComponents();
-        const filename = context.getFilename();
-        
-        // Only check component files (components/, src/components/, etc.)
-        if (!filename.match(/(components|Components)\//)) {
-          return {};
-        }
-        
-        // Extract component name from filename
-        const basename = path.basename(filename, path.extname(filename));
-        const componentName = basename.replace(/\.(test|spec)$/, '');
-        
-        return {
-          Program(node) {
-            // Check if this file exports a component with a name matching pace-core
-            if (paceCoreComponents.includes(componentName)) {
-              // Check if file exports this component
-              const hasExport = node.body.some(stmt => {
-                if (stmt.type === 'ExportNamedDeclaration') {
-                  return stmt.declaration?.id?.name === componentName ||
-                         stmt.specifiers?.some(spec => spec.exported.name === componentName);
-                }
-                if (stmt.type === 'ExportDefaultDeclaration') {
-                  return stmt.declaration?.id?.name === componentName ||
-                         stmt.declaration?.name === componentName;
-                }
-                return false;
-              });
-              
-              if (hasExport) {
-                context.report({
-                  node,
-                  messageId: 'duplicateComponent',
-                  data: {
-                    componentName
-                  }
-                });
-              }
-            }
-          }
-        };
-      }
-    },
-
-    /**
-     * Disallow direct Supabase client creation - must use useSecureSupabase
-     */
-    'no-direct-supabase-client': {
-      meta: {
-        type: 'problem',
-        docs: {
-          description: 'Disallow direct createClient calls from @supabase/supabase-js. Use useSecureSupabase() from pace-core instead to ensure organisation context and RLS policies are enforced.',
-          category: 'Security',
-          recommended: true
-        },
-        messages: {
-          directClientCreation: "Direct Supabase client creation detected. You MUST use useSecureSupabase() from '@jmruthers/pace-core/rbac' instead to ensure organisation context and RLS policies are enforced. This prevents cross-organisation data access.",
-          directClientImport: "Direct import of createClient from @supabase/supabase-js is not allowed. Use useSecureSupabase() from '@jmruthers/pace-core/rbac' instead."
-        },
-        hasSuggestions: true
-      },
-      create(context) {
-        let hasSupabaseImport = false;
-        let createClientImported = false;
-        const filename = context.getFilename();
-        
-        // Allow createClient in specific config files (supabaseClient.ts/js, etc.)
-        const isConfigFile = /(supabase|client)\.(ts|js|tsx|jsx)$/i.test(filename) && 
-                            (filename.includes('supabase') || filename.includes('client'));
-        
-        return {
-          ImportDeclaration(node) {
-            const importSource = node.source.value;
-            
-            // Check for @supabase/supabase-js import
-            if (importSource === '@supabase/supabase-js') {
-              hasSupabaseImport = true;
-              
-              // Check if createClient is imported
-              const hasCreateClient = node.specifiers.some(spec => {
-                if (spec.type === 'ImportSpecifier') {
-                  return spec.imported.name === 'createClient';
-                }
-                if (spec.type === 'ImportNamespaceSpecifier') {
-                  return true; // import * as supabase
-                }
-                return false;
-              });
-              
-              if (hasCreateClient) {
-                createClientImported = true;
-                
-                // Only report if not in a config file
-                if (!isConfigFile) {
-                  context.report({
-                    node: node.source,
-                    messageId: 'directClientImport',
-                    suggest: [{
-                      desc: 'Replace with useSecureSupabase hook',
-                      fix(fixer) {
-                        // Remove the import
-                        return fixer.remove(node);
-                      }
-                    }]
-                  });
-                }
-              }
-            }
-          },
-          
-          CallExpression(node) {
-            // Check for createClient() calls
-            if (node.callee.type === 'Identifier' && node.callee.name === 'createClient') {
-              // Only report if not in a config file
-              if (!isConfigFile) {
-                context.report({
-                  node,
-                  messageId: 'directClientCreation',
-                  suggest: [{
-                    desc: 'Use useSecureSupabase() hook instead',
-                    fix(fixer) {
-                      // This is complex to auto-fix, so we'll just report
-                      return null;
-                    }
-                  }]
-                });
-              }
-            }
-            
-            // Check for supabase.createClient() or similar patterns
-            if (node.callee.type === 'MemberExpression' && 
-                node.callee.property?.name === 'createClient') {
-              if (!isConfigFile) {
-                context.report({
-                  node,
-                  messageId: 'directClientCreation',
-                  suggest: [{
-                    desc: 'Use useSecureSupabase() hook instead',
-                    fix(fixer) {
-                      return null;
-                    }
-                  }]
-                });
-              }
-            }
-          }
-        };
-      }
-    }
-  }
-};
-
-// Helper function to get pace-core alternative for restricted imports
-function getPaceCoreAlternative(importSource) {
-  const alternatives = {
-    '@radix-ui/react-avatar': '/components',
-    '@radix-ui/react-checkbox': '/components',
-    '@radix-ui/react-dialog': '/components',
-    '@radix-ui/react-label': '/components',
-    '@radix-ui/react-switch': '/components',
-    '@radix-ui/react-tabs': '/components',
-    '@radix-ui/react-toast': '/components',
-    '@radix-ui/react-tooltip': '/components',
-    'react-day-picker': '/components',
-    '@tanstack/react-table': '/components',
-    'react-hook-form': '/components',
-    'zod': '/utils'
-  };
-  
-  return alternatives[importSource] || '';
-}
-