@jsenv/https-local 1.0.1 → 1.0.6

package/src/internal/certificate_authority_file_urls.js

@@ -1,4 +1,8 @@
-import { assertAndNormalizeDirectoryUrl, resolveUrl, urlToFilename } from "@jsenv/filesystem"
+import {
+  assertAndNormalizeDirectoryUrl,
+  resolveUrl,
+  urlToFilename,
+} from "@jsenv/filesystem"
 
 export const getCertificateAuthorityFileUrls = () => {
   // we need a directory common to every instance of @jsenv/https-local
@@ -36,9 +40,15 @@ export const getRootCertificateSymlinkUrls = ({
   const serverCertificateDirectory = resolveUrl("./", serverCertificateFileUrl)
 
   const rootCertificateFilename = urlToFilename(rootCertificateFileUrl)
-  const rootCertificateSymlinkUrl = resolveUrl(rootCertificateFilename, serverCertificateDirectory)
+  const rootCertificateSymlinkUrl = resolveUrl(
+    rootCertificateFilename,
+    serverCertificateDirectory,
+  )
   const rootPrivateKeyFilename = urlToFilename(rootPrivateKeyFileUrl)
-  const rootPrivateKeySymlinkUrl = resolveUrl(rootPrivateKeyFilename, serverCertificateDirectory)
+  const rootPrivateKeySymlinkUrl = resolveUrl(
+    rootPrivateKeyFilename,
+    serverCertificateDirectory,
+  )
 
   return {
     rootCertificateSymlinkUrl,
@@ -64,12 +74,18 @@ const getJsenvApplicationDirectoryUrl = () => {
         assertAndNormalizeDirectoryUrl(process.env.XDG_CONFIG_HOME),
       )
     }
-    return resolveUrl(`./.config/https_local/`, assertAndNormalizeDirectoryUrl(process.env.HOME))
+    return resolveUrl(
+      `./.config/https_local/`,
+      assertAndNormalizeDirectoryUrl(process.env.HOME),
+    )
   }
 
   if (platform === "win32") {
     if (process.env.LOCALAPPDATA) {
-      return resolveUrl(`./https_local/`, assertAndNormalizeDirectoryUrl(process.env.LOCALAPPDATA))
+      return resolveUrl(
+        `./https_local/`,
+        assertAndNormalizeDirectoryUrl(process.env.LOCALAPPDATA),
+      )
     }
 
     return resolveUrl(

package/src/internal/certificate_data_converter.js

@@ -34,7 +34,9 @@ const isUrl = (value) => {
   }
 }
 
-export const extensionArrayFromExtensionDescription = (extensionDescription) => {
+export const extensionArrayFromExtensionDescription = (
+  extensionDescription,
+) => {
   const extensionArray = []
   Object.keys(extensionDescription).forEach((key) => {
     const value = extensionDescription[key]
@@ -65,7 +67,9 @@ export const attributeDescriptionFromAttributeArray = (attributeArray) => {
   return attributeObject
 }
 
-export const attributeArrayFromAttributeDescription = (attributeDescription) => {
+export const attributeArrayFromAttributeDescription = (
+  attributeDescription,
+) => {
   const attributeArray = []
   Object.keys(attributeDescription).forEach((key) => {
     const value = attributeDescription[key]

package/src/internal/certificate_generator.js

@@ -33,7 +33,9 @@ export const createAuthorityRootCertificate = async ({
   rootCertificateForgeObject.publicKey = rootCertificatePublicKeyForgeObject
   rootCertificateForgeObject.serialNumber = serialNumber.toString(16)
   rootCertificateForgeObject.validity.notBefore = new Date()
-  rootCertificateForgeObject.validity.notAfter = new Date(Date.now() + validityDurationInMs)
+  rootCertificateForgeObject.validity.notAfter = new Date(
+    Date.now() + validityDurationInMs,
+  )
   rootCertificateForgeObject.setSubject(
     attributeArrayFromAttributeDescription({
       commonName,
@@ -109,7 +111,9 @@ export const requestCertificateFromAuthority = async ({
     )
   }
   if (typeof serialNumber !== "number") {
-    throw new TypeError(`serialNumber must be a number but received ${serialNumber}`)
+    throw new TypeError(
+      `serialNumber must be a number but received ${serialNumber}`,
+    )
   }
 
   const forge = await importNodeForge()
@@ -122,16 +126,23 @@ export const requestCertificateFromAuthority = async ({
   certificateForgeObject.publicKey = certificatePublicKeyForgeObject
   certificateForgeObject.serialNumber = serialNumber.toString(16)
   certificateForgeObject.validity.notBefore = new Date()
-  certificateForgeObject.validity.notAfter = new Date(Date.now() + validityDurationInMs)
+  certificateForgeObject.validity.notAfter = new Date(
+    Date.now() + validityDurationInMs,
+  )
 
   const attributeDescription = {
-    ...attributeDescriptionFromAttributeArray(authorityCertificateForgeObject.subject.attributes),
+    ...attributeDescriptionFromAttributeArray(
+      authorityCertificateForgeObject.subject.attributes,
+    ),
     commonName,
     // organizationName: serverCertificateOrganizationName
   }
-  const attributeArray = attributeArrayFromAttributeDescription(attributeDescription)
+  const attributeArray =
+    attributeArrayFromAttributeDescription(attributeDescription)
   certificateForgeObject.setSubject(attributeArray)
-  certificateForgeObject.setIssuer(authorityCertificateForgeObject.subject.attributes)
+  certificateForgeObject.setIssuer(
+    authorityCertificateForgeObject.subject.attributes,
+  )
   certificateForgeObject.setExtensions(
     extensionArrayFromExtensionDescription({
       basicConstraints: {
@@ -159,7 +170,10 @@ export const requestCertificateFromAuthority = async ({
       },
     }),
   )
-  certificateForgeObject.sign(auhtorityCertificatePrivateKeyForgeObject, forge.sha256.create())
+  certificateForgeObject.sign(
+    auhtorityCertificatePrivateKeyForgeObject,
+    forge.sha256.create(),
+  )
 
   return {
     certificateForgeObject,

package/src/internal/command.js

@@ -4,5 +4,6 @@ const require = createRequire(import.meta.url)
 
 export const commandExists = async (command) => {
   const { sync } = require("command-exists")
-  return sync(command)
+  const exists = sync(command)
+  return exists
 }

package/src/internal/exec.js

@@ -1,6 +1,9 @@
 import { exec as nodeExec } from "node:child_process"
 
-export const exec = (command, { cwd, input, onLog = () => {}, onErrorLog = () => {} } = {}) => {
+export const exec = (
+  command,
+  { cwd, input, onLog = () => {}, onErrorLog = () => {} } = {},
+) => {
   return new Promise((resolve, reject) => {
     const commandProcess = nodeExec(
       command,

package/src/internal/hosts/parse_hosts.js

@@ -1,7 +1,10 @@
 const IS_WINDOWS = process.platform === "win32"
 
 // https://github.com/feross/hostile/blob/master/index.js
-export const parseHosts = (hosts, { EOL = IS_WINDOWS ? "\r\n" : "\n" } = {}) => {
+export const parseHosts = (
+  hosts,
+  { EOL = IS_WINDOWS ? "\r\n" : "\n" } = {},
+) => {
   const lines = []
   hosts.split(/\r?\n/).forEach((line) => {
     const lineWithoutComments = line.replace(/#.*/, "")
@@ -22,7 +25,9 @@ export const parseHosts = (hosts, { EOL = IS_WINDOWS ? "\r\n" : "\n" } = {}) =>
       if (line.type === "rule") {
         const { ip, hostnames } = line
         const existingHostnames = ipHostnames[ip]
-        ipHostnames[ip] = existingHostnames ? [...existingHostnames, ...hostnames] : hostnames
+        ipHostnames[ip] = existingHostnames
+          ? [...existingHostnames, ...hostnames]
+          : hostnames
       }
     })
     return ipHostnames
@@ -40,7 +45,8 @@ export const parseHosts = (hosts, { EOL = IS_WINDOWS ? "\r\n" : "\n" } = {}) =>
 
   const addIpHostname = (ip, host) => {
     const alreadyThere = lines.some(
-      (line) => line.type === "rule" && line.ip === ip && line.hostnames.includes(host),
+      (line) =>
+        line.type === "rule" && line.ip === ip && line.hostnames.includes(host),
     )
     if (alreadyThere) {
       return false
@@ -96,7 +102,9 @@ export const parseHosts = (hosts, { EOL = IS_WINDOWS ? "\r\n" : "\n" } = {}) =>
 
   const asFileContent = () => {
     let hostsFileContent = ""
-    const ips = lines.filter((line) => line.type === "rule").map((line) => line.ip)
+    const ips = lines
+      .filter((line) => line.type === "rule")
+      .map((line) => line.ip)
     const longestIp = ips.reduce((previous, ip) => {
       const length = ip.length
       return length > previous ? length : previous
@@ -107,7 +115,9 @@ export const parseHosts = (hosts, { EOL = IS_WINDOWS ? "\r\n" : "\n" } = {}) =>
         const { ip, hostnames } = line
         const ipLength = ip.length
         const lengthDelta = longestIp - ipLength
-        hostsFileContent += `${ip}${" ".repeat(lengthDelta)} ${hostnames.join(" ")}`
+        hostsFileContent += `${ip}${" ".repeat(lengthDelta)} ${hostnames.join(
+          " ",
+        )}`
       } else {
         hostsFileContent += line.value
       }

package/src/internal/hosts/write_hosts.js

@@ -9,9 +9,17 @@ export const writeHostsFile = async (
   { hostsFilePath = HOSTS_FILE_PATH, onBeforeExecCommand = () => {} } = {},
 ) => {
   if (process.platform === "win32") {
-    return writeHostsFileOnWindows({ hostsFileContent, hostsFilePath, onBeforeExecCommand })
+    return writeHostsFileOnWindows({
+      hostsFileContent,
+      hostsFilePath,
+      onBeforeExecCommand,
+    })
   }
-  return writeHostsFileOnLinuxOrMac({ hostsFileContent, hostsFilePath, onBeforeExecCommand })
+  return writeHostsFileOnLinuxOrMac({
+    hostsFileContent,
+    hostsFilePath,
+    onBeforeExecCommand,
+  })
 }
 
 const writeHostsFileOnLinuxOrMac = async ({
@@ -42,15 +50,19 @@ const writeHostsFileOnWindows = async ({
     const sudoPrompt = require("sudo-prompt")
     onBeforeExecCommand(updateHostsFileCommand)
     await new Promise((resolve, reject) => {
-      sudoPrompt.exec(updateHostsFileCommand, { name: "write hosts" }, (error, stdout, stderr) => {
-        if (error) {
-          reject(error)
-        } else if (typeof stderr === "string" && stderr.trim().length > 0) {
-          reject(stderr)
-        } else {
-          resolve(stdout)
-        }
-      })
+      sudoPrompt.exec(
+        updateHostsFileCommand,
+        { name: "write hosts" },
+        (error, stdout, stderr) => {
+          if (error) {
+            reject(error)
+          } else if (typeof stderr === "string" && stderr.trim().length > 0) {
+            reject(stderr)
+          } else {
+            resolve(stdout)
+          }
+        },
+      )
     })
     return
   }

package/src/internal/hosts/write_line_hosts.js

@@ -10,13 +10,25 @@ export const writeLineInHostsFile = async (
   { hostsFilePath = HOSTS_FILE_PATH, onBeforeExecCommand = () => {} } = {},
 ) => {
   if (process.platform === "win32") {
-    return appendToHostsFileOnWindows({ lineToAppend, hostsFilePath, onBeforeExecCommand })
+    return appendToHostsFileOnWindows({
+      lineToAppend,
+      hostsFilePath,
+      onBeforeExecCommand,
+    })
   }
-  return appendToHostsFileOnLinuxOrMac({ lineToAppend, hostsFilePath, onBeforeExecCommand })
+  return appendToHostsFileOnLinuxOrMac({
+    lineToAppend,
+    hostsFilePath,
+    onBeforeExecCommand,
+  })
 }
 
 // https://renenyffenegger.ch/notes/Windows/dirs/Windows/System32/cmd_exe/commands/echo/index
-const appendToHostsFileOnWindows = async ({ lineToAppend, hostsFilePath, onBeforeExecCommand }) => {
+const appendToHostsFileOnWindows = async ({
+  lineToAppend,
+  hostsFilePath,
+  onBeforeExecCommand,
+}) => {
   const hostsFileContent = await readFile(hostsFilePath)
   const echoCommand =
     hostsFileContent.length > 0 && !hostsFileContent.endsWith("\r\n")
@@ -30,15 +42,19 @@ const appendToHostsFileOnWindows = async ({ lineToAppend, hostsFilePath, onBefor
     const sudoPrompt = require("sudo-prompt")
     onBeforeExecCommand(updateHostsFileCommand)
     await new Promise((resolve, reject) => {
-      sudoPrompt.exec(updateHostsFileCommand, { name: "append hosts" }, (error, stdout, stderr) => {
-        if (error) {
-          reject(error)
-        } else if (typeof stderr === "string" && stderr.trim().length > 0) {
-          reject(stderr)
-        } else {
-          resolve(stdout)
-        }
-      })
+      sudoPrompt.exec(
+        updateHostsFileCommand,
+        { name: "append hosts" },
+        (error, stdout, stderr) => {
+          if (error) {
+            reject(error)
+          } else if (typeof stderr === "string" && stderr.trim().length > 0) {
+            reject(stderr)
+          } else {
+            resolve(stdout)
+          }
+        },
+      )
     })
     return
   }

package/src/internal/linux/chrome_linux.js

@@ -2,7 +2,11 @@ import { existsSync } from "node:fs"
 import { execSync } from "node:child_process"
 import { resolveUrl, assertAndNormalizeDirectoryUrl } from "@jsenv/filesystem"
 
-import { okSign, infoSign, warningSign } from "@jsenv/https-local/src/internal/logs.js"
+import {
+  okSign,
+  infoSign,
+  warningSign,
+} from "@jsenv/https-local/src/internal/logs.js"
 import {
   nssCommandName,
   detectIfNSSIsInstalled,
@@ -57,7 +61,9 @@ export const executeTrustQueryOnChrome = ({
         return
       }
 
-      logger.warn(`${warningSign} waiting for you to close Chrome before resuming...`)
+      logger.warn(
+        `${warningSign} waiting for you to close Chrome before resuming...`,
+      )
       const next = async () => {
         await new Promise((resolve) => setTimeout(resolve, 50))
         if (isChromeOpen()) {

package/src/internal/linux/firefox_linux.js

@@ -2,7 +2,11 @@ import { existsSync } from "node:fs"
 import { execSync } from "node:child_process"
 import { resolveUrl, assertAndNormalizeDirectoryUrl } from "@jsenv/filesystem"
 
-import { okSign, infoSign, warningSign } from "@jsenv/https-local/src/internal/logs.js"
+import {
+  okSign,
+  infoSign,
+  warningSign,
+} from "@jsenv/https-local/src/internal/logs.js"
 import {
   nssCommandName,
   detectIfNSSIsInstalled,
@@ -57,7 +61,9 @@ export const executeTrustQueryOnFirefox = ({
         return
       }
 
-      logger.warn(`${warningSign} waiting for you to close Firefox before resuming...`)
+      logger.warn(
+        `${warningSign} waiting for you to close Firefox before resuming...`,
+      )
       const next = async () => {
         await new Promise((resolve) => setTimeout(resolve, 50))
         if (isFirefoxOpen()) {

package/src/internal/linux/linux_trust_store.js

@@ -6,18 +6,31 @@ import { existsSync } from "node:fs"
 import { createDetailedMessage } from "@jsenv/logger"
 import { readFile, urlToFileSystemPath } from "@jsenv/filesystem"
 
-import { commandSign, okSign, infoSign, failureSign } from "@jsenv/https-local/src/internal/logs.js"
+import {
+  commandSign,
+  okSign,
+  infoSign,
+  failureSign,
+} from "@jsenv/https-local/src/internal/logs.js"
 import { exec } from "@jsenv/https-local/src/internal/exec.js"
-import { VERB_CHECK_TRUST, VERB_ADD_TRUST, VERB_REMOVE_TRUST } from "../trust_query.js"
+import {
+  VERB_CHECK_TRUST,
+  VERB_ADD_TRUST,
+  VERB_REMOVE_TRUST,
+} from "../trust_query.js"
 
-const REASON_NEW_AND_TRY_TO_TRUST_DISABLED = "certificate is new and tryToTrust is disabled"
+const REASON_NEW_AND_TRY_TO_TRUST_DISABLED =
+  "certificate is new and tryToTrust is disabled"
 const REASON_NOT_FOUND_IN_LINUX = `not found in linux store`
 const REASON_OUTDATED_IN_LINUX = "certificate in linux store is outdated"
 const REASON_FOUND_IN_LINUX = "found in linux store"
 const REASON_ADD_COMMAND_FAILED = "command to add certificate to linux failed"
-const REASON_ADD_COMMAND_COMPLETED = "command to add certificate to linux completed"
-const REASON_REMOVE_COMMAND_FAILED = "command to remove certificate from linux failed"
-const REASON_REMOVE_COMMAND_COMPLETED = "command to remove certificate from linux completed"
+const REASON_ADD_COMMAND_COMPLETED =
+  "command to add certificate to linux completed"
+const REASON_REMOVE_COMMAND_FAILED =
+  "command to remove certificate from linux failed"
+const REASON_REMOVE_COMMAND_COMPLETED =
+  "command to remove certificate from linux completed"
 
 const LINUX_CERTIFICATE_AUTHORITIES_DIRECTORY_PATH = `/usr/local/share/ca-certificates/`
 const JSENV_AUTHORITY_ROOT_CERTIFICATE_PATH = `${LINUX_CERTIFICATE_AUTHORITIES_DIRECTORY_PATH}https_local_root_certificate.crt`
@@ -39,7 +52,9 @@ export const executeTrustQueryOnLinux = async ({
   }
 
   logger.info(`Check if certificate is in linux...`)
-  logger.debug(`Searching certificate file at ${JSENV_AUTHORITY_ROOT_CERTIFICATE_PATH}...`)
+  logger.debug(
+    `Searching certificate file at ${JSENV_AUTHORITY_ROOT_CERTIFICATE_PATH}...`,
+  )
   const certificateFilePath = urlToFileSystemPath(certificateFileUrl)
   const certificateStatus = await getCertificateStatus({ certificate })
 
@@ -53,7 +68,9 @@ export const executeTrustQueryOnLinux = async ({
       return {
         status: "not_trusted",
         reason:
-          certificateStatus === "missing" ? REASON_NOT_FOUND_IN_LINUX : REASON_OUTDATED_IN_LINUX,
+          certificateStatus === "missing"
+            ? REASON_NOT_FOUND_IN_LINUX
+            : REASON_OUTDATED_IN_LINUX,
       }
     }
 
@@ -73,9 +90,12 @@ export const executeTrustQueryOnLinux = async ({
     } catch (e) {
       console.error(e)
       logger.error(
-        createDetailedMessage(`${failureSign} failed to add certificate to linux`, {
-          "certificate file": certificateFilePath,
-        }),
+        createDetailedMessage(
+          `${failureSign} failed to add certificate to linux`,
+          {
+            "certificate file": certificateFilePath,
+          },
+        ),
       )
       return {
         status: "not_trusted",
@@ -107,10 +127,13 @@ export const executeTrustQueryOnLinux = async ({
     }
   } catch (e) {
     logger.error(
-      createDetailedMessage(`${failureSign} failed to remove certificate from linux`, {
-        "error stack": e.stack,
-        "certificate file": JSENV_AUTHORITY_ROOT_CERTIFICATE_PATH,
-      }),
+      createDetailedMessage(
+        `${failureSign} failed to remove certificate from linux`,
+        {
+          "error stack": e.stack,
+          "certificate file": JSENV_AUTHORITY_ROOT_CERTIFICATE_PATH,
+        },
+      ),
     )
     return {
       status: "unknown",
@@ -124,7 +147,9 @@ const getCertificateStatus = async ({ certificate }) => {
   if (!certificateInStore) {
     return "missing"
   }
-  const certificateInLinuxStore = await readFile(JSENV_AUTHORITY_ROOT_CERTIFICATE_PATH)
+  const certificateInLinuxStore = await readFile(
+    JSENV_AUTHORITY_ROOT_CERTIFICATE_PATH,
+  )
   if (certificateInLinuxStore !== certificate) {
     return "outdated"
   }

package/src/internal/linux/nss_linux.js

@@ -1,5 +1,9 @@
 import { memoize } from "@jsenv/https-local/src/internal/memoize.js"
-import { commandSign, infoSign, okSign } from "@jsenv/https-local/src/internal/logs.js"
+import {
+  commandSign,
+  infoSign,
+  okSign,
+} from "@jsenv/https-local/src/internal/logs.js"
 import { exec } from "@jsenv/https-local/src/internal/exec.js"
 
 export const nssCommandName = "libnss3-tools"
@@ -24,10 +28,12 @@ export const getCertutilBinPath = () => "certutil"
 
 export const getNSSDynamicInstallInfo = ({ logger }) => {
   return {
-    nssIsInstallable: true,
-    nssInstall: async () => {
+    isInstallable: true,
+    install: async () => {
       const aptInstallCommand = `sudo apt install libnss3-tools`
-      logger.info(`"libnss3-tools" is not installed, trying to install "libnss3-tools"`)
+      logger.info(
+        `"libnss3-tools" is not installed, trying to install "libnss3-tools"`,
+      )
       logger.info(`${commandSign} ${aptInstallCommand}`)
       await exec(aptInstallCommand)
     },

package/src/internal/mac/firefox_mac.js

@@ -2,7 +2,11 @@ import { existsSync } from "node:fs"
 import { execSync } from "node:child_process"
 import { resolveUrl, assertAndNormalizeDirectoryUrl } from "@jsenv/filesystem"
 
-import { okSign, infoSign, warningSign } from "@jsenv/https-local/src/internal/logs.js"
+import {
+  okSign,
+  infoSign,
+  warningSign,
+} from "@jsenv/https-local/src/internal/logs.js"
 
 import { executeTrustQueryOnBrowserNSSDB } from "../nssdb_browser.js"
 import {
@@ -57,7 +61,9 @@ export const executeTrustQueryOnFirefox = ({
         return
       }
 
-      logger.warn(`${warningSign} waiting for you to close firefox before resuming...`)
+      logger.warn(
+        `${warningSign} waiting for you to close firefox before resuming...`,
+      )
       const next = async () => {
         await new Promise((resolve) => setTimeout(resolve, 50))
         if (isFirefoxOpen()) {

package/src/internal/mac/mac_keychain.js

@@ -3,15 +3,26 @@
 import { urlToFileSystemPath } from "@jsenv/filesystem"
 import { createDetailedMessage } from "@jsenv/logger"
 
-import { commandSign, okSign, infoSign, failureSign } from "@jsenv/https-local/src/internal/logs.js"
+import {
+  commandSign,
+  okSign,
+  infoSign,
+  failureSign,
+} from "@jsenv/https-local/src/internal/logs.js"
 import { exec } from "@jsenv/https-local/src/internal/exec.js"
 import { searchCertificateInCommandOutput } from "@jsenv/https-local/src/internal/search_certificate_in_command_output.js"
-import { VERB_CHECK_TRUST, VERB_ADD_TRUST, VERB_REMOVE_TRUST } from "../trust_query.js"
+import {
+  VERB_CHECK_TRUST,
+  VERB_ADD_TRUST,
+  VERB_REMOVE_TRUST,
+} from "../trust_query.js"
 
-const REASON_NEW_AND_TRY_TO_TRUST_DISABLED = "certificate is new and tryToTrust is disabled"
+const REASON_NEW_AND_TRY_TO_TRUST_DISABLED =
+  "certificate is new and tryToTrust is disabled"
 const REASON_NOT_IN_KEYCHAIN = "certificate not found in mac keychain"
 const REASON_IN_KEYCHAIN = "certificate found in mac keychain"
-const REASON_ADD_TO_KEYCHAIN_COMMAND_FAILED = "command to add certificate in mac keychain failed"
+const REASON_ADD_TO_KEYCHAIN_COMMAND_FAILED =
+  "command to add certificate in mac keychain failed"
 const REASON_ADD_TO_KEYCHAIN_COMMAND_COMPLETED =
   "command to add certificate in mac keychain completed"
 const REASON_REMOVE_FROM_KEYCHAIN_COMMAND_FAILED =
@@ -70,10 +81,13 @@ export const executeTrustQueryOnMacKeychain = async ({
       }
     } catch (e) {
       logger.error(
-        createDetailedMessage(`${failureSign} failed to add certificate to mac keychain`, {
-          "error stack": e.stack,
-          "certificate file": certificateFilePath,
-        }),
+        createDetailedMessage(
+          `${failureSign} failed to add certificate to mac keychain`,
+          {
+            "error stack": e.stack,
+            "certificate file": certificateFilePath,
+          },
+        ),
       )
       return {
         status: "not_trusted",
@@ -107,10 +121,13 @@ export const executeTrustQueryOnMacKeychain = async ({
     }
   } catch (e) {
     logger.error(
-      createDetailedMessage(`${failureSign} failed to remove certificate from mac keychain`, {
-        "error stack": e.stack,
-        "certificate file url": certificateFileUrl,
-      }),
+      createDetailedMessage(
+        `${failureSign} failed to remove certificate from mac keychain`,
+        {
+          "error stack": e.stack,
+          "certificate file url": certificateFileUrl,
+        },
+      ),
     )
     return {
       status: "not_trusted",

package/src/internal/mac/nss_mac.js

@@ -1,4 +1,8 @@
-import { assertAndNormalizeDirectoryUrl, resolveUrl, urlToFileSystemPath } from "@jsenv/filesystem"
+import {
+  assertAndNormalizeDirectoryUrl,
+  resolveUrl,
+  urlToFileSystemPath,
+} from "@jsenv/filesystem"
 
 import { memoize } from "@jsenv/https-local/src/internal/memoize.js"
 import { exec } from "@jsenv/https-local/src/internal/exec.js"
@@ -24,7 +28,9 @@ export const detectIfNSSIsInstalled = async ({ logger }) => {
 export const getCertutilBinPath = memoize(async () => {
   const brewCommand = `brew --prefix nss`
   const brewCommandOutput = await exec(brewCommand)
-  const nssCommandDirectoryUrl = assertAndNormalizeDirectoryUrl(brewCommandOutput.trim())
+  const nssCommandDirectoryUrl = assertAndNormalizeDirectoryUrl(
+    brewCommandOutput.trim(),
+  )
   const certutilBinUrl = resolveUrl(`./bin/certutil`, nssCommandDirectoryUrl)
   const certutilBinPath = urlToFileSystemPath(certutilBinUrl)
   return certutilBinPath
@@ -33,11 +39,13 @@ export const getCertutilBinPath = memoize(async () => {
 export const getNSSDynamicInstallInfo = () => {
   return {
     isInstallable: commandExists("brew"),
-    nssNotInstallableReason: `"brew" is not available`,
-    nssInstallFixSuggestion: `install "brew" on this mac`,
-    installNss: async ({ logger }) => {
+    notInstallableReason: `"brew" is not available`,
+    suggestion: `install "brew" on this mac`,
+    install: async ({ logger }) => {
       const brewInstallCommand = `brew install nss`
-      logger.info(`"nss" is not installed, trying to install "nss" via Homebrew`)
+      logger.info(
+        `"nss" is not installed, trying to install "nss" via Homebrew`,
+      )
       logger.info(`> ${brewInstallCommand}`)
       await exec(brewInstallCommand)
     },