@meng-xi/vite-plugin 0.1.4 → 0.1.5

package/dist/common/html/index.d.ts

@@ -1,235 +1,11 @@
-import { I as InjectCondition, b as SelectorMatch, a as InjectPosition, P as PositionInjectResult, S as SecurityConfig, H as HtmlInjectResult, D as DualInjectResult } from '../../shared/vite-plugin.FfJ-Wwfu.js';
-export { C as ConditionType } from '../../shared/vite-plugin.FfJ-Wwfu.js';
+import { S as SecurityConfig, H as HtmlInjectResult, D as DualInjectResult } from '../../shared/vite-plugin.BI9taN75.js';
+export { C as ConditionType, I as InjectCondition, a as InjectPosition, b as SelectorMatch } from '../../shared/vite-plugin.BI9taN75.js';
 
-/**
- * HTML 注入工具模块
- *
- * @module common/html/inject
- * @description 提供高级 HTML 内容注入功能，包括选择器匹配、模板变量替换、
- * 条件判断、规则排序和多位置注入等能力，为插件提供灵活的 HTML 操作支持。
- */
-
-/**
- * 在 HTML 中查找选择器匹配位置
- *
- * @param html - 要搜索的 HTML 字符串
- * @param selector - 选择器字符串（普通字符串或正则表达式字符串）
- * @param selectorMatch - 匹配模式，`'string'` 为精确字符串匹配，`'regex'` 为正则匹配
- * @returns 匹配结果对象（包含 `index` 和 `length`），未匹配时返回 `null`
- *
- * @description 根据匹配模式在 HTML 中查找选择器的位置：
- * - 字符串模式：使用 `indexOf` 进行精确匹配
- * - 正则模式：使用 `RegExp` 进行正则匹配，正则语法错误时返回 `null`
- *
- * @example
- * ```typescript
- * // 字符串匹配
- * findSelectorMatch('<div id="app">content</div>', '<div id="app">')
- * // { index: 0, length: 14 }
- *
- * // 正则匹配
- * findSelectorMatch('<div class="foo">bar</div>', 'class="\\w+"', 'regex')
- * // { index: 5, length: 12 }
- *
- * // 未匹配
- * findSelectorMatch('<div>hello</div>', '<span>')
- * // null
- * ```
- */
-declare function findSelectorMatch(html: string, selector: string, selectorMatch?: SelectorMatch): {
-    index: number;
-    length: number;
-} | null;
-/**
- * 替换模板字符串中的变量占位符
- *
- * @param content - 包含 `{{变量名}}` 占位符的模板字符串
- * @param ruleVars - 规则级变量映射（优先级高于全局变量）
- * @param globalVars - 全局变量映射
- * @returns 替换所有匹配占位符后的字符串
- *
- * @description 将模板字符串中形如 `{{key}}` 的占位符替换为对应的值。
- * 规则变量（`ruleVars`）优先级高于全局变量（`globalVars`），
- * 当两者存在相同键时，规则变量的值会覆盖全局变量的值。
- * 变量名中的正则特殊字符会被自动转义，替换值中的 `$` 也会被安全处理。
- *
- * @example
- * ```typescript
- * // 基本替换
- * applyTemplateVars('<div>{{name}}</div>', { name: 'test' })
- * // '<div>test</div>'
- *
- * // 规则变量覆盖全局变量
- * applyTemplateVars('{{a}}-{{b}}', { a: '1' }, { a: '0', b: '2' })
- * // '1-2'
- *
- * // 无匹配占位符
- * applyTemplateVars('no vars', { x: 'y' })
- * // 'no vars'
- * ```
- */
-declare function applyTemplateVars(content: string, ruleVars?: Record<string, string>, globalVars?: Record<string, string>): string;
-/**
- * 评估注入条件是否满足
- *
- * @param condition - 注入条件配置
- * @param html - 当前 HTML 内容（用于 `file-contains` 类型判断）
- * @returns 条件是否满足（布尔值）
- *
- * @description 根据条件类型评估注入条件：
- * - `env`：检查环境变量是否存在且不为 `'false'` 或 `'0'`
- * - `file-contains`：检查 HTML 内容是否包含指定字符串
- * - `custom`：执行自定义函数，捕获异常时返回 `false`
- * - 支持通过 `negate` 字段对结果取反
- *
- * @example
- * ```typescript
- * // 环境变量判断
- * evaluateCondition({ type: 'env', value: 'ENABLE_ANALYTICS' }, '')
- *
- * // 内容包含判断
- * evaluateCondition({ type: 'file-contains', value: '<div id="app">' }, html)
- *
- * // 自定义函数（带取反）
- * evaluateCondition(
- *   { type: 'custom', value: () => isDev(), negate: true },
- *   html
- * )
- * ```
- */
-declare function evaluateCondition(condition: InjectCondition, html: string): boolean;
-/**
- * 按优先级排序规则列表
- *
- * @typeParam T - 规则类型，必须包含可选的 `priority` 字段
- * @param rules - 待排序的规则数组
- * @returns 按 `priority` 升序排列的新数组（不修改原数组）
- *
- * @description 将规则按 `priority` 字段升序排列，`priority` 越小优先级越高。
- * 未指定 `priority` 的规则默认优先级为 100。
- * 返回新数组，不修改原数组。
- *
- * @example
- * ```typescript
- * const rules = [
- *   { priority: 30, name: 'C' },
- *   { priority: 10, name: 'A' },
- *   { name: 'D' },           // 默认 priority=100
- *   { priority: 20, name: 'B' }
- * ]
- * sortRulesByPriority(rules)
- * // [{ priority: 10, name: 'A' }, { priority: 20, name: 'B' },
- * //  { priority: 30, name: 'C' }, { name: 'D' }]
- * ```
- */
-declare function sortRulesByPriority<T extends {
-    priority?: number;
-}>(rules: T[]): T[];
-/**
- * 在 HTML 的指定位置注入内容
- *
- * @param html - 原始 HTML 字符串
- * @param content - 要注入的内容
- * @param position - 注入位置
- * @param selector - 选择器字符串（仅 `before-selector`、`after-selector`、`replace-selector` 位置需要）
- * @param selectorMatch - 选择器匹配模式（默认为字符串匹配）
- * @returns 注入结果对象，包含注入后的 HTML、是否成功标志和失败原因
- *
- * @description 根据 `position` 参数将内容注入到 HTML 的指定位置：
- * - `head-start`：在 `<head>` 标签开始后注入
- * - `head-end`：在 `</head>` 标签前注入
- * - `body-start`：在 `<body>` 标签开始后注入
- * - `body-end`：在 `</body>` 标签前注入
- * - `before-selector`：在选择器匹配位置前注入
- * - `after-selector`：在选择器匹配位置后注入
- * - `replace-selector`：替换选择器匹配的内容
- *
- * 当目标标签或选择器未找到时，返回 `injected: false` 并附带 `reason` 说明。
- *
- * @example
- * ```typescript
- * const html = '<html><head><title>Test</title></head><body><div id="app"></div></body></html>'
- *
- * // 在 head 开始后注入 meta 标签
- * injectAtPosition(html, '<meta charset="utf-8">', 'head-start')
- *
- * // 在 body 结束前注入脚本
- * injectAtPosition(html, '<script>app()</script>', 'body-end')
- *
- * // 在指定元素前注入
- * injectAtPosition(html, '<nav>menu</nav>', 'before-selector', '<div id="app">')
- *
- * // 替换指定元素
- * injectAtPosition(html, '<div id="root"></div>', 'replace-selector', '<div id="app">')
- * ```
- */
-declare function injectAtPosition(html: string, content: string, position: InjectPosition, selector?: string, selectorMatch?: SelectorMatch): PositionInjectResult;
-
-/**
- * HTML 安全过滤模块
- *
- * @module common/html/security
- * @description 提供 HTML 内容安全过滤和验证功能，防止 XSS 攻击和危险内容注入，
- * 包括危险标签检测、危险属性过滤和安全配置验证等能力。
- */
-
-/**
- * 默认阻止的 HTML 标签列表
- *
- * @description 包含可能导致安全风险的 HTML 标签：
- * - `script`：可执行 JavaScript 代码
- * - `iframe`：可嵌入外部页面
- * - `object`/`embed`/`applet`：可嵌入插件
- * - `form`/`input`/`textarea`/`select`/`button`：可创建表单
- */
-declare const DEFAULT_BLOCKED_TAGS: string[];
-/**
- * 默认阻止的 HTML 事件属性列表
- *
- * @description 包含所有可能导致 JavaScript 执行的事件处理属性，
- * 涵盖鼠标事件、键盘事件、表单事件、拖拽事件和动画事件等。
- */
-declare const DEFAULT_BLOCKED_ATTRIBUTES: string[];
-/**
- * 验证安全配置的合法性
- *
- * @param security - 安全配置对象
- * @throws 当 `blockedTags` 不是字符串数组时抛出错误
- * @throws 当 `allowedTags` 不是字符串数组时抛出错误
- * @throws 当 `blockedAttributes` 不是字符串数组时抛出错误
- *
- * @description 检查安全配置中的数组字段是否为合法的字符串数组类型，
- * 传入 `undefined` 时直接跳过验证。
- *
- * @example
- * ```typescript
- * // 合法配置
- * validateSecurityConfig({ blockedTags: ['iframe'], allowedTags: ['div'] })
- *
- * // 非法配置（抛出错误）
- * validateSecurityConfig({ blockedTags: 'iframe' })
- * // Error: security.blockedTags 必须是字符串数组
- * ```
- */
-declare function validateSecurityConfig(security?: SecurityConfig): void;
 /**
  * 内容消毒规则选项
- *
- * @description 定义对单条注入规则内容进行安全过滤时的选项，
- * 控制是否允许脚本注入等特殊行为。
  */
 interface SanitizeRuleOptions {
-    /** 规则标识符，用于错误消息和警告日志中标识来源规则 */
     id?: string;
-    /**
-     * 是否允许注入 `<script>` 标签和被阻止的标签/属性
-     *
-     * @description 设置为 `true` 时，将跳过对危险标签和属性的安全检查，
-     * 但仍会输出警告日志提醒开发者注意安全风险。
-     * 仅在注入内容来源可信时使用此选项。
-     *
-     * @default false
-     */
     allowScriptInjection?: boolean;
 }
 /**
@@ -238,33 +14,8 @@ interface SanitizeRuleOptions {
  * @param content - 待过滤的 HTML 内容字符串
  * @param rule - 当前注入规则的消毒选项
  * @param security - 全局安全配置
- * @param logger - 日志记录器（需提供 `warn` 方法），用于输出安全警告
+ * @param logger - 日志记录器
  * @returns 过滤后的安全 HTML 内容字符串
- * @throws 当内容包含被阻止的标签且未启用 `allowScriptInjection` 时抛出错误
- * @throws 当内容包含危险属性且未启用 `allowScriptInjection` 时抛出错误
- *
- * @description 对 HTML 内容进行安全过滤，防止 XSS 攻击：
- * 1. **标签过滤**：检测并阻止默认阻止列表中的标签（如 script、iframe），
- *    可通过 `security.allowedTags` 放行特定标签
- * 2. **属性过滤**：检测并阻止事件处理属性（如 onclick、onerror）
- * 3. **脚本检测**：特别检测 `<script>` 标签，需要显式启用 `allowScriptInjection`
- *
- * 当 `rule.allowScriptInjection` 为 `true` 时，跳过安全检查但输出警告日志。
- *
- * @example
- * ```typescript
- * // 安全内容直接通过
- * sanitizeContent('<div>safe</div>', { id: 'rule1' })
- *
- * // 包含 script 标签（抛出错误）
- * sanitizeContent('<script>alert(1)</script>', { id: 'rule2' })
- *
- * // 允许脚本注入（通过但输出警告）
- * sanitizeContent('<script>alert(1)</script>', { id: 'rule3', allowScriptInjection: true }, undefined, console)
- *
- * // 自定义安全配置
- * sanitizeContent('<iframe>test</iframe>', { id: 'rule4' }, { allowedTags: ['iframe'] })
- * ```
  */
 declare function sanitizeContent(content: string, rule: SanitizeRuleOptions, security?: SecurityConfig, logger?: {
     warn: (msg: string) => void;
@@ -277,59 +28,8 @@ declare function sanitizeContent(content: string, rule: SanitizeRuleOptions, sec
  * @param tag - 目标闭合标签（如 `</head>`、`</body>`、`</html>`）
  * @param code - 要注入的代码
  * @returns 注入结果对象
- *
- * @example
- * ```typescript
- * // 在 </head> 前注入 CSS
- * const result = injectBeforeTag(html, '</head>', '<style>...</style>')
- *
- * // 在 </body> 前注入 JS
- * const result = injectBeforeTag(html, '</body>', '<script>...</script>')
- * ```
  */
 declare function injectBeforeTag(html: string, tag: string, code: string): HtmlInjectResult;
-/**
- * 按优先级向 HTML 中注入代码
- *
- * @description 依次尝试在 `</head>`、`</body>`、`</html>` 前注入代码，
- * 优先注入到靠前的标签位置。适用于需要注入到页面中但无特定位置要求的场景
- *
- * @param html - 原始 HTML 内容
- * @param code - 要注入的代码
- * @param targets - 目标标签优先级列表，默认为 `['</head>', '</body>', '</html>']`
- * @returns 注入结果对象
- *
- * @example
- * ```typescript
- * // 优先注入到 </body> 前
- * const result = injectHtmlByPriority(html, scriptCode, ['</body>', '</html>'])
- * ```
- */
-declare function injectHtmlByPriority(html: string, code: string, targets?: string[]): HtmlInjectResult;
-/**
- * 带回退策略的 HTML 注入
- *
- * @description 依次尝试在 `</body>`、`</html>` 前注入代码，
- * 如果均未找到目标标签，则将代码追加到 HTML 末尾。
- * 适用于需要注入到页面底部但不确定 HTML 结构是否完整的场景。
- *
- * @param html - 原始 HTML 内容
- * @param code - 要注入的代码
- * @param fallbackMessage - 回退到末尾时的警告信息，为空则不输出警告
- * @returns 注入结果对象，包含注入后的 HTML、是否成功标志和是否使用了回退策略
- *
- * @example
- * ```typescript
- * // 注入 JS 脚本到页面底部
- * const result = injectBeforeTagWithFallback(html, '<script>...</script>')
- *
- * // 带自定义警告信息
- * const result = injectBeforeTagWithFallback(html, scriptCode, '未找到 </body> 标签，代码追加到文件末尾')
- * ```
- */
-declare function injectBeforeTagWithFallback(html: string, code: string, _fallbackMessage?: string): HtmlInjectResult & {
-    usedFallback: boolean;
-};
 /**
  * 双区域 HTML 注入（head + body）
  *
@@ -340,19 +40,8 @@ declare function injectBeforeTagWithFallback(html: string, code: string, _fallba
  * @param headCode - 注入到 `</head>` 前的代码（如 CSS、meta 标签），不提供则跳过 head 注入
  * @param bodyCode - 注入到 `</body>` 前的代码（如 JS 脚本），回退到 `</html>` 前或末尾
  * @returns 双区域注入结果对象
- *
- * @example
- * ```typescript
- * // CSS 注入到 head，JS 注入到 body
- * const result = injectHeadAndBody(html, '<style>...</style>', '<script>...</script>')
- * if (!result.headInjected) logger.warn('未找到 </head> 标签')
- * if (result.usedFallback) logger.warn('代码追加到文件末尾')
- *
- * // 仅注入到 body
- * const result = injectHeadAndBody(html, undefined, '<script>...</script>')
- * ```
  */
 declare function injectHeadAndBody(html: string, headCode: string | undefined, bodyCode: string): DualInjectResult;
 
-export { DEFAULT_BLOCKED_ATTRIBUTES, DEFAULT_BLOCKED_TAGS, DualInjectResult, HtmlInjectResult, InjectCondition, InjectPosition, PositionInjectResult, SecurityConfig, SelectorMatch, applyTemplateVars, evaluateCondition, findSelectorMatch, injectAtPosition, injectBeforeTag, injectBeforeTagWithFallback, injectHeadAndBody, injectHtmlByPriority, sanitizeContent, sortRulesByPriority, validateSecurityConfig };
+export { DualInjectResult, HtmlInjectResult, SecurityConfig, injectBeforeTag, injectHeadAndBody, sanitizeContent };
 export type { SanitizeRuleOptions };

package/dist/common/html/index.mjs

@@ -1,2 +1,2 @@
-export{D as DEFAULT_BLOCKED_ATTRIBUTES,a as DEFAULT_BLOCKED_TAGS,b as applyTemplateVars,e as evaluateCondition,f as findSelectorMatch,i as injectAtPosition,s as sanitizeContent,c as sortRulesByPriority,v as validateSecurityConfig}from"../../shared/vite-plugin.BCuhU1au.mjs";import"../script/index.mjs";function c(e,t,i){const n=new RegExp(t,"i");return n.test(e)?{html:e.replace(n,`${i}
-${t}`),injected:!0}:{html:e,injected:!1}}function s(e,t,i=["</head>","</body>","</html>"]){for(const n of i){const a=c(e,n,t);if(a.injected)return a}return{html:e+t,injected:!0}}function o(e,t,i){const n=c(e,"</body>",t);if(n.injected)return{...n,usedFallback:!1};const a=c(e,"</html>",t);return a.injected?{...a,usedFallback:!1}:{html:e+t,injected:!0,usedFallback:!0}}function d(e,t,i){let n=e,a=!1;if(t){const r=c(n,"</head>",t);r.injected&&(n=r.html,a=!0)}const l=o(n,i);return{html:l.html,headInjected:a,bodyInjected:l.injected,usedFallback:l.usedFallback}}export{c as injectBeforeTag,o as injectBeforeTagWithFallback,d as injectHeadAndBody,s as injectHtmlByPriority};
+export{s as sanitizeContent}from"../../shared/vite-plugin.BPFqtmWa.mjs";function a(e,t,l){const n=new RegExp(t,"i");return n.test(e)?{html:e.replace(n,`${l}
+${t}`),injected:!0}:{html:e,injected:!1}}function i(e,t,l){const n=a(e,"</body>",t);if(n.injected)return{...n,usedFallback:!1};const c=a(e,"</html>",t);return c.injected?{...c,usedFallback:!1}:{html:e+t,injected:!0,usedFallback:!0}}function r(e,t,l){let n=e,c=!1;if(t){const s=a(n,"</head>",t);s.injected&&(n=s.html,c=!0)}const d=i(n,l);return{html:d.html,headInjected:c,bodyInjected:d.injected,usedFallback:d.usedFallback}}export{a as injectBeforeTag,r as injectHeadAndBody};

package/dist/common/index.cjs

@@ -1 +1 @@
-"use strict";const common_compress_index=require("./compress/index.cjs"),common_format_index=require("./format/index.cjs"),common_fs_index=require("./fs/index.cjs"),common_html_index=require("./html/index.cjs"),common_object_index=require("./object/index.cjs"),common_path_index=require("./path/index.cjs"),common_script_index=require("./script/index.cjs"),common_ui_index=require("./ui/index.cjs"),validator=require("../shared/vite-plugin.Bcg6RW2N.cjs"),validators=require("../shared/vite-plugin.soT9a-KD.cjs"),env=require("../shared/vite-plugin.vwox4bU0.cjs"),security=require("../shared/vite-plugin.BrI73DHA.cjs");require("node:zlib"),require("node:stream/promises"),require("node:stream"),require("crypto"),require("node:path"),require("fs"),require("path"),exports.calculateGzipSize=common_compress_index.calculateGzipSize,exports.escapeHtmlAttr=common_format_index.escapeHtmlAttr,exports.formatDate=common_format_index.formatDate,exports.formatFileSize=common_format_index.formatFileSize,exports.generateRandomHash=common_format_index.generateRandomHash,exports.getDateFormatParams=common_format_index.getDateFormatParams,exports.getExtension=common_format_index.getExtension,exports.padNumber=common_format_index.padNumber,exports.parseTemplate=common_format_index.parseTemplate,exports.stripJsonComments=common_format_index.stripJsonComments,exports.toCamelCase=common_format_index.toCamelCase,exports.toPascalCase=common_format_index.toPascalCase,exports.checkSourceExists=common_fs_index.checkSourceExists,exports.copySourceToTarget=common_fs_index.copySourceToTarget,exports.ensureTargetDir=common_fs_index.ensureTargetDir,exports.fileExists=common_fs_index.fileExists,exports.readDirRecursive=common_fs_index.readDirRecursive,exports.readFileContent=common_fs_index.readFileContent,exports.readFileSync=common_fs_index.readFileSync,exports.runWithConcurrency=common_fs_index.runWithConcurrency,exports.scanDirectory=common_fs_index.scanDirectory,exports.shouldUpdateFile=common_fs_index.shouldUpdateFile,exports.writeFileContent=common_fs_index.writeFileContent,exports.writeJsonReport=common_fs_index.writeJsonReport,exports.injectBeforeTag=common_html_index.injectBeforeTag,exports.injectBeforeTagWithFallback=common_html_index.injectBeforeTagWithFallback,exports.injectHeadAndBody=common_html_index.injectHeadAndBody,exports.injectHtmlByPriority=common_html_index.injectHtmlByPriority,exports.deepMerge=common_object_index.deepMerge,exports.isNodeModule=common_path_index.isNodeModule,exports.containsScriptTag=common_script_index.containsScriptTag,exports.makeCallback=common_script_index.makeCallback,exports.validateIdentifierName=common_script_index.validateIdentifierName,exports.ANSI=common_ui_index.ANSI,exports.SPINNER_FRAMES=common_ui_index.SPINNER_FRAMES,exports.stripAnsi=common_ui_index.stripAnsi,exports.Validator=validator.Validator,exports.validateCallbackFields=validators.validateCallbackFields,exports.validateEnumValue=validators.validateEnumValue,exports.validateGlobalName=validators.validateGlobalName,exports.validateNestedDuration=validators.validateNestedDuration,exports.validateNoScriptInTemplate=validators.validateNoScriptInTemplate,exports.validateNonNegativeNumber=validators.validateNonNegativeNumber,exports.STRING_LIKE_TYPES=env.STRING_LIKE_TYPES,exports.validateEnvironment=env.validateEnvironment,exports.validateLength=env.validateLength,exports.validateRange=env.validateRange,exports.validateType=env.validateType,exports.validateValue=env.validateValue,exports.DEFAULT_BLOCKED_ATTRIBUTES=security.DEFAULT_BLOCKED_ATTRIBUTES,exports.DEFAULT_BLOCKED_TAGS=security.DEFAULT_BLOCKED_TAGS,exports.applyTemplateVars=security.applyTemplateVars,exports.evaluateCondition=security.evaluateCondition,exports.findSelectorMatch=security.findSelectorMatch,exports.injectAtPosition=security.injectAtPosition,exports.sanitizeContent=security.sanitizeContent,exports.sortRulesByPriority=security.sortRulesByPriority,exports.validateSecurityConfig=security.validateSecurityConfig;
+"use strict";const common_format_index=require("./format/index.cjs"),common_fs_index=require("./fs/index.cjs"),common_html_index=require("./html/index.cjs"),common_script_index=require("./script/index.cjs"),common_ui_index=require("./ui/index.cjs"),validator=require("../shared/vite-plugin.Bcg6RW2N.cjs"),common_validation_index=require("./validation/index.cjs"),security=require("../shared/vite-plugin.CnOy46d3.cjs");require("fs"),require("path"),exports.formatFileSize=common_format_index.formatFileSize,exports.getDateFormatParams=common_format_index.getDateFormatParams,exports.checkSourceExists=common_fs_index.checkSourceExists,exports.copySourceToTarget=common_fs_index.copySourceToTarget,exports.scanDirectory=common_fs_index.scanDirectory,exports.writeFileContent=common_fs_index.writeFileContent,exports.writeJsonReport=common_fs_index.writeJsonReport,exports.injectBeforeTag=common_html_index.injectBeforeTag,exports.injectHeadAndBody=common_html_index.injectHeadAndBody,exports.makeCallback=common_script_index.makeCallback,exports.ANSI=common_ui_index.ANSI,exports.Validator=validator.Validator,exports.validateCallbackFields=common_validation_index.validateCallbackFields,exports.validateGlobalName=common_validation_index.validateGlobalName,exports.validateNoScriptInTemplate=common_validation_index.validateNoScriptInTemplate,exports.sanitizeContent=security.sanitizeContent;

package/dist/common/index.d.cts

@@ -1,12 +1,8 @@
-export { calculateGzipSize } from './compress/index.cjs';
-export { DateFormatOptions, escapeHtmlAttr, formatDate, formatFileSize, generateRandomHash, getDateFormatParams, getExtension, padNumber, parseTemplate, stripJsonComments, toCamelCase, toPascalCase } from './format/index.cjs';
-export { CopyOptions, CopyResult, ScanDirectoryOptions, ScannedFile, checkSourceExists, copySourceToTarget, ensureTargetDir, fileExists, readDirRecursive, readFileContent, readFileSync, runWithConcurrency, scanDirectory, shouldUpdateFile, writeFileContent, writeJsonReport } from './fs/index.cjs';
-export { DEFAULT_BLOCKED_ATTRIBUTES, DEFAULT_BLOCKED_TAGS, SanitizeRuleOptions, applyTemplateVars, evaluateCondition, findSelectorMatch, injectAtPosition, injectBeforeTag, injectBeforeTagWithFallback, injectHeadAndBody, injectHtmlByPriority, sanitizeContent, sortRulesByPriority, validateSecurityConfig } from './html/index.cjs';
-export { deepMerge } from './object/index.cjs';
-export { isNodeModule } from './path/index.cjs';
-export { containsScriptTag, makeCallback, validateIdentifierName } from './script/index.cjs';
-export { ANSI, SPINNER_FRAMES, stripAnsi } from './ui/index.cjs';
+export { DateFormatOptions, formatFileSize, getDateFormatParams } from './format/index.cjs';
+export { CopyOptions, CopyResult, ScanDirectoryOptions, ScannedFile, checkSourceExists, copySourceToTarget, scanDirectory, writeFileContent, writeJsonReport } from './fs/index.cjs';
+export { SanitizeRuleOptions, injectBeforeTag, injectHeadAndBody, sanitizeContent } from './html/index.cjs';
+export { makeCallback } from './script/index.cjs';
+export { ANSI } from './ui/index.cjs';
 export { V as Validator } from '../shared/vite-plugin.DRRlWY8P.cjs';
-export { validateCallbackFields, validateEnumValue, validateGlobalName, validateNestedDuration, validateNoScriptInTemplate, validateNonNegativeNumber } from './validation/index.cjs';
-export { E as EnvFieldRule, a as EnvType, b as EnvValidationResult, S as STRING_LIKE_TYPES, v as validateEnvironment, c as validateLength, d as validateRange, e as validateType, f as validateValue } from '../shared/vite-plugin.CmtcnItg.cjs';
-export { C as ConditionType, D as DualInjectResult, H as HtmlInjectResult, I as InjectCondition, a as InjectPosition, P as PositionInjectResult, S as SecurityConfig, b as SelectorMatch } from '../shared/vite-plugin.FfJ-Wwfu.cjs';
+export { validateCallbackFields, validateGlobalName, validateNoScriptInTemplate } from './validation/index.cjs';
+export { C as ConditionType, D as DualInjectResult, H as HtmlInjectResult, I as InjectCondition, a as InjectPosition, S as SecurityConfig, b as SelectorMatch } from '../shared/vite-plugin.BI9taN75.cjs';

package/dist/common/index.d.mts

@@ -1,12 +1,8 @@
-export { calculateGzipSize } from './compress/index.mjs';
-export { DateFormatOptions, escapeHtmlAttr, formatDate, formatFileSize, generateRandomHash, getDateFormatParams, getExtension, padNumber, parseTemplate, stripJsonComments, toCamelCase, toPascalCase } from './format/index.mjs';
-export { CopyOptions, CopyResult, ScanDirectoryOptions, ScannedFile, checkSourceExists, copySourceToTarget, ensureTargetDir, fileExists, readDirRecursive, readFileContent, readFileSync, runWithConcurrency, scanDirectory, shouldUpdateFile, writeFileContent, writeJsonReport } from './fs/index.mjs';
-export { DEFAULT_BLOCKED_ATTRIBUTES, DEFAULT_BLOCKED_TAGS, SanitizeRuleOptions, applyTemplateVars, evaluateCondition, findSelectorMatch, injectAtPosition, injectBeforeTag, injectBeforeTagWithFallback, injectHeadAndBody, injectHtmlByPriority, sanitizeContent, sortRulesByPriority, validateSecurityConfig } from './html/index.mjs';
-export { deepMerge } from './object/index.mjs';
-export { isNodeModule } from './path/index.mjs';
-export { containsScriptTag, makeCallback, validateIdentifierName } from './script/index.mjs';
-export { ANSI, SPINNER_FRAMES, stripAnsi } from './ui/index.mjs';
+export { DateFormatOptions, formatFileSize, getDateFormatParams } from './format/index.mjs';
+export { CopyOptions, CopyResult, ScanDirectoryOptions, ScannedFile, checkSourceExists, copySourceToTarget, scanDirectory, writeFileContent, writeJsonReport } from './fs/index.mjs';
+export { SanitizeRuleOptions, injectBeforeTag, injectHeadAndBody, sanitizeContent } from './html/index.mjs';
+export { makeCallback } from './script/index.mjs';
+export { ANSI } from './ui/index.mjs';
 export { V as Validator } from '../shared/vite-plugin.DRRlWY8P.mjs';
-export { validateCallbackFields, validateEnumValue, validateGlobalName, validateNestedDuration, validateNoScriptInTemplate, validateNonNegativeNumber } from './validation/index.mjs';
-export { E as EnvFieldRule, a as EnvType, b as EnvValidationResult, S as STRING_LIKE_TYPES, v as validateEnvironment, c as validateLength, d as validateRange, e as validateType, f as validateValue } from '../shared/vite-plugin.CmtcnItg.mjs';
-export { C as ConditionType, D as DualInjectResult, H as HtmlInjectResult, I as InjectCondition, a as InjectPosition, P as PositionInjectResult, S as SecurityConfig, b as SelectorMatch } from '../shared/vite-plugin.FfJ-Wwfu.mjs';
+export { validateCallbackFields, validateGlobalName, validateNoScriptInTemplate } from './validation/index.mjs';
+export { C as ConditionType, D as DualInjectResult, H as HtmlInjectResult, I as InjectCondition, a as InjectPosition, S as SecurityConfig, b as SelectorMatch } from '../shared/vite-plugin.BI9taN75.mjs';

package/dist/common/index.d.ts

@@ -1,12 +1,8 @@
-export { calculateGzipSize } from './compress/index.js';
-export { DateFormatOptions, escapeHtmlAttr, formatDate, formatFileSize, generateRandomHash, getDateFormatParams, getExtension, padNumber, parseTemplate, stripJsonComments, toCamelCase, toPascalCase } from './format/index.js';
-export { CopyOptions, CopyResult, ScanDirectoryOptions, ScannedFile, checkSourceExists, copySourceToTarget, ensureTargetDir, fileExists, readDirRecursive, readFileContent, readFileSync, runWithConcurrency, scanDirectory, shouldUpdateFile, writeFileContent, writeJsonReport } from './fs/index.js';
-export { DEFAULT_BLOCKED_ATTRIBUTES, DEFAULT_BLOCKED_TAGS, SanitizeRuleOptions, applyTemplateVars, evaluateCondition, findSelectorMatch, injectAtPosition, injectBeforeTag, injectBeforeTagWithFallback, injectHeadAndBody, injectHtmlByPriority, sanitizeContent, sortRulesByPriority, validateSecurityConfig } from './html/index.js';
-export { deepMerge } from './object/index.js';
-export { isNodeModule } from './path/index.js';
-export { containsScriptTag, makeCallback, validateIdentifierName } from './script/index.js';
-export { ANSI, SPINNER_FRAMES, stripAnsi } from './ui/index.js';
+export { DateFormatOptions, formatFileSize, getDateFormatParams } from './format/index.js';
+export { CopyOptions, CopyResult, ScanDirectoryOptions, ScannedFile, checkSourceExists, copySourceToTarget, scanDirectory, writeFileContent, writeJsonReport } from './fs/index.js';
+export { SanitizeRuleOptions, injectBeforeTag, injectHeadAndBody, sanitizeContent } from './html/index.js';
+export { makeCallback } from './script/index.js';
+export { ANSI } from './ui/index.js';
 export { V as Validator } from '../shared/vite-plugin.DRRlWY8P.js';
-export { validateCallbackFields, validateEnumValue, validateGlobalName, validateNestedDuration, validateNoScriptInTemplate, validateNonNegativeNumber } from './validation/index.js';
-export { E as EnvFieldRule, a as EnvType, b as EnvValidationResult, S as STRING_LIKE_TYPES, v as validateEnvironment, c as validateLength, d as validateRange, e as validateType, f as validateValue } from '../shared/vite-plugin.CmtcnItg.js';
-export { C as ConditionType, D as DualInjectResult, H as HtmlInjectResult, I as InjectCondition, a as InjectPosition, P as PositionInjectResult, S as SecurityConfig, b as SelectorMatch } from '../shared/vite-plugin.FfJ-Wwfu.js';
+export { validateCallbackFields, validateGlobalName, validateNoScriptInTemplate } from './validation/index.js';
+export { C as ConditionType, D as DualInjectResult, H as HtmlInjectResult, I as InjectCondition, a as InjectPosition, S as SecurityConfig, b as SelectorMatch } from '../shared/vite-plugin.BI9taN75.js';

package/dist/common/index.mjs

@@ -1 +1 @@
-export{calculateGzipSize}from"./compress/index.mjs";export{escapeHtmlAttr,formatDate,formatFileSize,generateRandomHash,getDateFormatParams,getExtension,padNumber,parseTemplate,stripJsonComments,toCamelCase,toPascalCase}from"./format/index.mjs";export{checkSourceExists,copySourceToTarget,ensureTargetDir,fileExists,readDirRecursive,readFileContent,readFileSync,runWithConcurrency,scanDirectory,shouldUpdateFile,writeFileContent,writeJsonReport}from"./fs/index.mjs";export{injectBeforeTag,injectBeforeTagWithFallback,injectHeadAndBody,injectHtmlByPriority}from"./html/index.mjs";export{deepMerge}from"./object/index.mjs";export{isNodeModule}from"./path/index.mjs";export{containsScriptTag,makeCallback,validateIdentifierName}from"./script/index.mjs";export{ANSI,SPINNER_FRAMES,stripAnsi}from"./ui/index.mjs";export{V as Validator}from"../shared/vite-plugin.DcExl6jd.mjs";export{v as validateCallbackFields,a as validateEnumValue,b as validateGlobalName,c as validateNestedDuration,d as validateNoScriptInTemplate,e as validateNonNegativeNumber}from"../shared/vite-plugin.Dumot0up.mjs";export{S as STRING_LIKE_TYPES,v as validateEnvironment,a as validateLength,b as validateRange,c as validateType,d as validateValue}from"../shared/vite-plugin.DnFDPjNf.mjs";export{D as DEFAULT_BLOCKED_ATTRIBUTES,a as DEFAULT_BLOCKED_TAGS,b as applyTemplateVars,e as evaluateCondition,f as findSelectorMatch,i as injectAtPosition,s as sanitizeContent,c as sortRulesByPriority,v as validateSecurityConfig}from"../shared/vite-plugin.BCuhU1au.mjs";import"node:zlib";import"node:stream/promises";import"node:stream";import"crypto";import"node:path";import"fs";import"path";
+export{formatFileSize,getDateFormatParams}from"./format/index.mjs";export{checkSourceExists,copySourceToTarget,scanDirectory,writeFileContent,writeJsonReport}from"./fs/index.mjs";export{injectBeforeTag,injectHeadAndBody}from"./html/index.mjs";export{makeCallback}from"./script/index.mjs";export{ANSI}from"./ui/index.mjs";export{V as Validator}from"../shared/vite-plugin.DcExl6jd.mjs";export{validateCallbackFields,validateGlobalName,validateNoScriptInTemplate}from"./validation/index.mjs";export{s as sanitizeContent}from"../shared/vite-plugin.BPFqtmWa.mjs";import"fs";import"path";

package/dist/common/script/index.cjs

@@ -1 +1 @@
-"use strict";function makeCallback(u,r="callback",t=""){return u?`function(${t}) { try { ${u} } catch(e) { console.error('[${r}] error:', e); } }`:`function(${t}) {}`}function containsScriptTag(u){return/<script\b/i.test(u)}function validateIdentifierName(u){if(!/^[a-zA-Z_$][a-zA-Z0-9_$]*$/.test(u))throw new Error(`"${u}" \u4E0D\u662F\u5408\u6CD5\u7684 JavaScript \u6807\u8BC6\u7B26\uFF0C\u5FC5\u987B\u4EE5\u5B57\u6BCD\u3001\u4E0B\u5212\u7EBF\u6216\u7F8E\u5143\u7B26\u5F00\u5934\uFF0C\u4EC5\u5305\u542B\u5B57\u6BCD\u3001\u6570\u5B57\u3001\u4E0B\u5212\u7EBF\u548C\u7F8E\u5143\u7B26`);if(["__proto__","constructor","prototype"].includes(u))throw new Error(`"${u}" \u662F JavaScript \u5185\u7F6E\u5C5E\u6027\uFF0C\u53EF\u80FD\u5BFC\u81F4\u539F\u578B\u6C61\u67D3\uFF0C\u8BF7\u4F7F\u7528\u5176\u4ED6\u540D\u79F0`)}exports.containsScriptTag=containsScriptTag,exports.makeCallback=makeCallback,exports.validateIdentifierName=validateIdentifierName;
+"use strict";function makeCallback(c,r="callback",e=""){return c?`function(${e}) { try { ${c} } catch(e) { console.error('[${r}] error:', e); } }`:`function(${e}) {}`}exports.makeCallback=makeCallback;

package/dist/common/script/index.d.cts

@@ -5,50 +5,7 @@
  * @param context - 回调上下文标识，用于错误日志
  * @param params - 函数参数列表字符串，默认为空
  * @returns 安全的函数表达式字符串（包含 try-catch 保护）
- *
- * @example
- * ```typescript
- * makeCallback('console.log("done")')
- * // 'function() { try { console.log("done") } catch(e) { console.error('[callback] error:', e); } }'
- *
- * makeCallback('console.log(a, b)', 'callback', 'a, b')
- * // 'function(a, b) { try { console.log(a, b) } catch(e) { console.error('[callback] error:', e); } }'
- *
- * makeCallback('')
- * // 'function() {}'
- * ```
  */
 declare function makeCallback(body?: string, context?: string, params?: string): string;
-/**
- * 检测字符串是否包含 `<script>` 标签
- *
- * @param str - 待检测的字符串
- * @returns 是否包含 script 标签
- *
- * @example
- * ```typescript
- * containsScriptTag('<div onclick="alert(1)">') // false
- * containsScriptTag('<script>alert(1)</script>') // true
- * ```
- */
-declare function containsScriptTag(str: string): boolean;
-/**
- * 验证字符串是否为合法的 JavaScript 标识符
- *
- * @description 检查名称是否以字母、下划线或美元符开头，
- * 仅包含字母、数字、下划线和美元符，并排除可能导致原型污染的内置属性
- *
- * @param name - 待验证的标识符名称
- * @throws 当名称不是合法标识符时抛出错误
- * @throws 当名称为 JavaScript 内置属性时抛出错误
- *
- * @example
- * ```typescript
- * validateIdentifierName('__LOADING_MANAGER__') // 通过
- * validateIdentifierName('123abc')              // 抛出错误
- * validateIdentifierName('__proto__')           // 抛出错误（内置属性）
- * ```
- */
-declare function validateIdentifierName(name: string): void;
 
-export { containsScriptTag, makeCallback, validateIdentifierName };
+export { makeCallback };

package/dist/common/script/index.d.mts

@@ -5,50 +5,7 @@
  * @param context - 回调上下文标识，用于错误日志
  * @param params - 函数参数列表字符串，默认为空
  * @returns 安全的函数表达式字符串（包含 try-catch 保护）
- *
- * @example
- * ```typescript
- * makeCallback('console.log("done")')
- * // 'function() { try { console.log("done") } catch(e) { console.error('[callback] error:', e); } }'
- *
- * makeCallback('console.log(a, b)', 'callback', 'a, b')
- * // 'function(a, b) { try { console.log(a, b) } catch(e) { console.error('[callback] error:', e); } }'
- *
- * makeCallback('')
- * // 'function() {}'
- * ```
  */
 declare function makeCallback(body?: string, context?: string, params?: string): string;
-/**
- * 检测字符串是否包含 `<script>` 标签
- *
- * @param str - 待检测的字符串
- * @returns 是否包含 script 标签
- *
- * @example
- * ```typescript
- * containsScriptTag('<div onclick="alert(1)">') // false
- * containsScriptTag('<script>alert(1)</script>') // true
- * ```
- */
-declare function containsScriptTag(str: string): boolean;
-/**
- * 验证字符串是否为合法的 JavaScript 标识符
- *
- * @description 检查名称是否以字母、下划线或美元符开头，
- * 仅包含字母、数字、下划线和美元符，并排除可能导致原型污染的内置属性
- *
- * @param name - 待验证的标识符名称
- * @throws 当名称不是合法标识符时抛出错误
- * @throws 当名称为 JavaScript 内置属性时抛出错误
- *
- * @example
- * ```typescript
- * validateIdentifierName('__LOADING_MANAGER__') // 通过
- * validateIdentifierName('123abc')              // 抛出错误
- * validateIdentifierName('__proto__')           // 抛出错误（内置属性）
- * ```
- */
-declare function validateIdentifierName(name: string): void;
 
-export { containsScriptTag, makeCallback, validateIdentifierName };
+export { makeCallback };

package/dist/common/script/index.d.ts

@@ -5,50 +5,7 @@
  * @param context - 回调上下文标识，用于错误日志
  * @param params - 函数参数列表字符串，默认为空
  * @returns 安全的函数表达式字符串（包含 try-catch 保护）
- *
- * @example
- * ```typescript
- * makeCallback('console.log("done")')
- * // 'function() { try { console.log("done") } catch(e) { console.error('[callback] error:', e); } }'
- *
- * makeCallback('console.log(a, b)', 'callback', 'a, b')
- * // 'function(a, b) { try { console.log(a, b) } catch(e) { console.error('[callback] error:', e); } }'
- *
- * makeCallback('')
- * // 'function() {}'
- * ```
  */
 declare function makeCallback(body?: string, context?: string, params?: string): string;
-/**
- * 检测字符串是否包含 `<script>` 标签
- *
- * @param str - 待检测的字符串
- * @returns 是否包含 script 标签
- *
- * @example
- * ```typescript
- * containsScriptTag('<div onclick="alert(1)">') // false
- * containsScriptTag('<script>alert(1)</script>') // true
- * ```
- */
-declare function containsScriptTag(str: string): boolean;
-/**
- * 验证字符串是否为合法的 JavaScript 标识符
- *
- * @description 检查名称是否以字母、下划线或美元符开头，
- * 仅包含字母、数字、下划线和美元符，并排除可能导致原型污染的内置属性
- *
- * @param name - 待验证的标识符名称
- * @throws 当名称不是合法标识符时抛出错误
- * @throws 当名称为 JavaScript 内置属性时抛出错误
- *
- * @example
- * ```typescript
- * validateIdentifierName('__LOADING_MANAGER__') // 通过
- * validateIdentifierName('123abc')              // 抛出错误
- * validateIdentifierName('__proto__')           // 抛出错误（内置属性）
- * ```
- */
-declare function validateIdentifierName(name: string): void;
 
-export { containsScriptTag, makeCallback, validateIdentifierName };
+export { makeCallback };

package/dist/common/script/index.mjs

@@ -1 +1 @@
-function r(u,F="callback",t=""){return u?`function(${t}) { try { ${u} } catch(e) { console.error('[${F}] error:', e); } }`:`function(${t}) {}`}function o(u){return/<script\b/i.test(u)}function c(u){if(!/^[a-zA-Z_$][a-zA-Z0-9_$]*$/.test(u))throw new Error(`"${u}" \u4E0D\u662F\u5408\u6CD5\u7684 JavaScript \u6807\u8BC6\u7B26\uFF0C\u5FC5\u987B\u4EE5\u5B57\u6BCD\u3001\u4E0B\u5212\u7EBF\u6216\u7F8E\u5143\u7B26\u5F00\u5934\uFF0C\u4EC5\u5305\u542B\u5B57\u6BCD\u3001\u6570\u5B57\u3001\u4E0B\u5212\u7EBF\u548C\u7F8E\u5143\u7B26`);if(["__proto__","constructor","prototype"].includes(u))throw new Error(`"${u}" \u662F JavaScript \u5185\u7F6E\u5C5E\u6027\uFF0C\u53EF\u80FD\u5BFC\u81F4\u539F\u578B\u6C61\u67D3\uFF0C\u8BF7\u4F7F\u7528\u5176\u4ED6\u540D\u79F0`)}export{o as containsScriptTag,r as makeCallback,c as validateIdentifierName};
+function o(c,e="callback",r=""){return c?`function(${r}) { try { ${c} } catch(e) { console.error('[${e}] error:', e); } }`:`function(${r}) {}`}export{o as makeCallback};

package/dist/common/ui/index.cjs

@@ -1 +1 @@
-"use strict";const SPINNER_FRAMES=process.platform==="win32"?["|","/","-","\\"]:["\u280B","\u2819","\u2839","\u2838","\u283C","\u2834","\u2826","\u2827","\u2807","\u280F"],ANSI={reset:"\x1B[0G",clearLine:"\x1B[2K",hideCursor:"\x1B[?25l",showCursor:"\x1B[?25h",green:r=>`\x1B[32m${r}\x1B[39m`,cyan:r=>`\x1B[36m${r}\x1B[39m`,gray:r=>`\x1B[90m${r}\x1B[39m`,bold:r=>`\x1B[1m${r}\x1B[22m`,red:r=>`\x1B[31m${r}\x1B[39m`,yellow:r=>`\x1B[33m${r}\x1B[39m`,magenta:r=>`\x1B[35m${r}\x1B[39m`},x=/\x1b\[[0-9;]*m/g;function stripAnsi(r){return r.replace(x,"")}exports.ANSI=ANSI,exports.SPINNER_FRAMES=SPINNER_FRAMES,exports.stripAnsi=stripAnsi;
+"use strict";const ANSI={reset:"\x1B[0G",clearLine:"\x1B[2K",hideCursor:"\x1B[?25l",showCursor:"\x1B[?25h",green:x=>`\x1B[32m${x}\x1B[39m`,cyan:x=>`\x1B[36m${x}\x1B[39m`,gray:x=>`\x1B[90m${x}\x1B[39m`,bold:x=>`\x1B[1m${x}\x1B[22m`,red:x=>`\x1B[31m${x}\x1B[39m`,yellow:x=>`\x1B[33m${x}\x1B[39m`,magenta:x=>`\x1B[35m${x}\x1B[39m`};exports.ANSI=ANSI;