@mikkelscheike/email-provider-links 2.7.1 → 2.8.1

package/dist/api.d.ts

@@ -4,10 +4,26 @@
  * Simplified API with better error handling and performance improvements.
  * Clean function names and enhanced error context.
  */
+export type ProviderType = 'public_provider' | 'custom_provider' | 'proxy_service';
 export interface EmailProvider {
     companyProvider: string;
-    loginUrl: string;
+    loginUrl: string | null;
     domains: string[];
+    type: ProviderType;
+    alias?: {
+        dots?: {
+            ignore: boolean;
+            strip: boolean;
+        };
+        plus?: {
+            ignore: boolean;
+            strip: boolean;
+        };
+        case?: {
+            ignore: boolean;
+            strip: boolean;
+        };
+    };
     customDomainDetection?: {
         mxPatterns?: string[];
         txtPatterns?: string[];
@@ -50,14 +66,14 @@ export interface EmailProviderResult {
  * @example
  * ```typescript
  * // Consumer email
- * const gmail = await getEmailProvider('user@gmail.com');
- * console.log(gmail.provider?.companyProvider); // "Gmail"
- * console.log(gmail.loginUrl);                  // "https://mail.google.com/mail/"
+ * const result = await getEmailProvider('local@domain.tld');
+ * console.log(result.provider?.companyProvider); // Provider name
+ * console.log(result.loginUrl);                  // Login URL
  *
  * // Business domain
- * const business = await getEmailProvider('user@mycompany.com');
- * console.log(business.provider?.companyProvider); // "Google Workspace" (if detected)
- * console.log(business.detectionMethod);          // "mx_record"
+ * const business = await getEmailProvider('local@business.tld');
+ * console.log(business.provider?.companyProvider); // Detected provider
+ * console.log(business.detectionMethod);          // Detection method
  *
  * // Error handling
  * const invalid = await getEmailProvider('invalid-email');
@@ -100,11 +116,11 @@ export declare function getEmailProviderSync(email: string): EmailProviderResult
  *
  * @example
  * ```typescript
- * const canonical = normalizeEmail('U.S.E.R+work@GMAIL.COM');
- * console.log(canonical); // 'user@gmail.com'
+ * const canonical = normalizeEmail('L.O.C.A.L+work@DOMAIN.TLD');
+ * console.log(canonical); // 'local@domain.tld'
  *
- * const outlook = normalizeEmail('user+newsletter@outlook.com');
- * console.log(outlook); // 'user@outlook.com'
+ * const provider = normalizeEmail('local+newsletter@provider.tld');
+ * console.log(provider); // 'local@provider.tld'
  * ```
  */
 export declare function normalizeEmail(email: string): string;
@@ -120,10 +136,10 @@ export declare function normalizeEmail(email: string): string;
  *
  * @example
  * ```typescript
- * const match = emailsMatch('user@gmail.com', 'u.s.e.r+work@gmail.com');
+ * const match = emailsMatch('local@domain.tld', 'l.o.c.a.l+work@domain.tld');
  * console.log(match); // true
  *
- * const different = emailsMatch('user@gmail.com', 'other@gmail.com');
+ * const different = emailsMatch('local@domain.tld', 'other@domain.tld');
  * console.log(different); // false
  * ```
  */

package/dist/api.js

@@ -29,14 +29,14 @@ const loader_1 = require("./loader");
  * @example
  * ```typescript
  * // Consumer email
- * const gmail = await getEmailProvider('user@gmail.com');
- * console.log(gmail.provider?.companyProvider); // "Gmail"
- * console.log(gmail.loginUrl);                  // "https://mail.google.com/mail/"
+ * const result = await getEmailProvider('local@domain.tld');
+ * console.log(result.provider?.companyProvider); // Provider name
+ * console.log(result.loginUrl);                  // Login URL
  *
  * // Business domain
- * const business = await getEmailProvider('user@mycompany.com');
- * console.log(business.provider?.companyProvider); // "Google Workspace" (if detected)
- * console.log(business.detectionMethod);          // "mx_record"
+ * const business = await getEmailProvider('local@business.tld');
+ * console.log(business.provider?.companyProvider); // Detected provider
+ * console.log(business.detectionMethod);          // Detection method
  *
  * // Error handling
  * const invalid = await getEmailProvider('invalid-email');
@@ -215,9 +215,9 @@ function getEmailProviderSync(email) {
                 }
             };
         }
-        // Load providers and find matching domain
-        const { providers } = (0, loader_1.loadProviders)();
-        const provider = providers.find(p => p.domains?.some(d => d.toLowerCase() === domain));
+        // Use cached providers and domain map for efficient lookup
+        const { domainMap } = (0, loader_1.loadProviders)();
+        const provider = domainMap.get(domain);
         const result = {
             provider: provider || null,
             email,
@@ -257,11 +257,11 @@ function getEmailProviderSync(email) {
  *
  * @example
  * ```typescript
- * const canonical = normalizeEmail('U.S.E.R+work@GMAIL.COM');
- * console.log(canonical); // 'user@gmail.com'
+ * const canonical = normalizeEmail('L.O.C.A.L+work@DOMAIN.TLD');
+ * console.log(canonical); // 'local@domain.tld'
  *
- * const outlook = normalizeEmail('user+newsletter@outlook.com');
- * console.log(outlook); // 'user@outlook.com'
+ * const provider = normalizeEmail('local+newsletter@provider.tld');
+ * console.log(provider); // 'local@provider.tld'
  * ```
  */
 function normalizeEmail(email) {
@@ -277,21 +277,21 @@ function normalizeEmail(email) {
     }
     let localPart = lowercaseEmail.slice(0, atIndex);
     const domainPart = lowercaseEmail.slice(atIndex + 1);
-    // Gmail-specific rules: remove dots and plus addressing
-    if (domainPart === 'gmail.com' || domainPart === 'googlemail.com') {
-        // Remove all dots from local part
-        localPart = localPart.replace(/\./g, '');
-        // Remove plus addressing (everything after +)
-        const plusIndex = localPart.indexOf('+');
-        if (plusIndex !== -1) {
-            localPart = localPart.slice(0, plusIndex);
+    // Use cached providers for domain lookup
+    const { domainMap } = (0, loader_1.loadProviders)();
+    const provider = domainMap.get(domainPart);
+    if (provider?.alias) {
+        // Provider supports aliasing
+        if (provider.alias.dots) {
+            // Remove all dots from local part (e.g. Gmail)
+            localPart = localPart.replace(/\./g, '');
         }
-    }
-    else {
-        // For other providers, only remove plus addressing
-        const plusIndex = localPart.indexOf('+');
-        if (plusIndex !== -1) {
-            localPart = localPart.slice(0, plusIndex);
+        if (provider.alias.plus) {
+            // Remove plus addressing (everything after +)
+            const plusIndex = localPart.indexOf('+');
+            if (plusIndex !== -1) {
+                localPart = localPart.slice(0, plusIndex);
+            }
         }
     }
     return `${localPart}@${domainPart}`;
@@ -308,10 +308,10 @@ function normalizeEmail(email) {
  *
  * @example
  * ```typescript
- * const match = emailsMatch('user@gmail.com', 'u.s.e.r+work@gmail.com');
+ * const match = emailsMatch('local@domain.tld', 'l.o.c.a.l+work@domain.tld');
  * console.log(match); // true
  *
- * const different = emailsMatch('user@gmail.com', 'other@gmail.com');
+ * const different = emailsMatch('local@domain.tld', 'other@domain.tld');
  * console.log(different); // false
  * ```
  */

package/dist/concurrent-dns.d.ts

@@ -4,7 +4,7 @@
  * Implements parallel MX/TXT record lookups for 2x faster business domain detection.
  * Uses Promise.allSettled for fault tolerance and intelligent result merging.
  */
-import { EmailProvider } from './index';
+import { EmailProvider } from './api';
 /**
  * Configuration for concurrent DNS detection
  */

package/dist/concurrent-dns.js

@@ -367,11 +367,12 @@ class ConcurrentDNSDetector {
         const mxQuery = queries.find(q => q.type === 'mx' && q.success);
         if (!mxQuery?.records)
             return null;
-        const proxyPatterns = [
-            { service: 'Cloudflare', patterns: ['mxrecord.io', 'mxrecord.mx', 'cloudflare'] },
-            { service: 'CloudFront', patterns: ['cloudfront.net'] },
-            { service: 'Fastly', patterns: ['fastly.com'] }
-        ];
+        // Get proxy services from provider data
+        const proxyProviders = this.providers.filter(p => p.type === 'proxy_service');
+        const proxyPatterns = proxyProviders.map(provider => ({
+            service: provider.companyProvider,
+            patterns: [...(provider.customDomainDetection?.mxPatterns || []), ...(provider.domains || [])].map(p => p.toLowerCase())
+        }));
         for (const record of mxQuery.records) {
             const exchange = record.exchange?.toLowerCase() || '';
             for (const proxy of proxyPatterns) {

package/dist/hash-verifier.js

@@ -27,9 +27,9 @@ const path_1 = require("path");
  */
 const KNOWN_GOOD_HASHES = {
     // SHA-256 hash of the legitimate emailproviders.json
-    'emailproviders.json': 'f77814bf0537019c6f38bf2744ae21640f04a2d39cb67c5116f6e03160c9486f',
+    'emailproviders.json': 'c9c3cb1590820989071ec2bea8a7560496188031f8fa6367153e642315824cdb',
     // You can add hashes for other critical files
-    'package.json': '67927e7e27636b55dc1fee5e34f16bbbf721a33103b0bc94c3c42923e2325cef'
+    'package.json': 'da08eadfe33e8a5c5bcc3db0f0dccc402b4d8ab8440ff57d2e9aa986921ac66d'
 };
 /**
  * Calculates SHA-256 hash of a file or string content

package/dist/loader.d.ts

@@ -3,7 +3,7 @@
  *
  * Handles loading email provider data with performance optimizations.
  */
-import { EmailProvider } from './index';
+import { EmailProvider } from './api';
 /**
  * Loading statistics for performance monitoring
  */

package/dist/loader.js

@@ -29,13 +29,20 @@ const DEFAULT_CONFIG = {
  * Convert compressed provider to EmailProvider format
  */
 function convertProviderToEmailProvider(compressedProvider) {
+    if (!compressedProvider.type) {
+        console.warn(`Missing type for provider ${compressedProvider.id}`);
+    }
     const provider = {
-        companyProvider: compressedProvider.name,
-        loginUrl: compressedProvider.url,
-        domains: compressedProvider.domains || []
+        companyProvider: compressedProvider.companyProvider,
+        loginUrl: compressedProvider.loginUrl || null,
+        domains: compressedProvider.domains || [],
+        type: compressedProvider.type,
+        alias: compressedProvider.alias
     };
-    // Convert DNS detection patterns
-    if (compressedProvider.mx?.length || compressedProvider.txt?.length) {
+    // Include DNS detection patterns for business email services and proxy services
+    const needsCustomDomainDetection = compressedProvider.type === 'custom_provider' ||
+        compressedProvider.type === 'proxy_service';
+    if (needsCustomDomainDetection && (compressedProvider.mx?.length || compressedProvider.txt?.length)) {
         provider.customDomainDetection = {};
         if (compressedProvider.mx?.length) {
             provider.customDomainDetection.mxPatterns = compressedProvider.mx;
@@ -92,6 +99,10 @@ function loadProvidersInternal(config = {}) {
             console.log(`⚡ Loading completed in ${loadTime}ms`);
             console.log(`📊 Stats: ${providers.length} providers, ${domainCount} domains`);
         }
+        if (process.env.NODE_ENV === 'development') {
+            const memoryUsageInMB = process.memoryUsage().heapUsed / 1024 / 1024;
+            console.log(`🚀 Current memory usage: ${memoryUsageInMB.toFixed(2)} MB`);
+        }
         return {
             providers,
             stats: loadingStats

package/dist/schema.d.ts

@@ -8,22 +8,41 @@
  * Provider interface
  * Uses compact field names for smaller JSON size
  */
+/**
+ * Provider types:
+ * - public_provider: Regular email providers (Gmail, Yahoo, etc.)
+ * - custom_provider: Business email services (Google Workspace, Microsoft 365)
+ * - proxy_service: Email proxy services (Cloudflare, etc.)
+ */
+export type ProviderType = 'public_provider' | 'custom_provider' | 'proxy_service';
 export interface Provider {
     /** Provider ID (short identifier) */
     id: string;
     /** Provider display name */
-    name: string;
-    /** Login/webmail URL */
-    url: string;
+    companyProvider: string;
+    /** Login/webmail URL (or null if not available) */
+    loginUrl: string | null;
     /** Email domains (omitted if empty) */
     domains?: string[];
     /** DNS detection patterns (flattened) */
     mx?: string[];
     txt?: string[];
-    /** Alias capabilities */
+    /** Provider type */
+    type: ProviderType;
+    /** Alias rules for username part */
     alias?: {
-        dots?: boolean;
-        plus?: boolean;
+        dots?: {
+            ignore: boolean;
+            strip: boolean;
+        };
+        plus?: {
+            ignore: boolean;
+            strip: boolean;
+        };
+        case?: {
+            ignore: boolean;
+            strip: boolean;
+        };
     };
 }
 /**

package/dist/schema.js

@@ -51,14 +51,11 @@ function validateProvider(provider) {
     if (!provider.id || typeof provider.id !== 'string') {
         errors.push('Provider ID is required and must be a string');
     }
-    if (!provider.name || typeof provider.name !== 'string') {
-        errors.push('Provider name is required and must be a string');
+    if (!provider.companyProvider || typeof provider.companyProvider !== 'string') {
+        errors.push('Company provider is required and must be a string');
     }
-    if (!provider.url || typeof provider.url !== 'string') {
-        errors.push('Provider URL is required and must be a string');
-    }
-    else if (!provider.url.startsWith('https://')) {
-        errors.push('Provider URL must use HTTPS');
+    if (provider.loginUrl !== null && (typeof provider.loginUrl !== 'string' || !provider.loginUrl.startsWith('https://'))) {
+        errors.push('Login URL must be null or a string starting with HTTPS');
     }
     if (provider.domains && !Array.isArray(provider.domains)) {
         errors.push('Domains must be an array');

package/dist/url-validator.js

@@ -9,106 +9,28 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.validateEmailProviderUrl = validateEmailProviderUrl;
 exports.validateAllProviderUrls = validateAllProviderUrls;
 exports.auditProviderSecurity = auditProviderSecurity;
+const loader_1 = require("./loader");
 /**
- * Allowlisted domains for email providers.
+ * Get allowlisted domains from provider data
  * Only URLs from these domains will be considered safe.
- *
- * NOTE: This list should be maintained carefully and updated only
- * through security review processes.
  */
-const ALLOWED_DOMAINS = [
-    // Google services
-    'google.com',
-    'gmail.com',
-    'googlemail.com',
-    'mail.google.com',
-    'accounts.google.com',
-    // Microsoft services
-    'microsoft.com',
-    'outlook.com',
-    'outlook.office365.com',
-    'hotmail.com',
-    'live.com',
-    'office.com',
-    // Yahoo services
-    'yahoo.com',
-    'yahoo.co.uk',
-    'yahoo.fr',
-    'yahoo.de',
-    'login.yahoo.com',
-    // Privacy-focused providers
-    'proton.me',
-    'protonmail.com',
-    'protonmail.ch',
-    'tutanota.com',
-    'tutanota.de',
-    'posteo.de',
-    'runbox.com',
-    'countermail.com',
-    'hushmail.com',
-    // Business providers
-    'zoho.com',
-    'fastmail.com',
-    'rackspace.com',
-    'apps.rackspace.com',
-    // Other legitimate providers
-    'aol.com',
-    'mail.aol.com',
-    'gmx.com',
-    'gmx.net',
-    'mail.com',
-    'yandex.com',
-    'yandex.ru',
-    'web.de',
-    'mail.ru',
-    'libero.it',
-    'orange.fr',
-    'free.fr',
-    't-online.de',
-    'comcast.net',
-    'att.net',
-    'verizon.net',
-    'bluehost.com',
-    'godaddy.com',
-    'secureserver.net',
-    // Additional providers from security audit
-    'kolabnow.com',
-    'connect.xfinity.com',
-    'login.verizon.com',
-    'www.simply.com',
-    'www.one.com',
-    'mailfence.com',
-    'neo.space',
-    'mail.126.com',
-    'mail.qq.com',
-    'mail.sina.com.cn',
-    'www.xtra.co.nz',
-    'mail.rediff.com',
-    'mail.rakuten.co.jp',
-    'mail.nifty.com',
-    'mail.iij.ad.jp',
-    'email.uol.com.br',
-    'email.bol.com.br',
-    'email.globo.com',
-    'webmail.terra.com.br',
-    'webmail.movistar.es',
-    'webmail.ono.com',
-    'webmail.telkom.co.za',
-    'webmail.vodacom.co.za',
-    'webmail.mtnonline.com',
-    'bdmail.net',
-    'mail.aamra.com.bd',
-    'mail.link3.net',
-    'mail.ionos.com',
-    'www.icloud.com',
-    'icloud.com',
-    'mail.hostinger.com',
-    'ngx257.inmotionhosting.com',
-    'privateemail.com',
-    'app.titan.email',
-    'tools.siteground.com',
-    'portal.hostgator.com'
-];
+function getAllowedDomains() {
+    const { providers } = (0, loader_1.loadProviders)();
+    const allowedDomains = new Set();
+    for (const provider of providers) {
+        if (provider.loginUrl) {
+            try {
+                const url = new URL(provider.loginUrl);
+                allowedDomains.add(url.hostname);
+            }
+            catch {
+                // Skip invalid URLs
+                continue;
+            }
+        }
+    }
+    return allowedDomains;
+}
 /**
  * Suspicious URL patterns that should always be rejected
  */
@@ -208,12 +130,9 @@ function validateEmailProviderUrl(url) {
                 domain
             };
         }
-        // Check against allowlist
-        const isAllowed = ALLOWED_DOMAINS.some(allowedDomain => {
-            // Exact match or subdomain match
-            return domain === allowedDomain || domain.endsWith(`.${allowedDomain}`);
-        });
-        if (!isAllowed) {
+        // Check if the domain is allowed
+        const allowedDomains = getAllowedDomains();
+        if (!allowedDomains.has(domain)) {
             return {
                 isValid: false,
                 reason: `Domain '${domain}' is not in the allowlist`,

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@mikkelscheike/email-provider-links",
-  "version": "2.7.1",
-  "description": "TypeScript library for email provider detection with 93 providers (178 domains), concurrent DNS resolution, optimized performance, 91.75% test coverage, and enterprise security for login and password reset flows",
+  "version": "2.8.1",
+  "description": "TypeScript library for email provider detection with 93 providers (207 domains), concurrent DNS resolution, optimized performance, 91.75% test coverage, and enterprise security for login and password reset flows",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
   "files": [
@@ -11,9 +11,10 @@
     "!dist/**/*.map"
   ],
   "scripts": {
+    "clean": "rm -rf dist",
     "verify-hashes": "tsx scripts/verify-hashes.ts",
-    "build": "tsx scripts/verify-hashes.ts && tsc",
-    "test": "jest --silent",
+    "build": "npm run clean && tsx scripts/verify-hashes.ts && tsc",
+    "test": "jest",
     "test:watch": "jest --watch",
     "test:coverage": "jest --coverage",
     "prepublishOnly": "npm run verify-hashes && npm run build",
@@ -62,17 +63,17 @@
     "access": "public"
   },
   "devDependencies": {
-    "@jest/globals": "^30.0.2",
+    "@jest/globals": "^30.0.3",
     "@semantic-release/commit-analyzer": "^13.0.1",
     "@semantic-release/exec": "^7.1.0",
     "@semantic-release/git": "^10.0.1",
     "@semantic-release/github": "^11.0.3",
-    "@semantic-release/npm": "^12.0.1",
+    "@semantic-release/npm": "^12.0.2",
     "@semantic-release/release-notes-generator": "^14.0.3",
     "@types/jest": "^30.0.0",
-    "@types/node": "^24.0.3",
+    "@types/node": "^24.0.4",
     "conventional-changelog-conventionalcommits": "^9.0.0",
-    "jest": "^30.0.2",
+    "jest": "^30.0.3",
     "semantic-release": "^24.2.5",
     "ts-jest": "^29.4.0",
     "tsx": "^4.20.3",