npm - @minitool/feishu-bot - Versions diffs - 0.1.0 → 0.2.0 - Mend

@minitool/feishu-bot 0.1.0 → 0.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

package/CHANGELOG.md CHANGED Viewed

@@ -2,6 +2,27 @@
 本项目遵循 [Keep a Changelog](https://keepachangelog.com/zh-CN/1.1.0/) 与 [Semantic Versioning](https://semver.org/lang/zh-CN/)。
+## [0.2.0] - 2026-04-09
+### Added
+- **同构（isomorphic）支持** 🎉 同一份产物 `dist/index.js` 可在 Node 18+、现代浏览器、Service Worker、Chrome MV3 扩展 background SW、Cloudflare Workers、Deno、Bun 等运行时直接运行
+- `ImageSource` 新增 `Blob` / `File` 支持，浏览器与 SW 推荐用法：`bot.sendImage(await fetch(url).then(r => r.blob()))`
+- `TokenStorage` 适配器接口与 `CachedToken` 公开类型：可注入 `chrome.storage.session`、Redis、KV 等外部存储，让 `tenant_access_token` 在跨进程/跨重启（如 MV3 SW 被杀）时复用，避免冷启动消耗频次
+- `package.json` exports map 新增 `browser` / `worker` 条件，并增加顶层 `browser` 字段
+- README 新增「在浏览器 / Service Worker / 浏览器扩展 (MV3) 中使用」专章，含完整 MV3 manifest 与 `chrome.storage.session` 适配器示例
+- 测试覆盖 +7：`sendImage(Blob)` 字节级 round-trip、`sendImage(File)` 文件名保留、`tokenStorage` 透传到 `TokenManager`、storage 命中跳过网络、stale 时回退网络、storage.get 抛错降级、storage.set 失败不抛
+### Changed
+- 签名实现从 `node:crypto` 切换到 WebCrypto (`crypto.subtle`)，彻底移除 `node:crypto` 依赖；Node 18+ / 浏览器 / SW 都走同一条路径
+- `image-uploader` 中 `node:fs/promises` / `node:path` 的引用通过 `new Function('return import(...)')` 隐藏，避免被浏览器/扩展打包器静态分析为不可解析依赖；文件路径分支仍然只在 Node 可用，浏览器/SW 中传 string 路径会抛 `FeishuConfigError`
+- 构建 `target` 从 `node18` 改为 `es2022`
+### Breaking
+- `genSign(timestamp, secret)` 现在返回 `Promise<string>`（之前是同步 `string`）。原因：WebCrypto API 仅提供异步接口。使用 `FeishuBot` 高层方法（`sendText` / `sendImage` 等）的用户**不受影响**；直接 import 并调用 `genSign` 的用户需要加 `await`
 ## [0.1.0] - 2026-04-09
 ### Added

package/README.md CHANGED Viewed

@@ -1,12 +1,18 @@
 # @minitool/feishu-bot
-> 轻量、零运行时依赖、TypeScript 优先的飞书自定义机器人 SDK。
+[![npm version](https://img.shields.io/npm/v/@minitool/feishu-bot.svg?logo=npm)](https://www.npmjs.com/package/@minitool/feishu-bot)
+[![npm downloads](https://img.shields.io/npm/dm/@minitool/feishu-bot.svg)](https://www.npmjs.com/package/@minitool/feishu-bot)
+[![GitHub release](https://img.shields.io/github/v/release/hidumou/feishu-bot.svg?logo=github)](https://github.com/hidumou/feishu-bot/releases)
+[![License](https://img.shields.io/npm/l/@minitool/feishu-bot.svg)](./LICENSE)
+> 轻量、零运行时依赖、TypeScript 优先、**真正同构**的飞书自定义机器人 SDK。
 - ✅ 支持全部 5 种消息类型：`text` / `post` / `image` / `share_chat` / `interactive`
-- ✅ 透明处理图片上传：`sendImage('./local.png')` 自动走 `im/v1/images` 接口取 `image_key` 再发送
-- ✅ 自动注入签名（HMAC-SHA256）
-- ✅ `tenant_access_token` 自动缓存与刷新
-- ✅ 仅依赖 Node 18+ 内置 `fetch` / `FormData` / `Blob` / `node:crypto` / `node:fs/promises`，零运行时依赖
+- ✅ 透明处理图片上传：`sendImage(blob)` / `sendImage('./local.png')` 自动走 `im/v1/images` 接口取 `image_key` 再发送
+- ✅ 自动注入签名（HMAC-SHA256，基于 WebCrypto）
+- ✅ `tenant_access_token` 自动缓存与刷新，可选注入 `TokenStorage` 适配器（适合 MV3 SW 跨重启复用）
+- ✅ **同构**：同一个 bundle 在 Node 18+ / 浏览器 / Service Worker / 浏览器扩展 SW (MV3) / Cloudflare Workers / Deno / Bun 都能跑
+- ✅ 零运行时依赖，仅使用各运行时内置的 `fetch` / `FormData` / `Blob` / `crypto.subtle`
 - ✅ 构造期不抛错，便于「先 new 再注入配置」
 ## 安装
@@ -17,7 +23,8 @@ pnpm add @minitool/feishu-bot
 npm install @minitool/feishu-bot
 ```
-要求 Node.js ≥ 18。
+**运行时要求**：Node.js ≥ 18 / Chrome ≥ 89 / Firefox ≥ 90 / Safari ≥ 15 / Cloudflare Workers / Deno / Bun。
+凡是支持 `fetch` + `WebCrypto (crypto.subtle)` + `FormData` + `Blob` 的运行时都能用。
 ## 快速开始
@@ -49,6 +56,7 @@ await bot.sendText('Hello 飞书！');
 | `fetch` | — | 可选 | 注入自定义 fetch，测试用 |
 | `timeout` | — | 可选 | 请求超时，单位毫秒，默认 `10000` |
 | `baseUrl` | — | 可选 | 飞书开放平台基础 URL，默认 `https://open.feishu.cn` |
+| `tokenStorage` | — | 可选 | `TokenStorage` 适配器；用于让 `tenant_access_token` 在跨进程/跨重启时复用，详见下方「浏览器扩展 SW」小节 |
 > SDK 本身不引入 `dotenv`。如果你想用 `.env` 文件，可以通过 `node --env-file=.env app.js`（Node 20.6+）或在项目 devDep 里装 `dotenv` 自行预加载。
@@ -93,20 +101,26 @@ await bot.sendPost({
 // 1. 已有 image_key（以 `img_` 开头）→ 直发
 await bot.sendImage('img_v2_041b28e3-xxx');
-// 2. 本地文件路径 → 自动上传再发（需要 appId/appSecret）
+// 2. 本地文件路径 → 自动上传再发（仅 Node，需要 appId/appSecret）
 await bot.sendImage('./screenshot.png');
-// 3. Buffer / Uint8Array → 自动上传再发
+// 3. Buffer / Uint8Array → 自动上传再发（同构）
 import { readFile } from 'node:fs/promises';
 const buf = await readFile('./screenshot.png');
 await bot.sendImage(buf);
+// 4. Blob / File → 自动上传再发（浏览器 / SW / 扩展首选）
+const resp = await fetch('https://example.com/banner.png');
+await bot.sendImage(await resp.blob());
 // 也可以只拿 image_key，稍后自己复用
 const imageKey = await bot.uploadImage('./screenshot.png');
 await bot.sendImage(imageKey);
 ```
 > ⚠️ 图片上传需要自建应用的 App ID / App Secret，因为飞书 `im/v1/images` 接口要求 `tenant_access_token` 授权。
+>
+> ℹ️ 在浏览器 / SW / 扩展中，**只能用 `Blob` / `File` / `Uint8Array`**——传字符串路径会抛 `FeishuConfigError`。
 ### share_chat 分享群名片
@@ -181,7 +195,7 @@ sign         = Base64(HmacSHA256(key = stringToSign, data = ''))
 | `send(payload)` | 原子发送，接受已构造好的 `MessagePayload` |
 | `sendText(text, { atUserIds?, atAll? })` | 文本消息 |
 | `sendPost(post)` | 富文本 |
-| `sendImage(input)` | 图片：`string`（`img_` 前缀→直发 / 其它→路径上传）、`Buffer`、`Uint8Array` |
+| `sendImage(input)` | 图片：`string`（`img_` 前缀→直发 / 其它→路径上传，仅 Node）、`Buffer`、`Uint8Array`、`Blob`、`File` |
 | `sendShareChat(shareChatId)` | 分享群名片 |
 | `sendInteractive(card)` | 卡片 |
 | `uploadImage(file)` | 单独上传图片，返回 `image_key` |
@@ -199,6 +213,97 @@ const payload = buildText('hi', { atAll: true });
 // => { msg_type: 'text', content: { text: 'hi <at user_id="all">所有人</at>' } }
 ```
+## 在浏览器 / Service Worker / 浏览器扩展 (MV3) 中使用
+本 SDK 是真正同构的 —— 同一个 `dist/index.js` 可以直接在以下环境运行：Node 18+、现代浏览器主线程、Web/Service Worker、Chrome MV3 扩展 background SW、Cloudflare Workers、Deno、Bun。
+### 关键差异
+| 能力 | Node | 浏览器主线程 | MV3 SW |
+|---|:---:|:---:|:---:|
+| 文本 / 富文本 / 卡片 / 群名片 | ✅ | ⚠️ CORS¹ | ✅ |
+| 图片上传：`Blob` / `File` / `Uint8Array` | ✅ | ⚠️ CORS¹ | ✅ |
+| 图片上传：本地文件路径 string | ✅ | ❌ | ❌ |
+| `tenant_access_token` 跨重启复用 | 进程内即可 | localStorage 等 | ✅ 推荐 `chrome.storage.session` |
+¹ 浏览器主线程直连 `open.feishu.cn` 会被 CORS 拦截。**MV3 SW 不受 CORS 约束**，只要 `manifest.json` 里声明了 `host_permissions` 即可。
+### Chrome MV3 扩展示例
+`manifest.json`：
+```json
+{
+  "manifest_version": 3,
+  "name": "My Extension",
+  "version": "1.0.0",
+  "background": {
+    "service_worker": "background.js",
+    "type": "module"
+  },
+  "host_permissions": ["https://open.feishu.cn/*"],
+  "permissions": ["storage"]
+}
+```
+`background.ts`（用 Vite + `@crxjs/vite-plugin` 或 webpack 打包成 `background.js`）：
+```ts
+import { FeishuBot, type TokenStorage } from '@minitool/feishu-bot';
+// MV3 SW 空闲 ~30s 就会被杀，内存里的 token 会丢。
+// 注入 chrome.storage.session 适配器，让 token 在 SW 重启间存活。
+const tokenStorage: TokenStorage = {
+  async get() {
+    const { feishuToken } = await chrome.storage.session.get('feishuToken');
+    return feishuToken ?? null;
+  },
+  async set(value) {
+    await chrome.storage.session.set({ feishuToken: value });
+  },
+};
+const bot = new FeishuBot({
+  webhook: 'https://open.feishu.cn/open-apis/bot/v2/hook/xxxxxxxx',
+  secret: 'your-secret',          // 可选
+  appId: 'cli_xxx',               // 仅图片上传需要
+  appSecret: 'xxx',
+  tokenStorage,                   // ← 关键
+});
+// 文本
+await bot.sendText('hello from extension');
+// 图片：从网络拉一个 Blob 直接发
+const resp = await fetch('https://example.com/banner.png');
+await bot.sendImage(await resp.blob());
+// 或从 OffscreenCanvas
+const blob = await offscreenCanvas.convertToBlob();
+await bot.sendImage(blob);
+```
+### `TokenStorage` 接口
+```ts
+interface CachedToken {
+  token: string;
+  /** Unix 毫秒时间戳 */
+  expiresAt: number;
+}
+interface TokenStorage {
+  /** 没有缓存或读失败时返回 null */
+  get(): Promise<CachedToken | null>;
+  /** 写入新的 token；写失败不应抛 */
+  set(value: CachedToken): Promise<void>;
+}
+```
+`TokenManager` 内部按以下顺序查找：**内存缓存 → `TokenStorage` → 网络**。`storage` 抛任何异常都会被吞掉并降级到下一层，永不阻塞主流程。
+> 同样的适配器接口也可以用于 Cloudflare Workers KV、Redis、文件系统、Deno KV 等任何外部存储。
 ## 频控与限制
 飞书官方规则（每个机器人独立计数）：
@@ -209,13 +314,6 @@ const payload = buildText('hi', { atAll: true });
 SDK 不做内置限流；请在调用方按需排队或节流。
-## Roadmap
-下面是计划在 v0.2 加入的特性（当前版本已评估但延后）：
-- **更细粒度的错误类型**：在 `FeishuApiError` 之上拆分 `FeishuNetworkError` / `FeishuTimeoutError` / `FeishuHttpError` 子类（或在当前类上加 `kind` 字段），便于调用方区分超时、网络抖动、HTTP 状态码错误与业务 code。
-- **图片上传自定义元数据**：`uploadImage` / `sendImage` 支持 `{ filename, contentType }` 选项，用于 Buffer/Uint8Array 入参时指定文件名与 MIME。
 ## 许可
 MIT © hidumou

package/dist/index.cjs CHANGED Viewed

@@ -1,7 +1,4 @@
 Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
-let node_fs_promises = require("node:fs/promises");
-let node_path = require("node:path");
-let node_crypto = require("node:crypto");
 //#region src/env.ts
 /**
 * 安全读取 process.env。在不存在 process 的环境（如浏览器）里返回 undefined，不会崩溃。
@@ -132,9 +129,11 @@ var DEFAULT_BASE_URL$2 = "https://open.feishu.cn";
 var UPLOAD_PATH = "/open-apis/im/v1/images";
 /**
 * 图片上传器：调用 im/v1/images 接口，返回 image_key。
-* - string: 作为文件路径用 fs/promises.readFile 读成 Buffer
-* - Buffer/Uint8Array: 直接作为 Blob 数据
-* 用 globalThis 的 FormData + Blob（Node 18+ 内置），不依赖 form-data 包。
+*
+* 同构设计：
+*   - Blob / Uint8Array 分支在 Node 18+ / 浏览器 / Service Worker 都能跑
+*   - string 路径分支仅在 Node 可用，通过 new Function 隐藏 node:fs/promises 的
+*     静态引用，让浏览器/扩展打包器（Vite/Webpack/esbuild）不会因为找不到模块而报错
 */
 var ImageUploader = class {
 	tokenManager;
@@ -166,20 +165,44 @@ var ImageUploader = class {
 		return response.data.image_key;
 	}
 	async resolveSource(file) {
-		if (typeof file === "string") {
-			const buf = await (0, node_fs_promises.readFile)(file);
+		if (typeof Blob !== "undefined" && file instanceof Blob) {
+			const buf = await file.arrayBuffer();
+			const filename = file.name ?? "image";
 			return {
 				bytes: new Uint8Array(buf),
-				filename: (0, node_path.basename)(file)
+				filename
 			};
 		}
 		if (file instanceof Uint8Array) return {
 			bytes: file,
 			filename: "image"
 		};
-		throw new FeishuApiError("Unsupported image source type. Expected string path, Buffer, or Uint8Array.", -1, null);
+		if (typeof file === "string") {
+			if (typeof process === "undefined" || !process.versions?.node) throw new FeishuConfigError("String file path is only supported in Node.js. In browsers or Service Workers, pass a Blob, File, or Uint8Array instead.");
+			return loadFromFilePath(file);
+		}
+		throw new FeishuApiError("Unsupported image source type. Expected string path, Uint8Array, or Blob.", -1, null);
 	}
 };
+/**
+* 从文件路径读取字节（仅 Node）。
+*
+* 关键技巧：用 `new Function` 包裹 dynamic import 字符串，让 Vite / Webpack / esbuild
+* 等打包器无法静态分析这两个 node:* import，从而不会在浏览器/扩展产物里报「找不到模块」。
+*
+* 这条代码路径在浏览器/SW 中永远不可达（resolveSource 已经在 typeof process 处抛错了），
+* 所以静态引用即使被打入 bundle 也不会被执行。
+*/
+async function loadFromFilePath(filePath) {
+	const importFs = new Function("return import(\"node:fs/promises\")");
+	const importPath = new Function("return import(\"node:path\")");
+	const [fs, pathMod] = await Promise.all([importFs(), importPath()]);
+	const buf = await fs.readFile(filePath);
+	return {
+		bytes: new Uint8Array(buf),
+		filename: pathMod.basename(filePath)
+	};
+}
 //#endregion
 //#region src/messages/image.ts
 /**
@@ -284,17 +307,34 @@ function buildText(text, opts = {}) {
 //#endregion
 //#region src/signer.ts
 /**
-* 生成飞书自定义机器人签名。
+* 生成飞书自定义机器人签名（同构实现，使用 WebCrypto）。
 *
 * 算法（来自飞书官方文档，反直觉之处：HMAC 的 key 是 stringToSign 本身，data 是空字符串）：
 *   stringToSign = `${timestamp}\n${secret}`
 *   sign         = Base64(HmacSHA256(key = stringToSign, data = ''))
 *
+* 仅依赖 globalThis.crypto.subtle，因此在以下环境均可运行：
+*   - Node 18+（原生 WebCrypto）
+*   - 浏览器主线程
+*   - Service Worker / 浏览器扩展 Service Worker
+*   - Cloudflare Workers / Deno / Bun
+*
+* ⚠️ 破坏性变更（v0.1 → v0.2）：返回 Promise，而非同步字符串。
+*
 * @param timestamp  Unix 秒时间戳（飞书要求 ±1 小时窗口）
 * @param secret     机器人「安全设置 → 签名校验」得到的 secret
 */
-function genSign(timestamp, secret) {
-	return (0, node_crypto.createHmac)("sha256", `${timestamp}\n${secret}`).update("").digest("base64");
+async function genSign(timestamp, secret) {
+	const subtle = globalThis.crypto?.subtle;
+	if (!subtle) throw new Error("WebCrypto (globalThis.crypto.subtle) is not available. Use Node.js >= 18, a modern browser, or a Service Worker context.");
+	const stringToSign = `${timestamp}\n${secret}`;
+	const keyData = new TextEncoder().encode(stringToSign);
+	const cryptoKey = await subtle.importKey("raw", keyData, {
+		name: "HMAC",
+		hash: "SHA-256"
+	}, false, ["sign"]);
+	const signature = await subtle.sign("HMAC", cryptoKey, new Uint8Array(0));
+	return bytesToBase64(new Uint8Array(signature));
 }
 /**
 * 获取当前 Unix 秒时间戳。
@@ -302,6 +342,15 @@ function genSign(timestamp, secret) {
 function currentTimestamp() {
 	return Math.floor(Date.now() / 1e3);
 }
+/**
+* Uint8Array → base64。
+* 不依赖 Node Buffer，浏览器/SW/Node 18+ 都有 btoa。
+*/
+function bytesToBase64(bytes) {
+	let bin = "";
+	for (let i = 0; i < bytes.length; i++) bin += String.fromCharCode(bytes[i]);
+	return btoa(bin);
+}
 //#endregion
 //#region src/token-manager.ts
 var DEFAULT_BASE_URL$1 = "https://open.feishu.cn";
@@ -310,6 +359,12 @@ var TENANT_TOKEN_PATH = "/open-apis/auth/v3/tenant_access_token/internal";
 var REFRESH_THRESHOLD_MS = 1800 * 1e3;
 /**
 * tenant_access_token 缓存与自动刷新。
+*
+* 三层缓存查找顺序：
+*   1. 内存（最快）
+*   2. 注入的 TokenStorage（跨进程/跨 SW 重启）
+*   3. 网络获取
+*
 * 并发去重：多次 getToken() 在 in-flight 期间共享同一个 Promise，避免重复请求。
 */
 var TokenManager = class {
@@ -318,6 +373,7 @@ var TokenManager = class {
 	fetchImpl;
 	timeout;
 	baseUrl;
+	storage;
 	cached = null;
 	inflight = null;
 	constructor(options) {
@@ -327,21 +383,36 @@ var TokenManager = class {
 		this.fetchImpl = options.fetch;
 		this.timeout = options.timeout;
 		this.baseUrl = options.baseUrl ?? DEFAULT_BASE_URL$1;
+		this.storage = options.storage;
 	}
 	/**
-	* 获取有效 token。优先使用缓存；过期/即将过期时刷新。
+	* 获取有效 token。优先内存缓存；过期/即将过期时尝试 storage，最后回退到网络。
 	*/
 	async getToken() {
-		if (this.isCacheFresh()) return this.cached.token;
+		if (this.isFresh(this.cached)) return this.cached.token;
 		if (this.inflight) return this.inflight;
-		this.inflight = this.fetchToken().finally(() => {
+		this.inflight = this.refreshToken().finally(() => {
 			this.inflight = null;
 		});
 		return this.inflight;
 	}
-	isCacheFresh() {
-		if (!this.cached) return false;
-		return this.cached.expiresAt - Date.now() > REFRESH_THRESHOLD_MS;
+	isFresh(entry) {
+		if (!entry) return false;
+		return entry.expiresAt - Date.now() > REFRESH_THRESHOLD_MS;
+	}
+	/**
+	* 刷新流程：先尝试 storage（若注入），不可用则走网络。
+	* storage 异常一律视为「miss」，回退到网络，避免单点故障阻塞主流程。
+	*/
+	async refreshToken() {
+		if (this.storage) try {
+			const stored = await this.storage.get();
+			if (this.isFresh(stored)) {
+				this.cached = stored;
+				return stored.token;
+			}
+		} catch {}
+		return this.fetchToken();
 	}
 	async fetchToken() {
 		const response = await postJson(`${this.baseUrl}${TENANT_TOKEN_PATH}`, {
@@ -357,6 +428,9 @@ var TokenManager = class {
 			token: response.tenant_access_token,
 			expiresAt: Date.now() + expireSeconds * 1e3
 		};
+		if (this.storage) try {
+			await this.storage.set(this.cached);
+		} catch {}
 		return this.cached.token;
 	}
 };
@@ -382,6 +456,7 @@ var FeishuBot = class {
 	fetchImpl;
 	timeout;
 	baseUrl;
+	tokenStorage;
 	tokenManager = null;
 	imageUploader = null;
 	constructor(options = {}) {
@@ -392,6 +467,7 @@ var FeishuBot = class {
 		this.fetchImpl = options.fetch;
 		this.timeout = options.timeout;
 		this.baseUrl = options.baseUrl ?? DEFAULT_BASE_URL;
+		this.tokenStorage = options.tokenStorage;
 	}
 	/**
 	* 原子发送：接收已构造好的 payload，负责注入签名并 POST 到 webhook。
@@ -403,7 +479,7 @@ var FeishuBot = class {
 		if (this.secret) {
 			const timestamp = currentTimestamp();
 			finalPayload.timestamp = String(timestamp);
-			finalPayload.sign = genSign(timestamp, this.secret);
+			finalPayload.sign = await genSign(timestamp, this.secret);
 		}
 		const response = await postJson(webhook, finalPayload, {
 			fetch: this.fetchImpl,
@@ -462,7 +538,8 @@ var FeishuBot = class {
 				appSecret,
 				fetch: this.fetchImpl,
 				timeout: this.timeout,
-				baseUrl: this.baseUrl
+				baseUrl: this.baseUrl,
+				storage: this.tokenStorage
 			});
 		}
 		return this.tokenManager;

package/dist/index.cjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.cjs","names":[],"sources":["../src/env.ts","../src/errors.ts","../src/http.ts","../src/image-uploader.ts","../src/messages/image.ts","../src/messages/interactive.ts","../src/messages/post.ts","../src/messages/share-chat.ts","../src/messages/text.ts","../src/signer.ts","../src/token-manager.ts","../src/client.ts"],"sourcesContent":["/*\n 安全读取 process.env。在不存在 process 的环境（如浏览器）里返回 undefined，不会崩溃。\n * SDK 本身不引入 dotenv，调用方可自行用 `node --env-file=.env` 或 `dotenv/config` 预加载。\n /\nexport function readEnv(key: string): string \| undefined {\n if (typeof process === 'undefined' \|\| !process.env) {\n return undefined;\n }\n // 上面已经保证 process.env 存在，无需再用可选链。\n const value = process.env[key];\n if (value === undefined \|\| value === '') {\n return undefined;\n }\n return value;\n}\n","/\n 所有飞书机器人相关错误的基类。\n /\nexport class FeishuBotError extends Error {\n constructor(message: string) {\n super(message);\n this.name = 'FeishuBotError';\n // 保证原型链正确，便于 instanceof 检测\n Object.setPrototypeOf(this, new.target.prototype);\n }\n}\n\n/\n 配置相关错误：如未提供 webhook、secret、appId、appSecret 等。\n * 构造 FeishuBot 实例时不会抛；延迟到 send/upload 调用时才抛。\n /\nexport class FeishuConfigError extends FeishuBotError {\n constructor(message: string) {\n super(message);\n this.name = 'FeishuConfigError';\n }\n}\n\n/\n 调用飞书 OpenAPI 或 webhook 后，返回 code !== 0 或 HTTP 非 2xx 时抛出。\n /\nexport class FeishuApiError extends FeishuBotError {\n public readonly code: number;\n public readonly response: unknown;\n\n constructor(message: string, code: number, response: unknown) {\n super(message);\n this.name = 'FeishuApiError';\n this.code = code;\n this.response = response;\n }\n}\n","import { FeishuApiError } from './errors.js';\n\nexport interface RequestOptions {\n /* 自定义 fetch 实现，默认 globalThis.fetch /\n fetch?: typeof fetch;\n /* 请求超时，单位毫秒，默认 10000 /\n timeout?: number;\n /* 额外请求头 /\n headers?: Record<string, string>;\n}\n\nconst DEFAULT_TIMEOUT = 10_000;\n\ninterface RawResponse {\n status: number;\n statusText: string;\n ok: boolean;\n text: string;\n}\n\nfunction resolveFetch(customFetch?: typeof fetch): typeof fetch {\n const fn = customFetch ?? globalThis.fetch;\n if (typeof fn !== 'function') {\n throw new FeishuApiError(\n 'global fetch is not available. Please use Node.js >= 18 or provide a custom fetch.',\n -1,\n null,\n );\n }\n return fn;\n}\n\n/\n 通用请求执行器：处理 timeout + 错误归一化。\n * 为了让 timeout 覆盖整个 body 读取过程，在 clearTimeout 之前就完成 response.text()。\n * 返回结构化结果，由调用方自行决定是否解析 JSON。\n /\nasync function request(\n url: string,\n init: RequestInit,\n options: RequestOptions = {},\n): Promise<RawResponse> {\n const fetchImpl = resolveFetch(options.fetch);\n const timeout = options.timeout ?? DEFAULT_TIMEOUT;\n\n const controller = new AbortController();\n const timer = setTimeout(() => controller.abort(), timeout);\n\n try {\n const response = await fetchImpl(url, {\n ...init,\n signal: controller.signal,\n });\n // 关键：在 clearTimeout 之前读取 body，保证慢 body 也能触发 abort。\n const text = await response.text();\n return {\n status: response.status,\n statusText: response.statusText,\n ok: response.ok,\n text,\n };\n } catch (err) {\n if (err instanceof Error && err.name === 'AbortError') {\n throw new FeishuApiError(\n `Request timed out after ${timeout}ms: ${url}`,\n -1,\n null,\n );\n }\n if (err instanceof FeishuApiError) {\n throw err;\n }\n const message = err instanceof Error ? err.message : String(err);\n throw new FeishuApiError(`Network error: ${message}`, -1, null);\n } finally {\n clearTimeout(timer);\n }\n}\n\nfunction parseJsonBody<T>(raw: RawResponse): T {\n if (!raw.text) {\n throw new FeishuApiError(\n `Empty response body (HTTP ${raw.status})`,\n -1,\n null,\n );\n }\n try {\n return JSON.parse(raw.text) as T;\n } catch {\n throw new FeishuApiError(\n `Failed to parse JSON response (HTTP ${raw.status}): ${raw.text.slice(0, 200)}`,\n -1,\n raw.text,\n );\n }\n}\n\nfunction throwIfHttpError(raw: RawResponse): void {\n if (!raw.ok) {\n throw new FeishuApiError(\n `HTTP ${raw.status} ${raw.statusText}: ${raw.text.slice(0, 200)}`,\n raw.status,\n raw.text,\n );\n }\n}\n\n/\n POST JSON 请求，返回已解析的 JSON。HTTP 非 2xx 或解析失败时抛 FeishuApiError。\n * 注意：业务层 code !== 0 的判断由调用方处理（不同接口含义不同）。\n /\nexport async function postJson<T = unknown>(\n url: string,\n body: unknown,\n options: RequestOptions = {},\n): Promise<T> {\n const raw = await request(\n url,\n {\n method: 'POST',\n headers: {\n 'Content-Type': 'application/json; charset=utf-8',\n ...options.headers,\n },\n body: JSON.stringify(body),\n },\n options,\n );\n\n throwIfHttpError(raw);\n return parseJsonBody<T>(raw);\n}\n\n/\n POST 一个 FormData（multipart/form-data）。用于图片上传。\n * 注意：绝不要手动设置 Content-Type，让 fetch/undici 自动带 boundary。\n /\nexport async function postForm<T = unknown>(\n url: string,\n form: FormData,\n options: RequestOptions = {},\n): Promise<T> {\n const raw = await request(\n url,\n {\n method: 'POST',\n headers: {\n ...options.headers,\n },\n body: form,\n },\n options,\n );\n\n throwIfHttpError(raw);\n return parseJsonBody<T>(raw);\n}\n","import { readFile } from 'node:fs/promises';\nimport { basename } from 'node:path';\n\nimport { FeishuApiError } from './errors.js';\nimport { postForm } from './http.js';\nimport type { TokenManager } from './token-manager.js';\nimport type { FeishuApiResponse, UploadImageResult } from './types.js';\n\nconst DEFAULT_BASE_URL = 'https://open.feishu.cn';\nconst UPLOAD_PATH = '/open-apis/im/v1/images';\n\nexport interface ImageUploaderOptions {\n tokenManager: TokenManager;\n fetch?: typeof fetch;\n timeout?: number;\n baseUrl?: string;\n}\n\n/* 支持的图片源：文件路径字符串 / Buffer / Uint8Array /\nexport type ImageSource = string \| Buffer \| Uint8Array;\n\n/\n 图片上传器：调用 im/v1/images 接口，返回 image_key。\n * - string: 作为文件路径用 fs/promises.readFile 读成 Buffer\n * - Buffer/Uint8Array: 直接作为 Blob 数据\n * 用 globalThis 的 FormData + Blob（Node 18+ 内置），不依赖 form-data 包。\n /\nexport class ImageUploader {\n private readonly tokenManager: TokenManager;\n private readonly fetchImpl?: typeof fetch;\n private readonly timeout?: number;\n private readonly baseUrl: string;\n\n constructor(options: ImageUploaderOptions) {\n this.tokenManager = options.tokenManager;\n this.fetchImpl = options.fetch;\n this.timeout = options.timeout;\n this.baseUrl = options.baseUrl ?? DEFAULT_BASE_URL;\n }\n\n /\n 上传图片，返回 image_key。\n /\n async uploadImage(file: ImageSource): Promise<string> {\n const { bytes, filename } = await this.resolveSource(file);\n const token = await this.tokenManager.getToken();\n\n const form = new FormData();\n form.append('image_type', 'message');\n // Blob 构造器的 BlobPart 要求 Uint8Array 必须以 ArrayBuffer（而非 SharedArrayBuffer）为底。\n // 通过 bytes.slice() 得到一份拥有独立 ArrayBuffer 的新 Uint8Array。\n const blob = new Blob([bytes.slice()], {\n type: 'application/octet-stream',\n });\n form.append('image', blob, filename);\n\n const url = `${this.baseUrl}${UPLOAD_PATH}`;\n const response = await postForm<FeishuApiResponse<UploadImageResult>>(\n url,\n form,\n {\n fetch: this.fetchImpl,\n timeout: this.timeout,\n headers: {\n Authorization: `Bearer ${token}`,\n },\n },\n );\n\n if (response.code !== 0 \|\| !response.data?.image_key) {\n throw new FeishuApiError(\n `Failed to upload image: ${response.msg ?? 'unknown error'}`,\n response.code ?? -1,\n response,\n );\n }\n\n return response.data.image_key;\n }\n\n private async resolveSource(\n file: ImageSource,\n ): Promise<{ bytes: Uint8Array; filename: string }> {\n if (typeof file === 'string') {\n const buf = await readFile(file);\n return { bytes: new Uint8Array(buf), filename: basename(file) };\n }\n if (file instanceof Uint8Array) {\n // Buffer extends Uint8Array\n return { bytes: file, filename: 'image' };\n }\n throw new FeishuApiError(\n 'Unsupported image source type. Expected string path, Buffer, or Uint8Array.',\n -1,\n null,\n );\n }\n}\n","import type { ImageMessage } from '../types.js';\n\n/\n 构造 image 消息。\n \n 注意：自定义机器人直发 image 消息只认 image_key（形如 `img_xxx`）。\n * 想要直接发送本地文件，请使用 FeishuBot.sendImage() 或 FeishuBot.uploadImage()。\n /\nexport function buildImage(imageKey: string): ImageMessage {\n return {\n msg_type: 'image',\n content: {\n image_key: imageKey,\n },\n };\n}\n","import type { InteractiveCard, InteractiveMessage } from '../types.js';\n\n/\n 构造卡片（interactive）消息。\n \n 直接透传 card 结构。支持 card schema 2.0 或旧版 header/elements 格式：\n \n buildInteractive({\n * schema: \"2.0\",\n * header: { title: { tag: \"plain_text\", content: \"标题\" } },\n * body: { elements: [...] },\n * });\n \n // 或旧版：\n * buildInteractive({\n * config: { wide_screen_mode: true },\n * header: { template: \"blue\", title: { tag: \"plain_text\", content: \"标题\" } },\n * elements: [...],\n * });\n /\nexport function buildInteractive(card: InteractiveCard): InteractiveMessage {\n return {\n msg_type: 'interactive',\n card,\n };\n}\n","import type { PostContent, PostMessage } from '../types.js';\n\n/\n 构造富文本（post）消息。\n \n 用户构造 PostContent（支持 zh_cn/en_us/ja_jp 三语言），每个语言下是 `content: PostTag[][]` 的二维数组：\n * 外层是段落（行），内层是行内的标签（text/a/at/img）。\n \n 示例：\n * buildPost({\n * zh_cn: {\n * title: \"标题\",\n * content: [\n * [{ tag: \"text\", text: \"第一段: \" }, { tag: \"a\", text: \"点这里\", href: \"https://...\" }],\n * [{ tag: \"img\", image_key: \"img_xxx\" }],\n * ],\n * },\n * });\n /\nexport function buildPost(post: PostContent): PostMessage {\n return {\n msg_type: 'post',\n content: { post },\n };\n}\n","import type { ShareChatMessage } from '../types.js';\n\n/\n 构造分享群名片（share_chat）消息。\n \n @param shareChatId 群 chat_id（形如 `oc_xxx`）\n /\nexport function buildShareChat(shareChatId: string): ShareChatMessage {\n return {\n msg_type: 'share_chat',\n content: {\n share_chat_id: shareChatId,\n },\n };\n}\n","import type { AtOptions, TextMessage } from '../types.js';\n\n/\n 构造 text 消息。\n \n @-提醒说明（来自飞书文档）：\n * - @ 所有人：`<at user_id=\"all\">所有人</at>`（仅群里能用，必须机器人所在群支持）\n * - @ 指定用户（需已知 open_id）：`<at user_id=\"ou_xxx\"></at>`\n \n 示例：\n * buildText(\"hello\", { atAll: true })\n * // => { msg_type: \"text\", content: { text: \"hello <at user_id=\\\"all\\\">所有人</at>\" } }\n /\nexport function buildText(text: string, opts: AtOptions = {}): TextMessage {\n const parts: string[] = [];\n if (text) {\n parts.push(text);\n }\n if (opts.atUserIds && opts.atUserIds.length > 0) {\n for (const id of opts.atUserIds) {\n parts.push(`<at user_id=\"${id}\"></at>`);\n }\n }\n if (opts.atAll) {\n parts.push('<at user_id=\"all\">所有人</at>');\n }\n return {\n msg_type: 'text',\n content: {\n text: parts.join(' '),\n },\n };\n}\n","import { createHmac } from 'node:crypto';\n\n/\n 生成飞书自定义机器人签名。\n \n 算法（来自飞书官方文档，反直觉之处：HMAC 的 key 是 stringToSign 本身，data 是空字符串）：\n * stringToSign = `${timestamp}\\n${secret}`\n * sign = Base64(HmacSHA256(key = stringToSign, data = ''))\n \n @param timestamp Unix 秒时间戳（飞书要求 ±1 小时窗口）\n * @param secret 机器人「安全设置 → 签名校验」得到的 secret\n /\nexport function genSign(timestamp: number \| string, secret: string): string {\n const stringToSign = `${timestamp}\\n${secret}`;\n return createHmac('sha256', stringToSign).update('').digest('base64');\n}\n\n/\n 获取当前 Unix 秒时间戳。\n /\nexport function currentTimestamp(): number {\n return Math.floor(Date.now() / 1000);\n}\n","import { FeishuApiError, FeishuConfigError } from './errors.js';\nimport { postJson } from './http.js';\nimport type { TenantAccessTokenResponse } from './types.js';\n\nconst DEFAULT_BASE_URL = 'https://open.feishu.cn';\nconst TENANT_TOKEN_PATH = '/open-apis/auth/v3/tenant_access_token/internal';\n\n/* 剩余有效时间小于 30 分钟就刷新 /\nconst REFRESH_THRESHOLD_MS = 30 60 * 1000;\n\nexport interface TokenManagerOptions {\n appId: string;\n appSecret: string;\n fetch?: typeof fetch;\n timeout?: number;\n baseUrl?: string;\n}\n\ninterface CachedToken {\n token: string;\n expiresAt: number;\n}\n\n/*\n tenant_access_token 缓存与自动刷新。\n * 并发去重：多次 getToken() 在 in-flight 期间共享同一个 Promise，避免重复请求。\n /\nexport class TokenManager {\n private readonly appId: string;\n private readonly appSecret: string;\n private readonly fetchImpl?: typeof fetch;\n private readonly timeout?: number;\n private readonly baseUrl: string;\n\n private cached: CachedToken \| null = null;\n private inflight: Promise<string> \| null = null;\n\n constructor(options: TokenManagerOptions) {\n if (!options.appId \|\| !options.appSecret) {\n throw new FeishuConfigError(\n 'appId and appSecret are required for TokenManager',\n );\n }\n this.appId = options.appId;\n this.appSecret = options.appSecret;\n this.fetchImpl = options.fetch;\n this.timeout = options.timeout;\n this.baseUrl = options.baseUrl ?? DEFAULT_BASE_URL;\n }\n\n /\n 获取有效 token。优先使用缓存；过期/即将过期时刷新。\n /\n async getToken(): Promise<string> {\n if (this.isCacheFresh()) {\n return this.cached!.token;\n }\n if (this.inflight) {\n return this.inflight;\n }\n this.inflight = this.fetchToken().finally(() => {\n this.inflight = null;\n });\n return this.inflight;\n }\n\n private isCacheFresh(): boolean {\n if (!this.cached) return false;\n return this.cached.expiresAt - Date.now() > REFRESH_THRESHOLD_MS;\n }\n\n private async fetchToken(): Promise<string> {\n const url = `${this.baseUrl}${TENANT_TOKEN_PATH}`;\n const body = {\n app_id: this.appId,\n app_secret: this.appSecret,\n };\n const response = await postJson<TenantAccessTokenResponse>(url, body, {\n fetch: this.fetchImpl,\n timeout: this.timeout,\n });\n\n if (response.code !== 0 \|\| !response.tenant_access_token) {\n throw new FeishuApiError(\n `Failed to fetch tenant_access_token: ${response.msg ?? 'unknown error'}`,\n response.code ?? -1,\n response,\n );\n }\n\n const expireSeconds = response.expire ?? 7200;\n this.cached = {\n token: response.tenant_access_token,\n expiresAt: Date.now() + expireSeconds 1000,\n };\n return this.cached.token;\n }\n}\n","import { readEnv } from './env.js';\nimport { FeishuApiError, FeishuConfigError } from './errors.js';\nimport { postJson } from './http.js';\nimport { ImageUploader, type ImageSource } from './image-uploader.js';\nimport { buildImage } from './messages/image.js';\nimport { buildInteractive } from './messages/interactive.js';\nimport { buildPost } from './messages/post.js';\nimport { buildShareChat } from './messages/share-chat.js';\nimport { buildText } from './messages/text.js';\nimport { currentTimestamp, genSign } from './signer.js';\nimport { TokenManager } from './token-manager.js';\nimport type {\n AtOptions,\n FeishuApiResponse,\n FeishuBotOptions,\n InteractiveCard,\n MessagePayload,\n PostContent,\n SignedPayload,\n} from './types.js';\n\nconst DEFAULT_BASE_URL = 'https://open.feishu.cn';\n\n/*\n 飞书自定义机器人 SDK 主类。\n \n 构造期不会报错；缺失配置时延迟到 send/upload 调用时抛出 FeishuConfigError，\n * 便于「先 new 再注入配置」的使用模式。\n \n 使用示例：\n * const bot = new FeishuBot(); // 从 env 读配置\n * await bot.sendText(\"hello\", { atAll: true });\n * await bot.sendImage(\"./banner.png\"); // 自动上传得到 image_key 再发送\n /\nexport class FeishuBot {\n private readonly webhook?: string;\n private readonly secret?: string;\n private readonly appId?: string;\n private readonly appSecret?: string;\n private readonly fetchImpl?: typeof fetch;\n private readonly timeout?: number;\n private readonly baseUrl: string;\n\n private tokenManager: TokenManager \| null = null;\n private imageUploader: ImageUploader \| null = null;\n\n constructor(options: FeishuBotOptions = {}) {\n // 合并优先级：显式参数 > env 变量 > undefined\n this.webhook = options.webhook ?? readEnv('FEISHU_BOT_WEBHOOK');\n this.secret = options.secret ?? readEnv('FEISHU_BOT_SECRET');\n this.appId = options.appId ?? readEnv('FEISHU_APP_ID');\n this.appSecret = options.appSecret ?? readEnv('FEISHU_APP_SECRET');\n this.fetchImpl = options.fetch;\n this.timeout = options.timeout;\n this.baseUrl = options.baseUrl ?? DEFAULT_BASE_URL;\n }\n\n // ---------- 原子发送 ----------\n\n /\n 原子发送：接收已构造好的 payload，负责注入签名并 POST 到 webhook。\n * code !== 0 时抛 FeishuApiError。\n /\n async send<T = unknown>(\n payload: MessagePayload,\n ): Promise<FeishuApiResponse<T>> {\n const webhook = this.ensureWebhook();\n const finalPayload: SignedPayload = { ...payload };\n\n if (this.secret) {\n const timestamp = currentTimestamp();\n finalPayload.timestamp = String(timestamp);\n finalPayload.sign = genSign(timestamp, this.secret);\n }\n\n const response = await postJson<FeishuApiResponse<T>>(\n webhook,\n finalPayload,\n {\n fetch: this.fetchImpl,\n timeout: this.timeout,\n },\n );\n\n // 飞书 webhook 成功时 code=0；其它数值都视为业务错误。\n if (response.code !== 0) {\n throw new FeishuApiError(\n `Feishu webhook error: ${response.msg ?? 'unknown'} (code=${response.code})`,\n response.code,\n response,\n );\n }\n\n return response;\n }\n\n // ---------- 高层便捷方法 ----------\n\n sendText(text: string, opts?: AtOptions): Promise<FeishuApiResponse> {\n return this.send(buildText(text, opts));\n }\n\n sendPost(post: PostContent): Promise<FeishuApiResponse> {\n return this.send(buildPost(post));\n }\n\n sendShareChat(shareChatId: string): Promise<FeishuApiResponse> {\n return this.send(buildShareChat(shareChatId));\n }\n\n sendInteractive(card: InteractiveCard): Promise<FeishuApiResponse> {\n return this.send(buildInteractive(card));\n }\n\n /\n 发送图片。智能识别三种入参：\n * - string 且以 `img_` 开头 → 直接当 image_key 使用\n * - string 否则 → 视为本地文件路径，先上传再发送\n * - Buffer / Uint8Array → 直接上传再发送\n /\n async sendImage(input: ImageSource): Promise<FeishuApiResponse> {\n let imageKey: string;\n if (typeof input === 'string' && input.startsWith('img_')) {\n imageKey = input;\n } else {\n imageKey = await this.uploadImage(input);\n }\n return this.send(buildImage(imageKey));\n }\n\n /\n 暴露底层图片上传，便于调用方复用 image_key。\n * 需要 appId / appSecret 配置。\n */\n async uploadImage(file: ImageSource): Promise<string> {\n const uploader = this.getImageUploader();\n return uploader.uploadImage(file);\n }\n\n // ---------- 私有：懒初始化 + 校验 ----------\n\n private ensureWebhook(): string {\n if (!this.webhook) {\n throw new FeishuConfigError(\n 'webhook is required. Provide `webhook` in options or set FEISHU_BOT_WEBHOOK env.',\n );\n }\n return this.webhook;\n }\n\n private ensureAppCredentials(): { appId: string; appSecret: string } {\n if (!this.appId \|\| !this.appSecret) {\n throw new FeishuConfigError(\n 'appId and appSecret are required for image upload. Provide them in options or set FEISHU_APP_ID / FEISHU_APP_SECRET env.',\n );\n }\n return { appId: this.appId, appSecret: this.appSecret };\n }\n\n private getTokenManager(): TokenManager {\n if (!this.tokenManager) {\n const { appId, appSecret } = this.ensureAppCredentials();\n this.tokenManager = new TokenManager({\n appId,\n appSecret,\n fetch: this.fetchImpl,\n timeout: this.timeout,\n baseUrl: this.baseUrl,\n });\n }\n return this.tokenManager;\n }\n\n private getImageUploader(): ImageUploader {\n if (!this.imageUploader) {\n this.imageUploader = new ImageUploader({\n tokenManager: this.getTokenManager(),\n fetch: this.fetchImpl,\n timeout: this.timeout,\n baseUrl: this.baseUrl,\n });\n }\n return this.imageUploader;\n }\n}\n"],"mappings":";;;;;;;;;AAIA,SAAgB,QAAQ,KAAiC;AACvD,KAAI,OAAO,YAAY,eAAe,CAAC,QAAQ,IAC7C;CAGF,MAAM,QAAQ,QAAQ,IAAI;AAC1B,KAAI,UAAU,KAAA,KAAa,UAAU,GACnC;AAEF,QAAO;;;;;;;ACVT,IAAa,iBAAb,cAAoC,MAAM;CACxC,YAAY,SAAiB;AAC3B,QAAM,QAAQ;AACd,OAAK,OAAO;AAEZ,SAAO,eAAe,MAAM,IAAI,OAAO,UAAU;;;;;;;AAQrD,IAAa,oBAAb,cAAuC,eAAe;CACpD,YAAY,SAAiB;AAC3B,QAAM,QAAQ;AACd,OAAK,OAAO;;;;;;AAOhB,IAAa,iBAAb,cAAoC,eAAe;CACjD;CACA;CAEA,YAAY,SAAiB,MAAc,UAAmB;AAC5D,QAAM,QAAQ;AACd,OAAK,OAAO;AACZ,OAAK,OAAO;AACZ,OAAK,WAAW;;;;;ACvBpB,IAAM,kBAAkB;AASxB,SAAS,aAAa,aAA0C;CAC9D,MAAM,KAAK,eAAe,WAAW;AACrC,KAAI,OAAO,OAAO,WAChB,OAAM,IAAI,eACR,sFACA,IACA,KACD;AAEH,QAAO;;;;;;;AAQT,eAAe,QACb,KACA,MACA,UAA0B,EAAE,EACN;CACtB,MAAM,YAAY,aAAa,QAAQ,MAAM;CAC7C,MAAM,UAAU,QAAQ,WAAW;CAEnC,MAAM,aAAa,IAAI,iBAAiB;CACxC,MAAM,QAAQ,iBAAiB,WAAW,OAAO,EAAE,QAAQ;AAE3D,KAAI;EACF,MAAM,WAAW,MAAM,UAAU,KAAK;GACpC,GAAG;GACH,QAAQ,WAAW;GACpB,CAAC;EAEF,MAAM,OAAO,MAAM,SAAS,MAAM;AAClC,SAAO;GACL,QAAQ,SAAS;GACjB,YAAY,SAAS;GACrB,IAAI,SAAS;GACb;GACD;UACM,KAAK;AACZ,MAAI,eAAe,SAAS,IAAI,SAAS,aACvC,OAAM,IAAI,eACR,2BAA2B,QAAQ,MAAM,OACzC,IACA,KACD;AAEH,MAAI,eAAe,eACjB,OAAM;AAGR,QAAM,IAAI,eAAe,kBADT,eAAe,QAAQ,IAAI,UAAU,OAAO,IAAI,IACV,IAAI,KAAK;WACvD;AACR,eAAa,MAAM;;;AAIvB,SAAS,cAAiB,KAAqB;AAC7C,KAAI,CAAC,IAAI,KACP,OAAM,IAAI,eACR,6BAA6B,IAAI,OAAO,IACxC,IACA,KACD;AAEH,KAAI;AACF,SAAO,KAAK,MAAM,IAAI,KAAK;SACrB;AACN,QAAM,IAAI,eACR,uCAAuC,IAAI,OAAO,KAAK,IAAI,KAAK,MAAM,GAAG,IAAI,IAC7E,IACA,IAAI,KACL;;;AAIL,SAAS,iBAAiB,KAAwB;AAChD,KAAI,CAAC,IAAI,GACP,OAAM,IAAI,eACR,QAAQ,IAAI,OAAO,GAAG,IAAI,WAAW,IAAI,IAAI,KAAK,MAAM,GAAG,IAAI,IAC/D,IAAI,QACJ,IAAI,KACL;;;;;;AAQL,eAAsB,SACpB,KACA,MACA,UAA0B,EAAE,EAChB;CACZ,MAAM,MAAM,MAAM,QAChB,KACA;EACE,QAAQ;EACR,SAAS;GACP,gBAAgB;GAChB,GAAG,QAAQ;GACZ;EACD,MAAM,KAAK,UAAU,KAAK;EAC3B,EACD,QACD;AAED,kBAAiB,IAAI;AACrB,QAAO,cAAiB,IAAI;;;;;;AAO9B,eAAsB,SACpB,KACA,MACA,UAA0B,EAAE,EAChB;CACZ,MAAM,MAAM,MAAM,QAChB,KACA;EACE,QAAQ;EACR,SAAS,EACP,GAAG,QAAQ,SACZ;EACD,MAAM;EACP,EACD,QACD;AAED,kBAAiB,IAAI;AACrB,QAAO,cAAiB,IAAI;;;;ACpJ9B,IAAM,qBAAmB;AACzB,IAAM,cAAc;;;;;;;AAkBpB,IAAa,gBAAb,MAA2B;CACzB;CACA;CACA;CACA;CAEA,YAAY,SAA+B;AACzC,OAAK,eAAe,QAAQ;AAC5B,OAAK,YAAY,QAAQ;AACzB,OAAK,UAAU,QAAQ;AACvB,OAAK,UAAU,QAAQ,WAAW;;;;;CAMpC,MAAM,YAAY,MAAoC;EACpD,MAAM,EAAE,OAAO,aAAa,MAAM,KAAK,cAAc,KAAK;EAC1D,MAAM,QAAQ,MAAM,KAAK,aAAa,UAAU;EAEhD,MAAM,OAAO,IAAI,UAAU;AAC3B,OAAK,OAAO,cAAc,UAAU;EAGpC,MAAM,OAAO,IAAI,KAAK,CAAC,MAAM,OAAO,CAAC,EAAE,EACrC,MAAM,4BACP,CAAC;AACF,OAAK,OAAO,SAAS,MAAM,SAAS;EAGpC,MAAM,WAAW,MAAM,SADX,GAAG,KAAK,UAAU,eAG5B,MACA;GACE,OAAO,KAAK;GACZ,SAAS,KAAK;GACd,SAAS,EACP,eAAe,UAAU,SAC1B;GACF,CACF;AAED,MAAI,SAAS,SAAS,KAAK,CAAC,SAAS,MAAM,UACzC,OAAM,IAAI,eACR,2BAA2B,SAAS,OAAO,mBAC3C,SAAS,QAAQ,IACjB,SACD;AAGH,SAAO,SAAS,KAAK;;CAGvB,MAAc,cACZ,MACkD;AAClD,MAAI,OAAO,SAAS,UAAU;GAC5B,MAAM,MAAM,OAAA,GAAA,iBAAA,UAAe,KAAK;AAChC,UAAO;IAAE,OAAO,IAAI,WAAW,IAAI;IAAE,WAAA,GAAA,UAAA,UAAmB,KAAK;IAAE;;AAEjE,MAAI,gBAAgB,WAElB,QAAO;GAAE,OAAO;GAAM,UAAU;GAAS;AAE3C,QAAM,IAAI,eACR,+EACA,IACA,KACD;;;;;;;;;;;ACvFL,SAAgB,WAAW,UAAgC;AACzD,QAAO;EACL,UAAU;EACV,SAAS,EACP,WAAW,UACZ;EACF;;;;;;;;;;;;;;;;;;;;;;ACMH,SAAgB,iBAAiB,MAA2C;AAC1E,QAAO;EACL,UAAU;EACV;EACD;;;;;;;;;;;;;;;;;;;;;ACLH,SAAgB,UAAU,MAAgC;AACxD,QAAO;EACL,UAAU;EACV,SAAS,EAAE,MAAM;EAClB;;;;;;;;;AChBH,SAAgB,eAAe,aAAuC;AACpE,QAAO;EACL,UAAU;EACV,SAAS,EACP,eAAe,aAChB;EACF;;;;;;;;;;;;;;;ACAH,SAAgB,UAAU,MAAc,OAAkB,EAAE,EAAe;CACzE,MAAM,QAAkB,EAAE;AAC1B,KAAI,KACF,OAAM,KAAK,KAAK;AAElB,KAAI,KAAK,aAAa,KAAK,UAAU,SAAS,EAC5C,MAAK,MAAM,MAAM,KAAK,UACpB,OAAM,KAAK,gBAAgB,GAAG,SAAS;AAG3C,KAAI,KAAK,MACP,OAAM,KAAK,+BAA6B;AAE1C,QAAO;EACL,UAAU;EACV,SAAS,EACP,MAAM,MAAM,KAAK,IAAI,EACtB;EACF;;;;;;;;;;;;;;ACnBH,SAAgB,QAAQ,WAA4B,QAAwB;AAE1E,SAAA,GAAA,YAAA,YAAkB,UADG,GAAG,UAAU,IAAI,SACG,CAAC,OAAO,GAAG,CAAC,OAAO,SAAS;;;;;AAMvE,SAAgB,mBAA2B;AACzC,QAAO,KAAK,MAAM,KAAK,KAAK,GAAG,IAAK;;;;ACjBtC,IAAM,qBAAmB;AACzB,IAAM,oBAAoB;;AAG1B,IAAM,uBAAuB,OAAU;;;;;AAmBvC,IAAa,eAAb,MAA0B;CACxB;CACA;CACA;CACA;CACA;CAEA,SAAqC;CACrC,WAA2C;CAE3C,YAAY,SAA8B;AACxC,MAAI,CAAC,QAAQ,SAAS,CAAC,QAAQ,UAC7B,OAAM,IAAI,kBACR,oDACD;AAEH,OAAK,QAAQ,QAAQ;AACrB,OAAK,YAAY,QAAQ;AACzB,OAAK,YAAY,QAAQ;AACzB,OAAK,UAAU,QAAQ;AACvB,OAAK,UAAU,QAAQ,WAAW;;;;;CAMpC,MAAM,WAA4B;AAChC,MAAI,KAAK,cAAc,CACrB,QAAO,KAAK,OAAQ;AAEtB,MAAI,KAAK,SACP,QAAO,KAAK;AAEd,OAAK,WAAW,KAAK,YAAY,CAAC,cAAc;AAC9C,QAAK,WAAW;IAChB;AACF,SAAO,KAAK;;CAGd,eAAgC;AAC9B,MAAI,CAAC,KAAK,OAAQ,QAAO;AACzB,SAAO,KAAK,OAAO,YAAY,KAAK,KAAK,GAAG;;CAG9C,MAAc,aAA8B;EAM1C,MAAM,WAAW,MAAM,SALX,GAAG,KAAK,UAAU,qBACjB;GACX,QAAQ,KAAK;GACb,YAAY,KAAK;GAClB,EACqE;GACpE,OAAO,KAAK;GACZ,SAAS,KAAK;GACf,CAAC;AAEF,MAAI,SAAS,SAAS,KAAK,CAAC,SAAS,oBACnC,OAAM,IAAI,eACR,wCAAwC,SAAS,OAAO,mBACxD,SAAS,QAAQ,IACjB,SACD;EAGH,MAAM,gBAAgB,SAAS,UAAU;AACzC,OAAK,SAAS;GACZ,OAAO,SAAS;GAChB,WAAW,KAAK,KAAK,GAAG,gBAAgB;GACzC;AACD,SAAO,KAAK,OAAO;;;;;AC1EvB,IAAM,mBAAmB;;;;;;;;;;;;AAazB,IAAa,YAAb,MAAuB;CACrB;CACA;CACA;CACA;CACA;CACA;CACA;CAEA,eAA4C;CAC5C,gBAA8C;CAE9C,YAAY,UAA4B,EAAE,EAAE;AAE1C,OAAK,UAAU,QAAQ,WAAW,QAAQ,qBAAqB;AAC/D,OAAK,SAAS,QAAQ,UAAU,QAAQ,oBAAoB;AAC5D,OAAK,QAAQ,QAAQ,SAAS,QAAQ,gBAAgB;AACtD,OAAK,YAAY,QAAQ,aAAa,QAAQ,oBAAoB;AAClE,OAAK,YAAY,QAAQ;AACzB,OAAK,UAAU,QAAQ;AACvB,OAAK,UAAU,QAAQ,WAAW;;;;;;CASpC,MAAM,KACJ,SAC+B;EAC/B,MAAM,UAAU,KAAK,eAAe;EACpC,MAAM,eAA8B,EAAE,GAAG,SAAS;AAElD,MAAI,KAAK,QAAQ;GACf,MAAM,YAAY,kBAAkB;AACpC,gBAAa,YAAY,OAAO,UAAU;AAC1C,gBAAa,OAAO,QAAQ,WAAW,KAAK,OAAO;;EAGrD,MAAM,WAAW,MAAM,SACrB,SACA,cACA;GACE,OAAO,KAAK;GACZ,SAAS,KAAK;GACf,CACF;AAGD,MAAI,SAAS,SAAS,EACpB,OAAM,IAAI,eACR,yBAAyB,SAAS,OAAO,UAAU,SAAS,SAAS,KAAK,IAC1E,SAAS,MACT,SACD;AAGH,SAAO;;CAKT,SAAS,MAAc,MAA8C;AACnE,SAAO,KAAK,KAAK,UAAU,MAAM,KAAK,CAAC;;CAGzC,SAAS,MAA+C;AACtD,SAAO,KAAK,KAAK,UAAU,KAAK,CAAC;;CAGnC,cAAc,aAAiD;AAC7D,SAAO,KAAK,KAAK,eAAe,YAAY,CAAC;;CAG/C,gBAAgB,MAAmD;AACjE,SAAO,KAAK,KAAK,iBAAiB,KAAK,CAAC;;;;;;;;CAS1C,MAAM,UAAU,OAAgD;EAC9D,IAAI;AACJ,MAAI,OAAO,UAAU,YAAY,MAAM,WAAW,OAAO,CACvD,YAAW;MAEX,YAAW,MAAM,KAAK,YAAY,MAAM;AAE1C,SAAO,KAAK,KAAK,WAAW,SAAS,CAAC;;;;;;CAOxC,MAAM,YAAY,MAAoC;AAEpD,SADiB,KAAK,kBAAkB,CACxB,YAAY,KAAK;;CAKnC,gBAAgC;AAC9B,MAAI,CAAC,KAAK,QACR,OAAM,IAAI,kBACR,mFACD;AAEH,SAAO,KAAK;;CAGd,uBAAqE;AACnE,MAAI,CAAC,KAAK,SAAS,CAAC,KAAK,UACvB,OAAM,IAAI,kBACR,2HACD;AAEH,SAAO;GAAE,OAAO,KAAK;GAAO,WAAW,KAAK;GAAW;;CAGzD,kBAAwC;AACtC,MAAI,CAAC,KAAK,cAAc;GACtB,MAAM,EAAE,OAAO,cAAc,KAAK,sBAAsB;AACxD,QAAK,eAAe,IAAI,aAAa;IACnC;IACA;IACA,OAAO,KAAK;IACZ,SAAS,KAAK;IACd,SAAS,KAAK;IACf,CAAC;;AAEJ,SAAO,KAAK;;CAGd,mBAA0C;AACxC,MAAI,CAAC,KAAK,cACR,MAAK,gBAAgB,IAAI,cAAc;GACrC,cAAc,KAAK,iBAAiB;GACpC,OAAO,KAAK;GACZ,SAAS,KAAK;GACd,SAAS,KAAK;GACf,CAAC;AAEJ,SAAO,KAAK"}
1	+ {"version":3,"file":"index.cjs","names":[],"sources":["../src/env.ts","../src/errors.ts","../src/http.ts","../src/image-uploader.ts","../src/messages/image.ts","../src/messages/interactive.ts","../src/messages/post.ts","../src/messages/share-chat.ts","../src/messages/text.ts","../src/signer.ts","../src/token-manager.ts","../src/client.ts"],"sourcesContent":["/*\n 安全读取 process.env。在不存在 process 的环境（如浏览器）里返回 undefined，不会崩溃。\n * SDK 本身不引入 dotenv，调用方可自行用 `node --env-file=.env` 或 `dotenv/config` 预加载。\n /\nexport function readEnv(key: string): string \| undefined {\n if (typeof process === 'undefined' \|\| !process.env) {\n return undefined;\n }\n // 上面已经保证 process.env 存在，无需再用可选链。\n const value = process.env[key];\n if (value === undefined \|\| value === '') {\n return undefined;\n }\n return value;\n}\n","/\n 所有飞书机器人相关错误的基类。\n /\nexport class FeishuBotError extends Error {\n constructor(message: string) {\n super(message);\n this.name = 'FeishuBotError';\n // 保证原型链正确，便于 instanceof 检测\n Object.setPrototypeOf(this, new.target.prototype);\n }\n}\n\n/\n 配置相关错误：如未提供 webhook、secret、appId、appSecret 等。\n * 构造 FeishuBot 实例时不会抛；延迟到 send/upload 调用时才抛。\n /\nexport class FeishuConfigError extends FeishuBotError {\n constructor(message: string) {\n super(message);\n this.name = 'FeishuConfigError';\n }\n}\n\n/\n 调用飞书 OpenAPI 或 webhook 后，返回 code !== 0 或 HTTP 非 2xx 时抛出。\n /\nexport class FeishuApiError extends FeishuBotError {\n public readonly code: number;\n public readonly response: unknown;\n\n constructor(message: string, code: number, response: unknown) {\n super(message);\n this.name = 'FeishuApiError';\n this.code = code;\n this.response = response;\n }\n}\n","import { FeishuApiError } from './errors.js';\n\nexport interface RequestOptions {\n /* 自定义 fetch 实现，默认 globalThis.fetch /\n fetch?: typeof fetch;\n /* 请求超时，单位毫秒，默认 10000 /\n timeout?: number;\n /* 额外请求头 /\n headers?: Record<string, string>;\n}\n\nconst DEFAULT_TIMEOUT = 10_000;\n\ninterface RawResponse {\n status: number;\n statusText: string;\n ok: boolean;\n text: string;\n}\n\nfunction resolveFetch(customFetch?: typeof fetch): typeof fetch {\n const fn = customFetch ?? globalThis.fetch;\n if (typeof fn !== 'function') {\n throw new FeishuApiError(\n 'global fetch is not available. Please use Node.js >= 18 or provide a custom fetch.',\n -1,\n null,\n );\n }\n return fn;\n}\n\n/\n 通用请求执行器：处理 timeout + 错误归一化。\n * 为了让 timeout 覆盖整个 body 读取过程，在 clearTimeout 之前就完成 response.text()。\n * 返回结构化结果，由调用方自行决定是否解析 JSON。\n /\nasync function request(\n url: string,\n init: RequestInit,\n options: RequestOptions = {},\n): Promise<RawResponse> {\n const fetchImpl = resolveFetch(options.fetch);\n const timeout = options.timeout ?? DEFAULT_TIMEOUT;\n\n const controller = new AbortController();\n const timer = setTimeout(() => controller.abort(), timeout);\n\n try {\n const response = await fetchImpl(url, {\n ...init,\n signal: controller.signal,\n });\n // 关键：在 clearTimeout 之前读取 body，保证慢 body 也能触发 abort。\n const text = await response.text();\n return {\n status: response.status,\n statusText: response.statusText,\n ok: response.ok,\n text,\n };\n } catch (err) {\n if (err instanceof Error && err.name === 'AbortError') {\n throw new FeishuApiError(\n `Request timed out after ${timeout}ms: ${url}`,\n -1,\n null,\n );\n }\n if (err instanceof FeishuApiError) {\n throw err;\n }\n const message = err instanceof Error ? err.message : String(err);\n throw new FeishuApiError(`Network error: ${message}`, -1, null);\n } finally {\n clearTimeout(timer);\n }\n}\n\nfunction parseJsonBody<T>(raw: RawResponse): T {\n if (!raw.text) {\n throw new FeishuApiError(\n `Empty response body (HTTP ${raw.status})`,\n -1,\n null,\n );\n }\n try {\n return JSON.parse(raw.text) as T;\n } catch {\n throw new FeishuApiError(\n `Failed to parse JSON response (HTTP ${raw.status}): ${raw.text.slice(0, 200)}`,\n -1,\n raw.text,\n );\n }\n}\n\nfunction throwIfHttpError(raw: RawResponse): void {\n if (!raw.ok) {\n throw new FeishuApiError(\n `HTTP ${raw.status} ${raw.statusText}: ${raw.text.slice(0, 200)}`,\n raw.status,\n raw.text,\n );\n }\n}\n\n/\n POST JSON 请求，返回已解析的 JSON。HTTP 非 2xx 或解析失败时抛 FeishuApiError。\n * 注意：业务层 code !== 0 的判断由调用方处理（不同接口含义不同）。\n /\nexport async function postJson<T = unknown>(\n url: string,\n body: unknown,\n options: RequestOptions = {},\n): Promise<T> {\n const raw = await request(\n url,\n {\n method: 'POST',\n headers: {\n 'Content-Type': 'application/json; charset=utf-8',\n ...options.headers,\n },\n body: JSON.stringify(body),\n },\n options,\n );\n\n throwIfHttpError(raw);\n return parseJsonBody<T>(raw);\n}\n\n/\n POST 一个 FormData（multipart/form-data）。用于图片上传。\n * 注意：绝不要手动设置 Content-Type，让 fetch/undici 自动带 boundary。\n /\nexport async function postForm<T = unknown>(\n url: string,\n form: FormData,\n options: RequestOptions = {},\n): Promise<T> {\n const raw = await request(\n url,\n {\n method: 'POST',\n headers: {\n ...options.headers,\n },\n body: form,\n },\n options,\n );\n\n throwIfHttpError(raw);\n return parseJsonBody<T>(raw);\n}\n","import { FeishuApiError, FeishuConfigError } from './errors.js';\nimport { postForm } from './http.js';\nimport type { TokenManager } from './token-manager.js';\nimport type { FeishuApiResponse, UploadImageResult } from './types.js';\n\nconst DEFAULT_BASE_URL = 'https://open.feishu.cn';\nconst UPLOAD_PATH = '/open-apis/im/v1/images';\n\nexport interface ImageUploaderOptions {\n tokenManager: TokenManager;\n fetch?: typeof fetch;\n timeout?: number;\n baseUrl?: string;\n}\n\n/\n 支持的图片源：\n * - string : 文件路径（仅 Node 环境，浏览器/SW 会抛错）\n * - Uint8Array / Buffer : 原始字节\n * - Blob / File : 浏览器和 SW 推荐的方式（fetch().blob()、canvas.convertToBlob() 等）\n /\nexport type ImageSource = string \| Uint8Array \| Blob;\n\n/\n 图片上传器：调用 im/v1/images 接口，返回 image_key。\n \n 同构设计：\n * - Blob / Uint8Array 分支在 Node 18+ / 浏览器 / Service Worker 都能跑\n * - string 路径分支仅在 Node 可用，通过 new Function 隐藏 node:fs/promises 的\n * 静态引用，让浏览器/扩展打包器（Vite/Webpack/esbuild）不会因为找不到模块而报错\n /\nexport class ImageUploader {\n private readonly tokenManager: TokenManager;\n private readonly fetchImpl?: typeof fetch;\n private readonly timeout?: number;\n private readonly baseUrl: string;\n\n constructor(options: ImageUploaderOptions) {\n this.tokenManager = options.tokenManager;\n this.fetchImpl = options.fetch;\n this.timeout = options.timeout;\n this.baseUrl = options.baseUrl ?? DEFAULT_BASE_URL;\n }\n\n /\n 上传图片，返回 image_key。\n /\n async uploadImage(file: ImageSource): Promise<string> {\n const { bytes, filename } = await this.resolveSource(file);\n const token = await this.tokenManager.getToken();\n\n const form = new FormData();\n form.append('image_type', 'message');\n // Blob 构造器的 BlobPart 要求 Uint8Array 必须以 ArrayBuffer（而非 SharedArrayBuffer）为底。\n // 通过 bytes.slice() 得到一份拥有独立 ArrayBuffer 的新 Uint8Array。\n const blob = new Blob([bytes.slice()], {\n type: 'application/octet-stream',\n });\n form.append('image', blob, filename);\n\n const url = `${this.baseUrl}${UPLOAD_PATH}`;\n const response = await postForm<FeishuApiResponse<UploadImageResult>>(\n url,\n form,\n {\n fetch: this.fetchImpl,\n timeout: this.timeout,\n headers: {\n Authorization: `Bearer ${token}`,\n },\n },\n );\n\n if (response.code !== 0 \|\| !response.data?.image_key) {\n throw new FeishuApiError(\n `Failed to upload image: ${response.msg ?? 'unknown error'}`,\n response.code ?? -1,\n response,\n );\n }\n\n return response.data.image_key;\n }\n\n private async resolveSource(\n file: ImageSource,\n ): Promise<{ bytes: Uint8Array; filename: string }> {\n // Blob / File：浏览器和 SW 的主要路径\n if (typeof Blob !== 'undefined' && file instanceof Blob) {\n const buf = await file.arrayBuffer();\n // File extends Blob，有 .name；普通 Blob 没有 .name，用鸭子类型读\n const filename = (file as { name?: string }).name ?? 'image';\n return { bytes: new Uint8Array(buf), filename };\n }\n // Uint8Array / Buffer：Node 和浏览器都能用\n if (file instanceof Uint8Array) {\n return { bytes: file, filename: 'image' };\n }\n // string：文件路径，仅 Node\n if (typeof file === 'string') {\n if (typeof process === 'undefined' \|\| !process.versions?.node) {\n throw new FeishuConfigError(\n 'String file path is only supported in Node.js. ' +\n 'In browsers or Service Workers, pass a Blob, File, or Uint8Array instead.',\n );\n }\n return loadFromFilePath(file);\n }\n throw new FeishuApiError(\n 'Unsupported image source type. Expected string path, Uint8Array, or Blob.',\n -1,\n null,\n );\n }\n}\n\n/\n 从文件路径读取字节（仅 Node）。\n \n 关键技巧：用 `new Function` 包裹 dynamic import 字符串，让 Vite / Webpack / esbuild\n * 等打包器无法静态分析这两个 node:* import，从而不会在浏览器/扩展产物里报「找不到模块」。\n \n 这条代码路径在浏览器/SW 中永远不可达（resolveSource 已经在 typeof process 处抛错了），\n * 所以静态引用即使被打入 bundle 也不会被执行。\n /\nasync function loadFromFilePath(\n filePath: string,\n): Promise<{ bytes: Uint8Array; filename: string }> {\n type FsModule = typeof import('node:fs/promises');\n type PathModule = typeof import('node:path');\n const importFs = new Function(\n 'return import(\"node:fs/promises\")',\n ) as () => Promise<FsModule>;\n const importPath = new Function(\n 'return import(\"node:path\")',\n ) as () => Promise<PathModule>;\n\n const [fs, pathMod] = await Promise.all([importFs(), importPath()]);\n const buf = await fs.readFile(filePath);\n return {\n bytes: new Uint8Array(buf),\n filename: pathMod.basename(filePath),\n };\n}\n","import type { ImageMessage } from '../types.js';\n\n/\n 构造 image 消息。\n \n 注意：自定义机器人直发 image 消息只认 image_key（形如 `img_xxx`）。\n * 想要直接发送本地文件，请使用 FeishuBot.sendImage() 或 FeishuBot.uploadImage()。\n /\nexport function buildImage(imageKey: string): ImageMessage {\n return {\n msg_type: 'image',\n content: {\n image_key: imageKey,\n },\n };\n}\n","import type { InteractiveCard, InteractiveMessage } from '../types.js';\n\n/\n 构造卡片（interactive）消息。\n \n 直接透传 card 结构。支持 card schema 2.0 或旧版 header/elements 格式：\n \n buildInteractive({\n * schema: \"2.0\",\n * header: { title: { tag: \"plain_text\", content: \"标题\" } },\n * body: { elements: [...] },\n * });\n \n // 或旧版：\n * buildInteractive({\n * config: { wide_screen_mode: true },\n * header: { template: \"blue\", title: { tag: \"plain_text\", content: \"标题\" } },\n * elements: [...],\n * });\n /\nexport function buildInteractive(card: InteractiveCard): InteractiveMessage {\n return {\n msg_type: 'interactive',\n card,\n };\n}\n","import type { PostContent, PostMessage } from '../types.js';\n\n/\n 构造富文本（post）消息。\n \n 用户构造 PostContent（支持 zh_cn/en_us/ja_jp 三语言），每个语言下是 `content: PostTag[][]` 的二维数组：\n * 外层是段落（行），内层是行内的标签（text/a/at/img）。\n \n 示例：\n * buildPost({\n * zh_cn: {\n * title: \"标题\",\n * content: [\n * [{ tag: \"text\", text: \"第一段: \" }, { tag: \"a\", text: \"点这里\", href: \"https://...\" }],\n * [{ tag: \"img\", image_key: \"img_xxx\" }],\n * ],\n * },\n * });\n /\nexport function buildPost(post: PostContent): PostMessage {\n return {\n msg_type: 'post',\n content: { post },\n };\n}\n","import type { ShareChatMessage } from '../types.js';\n\n/\n 构造分享群名片（share_chat）消息。\n \n @param shareChatId 群 chat_id（形如 `oc_xxx`）\n /\nexport function buildShareChat(shareChatId: string): ShareChatMessage {\n return {\n msg_type: 'share_chat',\n content: {\n share_chat_id: shareChatId,\n },\n };\n}\n","import type { AtOptions, TextMessage } from '../types.js';\n\n/\n 构造 text 消息。\n \n @-提醒说明（来自飞书文档）：\n * - @ 所有人：`<at user_id=\"all\">所有人</at>`（仅群里能用，必须机器人所在群支持）\n * - @ 指定用户（需已知 open_id）：`<at user_id=\"ou_xxx\"></at>`\n \n 示例：\n * buildText(\"hello\", { atAll: true })\n * // => { msg_type: \"text\", content: { text: \"hello <at user_id=\\\"all\\\">所有人</at>\" } }\n /\nexport function buildText(text: string, opts: AtOptions = {}): TextMessage {\n const parts: string[] = [];\n if (text) {\n parts.push(text);\n }\n if (opts.atUserIds && opts.atUserIds.length > 0) {\n for (const id of opts.atUserIds) {\n parts.push(`<at user_id=\"${id}\"></at>`);\n }\n }\n if (opts.atAll) {\n parts.push('<at user_id=\"all\">所有人</at>');\n }\n return {\n msg_type: 'text',\n content: {\n text: parts.join(' '),\n },\n };\n}\n","/\n 生成飞书自定义机器人签名（同构实现，使用 WebCrypto）。\n \n 算法（来自飞书官方文档，反直觉之处：HMAC 的 key 是 stringToSign 本身，data 是空字符串）：\n * stringToSign = `${timestamp}\\n${secret}`\n * sign = Base64(HmacSHA256(key = stringToSign, data = ''))\n \n 仅依赖 globalThis.crypto.subtle，因此在以下环境均可运行：\n * - Node 18+（原生 WebCrypto）\n * - 浏览器主线程\n * - Service Worker / 浏览器扩展 Service Worker\n * - Cloudflare Workers / Deno / Bun\n \n ⚠️ 破坏性变更（v0.1 → v0.2）：返回 Promise，而非同步字符串。\n \n @param timestamp Unix 秒时间戳（飞书要求 ±1 小时窗口）\n * @param secret 机器人「安全设置 → 签名校验」得到的 secret\n /\nexport async function genSign(\n timestamp: number \| string,\n secret: string,\n): Promise<string> {\n const subtle = globalThis.crypto?.subtle;\n if (!subtle) {\n throw new Error(\n 'WebCrypto (globalThis.crypto.subtle) is not available. ' +\n 'Use Node.js >= 18, a modern browser, or a Service Worker context.',\n );\n }\n\n const stringToSign = `${timestamp}\\n${secret}`;\n const keyData = new TextEncoder().encode(stringToSign);\n\n const cryptoKey = await subtle.importKey(\n 'raw',\n keyData,\n { name: 'HMAC', hash: 'SHA-256' },\n false,\n ['sign'],\n );\n const signature = await subtle.sign('HMAC', cryptoKey, new Uint8Array(0));\n\n return bytesToBase64(new Uint8Array(signature));\n}\n\n/\n 获取当前 Unix 秒时间戳。\n /\nexport function currentTimestamp(): number {\n return Math.floor(Date.now() / 1000);\n}\n\n/\n Uint8Array → base64。\n * 不依赖 Node Buffer，浏览器/SW/Node 18+ 都有 btoa。\n /\nfunction bytesToBase64(bytes: Uint8Array): string {\n let bin = '';\n for (let i = 0; i < bytes.length; i++) {\n bin += String.fromCharCode(bytes[i]);\n }\n return btoa(bin);\n}\n","import { FeishuApiError, FeishuConfigError } from './errors.js';\nimport { postJson } from './http.js';\nimport type { TenantAccessTokenResponse } from './types.js';\n\nconst DEFAULT_BASE_URL = 'https://open.feishu.cn';\nconst TENANT_TOKEN_PATH = '/open-apis/auth/v3/tenant_access_token/internal';\n\n/* 剩余有效时间小于 30 分钟就刷新 /\nconst REFRESH_THRESHOLD_MS = 30 60 * 1000;\n\n/*\n 缓存的 token 结构。是 TokenStorage 适配器读写的数据形状。\n * 公开导出，便于 SW / 浏览器扩展实现自己的存储适配器。\n /\nexport interface CachedToken {\n /* tenant_access_token 字符串 /\n token: string;\n /* Unix 毫秒时间戳；过期时间 = 获取时刻 + expire 秒 * 1000 /\n expiresAt: number;\n}\n\n/\n 跨进程/跨重启的 token 持久化适配器。\n \n 默认 TokenManager 只在内存里缓存 token，进程退出或 SW 被杀就丢失。\n * 注入 TokenStorage 后可以让 token 在 chrome.storage.session、Redis、\n * 文件等外部介质里活下来，避免每次冷启动都消耗一次 OpenAPI 频次。\n \n 实现要求：\n * - get(): 没有缓存或读失败时返回 null（内部会兜底回退到网络刷新）\n * - set(value): 写失败不应抛出（TokenManager 会吞掉异常，避免影响主流程）\n \n 典型实现示例（Chrome MV3 扩展 SW）：\n * const storage: TokenStorage = {\n * async get() {\n * const { feishuToken } = await chrome.storage.session.get('feishuToken');\n * return feishuToken ?? null;\n * },\n * async set(value) {\n * await chrome.storage.session.set({ feishuToken: value });\n * },\n * };\n /\nexport interface TokenStorage {\n /* 读取缓存的 token；不存在或读失败返回 null /\n get(): Promise<CachedToken \| null>;\n /* 写入新的 token /\n set(value: CachedToken): Promise<void>;\n}\n\nexport interface TokenManagerOptions {\n appId: string;\n appSecret: string;\n fetch?: typeof fetch;\n timeout?: number;\n baseUrl?: string;\n /* 可选的持久化适配器；不传则只在内存里缓存 /\n storage?: TokenStorage;\n}\n\n/\n tenant_access_token 缓存与自动刷新。\n \n 三层缓存查找顺序：\n * 1. 内存（最快）\n * 2. 注入的 TokenStorage（跨进程/跨 SW 重启）\n * 3. 网络获取\n \n 并发去重：多次 getToken() 在 in-flight 期间共享同一个 Promise，避免重复请求。\n /\nexport class TokenManager {\n private readonly appId: string;\n private readonly appSecret: string;\n private readonly fetchImpl?: typeof fetch;\n private readonly timeout?: number;\n private readonly baseUrl: string;\n private readonly storage?: TokenStorage;\n\n private cached: CachedToken \| null = null;\n private inflight: Promise<string> \| null = null;\n\n constructor(options: TokenManagerOptions) {\n if (!options.appId \|\| !options.appSecret) {\n throw new FeishuConfigError(\n 'appId and appSecret are required for TokenManager',\n );\n }\n this.appId = options.appId;\n this.appSecret = options.appSecret;\n this.fetchImpl = options.fetch;\n this.timeout = options.timeout;\n this.baseUrl = options.baseUrl ?? DEFAULT_BASE_URL;\n this.storage = options.storage;\n }\n\n /\n 获取有效 token。优先内存缓存；过期/即将过期时尝试 storage，最后回退到网络。\n /\n async getToken(): Promise<string> {\n if (this.isFresh(this.cached)) {\n return this.cached!.token;\n }\n if (this.inflight) {\n return this.inflight;\n }\n this.inflight = this.refreshToken().finally(() => {\n this.inflight = null;\n });\n return this.inflight;\n }\n\n private isFresh(entry: CachedToken \| null): boolean {\n if (!entry) return false;\n return entry.expiresAt - Date.now() > REFRESH_THRESHOLD_MS;\n }\n\n /\n 刷新流程：先尝试 storage（若注入），不可用则走网络。\n * storage 异常一律视为「miss」，回退到网络，避免单点故障阻塞主流程。\n /\n private async refreshToken(): Promise<string> {\n if (this.storage) {\n try {\n const stored = await this.storage.get();\n if (this.isFresh(stored)) {\n this.cached = stored;\n return stored!.token;\n }\n } catch {\n // 读失败不抛，继续走网络\n }\n }\n return this.fetchToken();\n }\n\n private async fetchToken(): Promise<string> {\n const url = `${this.baseUrl}${TENANT_TOKEN_PATH}`;\n const body = {\n app_id: this.appId,\n app_secret: this.appSecret,\n };\n const response = await postJson<TenantAccessTokenResponse>(url, body, {\n fetch: this.fetchImpl,\n timeout: this.timeout,\n });\n\n if (response.code !== 0 \|\| !response.tenant_access_token) {\n throw new FeishuApiError(\n `Failed to fetch tenant_access_token: ${response.msg ?? 'unknown error'}`,\n response.code ?? -1,\n response,\n );\n }\n\n const expireSeconds = response.expire ?? 7200;\n this.cached = {\n token: response.tenant_access_token,\n expiresAt: Date.now() + expireSeconds 1000,\n };\n\n if (this.storage) {\n try {\n await this.storage.set(this.cached);\n } catch {\n // 写失败不抛，下一次冷启动会重新拉取\n }\n }\n\n return this.cached.token;\n }\n}\n","import { readEnv } from './env.js';\nimport { FeishuApiError, FeishuConfigError } from './errors.js';\nimport { postJson } from './http.js';\nimport { ImageUploader, type ImageSource } from './image-uploader.js';\nimport { buildImage } from './messages/image.js';\nimport { buildInteractive } from './messages/interactive.js';\nimport { buildPost } from './messages/post.js';\nimport { buildShareChat } from './messages/share-chat.js';\nimport { buildText } from './messages/text.js';\nimport { currentTimestamp, genSign } from './signer.js';\nimport { TokenManager, type TokenStorage } from './token-manager.js';\nimport type {\n AtOptions,\n FeishuApiResponse,\n FeishuBotOptions,\n InteractiveCard,\n MessagePayload,\n PostContent,\n SignedPayload,\n} from './types.js';\n\nconst DEFAULT_BASE_URL = 'https://open.feishu.cn';\n\n/*\n 飞书自定义机器人 SDK 主类。\n \n 构造期不会报错；缺失配置时延迟到 send/upload 调用时抛出 FeishuConfigError，\n * 便于「先 new 再注入配置」的使用模式。\n \n 使用示例：\n * const bot = new FeishuBot(); // 从 env 读配置\n * await bot.sendText(\"hello\", { atAll: true });\n * await bot.sendImage(\"./banner.png\"); // 自动上传得到 image_key 再发送\n /\nexport class FeishuBot {\n private readonly webhook?: string;\n private readonly secret?: string;\n private readonly appId?: string;\n private readonly appSecret?: string;\n private readonly fetchImpl?: typeof fetch;\n private readonly timeout?: number;\n private readonly baseUrl: string;\n private readonly tokenStorage?: TokenStorage;\n\n private tokenManager: TokenManager \| null = null;\n private imageUploader: ImageUploader \| null = null;\n\n constructor(options: FeishuBotOptions = {}) {\n // 合并优先级：显式参数 > env 变量 > undefined\n this.webhook = options.webhook ?? readEnv('FEISHU_BOT_WEBHOOK');\n this.secret = options.secret ?? readEnv('FEISHU_BOT_SECRET');\n this.appId = options.appId ?? readEnv('FEISHU_APP_ID');\n this.appSecret = options.appSecret ?? readEnv('FEISHU_APP_SECRET');\n this.fetchImpl = options.fetch;\n this.timeout = options.timeout;\n this.baseUrl = options.baseUrl ?? DEFAULT_BASE_URL;\n this.tokenStorage = options.tokenStorage;\n }\n\n // ---------- 原子发送 ----------\n\n /\n 原子发送：接收已构造好的 payload，负责注入签名并 POST 到 webhook。\n * code !== 0 时抛 FeishuApiError。\n /\n async send<T = unknown>(\n payload: MessagePayload,\n ): Promise<FeishuApiResponse<T>> {\n const webhook = this.ensureWebhook();\n const finalPayload: SignedPayload = { ...payload };\n\n if (this.secret) {\n const timestamp = currentTimestamp();\n finalPayload.timestamp = String(timestamp);\n finalPayload.sign = await genSign(timestamp, this.secret);\n }\n\n const response = await postJson<FeishuApiResponse<T>>(\n webhook,\n finalPayload,\n {\n fetch: this.fetchImpl,\n timeout: this.timeout,\n },\n );\n\n // 飞书 webhook 成功时 code=0；其它数值都视为业务错误。\n if (response.code !== 0) {\n throw new FeishuApiError(\n `Feishu webhook error: ${response.msg ?? 'unknown'} (code=${response.code})`,\n response.code,\n response,\n );\n }\n\n return response;\n }\n\n // ---------- 高层便捷方法 ----------\n\n sendText(text: string, opts?: AtOptions): Promise<FeishuApiResponse> {\n return this.send(buildText(text, opts));\n }\n\n sendPost(post: PostContent): Promise<FeishuApiResponse> {\n return this.send(buildPost(post));\n }\n\n sendShareChat(shareChatId: string): Promise<FeishuApiResponse> {\n return this.send(buildShareChat(shareChatId));\n }\n\n sendInteractive(card: InteractiveCard): Promise<FeishuApiResponse> {\n return this.send(buildInteractive(card));\n }\n\n /\n 发送图片。智能识别三种入参：\n * - string 且以 `img_` 开头 → 直接当 image_key 使用\n * - string 否则 → 视为本地文件路径，先上传再发送\n * - Buffer / Uint8Array → 直接上传再发送\n /\n async sendImage(input: ImageSource): Promise<FeishuApiResponse> {\n let imageKey: string;\n if (typeof input === 'string' && input.startsWith('img_')) {\n imageKey = input;\n } else {\n imageKey = await this.uploadImage(input);\n }\n return this.send(buildImage(imageKey));\n }\n\n /\n 暴露底层图片上传，便于调用方复用 image_key。\n * 需要 appId / appSecret 配置。\n */\n async uploadImage(file: ImageSource): Promise<string> {\n const uploader = this.getImageUploader();\n return uploader.uploadImage(file);\n }\n\n // ---------- 私有：懒初始化 + 校验 ----------\n\n private ensureWebhook(): string {\n if (!this.webhook) {\n throw new FeishuConfigError(\n 'webhook is required. Provide `webhook` in options or set FEISHU_BOT_WEBHOOK env.',\n );\n }\n return this.webhook;\n }\n\n private ensureAppCredentials(): { appId: string; appSecret: string } {\n if (!this.appId \|\| !this.appSecret) {\n throw new FeishuConfigError(\n 'appId and appSecret are required for image upload. Provide them in options or set FEISHU_APP_ID / FEISHU_APP_SECRET env.',\n );\n }\n return { appId: this.appId, appSecret: this.appSecret };\n }\n\n private getTokenManager(): TokenManager {\n if (!this.tokenManager) {\n const { appId, appSecret } = this.ensureAppCredentials();\n this.tokenManager = new TokenManager({\n appId,\n appSecret,\n fetch: this.fetchImpl,\n timeout: this.timeout,\n baseUrl: this.baseUrl,\n storage: this.tokenStorage,\n });\n }\n return this.tokenManager;\n }\n\n private getImageUploader(): ImageUploader {\n if (!this.imageUploader) {\n this.imageUploader = new ImageUploader({\n tokenManager: this.getTokenManager(),\n fetch: this.fetchImpl,\n timeout: this.timeout,\n baseUrl: this.baseUrl,\n });\n }\n return this.imageUploader;\n }\n}\n"],"mappings":";;;;;;AAIA,SAAgB,QAAQ,KAAiC;AACvD,KAAI,OAAO,YAAY,eAAe,CAAC,QAAQ,IAC7C;CAGF,MAAM,QAAQ,QAAQ,IAAI;AAC1B,KAAI,UAAU,KAAA,KAAa,UAAU,GACnC;AAEF,QAAO;;;;;;;ACVT,IAAa,iBAAb,cAAoC,MAAM;CACxC,YAAY,SAAiB;AAC3B,QAAM,QAAQ;AACd,OAAK,OAAO;AAEZ,SAAO,eAAe,MAAM,IAAI,OAAO,UAAU;;;;;;;AAQrD,IAAa,oBAAb,cAAuC,eAAe;CACpD,YAAY,SAAiB;AAC3B,QAAM,QAAQ;AACd,OAAK,OAAO;;;;;;AAOhB,IAAa,iBAAb,cAAoC,eAAe;CACjD;CACA;CAEA,YAAY,SAAiB,MAAc,UAAmB;AAC5D,QAAM,QAAQ;AACd,OAAK,OAAO;AACZ,OAAK,OAAO;AACZ,OAAK,WAAW;;;;;ACvBpB,IAAM,kBAAkB;AASxB,SAAS,aAAa,aAA0C;CAC9D,MAAM,KAAK,eAAe,WAAW;AACrC,KAAI,OAAO,OAAO,WAChB,OAAM,IAAI,eACR,sFACA,IACA,KACD;AAEH,QAAO;;;;;;;AAQT,eAAe,QACb,KACA,MACA,UAA0B,EAAE,EACN;CACtB,MAAM,YAAY,aAAa,QAAQ,MAAM;CAC7C,MAAM,UAAU,QAAQ,WAAW;CAEnC,MAAM,aAAa,IAAI,iBAAiB;CACxC,MAAM,QAAQ,iBAAiB,WAAW,OAAO,EAAE,QAAQ;AAE3D,KAAI;EACF,MAAM,WAAW,MAAM,UAAU,KAAK;GACpC,GAAG;GACH,QAAQ,WAAW;GACpB,CAAC;EAEF,MAAM,OAAO,MAAM,SAAS,MAAM;AAClC,SAAO;GACL,QAAQ,SAAS;GACjB,YAAY,SAAS;GACrB,IAAI,SAAS;GACb;GACD;UACM,KAAK;AACZ,MAAI,eAAe,SAAS,IAAI,SAAS,aACvC,OAAM,IAAI,eACR,2BAA2B,QAAQ,MAAM,OACzC,IACA,KACD;AAEH,MAAI,eAAe,eACjB,OAAM;AAGR,QAAM,IAAI,eAAe,kBADT,eAAe,QAAQ,IAAI,UAAU,OAAO,IAAI,IACV,IAAI,KAAK;WACvD;AACR,eAAa,MAAM;;;AAIvB,SAAS,cAAiB,KAAqB;AAC7C,KAAI,CAAC,IAAI,KACP,OAAM,IAAI,eACR,6BAA6B,IAAI,OAAO,IACxC,IACA,KACD;AAEH,KAAI;AACF,SAAO,KAAK,MAAM,IAAI,KAAK;SACrB;AACN,QAAM,IAAI,eACR,uCAAuC,IAAI,OAAO,KAAK,IAAI,KAAK,MAAM,GAAG,IAAI,IAC7E,IACA,IAAI,KACL;;;AAIL,SAAS,iBAAiB,KAAwB;AAChD,KAAI,CAAC,IAAI,GACP,OAAM,IAAI,eACR,QAAQ,IAAI,OAAO,GAAG,IAAI,WAAW,IAAI,IAAI,KAAK,MAAM,GAAG,IAAI,IAC/D,IAAI,QACJ,IAAI,KACL;;;;;;AAQL,eAAsB,SACpB,KACA,MACA,UAA0B,EAAE,EAChB;CACZ,MAAM,MAAM,MAAM,QAChB,KACA;EACE,QAAQ;EACR,SAAS;GACP,gBAAgB;GAChB,GAAG,QAAQ;GACZ;EACD,MAAM,KAAK,UAAU,KAAK;EAC3B,EACD,QACD;AAED,kBAAiB,IAAI;AACrB,QAAO,cAAiB,IAAI;;;;;;AAO9B,eAAsB,SACpB,KACA,MACA,UAA0B,EAAE,EAChB;CACZ,MAAM,MAAM,MAAM,QAChB,KACA;EACE,QAAQ;EACR,SAAS,EACP,GAAG,QAAQ,SACZ;EACD,MAAM;EACP,EACD,QACD;AAED,kBAAiB,IAAI;AACrB,QAAO,cAAiB,IAAI;;;;ACvJ9B,IAAM,qBAAmB;AACzB,IAAM,cAAc;;;;;;;;;AAyBpB,IAAa,gBAAb,MAA2B;CACzB;CACA;CACA;CACA;CAEA,YAAY,SAA+B;AACzC,OAAK,eAAe,QAAQ;AAC5B,OAAK,YAAY,QAAQ;AACzB,OAAK,UAAU,QAAQ;AACvB,OAAK,UAAU,QAAQ,WAAW;;;;;CAMpC,MAAM,YAAY,MAAoC;EACpD,MAAM,EAAE,OAAO,aAAa,MAAM,KAAK,cAAc,KAAK;EAC1D,MAAM,QAAQ,MAAM,KAAK,aAAa,UAAU;EAEhD,MAAM,OAAO,IAAI,UAAU;AAC3B,OAAK,OAAO,cAAc,UAAU;EAGpC,MAAM,OAAO,IAAI,KAAK,CAAC,MAAM,OAAO,CAAC,EAAE,EACrC,MAAM,4BACP,CAAC;AACF,OAAK,OAAO,SAAS,MAAM,SAAS;EAGpC,MAAM,WAAW,MAAM,SADX,GAAG,KAAK,UAAU,eAG5B,MACA;GACE,OAAO,KAAK;GACZ,SAAS,KAAK;GACd,SAAS,EACP,eAAe,UAAU,SAC1B;GACF,CACF;AAED,MAAI,SAAS,SAAS,KAAK,CAAC,SAAS,MAAM,UACzC,OAAM,IAAI,eACR,2BAA2B,SAAS,OAAO,mBAC3C,SAAS,QAAQ,IACjB,SACD;AAGH,SAAO,SAAS,KAAK;;CAGvB,MAAc,cACZ,MACkD;AAElD,MAAI,OAAO,SAAS,eAAe,gBAAgB,MAAM;GACvD,MAAM,MAAM,MAAM,KAAK,aAAa;GAEpC,MAAM,WAAY,KAA2B,QAAQ;AACrD,UAAO;IAAE,OAAO,IAAI,WAAW,IAAI;IAAE;IAAU;;AAGjD,MAAI,gBAAgB,WAClB,QAAO;GAAE,OAAO;GAAM,UAAU;GAAS;AAG3C,MAAI,OAAO,SAAS,UAAU;AAC5B,OAAI,OAAO,YAAY,eAAe,CAAC,QAAQ,UAAU,KACvD,OAAM,IAAI,kBACR,2HAED;AAEH,UAAO,iBAAiB,KAAK;;AAE/B,QAAM,IAAI,eACR,6EACA,IACA,KACD;;;;;;;;;;;;AAaL,eAAe,iBACb,UACkD;CAGlD,MAAM,WAAW,IAAI,SACnB,sCACD;CACD,MAAM,aAAa,IAAI,SACrB,+BACD;CAED,MAAM,CAAC,IAAI,WAAW,MAAM,QAAQ,IAAI,CAAC,UAAU,EAAE,YAAY,CAAC,CAAC;CACnE,MAAM,MAAM,MAAM,GAAG,SAAS,SAAS;AACvC,QAAO;EACL,OAAO,IAAI,WAAW,IAAI;EAC1B,UAAU,QAAQ,SAAS,SAAS;EACrC;;;;;;;;;;ACtIH,SAAgB,WAAW,UAAgC;AACzD,QAAO;EACL,UAAU;EACV,SAAS,EACP,WAAW,UACZ;EACF;;;;;;;;;;;;;;;;;;;;;;ACMH,SAAgB,iBAAiB,MAA2C;AAC1E,QAAO;EACL,UAAU;EACV;EACD;;;;;;;;;;;;;;;;;;;;;ACLH,SAAgB,UAAU,MAAgC;AACxD,QAAO;EACL,UAAU;EACV,SAAS,EAAE,MAAM;EAClB;;;;;;;;;AChBH,SAAgB,eAAe,aAAuC;AACpE,QAAO;EACL,UAAU;EACV,SAAS,EACP,eAAe,aAChB;EACF;;;;;;;;;;;;;;;ACAH,SAAgB,UAAU,MAAc,OAAkB,EAAE,EAAe;CACzE,MAAM,QAAkB,EAAE;AAC1B,KAAI,KACF,OAAM,KAAK,KAAK;AAElB,KAAI,KAAK,aAAa,KAAK,UAAU,SAAS,EAC5C,MAAK,MAAM,MAAM,KAAK,UACpB,OAAM,KAAK,gBAAgB,GAAG,SAAS;AAG3C,KAAI,KAAK,MACP,OAAM,KAAK,+BAA6B;AAE1C,QAAO;EACL,UAAU;EACV,SAAS,EACP,MAAM,MAAM,KAAK,IAAI,EACtB;EACF;;;;;;;;;;;;;;;;;;;;;;ACbH,eAAsB,QACpB,WACA,QACiB;CACjB,MAAM,SAAS,WAAW,QAAQ;AAClC,KAAI,CAAC,OACH,OAAM,IAAI,MACR,2HAED;CAGH,MAAM,eAAe,GAAG,UAAU,IAAI;CACtC,MAAM,UAAU,IAAI,aAAa,CAAC,OAAO,aAAa;CAEtD,MAAM,YAAY,MAAM,OAAO,UAC7B,OACA,SACA;EAAE,MAAM;EAAQ,MAAM;EAAW,EACjC,OACA,CAAC,OAAO,CACT;CACD,MAAM,YAAY,MAAM,OAAO,KAAK,QAAQ,WAAW,IAAI,WAAW,EAAE,CAAC;AAEzE,QAAO,cAAc,IAAI,WAAW,UAAU,CAAC;;;;;AAMjD,SAAgB,mBAA2B;AACzC,QAAO,KAAK,MAAM,KAAK,KAAK,GAAG,IAAK;;;;;;AAOtC,SAAS,cAAc,OAA2B;CAChD,IAAI,MAAM;AACV,MAAK,IAAI,IAAI,GAAG,IAAI,MAAM,QAAQ,IAChC,QAAO,OAAO,aAAa,MAAM,GAAG;AAEtC,QAAO,KAAK,IAAI;;;;ACzDlB,IAAM,qBAAmB;AACzB,IAAM,oBAAoB;;AAG1B,IAAM,uBAAuB,OAAU;;;;;;;;;;;AA8DvC,IAAa,eAAb,MAA0B;CACxB;CACA;CACA;CACA;CACA;CACA;CAEA,SAAqC;CACrC,WAA2C;CAE3C,YAAY,SAA8B;AACxC,MAAI,CAAC,QAAQ,SAAS,CAAC,QAAQ,UAC7B,OAAM,IAAI,kBACR,oDACD;AAEH,OAAK,QAAQ,QAAQ;AACrB,OAAK,YAAY,QAAQ;AACzB,OAAK,YAAY,QAAQ;AACzB,OAAK,UAAU,QAAQ;AACvB,OAAK,UAAU,QAAQ,WAAW;AAClC,OAAK,UAAU,QAAQ;;;;;CAMzB,MAAM,WAA4B;AAChC,MAAI,KAAK,QAAQ,KAAK,OAAO,CAC3B,QAAO,KAAK,OAAQ;AAEtB,MAAI,KAAK,SACP,QAAO,KAAK;AAEd,OAAK,WAAW,KAAK,cAAc,CAAC,cAAc;AAChD,QAAK,WAAW;IAChB;AACF,SAAO,KAAK;;CAGd,QAAgB,OAAoC;AAClD,MAAI,CAAC,MAAO,QAAO;AACnB,SAAO,MAAM,YAAY,KAAK,KAAK,GAAG;;;;;;CAOxC,MAAc,eAAgC;AAC5C,MAAI,KAAK,QACP,KAAI;GACF,MAAM,SAAS,MAAM,KAAK,QAAQ,KAAK;AACvC,OAAI,KAAK,QAAQ,OAAO,EAAE;AACxB,SAAK,SAAS;AACd,WAAO,OAAQ;;UAEX;AAIV,SAAO,KAAK,YAAY;;CAG1B,MAAc,aAA8B;EAM1C,MAAM,WAAW,MAAM,SALX,GAAG,KAAK,UAAU,qBACjB;GACX,QAAQ,KAAK;GACb,YAAY,KAAK;GAClB,EACqE;GACpE,OAAO,KAAK;GACZ,SAAS,KAAK;GACf,CAAC;AAEF,MAAI,SAAS,SAAS,KAAK,CAAC,SAAS,oBACnC,OAAM,IAAI,eACR,wCAAwC,SAAS,OAAO,mBACxD,SAAS,QAAQ,IACjB,SACD;EAGH,MAAM,gBAAgB,SAAS,UAAU;AACzC,OAAK,SAAS;GACZ,OAAO,SAAS;GAChB,WAAW,KAAK,KAAK,GAAG,gBAAgB;GACzC;AAED,MAAI,KAAK,QACP,KAAI;AACF,SAAM,KAAK,QAAQ,IAAI,KAAK,OAAO;UAC7B;AAKV,SAAO,KAAK,OAAO;;;;;ACnJvB,IAAM,mBAAmB;;;;;;;;;;;;AAazB,IAAa,YAAb,MAAuB;CACrB;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CAEA,eAA4C;CAC5C,gBAA8C;CAE9C,YAAY,UAA4B,EAAE,EAAE;AAE1C,OAAK,UAAU,QAAQ,WAAW,QAAQ,qBAAqB;AAC/D,OAAK,SAAS,QAAQ,UAAU,QAAQ,oBAAoB;AAC5D,OAAK,QAAQ,QAAQ,SAAS,QAAQ,gBAAgB;AACtD,OAAK,YAAY,QAAQ,aAAa,QAAQ,oBAAoB;AAClE,OAAK,YAAY,QAAQ;AACzB,OAAK,UAAU,QAAQ;AACvB,OAAK,UAAU,QAAQ,WAAW;AAClC,OAAK,eAAe,QAAQ;;;;;;CAS9B,MAAM,KACJ,SAC+B;EAC/B,MAAM,UAAU,KAAK,eAAe;EACpC,MAAM,eAA8B,EAAE,GAAG,SAAS;AAElD,MAAI,KAAK,QAAQ;GACf,MAAM,YAAY,kBAAkB;AACpC,gBAAa,YAAY,OAAO,UAAU;AAC1C,gBAAa,OAAO,MAAM,QAAQ,WAAW,KAAK,OAAO;;EAG3D,MAAM,WAAW,MAAM,SACrB,SACA,cACA;GACE,OAAO,KAAK;GACZ,SAAS,KAAK;GACf,CACF;AAGD,MAAI,SAAS,SAAS,EACpB,OAAM,IAAI,eACR,yBAAyB,SAAS,OAAO,UAAU,SAAS,SAAS,KAAK,IAC1E,SAAS,MACT,SACD;AAGH,SAAO;;CAKT,SAAS,MAAc,MAA8C;AACnE,SAAO,KAAK,KAAK,UAAU,MAAM,KAAK,CAAC;;CAGzC,SAAS,MAA+C;AACtD,SAAO,KAAK,KAAK,UAAU,KAAK,CAAC;;CAGnC,cAAc,aAAiD;AAC7D,SAAO,KAAK,KAAK,eAAe,YAAY,CAAC;;CAG/C,gBAAgB,MAAmD;AACjE,SAAO,KAAK,KAAK,iBAAiB,KAAK,CAAC;;;;;;;;CAS1C,MAAM,UAAU,OAAgD;EAC9D,IAAI;AACJ,MAAI,OAAO,UAAU,YAAY,MAAM,WAAW,OAAO,CACvD,YAAW;MAEX,YAAW,MAAM,KAAK,YAAY,MAAM;AAE1C,SAAO,KAAK,KAAK,WAAW,SAAS,CAAC;;;;;;CAOxC,MAAM,YAAY,MAAoC;AAEpD,SADiB,KAAK,kBAAkB,CACxB,YAAY,KAAK;;CAKnC,gBAAgC;AAC9B,MAAI,CAAC,KAAK,QACR,OAAM,IAAI,kBACR,mFACD;AAEH,SAAO,KAAK;;CAGd,uBAAqE;AACnE,MAAI,CAAC,KAAK,SAAS,CAAC,KAAK,UACvB,OAAM,IAAI,kBACR,2HACD;AAEH,SAAO;GAAE,OAAO,KAAK;GAAO,WAAW,KAAK;GAAW;;CAGzD,kBAAwC;AACtC,MAAI,CAAC,KAAK,cAAc;GACtB,MAAM,EAAE,OAAO,cAAc,KAAK,sBAAsB;AACxD,QAAK,eAAe,IAAI,aAAa;IACnC;IACA;IACA,OAAO,KAAK;IACZ,SAAS,KAAK;IACd,SAAS,KAAK;IACd,SAAS,KAAK;IACf,CAAC;;AAEJ,SAAO,KAAK;;CAGd,mBAA0C;AACxC,MAAI,CAAC,KAAK,cACR,MAAK,gBAAgB,IAAI,cAAc;GACrC,cAAc,KAAK,iBAAiB;GACpC,OAAO,KAAK;GACZ,SAAS,KAAK;GACd,SAAS,KAAK;GACf,CAAC;AAEJ,SAAO,KAAK"}

package/dist/index.d.ts CHANGED Viewed

@@ -73,6 +73,17 @@ export declare function buildShareChat(shareChatId: string): ShareChatMessage;
  */
 export declare function buildText(text: string, opts?: AtOptions): TextMessage;
+/**
+ * 缓存的 token 结构。是 TokenStorage 适配器读写的数据形状。
+ * 公开导出，便于 SW / 浏览器扩展实现自己的存储适配器。
+ */
+export declare interface CachedToken {
+    /** tenant_access_token 字符串 */
+    token: string;
+    /** Unix 毫秒时间戳；过期时间 = 获取时刻 + expire 秒 * 1000 */
+    expiresAt: number;
+}
 /**
  * 获取当前 Unix 秒时间戳。
  */
@@ -113,6 +124,7 @@ export declare class FeishuBot {
     private readonly fetchImpl?;
     private readonly timeout?;
     private readonly baseUrl;
+    private readonly tokenStorage?;
     private tokenManager;
     private imageUploader;
     constructor(options?: FeishuBotOptions);
@@ -150,9 +162,6 @@ export declare class FeishuBotError extends Error {
     constructor(message: string);
 }
-/**
- * 飞书自定义机器人 SDK 的类型定义。
- */
 /** SDK 构造配置 */
 export declare interface FeishuBotOptions {
     /** 机器人 webhook URL。默认读 `process.env.FEISHU_BOT_WEBHOOK` */
@@ -169,6 +178,12 @@ export declare interface FeishuBotOptions {
     timeout?: number;
     /** 飞书开放平台基础 URL，默认 https://open.feishu.cn */
     baseUrl?: string;
+    /**
+     * 可选的 tenant_access_token 持久化适配器。
+     * 注入后 token 会写入外部存储，避免每次冷启动（如 MV3 SW 被杀）都重新拉取。
+     * 典型用法见 TokenStorage 文档。
+     */
+    tokenStorage?: TokenStorage;
 }
 /**
@@ -180,16 +195,24 @@ export declare class FeishuConfigError extends FeishuBotError {
 }
 /**
- * 生成飞书自定义机器人签名。
+ * 生成飞书自定义机器人签名（同构实现，使用 WebCrypto）。
  *
  * 算法（来自飞书官方文档，反直觉之处：HMAC 的 key 是 stringToSign 本身，data 是空字符串）：
  *   stringToSign = `${timestamp}\n${secret}`
  *   sign         = Base64(HmacSHA256(key = stringToSign, data = ''))
  *
+ * 仅依赖 globalThis.crypto.subtle，因此在以下环境均可运行：
+ *   - Node 18+（原生 WebCrypto）
+ *   - 浏览器主线程
+ *   - Service Worker / 浏览器扩展 Service Worker
+ *   - Cloudflare Workers / Deno / Bun
+ *
+ * ⚠️ 破坏性变更（v0.1 → v0.2）：返回 Promise，而非同步字符串。
+ *
  * @param timestamp  Unix 秒时间戳（飞书要求 ±1 小时窗口）
  * @param secret     机器人「安全设置 → 签名校验」得到的 secret
  */
-export declare function genSign(timestamp: number | string, secret: string): string;
+export declare function genSign(timestamp: number | string, secret: string): Promise<string>;
 /** 图片消息 */
 export declare interface ImageMessage {
@@ -199,14 +222,21 @@ export declare interface ImageMessage {
     };
 }
-/** 支持的图片源：文件路径字符串 / Buffer / Uint8Array */
-export declare type ImageSource = string | Buffer | Uint8Array;
+/**
+ * 支持的图片源：
+ *   - string  : 文件路径（仅 Node 环境，浏览器/SW 会抛错）
+ *   - Uint8Array / Buffer : 原始字节
+ *   - Blob / File : 浏览器和 SW 推荐的方式（fetch().blob()、canvas.convertToBlob() 等）
+ */
+export declare type ImageSource = string | Uint8Array | Blob;
 /**
  * 图片上传器：调用 im/v1/images 接口，返回 image_key。
- * - string: 作为文件路径用 fs/promises.readFile 读成 Buffer
- * - Buffer/Uint8Array: 直接作为 Blob 数据
- * 用 globalThis 的 FormData + Blob（Node 18+ 内置），不依赖 form-data 包。
+ *
+ * 同构设计：
+ *   - Blob / Uint8Array 分支在 Node 18+ / 浏览器 / Service Worker 都能跑
+ *   - string 路径分支仅在 Node 可用，通过 new Function 隐藏 node:fs/promises 的
+ *     静态引用，让浏览器/扩展打包器（Vite/Webpack/esbuild）不会因为找不到模块而报错
  */
 export declare class ImageUploader {
     private readonly tokenManager;
@@ -310,6 +340,12 @@ export declare interface TextMessage {
 /**
  * tenant_access_token 缓存与自动刷新。
+ *
+ * 三层缓存查找顺序：
+ *   1. 内存（最快）
+ *   2. 注入的 TokenStorage（跨进程/跨 SW 重启）
+ *   3. 网络获取
+ *
  * 并发去重：多次 getToken() 在 in-flight 期间共享同一个 Promise，避免重复请求。
  */
 export declare class TokenManager {
@@ -318,14 +354,20 @@ export declare class TokenManager {
     private readonly fetchImpl?;
     private readonly timeout?;
     private readonly baseUrl;
+    private readonly storage?;
     private cached;
     private inflight;
     constructor(options: TokenManagerOptions);
     /**
-     * 获取有效 token。优先使用缓存；过期/即将过期时刷新。
+     * 获取有效 token。优先内存缓存；过期/即将过期时尝试 storage，最后回退到网络。
      */
     getToken(): Promise<string>;
-    private isCacheFresh;
+    private isFresh;
+    /**
+     * 刷新流程：先尝试 storage（若注入），不可用则走网络。
+     * storage 异常一律视为「miss」，回退到网络，避免单点故障阻塞主流程。
+     */
+    private refreshToken;
     private fetchToken;
 }
@@ -335,6 +377,37 @@ declare interface TokenManagerOptions {
     fetch?: typeof fetch;
     timeout?: number;
     baseUrl?: string;
+    /** 可选的持久化适配器；不传则只在内存里缓存 */
+    storage?: TokenStorage;
+}
+/**
+ * 跨进程/跨重启的 token 持久化适配器。
+ *
+ * 默认 TokenManager 只在内存里缓存 token，进程退出或 SW 被杀就丢失。
+ * 注入 TokenStorage 后可以让 token 在 chrome.storage.session、Redis、
+ * 文件等外部介质里活下来，避免每次冷启动都消耗一次 OpenAPI 频次。
+ *
+ * 实现要求：
+ * - get(): 没有缓存或读失败时返回 null（内部会兜底回退到网络刷新）
+ * - set(value): 写失败不应抛出（TokenManager 会吞掉异常，避免影响主流程）
+ *
+ * 典型实现示例（Chrome MV3 扩展 SW）：
+ *   const storage: TokenStorage = {
+ *     async get() {
+ *       const { feishuToken } = await chrome.storage.session.get('feishuToken');
+ *       return feishuToken ?? null;
+ *     },
+ *     async set(value) {
+ *       await chrome.storage.session.set({ feishuToken: value });
+ *     },
+ *   };
+ */
+export declare interface TokenStorage {
+    /** 读取缓存的 token；不存在或读失败返回 null */
+    get(): Promise<CachedToken | null>;
+    /** 写入新的 token */
+    set(value: CachedToken): Promise<void>;
 }
 /** 上传图片返回数据 */

package/dist/index.js CHANGED Viewed

@@ -1,6 +1,3 @@
-import { readFile } from "node:fs/promises";
-import { basename } from "node:path";
-import { createHmac } from "node:crypto";
 //#region src/env.ts
 /**
 * 安全读取 process.env。在不存在 process 的环境（如浏览器）里返回 undefined，不会崩溃。
@@ -131,9 +128,11 @@ var DEFAULT_BASE_URL$2 = "https://open.feishu.cn";
 var UPLOAD_PATH = "/open-apis/im/v1/images";
 /**
 * 图片上传器：调用 im/v1/images 接口，返回 image_key。
-* - string: 作为文件路径用 fs/promises.readFile 读成 Buffer
-* - Buffer/Uint8Array: 直接作为 Blob 数据
-* 用 globalThis 的 FormData + Blob（Node 18+ 内置），不依赖 form-data 包。
+*
+* 同构设计：
+*   - Blob / Uint8Array 分支在 Node 18+ / 浏览器 / Service Worker 都能跑
+*   - string 路径分支仅在 Node 可用，通过 new Function 隐藏 node:fs/promises 的
+*     静态引用，让浏览器/扩展打包器（Vite/Webpack/esbuild）不会因为找不到模块而报错
 */
 var ImageUploader = class {
 	tokenManager;
@@ -165,20 +164,44 @@ var ImageUploader = class {
 		return response.data.image_key;
 	}
 	async resolveSource(file) {
-		if (typeof file === "string") {
-			const buf = await readFile(file);
+		if (typeof Blob !== "undefined" && file instanceof Blob) {
+			const buf = await file.arrayBuffer();
+			const filename = file.name ?? "image";
 			return {
 				bytes: new Uint8Array(buf),
-				filename: basename(file)
+				filename
 			};
 		}
 		if (file instanceof Uint8Array) return {
 			bytes: file,
 			filename: "image"
 		};
-		throw new FeishuApiError("Unsupported image source type. Expected string path, Buffer, or Uint8Array.", -1, null);
+		if (typeof file === "string") {
+			if (typeof process === "undefined" || !process.versions?.node) throw new FeishuConfigError("String file path is only supported in Node.js. In browsers or Service Workers, pass a Blob, File, or Uint8Array instead.");
+			return loadFromFilePath(file);
+		}
+		throw new FeishuApiError("Unsupported image source type. Expected string path, Uint8Array, or Blob.", -1, null);
 	}
 };
+/**
+* 从文件路径读取字节（仅 Node）。
+*
+* 关键技巧：用 `new Function` 包裹 dynamic import 字符串，让 Vite / Webpack / esbuild
+* 等打包器无法静态分析这两个 node:* import，从而不会在浏览器/扩展产物里报「找不到模块」。
+*
+* 这条代码路径在浏览器/SW 中永远不可达（resolveSource 已经在 typeof process 处抛错了），
+* 所以静态引用即使被打入 bundle 也不会被执行。
+*/
+async function loadFromFilePath(filePath) {
+	const importFs = new Function("return import(\"node:fs/promises\")");
+	const importPath = new Function("return import(\"node:path\")");
+	const [fs, pathMod] = await Promise.all([importFs(), importPath()]);
+	const buf = await fs.readFile(filePath);
+	return {
+		bytes: new Uint8Array(buf),
+		filename: pathMod.basename(filePath)
+	};
+}
 //#endregion
 //#region src/messages/image.ts
 /**
@@ -283,17 +306,34 @@ function buildText(text, opts = {}) {
 //#endregion
 //#region src/signer.ts
 /**
-* 生成飞书自定义机器人签名。
+* 生成飞书自定义机器人签名（同构实现，使用 WebCrypto）。
 *
 * 算法（来自飞书官方文档，反直觉之处：HMAC 的 key 是 stringToSign 本身，data 是空字符串）：
 *   stringToSign = `${timestamp}\n${secret}`
 *   sign         = Base64(HmacSHA256(key = stringToSign, data = ''))
 *
+* 仅依赖 globalThis.crypto.subtle，因此在以下环境均可运行：
+*   - Node 18+（原生 WebCrypto）
+*   - 浏览器主线程
+*   - Service Worker / 浏览器扩展 Service Worker
+*   - Cloudflare Workers / Deno / Bun
+*
+* ⚠️ 破坏性变更（v0.1 → v0.2）：返回 Promise，而非同步字符串。
+*
 * @param timestamp  Unix 秒时间戳（飞书要求 ±1 小时窗口）
 * @param secret     机器人「安全设置 → 签名校验」得到的 secret
 */
-function genSign(timestamp, secret) {
-	return createHmac("sha256", `${timestamp}\n${secret}`).update("").digest("base64");
+async function genSign(timestamp, secret) {
+	const subtle = globalThis.crypto?.subtle;
+	if (!subtle) throw new Error("WebCrypto (globalThis.crypto.subtle) is not available. Use Node.js >= 18, a modern browser, or a Service Worker context.");
+	const stringToSign = `${timestamp}\n${secret}`;
+	const keyData = new TextEncoder().encode(stringToSign);
+	const cryptoKey = await subtle.importKey("raw", keyData, {
+		name: "HMAC",
+		hash: "SHA-256"
+	}, false, ["sign"]);
+	const signature = await subtle.sign("HMAC", cryptoKey, new Uint8Array(0));
+	return bytesToBase64(new Uint8Array(signature));
 }
 /**
 * 获取当前 Unix 秒时间戳。
@@ -301,6 +341,15 @@ function genSign(timestamp, secret) {
 function currentTimestamp() {
 	return Math.floor(Date.now() / 1e3);
 }
+/**
+* Uint8Array → base64。
+* 不依赖 Node Buffer，浏览器/SW/Node 18+ 都有 btoa。
+*/
+function bytesToBase64(bytes) {
+	let bin = "";
+	for (let i = 0; i < bytes.length; i++) bin += String.fromCharCode(bytes[i]);
+	return btoa(bin);
+}
 //#endregion
 //#region src/token-manager.ts
 var DEFAULT_BASE_URL$1 = "https://open.feishu.cn";
@@ -309,6 +358,12 @@ var TENANT_TOKEN_PATH = "/open-apis/auth/v3/tenant_access_token/internal";
 var REFRESH_THRESHOLD_MS = 1800 * 1e3;
 /**
 * tenant_access_token 缓存与自动刷新。
+*
+* 三层缓存查找顺序：
+*   1. 内存（最快）
+*   2. 注入的 TokenStorage（跨进程/跨 SW 重启）
+*   3. 网络获取
+*
 * 并发去重：多次 getToken() 在 in-flight 期间共享同一个 Promise，避免重复请求。
 */
 var TokenManager = class {
@@ -317,6 +372,7 @@ var TokenManager = class {
 	fetchImpl;
 	timeout;
 	baseUrl;
+	storage;
 	cached = null;
 	inflight = null;
 	constructor(options) {
@@ -326,21 +382,36 @@ var TokenManager = class {
 		this.fetchImpl = options.fetch;
 		this.timeout = options.timeout;
 		this.baseUrl = options.baseUrl ?? DEFAULT_BASE_URL$1;
+		this.storage = options.storage;
 	}
 	/**
-	* 获取有效 token。优先使用缓存；过期/即将过期时刷新。
+	* 获取有效 token。优先内存缓存；过期/即将过期时尝试 storage，最后回退到网络。
 	*/
 	async getToken() {
-		if (this.isCacheFresh()) return this.cached.token;
+		if (this.isFresh(this.cached)) return this.cached.token;
 		if (this.inflight) return this.inflight;
-		this.inflight = this.fetchToken().finally(() => {
+		this.inflight = this.refreshToken().finally(() => {
 			this.inflight = null;
 		});
 		return this.inflight;
 	}
-	isCacheFresh() {
-		if (!this.cached) return false;
-		return this.cached.expiresAt - Date.now() > REFRESH_THRESHOLD_MS;
+	isFresh(entry) {
+		if (!entry) return false;
+		return entry.expiresAt - Date.now() > REFRESH_THRESHOLD_MS;
+	}
+	/**
+	* 刷新流程：先尝试 storage（若注入），不可用则走网络。
+	* storage 异常一律视为「miss」，回退到网络，避免单点故障阻塞主流程。
+	*/
+	async refreshToken() {
+		if (this.storage) try {
+			const stored = await this.storage.get();
+			if (this.isFresh(stored)) {
+				this.cached = stored;
+				return stored.token;
+			}
+		} catch {}
+		return this.fetchToken();
 	}
 	async fetchToken() {
 		const response = await postJson(`${this.baseUrl}${TENANT_TOKEN_PATH}`, {
@@ -356,6 +427,9 @@ var TokenManager = class {
 			token: response.tenant_access_token,
 			expiresAt: Date.now() + expireSeconds * 1e3
 		};
+		if (this.storage) try {
+			await this.storage.set(this.cached);
+		} catch {}
 		return this.cached.token;
 	}
 };
@@ -381,6 +455,7 @@ var FeishuBot = class {
 	fetchImpl;
 	timeout;
 	baseUrl;
+	tokenStorage;
 	tokenManager = null;
 	imageUploader = null;
 	constructor(options = {}) {
@@ -391,6 +466,7 @@ var FeishuBot = class {
 		this.fetchImpl = options.fetch;
 		this.timeout = options.timeout;
 		this.baseUrl = options.baseUrl ?? DEFAULT_BASE_URL;
+		this.tokenStorage = options.tokenStorage;
 	}
 	/**
 	* 原子发送：接收已构造好的 payload，负责注入签名并 POST 到 webhook。
@@ -402,7 +478,7 @@ var FeishuBot = class {
 		if (this.secret) {
 			const timestamp = currentTimestamp();
 			finalPayload.timestamp = String(timestamp);
-			finalPayload.sign = genSign(timestamp, this.secret);
+			finalPayload.sign = await genSign(timestamp, this.secret);
 		}
 		const response = await postJson(webhook, finalPayload, {
 			fetch: this.fetchImpl,
@@ -461,7 +537,8 @@ var FeishuBot = class {
 				appSecret,
 				fetch: this.fetchImpl,
 				timeout: this.timeout,
-				baseUrl: this.baseUrl
+				baseUrl: this.baseUrl,
+				storage: this.tokenStorage
 			});
 		}
 		return this.tokenManager;

package/dist/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.js","names":[],"sources":["../src/env.ts","../src/errors.ts","../src/http.ts","../src/image-uploader.ts","../src/messages/image.ts","../src/messages/interactive.ts","../src/messages/post.ts","../src/messages/share-chat.ts","../src/messages/text.ts","../src/signer.ts","../src/token-manager.ts","../src/client.ts"],"sourcesContent":["/*\n 安全读取 process.env。在不存在 process 的环境（如浏览器）里返回 undefined，不会崩溃。\n * SDK 本身不引入 dotenv，调用方可自行用 `node --env-file=.env` 或 `dotenv/config` 预加载。\n /\nexport function readEnv(key: string): string \| undefined {\n if (typeof process === 'undefined' \|\| !process.env) {\n return undefined;\n }\n // 上面已经保证 process.env 存在，无需再用可选链。\n const value = process.env[key];\n if (value === undefined \|\| value === '') {\n return undefined;\n }\n return value;\n}\n","/\n 所有飞书机器人相关错误的基类。\n /\nexport class FeishuBotError extends Error {\n constructor(message: string) {\n super(message);\n this.name = 'FeishuBotError';\n // 保证原型链正确，便于 instanceof 检测\n Object.setPrototypeOf(this, new.target.prototype);\n }\n}\n\n/\n 配置相关错误：如未提供 webhook、secret、appId、appSecret 等。\n * 构造 FeishuBot 实例时不会抛；延迟到 send/upload 调用时才抛。\n /\nexport class FeishuConfigError extends FeishuBotError {\n constructor(message: string) {\n super(message);\n this.name = 'FeishuConfigError';\n }\n}\n\n/\n 调用飞书 OpenAPI 或 webhook 后，返回 code !== 0 或 HTTP 非 2xx 时抛出。\n /\nexport class FeishuApiError extends FeishuBotError {\n public readonly code: number;\n public readonly response: unknown;\n\n constructor(message: string, code: number, response: unknown) {\n super(message);\n this.name = 'FeishuApiError';\n this.code = code;\n this.response = response;\n }\n}\n","import { FeishuApiError } from './errors.js';\n\nexport interface RequestOptions {\n /* 自定义 fetch 实现，默认 globalThis.fetch /\n fetch?: typeof fetch;\n /* 请求超时，单位毫秒，默认 10000 /\n timeout?: number;\n /* 额外请求头 /\n headers?: Record<string, string>;\n}\n\nconst DEFAULT_TIMEOUT = 10_000;\n\ninterface RawResponse {\n status: number;\n statusText: string;\n ok: boolean;\n text: string;\n}\n\nfunction resolveFetch(customFetch?: typeof fetch): typeof fetch {\n const fn = customFetch ?? globalThis.fetch;\n if (typeof fn !== 'function') {\n throw new FeishuApiError(\n 'global fetch is not available. Please use Node.js >= 18 or provide a custom fetch.',\n -1,\n null,\n );\n }\n return fn;\n}\n\n/\n 通用请求执行器：处理 timeout + 错误归一化。\n * 为了让 timeout 覆盖整个 body 读取过程，在 clearTimeout 之前就完成 response.text()。\n * 返回结构化结果，由调用方自行决定是否解析 JSON。\n /\nasync function request(\n url: string,\n init: RequestInit,\n options: RequestOptions = {},\n): Promise<RawResponse> {\n const fetchImpl = resolveFetch(options.fetch);\n const timeout = options.timeout ?? DEFAULT_TIMEOUT;\n\n const controller = new AbortController();\n const timer = setTimeout(() => controller.abort(), timeout);\n\n try {\n const response = await fetchImpl(url, {\n ...init,\n signal: controller.signal,\n });\n // 关键：在 clearTimeout 之前读取 body，保证慢 body 也能触发 abort。\n const text = await response.text();\n return {\n status: response.status,\n statusText: response.statusText,\n ok: response.ok,\n text,\n };\n } catch (err) {\n if (err instanceof Error && err.name === 'AbortError') {\n throw new FeishuApiError(\n `Request timed out after ${timeout}ms: ${url}`,\n -1,\n null,\n );\n }\n if (err instanceof FeishuApiError) {\n throw err;\n }\n const message = err instanceof Error ? err.message : String(err);\n throw new FeishuApiError(`Network error: ${message}`, -1, null);\n } finally {\n clearTimeout(timer);\n }\n}\n\nfunction parseJsonBody<T>(raw: RawResponse): T {\n if (!raw.text) {\n throw new FeishuApiError(\n `Empty response body (HTTP ${raw.status})`,\n -1,\n null,\n );\n }\n try {\n return JSON.parse(raw.text) as T;\n } catch {\n throw new FeishuApiError(\n `Failed to parse JSON response (HTTP ${raw.status}): ${raw.text.slice(0, 200)}`,\n -1,\n raw.text,\n );\n }\n}\n\nfunction throwIfHttpError(raw: RawResponse): void {\n if (!raw.ok) {\n throw new FeishuApiError(\n `HTTP ${raw.status} ${raw.statusText}: ${raw.text.slice(0, 200)}`,\n raw.status,\n raw.text,\n );\n }\n}\n\n/\n POST JSON 请求，返回已解析的 JSON。HTTP 非 2xx 或解析失败时抛 FeishuApiError。\n * 注意：业务层 code !== 0 的判断由调用方处理（不同接口含义不同）。\n /\nexport async function postJson<T = unknown>(\n url: string,\n body: unknown,\n options: RequestOptions = {},\n): Promise<T> {\n const raw = await request(\n url,\n {\n method: 'POST',\n headers: {\n 'Content-Type': 'application/json; charset=utf-8',\n ...options.headers,\n },\n body: JSON.stringify(body),\n },\n options,\n );\n\n throwIfHttpError(raw);\n return parseJsonBody<T>(raw);\n}\n\n/\n POST 一个 FormData（multipart/form-data）。用于图片上传。\n * 注意：绝不要手动设置 Content-Type，让 fetch/undici 自动带 boundary。\n /\nexport async function postForm<T = unknown>(\n url: string,\n form: FormData,\n options: RequestOptions = {},\n): Promise<T> {\n const raw = await request(\n url,\n {\n method: 'POST',\n headers: {\n ...options.headers,\n },\n body: form,\n },\n options,\n );\n\n throwIfHttpError(raw);\n return parseJsonBody<T>(raw);\n}\n","import { readFile } from 'node:fs/promises';\nimport { basename } from 'node:path';\n\nimport { FeishuApiError } from './errors.js';\nimport { postForm } from './http.js';\nimport type { TokenManager } from './token-manager.js';\nimport type { FeishuApiResponse, UploadImageResult } from './types.js';\n\nconst DEFAULT_BASE_URL = 'https://open.feishu.cn';\nconst UPLOAD_PATH = '/open-apis/im/v1/images';\n\nexport interface ImageUploaderOptions {\n tokenManager: TokenManager;\n fetch?: typeof fetch;\n timeout?: number;\n baseUrl?: string;\n}\n\n/* 支持的图片源：文件路径字符串 / Buffer / Uint8Array /\nexport type ImageSource = string \| Buffer \| Uint8Array;\n\n/\n 图片上传器：调用 im/v1/images 接口，返回 image_key。\n * - string: 作为文件路径用 fs/promises.readFile 读成 Buffer\n * - Buffer/Uint8Array: 直接作为 Blob 数据\n * 用 globalThis 的 FormData + Blob（Node 18+ 内置），不依赖 form-data 包。\n /\nexport class ImageUploader {\n private readonly tokenManager: TokenManager;\n private readonly fetchImpl?: typeof fetch;\n private readonly timeout?: number;\n private readonly baseUrl: string;\n\n constructor(options: ImageUploaderOptions) {\n this.tokenManager = options.tokenManager;\n this.fetchImpl = options.fetch;\n this.timeout = options.timeout;\n this.baseUrl = options.baseUrl ?? DEFAULT_BASE_URL;\n }\n\n /\n 上传图片，返回 image_key。\n /\n async uploadImage(file: ImageSource): Promise<string> {\n const { bytes, filename } = await this.resolveSource(file);\n const token = await this.tokenManager.getToken();\n\n const form = new FormData();\n form.append('image_type', 'message');\n // Blob 构造器的 BlobPart 要求 Uint8Array 必须以 ArrayBuffer（而非 SharedArrayBuffer）为底。\n // 通过 bytes.slice() 得到一份拥有独立 ArrayBuffer 的新 Uint8Array。\n const blob = new Blob([bytes.slice()], {\n type: 'application/octet-stream',\n });\n form.append('image', blob, filename);\n\n const url = `${this.baseUrl}${UPLOAD_PATH}`;\n const response = await postForm<FeishuApiResponse<UploadImageResult>>(\n url,\n form,\n {\n fetch: this.fetchImpl,\n timeout: this.timeout,\n headers: {\n Authorization: `Bearer ${token}`,\n },\n },\n );\n\n if (response.code !== 0 \|\| !response.data?.image_key) {\n throw new FeishuApiError(\n `Failed to upload image: ${response.msg ?? 'unknown error'}`,\n response.code ?? -1,\n response,\n );\n }\n\n return response.data.image_key;\n }\n\n private async resolveSource(\n file: ImageSource,\n ): Promise<{ bytes: Uint8Array; filename: string }> {\n if (typeof file === 'string') {\n const buf = await readFile(file);\n return { bytes: new Uint8Array(buf), filename: basename(file) };\n }\n if (file instanceof Uint8Array) {\n // Buffer extends Uint8Array\n return { bytes: file, filename: 'image' };\n }\n throw new FeishuApiError(\n 'Unsupported image source type. Expected string path, Buffer, or Uint8Array.',\n -1,\n null,\n );\n }\n}\n","import type { ImageMessage } from '../types.js';\n\n/\n 构造 image 消息。\n \n 注意：自定义机器人直发 image 消息只认 image_key（形如 `img_xxx`）。\n * 想要直接发送本地文件，请使用 FeishuBot.sendImage() 或 FeishuBot.uploadImage()。\n /\nexport function buildImage(imageKey: string): ImageMessage {\n return {\n msg_type: 'image',\n content: {\n image_key: imageKey,\n },\n };\n}\n","import type { InteractiveCard, InteractiveMessage } from '../types.js';\n\n/\n 构造卡片（interactive）消息。\n \n 直接透传 card 结构。支持 card schema 2.0 或旧版 header/elements 格式：\n \n buildInteractive({\n * schema: \"2.0\",\n * header: { title: { tag: \"plain_text\", content: \"标题\" } },\n * body: { elements: [...] },\n * });\n \n // 或旧版：\n * buildInteractive({\n * config: { wide_screen_mode: true },\n * header: { template: \"blue\", title: { tag: \"plain_text\", content: \"标题\" } },\n * elements: [...],\n * });\n /\nexport function buildInteractive(card: InteractiveCard): InteractiveMessage {\n return {\n msg_type: 'interactive',\n card,\n };\n}\n","import type { PostContent, PostMessage } from '../types.js';\n\n/\n 构造富文本（post）消息。\n \n 用户构造 PostContent（支持 zh_cn/en_us/ja_jp 三语言），每个语言下是 `content: PostTag[][]` 的二维数组：\n * 外层是段落（行），内层是行内的标签（text/a/at/img）。\n \n 示例：\n * buildPost({\n * zh_cn: {\n * title: \"标题\",\n * content: [\n * [{ tag: \"text\", text: \"第一段: \" }, { tag: \"a\", text: \"点这里\", href: \"https://...\" }],\n * [{ tag: \"img\", image_key: \"img_xxx\" }],\n * ],\n * },\n * });\n /\nexport function buildPost(post: PostContent): PostMessage {\n return {\n msg_type: 'post',\n content: { post },\n };\n}\n","import type { ShareChatMessage } from '../types.js';\n\n/\n 构造分享群名片（share_chat）消息。\n \n @param shareChatId 群 chat_id（形如 `oc_xxx`）\n /\nexport function buildShareChat(shareChatId: string): ShareChatMessage {\n return {\n msg_type: 'share_chat',\n content: {\n share_chat_id: shareChatId,\n },\n };\n}\n","import type { AtOptions, TextMessage } from '../types.js';\n\n/\n 构造 text 消息。\n \n @-提醒说明（来自飞书文档）：\n * - @ 所有人：`<at user_id=\"all\">所有人</at>`（仅群里能用，必须机器人所在群支持）\n * - @ 指定用户（需已知 open_id）：`<at user_id=\"ou_xxx\"></at>`\n \n 示例：\n * buildText(\"hello\", { atAll: true })\n * // => { msg_type: \"text\", content: { text: \"hello <at user_id=\\\"all\\\">所有人</at>\" } }\n /\nexport function buildText(text: string, opts: AtOptions = {}): TextMessage {\n const parts: string[] = [];\n if (text) {\n parts.push(text);\n }\n if (opts.atUserIds && opts.atUserIds.length > 0) {\n for (const id of opts.atUserIds) {\n parts.push(`<at user_id=\"${id}\"></at>`);\n }\n }\n if (opts.atAll) {\n parts.push('<at user_id=\"all\">所有人</at>');\n }\n return {\n msg_type: 'text',\n content: {\n text: parts.join(' '),\n },\n };\n}\n","import { createHmac } from 'node:crypto';\n\n/\n 生成飞书自定义机器人签名。\n \n 算法（来自飞书官方文档，反直觉之处：HMAC 的 key 是 stringToSign 本身，data 是空字符串）：\n * stringToSign = `${timestamp}\\n${secret}`\n * sign = Base64(HmacSHA256(key = stringToSign, data = ''))\n \n @param timestamp Unix 秒时间戳（飞书要求 ±1 小时窗口）\n * @param secret 机器人「安全设置 → 签名校验」得到的 secret\n /\nexport function genSign(timestamp: number \| string, secret: string): string {\n const stringToSign = `${timestamp}\\n${secret}`;\n return createHmac('sha256', stringToSign).update('').digest('base64');\n}\n\n/\n 获取当前 Unix 秒时间戳。\n /\nexport function currentTimestamp(): number {\n return Math.floor(Date.now() / 1000);\n}\n","import { FeishuApiError, FeishuConfigError } from './errors.js';\nimport { postJson } from './http.js';\nimport type { TenantAccessTokenResponse } from './types.js';\n\nconst DEFAULT_BASE_URL = 'https://open.feishu.cn';\nconst TENANT_TOKEN_PATH = '/open-apis/auth/v3/tenant_access_token/internal';\n\n/* 剩余有效时间小于 30 分钟就刷新 /\nconst REFRESH_THRESHOLD_MS = 30 60 * 1000;\n\nexport interface TokenManagerOptions {\n appId: string;\n appSecret: string;\n fetch?: typeof fetch;\n timeout?: number;\n baseUrl?: string;\n}\n\ninterface CachedToken {\n token: string;\n expiresAt: number;\n}\n\n/*\n tenant_access_token 缓存与自动刷新。\n * 并发去重：多次 getToken() 在 in-flight 期间共享同一个 Promise，避免重复请求。\n /\nexport class TokenManager {\n private readonly appId: string;\n private readonly appSecret: string;\n private readonly fetchImpl?: typeof fetch;\n private readonly timeout?: number;\n private readonly baseUrl: string;\n\n private cached: CachedToken \| null = null;\n private inflight: Promise<string> \| null = null;\n\n constructor(options: TokenManagerOptions) {\n if (!options.appId \|\| !options.appSecret) {\n throw new FeishuConfigError(\n 'appId and appSecret are required for TokenManager',\n );\n }\n this.appId = options.appId;\n this.appSecret = options.appSecret;\n this.fetchImpl = options.fetch;\n this.timeout = options.timeout;\n this.baseUrl = options.baseUrl ?? DEFAULT_BASE_URL;\n }\n\n /\n 获取有效 token。优先使用缓存；过期/即将过期时刷新。\n /\n async getToken(): Promise<string> {\n if (this.isCacheFresh()) {\n return this.cached!.token;\n }\n if (this.inflight) {\n return this.inflight;\n }\n this.inflight = this.fetchToken().finally(() => {\n this.inflight = null;\n });\n return this.inflight;\n }\n\n private isCacheFresh(): boolean {\n if (!this.cached) return false;\n return this.cached.expiresAt - Date.now() > REFRESH_THRESHOLD_MS;\n }\n\n private async fetchToken(): Promise<string> {\n const url = `${this.baseUrl}${TENANT_TOKEN_PATH}`;\n const body = {\n app_id: this.appId,\n app_secret: this.appSecret,\n };\n const response = await postJson<TenantAccessTokenResponse>(url, body, {\n fetch: this.fetchImpl,\n timeout: this.timeout,\n });\n\n if (response.code !== 0 \|\| !response.tenant_access_token) {\n throw new FeishuApiError(\n `Failed to fetch tenant_access_token: ${response.msg ?? 'unknown error'}`,\n response.code ?? -1,\n response,\n );\n }\n\n const expireSeconds = response.expire ?? 7200;\n this.cached = {\n token: response.tenant_access_token,\n expiresAt: Date.now() + expireSeconds 1000,\n };\n return this.cached.token;\n }\n}\n","import { readEnv } from './env.js';\nimport { FeishuApiError, FeishuConfigError } from './errors.js';\nimport { postJson } from './http.js';\nimport { ImageUploader, type ImageSource } from './image-uploader.js';\nimport { buildImage } from './messages/image.js';\nimport { buildInteractive } from './messages/interactive.js';\nimport { buildPost } from './messages/post.js';\nimport { buildShareChat } from './messages/share-chat.js';\nimport { buildText } from './messages/text.js';\nimport { currentTimestamp, genSign } from './signer.js';\nimport { TokenManager } from './token-manager.js';\nimport type {\n AtOptions,\n FeishuApiResponse,\n FeishuBotOptions,\n InteractiveCard,\n MessagePayload,\n PostContent,\n SignedPayload,\n} from './types.js';\n\nconst DEFAULT_BASE_URL = 'https://open.feishu.cn';\n\n/*\n 飞书自定义机器人 SDK 主类。\n \n 构造期不会报错；缺失配置时延迟到 send/upload 调用时抛出 FeishuConfigError，\n * 便于「先 new 再注入配置」的使用模式。\n \n 使用示例：\n * const bot = new FeishuBot(); // 从 env 读配置\n * await bot.sendText(\"hello\", { atAll: true });\n * await bot.sendImage(\"./banner.png\"); // 自动上传得到 image_key 再发送\n /\nexport class FeishuBot {\n private readonly webhook?: string;\n private readonly secret?: string;\n private readonly appId?: string;\n private readonly appSecret?: string;\n private readonly fetchImpl?: typeof fetch;\n private readonly timeout?: number;\n private readonly baseUrl: string;\n\n private tokenManager: TokenManager \| null = null;\n private imageUploader: ImageUploader \| null = null;\n\n constructor(options: FeishuBotOptions = {}) {\n // 合并优先级：显式参数 > env 变量 > undefined\n this.webhook = options.webhook ?? readEnv('FEISHU_BOT_WEBHOOK');\n this.secret = options.secret ?? readEnv('FEISHU_BOT_SECRET');\n this.appId = options.appId ?? readEnv('FEISHU_APP_ID');\n this.appSecret = options.appSecret ?? readEnv('FEISHU_APP_SECRET');\n this.fetchImpl = options.fetch;\n this.timeout = options.timeout;\n this.baseUrl = options.baseUrl ?? DEFAULT_BASE_URL;\n }\n\n // ---------- 原子发送 ----------\n\n /\n 原子发送：接收已构造好的 payload，负责注入签名并 POST 到 webhook。\n * code !== 0 时抛 FeishuApiError。\n /\n async send<T = unknown>(\n payload: MessagePayload,\n ): Promise<FeishuApiResponse<T>> {\n const webhook = this.ensureWebhook();\n const finalPayload: SignedPayload = { ...payload };\n\n if (this.secret) {\n const timestamp = currentTimestamp();\n finalPayload.timestamp = String(timestamp);\n finalPayload.sign = genSign(timestamp, this.secret);\n }\n\n const response = await postJson<FeishuApiResponse<T>>(\n webhook,\n finalPayload,\n {\n fetch: this.fetchImpl,\n timeout: this.timeout,\n },\n );\n\n // 飞书 webhook 成功时 code=0；其它数值都视为业务错误。\n if (response.code !== 0) {\n throw new FeishuApiError(\n `Feishu webhook error: ${response.msg ?? 'unknown'} (code=${response.code})`,\n response.code,\n response,\n );\n }\n\n return response;\n }\n\n // ---------- 高层便捷方法 ----------\n\n sendText(text: string, opts?: AtOptions): Promise<FeishuApiResponse> {\n return this.send(buildText(text, opts));\n }\n\n sendPost(post: PostContent): Promise<FeishuApiResponse> {\n return this.send(buildPost(post));\n }\n\n sendShareChat(shareChatId: string): Promise<FeishuApiResponse> {\n return this.send(buildShareChat(shareChatId));\n }\n\n sendInteractive(card: InteractiveCard): Promise<FeishuApiResponse> {\n return this.send(buildInteractive(card));\n }\n\n /\n 发送图片。智能识别三种入参：\n * - string 且以 `img_` 开头 → 直接当 image_key 使用\n * - string 否则 → 视为本地文件路径，先上传再发送\n * - Buffer / Uint8Array → 直接上传再发送\n /\n async sendImage(input: ImageSource): Promise<FeishuApiResponse> {\n let imageKey: string;\n if (typeof input === 'string' && input.startsWith('img_')) {\n imageKey = input;\n } else {\n imageKey = await this.uploadImage(input);\n }\n return this.send(buildImage(imageKey));\n }\n\n /\n 暴露底层图片上传，便于调用方复用 image_key。\n * 需要 appId / appSecret 配置。\n */\n async uploadImage(file: ImageSource): Promise<string> {\n const uploader = this.getImageUploader();\n return uploader.uploadImage(file);\n }\n\n // ---------- 私有：懒初始化 + 校验 ----------\n\n private ensureWebhook(): string {\n if (!this.webhook) {\n throw new FeishuConfigError(\n 'webhook is required. Provide `webhook` in options or set FEISHU_BOT_WEBHOOK env.',\n );\n }\n return this.webhook;\n }\n\n private ensureAppCredentials(): { appId: string; appSecret: string } {\n if (!this.appId \|\| !this.appSecret) {\n throw new FeishuConfigError(\n 'appId and appSecret are required for image upload. Provide them in options or set FEISHU_APP_ID / FEISHU_APP_SECRET env.',\n );\n }\n return { appId: this.appId, appSecret: this.appSecret };\n }\n\n private getTokenManager(): TokenManager {\n if (!this.tokenManager) {\n const { appId, appSecret } = this.ensureAppCredentials();\n this.tokenManager = new TokenManager({\n appId,\n appSecret,\n fetch: this.fetchImpl,\n timeout: this.timeout,\n baseUrl: this.baseUrl,\n });\n }\n return this.tokenManager;\n }\n\n private getImageUploader(): ImageUploader {\n if (!this.imageUploader) {\n this.imageUploader = new ImageUploader({\n tokenManager: this.getTokenManager(),\n fetch: this.fetchImpl,\n timeout: this.timeout,\n baseUrl: this.baseUrl,\n });\n }\n return this.imageUploader;\n }\n}\n"],"mappings":";;;;;;;;AAIA,SAAgB,QAAQ,KAAiC;AACvD,KAAI,OAAO,YAAY,eAAe,CAAC,QAAQ,IAC7C;CAGF,MAAM,QAAQ,QAAQ,IAAI;AAC1B,KAAI,UAAU,KAAA,KAAa,UAAU,GACnC;AAEF,QAAO;;;;;;;ACVT,IAAa,iBAAb,cAAoC,MAAM;CACxC,YAAY,SAAiB;AAC3B,QAAM,QAAQ;AACd,OAAK,OAAO;AAEZ,SAAO,eAAe,MAAM,IAAI,OAAO,UAAU;;;;;;;AAQrD,IAAa,oBAAb,cAAuC,eAAe;CACpD,YAAY,SAAiB;AAC3B,QAAM,QAAQ;AACd,OAAK,OAAO;;;;;;AAOhB,IAAa,iBAAb,cAAoC,eAAe;CACjD;CACA;CAEA,YAAY,SAAiB,MAAc,UAAmB;AAC5D,QAAM,QAAQ;AACd,OAAK,OAAO;AACZ,OAAK,OAAO;AACZ,OAAK,WAAW;;;;;ACvBpB,IAAM,kBAAkB;AASxB,SAAS,aAAa,aAA0C;CAC9D,MAAM,KAAK,eAAe,WAAW;AACrC,KAAI,OAAO,OAAO,WAChB,OAAM,IAAI,eACR,sFACA,IACA,KACD;AAEH,QAAO;;;;;;;AAQT,eAAe,QACb,KACA,MACA,UAA0B,EAAE,EACN;CACtB,MAAM,YAAY,aAAa,QAAQ,MAAM;CAC7C,MAAM,UAAU,QAAQ,WAAW;CAEnC,MAAM,aAAa,IAAI,iBAAiB;CACxC,MAAM,QAAQ,iBAAiB,WAAW,OAAO,EAAE,QAAQ;AAE3D,KAAI;EACF,MAAM,WAAW,MAAM,UAAU,KAAK;GACpC,GAAG;GACH,QAAQ,WAAW;GACpB,CAAC;EAEF,MAAM,OAAO,MAAM,SAAS,MAAM;AAClC,SAAO;GACL,QAAQ,SAAS;GACjB,YAAY,SAAS;GACrB,IAAI,SAAS;GACb;GACD;UACM,KAAK;AACZ,MAAI,eAAe,SAAS,IAAI,SAAS,aACvC,OAAM,IAAI,eACR,2BAA2B,QAAQ,MAAM,OACzC,IACA,KACD;AAEH,MAAI,eAAe,eACjB,OAAM;AAGR,QAAM,IAAI,eAAe,kBADT,eAAe,QAAQ,IAAI,UAAU,OAAO,IAAI,IACV,IAAI,KAAK;WACvD;AACR,eAAa,MAAM;;;AAIvB,SAAS,cAAiB,KAAqB;AAC7C,KAAI,CAAC,IAAI,KACP,OAAM,IAAI,eACR,6BAA6B,IAAI,OAAO,IACxC,IACA,KACD;AAEH,KAAI;AACF,SAAO,KAAK,MAAM,IAAI,KAAK;SACrB;AACN,QAAM,IAAI,eACR,uCAAuC,IAAI,OAAO,KAAK,IAAI,KAAK,MAAM,GAAG,IAAI,IAC7E,IACA,IAAI,KACL;;;AAIL,SAAS,iBAAiB,KAAwB;AAChD,KAAI,CAAC,IAAI,GACP,OAAM,IAAI,eACR,QAAQ,IAAI,OAAO,GAAG,IAAI,WAAW,IAAI,IAAI,KAAK,MAAM,GAAG,IAAI,IAC/D,IAAI,QACJ,IAAI,KACL;;;;;;AAQL,eAAsB,SACpB,KACA,MACA,UAA0B,EAAE,EAChB;CACZ,MAAM,MAAM,MAAM,QAChB,KACA;EACE,QAAQ;EACR,SAAS;GACP,gBAAgB;GAChB,GAAG,QAAQ;GACZ;EACD,MAAM,KAAK,UAAU,KAAK;EAC3B,EACD,QACD;AAED,kBAAiB,IAAI;AACrB,QAAO,cAAiB,IAAI;;;;;;AAO9B,eAAsB,SACpB,KACA,MACA,UAA0B,EAAE,EAChB;CACZ,MAAM,MAAM,MAAM,QAChB,KACA;EACE,QAAQ;EACR,SAAS,EACP,GAAG,QAAQ,SACZ;EACD,MAAM;EACP,EACD,QACD;AAED,kBAAiB,IAAI;AACrB,QAAO,cAAiB,IAAI;;;;ACpJ9B,IAAM,qBAAmB;AACzB,IAAM,cAAc;;;;;;;AAkBpB,IAAa,gBAAb,MAA2B;CACzB;CACA;CACA;CACA;CAEA,YAAY,SAA+B;AACzC,OAAK,eAAe,QAAQ;AAC5B,OAAK,YAAY,QAAQ;AACzB,OAAK,UAAU,QAAQ;AACvB,OAAK,UAAU,QAAQ,WAAW;;;;;CAMpC,MAAM,YAAY,MAAoC;EACpD,MAAM,EAAE,OAAO,aAAa,MAAM,KAAK,cAAc,KAAK;EAC1D,MAAM,QAAQ,MAAM,KAAK,aAAa,UAAU;EAEhD,MAAM,OAAO,IAAI,UAAU;AAC3B,OAAK,OAAO,cAAc,UAAU;EAGpC,MAAM,OAAO,IAAI,KAAK,CAAC,MAAM,OAAO,CAAC,EAAE,EACrC,MAAM,4BACP,CAAC;AACF,OAAK,OAAO,SAAS,MAAM,SAAS;EAGpC,MAAM,WAAW,MAAM,SADX,GAAG,KAAK,UAAU,eAG5B,MACA;GACE,OAAO,KAAK;GACZ,SAAS,KAAK;GACd,SAAS,EACP,eAAe,UAAU,SAC1B;GACF,CACF;AAED,MAAI,SAAS,SAAS,KAAK,CAAC,SAAS,MAAM,UACzC,OAAM,IAAI,eACR,2BAA2B,SAAS,OAAO,mBAC3C,SAAS,QAAQ,IACjB,SACD;AAGH,SAAO,SAAS,KAAK;;CAGvB,MAAc,cACZ,MACkD;AAClD,MAAI,OAAO,SAAS,UAAU;GAC5B,MAAM,MAAM,MAAM,SAAS,KAAK;AAChC,UAAO;IAAE,OAAO,IAAI,WAAW,IAAI;IAAE,UAAU,SAAS,KAAK;IAAE;;AAEjE,MAAI,gBAAgB,WAElB,QAAO;GAAE,OAAO;GAAM,UAAU;GAAS;AAE3C,QAAM,IAAI,eACR,+EACA,IACA,KACD;;;;;;;;;;;ACvFL,SAAgB,WAAW,UAAgC;AACzD,QAAO;EACL,UAAU;EACV,SAAS,EACP,WAAW,UACZ;EACF;;;;;;;;;;;;;;;;;;;;;;ACMH,SAAgB,iBAAiB,MAA2C;AAC1E,QAAO;EACL,UAAU;EACV;EACD;;;;;;;;;;;;;;;;;;;;;ACLH,SAAgB,UAAU,MAAgC;AACxD,QAAO;EACL,UAAU;EACV,SAAS,EAAE,MAAM;EAClB;;;;;;;;;AChBH,SAAgB,eAAe,aAAuC;AACpE,QAAO;EACL,UAAU;EACV,SAAS,EACP,eAAe,aAChB;EACF;;;;;;;;;;;;;;;ACAH,SAAgB,UAAU,MAAc,OAAkB,EAAE,EAAe;CACzE,MAAM,QAAkB,EAAE;AAC1B,KAAI,KACF,OAAM,KAAK,KAAK;AAElB,KAAI,KAAK,aAAa,KAAK,UAAU,SAAS,EAC5C,MAAK,MAAM,MAAM,KAAK,UACpB,OAAM,KAAK,gBAAgB,GAAG,SAAS;AAG3C,KAAI,KAAK,MACP,OAAM,KAAK,+BAA6B;AAE1C,QAAO;EACL,UAAU;EACV,SAAS,EACP,MAAM,MAAM,KAAK,IAAI,EACtB;EACF;;;;;;;;;;;;;;ACnBH,SAAgB,QAAQ,WAA4B,QAAwB;AAE1E,QAAO,WAAW,UADG,GAAG,UAAU,IAAI,SACG,CAAC,OAAO,GAAG,CAAC,OAAO,SAAS;;;;;AAMvE,SAAgB,mBAA2B;AACzC,QAAO,KAAK,MAAM,KAAK,KAAK,GAAG,IAAK;;;;ACjBtC,IAAM,qBAAmB;AACzB,IAAM,oBAAoB;;AAG1B,IAAM,uBAAuB,OAAU;;;;;AAmBvC,IAAa,eAAb,MAA0B;CACxB;CACA;CACA;CACA;CACA;CAEA,SAAqC;CACrC,WAA2C;CAE3C,YAAY,SAA8B;AACxC,MAAI,CAAC,QAAQ,SAAS,CAAC,QAAQ,UAC7B,OAAM,IAAI,kBACR,oDACD;AAEH,OAAK,QAAQ,QAAQ;AACrB,OAAK,YAAY,QAAQ;AACzB,OAAK,YAAY,QAAQ;AACzB,OAAK,UAAU,QAAQ;AACvB,OAAK,UAAU,QAAQ,WAAW;;;;;CAMpC,MAAM,WAA4B;AAChC,MAAI,KAAK,cAAc,CACrB,QAAO,KAAK,OAAQ;AAEtB,MAAI,KAAK,SACP,QAAO,KAAK;AAEd,OAAK,WAAW,KAAK,YAAY,CAAC,cAAc;AAC9C,QAAK,WAAW;IAChB;AACF,SAAO,KAAK;;CAGd,eAAgC;AAC9B,MAAI,CAAC,KAAK,OAAQ,QAAO;AACzB,SAAO,KAAK,OAAO,YAAY,KAAK,KAAK,GAAG;;CAG9C,MAAc,aAA8B;EAM1C,MAAM,WAAW,MAAM,SALX,GAAG,KAAK,UAAU,qBACjB;GACX,QAAQ,KAAK;GACb,YAAY,KAAK;GAClB,EACqE;GACpE,OAAO,KAAK;GACZ,SAAS,KAAK;GACf,CAAC;AAEF,MAAI,SAAS,SAAS,KAAK,CAAC,SAAS,oBACnC,OAAM,IAAI,eACR,wCAAwC,SAAS,OAAO,mBACxD,SAAS,QAAQ,IACjB,SACD;EAGH,MAAM,gBAAgB,SAAS,UAAU;AACzC,OAAK,SAAS;GACZ,OAAO,SAAS;GAChB,WAAW,KAAK,KAAK,GAAG,gBAAgB;GACzC;AACD,SAAO,KAAK,OAAO;;;;;AC1EvB,IAAM,mBAAmB;;;;;;;;;;;;AAazB,IAAa,YAAb,MAAuB;CACrB;CACA;CACA;CACA;CACA;CACA;CACA;CAEA,eAA4C;CAC5C,gBAA8C;CAE9C,YAAY,UAA4B,EAAE,EAAE;AAE1C,OAAK,UAAU,QAAQ,WAAW,QAAQ,qBAAqB;AAC/D,OAAK,SAAS,QAAQ,UAAU,QAAQ,oBAAoB;AAC5D,OAAK,QAAQ,QAAQ,SAAS,QAAQ,gBAAgB;AACtD,OAAK,YAAY,QAAQ,aAAa,QAAQ,oBAAoB;AAClE,OAAK,YAAY,QAAQ;AACzB,OAAK,UAAU,QAAQ;AACvB,OAAK,UAAU,QAAQ,WAAW;;;;;;CASpC,MAAM,KACJ,SAC+B;EAC/B,MAAM,UAAU,KAAK,eAAe;EACpC,MAAM,eAA8B,EAAE,GAAG,SAAS;AAElD,MAAI,KAAK,QAAQ;GACf,MAAM,YAAY,kBAAkB;AACpC,gBAAa,YAAY,OAAO,UAAU;AAC1C,gBAAa,OAAO,QAAQ,WAAW,KAAK,OAAO;;EAGrD,MAAM,WAAW,MAAM,SACrB,SACA,cACA;GACE,OAAO,KAAK;GACZ,SAAS,KAAK;GACf,CACF;AAGD,MAAI,SAAS,SAAS,EACpB,OAAM,IAAI,eACR,yBAAyB,SAAS,OAAO,UAAU,SAAS,SAAS,KAAK,IAC1E,SAAS,MACT,SACD;AAGH,SAAO;;CAKT,SAAS,MAAc,MAA8C;AACnE,SAAO,KAAK,KAAK,UAAU,MAAM,KAAK,CAAC;;CAGzC,SAAS,MAA+C;AACtD,SAAO,KAAK,KAAK,UAAU,KAAK,CAAC;;CAGnC,cAAc,aAAiD;AAC7D,SAAO,KAAK,KAAK,eAAe,YAAY,CAAC;;CAG/C,gBAAgB,MAAmD;AACjE,SAAO,KAAK,KAAK,iBAAiB,KAAK,CAAC;;;;;;;;CAS1C,MAAM,UAAU,OAAgD;EAC9D,IAAI;AACJ,MAAI,OAAO,UAAU,YAAY,MAAM,WAAW,OAAO,CACvD,YAAW;MAEX,YAAW,MAAM,KAAK,YAAY,MAAM;AAE1C,SAAO,KAAK,KAAK,WAAW,SAAS,CAAC;;;;;;CAOxC,MAAM,YAAY,MAAoC;AAEpD,SADiB,KAAK,kBAAkB,CACxB,YAAY,KAAK;;CAKnC,gBAAgC;AAC9B,MAAI,CAAC,KAAK,QACR,OAAM,IAAI,kBACR,mFACD;AAEH,SAAO,KAAK;;CAGd,uBAAqE;AACnE,MAAI,CAAC,KAAK,SAAS,CAAC,KAAK,UACvB,OAAM,IAAI,kBACR,2HACD;AAEH,SAAO;GAAE,OAAO,KAAK;GAAO,WAAW,KAAK;GAAW;;CAGzD,kBAAwC;AACtC,MAAI,CAAC,KAAK,cAAc;GACtB,MAAM,EAAE,OAAO,cAAc,KAAK,sBAAsB;AACxD,QAAK,eAAe,IAAI,aAAa;IACnC;IACA;IACA,OAAO,KAAK;IACZ,SAAS,KAAK;IACd,SAAS,KAAK;IACf,CAAC;;AAEJ,SAAO,KAAK;;CAGd,mBAA0C;AACxC,MAAI,CAAC,KAAK,cACR,MAAK,gBAAgB,IAAI,cAAc;GACrC,cAAc,KAAK,iBAAiB;GACpC,OAAO,KAAK;GACZ,SAAS,KAAK;GACd,SAAS,KAAK;GACf,CAAC;AAEJ,SAAO,KAAK"}
1	+ {"version":3,"file":"index.js","names":[],"sources":["../src/env.ts","../src/errors.ts","../src/http.ts","../src/image-uploader.ts","../src/messages/image.ts","../src/messages/interactive.ts","../src/messages/post.ts","../src/messages/share-chat.ts","../src/messages/text.ts","../src/signer.ts","../src/token-manager.ts","../src/client.ts"],"sourcesContent":["/*\n 安全读取 process.env。在不存在 process 的环境（如浏览器）里返回 undefined，不会崩溃。\n * SDK 本身不引入 dotenv，调用方可自行用 `node --env-file=.env` 或 `dotenv/config` 预加载。\n /\nexport function readEnv(key: string): string \| undefined {\n if (typeof process === 'undefined' \|\| !process.env) {\n return undefined;\n }\n // 上面已经保证 process.env 存在，无需再用可选链。\n const value = process.env[key];\n if (value === undefined \|\| value === '') {\n return undefined;\n }\n return value;\n}\n","/\n 所有飞书机器人相关错误的基类。\n /\nexport class FeishuBotError extends Error {\n constructor(message: string) {\n super(message);\n this.name = 'FeishuBotError';\n // 保证原型链正确，便于 instanceof 检测\n Object.setPrototypeOf(this, new.target.prototype);\n }\n}\n\n/\n 配置相关错误：如未提供 webhook、secret、appId、appSecret 等。\n * 构造 FeishuBot 实例时不会抛；延迟到 send/upload 调用时才抛。\n /\nexport class FeishuConfigError extends FeishuBotError {\n constructor(message: string) {\n super(message);\n this.name = 'FeishuConfigError';\n }\n}\n\n/\n 调用飞书 OpenAPI 或 webhook 后，返回 code !== 0 或 HTTP 非 2xx 时抛出。\n /\nexport class FeishuApiError extends FeishuBotError {\n public readonly code: number;\n public readonly response: unknown;\n\n constructor(message: string, code: number, response: unknown) {\n super(message);\n this.name = 'FeishuApiError';\n this.code = code;\n this.response = response;\n }\n}\n","import { FeishuApiError } from './errors.js';\n\nexport interface RequestOptions {\n /* 自定义 fetch 实现，默认 globalThis.fetch /\n fetch?: typeof fetch;\n /* 请求超时，单位毫秒，默认 10000 /\n timeout?: number;\n /* 额外请求头 /\n headers?: Record<string, string>;\n}\n\nconst DEFAULT_TIMEOUT = 10_000;\n\ninterface RawResponse {\n status: number;\n statusText: string;\n ok: boolean;\n text: string;\n}\n\nfunction resolveFetch(customFetch?: typeof fetch): typeof fetch {\n const fn = customFetch ?? globalThis.fetch;\n if (typeof fn !== 'function') {\n throw new FeishuApiError(\n 'global fetch is not available. Please use Node.js >= 18 or provide a custom fetch.',\n -1,\n null,\n );\n }\n return fn;\n}\n\n/\n 通用请求执行器：处理 timeout + 错误归一化。\n * 为了让 timeout 覆盖整个 body 读取过程，在 clearTimeout 之前就完成 response.text()。\n * 返回结构化结果，由调用方自行决定是否解析 JSON。\n /\nasync function request(\n url: string,\n init: RequestInit,\n options: RequestOptions = {},\n): Promise<RawResponse> {\n const fetchImpl = resolveFetch(options.fetch);\n const timeout = options.timeout ?? DEFAULT_TIMEOUT;\n\n const controller = new AbortController();\n const timer = setTimeout(() => controller.abort(), timeout);\n\n try {\n const response = await fetchImpl(url, {\n ...init,\n signal: controller.signal,\n });\n // 关键：在 clearTimeout 之前读取 body，保证慢 body 也能触发 abort。\n const text = await response.text();\n return {\n status: response.status,\n statusText: response.statusText,\n ok: response.ok,\n text,\n };\n } catch (err) {\n if (err instanceof Error && err.name === 'AbortError') {\n throw new FeishuApiError(\n `Request timed out after ${timeout}ms: ${url}`,\n -1,\n null,\n );\n }\n if (err instanceof FeishuApiError) {\n throw err;\n }\n const message = err instanceof Error ? err.message : String(err);\n throw new FeishuApiError(`Network error: ${message}`, -1, null);\n } finally {\n clearTimeout(timer);\n }\n}\n\nfunction parseJsonBody<T>(raw: RawResponse): T {\n if (!raw.text) {\n throw new FeishuApiError(\n `Empty response body (HTTP ${raw.status})`,\n -1,\n null,\n );\n }\n try {\n return JSON.parse(raw.text) as T;\n } catch {\n throw new FeishuApiError(\n `Failed to parse JSON response (HTTP ${raw.status}): ${raw.text.slice(0, 200)}`,\n -1,\n raw.text,\n );\n }\n}\n\nfunction throwIfHttpError(raw: RawResponse): void {\n if (!raw.ok) {\n throw new FeishuApiError(\n `HTTP ${raw.status} ${raw.statusText}: ${raw.text.slice(0, 200)}`,\n raw.status,\n raw.text,\n );\n }\n}\n\n/\n POST JSON 请求，返回已解析的 JSON。HTTP 非 2xx 或解析失败时抛 FeishuApiError。\n * 注意：业务层 code !== 0 的判断由调用方处理（不同接口含义不同）。\n /\nexport async function postJson<T = unknown>(\n url: string,\n body: unknown,\n options: RequestOptions = {},\n): Promise<T> {\n const raw = await request(\n url,\n {\n method: 'POST',\n headers: {\n 'Content-Type': 'application/json; charset=utf-8',\n ...options.headers,\n },\n body: JSON.stringify(body),\n },\n options,\n );\n\n throwIfHttpError(raw);\n return parseJsonBody<T>(raw);\n}\n\n/\n POST 一个 FormData（multipart/form-data）。用于图片上传。\n * 注意：绝不要手动设置 Content-Type，让 fetch/undici 自动带 boundary。\n /\nexport async function postForm<T = unknown>(\n url: string,\n form: FormData,\n options: RequestOptions = {},\n): Promise<T> {\n const raw = await request(\n url,\n {\n method: 'POST',\n headers: {\n ...options.headers,\n },\n body: form,\n },\n options,\n );\n\n throwIfHttpError(raw);\n return parseJsonBody<T>(raw);\n}\n","import { FeishuApiError, FeishuConfigError } from './errors.js';\nimport { postForm } from './http.js';\nimport type { TokenManager } from './token-manager.js';\nimport type { FeishuApiResponse, UploadImageResult } from './types.js';\n\nconst DEFAULT_BASE_URL = 'https://open.feishu.cn';\nconst UPLOAD_PATH = '/open-apis/im/v1/images';\n\nexport interface ImageUploaderOptions {\n tokenManager: TokenManager;\n fetch?: typeof fetch;\n timeout?: number;\n baseUrl?: string;\n}\n\n/\n 支持的图片源：\n * - string : 文件路径（仅 Node 环境，浏览器/SW 会抛错）\n * - Uint8Array / Buffer : 原始字节\n * - Blob / File : 浏览器和 SW 推荐的方式（fetch().blob()、canvas.convertToBlob() 等）\n /\nexport type ImageSource = string \| Uint8Array \| Blob;\n\n/\n 图片上传器：调用 im/v1/images 接口，返回 image_key。\n \n 同构设计：\n * - Blob / Uint8Array 分支在 Node 18+ / 浏览器 / Service Worker 都能跑\n * - string 路径分支仅在 Node 可用，通过 new Function 隐藏 node:fs/promises 的\n * 静态引用，让浏览器/扩展打包器（Vite/Webpack/esbuild）不会因为找不到模块而报错\n /\nexport class ImageUploader {\n private readonly tokenManager: TokenManager;\n private readonly fetchImpl?: typeof fetch;\n private readonly timeout?: number;\n private readonly baseUrl: string;\n\n constructor(options: ImageUploaderOptions) {\n this.tokenManager = options.tokenManager;\n this.fetchImpl = options.fetch;\n this.timeout = options.timeout;\n this.baseUrl = options.baseUrl ?? DEFAULT_BASE_URL;\n }\n\n /\n 上传图片，返回 image_key。\n /\n async uploadImage(file: ImageSource): Promise<string> {\n const { bytes, filename } = await this.resolveSource(file);\n const token = await this.tokenManager.getToken();\n\n const form = new FormData();\n form.append('image_type', 'message');\n // Blob 构造器的 BlobPart 要求 Uint8Array 必须以 ArrayBuffer（而非 SharedArrayBuffer）为底。\n // 通过 bytes.slice() 得到一份拥有独立 ArrayBuffer 的新 Uint8Array。\n const blob = new Blob([bytes.slice()], {\n type: 'application/octet-stream',\n });\n form.append('image', blob, filename);\n\n const url = `${this.baseUrl}${UPLOAD_PATH}`;\n const response = await postForm<FeishuApiResponse<UploadImageResult>>(\n url,\n form,\n {\n fetch: this.fetchImpl,\n timeout: this.timeout,\n headers: {\n Authorization: `Bearer ${token}`,\n },\n },\n );\n\n if (response.code !== 0 \|\| !response.data?.image_key) {\n throw new FeishuApiError(\n `Failed to upload image: ${response.msg ?? 'unknown error'}`,\n response.code ?? -1,\n response,\n );\n }\n\n return response.data.image_key;\n }\n\n private async resolveSource(\n file: ImageSource,\n ): Promise<{ bytes: Uint8Array; filename: string }> {\n // Blob / File：浏览器和 SW 的主要路径\n if (typeof Blob !== 'undefined' && file instanceof Blob) {\n const buf = await file.arrayBuffer();\n // File extends Blob，有 .name；普通 Blob 没有 .name，用鸭子类型读\n const filename = (file as { name?: string }).name ?? 'image';\n return { bytes: new Uint8Array(buf), filename };\n }\n // Uint8Array / Buffer：Node 和浏览器都能用\n if (file instanceof Uint8Array) {\n return { bytes: file, filename: 'image' };\n }\n // string：文件路径，仅 Node\n if (typeof file === 'string') {\n if (typeof process === 'undefined' \|\| !process.versions?.node) {\n throw new FeishuConfigError(\n 'String file path is only supported in Node.js. ' +\n 'In browsers or Service Workers, pass a Blob, File, or Uint8Array instead.',\n );\n }\n return loadFromFilePath(file);\n }\n throw new FeishuApiError(\n 'Unsupported image source type. Expected string path, Uint8Array, or Blob.',\n -1,\n null,\n );\n }\n}\n\n/\n 从文件路径读取字节（仅 Node）。\n \n 关键技巧：用 `new Function` 包裹 dynamic import 字符串，让 Vite / Webpack / esbuild\n * 等打包器无法静态分析这两个 node:* import，从而不会在浏览器/扩展产物里报「找不到模块」。\n \n 这条代码路径在浏览器/SW 中永远不可达（resolveSource 已经在 typeof process 处抛错了），\n * 所以静态引用即使被打入 bundle 也不会被执行。\n /\nasync function loadFromFilePath(\n filePath: string,\n): Promise<{ bytes: Uint8Array; filename: string }> {\n type FsModule = typeof import('node:fs/promises');\n type PathModule = typeof import('node:path');\n const importFs = new Function(\n 'return import(\"node:fs/promises\")',\n ) as () => Promise<FsModule>;\n const importPath = new Function(\n 'return import(\"node:path\")',\n ) as () => Promise<PathModule>;\n\n const [fs, pathMod] = await Promise.all([importFs(), importPath()]);\n const buf = await fs.readFile(filePath);\n return {\n bytes: new Uint8Array(buf),\n filename: pathMod.basename(filePath),\n };\n}\n","import type { ImageMessage } from '../types.js';\n\n/\n 构造 image 消息。\n \n 注意：自定义机器人直发 image 消息只认 image_key（形如 `img_xxx`）。\n * 想要直接发送本地文件，请使用 FeishuBot.sendImage() 或 FeishuBot.uploadImage()。\n /\nexport function buildImage(imageKey: string): ImageMessage {\n return {\n msg_type: 'image',\n content: {\n image_key: imageKey,\n },\n };\n}\n","import type { InteractiveCard, InteractiveMessage } from '../types.js';\n\n/\n 构造卡片（interactive）消息。\n \n 直接透传 card 结构。支持 card schema 2.0 或旧版 header/elements 格式：\n \n buildInteractive({\n * schema: \"2.0\",\n * header: { title: { tag: \"plain_text\", content: \"标题\" } },\n * body: { elements: [...] },\n * });\n \n // 或旧版：\n * buildInteractive({\n * config: { wide_screen_mode: true },\n * header: { template: \"blue\", title: { tag: \"plain_text\", content: \"标题\" } },\n * elements: [...],\n * });\n /\nexport function buildInteractive(card: InteractiveCard): InteractiveMessage {\n return {\n msg_type: 'interactive',\n card,\n };\n}\n","import type { PostContent, PostMessage } from '../types.js';\n\n/\n 构造富文本（post）消息。\n \n 用户构造 PostContent（支持 zh_cn/en_us/ja_jp 三语言），每个语言下是 `content: PostTag[][]` 的二维数组：\n * 外层是段落（行），内层是行内的标签（text/a/at/img）。\n \n 示例：\n * buildPost({\n * zh_cn: {\n * title: \"标题\",\n * content: [\n * [{ tag: \"text\", text: \"第一段: \" }, { tag: \"a\", text: \"点这里\", href: \"https://...\" }],\n * [{ tag: \"img\", image_key: \"img_xxx\" }],\n * ],\n * },\n * });\n /\nexport function buildPost(post: PostContent): PostMessage {\n return {\n msg_type: 'post',\n content: { post },\n };\n}\n","import type { ShareChatMessage } from '../types.js';\n\n/\n 构造分享群名片（share_chat）消息。\n \n @param shareChatId 群 chat_id（形如 `oc_xxx`）\n /\nexport function buildShareChat(shareChatId: string): ShareChatMessage {\n return {\n msg_type: 'share_chat',\n content: {\n share_chat_id: shareChatId,\n },\n };\n}\n","import type { AtOptions, TextMessage } from '../types.js';\n\n/\n 构造 text 消息。\n \n @-提醒说明（来自飞书文档）：\n * - @ 所有人：`<at user_id=\"all\">所有人</at>`（仅群里能用，必须机器人所在群支持）\n * - @ 指定用户（需已知 open_id）：`<at user_id=\"ou_xxx\"></at>`\n \n 示例：\n * buildText(\"hello\", { atAll: true })\n * // => { msg_type: \"text\", content: { text: \"hello <at user_id=\\\"all\\\">所有人</at>\" } }\n /\nexport function buildText(text: string, opts: AtOptions = {}): TextMessage {\n const parts: string[] = [];\n if (text) {\n parts.push(text);\n }\n if (opts.atUserIds && opts.atUserIds.length > 0) {\n for (const id of opts.atUserIds) {\n parts.push(`<at user_id=\"${id}\"></at>`);\n }\n }\n if (opts.atAll) {\n parts.push('<at user_id=\"all\">所有人</at>');\n }\n return {\n msg_type: 'text',\n content: {\n text: parts.join(' '),\n },\n };\n}\n","/\n 生成飞书自定义机器人签名（同构实现，使用 WebCrypto）。\n \n 算法（来自飞书官方文档，反直觉之处：HMAC 的 key 是 stringToSign 本身，data 是空字符串）：\n * stringToSign = `${timestamp}\\n${secret}`\n * sign = Base64(HmacSHA256(key = stringToSign, data = ''))\n \n 仅依赖 globalThis.crypto.subtle，因此在以下环境均可运行：\n * - Node 18+（原生 WebCrypto）\n * - 浏览器主线程\n * - Service Worker / 浏览器扩展 Service Worker\n * - Cloudflare Workers / Deno / Bun\n \n ⚠️ 破坏性变更（v0.1 → v0.2）：返回 Promise，而非同步字符串。\n \n @param timestamp Unix 秒时间戳（飞书要求 ±1 小时窗口）\n * @param secret 机器人「安全设置 → 签名校验」得到的 secret\n /\nexport async function genSign(\n timestamp: number \| string,\n secret: string,\n): Promise<string> {\n const subtle = globalThis.crypto?.subtle;\n if (!subtle) {\n throw new Error(\n 'WebCrypto (globalThis.crypto.subtle) is not available. ' +\n 'Use Node.js >= 18, a modern browser, or a Service Worker context.',\n );\n }\n\n const stringToSign = `${timestamp}\\n${secret}`;\n const keyData = new TextEncoder().encode(stringToSign);\n\n const cryptoKey = await subtle.importKey(\n 'raw',\n keyData,\n { name: 'HMAC', hash: 'SHA-256' },\n false,\n ['sign'],\n );\n const signature = await subtle.sign('HMAC', cryptoKey, new Uint8Array(0));\n\n return bytesToBase64(new Uint8Array(signature));\n}\n\n/\n 获取当前 Unix 秒时间戳。\n /\nexport function currentTimestamp(): number {\n return Math.floor(Date.now() / 1000);\n}\n\n/\n Uint8Array → base64。\n * 不依赖 Node Buffer，浏览器/SW/Node 18+ 都有 btoa。\n /\nfunction bytesToBase64(bytes: Uint8Array): string {\n let bin = '';\n for (let i = 0; i < bytes.length; i++) {\n bin += String.fromCharCode(bytes[i]);\n }\n return btoa(bin);\n}\n","import { FeishuApiError, FeishuConfigError } from './errors.js';\nimport { postJson } from './http.js';\nimport type { TenantAccessTokenResponse } from './types.js';\n\nconst DEFAULT_BASE_URL = 'https://open.feishu.cn';\nconst TENANT_TOKEN_PATH = '/open-apis/auth/v3/tenant_access_token/internal';\n\n/* 剩余有效时间小于 30 分钟就刷新 /\nconst REFRESH_THRESHOLD_MS = 30 60 * 1000;\n\n/*\n 缓存的 token 结构。是 TokenStorage 适配器读写的数据形状。\n * 公开导出，便于 SW / 浏览器扩展实现自己的存储适配器。\n /\nexport interface CachedToken {\n /* tenant_access_token 字符串 /\n token: string;\n /* Unix 毫秒时间戳；过期时间 = 获取时刻 + expire 秒 * 1000 /\n expiresAt: number;\n}\n\n/\n 跨进程/跨重启的 token 持久化适配器。\n \n 默认 TokenManager 只在内存里缓存 token，进程退出或 SW 被杀就丢失。\n * 注入 TokenStorage 后可以让 token 在 chrome.storage.session、Redis、\n * 文件等外部介质里活下来，避免每次冷启动都消耗一次 OpenAPI 频次。\n \n 实现要求：\n * - get(): 没有缓存或读失败时返回 null（内部会兜底回退到网络刷新）\n * - set(value): 写失败不应抛出（TokenManager 会吞掉异常，避免影响主流程）\n \n 典型实现示例（Chrome MV3 扩展 SW）：\n * const storage: TokenStorage = {\n * async get() {\n * const { feishuToken } = await chrome.storage.session.get('feishuToken');\n * return feishuToken ?? null;\n * },\n * async set(value) {\n * await chrome.storage.session.set({ feishuToken: value });\n * },\n * };\n /\nexport interface TokenStorage {\n /* 读取缓存的 token；不存在或读失败返回 null /\n get(): Promise<CachedToken \| null>;\n /* 写入新的 token /\n set(value: CachedToken): Promise<void>;\n}\n\nexport interface TokenManagerOptions {\n appId: string;\n appSecret: string;\n fetch?: typeof fetch;\n timeout?: number;\n baseUrl?: string;\n /* 可选的持久化适配器；不传则只在内存里缓存 /\n storage?: TokenStorage;\n}\n\n/\n tenant_access_token 缓存与自动刷新。\n \n 三层缓存查找顺序：\n * 1. 内存（最快）\n * 2. 注入的 TokenStorage（跨进程/跨 SW 重启）\n * 3. 网络获取\n \n 并发去重：多次 getToken() 在 in-flight 期间共享同一个 Promise，避免重复请求。\n /\nexport class TokenManager {\n private readonly appId: string;\n private readonly appSecret: string;\n private readonly fetchImpl?: typeof fetch;\n private readonly timeout?: number;\n private readonly baseUrl: string;\n private readonly storage?: TokenStorage;\n\n private cached: CachedToken \| null = null;\n private inflight: Promise<string> \| null = null;\n\n constructor(options: TokenManagerOptions) {\n if (!options.appId \|\| !options.appSecret) {\n throw new FeishuConfigError(\n 'appId and appSecret are required for TokenManager',\n );\n }\n this.appId = options.appId;\n this.appSecret = options.appSecret;\n this.fetchImpl = options.fetch;\n this.timeout = options.timeout;\n this.baseUrl = options.baseUrl ?? DEFAULT_BASE_URL;\n this.storage = options.storage;\n }\n\n /\n 获取有效 token。优先内存缓存；过期/即将过期时尝试 storage，最后回退到网络。\n /\n async getToken(): Promise<string> {\n if (this.isFresh(this.cached)) {\n return this.cached!.token;\n }\n if (this.inflight) {\n return this.inflight;\n }\n this.inflight = this.refreshToken().finally(() => {\n this.inflight = null;\n });\n return this.inflight;\n }\n\n private isFresh(entry: CachedToken \| null): boolean {\n if (!entry) return false;\n return entry.expiresAt - Date.now() > REFRESH_THRESHOLD_MS;\n }\n\n /\n 刷新流程：先尝试 storage（若注入），不可用则走网络。\n * storage 异常一律视为「miss」，回退到网络，避免单点故障阻塞主流程。\n /\n private async refreshToken(): Promise<string> {\n if (this.storage) {\n try {\n const stored = await this.storage.get();\n if (this.isFresh(stored)) {\n this.cached = stored;\n return stored!.token;\n }\n } catch {\n // 读失败不抛，继续走网络\n }\n }\n return this.fetchToken();\n }\n\n private async fetchToken(): Promise<string> {\n const url = `${this.baseUrl}${TENANT_TOKEN_PATH}`;\n const body = {\n app_id: this.appId,\n app_secret: this.appSecret,\n };\n const response = await postJson<TenantAccessTokenResponse>(url, body, {\n fetch: this.fetchImpl,\n timeout: this.timeout,\n });\n\n if (response.code !== 0 \|\| !response.tenant_access_token) {\n throw new FeishuApiError(\n `Failed to fetch tenant_access_token: ${response.msg ?? 'unknown error'}`,\n response.code ?? -1,\n response,\n );\n }\n\n const expireSeconds = response.expire ?? 7200;\n this.cached = {\n token: response.tenant_access_token,\n expiresAt: Date.now() + expireSeconds 1000,\n };\n\n if (this.storage) {\n try {\n await this.storage.set(this.cached);\n } catch {\n // 写失败不抛，下一次冷启动会重新拉取\n }\n }\n\n return this.cached.token;\n }\n}\n","import { readEnv } from './env.js';\nimport { FeishuApiError, FeishuConfigError } from './errors.js';\nimport { postJson } from './http.js';\nimport { ImageUploader, type ImageSource } from './image-uploader.js';\nimport { buildImage } from './messages/image.js';\nimport { buildInteractive } from './messages/interactive.js';\nimport { buildPost } from './messages/post.js';\nimport { buildShareChat } from './messages/share-chat.js';\nimport { buildText } from './messages/text.js';\nimport { currentTimestamp, genSign } from './signer.js';\nimport { TokenManager, type TokenStorage } from './token-manager.js';\nimport type {\n AtOptions,\n FeishuApiResponse,\n FeishuBotOptions,\n InteractiveCard,\n MessagePayload,\n PostContent,\n SignedPayload,\n} from './types.js';\n\nconst DEFAULT_BASE_URL = 'https://open.feishu.cn';\n\n/*\n 飞书自定义机器人 SDK 主类。\n \n 构造期不会报错；缺失配置时延迟到 send/upload 调用时抛出 FeishuConfigError，\n * 便于「先 new 再注入配置」的使用模式。\n \n 使用示例：\n * const bot = new FeishuBot(); // 从 env 读配置\n * await bot.sendText(\"hello\", { atAll: true });\n * await bot.sendImage(\"./banner.png\"); // 自动上传得到 image_key 再发送\n /\nexport class FeishuBot {\n private readonly webhook?: string;\n private readonly secret?: string;\n private readonly appId?: string;\n private readonly appSecret?: string;\n private readonly fetchImpl?: typeof fetch;\n private readonly timeout?: number;\n private readonly baseUrl: string;\n private readonly tokenStorage?: TokenStorage;\n\n private tokenManager: TokenManager \| null = null;\n private imageUploader: ImageUploader \| null = null;\n\n constructor(options: FeishuBotOptions = {}) {\n // 合并优先级：显式参数 > env 变量 > undefined\n this.webhook = options.webhook ?? readEnv('FEISHU_BOT_WEBHOOK');\n this.secret = options.secret ?? readEnv('FEISHU_BOT_SECRET');\n this.appId = options.appId ?? readEnv('FEISHU_APP_ID');\n this.appSecret = options.appSecret ?? readEnv('FEISHU_APP_SECRET');\n this.fetchImpl = options.fetch;\n this.timeout = options.timeout;\n this.baseUrl = options.baseUrl ?? DEFAULT_BASE_URL;\n this.tokenStorage = options.tokenStorage;\n }\n\n // ---------- 原子发送 ----------\n\n /\n 原子发送：接收已构造好的 payload，负责注入签名并 POST 到 webhook。\n * code !== 0 时抛 FeishuApiError。\n /\n async send<T = unknown>(\n payload: MessagePayload,\n ): Promise<FeishuApiResponse<T>> {\n const webhook = this.ensureWebhook();\n const finalPayload: SignedPayload = { ...payload };\n\n if (this.secret) {\n const timestamp = currentTimestamp();\n finalPayload.timestamp = String(timestamp);\n finalPayload.sign = await genSign(timestamp, this.secret);\n }\n\n const response = await postJson<FeishuApiResponse<T>>(\n webhook,\n finalPayload,\n {\n fetch: this.fetchImpl,\n timeout: this.timeout,\n },\n );\n\n // 飞书 webhook 成功时 code=0；其它数值都视为业务错误。\n if (response.code !== 0) {\n throw new FeishuApiError(\n `Feishu webhook error: ${response.msg ?? 'unknown'} (code=${response.code})`,\n response.code,\n response,\n );\n }\n\n return response;\n }\n\n // ---------- 高层便捷方法 ----------\n\n sendText(text: string, opts?: AtOptions): Promise<FeishuApiResponse> {\n return this.send(buildText(text, opts));\n }\n\n sendPost(post: PostContent): Promise<FeishuApiResponse> {\n return this.send(buildPost(post));\n }\n\n sendShareChat(shareChatId: string): Promise<FeishuApiResponse> {\n return this.send(buildShareChat(shareChatId));\n }\n\n sendInteractive(card: InteractiveCard): Promise<FeishuApiResponse> {\n return this.send(buildInteractive(card));\n }\n\n /\n 发送图片。智能识别三种入参：\n * - string 且以 `img_` 开头 → 直接当 image_key 使用\n * - string 否则 → 视为本地文件路径，先上传再发送\n * - Buffer / Uint8Array → 直接上传再发送\n /\n async sendImage(input: ImageSource): Promise<FeishuApiResponse> {\n let imageKey: string;\n if (typeof input === 'string' && input.startsWith('img_')) {\n imageKey = input;\n } else {\n imageKey = await this.uploadImage(input);\n }\n return this.send(buildImage(imageKey));\n }\n\n /\n 暴露底层图片上传，便于调用方复用 image_key。\n * 需要 appId / appSecret 配置。\n */\n async uploadImage(file: ImageSource): Promise<string> {\n const uploader = this.getImageUploader();\n return uploader.uploadImage(file);\n }\n\n // ---------- 私有：懒初始化 + 校验 ----------\n\n private ensureWebhook(): string {\n if (!this.webhook) {\n throw new FeishuConfigError(\n 'webhook is required. Provide `webhook` in options or set FEISHU_BOT_WEBHOOK env.',\n );\n }\n return this.webhook;\n }\n\n private ensureAppCredentials(): { appId: string; appSecret: string } {\n if (!this.appId \|\| !this.appSecret) {\n throw new FeishuConfigError(\n 'appId and appSecret are required for image upload. Provide them in options or set FEISHU_APP_ID / FEISHU_APP_SECRET env.',\n );\n }\n return { appId: this.appId, appSecret: this.appSecret };\n }\n\n private getTokenManager(): TokenManager {\n if (!this.tokenManager) {\n const { appId, appSecret } = this.ensureAppCredentials();\n this.tokenManager = new TokenManager({\n appId,\n appSecret,\n fetch: this.fetchImpl,\n timeout: this.timeout,\n baseUrl: this.baseUrl,\n storage: this.tokenStorage,\n });\n }\n return this.tokenManager;\n }\n\n private getImageUploader(): ImageUploader {\n if (!this.imageUploader) {\n this.imageUploader = new ImageUploader({\n tokenManager: this.getTokenManager(),\n fetch: this.fetchImpl,\n timeout: this.timeout,\n baseUrl: this.baseUrl,\n });\n }\n return this.imageUploader;\n }\n}\n"],"mappings":";;;;;AAIA,SAAgB,QAAQ,KAAiC;AACvD,KAAI,OAAO,YAAY,eAAe,CAAC,QAAQ,IAC7C;CAGF,MAAM,QAAQ,QAAQ,IAAI;AAC1B,KAAI,UAAU,KAAA,KAAa,UAAU,GACnC;AAEF,QAAO;;;;;;;ACVT,IAAa,iBAAb,cAAoC,MAAM;CACxC,YAAY,SAAiB;AAC3B,QAAM,QAAQ;AACd,OAAK,OAAO;AAEZ,SAAO,eAAe,MAAM,IAAI,OAAO,UAAU;;;;;;;AAQrD,IAAa,oBAAb,cAAuC,eAAe;CACpD,YAAY,SAAiB;AAC3B,QAAM,QAAQ;AACd,OAAK,OAAO;;;;;;AAOhB,IAAa,iBAAb,cAAoC,eAAe;CACjD;CACA;CAEA,YAAY,SAAiB,MAAc,UAAmB;AAC5D,QAAM,QAAQ;AACd,OAAK,OAAO;AACZ,OAAK,OAAO;AACZ,OAAK,WAAW;;;;;ACvBpB,IAAM,kBAAkB;AASxB,SAAS,aAAa,aAA0C;CAC9D,MAAM,KAAK,eAAe,WAAW;AACrC,KAAI,OAAO,OAAO,WAChB,OAAM,IAAI,eACR,sFACA,IACA,KACD;AAEH,QAAO;;;;;;;AAQT,eAAe,QACb,KACA,MACA,UAA0B,EAAE,EACN;CACtB,MAAM,YAAY,aAAa,QAAQ,MAAM;CAC7C,MAAM,UAAU,QAAQ,WAAW;CAEnC,MAAM,aAAa,IAAI,iBAAiB;CACxC,MAAM,QAAQ,iBAAiB,WAAW,OAAO,EAAE,QAAQ;AAE3D,KAAI;EACF,MAAM,WAAW,MAAM,UAAU,KAAK;GACpC,GAAG;GACH,QAAQ,WAAW;GACpB,CAAC;EAEF,MAAM,OAAO,MAAM,SAAS,MAAM;AAClC,SAAO;GACL,QAAQ,SAAS;GACjB,YAAY,SAAS;GACrB,IAAI,SAAS;GACb;GACD;UACM,KAAK;AACZ,MAAI,eAAe,SAAS,IAAI,SAAS,aACvC,OAAM,IAAI,eACR,2BAA2B,QAAQ,MAAM,OACzC,IACA,KACD;AAEH,MAAI,eAAe,eACjB,OAAM;AAGR,QAAM,IAAI,eAAe,kBADT,eAAe,QAAQ,IAAI,UAAU,OAAO,IAAI,IACV,IAAI,KAAK;WACvD;AACR,eAAa,MAAM;;;AAIvB,SAAS,cAAiB,KAAqB;AAC7C,KAAI,CAAC,IAAI,KACP,OAAM,IAAI,eACR,6BAA6B,IAAI,OAAO,IACxC,IACA,KACD;AAEH,KAAI;AACF,SAAO,KAAK,MAAM,IAAI,KAAK;SACrB;AACN,QAAM,IAAI,eACR,uCAAuC,IAAI,OAAO,KAAK,IAAI,KAAK,MAAM,GAAG,IAAI,IAC7E,IACA,IAAI,KACL;;;AAIL,SAAS,iBAAiB,KAAwB;AAChD,KAAI,CAAC,IAAI,GACP,OAAM,IAAI,eACR,QAAQ,IAAI,OAAO,GAAG,IAAI,WAAW,IAAI,IAAI,KAAK,MAAM,GAAG,IAAI,IAC/D,IAAI,QACJ,IAAI,KACL;;;;;;AAQL,eAAsB,SACpB,KACA,MACA,UAA0B,EAAE,EAChB;CACZ,MAAM,MAAM,MAAM,QAChB,KACA;EACE,QAAQ;EACR,SAAS;GACP,gBAAgB;GAChB,GAAG,QAAQ;GACZ;EACD,MAAM,KAAK,UAAU,KAAK;EAC3B,EACD,QACD;AAED,kBAAiB,IAAI;AACrB,QAAO,cAAiB,IAAI;;;;;;AAO9B,eAAsB,SACpB,KACA,MACA,UAA0B,EAAE,EAChB;CACZ,MAAM,MAAM,MAAM,QAChB,KACA;EACE,QAAQ;EACR,SAAS,EACP,GAAG,QAAQ,SACZ;EACD,MAAM;EACP,EACD,QACD;AAED,kBAAiB,IAAI;AACrB,QAAO,cAAiB,IAAI;;;;ACvJ9B,IAAM,qBAAmB;AACzB,IAAM,cAAc;;;;;;;;;AAyBpB,IAAa,gBAAb,MAA2B;CACzB;CACA;CACA;CACA;CAEA,YAAY,SAA+B;AACzC,OAAK,eAAe,QAAQ;AAC5B,OAAK,YAAY,QAAQ;AACzB,OAAK,UAAU,QAAQ;AACvB,OAAK,UAAU,QAAQ,WAAW;;;;;CAMpC,MAAM,YAAY,MAAoC;EACpD,MAAM,EAAE,OAAO,aAAa,MAAM,KAAK,cAAc,KAAK;EAC1D,MAAM,QAAQ,MAAM,KAAK,aAAa,UAAU;EAEhD,MAAM,OAAO,IAAI,UAAU;AAC3B,OAAK,OAAO,cAAc,UAAU;EAGpC,MAAM,OAAO,IAAI,KAAK,CAAC,MAAM,OAAO,CAAC,EAAE,EACrC,MAAM,4BACP,CAAC;AACF,OAAK,OAAO,SAAS,MAAM,SAAS;EAGpC,MAAM,WAAW,MAAM,SADX,GAAG,KAAK,UAAU,eAG5B,MACA;GACE,OAAO,KAAK;GACZ,SAAS,KAAK;GACd,SAAS,EACP,eAAe,UAAU,SAC1B;GACF,CACF;AAED,MAAI,SAAS,SAAS,KAAK,CAAC,SAAS,MAAM,UACzC,OAAM,IAAI,eACR,2BAA2B,SAAS,OAAO,mBAC3C,SAAS,QAAQ,IACjB,SACD;AAGH,SAAO,SAAS,KAAK;;CAGvB,MAAc,cACZ,MACkD;AAElD,MAAI,OAAO,SAAS,eAAe,gBAAgB,MAAM;GACvD,MAAM,MAAM,MAAM,KAAK,aAAa;GAEpC,MAAM,WAAY,KAA2B,QAAQ;AACrD,UAAO;IAAE,OAAO,IAAI,WAAW,IAAI;IAAE;IAAU;;AAGjD,MAAI,gBAAgB,WAClB,QAAO;GAAE,OAAO;GAAM,UAAU;GAAS;AAG3C,MAAI,OAAO,SAAS,UAAU;AAC5B,OAAI,OAAO,YAAY,eAAe,CAAC,QAAQ,UAAU,KACvD,OAAM,IAAI,kBACR,2HAED;AAEH,UAAO,iBAAiB,KAAK;;AAE/B,QAAM,IAAI,eACR,6EACA,IACA,KACD;;;;;;;;;;;;AAaL,eAAe,iBACb,UACkD;CAGlD,MAAM,WAAW,IAAI,SACnB,sCACD;CACD,MAAM,aAAa,IAAI,SACrB,+BACD;CAED,MAAM,CAAC,IAAI,WAAW,MAAM,QAAQ,IAAI,CAAC,UAAU,EAAE,YAAY,CAAC,CAAC;CACnE,MAAM,MAAM,MAAM,GAAG,SAAS,SAAS;AACvC,QAAO;EACL,OAAO,IAAI,WAAW,IAAI;EAC1B,UAAU,QAAQ,SAAS,SAAS;EACrC;;;;;;;;;;ACtIH,SAAgB,WAAW,UAAgC;AACzD,QAAO;EACL,UAAU;EACV,SAAS,EACP,WAAW,UACZ;EACF;;;;;;;;;;;;;;;;;;;;;;ACMH,SAAgB,iBAAiB,MAA2C;AAC1E,QAAO;EACL,UAAU;EACV;EACD;;;;;;;;;;;;;;;;;;;;;ACLH,SAAgB,UAAU,MAAgC;AACxD,QAAO;EACL,UAAU;EACV,SAAS,EAAE,MAAM;EAClB;;;;;;;;;AChBH,SAAgB,eAAe,aAAuC;AACpE,QAAO;EACL,UAAU;EACV,SAAS,EACP,eAAe,aAChB;EACF;;;;;;;;;;;;;;;ACAH,SAAgB,UAAU,MAAc,OAAkB,EAAE,EAAe;CACzE,MAAM,QAAkB,EAAE;AAC1B,KAAI,KACF,OAAM,KAAK,KAAK;AAElB,KAAI,KAAK,aAAa,KAAK,UAAU,SAAS,EAC5C,MAAK,MAAM,MAAM,KAAK,UACpB,OAAM,KAAK,gBAAgB,GAAG,SAAS;AAG3C,KAAI,KAAK,MACP,OAAM,KAAK,+BAA6B;AAE1C,QAAO;EACL,UAAU;EACV,SAAS,EACP,MAAM,MAAM,KAAK,IAAI,EACtB;EACF;;;;;;;;;;;;;;;;;;;;;;ACbH,eAAsB,QACpB,WACA,QACiB;CACjB,MAAM,SAAS,WAAW,QAAQ;AAClC,KAAI,CAAC,OACH,OAAM,IAAI,MACR,2HAED;CAGH,MAAM,eAAe,GAAG,UAAU,IAAI;CACtC,MAAM,UAAU,IAAI,aAAa,CAAC,OAAO,aAAa;CAEtD,MAAM,YAAY,MAAM,OAAO,UAC7B,OACA,SACA;EAAE,MAAM;EAAQ,MAAM;EAAW,EACjC,OACA,CAAC,OAAO,CACT;CACD,MAAM,YAAY,MAAM,OAAO,KAAK,QAAQ,WAAW,IAAI,WAAW,EAAE,CAAC;AAEzE,QAAO,cAAc,IAAI,WAAW,UAAU,CAAC;;;;;AAMjD,SAAgB,mBAA2B;AACzC,QAAO,KAAK,MAAM,KAAK,KAAK,GAAG,IAAK;;;;;;AAOtC,SAAS,cAAc,OAA2B;CAChD,IAAI,MAAM;AACV,MAAK,IAAI,IAAI,GAAG,IAAI,MAAM,QAAQ,IAChC,QAAO,OAAO,aAAa,MAAM,GAAG;AAEtC,QAAO,KAAK,IAAI;;;;ACzDlB,IAAM,qBAAmB;AACzB,IAAM,oBAAoB;;AAG1B,IAAM,uBAAuB,OAAU;;;;;;;;;;;AA8DvC,IAAa,eAAb,MAA0B;CACxB;CACA;CACA;CACA;CACA;CACA;CAEA,SAAqC;CACrC,WAA2C;CAE3C,YAAY,SAA8B;AACxC,MAAI,CAAC,QAAQ,SAAS,CAAC,QAAQ,UAC7B,OAAM,IAAI,kBACR,oDACD;AAEH,OAAK,QAAQ,QAAQ;AACrB,OAAK,YAAY,QAAQ;AACzB,OAAK,YAAY,QAAQ;AACzB,OAAK,UAAU,QAAQ;AACvB,OAAK,UAAU,QAAQ,WAAW;AAClC,OAAK,UAAU,QAAQ;;;;;CAMzB,MAAM,WAA4B;AAChC,MAAI,KAAK,QAAQ,KAAK,OAAO,CAC3B,QAAO,KAAK,OAAQ;AAEtB,MAAI,KAAK,SACP,QAAO,KAAK;AAEd,OAAK,WAAW,KAAK,cAAc,CAAC,cAAc;AAChD,QAAK,WAAW;IAChB;AACF,SAAO,KAAK;;CAGd,QAAgB,OAAoC;AAClD,MAAI,CAAC,MAAO,QAAO;AACnB,SAAO,MAAM,YAAY,KAAK,KAAK,GAAG;;;;;;CAOxC,MAAc,eAAgC;AAC5C,MAAI,KAAK,QACP,KAAI;GACF,MAAM,SAAS,MAAM,KAAK,QAAQ,KAAK;AACvC,OAAI,KAAK,QAAQ,OAAO,EAAE;AACxB,SAAK,SAAS;AACd,WAAO,OAAQ;;UAEX;AAIV,SAAO,KAAK,YAAY;;CAG1B,MAAc,aAA8B;EAM1C,MAAM,WAAW,MAAM,SALX,GAAG,KAAK,UAAU,qBACjB;GACX,QAAQ,KAAK;GACb,YAAY,KAAK;GAClB,EACqE;GACpE,OAAO,KAAK;GACZ,SAAS,KAAK;GACf,CAAC;AAEF,MAAI,SAAS,SAAS,KAAK,CAAC,SAAS,oBACnC,OAAM,IAAI,eACR,wCAAwC,SAAS,OAAO,mBACxD,SAAS,QAAQ,IACjB,SACD;EAGH,MAAM,gBAAgB,SAAS,UAAU;AACzC,OAAK,SAAS;GACZ,OAAO,SAAS;GAChB,WAAW,KAAK,KAAK,GAAG,gBAAgB;GACzC;AAED,MAAI,KAAK,QACP,KAAI;AACF,SAAM,KAAK,QAAQ,IAAI,KAAK,OAAO;UAC7B;AAKV,SAAO,KAAK,OAAO;;;;;ACnJvB,IAAM,mBAAmB;;;;;;;;;;;;AAazB,IAAa,YAAb,MAAuB;CACrB;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CAEA,eAA4C;CAC5C,gBAA8C;CAE9C,YAAY,UAA4B,EAAE,EAAE;AAE1C,OAAK,UAAU,QAAQ,WAAW,QAAQ,qBAAqB;AAC/D,OAAK,SAAS,QAAQ,UAAU,QAAQ,oBAAoB;AAC5D,OAAK,QAAQ,QAAQ,SAAS,QAAQ,gBAAgB;AACtD,OAAK,YAAY,QAAQ,aAAa,QAAQ,oBAAoB;AAClE,OAAK,YAAY,QAAQ;AACzB,OAAK,UAAU,QAAQ;AACvB,OAAK,UAAU,QAAQ,WAAW;AAClC,OAAK,eAAe,QAAQ;;;;;;CAS9B,MAAM,KACJ,SAC+B;EAC/B,MAAM,UAAU,KAAK,eAAe;EACpC,MAAM,eAA8B,EAAE,GAAG,SAAS;AAElD,MAAI,KAAK,QAAQ;GACf,MAAM,YAAY,kBAAkB;AACpC,gBAAa,YAAY,OAAO,UAAU;AAC1C,gBAAa,OAAO,MAAM,QAAQ,WAAW,KAAK,OAAO;;EAG3D,MAAM,WAAW,MAAM,SACrB,SACA,cACA;GACE,OAAO,KAAK;GACZ,SAAS,KAAK;GACf,CACF;AAGD,MAAI,SAAS,SAAS,EACpB,OAAM,IAAI,eACR,yBAAyB,SAAS,OAAO,UAAU,SAAS,SAAS,KAAK,IAC1E,SAAS,MACT,SACD;AAGH,SAAO;;CAKT,SAAS,MAAc,MAA8C;AACnE,SAAO,KAAK,KAAK,UAAU,MAAM,KAAK,CAAC;;CAGzC,SAAS,MAA+C;AACtD,SAAO,KAAK,KAAK,UAAU,KAAK,CAAC;;CAGnC,cAAc,aAAiD;AAC7D,SAAO,KAAK,KAAK,eAAe,YAAY,CAAC;;CAG/C,gBAAgB,MAAmD;AACjE,SAAO,KAAK,KAAK,iBAAiB,KAAK,CAAC;;;;;;;;CAS1C,MAAM,UAAU,OAAgD;EAC9D,IAAI;AACJ,MAAI,OAAO,UAAU,YAAY,MAAM,WAAW,OAAO,CACvD,YAAW;MAEX,YAAW,MAAM,KAAK,YAAY,MAAM;AAE1C,SAAO,KAAK,KAAK,WAAW,SAAS,CAAC;;;;;;CAOxC,MAAM,YAAY,MAAoC;AAEpD,SADiB,KAAK,kBAAkB,CACxB,YAAY,KAAK;;CAKnC,gBAAgC;AAC9B,MAAI,CAAC,KAAK,QACR,OAAM,IAAI,kBACR,mFACD;AAEH,SAAO,KAAK;;CAGd,uBAAqE;AACnE,MAAI,CAAC,KAAK,SAAS,CAAC,KAAK,UACvB,OAAM,IAAI,kBACR,2HACD;AAEH,SAAO;GAAE,OAAO,KAAK;GAAO,WAAW,KAAK;GAAW;;CAGzD,kBAAwC;AACtC,MAAI,CAAC,KAAK,cAAc;GACtB,MAAM,EAAE,OAAO,cAAc,KAAK,sBAAsB;AACxD,QAAK,eAAe,IAAI,aAAa;IACnC;IACA;IACA,OAAO,KAAK;IACZ,SAAS,KAAK;IACd,SAAS,KAAK;IACd,SAAS,KAAK;IACf,CAAC;;AAEJ,SAAO,KAAK;;CAGd,mBAA0C;AACxC,MAAI,CAAC,KAAK,cACR,MAAK,gBAAgB,IAAI,cAAc;GACrC,cAAc,KAAK,iBAAiB;GACpC,OAAO,KAAK;GACZ,SAAS,KAAK;GACd,SAAS,KAAK;GACf,CAAC;AAEJ,SAAO,KAAK"}

package/package.json CHANGED Viewed

@@ -1,14 +1,17 @@
 {
   "name": "@minitool/feishu-bot",
-  "version": "0.1.0",
-  "description": "飞书自定义机器人 SDK — 支持 text/post/image/share_chat/interactive 五种消息类型，透明处理图片上传",
+  "version": "0.2.0",
+  "description": "飞书自定义机器人 SDK — 同构（Node / 浏览器 / Service Worker / 浏览器扩展），支持 text/post/image/share_chat/interactive 五种消息类型，透明处理图片上传",
   "type": "module",
   "main": "./dist/index.cjs",
   "module": "./dist/index.js",
+  "browser": "./dist/index.js",
   "types": "./dist/index.d.ts",
   "exports": {
     ".": {
       "types": "./dist/index.d.ts",
+      "worker": "./dist/index.js",
+      "browser": "./dist/index.js",
       "import": "./dist/index.js",
       "require": "./dist/index.cjs"
     }