npm - @mkabatek/pptx-viewer - Versions diffs - 1.5.3 → 1.5.5 - Mend

@mkabatek/pptx-viewer 1.5.3 → 1.5.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (44) hide show

package/node_modules/pptx-viewer-core/dist/signature-node/index.d.ts DELETED Viewed

@@ -1,177 +0,0 @@
-import { p as SignatureCertificateInfo, L as LoadedSigningMaterial, C as CertificateRevocationStatus, T as TimestampAuthorityStatus, r as SignatureValidationPolicy, k as ParsedReferenceTransform, R as ReferenceTransformResult, q as SignatureReferenceCheck, l as SignOptions, m as SignResult, d as DigitalSignatureReport } from '../signature-inspection-status-BCUpfCQh.js';
-export { D as DIGEST_ALGORITHM_TO_HASH, a as DIGEST_ALGORITHM_TO_WEB_CRYPTO, b as DIGITAL_SIGNATURE_ORIGIN_REL_TYPE, c as DIGITAL_SIGNATURE_REL_TYPE, e as DigitalSignatureVerificationStatus, E as ENTERPRISE_FAIL_ON_REVOCATION_UNKNOWN_ENV, f as ENTERPRISE_REQUIRE_REVOCATION_ENV, g as ENTERPRISE_REQUIRE_TIMESTAMP_ENV, h as ENTERPRISE_TRUST_ROOTS_FILE_ENV, i as ENTERPRISE_TRUST_ROOTS_PEM_ENV, O as OPC_RELATIONSHIP_TRANSFORM, j as OfficeSignatureReference, P as PPTX_VIEWER_MANIFEST_NS, S as SUPPORTED_XML_CANON_TRANSFORMS, n as SignatureDetail, o as SignatureDetailStatus, X as XMLDSIG_NS, s as XML_TRANSFORM_ENVELOPED_SIGNATURE, t as computeDetailStatus, u as computeDigestBase64WebCrypto, v as computeVerificationStatus, w as escapeXmlAttr, x as escapeXmlText, y as extractAllTagText, z as extractFirstTagText, A as extractTagAttribute, B as isValidBase64, F as normalizePartPath, G as resolveReferenceUriToPart } from '../signature-inspection-status-BCUpfCQh.js';
-import JSZip from 'jszip';
-/**
- * XML canonicalization and DOM navigation utilities for digital signatures.
- *
- * Node-only — depends on `@xmldom/xmldom` and `xml-crypto`.
- */
-/** Get the local name of a DOM node, stripping any namespace prefix. */
-declare function getNodeLocalName(node: Node): string;
-/**
- * Find the first descendant element matching a local name,
- * ignoring namespace prefixes.
- */
-declare function getFirstDescendantElementByLocalName(parent: Document | Element, localName: string): Element | undefined;
-/**
- * Canonicalize a DOM node using the specified canonicalization algorithm.
- * Delegates to xml-crypto's C14N implementation.
- */
-declare function canonicalizeNode(node: Node, algorithm: string): string;
-/**
- * Canonicalize a `<SignedInfo>` XML fragment for signature verification.
- * Uses Exclusive XML Canonicalization (exc-c14n#).
- */
-declare function canonicalizeSignedInfoXml(signedInfoXml: string): string;
-/**
- * Certificate handling utilities for digital signature processing.
- *
- * Node-only — depends on `node:crypto`, `node:tls`, `node-forge`, `@xmldom/xmldom`.
- */
-/** Extract certificate metadata from a Base64-encoded DER certificate. */
-declare function certificateInfoFromBase64(certBase64: string): SignatureCertificateInfo | undefined;
-/**
- * Validate a certificate chain against system trust roots and optional additional roots.
- */
-declare function validateCertificateChain(certBase64List: string[], additionalRootsPem: string[]): {
-    status: 'trusted' | 'untrusted' | 'not-checked';
-    error?: string;
-};
-/**
- * Cryptographically verify the SignatureValue in an XML signature
- * using the embedded certificate.
- */
-declare function verifySignatureValue(signatureXml: string, certBase64List: string[]): 'verified' | 'invalid' | 'not-checked';
-/**
- * Load a private key and certificate from a PKCS#12 (.pfx/.p12) or PEM buffer.
- */
-declare function loadSigningMaterialFromBuffer(certificateBuffer: Uint8Array, certificatePath: string, certificatePassword?: string): LoadedSigningMaterial;
-/** Convert a PEM certificate to Base64-encoded DER (strip armour + whitespace). */
-declare function pemCertificateToBase64(pem: string): string;
-/**
- * PKI validation utilities — certificate revocation (OCSP) and
- * timestamp-authority evaluation for OOXML digital signatures.
- *
- * Node-only — depends on `node:crypto`, `node:http`, `node:https`, and `node-forge`.
- */
-/** Wrap a Base64-encoded DER certificate in PEM armour. */
-declare function certPemFromBase64(certBase64: string): string | undefined;
-/** SHA-256 fingerprint of a PEM certificate (lowercase hex, no colons). */
-declare function certFingerprintSha256(certPem: string): string | undefined;
-declare function extractOcspUrls(certPem: string): string[];
-declare function buildOcspRequestDer(leafPem: string, issuerPem: string): Buffer | undefined;
-declare function parseOcspResponseStatus(data: Buffer): CertificateRevocationStatus;
-declare function evaluateCertificateRevocation(leafCertPem: string, issuerCertPem: string | undefined): Promise<{
-    status: CertificateRevocationStatus;
-    error?: string;
-    checkedOcspUrls: string[];
-    checkedCrlUrls: string[];
-}>;
-declare function evaluateTimestampAuthority(signatureXml: string): Promise<{
-    status: TimestampAuthorityStatus;
-    error?: string;
-}>;
-/**
- * Environment-based configuration for digital signature validation.
- *
- * Node-only — reads trust roots from the file system and validation
- * policy from environment variables.
- */
-/** Extract individual PEM certificates from a text block. */
-declare function extractPemCertificatesFromText(text: string): string[];
-/**
- * Load enterprise trust root certificates from environment-configured sources.
- *
- * Checks `PPTX_VIEWER_TRUST_ROOTS_PEM` for inline PEM data and
- * `PPTX_VIEWER_TRUST_ROOTS_FILE` for file paths (semicolon/comma-separated).
- */
-declare function loadEnterpriseTrustRoots(): Promise<string[]>;
-/**
- * Read the signature validation policy from environment variables.
- */
-declare function getSignatureValidationPolicy(): SignatureValidationPolicy;
-/**
- * XML reference transform processing for digital signature verification.
- *
- * Node-only — depends on `@xmldom/xmldom` for DOM parsing and
- * `xml-crypto` (via xml-canonicalization) for C14N transforms.
- */
-/**
- * Parse `<ds:Transform>` elements from a `<ds:Reference>` node.
- */
-declare function extractReferenceTransforms(referenceNode: Element): ParsedReferenceTransform[];
-/**
- * Apply a chain of transforms to binary part data.
- * Supports OPC Relationship Transform and XML canonicalization algorithms.
- */
-declare function applyReferenceTransforms(partBytes: Uint8Array, transforms: ParsedReferenceTransform[]): ReferenceTransformResult;
-/**
- * Full reference digest verification for digital signatures.
- *
- * Node-only — uses `node:crypto` for synchronous hashing,
- * `jszip` for ZIP access, and `@xmldom/xmldom` for DOM parsing.
- */
-/**
- * Compute a Base64-encoded digest using Node.js `crypto` (synchronous).
- */
-declare function computeDigestBase64(content: Uint8Array, digestAlgorithmUri: string): string | undefined;
-/**
- * Verify all `<ds:Reference>` digests in an XML signature.
- */
-declare function buildReferenceChecksFromSignatureXml(zip: JSZip, signatureXml: string): Promise<SignatureReferenceCheck[]>;
-/**
- * Verify references from a PptxViewer manifest extension in the signature XML.
- */
-declare function buildReferenceChecksFromPptxViewerManifest(zip: JSZip, signatureXml: string): Promise<SignatureReferenceCheck[]>;
-/**
- * PPTX digital signature creation.
- *
- * Node-only — signs all content in a PPTX package with a certificate
- * and returns the signed data along with a verification report.
- */
-/**
- * Sign all content in a PPTX package with a certificate.
- *
- * Removes any existing signatures, creates a new XML-DSig signature
- * covering all non-signature parts, and returns the signed data
- * along with a post-sign verification report.
- */
-declare function signPptxWithCertificate(data: Uint8Array, certificateBuffer: Uint8Array, options: SignOptions): Promise<SignResult>;
-/**
- * Full PPTX digital signature inspection (Node-only).
- *
- * Orchestrates all sub-modules to analyze every signature in a PPTX package:
- * reference digest checks, certificate chain validation, OCSP revocation,
- * and timestamp authority evaluation.
- */
-/**
- * Inspect all digital signatures in a PPTX package.
- *
- * Performs full cryptographic verification including:
- * - Reference digest checks (standard XML-DSig + PptxViewer manifest)
- * - Signature value verification (RSA-SHA256/384/512)
- * - Certificate chain validation against system + enterprise trust roots
- * - OCSP revocation checking
- * - Timestamp authority evaluation
- *
- * @param data - The raw PPTX file bytes.
- * @returns A comprehensive digital signature report.
- */
-declare function inspectPptxDigitalSignatures(data: Uint8Array): Promise<DigitalSignatureReport>;
-export { CertificateRevocationStatus, DigitalSignatureReport, LoadedSigningMaterial, ParsedReferenceTransform, ReferenceTransformResult, SignOptions, SignResult, SignatureCertificateInfo, SignatureReferenceCheck, SignatureValidationPolicy, TimestampAuthorityStatus, applyReferenceTransforms, buildOcspRequestDer, buildReferenceChecksFromPptxViewerManifest, buildReferenceChecksFromSignatureXml, canonicalizeNode, canonicalizeSignedInfoXml, certFingerprintSha256, certPemFromBase64, certificateInfoFromBase64, computeDigestBase64, evaluateCertificateRevocation, evaluateTimestampAuthority, extractOcspUrls, extractPemCertificatesFromText, extractReferenceTransforms, getFirstDescendantElementByLocalName, getNodeLocalName, getSignatureValidationPolicy, inspectPptxDigitalSignatures, loadEnterpriseTrustRoots, loadSigningMaterialFromBuffer, parseOcspResponseStatus, pemCertificateToBase64, signPptxWithCertificate, validateCertificateChain, verifySignatureValue };