@nativewindow/webview 1.0.4 → 1.0.5

package/dist/index.d.ts

@@ -1,6 +1,129 @@
-import { checkRuntime, ensureRuntime, loadHtmlOrigin } from '../native-window.js';
+declare const checkRuntime: () => RuntimeInfo, ensureRuntime: () => RuntimeInfo, loadHtmlOrigin: () => string;
 export { checkRuntime, ensureRuntime, loadHtmlOrigin };
-export type { WindowOptions, RuntimeInfo } from '../native-window.js';
+/** Information about the native webview runtime. */
+export interface RuntimeInfo {
+    /** Whether the webview runtime is available. */
+    available: boolean;
+    /** The version string of the runtime, if detected. */
+    version?: string;
+    /** The current platform: "macos", "windows", "linux", or "unsupported". */
+    platform: "macos" | "windows" | "linux" | "unsupported";
+}
+export interface WindowOptions {
+    /** Window title. Default: "" */
+    title?: string;
+    /** Inner width in logical pixels. Default: 800 */
+    width?: number;
+    /** Inner height in logical pixels. Default: 600 */
+    height?: number;
+    /** X position in screen coordinates */
+    x?: number;
+    /** Y position in screen coordinates */
+    y?: number;
+    /** Minimum inner width */
+    minWidth?: number;
+    /** Minimum inner height */
+    minHeight?: number;
+    /** Maximum inner width */
+    maxWidth?: number;
+    /** Maximum inner height */
+    maxHeight?: number;
+    /** Allow resizing. Default: true */
+    resizable?: boolean;
+    /** Show window decorations (title bar, borders). Default: true */
+    decorations?: boolean;
+    /** Transparent window background. Default: false */
+    transparent?: boolean;
+    /** Always on top of other windows. Default: false */
+    alwaysOnTop?: boolean;
+    /** Initially visible. Default: true */
+    visible?: boolean;
+    /** Enable devtools. Default: false */
+    devtools?: boolean;
+    /**
+     * Content Security Policy to inject at document start.
+     * When set, a `<meta http-equiv="Content-Security-Policy">` tag is injected
+     * before any page scripts run.
+     *
+     * **Limitation:** The CSP is applied via a `<meta>` tag at `DOMContentLoaded`,
+     * so scripts executing before that event are not restricted. Meta-tag CSP also
+     * cannot enforce `frame-ancestors` or `report-uri` directives. For stronger
+     * enforcement, serve pages via the custom protocol handler with a real HTTP
+     * `Content-Security-Policy` header.
+     *
+     * @example `"default-src 'self'; script-src 'self' 'unsafe-inline'"`
+     */
+    csp?: string;
+    /**
+     * Trusted origins for IPC messages at the native layer.
+     * When set, only messages whose source URL origin matches one of these
+     * entries are forwarded to the host. Messages from other origins are
+     * silently dropped.
+     *
+     * Each entry should be a full origin string (scheme + host + optional port),
+     * e.g. `"https://example.com"`. No trailing slash.
+     *
+     * @security Defense-in-depth. For application-level origin filtering,
+     * use `trustedOrigins` in `createChannel()` from `native-window-ipc`.
+     *
+     * @example `["https://myapp.com", "https://cdn.myapp.com"]`
+     */
+    trustedOrigins?: string[];
+    /**
+     * Allowed hosts for navigation restriction.
+     * When set and non-empty, ALL navigations (including `loadUrl()`, link
+     * clicks, form submissions, and redirects) are restricted to URLs whose
+     * host matches one of these patterns.
+     *
+     * Supports wildcard prefixes: `"*.example.com"` matches any subdomain
+     * of `example.com` and `example.com` itself.
+     *
+     * Internal navigations (`about:blank`, `loadHtml()` content) are always
+     * permitted. When unset or empty, all hosts are allowed.
+     *
+     * @example `["myapp.com", "*.cdn.myapp.com"]`
+     */
+    allowedHosts?: string[];
+    /**
+     * Allow the webview to access the camera when requested.
+     * Default: false (all camera requests are denied).
+     * @note Not yet enforced in the wry backend. The OS default (prompt user) applies.
+     */
+    allowCamera?: boolean;
+    /**
+     * Allow the webview to access the microphone when requested.
+     * Default: false (all microphone requests are denied).
+     * @note Not yet enforced in the wry backend. The OS default (prompt user) applies.
+     */
+    allowMicrophone?: boolean;
+    /**
+     * Allow the webview to use the File System Access API
+     * (`showOpenFilePicker`, `showSaveFilePicker`, `showDirectoryPicker`).
+     * Default: false (all file system access requests are denied).
+     * @note Not yet enforced in the wry backend. The OS default applies.
+     */
+    allowFileSystem?: boolean;
+    /**
+     * Path to a PNG or ICO file for the window icon (title bar).
+     * On macOS this option is silently ignored (macOS doesn't support
+     * per-window icons). Relative paths resolve from the working directory.
+     */
+    icon?: string;
+    /**
+     * Run the webview in incognito (private) mode.
+     * When `true`, no cookies, cache, or other browsing data are persisted to disk.
+     * Each window starts with a clean, isolated session and all data is discarded
+     * when the window closes.
+     *
+     * Platform notes:
+     * - **macOS**: Uses `WKWebsiteDataStore.nonPersistentDataStore()` (WKWebView).
+     * - **Windows**: Enables `IsInPrivateModeEnabled` on the WebView2 controller.
+     * - **Linux**: Uses a temporary in-memory WebContext (no persistent storage).
+     *
+     * Default: `false`
+     */
+    incognito?: boolean;
+}
 /**
  * Operations that execute arbitrary code in the webview context.
  * Grouped under {@link NativeWindow.unsafe} to signal injection risk.
@@ -75,7 +198,6 @@ export interface CookieInfo {
     /** Expiry as Unix timestamp (seconds). -1 for session cookies. */
     expires: number;
 }
-type WindowOptions = import('../native-window.js').WindowOptions;
 /**
  * A native OS window with an embedded webview.
  *

package/dist/index.js

@@ -1,5 +1,45 @@
-import { NativeWindow as NativeWindow$1, checkRuntime, ensureRuntime, init, loadHtmlOrigin, pumpEvents } from "../native-window.js";
+import { createRequire } from "node:module";
 //#region index.ts
+var _require = createRequire(import.meta.url);
+var _platforms = {
+	"darwin-arm64": {
+		pkg: "@nativewindow/webview-darwin-arm64",
+		file: "native-window.darwin-arm64.node"
+	},
+	"darwin-x64": {
+		pkg: "@nativewindow/webview-darwin-x64",
+		file: "native-window.darwin-x64.node"
+	},
+	"win32-x64": {
+		pkg: "@nativewindow/webview-win32-x64-msvc",
+		file: "native-window.win32-x64-msvc.node"
+	},
+	"win32-arm64": {
+		pkg: "@nativewindow/webview-win32-arm64-msvc",
+		file: "native-window.win32-arm64-msvc.node"
+	},
+	"linux-x64": {
+		pkg: "@nativewindow/webview-linux-x64-gnu",
+		file: "native-window.linux-x64-gnu.node"
+	},
+	"linux-arm64": {
+		pkg: "@nativewindow/webview-linux-arm64-gnu",
+		file: "native-window.linux-arm64-gnu.node"
+	}
+};
+var _platformKey = `${process.platform}-${process.arch}`;
+var _entry = _platforms[_platformKey];
+if (!_entry) throw new Error(`Unsupported platform: ${_platformKey}`);
+function _tryRequire(id) {
+	try {
+		return _require(id);
+	} catch {
+		return null;
+	}
+}
+var _nativeBinding = _tryRequire(`./${_entry.file}`) ?? _tryRequire(`../${_entry.file}`) ?? _tryRequire(_entry.pkg);
+if (!_nativeBinding) throw new Error(`Failed to load native binding for platform: ${_platformKey}. Ensure the correct platform package is installed or the .node file exists.`);
+var { NativeWindow: _NativeWindow, init, pumpEvents, checkRuntime, ensureRuntime, loadHtmlOrigin } = _nativeBinding;
 var _pump = null;
 var _windowCount = 0;
 function ensureInit() {
@@ -37,7 +77,7 @@ var NativeWindow = class {
 	constructor(options) {
 		ensureInit();
 		_windowCount++;
-		this._native = new NativeWindow$1(options);
+		this._native = new _NativeWindow(options);
 		this._native.onClose(() => this._handleClose());
 	}
 	/** @internal */

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@nativewindow/webview",
-  "version": "1.0.4",
+  "version": "1.0.5",
   "description": "Native OS webview windows for Bun & Node.js (beta)",
   "homepage": "https://nativewindow.fcannizzaro.com",
   "bugs": {
@@ -23,8 +23,6 @@
   ],
   "files": [
     "dist",
-    "native-window.js",
-    "native-window.d.ts",
     "README.md",
     "LICENSE"
   ],
@@ -54,7 +52,7 @@
   },
   "devDependencies": {
     "@napi-rs/cli": "^3.6.0",
-    "@types/bun": "^1.3.9",
+    "@types/node": "^25.5.2",
     "vite": "^8.0.3",
     "vite-plugin-dts": "^4.5.4"
   },
@@ -62,12 +60,12 @@
     "typescript": "^6.0.2"
   },
   "optionalDependencies": {
-    "@nativewindow/webview-darwin-arm64": "1.0.4",
-    "@nativewindow/webview-darwin-x64": "1.0.4",
-    "@nativewindow/webview-linux-arm64-gnu": "1.0.4",
-    "@nativewindow/webview-linux-x64-gnu": "1.0.4",
-    "@nativewindow/webview-win32-arm64-msvc": "1.0.4",
-    "@nativewindow/webview-win32-x64-msvc": "1.0.4"
+    "@nativewindow/webview-darwin-arm64": "1.0.5",
+    "@nativewindow/webview-darwin-x64": "1.0.5",
+    "@nativewindow/webview-linux-arm64-gnu": "1.0.5",
+    "@nativewindow/webview-linux-x64-gnu": "1.0.5",
+    "@nativewindow/webview-win32-arm64-msvc": "1.0.5",
+    "@nativewindow/webview-win32-x64-msvc": "1.0.5"
   },
   "napi": {
     "binaryName": "native-window",

package/native-window.d.ts

@@ -1,264 +0,0 @@
-/* eslint-disable */
-// Auto-generated type declarations for the native addon.
-// These will be overwritten by `napi build` but serve as
-// a reference during development.
-
-export interface WindowOptions {
-  /** Window title. Default: "" */
-  title?: string;
-  /** Inner width in logical pixels. Default: 800 */
-  width?: number;
-  /** Inner height in logical pixels. Default: 600 */
-  height?: number;
-  /** X position in screen coordinates */
-  x?: number;
-  /** Y position in screen coordinates */
-  y?: number;
-  /** Minimum inner width */
-  minWidth?: number;
-  /** Minimum inner height */
-  minHeight?: number;
-  /** Maximum inner width */
-  maxWidth?: number;
-  /** Maximum inner height */
-  maxHeight?: number;
-  /** Allow resizing. Default: true */
-  resizable?: boolean;
-  /** Show window decorations (title bar, borders). Default: true */
-  decorations?: boolean;
-  /** Transparent window background. Default: false */
-  transparent?: boolean;
-  /** Always on top of other windows. Default: false */
-  alwaysOnTop?: boolean;
-  /** Initially visible. Default: true */
-  visible?: boolean;
-  /** Enable devtools. Default: false */
-  devtools?: boolean;
-  /**
-   * Content Security Policy to inject at document start.
-   * When set, a `<meta http-equiv="Content-Security-Policy">` tag is injected
-   * before any page scripts run.
-   *
-   * **Limitation:** The CSP is applied via a `<meta>` tag at `DOMContentLoaded`,
-   * so scripts executing before that event are not restricted. Meta-tag CSP also
-   * cannot enforce `frame-ancestors` or `report-uri` directives. For stronger
-   * enforcement, serve pages via the custom protocol handler with a real HTTP
-   * `Content-Security-Policy` header.
-   *
-   * @example `"default-src 'self'; script-src 'self' 'unsafe-inline'"`
-   */
-  csp?: string;
-  /**
-   * Trusted origins for IPC messages at the native layer.
-   * When set, only messages whose source URL origin matches one of these
-   * entries are forwarded to the host. Messages from other origins are
-   * silently dropped.
-   *
-   * Each entry should be a full origin string (scheme + host + optional port),
-   * e.g. `"https://example.com"`. No trailing slash.
-   *
-   * @security Defense-in-depth. For application-level origin filtering,
-   * use `trustedOrigins` in `createChannel()` from `native-window-ipc`.
-   *
-   * @example `["https://myapp.com", "https://cdn.myapp.com"]`
-   */
-  trustedOrigins?: string[];
-  /**
-   * Allowed hosts for navigation restriction.
-   * When set and non-empty, ALL navigations (including `loadUrl()`, link
-   * clicks, form submissions, and redirects) are restricted to URLs whose
-   * host matches one of these patterns.
-   *
-   * Supports wildcard prefixes: `"*.example.com"` matches any subdomain
-   * of `example.com` and `example.com` itself.
-   *
-   * Internal navigations (`about:blank`, `loadHtml()` content) are always
-   * permitted. When unset or empty, all hosts are allowed.
-   *
-   * @example `["myapp.com", "*.cdn.myapp.com"]`
-   */
-  allowedHosts?: string[];
-  /**
-   * Allow the webview to access the camera when requested.
-   * Default: false (all camera requests are denied).
-   * @note Not yet enforced in the wry backend. The OS default (prompt user) applies.
-   */
-  allowCamera?: boolean;
-  /**
-   * Allow the webview to access the microphone when requested.
-   * Default: false (all microphone requests are denied).
-   * @note Not yet enforced in the wry backend. The OS default (prompt user) applies.
-   */
-  allowMicrophone?: boolean;
-  /**
-   * Allow the webview to use the File System Access API
-   * (`showOpenFilePicker`, `showSaveFilePicker`, `showDirectoryPicker`).
-   * Default: false (all file system access requests are denied).
-   * @note Not yet enforced in the wry backend. The OS default applies.
-   */
-  allowFileSystem?: boolean;
-
-  /**
-   * Path to a PNG or ICO file for the window icon (title bar).
-   * On macOS this option is silently ignored (macOS doesn't support
-   * per-window icons). Relative paths resolve from the working directory.
-   */
-  icon?: string;
-  /**
-   * Run the webview in incognito (private) mode.
-   * When `true`, no cookies, cache, or other browsing data are persisted to disk.
-   * Each window starts with a clean, isolated session and all data is discarded
-   * when the window closes.
-   *
-   * Platform notes:
-   * - **macOS**: Uses `WKWebsiteDataStore.nonPersistentDataStore()` (WKWebView).
-   * - **Windows**: Enables `IsInPrivateModeEnabled` on the WebView2 controller.
-   * - **Linux**: Uses a temporary in-memory WebContext (no persistent storage).
-   *
-   * Default: `false`
-   */
-  incognito?: boolean;
-}
-
-export class NativeWindow {
-  constructor(options?: WindowOptions);
-
-  /** Unique window ID */
-  readonly id: number;
-
-  // Content loading
-  loadUrl(url: string): void;
-  loadHtml(html: string): void;
-  evaluateJs(script: string): void;
-  postMessage(message: string): void;
-
-  // Window control
-  setTitle(title: string): void;
-  setSize(width: number, height: number): void;
-  setMinSize(width: number, height: number): void;
-  setMaxSize(width: number, height: number): void;
-  setPosition(x: number, y: number): void;
-  setResizable(resizable: boolean): void;
-  setDecorations(decorations: boolean): void;
-  setAlwaysOnTop(alwaysOnTop: boolean): void;
-  /** Set the window icon from a PNG or ICO file path. Ignored on macOS. */
-  setIcon(path: string): void;
-
-  // Window state
-  show(): void;
-  hide(): void;
-  close(): void;
-  focus(): void;
-  maximize(): void;
-  minimize(): void;
-  unmaximize(): void;
-  reload(): void;
-
-  // Event handlers
-  onMessage(callback: (message: string, sourceUrl: string) => void): void;
-  onClose(callback: () => void): void;
-  onResize(callback: (width: number, height: number) => void): void;
-  onMove(callback: (x: number, y: number) => void): void;
-  onFocus(callback: () => void): void;
-  onBlur(callback: () => void): void;
-  onPageLoad(callback: (event: "started" | "finished", url: string) => void): void;
-  onTitleChanged(callback: (title: string) => void): void;
-  onReload(callback: () => void): void;
-  onNavigationBlocked(callback: (url: string) => void): void;
-
-  // Cookie access
-  getCookies(url?: string): void;
-  onCookies(callback: (cookies: string) => void): void;
-  clearCookies(host?: string): void;
-
-  // Devtools
-  /** Open the browser devtools panel. Requires `devtools: true` in options. */
-  openDevtools(): void;
-  /** Close the browser devtools panel. */
-  closeDevtools(): void;
-  /** Check whether the devtools panel is currently open. */
-  isDevtoolsOpen(): boolean;
-}
-
-/** Initialize the native window system. Must be called once before creating any windows. */
-export function init(): void;
-
-/** Process pending native UI events. Call periodically (~16ms) to keep windows responsive. */
-export function pumpEvents(): void;
-
-/** Information about the native webview runtime. */
-export interface RuntimeInfo {
-  /** Whether the webview runtime is available. */
-  available: boolean;
-  /** The version string of the runtime, if detected. */
-  version?: string;
-  /** The current platform: "macos", "windows", "linux", or "unsupported". */
-  platform: "macos" | "windows" | "linux" | "unsupported";
-}
-
-/**
- * Check if the native webview runtime is available.
- *
- * - **macOS**: Always returns available (WKWebView is a system framework).
- * - **Windows**: Detects WebView2 via `GetAvailableCoreWebView2BrowserVersionString`.
- * - **Linux**: Always returns available (WebKitGTK is required at build time).
- * - **Other**: Returns `{ available: false, platform: "unsupported" }`.
- */
-export function checkRuntime(): RuntimeInfo;
-
-/**
- * Ensure the native webview runtime is available, installing it if necessary.
- *
- * - **macOS**: Returns immediately (WKWebView is always available).
- * - **Windows**: If WebView2 is missing, downloads the Evergreen Bootstrapper
- *   (~2MB) from Microsoft and runs it silently. Throws on failure.
- * - **Linux**: Returns immediately (WebKitGTK is required at build time).
- * - **Other**: Throws an error.
- *
- * @security This function downloads and executes a Microsoft-signed binary
- * from the internet (Windows only). Authenticode signature verification is
- * performed before execution; unverified binaries are never run.
- *
- * **Do not call in an elevated (Administrator) context without explicit user
- * consent.** The silent installer applies system-wide. Prefer calling
- * {@link checkRuntime} first to avoid unnecessary network requests when the
- * runtime is already present.
- */
-export function ensureRuntime(): RuntimeInfo;
-
-/**
- * Escape a string for safe embedding inside a JavaScript string literal.
- * Handles backslashes, quotes, newlines, null bytes, closing `</script>` tags,
- * and Unicode line/paragraph separators (U+2028, U+2029).
- *
- * @security Use this when interpolating untrusted input into `win.unsafe.evaluateJs()` calls.
- *
- * @example
- * ```ts
- * import { sanitizeForJs } from "native-window";
- *
- * const userInput = 'He said "hello"\n<script>alert(1)</script>';
- * win.unsafe.evaluateJs(`display("${sanitizeForJs(userInput)}")`);
- * ```
- */
-export function sanitizeForJs(input: string): string;
-
-/**
- * Returns the origin of pages loaded via `loadHtml()`.
- *
- * Use this in `trustedOrigins` to restrict IPC messages to only accept
- * messages from `loadHtml()` content.
- *
- * - macOS/Linux: `"nativewindow://localhost"`
- * - Windows: `"https://nativewindow.localhost"`
- *
- * @example
- * ```ts
- * import { NativeWindow, loadHtmlOrigin } from "@nativewindow/webview";
- *
- * const win = new NativeWindow({
- *   trustedOrigins: [loadHtmlOrigin()],
- * });
- * ```
- */
-export function loadHtmlOrigin(): string;

package/native-window.js

@@ -1,62 +0,0 @@
-/* eslint-disable */
-// JS loader for the native addon.
-// Tries local .node files first (development), then per-platform npm packages (production).
-
-import { createRequire } from "node:module";
-
-const require = createRequire(import.meta.url);
-const { platform, arch } = process;
-
-const platforms = {
-  "darwin-arm64": {
-    pkg: "@nativewindow/webview-darwin-arm64",
-    file: "native-window.darwin-arm64.node",
-  },
-  "darwin-x64": {
-    pkg: "@nativewindow/webview-darwin-x64",
-    file: "native-window.darwin-x64.node",
-  },
-  "win32-x64": {
-    pkg: "@nativewindow/webview-win32-x64-msvc",
-    file: "native-window.win32-x64-msvc.node",
-  },
-  "win32-arm64": {
-    pkg: "@nativewindow/webview-win32-arm64-msvc",
-    file: "native-window.win32-arm64-msvc.node",
-  },
-  "linux-x64": {
-    pkg: "@nativewindow/webview-linux-x64-gnu",
-    file: "native-window.linux-x64-gnu.node",
-  },
-  "linux-arm64": {
-    pkg: "@nativewindow/webview-linux-arm64-gnu",
-    file: "native-window.linux-arm64-gnu.node",
-  },
-};
-
-const key = `${platform}-${arch}`;
-const entry = platforms[key];
-
-if (!entry) {
-  throw new Error(`Unsupported platform: ${key}`);
-}
-
-const tryRequire = (id) => {
-  try {
-    return require(id);
-  } catch {
-    return null;
-  }
-};
-
-const nativeBinding = tryRequire(`./${entry.file}`) ?? tryRequire(entry.pkg);
-
-if (!nativeBinding) {
-  throw new Error(
-    `Failed to load native binding for platform: ${key}. ` +
-      `Ensure the correct platform package is installed or the .node file exists.`,
-  );
-}
-
-export const { NativeWindow, init, pumpEvents, checkRuntime, ensureRuntime, loadHtmlOrigin } =
-  nativeBinding;