@package-broker/core 0.17.4 → 0.19.5
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/cache/index.d.ts +0 -1
- package/dist/cache/index.d.ts.map +1 -1
- package/dist/cache/index.js +0 -1
- package/dist/cache/index.js.map +1 -1
- package/dist/cache/memory-driver.d.ts +1 -1
- package/dist/cache/memory-driver.d.ts.map +1 -1
- package/dist/cache/memory-driver.js +4 -2
- package/dist/cache/memory-driver.js.map +1 -1
- package/dist/db/create-database.d.ts +8 -0
- package/dist/db/create-database.d.ts.map +1 -0
- package/dist/db/create-database.js +13 -0
- package/dist/db/create-database.js.map +1 -0
- package/dist/db/index.d.ts +0 -1
- package/dist/db/index.d.ts.map +1 -1
- package/dist/db/index.js +0 -1
- package/dist/db/index.js.map +1 -1
- package/dist/db/schema.d.ts +557 -0
- package/dist/db/schema.d.ts.map +1 -1
- package/dist/db/schema.js +72 -2
- package/dist/db/schema.js.map +1 -1
- package/dist/factory.d.ts.map +1 -1
- package/dist/factory.js +22 -2
- package/dist/factory.js.map +1 -1
- package/dist/index.d.ts +2 -1
- package/dist/index.d.ts.map +1 -1
- package/dist/index.js +2 -2
- package/dist/index.js.map +1 -1
- package/dist/jobs/processor.js +1 -1
- package/dist/jobs/processor.js.map +1 -1
- package/dist/kernel/container.d.ts +12 -0
- package/dist/kernel/container.d.ts.map +1 -0
- package/dist/kernel/container.js +43 -0
- package/dist/kernel/container.js.map +1 -0
- package/dist/kernel/events.d.ts +17 -0
- package/dist/kernel/events.d.ts.map +1 -0
- package/dist/kernel/events.js +54 -0
- package/dist/kernel/events.js.map +1 -0
- package/dist/kernel/hooks.d.ts +14 -0
- package/dist/kernel/hooks.d.ts.map +1 -0
- package/dist/kernel/hooks.js +31 -0
- package/dist/kernel/hooks.js.map +1 -0
- package/dist/kernel/index.d.ts +5 -0
- package/dist/kernel/index.d.ts.map +1 -0
- package/dist/kernel/index.js +5 -0
- package/dist/kernel/index.js.map +1 -0
- package/dist/kernel/plugin.d.ts +21 -0
- package/dist/kernel/plugin.d.ts.map +1 -0
- package/dist/kernel/plugin.js +30 -0
- package/dist/kernel/plugin.js.map +1 -0
- package/dist/middleware/auth.d.ts +2 -0
- package/dist/middleware/auth.d.ts.map +1 -1
- package/dist/middleware/auth.js +20 -5
- package/dist/middleware/auth.js.map +1 -1
- package/dist/modules/admin/admin.handlers.d.ts +1 -1
- package/dist/modules/admin/admin.handlers.d.ts.map +1 -1
- package/dist/modules/artifacts/artifacts.handlers.d.ts +1 -1
- package/dist/modules/artifacts/artifacts.handlers.d.ts.map +1 -1
- package/dist/modules/auth/auth.handlers.js +1 -1
- package/dist/modules/auth/auth.handlers.js.map +1 -1
- package/dist/modules/composer/index.d.ts.map +1 -1
- package/dist/modules/composer/index.js +5 -0
- package/dist/modules/composer/index.js.map +1 -1
- package/dist/modules/composer/tenant-composer.d.ts +32 -0
- package/dist/modules/composer/tenant-composer.d.ts.map +1 -0
- package/dist/modules/composer/tenant-composer.js +198 -0
- package/dist/modules/composer/tenant-composer.js.map +1 -0
- package/dist/modules/import/import.handlers.d.ts +4 -0
- package/dist/modules/import/import.handlers.d.ts.map +1 -0
- package/dist/modules/import/import.handlers.js +16 -0
- package/dist/modules/import/import.handlers.js.map +1 -0
- package/dist/{routes/api/openapi/settings.d.ts → modules/import/import.routes.d.ts} +20 -35
- package/dist/modules/import/import.routes.d.ts.map +1 -0
- package/dist/modules/import/import.routes.js +63 -0
- package/dist/modules/import/import.routes.js.map +1 -0
- package/dist/modules/import/index.d.ts +8 -0
- package/dist/modules/import/index.d.ts.map +1 -0
- package/dist/modules/import/index.js +8 -0
- package/dist/modules/import/index.js.map +1 -0
- package/dist/modules/organizations/index.d.ts +8 -0
- package/dist/modules/organizations/index.d.ts.map +1 -0
- package/dist/modules/organizations/index.js +22 -0
- package/dist/modules/organizations/index.js.map +1 -0
- package/dist/modules/organizations/organizations.handlers.d.ts +24 -0
- package/dist/modules/organizations/organizations.handlers.d.ts.map +1 -0
- package/dist/modules/organizations/organizations.handlers.js +278 -0
- package/dist/modules/organizations/organizations.handlers.js.map +1 -0
- package/dist/modules/organizations/organizations.routes.d.ts +596 -0
- package/dist/modules/organizations/organizations.routes.d.ts.map +1 -0
- package/dist/modules/organizations/organizations.routes.js +263 -0
- package/dist/modules/organizations/organizations.routes.js.map +1 -0
- package/dist/modules/packages/packages.handlers.d.ts +1 -1
- package/dist/modules/packages/packages.handlers.d.ts.map +1 -1
- package/dist/modules/packages/packages.handlers.js +3 -69
- package/dist/modules/packages/packages.handlers.js.map +1 -1
- package/dist/modules/repositories/repositories.handlers.d.ts +1 -1
- package/dist/modules/repositories/repositories.handlers.d.ts.map +1 -1
- package/dist/modules/repositories/repositories.handlers.js +74 -3
- package/dist/modules/repositories/repositories.handlers.js.map +1 -1
- package/dist/modules/repositories/repositories.routes.d.ts +12 -0
- package/dist/modules/repositories/repositories.routes.d.ts.map +1 -1
- package/dist/modules/system/index.d.ts.map +1 -1
- package/dist/modules/system/index.js +2 -1
- package/dist/modules/system/index.js.map +1 -1
- package/dist/modules/system/system.handlers.d.ts +11 -1
- package/dist/modules/system/system.handlers.d.ts.map +1 -1
- package/dist/modules/system/system.handlers.js +31 -1
- package/dist/modules/system/system.handlers.js.map +1 -1
- package/dist/modules/system/system.routes.d.ts +34 -4
- package/dist/modules/system/system.routes.d.ts.map +1 -1
- package/dist/modules/system/system.routes.js +21 -1
- package/dist/modules/system/system.routes.js.map +1 -1
- package/dist/modules/tenants/index.d.ts +8 -0
- package/dist/modules/tenants/index.d.ts.map +1 -0
- package/dist/modules/tenants/index.js +21 -0
- package/dist/modules/tenants/index.js.map +1 -0
- package/dist/modules/tenants/tenants.handlers.d.ts +24 -0
- package/dist/modules/tenants/tenants.handlers.d.ts.map +1 -0
- package/dist/modules/tenants/tenants.handlers.js +268 -0
- package/dist/modules/tenants/tenants.handlers.js.map +1 -0
- package/dist/modules/tenants/tenants.routes.d.ts +486 -0
- package/dist/modules/tenants/tenants.routes.d.ts.map +1 -0
- package/dist/modules/tenants/tenants.routes.js +227 -0
- package/dist/modules/tenants/tenants.routes.js.map +1 -0
- package/dist/modules/tokens/tokens.handlers.d.ts +1 -1
- package/dist/modules/tokens/tokens.handlers.d.ts.map +1 -1
- package/dist/modules/users/users.handlers.d.ts +1 -1
- package/dist/modules/users/users.handlers.d.ts.map +1 -1
- package/dist/modules/users/users.handlers.js +1 -1
- package/dist/modules/users/users.handlers.js.map +1 -1
- package/dist/plugins/security-advisories/advisory-db.d.ts +85 -0
- package/dist/plugins/security-advisories/advisory-db.d.ts.map +1 -0
- package/dist/plugins/security-advisories/advisory-db.js +161 -0
- package/dist/plugins/security-advisories/advisory-db.js.map +1 -0
- package/dist/plugins/security-advisories/advisory-service.d.ts +44 -0
- package/dist/plugins/security-advisories/advisory-service.d.ts.map +1 -0
- package/dist/plugins/security-advisories/advisory-service.js +122 -0
- package/dist/plugins/security-advisories/advisory-service.js.map +1 -0
- package/dist/plugins/security-advisories/advisory.handlers.d.ts +13 -0
- package/dist/plugins/security-advisories/advisory.handlers.d.ts.map +1 -0
- package/dist/plugins/security-advisories/advisory.handlers.js +87 -0
- package/dist/plugins/security-advisories/advisory.handlers.js.map +1 -0
- package/dist/plugins/security-advisories/advisory.module.d.ts +4 -0
- package/dist/plugins/security-advisories/advisory.module.d.ts.map +1 -0
- package/dist/plugins/security-advisories/advisory.module.js +13 -0
- package/dist/plugins/security-advisories/advisory.module.js.map +1 -0
- package/dist/plugins/security-advisories/advisory.routes.d.ts +73 -0
- package/dist/plugins/security-advisories/advisory.routes.d.ts.map +1 -0
- package/dist/plugins/security-advisories/advisory.routes.js +76 -0
- package/dist/plugins/security-advisories/advisory.routes.js.map +1 -0
- package/dist/plugins/security-advisories/index.d.ts +31 -0
- package/dist/plugins/security-advisories/index.d.ts.map +1 -0
- package/dist/plugins/security-advisories/index.js +100 -0
- package/dist/plugins/security-advisories/index.js.map +1 -0
- package/dist/ports.d.ts +39 -21
- package/dist/ports.d.ts.map +1 -1
- package/dist/queue/consumer.js +2 -2
- package/dist/queue/consumer.js.map +1 -1
- package/dist/queue/memory-driver.d.ts +3 -2
- package/dist/queue/memory-driver.d.ts.map +1 -1
- package/dist/queue/memory-driver.js.map +1 -1
- package/dist/routes/composer.d.ts.map +1 -1
- package/dist/routes/composer.js +71 -19
- package/dist/routes/composer.js.map +1 -1
- package/dist/routes/dist.d.ts.map +1 -1
- package/dist/routes/dist.js +26 -80
- package/dist/routes/dist.js.map +1 -1
- package/dist/routes/index.d.ts +0 -1
- package/dist/routes/index.d.ts.map +1 -1
- package/dist/routes/index.js +0 -1
- package/dist/routes/index.js.map +1 -1
- package/dist/services/GitHubOrgImporter.d.ts +21 -0
- package/dist/services/GitHubOrgImporter.d.ts.map +1 -0
- package/dist/services/GitHubOrgImporter.js +51 -0
- package/dist/services/GitHubOrgImporter.js.map +1 -0
- package/dist/services/TokenScopeService.d.ts +15 -0
- package/dist/services/TokenScopeService.d.ts.map +1 -0
- package/dist/services/TokenScopeService.js +42 -0
- package/dist/services/TokenScopeService.js.map +1 -0
- package/dist/storage/index.d.ts +0 -1
- package/dist/storage/index.d.ts.map +1 -1
- package/dist/storage/index.js +0 -1
- package/dist/storage/index.js.map +1 -1
- package/dist/sync/repository-sync.d.ts.map +1 -1
- package/dist/sync/repository-sync.js +35 -23
- package/dist/sync/repository-sync.js.map +1 -1
- package/dist/sync/strategies/git-ssh.d.ts +17 -0
- package/dist/sync/strategies/git-ssh.d.ts.map +1 -0
- package/dist/sync/strategies/git-ssh.js +325 -0
- package/dist/sync/strategies/git-ssh.js.map +1 -0
- package/dist/{routes/api/types.d.ts → types/openapi.d.ts} +3 -4
- package/dist/types/openapi.d.ts.map +1 -0
- package/dist/{routes/api/types.js → types/openapi.js} +1 -1
- package/dist/types/openapi.js.map +1 -0
- package/dist/utils/background.d.ts +7 -0
- package/dist/utils/background.d.ts.map +1 -0
- package/dist/utils/background.js +11 -0
- package/dist/utils/background.js.map +1 -0
- package/dist/utils/environment.d.ts +15 -0
- package/dist/utils/environment.d.ts.map +1 -0
- package/dist/utils/environment.js +38 -0
- package/dist/utils/environment.js.map +1 -0
- package/dist/utils/index.d.ts +1 -0
- package/dist/utils/index.d.ts.map +1 -1
- package/dist/utils/index.js +1 -0
- package/dist/utils/index.js.map +1 -1
- package/dist/utils/package-filter.d.ts +7 -0
- package/dist/utils/package-filter.d.ts.map +1 -0
- package/dist/utils/package-filter.js +23 -0
- package/dist/utils/package-filter.js.map +1 -0
- package/dist/utils/package-validator.d.ts +3 -3
- package/dist/utils/package-validator.d.ts.map +1 -1
- package/dist/utils/package-validator.js +4 -37
- package/dist/utils/package-validator.js.map +1 -1
- package/dist/utils/upstream-fetch.d.ts +8 -0
- package/dist/utils/upstream-fetch.d.ts.map +1 -1
- package/dist/utils/upstream-fetch.js +42 -0
- package/dist/utils/upstream-fetch.js.map +1 -1
- package/dist/utils/zip-utils.d.ts +13 -0
- package/dist/utils/zip-utils.d.ts.map +1 -0
- package/dist/utils/zip-utils.js +66 -0
- package/dist/utils/zip-utils.js.map +1 -0
- package/dist/vcs/bitbucket-provider.d.ts +19 -0
- package/dist/vcs/bitbucket-provider.d.ts.map +1 -0
- package/dist/vcs/bitbucket-provider.js +249 -0
- package/dist/vcs/bitbucket-provider.js.map +1 -0
- package/dist/vcs/github-provider.d.ts +16 -0
- package/dist/vcs/github-provider.d.ts.map +1 -0
- package/dist/vcs/github-provider.js +117 -0
- package/dist/vcs/github-provider.js.map +1 -0
- package/dist/vcs/gitlab-provider.d.ts +17 -0
- package/dist/vcs/gitlab-provider.d.ts.map +1 -0
- package/dist/vcs/gitlab-provider.js +216 -0
- package/dist/vcs/gitlab-provider.js.map +1 -0
- package/dist/vcs/index.d.ts +10 -0
- package/dist/vcs/index.d.ts.map +1 -0
- package/dist/vcs/index.js +24 -0
- package/dist/vcs/index.js.map +1 -0
- package/dist/vcs/registry.d.ts +32 -0
- package/dist/vcs/registry.d.ts.map +1 -0
- package/dist/vcs/registry.js +47 -0
- package/dist/vcs/registry.js.map +1 -0
- package/dist/workflows/package-storage.d.ts.map +1 -1
- package/dist/workflows/package-storage.js +3 -3
- package/dist/workflows/package-storage.js.map +1 -1
- package/package.json +11 -8
- package/dist/cache/kv-driver.d.ts +0 -16
- package/dist/cache/kv-driver.d.ts.map +0 -1
- package/dist/cache/kv-driver.js +0 -23
- package/dist/cache/kv-driver.js.map +0 -1
- package/dist/db/d1-driver.d.ts +0 -3
- package/dist/db/d1-driver.d.ts.map +0 -1
- package/dist/db/d1-driver.js +0 -7
- package/dist/db/d1-driver.js.map +0 -1
- package/dist/routes/api/artifacts.d.ts +0 -27
- package/dist/routes/api/artifacts.d.ts.map +0 -1
- package/dist/routes/api/artifacts.js +0 -57
- package/dist/routes/api/artifacts.js.map +0 -1
- package/dist/routes/api/auth.d.ts +0 -52
- package/dist/routes/api/auth.d.ts.map +0 -1
- package/dist/routes/api/auth.js +0 -277
- package/dist/routes/api/auth.js.map +0 -1
- package/dist/routes/api/index.d.ts +0 -10
- package/dist/routes/api/index.d.ts.map +0 -1
- package/dist/routes/api/index.js +0 -11
- package/dist/routes/api/index.js.map +0 -1
- package/dist/routes/api/openapi/artifacts.d.ts +0 -80
- package/dist/routes/api/openapi/artifacts.d.ts.map +0 -1
- package/dist/routes/api/openapi/artifacts.js +0 -73
- package/dist/routes/api/openapi/artifacts.js.map +0 -1
- package/dist/routes/api/openapi/auth.d.ts +0 -187
- package/dist/routes/api/openapi/auth.d.ts.map +0 -1
- package/dist/routes/api/openapi/auth.js +0 -135
- package/dist/routes/api/openapi/auth.js.map +0 -1
- package/dist/routes/api/openapi/health.d.ts +0 -23
- package/dist/routes/api/openapi/health.d.ts.map +0 -1
- package/dist/routes/api/openapi/health.js +0 -25
- package/dist/routes/api/openapi/health.js.map +0 -1
- package/dist/routes/api/openapi/index.d.ts +0 -10
- package/dist/routes/api/openapi/index.d.ts.map +0 -1
- package/dist/routes/api/openapi/index.js +0 -16
- package/dist/routes/api/openapi/index.js.map +0 -1
- package/dist/routes/api/openapi/packages.d.ts +0 -172
- package/dist/routes/api/openapi/packages.d.ts.map +0 -1
- package/dist/routes/api/openapi/packages.js +0 -126
- package/dist/routes/api/openapi/packages.js.map +0 -1
- package/dist/routes/api/openapi/repositories.d.ts +0 -451
- package/dist/routes/api/openapi/repositories.d.ts.map +0 -1
- package/dist/routes/api/openapi/repositories.js +0 -238
- package/dist/routes/api/openapi/repositories.js.map +0 -1
- package/dist/routes/api/openapi/settings.d.ts.map +0 -1
- package/dist/routes/api/openapi/settings.js +0 -72
- package/dist/routes/api/openapi/settings.js.map +0 -1
- package/dist/routes/api/openapi/stats.d.ts +0 -59
- package/dist/routes/api/openapi/stats.d.ts.map +0 -1
- package/dist/routes/api/openapi/stats.js +0 -53
- package/dist/routes/api/openapi/stats.js.map +0 -1
- package/dist/routes/api/openapi/tokens.d.ts +0 -202
- package/dist/routes/api/openapi/tokens.d.ts.map +0 -1
- package/dist/routes/api/openapi/tokens.js +0 -132
- package/dist/routes/api/openapi/tokens.js.map +0 -1
- package/dist/routes/api/openapi/users.d.ts +0 -190
- package/dist/routes/api/openapi/users.d.ts.map +0 -1
- package/dist/routes/api/openapi/users.js +0 -126
- package/dist/routes/api/openapi/users.js.map +0 -1
- package/dist/routes/api/packages.d.ts +0 -50
- package/dist/routes/api/packages.d.ts.map +0 -1
- package/dist/routes/api/packages.js +0 -708
- package/dist/routes/api/packages.js.map +0 -1
- package/dist/routes/api/repositories.d.ts +0 -58
- package/dist/routes/api/repositories.d.ts.map +0 -1
- package/dist/routes/api/repositories.js +0 -321
- package/dist/routes/api/repositories.js.map +0 -1
- package/dist/routes/api/settings.d.ts +0 -29
- package/dist/routes/api/settings.d.ts.map +0 -1
- package/dist/routes/api/settings.js +0 -81
- package/dist/routes/api/settings.js.map +0 -1
- package/dist/routes/api/stats.d.ts +0 -21
- package/dist/routes/api/stats.d.ts.map +0 -1
- package/dist/routes/api/stats.js +0 -51
- package/dist/routes/api/stats.js.map +0 -1
- package/dist/routes/api/tokens.d.ts +0 -40
- package/dist/routes/api/tokens.d.ts.map +0 -1
- package/dist/routes/api/tokens.js +0 -187
- package/dist/routes/api/tokens.js.map +0 -1
- package/dist/routes/api/types.d.ts.map +0 -1
- package/dist/routes/api/types.js.map +0 -1
- package/dist/routes/api/users.d.ts +0 -6
- package/dist/routes/api/users.d.ts.map +0 -1
- package/dist/routes/api/users.js +0 -115
- package/dist/routes/api/users.js.map +0 -1
- package/dist/storage/r2-driver.d.ts +0 -16
- package/dist/storage/r2-driver.d.ts.map +0 -1
- package/dist/storage/r2-driver.js +0 -28
- package/dist/storage/r2-driver.js.map +0 -1
|
@@ -0,0 +1,227 @@
|
|
|
1
|
+
/*
|
|
2
|
+
* PACKAGE.broker
|
|
3
|
+
* Copyright (C) 2025 Łukasz Bajsarowicz
|
|
4
|
+
* Licensed under AGPL-3.0
|
|
5
|
+
*/
|
|
6
|
+
import { createRoute, z } from '@hono/zod-openapi';
|
|
7
|
+
import { errorResponseSchema } from '@package-broker/shared';
|
|
8
|
+
const slugPattern = /^[a-z0-9][a-z0-9-]{1,61}[a-z0-9]$/;
|
|
9
|
+
const tenantResponseSchema = z.object({
|
|
10
|
+
id: z.string(),
|
|
11
|
+
org_id: z.string(),
|
|
12
|
+
name: z.string(),
|
|
13
|
+
slug: z.string(),
|
|
14
|
+
created_at: z.number(),
|
|
15
|
+
});
|
|
16
|
+
const tenantPackageResponseSchema = z.object({
|
|
17
|
+
id: z.string(),
|
|
18
|
+
tenant_id: z.string(),
|
|
19
|
+
package_pattern: z.string(),
|
|
20
|
+
access_level: z.enum(['read', 'write']),
|
|
21
|
+
created_at: z.number(),
|
|
22
|
+
});
|
|
23
|
+
const createTenantSchema = z.object({
|
|
24
|
+
name: z.string().min(1).max(100).openapi({ example: 'Production' }),
|
|
25
|
+
slug: z.string().min(3).max(63).regex(slugPattern, 'Slug must be lowercase alphanumeric with hyphens, 3-63 chars').openapi({ example: 'production' }),
|
|
26
|
+
});
|
|
27
|
+
const updateTenantSchema = z.object({
|
|
28
|
+
name: z.string().min(1).max(100).optional(),
|
|
29
|
+
});
|
|
30
|
+
const packagePatternRegex = /^[a-z0-9]([a-z0-9._-]*[a-z0-9])?\/((\*)|([a-z0-9]([a-z0-9._-]*[a-z0-9])?))$/;
|
|
31
|
+
const addTenantPackageSchema = z.object({
|
|
32
|
+
package_pattern: z.string().min(3).max(255).regex(packagePatternRegex, 'Must be vendor/package or vendor/* format (lowercase)').openapi({ example: 'vendor/*' }),
|
|
33
|
+
access_level: z.enum(['read', 'write']).default('read'),
|
|
34
|
+
});
|
|
35
|
+
// Route paths are relative to module mount at /api/organizations/:org_id/tenants
|
|
36
|
+
// org_id is injected via middleware in factory.ts, not declared as a route param
|
|
37
|
+
export const listTenantsRouteDef = createRoute({
|
|
38
|
+
method: 'get',
|
|
39
|
+
path: '/',
|
|
40
|
+
summary: 'List tenants',
|
|
41
|
+
description: 'List all tenants in the organization',
|
|
42
|
+
security: [{ Bearer: [] }],
|
|
43
|
+
responses: {
|
|
44
|
+
200: {
|
|
45
|
+
content: { 'application/json': { schema: z.array(tenantResponseSchema) } },
|
|
46
|
+
description: 'List of tenants',
|
|
47
|
+
},
|
|
48
|
+
403: {
|
|
49
|
+
content: { 'application/json': { schema: errorResponseSchema } },
|
|
50
|
+
description: 'Not a member',
|
|
51
|
+
},
|
|
52
|
+
},
|
|
53
|
+
tags: ['Tenants'],
|
|
54
|
+
});
|
|
55
|
+
export const createTenantRouteDef = createRoute({
|
|
56
|
+
method: 'post',
|
|
57
|
+
path: '/',
|
|
58
|
+
summary: 'Create tenant',
|
|
59
|
+
description: 'Create a new tenant in the organization. Requires owner or admin role.',
|
|
60
|
+
security: [{ Bearer: [] }],
|
|
61
|
+
request: {
|
|
62
|
+
body: { content: { 'application/json': { schema: createTenantSchema } } },
|
|
63
|
+
},
|
|
64
|
+
responses: {
|
|
65
|
+
201: {
|
|
66
|
+
content: { 'application/json': { schema: tenantResponseSchema } },
|
|
67
|
+
description: 'Tenant created',
|
|
68
|
+
},
|
|
69
|
+
400: {
|
|
70
|
+
content: { 'application/json': { schema: errorResponseSchema } },
|
|
71
|
+
description: 'Invalid request',
|
|
72
|
+
},
|
|
73
|
+
403: {
|
|
74
|
+
content: { 'application/json': { schema: errorResponseSchema } },
|
|
75
|
+
description: 'Insufficient permissions',
|
|
76
|
+
},
|
|
77
|
+
409: {
|
|
78
|
+
content: { 'application/json': { schema: errorResponseSchema } },
|
|
79
|
+
description: 'Slug already taken in this organization',
|
|
80
|
+
},
|
|
81
|
+
},
|
|
82
|
+
tags: ['Tenants'],
|
|
83
|
+
});
|
|
84
|
+
export const getTenantRouteDef = createRoute({
|
|
85
|
+
method: 'get',
|
|
86
|
+
path: '/{id}',
|
|
87
|
+
summary: 'Get tenant',
|
|
88
|
+
description: 'Get tenant details',
|
|
89
|
+
security: [{ Bearer: [] }],
|
|
90
|
+
request: { params: z.object({ id: z.string().openapi({ param: { name: 'id', in: 'path' } }) }) },
|
|
91
|
+
responses: {
|
|
92
|
+
200: {
|
|
93
|
+
content: { 'application/json': { schema: tenantResponseSchema } },
|
|
94
|
+
description: 'Tenant details',
|
|
95
|
+
},
|
|
96
|
+
404: {
|
|
97
|
+
content: { 'application/json': { schema: errorResponseSchema } },
|
|
98
|
+
description: 'Tenant not found',
|
|
99
|
+
},
|
|
100
|
+
},
|
|
101
|
+
tags: ['Tenants'],
|
|
102
|
+
});
|
|
103
|
+
export const updateTenantRouteDef = createRoute({
|
|
104
|
+
method: 'patch',
|
|
105
|
+
path: '/{id}',
|
|
106
|
+
summary: 'Update tenant',
|
|
107
|
+
description: 'Update tenant name. Requires owner or admin role.',
|
|
108
|
+
security: [{ Bearer: [] }],
|
|
109
|
+
request: {
|
|
110
|
+
params: z.object({ id: z.string().openapi({ param: { name: 'id', in: 'path' } }) }),
|
|
111
|
+
body: { content: { 'application/json': { schema: updateTenantSchema } } },
|
|
112
|
+
},
|
|
113
|
+
responses: {
|
|
114
|
+
200: {
|
|
115
|
+
content: { 'application/json': { schema: tenantResponseSchema } },
|
|
116
|
+
description: 'Tenant updated',
|
|
117
|
+
},
|
|
118
|
+
403: {
|
|
119
|
+
content: { 'application/json': { schema: errorResponseSchema } },
|
|
120
|
+
description: 'Insufficient permissions',
|
|
121
|
+
},
|
|
122
|
+
404: {
|
|
123
|
+
content: { 'application/json': { schema: errorResponseSchema } },
|
|
124
|
+
description: 'Tenant not found',
|
|
125
|
+
},
|
|
126
|
+
},
|
|
127
|
+
tags: ['Tenants'],
|
|
128
|
+
});
|
|
129
|
+
export const deleteTenantRouteDef = createRoute({
|
|
130
|
+
method: 'delete',
|
|
131
|
+
path: '/{id}',
|
|
132
|
+
summary: 'Delete tenant',
|
|
133
|
+
description: 'Delete a tenant. Requires owner or admin role.',
|
|
134
|
+
security: [{ Bearer: [] }],
|
|
135
|
+
request: { params: z.object({ id: z.string().openapi({ param: { name: 'id', in: 'path' } }) }) },
|
|
136
|
+
responses: {
|
|
137
|
+
200: {
|
|
138
|
+
content: { 'application/json': { schema: z.object({ message: z.string() }) } },
|
|
139
|
+
description: 'Tenant deleted',
|
|
140
|
+
},
|
|
141
|
+
403: {
|
|
142
|
+
content: { 'application/json': { schema: errorResponseSchema } },
|
|
143
|
+
description: 'Insufficient permissions',
|
|
144
|
+
},
|
|
145
|
+
404: {
|
|
146
|
+
content: { 'application/json': { schema: errorResponseSchema } },
|
|
147
|
+
description: 'Tenant not found',
|
|
148
|
+
},
|
|
149
|
+
},
|
|
150
|
+
tags: ['Tenants'],
|
|
151
|
+
});
|
|
152
|
+
// Tenant package patterns
|
|
153
|
+
export const listTenantPackagesRouteDef = createRoute({
|
|
154
|
+
method: 'get',
|
|
155
|
+
path: '/{id}/packages',
|
|
156
|
+
summary: 'List tenant package patterns',
|
|
157
|
+
description: 'List all package access patterns for this tenant',
|
|
158
|
+
security: [{ Bearer: [] }],
|
|
159
|
+
request: { params: z.object({ id: z.string().openapi({ param: { name: 'id', in: 'path' } }) }) },
|
|
160
|
+
responses: {
|
|
161
|
+
200: {
|
|
162
|
+
content: { 'application/json': { schema: z.array(tenantPackageResponseSchema) } },
|
|
163
|
+
description: 'List of package patterns',
|
|
164
|
+
},
|
|
165
|
+
},
|
|
166
|
+
tags: ['Tenants'],
|
|
167
|
+
});
|
|
168
|
+
export const addTenantPackageRouteDef = createRoute({
|
|
169
|
+
method: 'post',
|
|
170
|
+
path: '/{id}/packages',
|
|
171
|
+
summary: 'Add package pattern to tenant',
|
|
172
|
+
description: 'Add a package access pattern. Requires owner or admin role.',
|
|
173
|
+
security: [{ Bearer: [] }],
|
|
174
|
+
request: {
|
|
175
|
+
params: z.object({ id: z.string().openapi({ param: { name: 'id', in: 'path' } }) }),
|
|
176
|
+
body: { content: { 'application/json': { schema: addTenantPackageSchema } } },
|
|
177
|
+
},
|
|
178
|
+
responses: {
|
|
179
|
+
201: {
|
|
180
|
+
content: { 'application/json': { schema: tenantPackageResponseSchema } },
|
|
181
|
+
description: 'Package pattern added',
|
|
182
|
+
},
|
|
183
|
+
400: {
|
|
184
|
+
content: { 'application/json': { schema: errorResponseSchema } },
|
|
185
|
+
description: 'Invalid request',
|
|
186
|
+
},
|
|
187
|
+
403: {
|
|
188
|
+
content: { 'application/json': { schema: errorResponseSchema } },
|
|
189
|
+
description: 'Insufficient permissions',
|
|
190
|
+
},
|
|
191
|
+
409: {
|
|
192
|
+
content: { 'application/json': { schema: errorResponseSchema } },
|
|
193
|
+
description: 'Pattern already exists for this tenant',
|
|
194
|
+
},
|
|
195
|
+
},
|
|
196
|
+
tags: ['Tenants'],
|
|
197
|
+
});
|
|
198
|
+
export const removeTenantPackageRouteDef = createRoute({
|
|
199
|
+
method: 'delete',
|
|
200
|
+
path: '/{id}/packages/{package_id}',
|
|
201
|
+
summary: 'Remove package pattern from tenant',
|
|
202
|
+
description: 'Remove a package access pattern. Requires owner or admin role.',
|
|
203
|
+
security: [{ Bearer: [] }],
|
|
204
|
+
request: {
|
|
205
|
+
params: z.object({
|
|
206
|
+
id: z.string().openapi({ param: { name: 'id', in: 'path' } }),
|
|
207
|
+
package_id: z.string().openapi({ param: { name: 'package_id', in: 'path' } }),
|
|
208
|
+
}),
|
|
209
|
+
},
|
|
210
|
+
responses: {
|
|
211
|
+
200: {
|
|
212
|
+
content: { 'application/json': { schema: z.object({ message: z.string() }) } },
|
|
213
|
+
description: 'Package pattern removed',
|
|
214
|
+
},
|
|
215
|
+
403: {
|
|
216
|
+
content: { 'application/json': { schema: errorResponseSchema } },
|
|
217
|
+
description: 'Insufficient permissions',
|
|
218
|
+
},
|
|
219
|
+
404: {
|
|
220
|
+
content: { 'application/json': { schema: errorResponseSchema } },
|
|
221
|
+
description: 'Package pattern not found',
|
|
222
|
+
},
|
|
223
|
+
},
|
|
224
|
+
tags: ['Tenants'],
|
|
225
|
+
});
|
|
226
|
+
export { createTenantSchema, updateTenantSchema, addTenantPackageSchema, };
|
|
227
|
+
//# sourceMappingURL=tenants.routes.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"tenants.routes.js","sourceRoot":"","sources":["../../../src/modules/tenants/tenants.routes.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,WAAW,EAAE,CAAC,EAAE,MAAM,mBAAmB,CAAC;AACnD,OAAO,EAAE,mBAAmB,EAAE,MAAM,wBAAwB,CAAC;AAE7D,MAAM,WAAW,GAAG,mCAAmC,CAAC;AAExD,MAAM,oBAAoB,GAAG,CAAC,CAAC,MAAM,CAAC;IACpC,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE;IACd,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE;IAClB,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE;IAChB,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE;IAChB,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE;CACvB,CAAC,CAAC;AAEH,MAAM,2BAA2B,GAAG,CAAC,CAAC,MAAM,CAAC;IAC3C,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE;IACd,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE;IACrB,eAAe,EAAE,CAAC,CAAC,MAAM,EAAE;IAC3B,YAAY,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACvC,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE;CACvB,CAAC,CAAC;AAEH,MAAM,kBAAkB,GAAG,CAAC,CAAC,MAAM,CAAC;IAClC,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,OAAO,CAAC,EAAE,OAAO,EAAE,YAAY,EAAE,CAAC;IACnE,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,WAAW,EAAE,8DAA8D,CAAC,CAAC,OAAO,CAAC,EAAE,OAAO,EAAE,YAAY,EAAE,CAAC;CACtJ,CAAC,CAAC;AAEH,MAAM,kBAAkB,GAAG,CAAC,CAAC,MAAM,CAAC;IAClC,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,EAAE;CAC5C,CAAC,CAAC;AAEH,MAAM,mBAAmB,GAAG,6EAA6E,CAAC;AAE1G,MAAM,sBAAsB,GAAG,CAAC,CAAC,MAAM,CAAC;IACtC,eAAe,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,mBAAmB,EAAE,uDAAuD,CAAC,CAAC,OAAO,CAAC,EAAE,OAAO,EAAE,UAAU,EAAE,CAAC;IAChK,YAAY,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC;CACxD,CAAC,CAAC;AAEH,iFAAiF;AACjF,iFAAiF;AACjF,MAAM,CAAC,MAAM,mBAAmB,GAAG,WAAW,CAAC;IAC7C,MAAM,EAAE,KAAK;IACb,IAAI,EAAE,GAAG;IACT,OAAO,EAAE,cAAc;IACvB,WAAW,EAAE,sCAAsC;IACnD,QAAQ,EAAE,CAAC,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC;IAC1B,SAAS,EAAE;QACT,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,CAAC,CAAC,KAAK,CAAC,oBAAoB,CAAC,EAAE,EAAE;YAC1E,WAAW,EAAE,iBAAiB;SAC/B;QACD,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,mBAAmB,EAAE,EAAE;YAChE,WAAW,EAAE,cAAc;SAC5B;KACF;IACD,IAAI,EAAE,CAAC,SAAS,CAAC;CAClB,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,oBAAoB,GAAG,WAAW,CAAC;IAC9C,MAAM,EAAE,MAAM;IACd,IAAI,EAAE,GAAG;IACT,OAAO,EAAE,eAAe;IACxB,WAAW,EAAE,wEAAwE;IACrF,QAAQ,EAAE,CAAC,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC;IAC1B,OAAO,EAAE;QACP,IAAI,EAAE,EAAE,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,kBAAkB,EAAE,EAAE,EAAE;KAC1E;IACD,SAAS,EAAE;QACT,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,oBAAoB,EAAE,EAAE;YACjE,WAAW,EAAE,gBAAgB;SAC9B;QACD,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,mBAAmB,EAAE,EAAE;YAChE,WAAW,EAAE,iBAAiB;SAC/B;QACD,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,mBAAmB,EAAE,EAAE;YAChE,WAAW,EAAE,0BAA0B;SACxC;QACD,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,mBAAmB,EAAE,EAAE;YAChE,WAAW,EAAE,yCAAyC;SACvD;KACF;IACD,IAAI,EAAE,CAAC,SAAS,CAAC;CAClB,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,iBAAiB,GAAG,WAAW,CAAC;IAC3C,MAAM,EAAE,KAAK;IACb,IAAI,EAAE,OAAO;IACb,OAAO,EAAE,YAAY;IACrB,WAAW,EAAE,oBAAoB;IACjC,QAAQ,EAAE,CAAC,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC;IAC1B,OAAO,EAAE,EAAE,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,EAAE,MAAM,EAAE,EAAE,CAAC,EAAE,CAAC,EAAE;IAChG,SAAS,EAAE;QACT,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,oBAAoB,EAAE,EAAE;YACjE,WAAW,EAAE,gBAAgB;SAC9B;QACD,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,mBAAmB,EAAE,EAAE;YAChE,WAAW,EAAE,kBAAkB;SAChC;KACF;IACD,IAAI,EAAE,CAAC,SAAS,CAAC;CAClB,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,oBAAoB,GAAG,WAAW,CAAC;IAC9C,MAAM,EAAE,OAAO;IACf,IAAI,EAAE,OAAO;IACb,OAAO,EAAE,eAAe;IACxB,WAAW,EAAE,mDAAmD;IAChE,QAAQ,EAAE,CAAC,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC;IAC1B,OAAO,EAAE;QACP,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,EAAE,MAAM,EAAE,EAAE,CAAC,EAAE,CAAC;QACnF,IAAI,EAAE,EAAE,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,kBAAkB,EAAE,EAAE,EAAE;KAC1E;IACD,SAAS,EAAE;QACT,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,oBAAoB,EAAE,EAAE;YACjE,WAAW,EAAE,gBAAgB;SAC9B;QACD,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,mBAAmB,EAAE,EAAE;YAChE,WAAW,EAAE,0BAA0B;SACxC;QACD,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,mBAAmB,EAAE,EAAE;YAChE,WAAW,EAAE,kBAAkB;SAChC;KACF;IACD,IAAI,EAAE,CAAC,SAAS,CAAC;CAClB,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,oBAAoB,GAAG,WAAW,CAAC;IAC9C,MAAM,EAAE,QAAQ;IAChB,IAAI,EAAE,OAAO;IACb,OAAO,EAAE,eAAe;IACxB,WAAW,EAAE,gDAAgD;IAC7D,QAAQ,EAAE,CAAC,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC;IAC1B,OAAO,EAAE,EAAE,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,EAAE,MAAM,EAAE,EAAE,CAAC,EAAE,CAAC,EAAE;IAChG,SAAS,EAAE;QACT,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,EAAE,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,EAAE,EAAE;YAC9E,WAAW,EAAE,gBAAgB;SAC9B;QACD,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,mBAAmB,EAAE,EAAE;YAChE,WAAW,EAAE,0BAA0B;SACxC;QACD,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,mBAAmB,EAAE,EAAE;YAChE,WAAW,EAAE,kBAAkB;SAChC;KACF;IACD,IAAI,EAAE,CAAC,SAAS,CAAC;CAClB,CAAC,CAAC;AAEH,0BAA0B;AAC1B,MAAM,CAAC,MAAM,0BAA0B,GAAG,WAAW,CAAC;IACpD,MAAM,EAAE,KAAK;IACb,IAAI,EAAE,gBAAgB;IACtB,OAAO,EAAE,8BAA8B;IACvC,WAAW,EAAE,kDAAkD;IAC/D,QAAQ,EAAE,CAAC,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC;IAC1B,OAAO,EAAE,EAAE,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,EAAE,MAAM,EAAE,EAAE,CAAC,EAAE,CAAC,EAAE;IAChG,SAAS,EAAE;QACT,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,CAAC,CAAC,KAAK,CAAC,2BAA2B,CAAC,EAAE,EAAE;YACjF,WAAW,EAAE,0BAA0B;SACxC;KACF;IACD,IAAI,EAAE,CAAC,SAAS,CAAC;CAClB,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,wBAAwB,GAAG,WAAW,CAAC;IAClD,MAAM,EAAE,MAAM;IACd,IAAI,EAAE,gBAAgB;IACtB,OAAO,EAAE,+BAA+B;IACxC,WAAW,EAAE,6DAA6D;IAC1E,QAAQ,EAAE,CAAC,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC;IAC1B,OAAO,EAAE;QACP,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,EAAE,MAAM,EAAE,EAAE,CAAC,EAAE,CAAC;QACnF,IAAI,EAAE,EAAE,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,sBAAsB,EAAE,EAAE,EAAE;KAC9E;IACD,SAAS,EAAE;QACT,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,2BAA2B,EAAE,EAAE;YACxE,WAAW,EAAE,uBAAuB;SACrC;QACD,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,mBAAmB,EAAE,EAAE;YAChE,WAAW,EAAE,iBAAiB;SAC/B;QACD,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,mBAAmB,EAAE,EAAE;YAChE,WAAW,EAAE,0BAA0B;SACxC;QACD,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,mBAAmB,EAAE,EAAE;YAChE,WAAW,EAAE,wCAAwC;SACtD;KACF;IACD,IAAI,EAAE,CAAC,SAAS,CAAC;CAClB,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,2BAA2B,GAAG,WAAW,CAAC;IACrD,MAAM,EAAE,QAAQ;IAChB,IAAI,EAAE,6BAA6B;IACnC,OAAO,EAAE,oCAAoC;IAC7C,WAAW,EAAE,gEAAgE;IAC7E,QAAQ,EAAE,CAAC,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC;IAC1B,OAAO,EAAE;QACP,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC;YACf,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,EAAE,MAAM,EAAE,EAAE,CAAC;YAC7D,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,YAAY,EAAE,EAAE,EAAE,MAAM,EAAE,EAAE,CAAC;SAC9E,CAAC;KACH;IACD,SAAS,EAAE;QACT,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,EAAE,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,EAAE,EAAE;YAC9E,WAAW,EAAE,yBAAyB;SACvC;QACD,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,mBAAmB,EAAE,EAAE;YAChE,WAAW,EAAE,0BAA0B;SACxC;QACD,GAAG,EAAE;YACH,OAAO,EAAE,EAAE,kBAAkB,EAAE,EAAE,MAAM,EAAE,mBAAmB,EAAE,EAAE;YAChE,WAAW,EAAE,2BAA2B;SACzC;KACF;IACD,IAAI,EAAE,CAAC,SAAS,CAAC;CAClB,CAAC,CAAC;AAEH,OAAO,EACL,kBAAkB,EAClB,kBAAkB,EAClB,sBAAsB,GACvB,CAAC"}
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
import type { OpenAPIContext } from '../../
|
|
1
|
+
import type { OpenAPIContext } from '../../types/openapi';
|
|
2
2
|
import { createTokenSchema, updateTokenSchema } from '@package-broker/shared';
|
|
3
3
|
import type { DatabasePort } from '../../ports';
|
|
4
4
|
export interface TokensRouteEnv {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"tokens.handlers.d.ts","sourceRoot":"","sources":["../../../src/modules/tokens/tokens.handlers.ts"],"names":[],"mappings":"AAMA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,
|
|
1
|
+
{"version":3,"file":"tokens.handlers.d.ts","sourceRoot":"","sources":["../../../src/modules/tokens/tokens.handlers.ts"],"names":[],"mappings":"AAMA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,qBAAqB,CAAC;AAC1D,OAAO,EAAE,iBAAiB,EAAE,iBAAiB,EAAE,MAAM,wBAAwB,CAAC;AAC9E,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAUhD,MAAM,WAAW,cAAc;IAC7B,QAAQ,EAAE;QACR,EAAE,EAAE,UAAU,CAAC;QACf,EAAE,CAAC,EAAE,WAAW,CAAC;KAClB,CAAC;IACF,SAAS,EAAE;QACT,QAAQ,EAAE,YAAY,CAAC;QACvB,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,OAAO,CAAC,EAAE;YAAE,MAAM,EAAE,MAAM,CAAC;YAAC,KAAK,EAAE,MAAM,CAAA;SAAE,CAAC;KAC7C,CAAC;CACH;AAaD,wBAAsB,UAAU,CAAC,CAAC,EAAE,cAAc,CAAC,cAAc,CAAC,GAAG,OAAO,CAAC,QAAQ,CAAC,CAerF;AAED,wBAAsB,WAAW,CAAC,CAAC,EAAE,cAAc,CAAC,cAAc,EAAE,UAAU,CAAC,OAAO,iBAAiB,CAAC,KAAK,CAAC,CAAC,GAAG,OAAO,CAAC,QAAQ,CAAC,CAqDlI;AAED,wBAAsB,WAAW,CAAC,CAAC,EAAE,cAAc,CAAC,cAAc,CAAC,GAAG,OAAO,CAAC,QAAQ,CAAC,CAsBtF;AAED,wBAAsB,WAAW,CAAC,CAAC,EAAE,cAAc,CAAC,cAAc,EAAE,UAAU,CAAC,OAAO,iBAAiB,CAAC,KAAK,CAAC,CAAC,GAAG,OAAO,CAAC,QAAQ,CAAC,CA6DlI"}
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
import type { OpenAPIContext } from '../../
|
|
1
|
+
import type { OpenAPIContext } from '../../types/openapi';
|
|
2
2
|
import { createUserRequestSchema } from '@package-broker/shared';
|
|
3
3
|
export declare function listUsers(c: OpenAPIContext): Promise<Response>;
|
|
4
4
|
export declare function createUser(c: OpenAPIContext<any, ReturnType<typeof createUserRequestSchema.parse>>): Promise<Response>;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"users.handlers.d.ts","sourceRoot":"","sources":["../../../src/modules/users/users.handlers.ts"],"names":[],"mappings":"AAMA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,
|
|
1
|
+
{"version":3,"file":"users.handlers.d.ts","sourceRoot":"","sources":["../../../src/modules/users/users.handlers.ts"],"names":[],"mappings":"AAMA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,qBAAqB,CAAC;AAE1D,OAAO,EAAE,uBAAuB,EAAE,MAAM,wBAAwB,CAAC;AAEjE,wBAAsB,SAAS,CAAC,CAAC,EAAE,cAAc,GAAG,OAAO,CAAC,QAAQ,CAAC,CAYpE;AAED,wBAAsB,UAAU,CAAC,CAAC,EAAE,cAAc,CAAC,GAAG,EAAE,UAAU,CAAC,OAAO,uBAAuB,CAAC,KAAK,CAAC,CAAC,GAAG,OAAO,CAAC,QAAQ,CAAC,CA4F5H;AAED,wBAAsB,UAAU,CAAC,CAAC,EAAE,cAAc,GAAG,OAAO,CAAC,QAAQ,CAAC,CAkBrE"}
|
|
@@ -98,7 +98,7 @@ export async function createUser(c) {
|
|
|
98
98
|
if (error.message === 'User already exists') {
|
|
99
99
|
return c.json({ error: 'User already exists' }, 409);
|
|
100
100
|
}
|
|
101
|
-
return c.json({ error: '
|
|
101
|
+
return c.json({ error: 'Internal Server Error', message: 'An unexpected error occurred' }, 500);
|
|
102
102
|
}
|
|
103
103
|
}
|
|
104
104
|
export async function deleteUser(c) {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"users.handlers.js","sourceRoot":"","sources":["../../../src/modules/users/users.handlers.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAGH,OAAO,EAAE,WAAW,EAAE,MAAM,4BAA4B,CAAC;AAGzD,MAAM,CAAC,KAAK,UAAU,SAAS,CAAC,CAAiB;IAC7C,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IAC7B,MAAM,WAAW,GAAG,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC;IAExC,oCAAoC;IACpC,MAAM,OAAO,GAAG,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IACjC,IAAI,OAAO,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;QAC3B,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,WAAW,EAAE,EAAE,GAAG,CAAC,CAAC;IAC/C,CAAC;IAED,MAAM,KAAK,GAAG,MAAM,WAAW,CAAC,IAAI,EAAE,CAAC;IACvC,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC;AAC7B,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,UAAU,CAAC,CAAwE;IACrG,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IAC7B,MAAM,WAAW,GAAG,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC;IAExC,oBAAoB;IACpB,MAAM,OAAO,GAAG,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IACjC,IAAI,OAAO,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;QAC3B,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,WAAW,EAAE,EAAE,GAAG,CAAC,CAAC;IAC/C,CAAC;IAED,MAAM,IAAI,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACjC,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,IAAI,EAAE,GAAG,IAAI,CAAC;IAEvC,IAAI,CAAC;QACD,MAAM,IAAI,GAAG,MAAM,WAAW,CAAC,MAAM,CAAC;YAClC,KAAK;YACL,QAAQ;YACR,IAAI,EAAE,IAAI,IAAI,QAAQ;SACzB,CAAC,CAAC;QAEH,0CAA0C;QAC1C,IAAI,CAAC,CAAC,GAAG,CAAC,SAAS,IAAI,CAAC,CAAC,GAAG,CAAC,SAAS,IAAI,CAAC,CAAC,GAAG,CAAC,SAAS,EAAE,CAAC;YACxD,IAAI,CAAC;gBACD,MAAM,EAAE,YAAY,EAAE,GAAG,MAAM,MAAM,CAAC,6BAA6B,CAAC,CAAC;gBACrE,MAAM,YAAY,GAAG,IAAI,YAAY,CAAC;oBAClC,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,SAAS;oBACrB,IAAI,EAAE,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,SAAS,IAAI,KAAK,CAAC;oBACxC,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,SAAS;oBACrB,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,SAAS;oBACrB,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,SAAS,IAAI,CAAC,CAAC,GAAG,CAAC,SAAS;iBAC3C,CAAC,CAAC;gBAEH,MAAM,OAAO,GAAG,2BAA2B,CAAC;gBAC5C,IAAI,IAAI,GAAG,EAAE,CAAC;gBACd,IAAI,IAAI,GAAG,EAAE,CAAC;gBAEd,IAAI,IAAI,EAAE,YAAY,EAAE,CAAC;oBACrB,cAAc;oBACd,MAAM,MAAM,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,IAAI,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC;oBACnE,MAAM,UAAU,GAAG,GAAG,MAAM,WAAW,IAAI,CAAC,YAAY,EAAE,CAAC;oBAE3D,IAAI,GAAG,6GAA6G,UAAU,EAAE,CAAC;oBACjI,IAAI,GAAG;;;;;;2CAMgB,UAAU;;mHAE8D,UAAU;;;;;qBAKxG,CAAC;gBACN,CAAC;qBAAM,IAAI,QAAQ,EAAE,CAAC;oBAClB,2DAA2D;oBAC3D,IAAI,GAAG,+EAA+E,QAAQ,yDAAyD,CAAC;oBACxJ,IAAI,GAAG;;;;qEAI0C,QAAQ;;;qBAGxD,CAAC;gBACN,CAAC;gBAED,IAAI,IAAI,IAAI,IAAI,EAAE,CAAC;oBACf,MAAM,YAAY,CAAC,IAAI,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC;gBAChE,CAAC;YAEL,CAAC;YAAC,OAAO,UAAU,EAAE,CAAC;gBAClB,OAAO,CAAC,KAAK,CAAC,8BAA8B,EAAE,UAAU,CAAC,CAAC;YAC9D,CAAC;QACL,CAAC;QAED,OAAO,CAAC,CAAC,IAAI,CAAC;YACV,OAAO,EAAE,cAAc;YACvB,IAAI,EAAE;gBACF,EAAE,EAAE,IAAI,EAAE,EAAE;gBACZ,KAAK,EAAE,IAAI,EAAE,KAAK;gBAClB,IAAI,EAAE,IAAI,EAAE,IAAI;aACnB;SACJ,CAAC,CAAC;IACP,CAAC;IAAC,OAAO,KAAU,EAAE,CAAC;QAClB,IAAI,KAAK,CAAC,OAAO,KAAK,qBAAqB,EAAE,CAAC;YAC1C,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,qBAAqB,EAAE,EAAE,GAAG,CAAC,CAAC;QACzD,CAAC;QACD,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,uBAAuB,EAAE,EAAE,GAAG,CAAC,CAAC;
|
|
1
|
+
{"version":3,"file":"users.handlers.js","sourceRoot":"","sources":["../../../src/modules/users/users.handlers.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAGH,OAAO,EAAE,WAAW,EAAE,MAAM,4BAA4B,CAAC;AAGzD,MAAM,CAAC,KAAK,UAAU,SAAS,CAAC,CAAiB;IAC7C,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IAC7B,MAAM,WAAW,GAAG,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC;IAExC,oCAAoC;IACpC,MAAM,OAAO,GAAG,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IACjC,IAAI,OAAO,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;QAC3B,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,WAAW,EAAE,EAAE,GAAG,CAAC,CAAC;IAC/C,CAAC;IAED,MAAM,KAAK,GAAG,MAAM,WAAW,CAAC,IAAI,EAAE,CAAC;IACvC,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC;AAC7B,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,UAAU,CAAC,CAAwE;IACrG,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IAC7B,MAAM,WAAW,GAAG,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC;IAExC,oBAAoB;IACpB,MAAM,OAAO,GAAG,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IACjC,IAAI,OAAO,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;QAC3B,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,WAAW,EAAE,EAAE,GAAG,CAAC,CAAC;IAC/C,CAAC;IAED,MAAM,IAAI,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACjC,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,IAAI,EAAE,GAAG,IAAI,CAAC;IAEvC,IAAI,CAAC;QACD,MAAM,IAAI,GAAG,MAAM,WAAW,CAAC,MAAM,CAAC;YAClC,KAAK;YACL,QAAQ;YACR,IAAI,EAAE,IAAI,IAAI,QAAQ;SACzB,CAAC,CAAC;QAEH,0CAA0C;QAC1C,IAAI,CAAC,CAAC,GAAG,CAAC,SAAS,IAAI,CAAC,CAAC,GAAG,CAAC,SAAS,IAAI,CAAC,CAAC,GAAG,CAAC,SAAS,EAAE,CAAC;YACxD,IAAI,CAAC;gBACD,MAAM,EAAE,YAAY,EAAE,GAAG,MAAM,MAAM,CAAC,6BAA6B,CAAC,CAAC;gBACrE,MAAM,YAAY,GAAG,IAAI,YAAY,CAAC;oBAClC,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,SAAS;oBACrB,IAAI,EAAE,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,SAAS,IAAI,KAAK,CAAC;oBACxC,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,SAAS;oBACrB,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,SAAS;oBACrB,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,SAAS,IAAI,CAAC,CAAC,GAAG,CAAC,SAAS;iBAC3C,CAAC,CAAC;gBAEH,MAAM,OAAO,GAAG,2BAA2B,CAAC;gBAC5C,IAAI,IAAI,GAAG,EAAE,CAAC;gBACd,IAAI,IAAI,GAAG,EAAE,CAAC;gBAEd,IAAI,IAAI,EAAE,YAAY,EAAE,CAAC;oBACrB,cAAc;oBACd,MAAM,MAAM,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,IAAI,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC;oBACnE,MAAM,UAAU,GAAG,GAAG,MAAM,WAAW,IAAI,CAAC,YAAY,EAAE,CAAC;oBAE3D,IAAI,GAAG,6GAA6G,UAAU,EAAE,CAAC;oBACjI,IAAI,GAAG;;;;;;2CAMgB,UAAU;;mHAE8D,UAAU;;;;;qBAKxG,CAAC;gBACN,CAAC;qBAAM,IAAI,QAAQ,EAAE,CAAC;oBAClB,2DAA2D;oBAC3D,IAAI,GAAG,+EAA+E,QAAQ,yDAAyD,CAAC;oBACxJ,IAAI,GAAG;;;;qEAI0C,QAAQ;;;qBAGxD,CAAC;gBACN,CAAC;gBAED,IAAI,IAAI,IAAI,IAAI,EAAE,CAAC;oBACf,MAAM,YAAY,CAAC,IAAI,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC;gBAChE,CAAC;YAEL,CAAC;YAAC,OAAO,UAAU,EAAE,CAAC;gBAClB,OAAO,CAAC,KAAK,CAAC,8BAA8B,EAAE,UAAU,CAAC,CAAC;YAC9D,CAAC;QACL,CAAC;QAED,OAAO,CAAC,CAAC,IAAI,CAAC;YACV,OAAO,EAAE,cAAc;YACvB,IAAI,EAAE;gBACF,EAAE,EAAE,IAAI,EAAE,EAAE;gBACZ,KAAK,EAAE,IAAI,EAAE,KAAK;gBAClB,IAAI,EAAE,IAAI,EAAE,IAAI;aACnB;SACJ,CAAC,CAAC;IACP,CAAC;IAAC,OAAO,KAAU,EAAE,CAAC;QAClB,IAAI,KAAK,CAAC,OAAO,KAAK,qBAAqB,EAAE,CAAC;YAC1C,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,qBAAqB,EAAE,EAAE,GAAG,CAAC,CAAC;QACzD,CAAC;QACD,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,uBAAuB,EAAE,OAAO,EAAE,8BAA8B,EAAE,EAAE,GAAG,CAAC,CAAC;IACpG,CAAC;AACL,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,UAAU,CAAC,CAAiB;IAC9C,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IAC7B,MAAM,WAAW,GAAG,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC;IACxC,MAAM,EAAE,EAAE,EAAE,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;IAE5C,oBAAoB;IACpB,MAAM,OAAO,GAAG,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IACjC,IAAI,OAAO,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;QAC3B,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,WAAW,EAAE,EAAE,GAAG,CAAC,CAAC;IAC/C,CAAC;IAED,wBAAwB;IACxB,IAAI,OAAO,CAAC,MAAM,KAAK,MAAM,EAAE,CAAC;QAC5B,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,2BAA2B,EAAE,EAAE,GAAG,CAAC,CAAC;IAC/D,CAAC;IAED,MAAM,WAAW,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACjC,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,cAAc,EAAE,CAAC,CAAC;AAC/C,CAAC"}
|
|
@@ -0,0 +1,85 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* A single security advisory affecting a Composer package.
|
|
3
|
+
*/
|
|
4
|
+
export interface SecurityAdvisory {
|
|
5
|
+
/** CVE identifier (e.g. "CVE-2024-12345") or advisory reference */
|
|
6
|
+
cve: string | null;
|
|
7
|
+
/** Human-readable title */
|
|
8
|
+
title: string;
|
|
9
|
+
/** URL to the advisory details */
|
|
10
|
+
link: string;
|
|
11
|
+
/** Affected version constraint(s) in Composer format (e.g. ">=2.0,<2.3.1") */
|
|
12
|
+
affected_versions: string;
|
|
13
|
+
/** Composer package name (e.g. "symfony/http-kernel") */
|
|
14
|
+
package_name: string;
|
|
15
|
+
}
|
|
16
|
+
/**
|
|
17
|
+
* Raw advisory entry from the FriendsOfPHP/security-advisories API.
|
|
18
|
+
* The GitHub API returns a tree of YAML files; we use the packagist.org
|
|
19
|
+
* security advisories API instead, which returns JSON.
|
|
20
|
+
*/
|
|
21
|
+
interface PackagistAdvisory {
|
|
22
|
+
advisoryId: string;
|
|
23
|
+
packageName: string;
|
|
24
|
+
title: string;
|
|
25
|
+
link: string;
|
|
26
|
+
cve: string | null;
|
|
27
|
+
affectedVersions: string;
|
|
28
|
+
reportedAt: string;
|
|
29
|
+
}
|
|
30
|
+
interface PackagistAdvisoriesResponse {
|
|
31
|
+
advisories: Record<string, PackagistAdvisory[]>;
|
|
32
|
+
}
|
|
33
|
+
/**
|
|
34
|
+
* In-memory advisory database backed by Packagist's security advisories API.
|
|
35
|
+
* Periodically refreshes to stay current.
|
|
36
|
+
*/
|
|
37
|
+
export declare class AdvisoryDatabase {
|
|
38
|
+
private advisories;
|
|
39
|
+
private lastRefreshed;
|
|
40
|
+
private refreshing;
|
|
41
|
+
private readonly fetchFn;
|
|
42
|
+
constructor(fetchFn?: typeof fetch);
|
|
43
|
+
/**
|
|
44
|
+
* Check a specific package for known advisories.
|
|
45
|
+
* Returns matching advisories (may be empty).
|
|
46
|
+
*/
|
|
47
|
+
checkPackage(packageName: string): Promise<SecurityAdvisory[]>;
|
|
48
|
+
/**
|
|
49
|
+
* Check multiple packages at once. Returns a map of package name → advisories.
|
|
50
|
+
* Only includes packages that have at least one advisory.
|
|
51
|
+
*/
|
|
52
|
+
checkPackages(packageNames: string[]): Promise<Map<string, SecurityAdvisory[]>>;
|
|
53
|
+
/**
|
|
54
|
+
* Query Packagist API for advisories affecting specific packages.
|
|
55
|
+
* This is more efficient than loading the entire DB for targeted lookups.
|
|
56
|
+
*/
|
|
57
|
+
queryPackages(packageNames: string[]): Promise<Map<string, SecurityAdvisory[]>>;
|
|
58
|
+
/**
|
|
59
|
+
* Query Packagist API, returning both results and upstream error status.
|
|
60
|
+
* Callers can use `upstream_error` to warn users that results may be incomplete.
|
|
61
|
+
*/
|
|
62
|
+
queryPackagesWithStatus(packageNames: string[]): Promise<{
|
|
63
|
+
results: Map<string, SecurityAdvisory[]>;
|
|
64
|
+
upstream_error: boolean;
|
|
65
|
+
}>;
|
|
66
|
+
/**
|
|
67
|
+
* Force a full refresh of the advisory database.
|
|
68
|
+
*/
|
|
69
|
+
refresh(): Promise<number>;
|
|
70
|
+
/**
|
|
71
|
+
* Get the total number of packages with known advisories.
|
|
72
|
+
*/
|
|
73
|
+
get size(): number;
|
|
74
|
+
/**
|
|
75
|
+
* Get all advisories (for the API endpoint).
|
|
76
|
+
*/
|
|
77
|
+
getAllAdvisories(): SecurityAdvisory[];
|
|
78
|
+
private ensureFresh;
|
|
79
|
+
/**
|
|
80
|
+
* Populate the database from a Packagist response (for testing or bulk loading).
|
|
81
|
+
*/
|
|
82
|
+
loadFromResponse(data: PackagistAdvisoriesResponse): void;
|
|
83
|
+
}
|
|
84
|
+
export {};
|
|
85
|
+
//# sourceMappingURL=advisory-db.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"advisory-db.d.ts","sourceRoot":"","sources":["../../../src/plugins/security-advisories/advisory-db.ts"],"names":[],"mappings":"AAQA;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,mEAAmE;IACnE,GAAG,EAAE,MAAM,GAAG,IAAI,CAAC;IACnB,2BAA2B;IAC3B,KAAK,EAAE,MAAM,CAAC;IACd,kCAAkC;IAClC,IAAI,EAAE,MAAM,CAAC;IACb,8EAA8E;IAC9E,iBAAiB,EAAE,MAAM,CAAC;IAC1B,yDAAyD;IACzD,YAAY,EAAE,MAAM,CAAC;CACtB;AAED;;;;GAIG;AACH,UAAU,iBAAiB;IACzB,UAAU,EAAE,MAAM,CAAC;IACnB,WAAW,EAAE,MAAM,CAAC;IACpB,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,MAAM,CAAC;IACb,GAAG,EAAE,MAAM,GAAG,IAAI,CAAC;IACnB,gBAAgB,EAAE,MAAM,CAAC;IACzB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,UAAU,2BAA2B;IACnC,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,CAAC,CAAC;CACjD;AAKD;;;GAGG;AACH,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,UAAU,CAAyC;IAC3D,OAAO,CAAC,aAAa,CAAK;IAC1B,OAAO,CAAC,UAAU,CAAS;IAC3B,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAe;gBAE3B,OAAO,GAAE,OAAO,KAAa;IAIzC;;;OAGG;IACG,YAAY,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,gBAAgB,EAAE,CAAC;IAKpE;;;OAGG;IACG,aAAa,CAAC,YAAY,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,gBAAgB,EAAE,CAAC,CAAC;IAarF;;;OAGG;IACG,aAAa,CAAC,YAAY,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,gBAAgB,EAAE,CAAC,CAAC;IAKrF;;;OAGG;IACG,uBAAuB,CAC3B,YAAY,EAAE,MAAM,EAAE,GACrB,OAAO,CAAC;QAAE,OAAO,EAAE,GAAG,CAAC,MAAM,EAAE,gBAAgB,EAAE,CAAC,CAAC;QAAC,cAAc,EAAE,OAAO,CAAA;KAAE,CAAC;IAkDjF;;OAEG;IACG,OAAO,IAAI,OAAO,CAAC,MAAM,CAAC;IAyBhC;;OAEG;IACH,IAAI,IAAI,IAAI,MAAM,CAEjB;IAED;;OAEG;IACH,gBAAgB,IAAI,gBAAgB,EAAE;YAQxB,WAAW;IAMzB;;OAEG;IACH,gBAAgB,CAAC,IAAI,EAAE,2BAA2B,GAAG,IAAI;CAgB1D"}
|
|
@@ -0,0 +1,161 @@
|
|
|
1
|
+
/*
|
|
2
|
+
* PACKAGE.broker
|
|
3
|
+
* Copyright (C) 2025 Łukasz Bajsarowicz
|
|
4
|
+
* Licensed under AGPL-3.0
|
|
5
|
+
*/
|
|
6
|
+
import { getLogger } from '../../utils/logger';
|
|
7
|
+
const PACKAGIST_ADVISORIES_URL = 'https://packagist.org/api/security-advisories/';
|
|
8
|
+
const REFRESH_INTERVAL_MS = 6 * 60 * 60 * 1000; // 6 hours
|
|
9
|
+
/**
|
|
10
|
+
* In-memory advisory database backed by Packagist's security advisories API.
|
|
11
|
+
* Periodically refreshes to stay current.
|
|
12
|
+
*/
|
|
13
|
+
export class AdvisoryDatabase {
|
|
14
|
+
advisories = new Map();
|
|
15
|
+
lastRefreshed = 0;
|
|
16
|
+
refreshing = false;
|
|
17
|
+
fetchFn;
|
|
18
|
+
constructor(fetchFn = fetch) {
|
|
19
|
+
this.fetchFn = fetchFn;
|
|
20
|
+
}
|
|
21
|
+
/**
|
|
22
|
+
* Check a specific package for known advisories.
|
|
23
|
+
* Returns matching advisories (may be empty).
|
|
24
|
+
*/
|
|
25
|
+
async checkPackage(packageName) {
|
|
26
|
+
await this.ensureFresh();
|
|
27
|
+
return this.advisories.get(packageName) || [];
|
|
28
|
+
}
|
|
29
|
+
/**
|
|
30
|
+
* Check multiple packages at once. Returns a map of package name → advisories.
|
|
31
|
+
* Only includes packages that have at least one advisory.
|
|
32
|
+
*/
|
|
33
|
+
async checkPackages(packageNames) {
|
|
34
|
+
await this.ensureFresh();
|
|
35
|
+
const results = new Map();
|
|
36
|
+
for (const name of packageNames) {
|
|
37
|
+
const advisories = this.advisories.get(name);
|
|
38
|
+
if (advisories && advisories.length > 0) {
|
|
39
|
+
results.set(name, advisories);
|
|
40
|
+
}
|
|
41
|
+
}
|
|
42
|
+
return results;
|
|
43
|
+
}
|
|
44
|
+
/**
|
|
45
|
+
* Query Packagist API for advisories affecting specific packages.
|
|
46
|
+
* This is more efficient than loading the entire DB for targeted lookups.
|
|
47
|
+
*/
|
|
48
|
+
async queryPackages(packageNames) {
|
|
49
|
+
const { results } = await this.queryPackagesWithStatus(packageNames);
|
|
50
|
+
return results;
|
|
51
|
+
}
|
|
52
|
+
/**
|
|
53
|
+
* Query Packagist API, returning both results and upstream error status.
|
|
54
|
+
* Callers can use `upstream_error` to warn users that results may be incomplete.
|
|
55
|
+
*/
|
|
56
|
+
async queryPackagesWithStatus(packageNames) {
|
|
57
|
+
const logger = getLogger();
|
|
58
|
+
const results = new Map();
|
|
59
|
+
if (packageNames.length === 0)
|
|
60
|
+
return { results, upstream_error: false };
|
|
61
|
+
try {
|
|
62
|
+
const params = new URLSearchParams();
|
|
63
|
+
for (const name of packageNames) {
|
|
64
|
+
params.append('packages[]', name);
|
|
65
|
+
}
|
|
66
|
+
const response = await this.fetchFn(`${PACKAGIST_ADVISORIES_URL}?${params.toString()}`, {
|
|
67
|
+
headers: {
|
|
68
|
+
Accept: 'application/json',
|
|
69
|
+
'User-Agent': 'PackageBroker/1.0',
|
|
70
|
+
},
|
|
71
|
+
});
|
|
72
|
+
if (!response.ok) {
|
|
73
|
+
logger.warn('Packagist advisories API returned non-OK', { status: response.status });
|
|
74
|
+
return { results, upstream_error: true };
|
|
75
|
+
}
|
|
76
|
+
const data = (await response.json());
|
|
77
|
+
for (const [pkgName, entries] of Object.entries(data.advisories || {})) {
|
|
78
|
+
const advisories = entries.map((entry) => ({
|
|
79
|
+
cve: entry.cve,
|
|
80
|
+
title: entry.title,
|
|
81
|
+
link: entry.link,
|
|
82
|
+
affected_versions: entry.affectedVersions,
|
|
83
|
+
package_name: pkgName,
|
|
84
|
+
}));
|
|
85
|
+
if (advisories.length > 0) {
|
|
86
|
+
results.set(pkgName, advisories);
|
|
87
|
+
}
|
|
88
|
+
}
|
|
89
|
+
return { results, upstream_error: false };
|
|
90
|
+
}
|
|
91
|
+
catch (err) {
|
|
92
|
+
logger.error('Failed to query Packagist advisories', {}, err instanceof Error ? err : new Error(String(err)));
|
|
93
|
+
return { results, upstream_error: true };
|
|
94
|
+
}
|
|
95
|
+
}
|
|
96
|
+
/**
|
|
97
|
+
* Force a full refresh of the advisory database.
|
|
98
|
+
*/
|
|
99
|
+
async refresh() {
|
|
100
|
+
const logger = getLogger();
|
|
101
|
+
if (this.refreshing)
|
|
102
|
+
return this.advisories.size;
|
|
103
|
+
this.refreshing = true;
|
|
104
|
+
try {
|
|
105
|
+
// Fetch all advisories (Packagist supports fetching without filter for full DB)
|
|
106
|
+
// For production, we'd paginate; for now, we rely on targeted queries
|
|
107
|
+
// and keep a lightweight cache of recently checked packages.
|
|
108
|
+
logger.info('Refreshing security advisory database');
|
|
109
|
+
this.lastRefreshed = Date.now();
|
|
110
|
+
return this.advisories.size;
|
|
111
|
+
}
|
|
112
|
+
catch (err) {
|
|
113
|
+
logger.error('Failed to refresh advisory database', {}, err instanceof Error ? err : new Error(String(err)));
|
|
114
|
+
return this.advisories.size;
|
|
115
|
+
}
|
|
116
|
+
finally {
|
|
117
|
+
this.refreshing = false;
|
|
118
|
+
}
|
|
119
|
+
}
|
|
120
|
+
/**
|
|
121
|
+
* Get the total number of packages with known advisories.
|
|
122
|
+
*/
|
|
123
|
+
get size() {
|
|
124
|
+
return this.advisories.size;
|
|
125
|
+
}
|
|
126
|
+
/**
|
|
127
|
+
* Get all advisories (for the API endpoint).
|
|
128
|
+
*/
|
|
129
|
+
getAllAdvisories() {
|
|
130
|
+
const all = [];
|
|
131
|
+
for (const advisories of this.advisories.values()) {
|
|
132
|
+
all.push(...advisories);
|
|
133
|
+
}
|
|
134
|
+
return all;
|
|
135
|
+
}
|
|
136
|
+
async ensureFresh() {
|
|
137
|
+
if (Date.now() - this.lastRefreshed > REFRESH_INTERVAL_MS) {
|
|
138
|
+
await this.refresh();
|
|
139
|
+
}
|
|
140
|
+
}
|
|
141
|
+
/**
|
|
142
|
+
* Populate the database from a Packagist response (for testing or bulk loading).
|
|
143
|
+
*/
|
|
144
|
+
loadFromResponse(data) {
|
|
145
|
+
this.advisories.clear();
|
|
146
|
+
for (const [pkgName, entries] of Object.entries(data.advisories || {})) {
|
|
147
|
+
const advisories = entries.map((entry) => ({
|
|
148
|
+
cve: entry.cve,
|
|
149
|
+
title: entry.title,
|
|
150
|
+
link: entry.link,
|
|
151
|
+
affected_versions: entry.affectedVersions,
|
|
152
|
+
package_name: pkgName,
|
|
153
|
+
}));
|
|
154
|
+
if (advisories.length > 0) {
|
|
155
|
+
this.advisories.set(pkgName, advisories);
|
|
156
|
+
}
|
|
157
|
+
}
|
|
158
|
+
this.lastRefreshed = Date.now();
|
|
159
|
+
}
|
|
160
|
+
}
|
|
161
|
+
//# sourceMappingURL=advisory-db.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"advisory-db.js","sourceRoot":"","sources":["../../../src/plugins/security-advisories/advisory-db.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,SAAS,EAAE,MAAM,oBAAoB,CAAC;AAqC/C,MAAM,wBAAwB,GAAG,gDAAgD,CAAC;AAClF,MAAM,mBAAmB,GAAG,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,UAAU;AAE1D;;;GAGG;AACH,MAAM,OAAO,gBAAgB;IACnB,UAAU,GAAG,IAAI,GAAG,EAA8B,CAAC;IACnD,aAAa,GAAG,CAAC,CAAC;IAClB,UAAU,GAAG,KAAK,CAAC;IACV,OAAO,CAAe;IAEvC,YAAY,UAAwB,KAAK;QACvC,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;IACzB,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,YAAY,CAAC,WAAmB;QACpC,MAAM,IAAI,CAAC,WAAW,EAAE,CAAC;QACzB,OAAO,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC;IAChD,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,aAAa,CAAC,YAAsB;QACxC,MAAM,IAAI,CAAC,WAAW,EAAE,CAAC;QAEzB,MAAM,OAAO,GAAG,IAAI,GAAG,EAA8B,CAAC;QACtD,KAAK,MAAM,IAAI,IAAI,YAAY,EAAE,CAAC;YAChC,MAAM,UAAU,GAAG,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;YAC7C,IAAI,UAAU,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBACxC,OAAO,CAAC,GAAG,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;YAChC,CAAC;QACH,CAAC;QACD,OAAO,OAAO,CAAC;IACjB,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,aAAa,CAAC,YAAsB;QACxC,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC,YAAY,CAAC,CAAC;QACrE,OAAO,OAAO,CAAC;IACjB,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,uBAAuB,CAC3B,YAAsB;QAEtB,MAAM,MAAM,GAAG,SAAS,EAAE,CAAC;QAC3B,MAAM,OAAO,GAAG,IAAI,GAAG,EAA8B,CAAC;QAEtD,IAAI,YAAY,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,EAAE,OAAO,EAAE,cAAc,EAAE,KAAK,EAAE,CAAC;QAEzE,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,IAAI,eAAe,EAAE,CAAC;YACrC,KAAK,MAAM,IAAI,IAAI,YAAY,EAAE,CAAC;gBAChC,MAAM,CAAC,MAAM,CAAC,YAAY,EAAE,IAAI,CAAC,CAAC;YACpC,CAAC;YAED,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,GAAG,wBAAwB,IAAI,MAAM,CAAC,QAAQ,EAAE,EAAE,EAAE;gBACtF,OAAO,EAAE;oBACP,MAAM,EAAE,kBAAkB;oBAC1B,YAAY,EAAE,mBAAmB;iBAClC;aACF,CAAC,CAAC;YAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,CAAC,IAAI,CAAC,0CAA0C,EAAE,EAAE,MAAM,EAAE,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;gBACrF,OAAO,EAAE,OAAO,EAAE,cAAc,EAAE,IAAI,EAAE,CAAC;YAC3C,CAAC;YAED,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAgC,CAAC;YAEpE,KAAK,MAAM,CAAC,OAAO,EAAE,OAAO,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,UAAU,IAAI,EAAE,CAAC,EAAE,CAAC;gBACvE,MAAM,UAAU,GAAuB,OAAO,CAAC,GAAG,CAAC,CAAC,KAAwB,EAAE,EAAE,CAAC,CAAC;oBAChF,GAAG,EAAE,KAAK,CAAC,GAAG;oBACd,KAAK,EAAE,KAAK,CAAC,KAAK;oBAClB,IAAI,EAAE,KAAK,CAAC,IAAI;oBAChB,iBAAiB,EAAE,KAAK,CAAC,gBAAgB;oBACzC,YAAY,EAAE,OAAO;iBACtB,CAAC,CAAC,CAAC;gBACJ,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;oBAC1B,OAAO,CAAC,GAAG,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC;gBACnC,CAAC;YACH,CAAC;YAED,OAAO,EAAE,OAAO,EAAE,cAAc,EAAE,KAAK,EAAE,CAAC;QAC5C,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,MAAM,CAAC,KAAK,CACV,sCAAsC,EACtC,EAAE,EACF,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CACpD,CAAC;YACF,OAAO,EAAE,OAAO,EAAE,cAAc,EAAE,IAAI,EAAE,CAAC;QAC3C,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO;QACX,MAAM,MAAM,GAAG,SAAS,EAAE,CAAC;QAE3B,IAAI,IAAI,CAAC,UAAU;YAAE,OAAO,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC;QACjD,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC;QAEvB,IAAI,CAAC;YACH,gFAAgF;YAChF,sEAAsE;YACtE,6DAA6D;YAC7D,MAAM,CAAC,IAAI,CAAC,uCAAuC,CAAC,CAAC;YACrD,IAAI,CAAC,aAAa,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YAChC,OAAO,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC;QAC9B,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,MAAM,CAAC,KAAK,CACV,qCAAqC,EACrC,EAAE,EACF,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CACpD,CAAC;YACF,OAAO,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC;QAC9B,CAAC;gBAAS,CAAC;YACT,IAAI,CAAC,UAAU,GAAG,KAAK,CAAC;QAC1B,CAAC;IACH,CAAC;IAED;;OAEG;IACH,IAAI,IAAI;QACN,OAAO,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC;IAC9B,CAAC;IAED;;OAEG;IACH,gBAAgB;QACd,MAAM,GAAG,GAAuB,EAAE,CAAC;QACnC,KAAK,MAAM,UAAU,IAAI,IAAI,CAAC,UAAU,CAAC,MAAM,EAAE,EAAE,CAAC;YAClD,GAAG,CAAC,IAAI,CAAC,GAAG,UAAU,CAAC,CAAC;QAC1B,CAAC;QACD,OAAO,GAAG,CAAC;IACb,CAAC;IAEO,KAAK,CAAC,WAAW;QACvB,IAAI,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,aAAa,GAAG,mBAAmB,EAAE,CAAC;YAC1D,MAAM,IAAI,CAAC,OAAO,EAAE,CAAC;QACvB,CAAC;IACH,CAAC;IAED;;OAEG;IACH,gBAAgB,CAAC,IAAiC;QAChD,IAAI,CAAC,UAAU,CAAC,KAAK,EAAE,CAAC;QACxB,KAAK,MAAM,CAAC,OAAO,EAAE,OAAO,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,UAAU,IAAI,EAAE,CAAC,EAAE,CAAC;YACvE,MAAM,UAAU,GAAuB,OAAO,CAAC,GAAG,CAAC,CAAC,KAAwB,EAAE,EAAE,CAAC,CAAC;gBAChF,GAAG,EAAE,KAAK,CAAC,GAAG;gBACd,KAAK,EAAE,KAAK,CAAC,KAAK;gBAClB,IAAI,EAAE,KAAK,CAAC,IAAI;gBAChB,iBAAiB,EAAE,KAAK,CAAC,gBAAgB;gBACzC,YAAY,EAAE,OAAO;aACtB,CAAC,CAAC,CAAC;YACJ,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAC1B,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC;YAC3C,CAAC;QACH,CAAC;QACD,IAAI,CAAC,aAAa,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAClC,CAAC;CACF"}
|
|
@@ -0,0 +1,44 @@
|
|
|
1
|
+
import { AdvisoryDatabase, type SecurityAdvisory } from './advisory-db';
|
|
2
|
+
export interface VulnerabilityCheckResult {
|
|
3
|
+
package_name: string;
|
|
4
|
+
version: string;
|
|
5
|
+
advisories: SecurityAdvisory[];
|
|
6
|
+
is_vulnerable: boolean;
|
|
7
|
+
}
|
|
8
|
+
/**
|
|
9
|
+
* Service for checking packages against known security advisories.
|
|
10
|
+
* Uses the Packagist security advisories API for real-time lookups.
|
|
11
|
+
*/
|
|
12
|
+
export declare class SecurityAdvisoryService {
|
|
13
|
+
private readonly db;
|
|
14
|
+
constructor(db?: AdvisoryDatabase);
|
|
15
|
+
/**
|
|
16
|
+
* Check a single package/version for vulnerabilities.
|
|
17
|
+
*/
|
|
18
|
+
checkPackage(packageName: string, version: string): Promise<VulnerabilityCheckResult>;
|
|
19
|
+
/**
|
|
20
|
+
* Check multiple packages for vulnerabilities (batch).
|
|
21
|
+
*/
|
|
22
|
+
checkPackages(packages: Array<{
|
|
23
|
+
name: string;
|
|
24
|
+
version: string;
|
|
25
|
+
}>): Promise<VulnerabilityCheckResult[]>;
|
|
26
|
+
/**
|
|
27
|
+
* Get the underlying advisory database for direct access.
|
|
28
|
+
*/
|
|
29
|
+
getDatabase(): AdvisoryDatabase;
|
|
30
|
+
/**
|
|
31
|
+
* Filter advisories by checking if the given version falls within the affected range.
|
|
32
|
+
* Uses Composer-style version constraints (translated to semver ranges).
|
|
33
|
+
*/
|
|
34
|
+
private filterByVersion;
|
|
35
|
+
/**
|
|
36
|
+
* Convert a Composer version constraint to a semver range.
|
|
37
|
+
* Handles common patterns:
|
|
38
|
+
* - ">=2.0,<2.3.1" → ">=2.0.0 <2.3.1"
|
|
39
|
+
* - ">=1.0,<1.5|>=2.0,<2.1" → ">=1.0.0 <1.5.0 || >=2.0.0 <2.1.0"
|
|
40
|
+
* - "<5.4.46" → "<5.4.46"
|
|
41
|
+
*/
|
|
42
|
+
private composerConstraintToSemver;
|
|
43
|
+
}
|
|
44
|
+
//# sourceMappingURL=advisory-service.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"advisory-service.d.ts","sourceRoot":"","sources":["../../../src/plugins/security-advisories/advisory-service.ts"],"names":[],"mappings":"AAMA,OAAO,EAAE,gBAAgB,EAAE,KAAK,gBAAgB,EAAE,MAAM,eAAe,CAAC;AAIxE,MAAM,WAAW,wBAAwB;IACvC,YAAY,EAAE,MAAM,CAAC;IACrB,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,gBAAgB,EAAE,CAAC;IAC/B,aAAa,EAAE,OAAO,CAAC;CACxB;AAED;;;GAGG;AACH,qBAAa,uBAAuB;IAClC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAmB;gBAE1B,EAAE,CAAC,EAAE,gBAAgB;IAIjC;;OAEG;IACG,YAAY,CAAC,WAAW,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,wBAAwB,CAAC;IAc3F;;OAEG;IACG,aAAa,CACjB,QAAQ,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC,GACjD,OAAO,CAAC,wBAAwB,EAAE,CAAC;IAiBtC;;OAEG;IACH,WAAW,IAAI,gBAAgB;IAI/B;;;OAGG;IACH,OAAO,CAAC,eAAe;IAyBvB;;;;;;OAMG;IACH,OAAO,CAAC,0BAA0B;CA8BnC"}
|