@paklo/core 0.1.0

package/dist/node/http-BG_-s47I.js

@@ -0,0 +1,245 @@
+import { t as environment } from "./environment-DX5CD-dD.js";
+
+//#region src/http/headers.ts
+const HEADER_NAME_CONTENT_DISPOSITION = "Content-Disposition";
+const HEADER_NAME_CONTENT_TYPE = "Content-Type";
+const HEADER_NAME_ACCEPT = "Accept";
+const HEADER_NAME_USER_AGENT = "User-Agent";
+const HEADER_NAME_AUTHORIZATION = "Authorization";
+
+//#endregion
+//#region src/http/multipart.ts
+var MultipartFormDataBody = class {
+	type = "multipart/form-data";
+	boundary = `${Math.random().toString(36).substring(2)}`;
+	parts = [];
+	async encode() {
+		if (this.parts.length === 0) throw new Error("MultipartFormDataBody must have at least one part");
+		const data = [];
+		for (const part of this.parts) {
+			data.push(`--${this.boundary}\r\n`);
+			for (const [key, value] of Object.entries(part.headers)) data.push(`${key}: ${value}\r\n`);
+			data.push("\r\n");
+			data.push(part.body);
+			data.push("\r\n");
+		}
+		data.push(`--${this.boundary}--\r\n`);
+		const list = [];
+		for (const item of data) if (item instanceof File) list.push(Buffer.from(await item.arrayBuffer()));
+		else if (typeof item === "string") list.push(Buffer.from(item, "utf8"));
+		else list.push(item);
+		return Buffer.concat(list);
+	}
+	getBoundary() {
+		return this.boundary;
+	}
+	getContentType() {
+		return `${this.type}; boundary=${this.boundary}`;
+	}
+	add(name, value) {
+		const part = createPart(name, value);
+		this.parts.push(part);
+	}
+	addFile(name, file) {
+		const part = createPart(name, file, file.name, file.type);
+		this.parts.push(part);
+	}
+};
+function createPart(name, body, filename, contentType) {
+	const headers = {};
+	headers[HEADER_NAME_CONTENT_DISPOSITION] = `form-data; name="${name}"${filename ? `; filename="${filename}"` : ""}`;
+	if (contentType) headers[HEADER_NAME_CONTENT_TYPE] = contentType;
+	return {
+		name,
+		headers,
+		body
+	};
+}
+
+//#endregion
+//#region src/http/inner.ts
+const defaultUserAgent = `paklo/${environment.sha?.substring(0, 7) ?? "dogfood"}`;
+var InnerApiClient = class {
+	baseUrl;
+	headers;
+	token;
+	/**
+	* Create a new API client.
+	* @param options The options to use for the client.
+	*/
+	constructor({ baseUrl, token }) {
+		this.baseUrl = baseUrl;
+		this.headers = new Headers({ [HEADER_NAME_ACCEPT]: "application/json" });
+		this.token = token;
+	}
+	async get(url, options) {
+		return this.request({
+			url: this.makeUrl(url, options),
+			method: "GET",
+			...options
+		});
+	}
+	async post(url, options) {
+		return this.request({
+			method: "POST",
+			url: this.makeUrl(url, options),
+			...options
+		});
+	}
+	async put(url, options) {
+		return this.request({
+			method: "PUT",
+			url: this.makeUrl(url, options),
+			...options
+		});
+	}
+	async patch(url, options) {
+		return this.request({
+			method: "PATCH",
+			url: this.makeUrl(url, options),
+			...options
+		});
+	}
+	async delete(url, options) {
+		return this.request({
+			method: "DELETE",
+			url: this.makeUrl(url, options),
+			...options
+		});
+	}
+	async request(options) {
+		const { method, url, payload, userAgent, headers: additionalHeaders, schema } = options;
+		const headers = new Headers(this.headers);
+		const finalUserAgent = userAgent && userAgent.length > 0 ? `${userAgent} (${defaultUserAgent})` : defaultUserAgent;
+		headers.set(HEADER_NAME_USER_AGENT, finalUserAgent);
+		if (this.token) headers.set(HEADER_NAME_AUTHORIZATION, `Bearer ${this.token}`);
+		if (additionalHeaders) if (additionalHeaders instanceof Headers) additionalHeaders.forEach((value, key) => headers.set(key, value));
+		else if (Array.isArray(additionalHeaders)) additionalHeaders.forEach(([key, value]) => headers.set(key, value));
+		else Object.entries(additionalHeaders).forEach(([key, value]) => headers.set(key, value));
+		let body;
+		if (skipSerialization(payload)) body = payload;
+		else if (payload instanceof MultipartFormDataBody) {
+			body = new Uint8Array(await payload.encode());
+			headers.set(HEADER_NAME_CONTENT_TYPE, payload.getContentType());
+		} else {
+			body = JSON.stringify(payload);
+			headers.set(HEADER_NAME_CONTENT_TYPE, "application/json");
+		}
+		try {
+			const response = await fetch(url, {
+				method,
+				headers,
+				body
+			});
+			const { ok: successful, status, statusText } = response;
+			if (!successful) try {
+				const rawError = await response.text();
+				return {
+					headers: response.headers,
+					successful,
+					status,
+					statusText,
+					error: JSON.parse(rawError)
+				};
+			} catch (err) {
+				if (err instanceof SyntaxError) return {
+					headers: response.headers,
+					successful,
+					status,
+					statusText,
+					error: {
+						title: "Unknown error",
+						status,
+						statusText: response.statusText
+					}
+				};
+				const error = {
+					title: (err instanceof Error ? err.message : void 0) ?? "Unknown error",
+					status: response.status,
+					statusText: response.statusText
+				};
+				return {
+					headers: response.headers,
+					successful,
+					status,
+					statusText,
+					error
+				};
+			}
+			const contentLength = response.headers.get("content-length");
+			let data = contentLength && contentLength !== "0" ? await response.json() : void 0;
+			if (data && schema) {
+				const result = await schema.safeParseAsync(data);
+				if (!result.success) return {
+					headers: response.headers,
+					successful: false,
+					status,
+					statusText,
+					data,
+					error: {
+						title: "application_error",
+						detail: "Schema validation error",
+						errors: result.error.flatten().fieldErrors,
+						status: response.status,
+						statusText: response.statusText
+					}
+				};
+				data = result.data;
+			}
+			return {
+				headers: response.headers,
+				data,
+				successful,
+				status,
+				statusText
+			};
+		} catch (err) {
+			return {
+				headers: new Headers(),
+				successful: false,
+				status: -1,
+				statusText: "Application Error",
+				error: {
+					title: "application_error",
+					detail: `Unable to fetch data. The request could not be resolved. ${err}`
+				}
+			};
+		}
+	}
+	makeUrl(url, options) {
+		if (url.startsWith("http://") || url.startsWith("https://")) return url;
+		return `${options?.baseUrl ?? this.baseUrl}${url}`;
+	}
+};
+/**
+* Whether to skip serialization of the payload.
+* @param payload The payload to check.
+* @returns true if the payload should not be serialized; otherwise, false.
+*/
+function skipSerialization(payload) {
+	return payload instanceof FormData || payload instanceof URLSearchParams || payload instanceof ReadableStream || payload instanceof Blob || payload instanceof ArrayBuffer || payload instanceof Buffer || typeof payload === "string" || !payload;
+}
+/** Http request error */
+var HttpRequestError = class extends Error {
+	constructor(message, code) {
+		super(message);
+		this.code = code;
+	}
+};
+function isErrorTemporaryFailure(e) {
+	if (e instanceof HttpRequestError) switch (e.code) {
+		case 502: return true;
+		case 503: return true;
+		case 504: return true;
+		default: return false;
+	}
+	else if (e?.code) switch (e.code) {
+		case "ETIMEDOUT": return true;
+		default: return false;
+	}
+	else return false;
+}
+
+//#endregion
+export { HEADER_NAME_AUTHORIZATION as a, HEADER_NAME_USER_AGENT as c, HEADER_NAME_ACCEPT as i, InnerApiClient as n, HEADER_NAME_CONTENT_DISPOSITION as o, isErrorTemporaryFailure as r, HEADER_NAME_CONTENT_TYPE as s, HttpRequestError as t };
+//# sourceMappingURL=http-BG_-s47I.js.map

package/dist/node/http-BG_-s47I.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"http-BG_-s47I.js","names":["data: Array<MultipartFormDataBodyPart['body']>","list: Buffer[]","headers: Record<string, string>","body: BodyInit | undefined","error: ProblemDetails","code: number"],"sources":["../../src/http/headers.ts","../../src/http/multipart.ts","../../src/http/inner.ts"],"sourcesContent":["export const HEADER_NAME_CONTENT_DISPOSITION = 'Content-Disposition';\nexport const HEADER_NAME_CONTENT_TYPE = 'Content-Type';\nexport const HEADER_NAME_ACCEPT = 'Accept';\nexport const HEADER_NAME_USER_AGENT = 'User-Agent';\nexport const HEADER_NAME_AUTHORIZATION = 'Authorization';\n","import { HEADER_NAME_CONTENT_DISPOSITION, HEADER_NAME_CONTENT_TYPE } from './headers';\n\nexport class MultipartFormDataBody {\n  private type = 'multipart/form-data';\n  private boundary: string = `${Math.random().toString(36).substring(2)}`;\n  private parts: Array<MultipartFormDataBodyPart> = [];\n\n  public async encode(): Promise<Buffer> {\n    if (this.parts.length === 0) {\n      throw new Error('MultipartFormDataBody must have at least one part');\n    }\n\n    const data: Array<MultipartFormDataBodyPart['body']> = [];\n\n    for (const part of this.parts) {\n      // write boundary\n      data.push(`--${this.boundary}\\r\\n`);\n\n      // write headers\n      for (const [key, value] of Object.entries(part.headers)) {\n        data.push(`${key}: ${value}\\r\\n`);\n      }\n      data.push('\\r\\n');\n\n      // write body\n      data.push(part.body);\n      data.push('\\r\\n');\n    }\n\n    data.push(`--${this.boundary}--\\r\\n`);\n\n    const list: Buffer[] = [];\n    for (const item of data) {\n      if (item instanceof File) list.push(Buffer.from(await item.arrayBuffer()));\n      else if (typeof item === 'string') list.push(Buffer.from(item, 'utf8'));\n      else list.push(item);\n    }\n    return Buffer.concat(list);\n  }\n\n  public getBoundary(): string {\n    return this.boundary;\n  }\n\n  public getContentType(): string {\n    return `${this.type}; boundary=${this.boundary}`;\n  }\n\n  public add(name: string, value: string) {\n    const part = createPart(name, value);\n    this.parts.push(part);\n  }\n\n  public addFile(name: string, file: File) {\n    const part = createPart(name, file, file.name, file.type);\n    this.parts.push(part);\n  }\n}\n\ntype MultipartFormDataBodyPart = {\n  name: string;\n  headers: Record<string, string>;\n  body: Buffer | File | string;\n};\n\nfunction createPart(\n  name: string,\n  body: MultipartFormDataBodyPart['body'],\n  filename?: string,\n  contentType?: string,\n): MultipartFormDataBodyPart {\n  const headers: Record<string, string> = {};\n  headers[HEADER_NAME_CONTENT_DISPOSITION] = `form-data; name=\"${name}\"${filename ? `; filename=\"${filename}\"` : ''}`;\n  if (contentType) headers[HEADER_NAME_CONTENT_TYPE] = contentType;\n  return { name, headers, body };\n}\n","import type { ZodType } from 'zod/v4';\n\nimport { environment } from '@/environment';\n\nimport {\n  HEADER_NAME_ACCEPT,\n  HEADER_NAME_AUTHORIZATION,\n  HEADER_NAME_CONTENT_TYPE,\n  HEADER_NAME_USER_AGENT,\n} from './headers';\nimport { MultipartFormDataBody } from './multipart';\nimport type { ProblemDetails } from './problem';\n\nconst defaultUserAgent = `paklo/${environment.sha?.substring(0, 7) ?? 'dogfood'}`;\n\nexport type CreateInnerApiClientOptions = {\n  /**\n   * The base URL to use for the API.\n   * @example 'https://api.paklo.app'\n   */\n  baseUrl: string;\n\n  /** The token to use for authentication. This can be a JWT or specialized key. */\n  token?: string;\n};\n\nexport type RequestOptions = {\n  /**\n   * Value for the `User-Agent` header.\n   * This prepends the default value (e.g. `paklo/ab26320`)\n   * which is important when we need to propagate the browser information to the server.\n   */\n  userAgent?: string;\n};\n\nexport type ResourceResponse<T = Record<string, unknown>> = {\n  /** The headers of the response. */\n  headers: Headers;\n\n  /** Whether the request was successful. */\n  successful: boolean;\n\n  /** The status code of the response. */\n  status: number;\n\n  /** The status text of the response. */\n  statusText: string;\n\n  /** The data of the response. */\n  data?: T;\n\n  /** The error of the response. */\n  error?: ProblemDetails;\n};\n\nexport type InnerRequestOptions<T> = RequestOptions & {\n  /**\n   * The base URL to use for the request.\n   * This overrides the default base URL.\n   * @example 'https://api.paklo.app'\n   */\n  baseUrl?: string;\n\n  /** Additional headers to use for the request. */\n  headers?: HeadersInit;\n\n  /** The payload to use for the request. */\n  payload?: Record<string, unknown> | MultipartFormDataBody | ReadableStream | XMLHttpRequestBodyInit;\n\n  /** The schema to use when parsing the response. */\n  schema?: ZodType<T>;\n};\n\ntype InnerRequestOptionsComplete<T> = InnerRequestOptions<T> & {\n  /** The method to use for the request. */\n  method: 'GET' | 'POST' | 'PUT' | 'PATCH' | 'DELETE';\n\n  /** The URL to use for the request. */\n  url: string;\n};\n\nexport class InnerApiClient {\n  private readonly baseUrl: string;\n  private readonly headers: Headers;\n  private readonly token?: string;\n\n  /**\n   * Create a new API client.\n   * @param options The options to use for the client.\n   */\n  constructor({ baseUrl, token }: CreateInnerApiClientOptions) {\n    this.baseUrl = baseUrl;\n\n    this.headers = new Headers({\n      [HEADER_NAME_ACCEPT]: 'application/json',\n    });\n\n    this.token = token;\n  }\n\n  async get<T>(url: string, options?: InnerRequestOptions<T>) {\n    return this.request<T>({\n      url: this.makeUrl(url, options),\n      method: 'GET',\n      ...options,\n    });\n  }\n\n  async post<T>(url: string, options?: InnerRequestOptions<T>) {\n    return this.request<T>({\n      method: 'POST',\n      url: this.makeUrl(url, options),\n      ...options,\n    });\n  }\n\n  async put<T>(url: string, options?: InnerRequestOptions<T>) {\n    return this.request<T>({\n      method: 'PUT',\n      url: this.makeUrl(url, options),\n      ...options,\n    });\n  }\n\n  async patch<T>(url: string, options?: InnerRequestOptions<T>) {\n    return this.request<T>({\n      method: 'PATCH',\n      url: this.makeUrl(url, options),\n      ...options,\n    });\n  }\n\n  async delete<T>(url: string, options?: InnerRequestOptions<T>) {\n    return this.request<T>({\n      method: 'DELETE',\n      url: this.makeUrl(url, options),\n      ...options,\n    });\n  }\n\n  async request<T>(options: InnerRequestOptionsComplete<T>): Promise<ResourceResponse<T>> {\n    const { method, url, payload, userAgent, headers: additionalHeaders, schema } = options;\n\n    // create headers for the request\n    const headers = new Headers(this.headers);\n    const finalUserAgent = userAgent && userAgent.length > 0 ? `${userAgent} (${defaultUserAgent})` : defaultUserAgent;\n    headers.set(HEADER_NAME_USER_AGENT, finalUserAgent);\n\n    // populate authorization header\n    if (this.token) {\n      headers.set(HEADER_NAME_AUTHORIZATION, `Bearer ${this.token}`);\n    }\n\n    // populate additional headers\n    // biome-ignore-start lint/suspicious/useIterableCallbackReturn: not used\n    if (additionalHeaders) {\n      if (additionalHeaders instanceof Headers) {\n        additionalHeaders.forEach((value, key) => headers.set(key, value as string));\n      } else if (Array.isArray(additionalHeaders)) {\n        additionalHeaders.forEach(([key, value]) => headers.set(key, value));\n      } else {\n        Object.entries(additionalHeaders).forEach(([key, value]) => headers.set(key, value as string));\n      }\n    }\n    // biome-ignore-end lint/suspicious/useIterableCallbackReturn: not used\n\n    // prepare body\n    let body: BodyInit | undefined;\n    if (skipSerialization(payload)) body = payload;\n    else if (payload instanceof MultipartFormDataBody) {\n      body = new Uint8Array(await payload.encode());\n      headers.set(HEADER_NAME_CONTENT_TYPE, payload.getContentType());\n    } else {\n      body = JSON.stringify(payload);\n      headers.set(HEADER_NAME_CONTENT_TYPE, 'application/json');\n    }\n\n    // make request\n    try {\n      const response = await fetch(url, { method, headers, body });\n      const { ok: successful, status, statusText } = response;\n\n      if (!successful) {\n        try {\n          const rawError = await response.text();\n          return { headers: response.headers, successful, status, statusText, error: JSON.parse(rawError) };\n        } catch (err) {\n          if (err instanceof SyntaxError) {\n            return {\n              headers: response.headers,\n              successful,\n              status,\n              statusText,\n              error: {\n                title: 'Unknown error',\n                status,\n                statusText: response.statusText,\n              },\n            };\n          }\n\n          const error: ProblemDetails = {\n            title: (err instanceof Error ? err.message : undefined) ?? 'Unknown error',\n            status: response.status,\n            statusText: response.statusText,\n          };\n\n          return { headers: response.headers, successful, status, statusText, error };\n        }\n      }\n\n      const contentLength = response.headers.get('content-length');\n      let data = contentLength && contentLength !== '0' ? ((await response.json()) as T) : undefined;\n      if (data && schema) {\n        const result = await schema.safeParseAsync(data);\n        if (!result.success) {\n          return {\n            headers: response.headers,\n            successful: false,\n            status,\n            statusText,\n            data,\n            error: {\n              title: 'application_error',\n              detail: 'Schema validation error',\n              errors: result.error.flatten().fieldErrors,\n              status: response.status,\n              statusText: response.statusText,\n            },\n          };\n        }\n        data = result.data;\n      }\n\n      return { headers: response.headers, data, successful, status, statusText };\n    } catch (err) {\n      return {\n        headers: new Headers(),\n        successful: false,\n        status: -1,\n        statusText: 'Application Error',\n        error: {\n          title: 'application_error',\n          detail: `Unable to fetch data. The request could not be resolved. ${err}`,\n        },\n      };\n    }\n  }\n\n  private makeUrl<T>(url: string, options?: InnerRequestOptions<T>): string {\n    if (url.startsWith('http://') || url.startsWith('https://')) return url;\n    const baseUrl = options?.baseUrl ?? this.baseUrl;\n    return `${baseUrl}${url}`;\n  }\n}\n\n/**\n * Whether to skip serialization of the payload.\n * @param payload The payload to check.\n * @returns true if the payload should not be serialized; otherwise, false.\n */\nfunction skipSerialization(\n  payload: InnerRequestOptions<never>['payload'],\n): payload is FormData | URLSearchParams | ReadableStream | Blob | ArrayBuffer | string | undefined {\n  return (\n    payload instanceof FormData ||\n    payload instanceof URLSearchParams ||\n    payload instanceof ReadableStream ||\n    payload instanceof Blob ||\n    payload instanceof ArrayBuffer ||\n    payload instanceof Buffer ||\n    typeof payload === 'string' ||\n    !payload\n  );\n}\n\n/** Http request error */\nexport class HttpRequestError extends Error {\n  constructor(\n    message: string,\n    public code: number,\n  ) {\n    super(message);\n  }\n}\n\nexport function isErrorTemporaryFailure(e?: { code?: string | number; message?: string } | null): boolean {\n  if (e instanceof HttpRequestError) {\n    // Check for common HTTP status codes that indicate a temporary failure\n    // See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status\n    switch (e.code) {\n      case 502:\n        return true; // 502 Bad Gateway\n      case 503:\n        return true; // 503 Service Unavailable\n      case 504:\n        return true; // 504 Gateway Timeout\n      default:\n        return false;\n    }\n  } else if (e?.code) {\n    // Check for Node.js system errors that indicate a temporary failure\n    // See: https://nodejs.org/api/errors.html#errors_common_system_errors\n    switch (e.code) {\n      case 'ETIMEDOUT':\n        return true; // Operation timed out\n      default:\n        return false;\n    }\n  } else {\n    return false;\n  }\n}\n"],"mappings":";;;AAAA,MAAa,kCAAkC;AAC/C,MAAa,2BAA2B;AACxC,MAAa,qBAAqB;AAClC,MAAa,yBAAyB;AACtC,MAAa,4BAA4B;;;;ACFzC,IAAa,wBAAb,MAAmC;CACjC,AAAQ,OAAO;CACf,AAAQ,WAAmB,GAAG,KAAK,QAAQ,CAAC,SAAS,GAAG,CAAC,UAAU,EAAE;CACrE,AAAQ,QAA0C,EAAE;CAEpD,MAAa,SAA0B;AACrC,MAAI,KAAK,MAAM,WAAW,EACxB,OAAM,IAAI,MAAM,oDAAoD;EAGtE,MAAMA,OAAiD,EAAE;AAEzD,OAAK,MAAM,QAAQ,KAAK,OAAO;AAE7B,QAAK,KAAK,KAAK,KAAK,SAAS,MAAM;AAGnC,QAAK,MAAM,CAAC,KAAK,UAAU,OAAO,QAAQ,KAAK,QAAQ,CACrD,MAAK,KAAK,GAAG,IAAI,IAAI,MAAM,MAAM;AAEnC,QAAK,KAAK,OAAO;AAGjB,QAAK,KAAK,KAAK,KAAK;AACpB,QAAK,KAAK,OAAO;;AAGnB,OAAK,KAAK,KAAK,KAAK,SAAS,QAAQ;EAErC,MAAMC,OAAiB,EAAE;AACzB,OAAK,MAAM,QAAQ,KACjB,KAAI,gBAAgB,KAAM,MAAK,KAAK,OAAO,KAAK,MAAM,KAAK,aAAa,CAAC,CAAC;WACjE,OAAO,SAAS,SAAU,MAAK,KAAK,OAAO,KAAK,MAAM,OAAO,CAAC;MAClE,MAAK,KAAK,KAAK;AAEtB,SAAO,OAAO,OAAO,KAAK;;CAG5B,AAAO,cAAsB;AAC3B,SAAO,KAAK;;CAGd,AAAO,iBAAyB;AAC9B,SAAO,GAAG,KAAK,KAAK,aAAa,KAAK;;CAGxC,AAAO,IAAI,MAAc,OAAe;EACtC,MAAM,OAAO,WAAW,MAAM,MAAM;AACpC,OAAK,MAAM,KAAK,KAAK;;CAGvB,AAAO,QAAQ,MAAc,MAAY;EACvC,MAAM,OAAO,WAAW,MAAM,MAAM,KAAK,MAAM,KAAK,KAAK;AACzD,OAAK,MAAM,KAAK,KAAK;;;AAUzB,SAAS,WACP,MACA,MACA,UACA,aAC2B;CAC3B,MAAMC,UAAkC,EAAE;AAC1C,SAAQ,mCAAmC,oBAAoB,KAAK,GAAG,WAAW,eAAe,SAAS,KAAK;AAC/G,KAAI,YAAa,SAAQ,4BAA4B;AACrD,QAAO;EAAE;EAAM;EAAS;EAAM;;;;;AC7DhC,MAAM,mBAAmB,SAAS,YAAY,KAAK,UAAU,GAAG,EAAE,IAAI;AAoEtE,IAAa,iBAAb,MAA4B;CAC1B,AAAiB;CACjB,AAAiB;CACjB,AAAiB;;;;;CAMjB,YAAY,EAAE,SAAS,SAAsC;AAC3D,OAAK,UAAU;AAEf,OAAK,UAAU,IAAI,QAAQ,GACxB,qBAAqB,oBACvB,CAAC;AAEF,OAAK,QAAQ;;CAGf,MAAM,IAAO,KAAa,SAAkC;AAC1D,SAAO,KAAK,QAAW;GACrB,KAAK,KAAK,QAAQ,KAAK,QAAQ;GAC/B,QAAQ;GACR,GAAG;GACJ,CAAC;;CAGJ,MAAM,KAAQ,KAAa,SAAkC;AAC3D,SAAO,KAAK,QAAW;GACrB,QAAQ;GACR,KAAK,KAAK,QAAQ,KAAK,QAAQ;GAC/B,GAAG;GACJ,CAAC;;CAGJ,MAAM,IAAO,KAAa,SAAkC;AAC1D,SAAO,KAAK,QAAW;GACrB,QAAQ;GACR,KAAK,KAAK,QAAQ,KAAK,QAAQ;GAC/B,GAAG;GACJ,CAAC;;CAGJ,MAAM,MAAS,KAAa,SAAkC;AAC5D,SAAO,KAAK,QAAW;GACrB,QAAQ;GACR,KAAK,KAAK,QAAQ,KAAK,QAAQ;GAC/B,GAAG;GACJ,CAAC;;CAGJ,MAAM,OAAU,KAAa,SAAkC;AAC7D,SAAO,KAAK,QAAW;GACrB,QAAQ;GACR,KAAK,KAAK,QAAQ,KAAK,QAAQ;GAC/B,GAAG;GACJ,CAAC;;CAGJ,MAAM,QAAW,SAAuE;EACtF,MAAM,EAAE,QAAQ,KAAK,SAAS,WAAW,SAAS,mBAAmB,WAAW;EAGhF,MAAM,UAAU,IAAI,QAAQ,KAAK,QAAQ;EACzC,MAAM,iBAAiB,aAAa,UAAU,SAAS,IAAI,GAAG,UAAU,IAAI,iBAAiB,KAAK;AAClG,UAAQ,IAAI,wBAAwB,eAAe;AAGnD,MAAI,KAAK,MACP,SAAQ,IAAI,2BAA2B,UAAU,KAAK,QAAQ;AAKhE,MAAI,kBACF,KAAI,6BAA6B,QAC/B,mBAAkB,SAAS,OAAO,QAAQ,QAAQ,IAAI,KAAK,MAAgB,CAAC;WACnE,MAAM,QAAQ,kBAAkB,CACzC,mBAAkB,SAAS,CAAC,KAAK,WAAW,QAAQ,IAAI,KAAK,MAAM,CAAC;MAEpE,QAAO,QAAQ,kBAAkB,CAAC,SAAS,CAAC,KAAK,WAAW,QAAQ,IAAI,KAAK,MAAgB,CAAC;EAMlG,IAAIC;AACJ,MAAI,kBAAkB,QAAQ,CAAE,QAAO;WAC9B,mBAAmB,uBAAuB;AACjD,UAAO,IAAI,WAAW,MAAM,QAAQ,QAAQ,CAAC;AAC7C,WAAQ,IAAI,0BAA0B,QAAQ,gBAAgB,CAAC;SAC1D;AACL,UAAO,KAAK,UAAU,QAAQ;AAC9B,WAAQ,IAAI,0BAA0B,mBAAmB;;AAI3D,MAAI;GACF,MAAM,WAAW,MAAM,MAAM,KAAK;IAAE;IAAQ;IAAS;IAAM,CAAC;GAC5D,MAAM,EAAE,IAAI,YAAY,QAAQ,eAAe;AAE/C,OAAI,CAAC,WACH,KAAI;IACF,MAAM,WAAW,MAAM,SAAS,MAAM;AACtC,WAAO;KAAE,SAAS,SAAS;KAAS;KAAY;KAAQ;KAAY,OAAO,KAAK,MAAM,SAAS;KAAE;YAC1F,KAAK;AACZ,QAAI,eAAe,YACjB,QAAO;KACL,SAAS,SAAS;KAClB;KACA;KACA;KACA,OAAO;MACL,OAAO;MACP;MACA,YAAY,SAAS;MACtB;KACF;IAGH,MAAMC,QAAwB;KAC5B,QAAQ,eAAe,QAAQ,IAAI,UAAU,WAAc;KAC3D,QAAQ,SAAS;KACjB,YAAY,SAAS;KACtB;AAED,WAAO;KAAE,SAAS,SAAS;KAAS;KAAY;KAAQ;KAAY;KAAO;;GAI/E,MAAM,gBAAgB,SAAS,QAAQ,IAAI,iBAAiB;GAC5D,IAAI,OAAO,iBAAiB,kBAAkB,MAAQ,MAAM,SAAS,MAAM,GAAU;AACrF,OAAI,QAAQ,QAAQ;IAClB,MAAM,SAAS,MAAM,OAAO,eAAe,KAAK;AAChD,QAAI,CAAC,OAAO,QACV,QAAO;KACL,SAAS,SAAS;KAClB,YAAY;KACZ;KACA;KACA;KACA,OAAO;MACL,OAAO;MACP,QAAQ;MACR,QAAQ,OAAO,MAAM,SAAS,CAAC;MAC/B,QAAQ,SAAS;MACjB,YAAY,SAAS;MACtB;KACF;AAEH,WAAO,OAAO;;AAGhB,UAAO;IAAE,SAAS,SAAS;IAAS;IAAM;IAAY;IAAQ;IAAY;WACnE,KAAK;AACZ,UAAO;IACL,SAAS,IAAI,SAAS;IACtB,YAAY;IACZ,QAAQ;IACR,YAAY;IACZ,OAAO;KACL,OAAO;KACP,QAAQ,4DAA4D;KACrE;IACF;;;CAIL,AAAQ,QAAW,KAAa,SAA0C;AACxE,MAAI,IAAI,WAAW,UAAU,IAAI,IAAI,WAAW,WAAW,CAAE,QAAO;AAEpE,SAAO,GADS,SAAS,WAAW,KAAK,UACrB;;;;;;;;AASxB,SAAS,kBACP,SACkG;AAClG,QACE,mBAAmB,YACnB,mBAAmB,mBACnB,mBAAmB,kBACnB,mBAAmB,QACnB,mBAAmB,eACnB,mBAAmB,UACnB,OAAO,YAAY,YACnB,CAAC;;;AAKL,IAAa,mBAAb,cAAsC,MAAM;CAC1C,YACE,SACA,AAAOC,MACP;AACA,QAAM,QAAQ;EAFP;;;AAMX,SAAgB,wBAAwB,GAAkE;AACxG,KAAI,aAAa,iBAGf,SAAQ,EAAE,MAAV;EACE,KAAK,IACH,QAAO;EACT,KAAK,IACH,QAAO;EACT,KAAK,IACH,QAAO;EACT,QACE,QAAO;;UAEF,GAAG,KAGZ,SAAQ,EAAE,MAAV;EACE,KAAK,YACH,QAAO;EACT,QACE,QAAO;;KAGX,QAAO"}

package/dist/node/http.d.ts

@@ -0,0 +1,121 @@
+import { ZodType } from "zod/v4";
+
+//#region src/http/headers.d.ts
+declare const HEADER_NAME_CONTENT_DISPOSITION = "Content-Disposition";
+declare const HEADER_NAME_CONTENT_TYPE = "Content-Type";
+declare const HEADER_NAME_ACCEPT = "Accept";
+declare const HEADER_NAME_USER_AGENT = "User-Agent";
+declare const HEADER_NAME_AUTHORIZATION = "Authorization";
+//#endregion
+//#region src/http/multipart.d.ts
+declare class MultipartFormDataBody {
+  private type;
+  private boundary;
+  private parts;
+  encode(): Promise<Buffer>;
+  getBoundary(): string;
+  getContentType(): string;
+  add(name: string, value: string): void;
+  addFile(name: string, file: File): void;
+}
+//#endregion
+//#region src/http/problem.d.ts
+interface ProblemDetails {
+  type?: string;
+  /** The name/title of the error.*/
+  title: string;
+  /** A brief explanation/definition into the nature of the error. */
+  detail?: string | null;
+  /** Any additional error arguments passed to the client. */
+  extras?: unknown;
+  /** The HTTP status code */
+  status?: number;
+  statusText?: string;
+  errors?: Record<string, string[] | undefined>;
+  traceId?: string;
+}
+//#endregion
+//#region src/http/inner.d.ts
+type CreateInnerApiClientOptions = {
+  /**
+   * The base URL to use for the API.
+   * @example 'https://api.paklo.app'
+   */
+  baseUrl: string;
+  /** The token to use for authentication. This can be a JWT or specialized key. */
+  token?: string;
+};
+type RequestOptions = {
+  /**
+   * Value for the `User-Agent` header.
+   * This prepends the default value (e.g. `paklo/ab26320`)
+   * which is important when we need to propagate the browser information to the server.
+   */
+  userAgent?: string;
+};
+type ResourceResponse<T$1 = Record<string, unknown>> = {
+  /** The headers of the response. */
+  headers: Headers;
+  /** Whether the request was successful. */
+  successful: boolean;
+  /** The status code of the response. */
+  status: number;
+  /** The status text of the response. */
+  statusText: string;
+  /** The data of the response. */
+  data?: T$1;
+  /** The error of the response. */
+  error?: ProblemDetails;
+};
+type InnerRequestOptions<T$1> = RequestOptions & {
+  /**
+   * The base URL to use for the request.
+   * This overrides the default base URL.
+   * @example 'https://api.paklo.app'
+   */
+  baseUrl?: string;
+  /** Additional headers to use for the request. */
+  headers?: HeadersInit;
+  /** The payload to use for the request. */
+  payload?: Record<string, unknown> | MultipartFormDataBody | ReadableStream | XMLHttpRequestBodyInit;
+  /** The schema to use when parsing the response. */
+  schema?: ZodType<T$1>;
+};
+type InnerRequestOptionsComplete<T$1> = InnerRequestOptions<T$1> & {
+  /** The method to use for the request. */
+  method: 'GET' | 'POST' | 'PUT' | 'PATCH' | 'DELETE';
+  /** The URL to use for the request. */
+  url: string;
+};
+declare class InnerApiClient {
+  private readonly baseUrl;
+  private readonly headers;
+  private readonly token?;
+  /**
+   * Create a new API client.
+   * @param options The options to use for the client.
+   */
+  constructor({
+    baseUrl,
+    token
+  }: CreateInnerApiClientOptions);
+  get<T>(url: string, options?: InnerRequestOptions<T>): Promise<ResourceResponse<T>>;
+  post<T>(url: string, options?: InnerRequestOptions<T>): Promise<ResourceResponse<T>>;
+  put<T>(url: string, options?: InnerRequestOptions<T>): Promise<ResourceResponse<T>>;
+  patch<T>(url: string, options?: InnerRequestOptions<T>): Promise<ResourceResponse<T>>;
+  delete<T>(url: string, options?: InnerRequestOptions<T>): Promise<ResourceResponse<T>>;
+  request<T>(options: InnerRequestOptionsComplete<T>): Promise<ResourceResponse<T>>;
+  private makeUrl;
+}
+/** Http request error */
+declare class HttpRequestError extends Error {
+  code: number;
+  constructor(message: string, code: number);
+}
+declare function isErrorTemporaryFailure(e?: {
+  code?: string | number;
+  message?: string;
+} | null): boolean;
+//#endregion
+export { CreateInnerApiClientOptions, HEADER_NAME_ACCEPT, HEADER_NAME_AUTHORIZATION, HEADER_NAME_CONTENT_DISPOSITION, HEADER_NAME_CONTENT_TYPE, HEADER_NAME_USER_AGENT, HttpRequestError, InnerApiClient, InnerRequestOptions, ProblemDetails, RequestOptions, ResourceResponse, isErrorTemporaryFailure };
+//# sourceMappingURL=http.d.ts.map

package/dist/node/http.js

@@ -0,0 +1,4 @@
+import "./environment-DX5CD-dD.js";
+import { a as HEADER_NAME_AUTHORIZATION, c as HEADER_NAME_USER_AGENT, i as HEADER_NAME_ACCEPT, n as InnerApiClient, o as HEADER_NAME_CONTENT_DISPOSITION, r as isErrorTemporaryFailure, s as HEADER_NAME_CONTENT_TYPE, t as HttpRequestError } from "./http-BG_-s47I.js";
+
+export { HEADER_NAME_ACCEPT, HEADER_NAME_AUTHORIZATION, HEADER_NAME_CONTENT_DISPOSITION, HEADER_NAME_CONTENT_TYPE, HEADER_NAME_USER_AGENT, HttpRequestError, InnerApiClient, isErrorTemporaryFailure };

package/dist/node/index-3wZw74Ah.d.ts

@@ -0,0 +1,151 @@
+import { z } from "zod/v4";
+
+//#region src/github/ghsa.d.ts
+declare const PackageEcosystemSchema: z.ZodEnum<{
+  COMPOSER: "COMPOSER";
+  ERLANG: "ERLANG";
+  GO: "GO";
+  ACTIONS: "ACTIONS";
+  MAVEN: "MAVEN";
+  NPM: "NPM";
+  NUGET: "NUGET";
+  PIP: "PIP";
+  PUB: "PUB";
+  RUBYGEMS: "RUBYGEMS";
+  RUST: "RUST";
+  SWIFT: "SWIFT";
+}>;
+type PackageEcosystem = z.infer<typeof PackageEcosystemSchema>;
+declare const PackageSchema: z.ZodObject<{
+  name: z.ZodString;
+  version: z.ZodOptional<z.ZodNullable<z.ZodString>>;
+}, z.core.$strip>;
+type Package = z.infer<typeof PackageSchema>;
+declare const SecurityAdvisoryIdentifierSchema: z.ZodEnum<{
+  CVE: "CVE";
+  GHSA: "GHSA";
+}>;
+type SecurityAdvisoryIdentifierType = z.infer<typeof SecurityAdvisoryIdentifierSchema>;
+declare const SecurityAdvisorySeveritySchema: z.ZodEnum<{
+  LOW: "LOW";
+  MODERATE: "MODERATE";
+  HIGH: "HIGH";
+  CRITICAL: "CRITICAL";
+}>;
+type SecurityAdvisorySeverity = z.infer<typeof SecurityAdvisorySeveritySchema>;
+declare const SecurityAdvisorySchema: z.ZodObject<{
+  identifiers: z.ZodArray<z.ZodObject<{
+    type: z.ZodUnion<readonly [z.ZodEnum<{
+      CVE: "CVE";
+      GHSA: "GHSA";
+    }>, z.ZodString]>;
+    value: z.ZodString;
+  }, z.core.$strip>>;
+  severity: z.ZodOptional<z.ZodNullable<z.ZodEnum<{
+    LOW: "LOW";
+    MODERATE: "MODERATE";
+    HIGH: "HIGH";
+    CRITICAL: "CRITICAL";
+  }>>>;
+  summary: z.ZodString;
+  description: z.ZodOptional<z.ZodNullable<z.ZodString>>;
+  references: z.ZodOptional<z.ZodNullable<z.ZodArray<z.ZodObject<{
+    url: z.ZodString;
+  }, z.core.$strip>>>>;
+  cvss: z.ZodOptional<z.ZodNullable<z.ZodObject<{
+    score: z.ZodNumber;
+    vectorString: z.ZodString;
+  }, z.core.$strip>>>;
+  epss: z.ZodOptional<z.ZodNullable<z.ZodObject<{
+    percentage: z.ZodNumber;
+    percentile: z.ZodNumber;
+  }, z.core.$strip>>>;
+  cwes: z.ZodOptional<z.ZodNullable<z.ZodArray<z.ZodObject<{
+    cweId: z.ZodString;
+    name: z.ZodString;
+    description: z.ZodString;
+  }, z.core.$strip>>>>;
+  publishedAt: z.ZodOptional<z.ZodNullable<z.ZodString>>;
+  updatedAt: z.ZodOptional<z.ZodNullable<z.ZodString>>;
+  withdrawnAt: z.ZodOptional<z.ZodNullable<z.ZodString>>;
+  permalink: z.ZodOptional<z.ZodNullable<z.ZodString>>;
+}, z.core.$strip>;
+type SecurityAdvisory = z.infer<typeof SecurityAdvisorySchema>;
+declare const FirstPatchedVersionSchema: z.ZodObject<{
+  identifier: z.ZodString;
+}, z.core.$strip>;
+type FirstPatchedVersion = z.infer<typeof FirstPatchedVersionSchema>;
+declare const SecurityVulnerabilitySchema: z.ZodObject<{
+  package: z.ZodObject<{
+    name: z.ZodString;
+    version: z.ZodOptional<z.ZodNullable<z.ZodString>>;
+  }, z.core.$strip>;
+  advisory: z.ZodObject<{
+    identifiers: z.ZodArray<z.ZodObject<{
+      type: z.ZodUnion<readonly [z.ZodEnum<{
+        CVE: "CVE";
+        GHSA: "GHSA";
+      }>, z.ZodString]>;
+      value: z.ZodString;
+    }, z.core.$strip>>;
+    severity: z.ZodOptional<z.ZodNullable<z.ZodEnum<{
+      LOW: "LOW";
+      MODERATE: "MODERATE";
+      HIGH: "HIGH";
+      CRITICAL: "CRITICAL";
+    }>>>;
+    summary: z.ZodString;
+    description: z.ZodOptional<z.ZodNullable<z.ZodString>>;
+    references: z.ZodOptional<z.ZodNullable<z.ZodArray<z.ZodObject<{
+      url: z.ZodString;
+    }, z.core.$strip>>>>;
+    cvss: z.ZodOptional<z.ZodNullable<z.ZodObject<{
+      score: z.ZodNumber;
+      vectorString: z.ZodString;
+    }, z.core.$strip>>>;
+    epss: z.ZodOptional<z.ZodNullable<z.ZodObject<{
+      percentage: z.ZodNumber;
+      percentile: z.ZodNumber;
+    }, z.core.$strip>>>;
+    cwes: z.ZodOptional<z.ZodNullable<z.ZodArray<z.ZodObject<{
+      cweId: z.ZodString;
+      name: z.ZodString;
+      description: z.ZodString;
+    }, z.core.$strip>>>>;
+    publishedAt: z.ZodOptional<z.ZodNullable<z.ZodString>>;
+    updatedAt: z.ZodOptional<z.ZodNullable<z.ZodString>>;
+    withdrawnAt: z.ZodOptional<z.ZodNullable<z.ZodString>>;
+    permalink: z.ZodOptional<z.ZodNullable<z.ZodString>>;
+  }, z.core.$strip>;
+  vulnerableVersionRange: z.ZodString;
+  firstPatchedVersion: z.ZodOptional<z.ZodNullable<z.ZodObject<{
+    identifier: z.ZodString;
+  }, z.core.$strip>>>;
+}, z.core.$strip>;
+type SecurityVulnerability = z.infer<typeof SecurityVulnerabilitySchema>;
+declare function getGhsaPackageEcosystemFromDependabotPackageManager(dependabotPackageManager: string): PackageEcosystem;
+/**
+ * GitHub GraphQL client
+ */
+declare class GitHubGraphClient {
+  private readonly accessToken;
+  constructor(accessToken: string);
+  /**
+   * Get the list of security vulnerabilities for a given package ecosystem and list of packages
+   * @param packageEcosystem
+   * @param packages
+   */
+  getSecurityVulnerabilitiesAsync(packageEcosystem: PackageEcosystem, packages: Package[]): Promise<SecurityVulnerability[]>;
+  /**
+   * Batch requests in parallel to speed up the process when we are forced to do a N+1 query
+   * @param batchSize
+   * @param items
+   * @param action
+   * @returns
+   */
+  private batchGraphQueryAsync;
+}
+declare function filterVulnerabilities(securityVulnerabilities: SecurityVulnerability[]): SecurityVulnerability[];
+//#endregion
+export { PackageEcosystemSchema as a, SecurityAdvisoryIdentifierSchema as c, SecurityAdvisorySeverity as d, SecurityAdvisorySeveritySchema as f, getGhsaPackageEcosystemFromDependabotPackageManager as g, filterVulnerabilities as h, PackageEcosystem as i, SecurityAdvisoryIdentifierType as l, SecurityVulnerabilitySchema as m, GitHubGraphClient as n, PackageSchema as o, SecurityVulnerability as p, Package as r, SecurityAdvisory as s, FirstPatchedVersion as t, SecurityAdvisorySchema as u };
+//# sourceMappingURL=index-3wZw74Ah.d.ts.map