@passlock/client 2.1.0 → 2.3.0

package/dist/safe.d.ts

@@ -1,10 +1,22 @@
 /**
- * _safe_ functions i.e. functions that return discriminated unions composed of either a
- * success result or an error result for expected outcomes. Use one of the type guards to
- * narrow the result to a given success or error type.
+ * _safe_ functions i.e. functions that return result envelopes over the original
+ * tagged success and error payloads. Use `result.success` or `result.failure`
+ * to branch between success and error outcomes. Existing type guards and `_tag`
+ * checks remain supported.
  *
  * Note: unexpected runtime failures may still throw.
  *
+ * @example
+ * const result = await registerPasskey({ tenancyId, username: "jdoe@gmail.com" });
+ *
+ * if (result.success) {
+ *   console.log(result.value.code);
+ * }
+ *
+ * if (result.failure) {
+ *   console.log(result.error.message);
+ * }
+ *
  * @categoryDescription Passkeys (core)
  * Creating, authenticating, updating and deleting passkeys. {@link registerPasskey}
  * and {@link authenticatePasskey} are the key functions.
@@ -18,11 +30,12 @@
  * @showCategories
  * @module safe
  */
+import type { Result as PasslockClient } from "./internal/result.js";
 import { Logger } from "./logger.js";
 import type { AuthenticationError, AuthenticationOptions, AuthenticationSuccess } from "./passkey/authentication/authentication.js";
 import type { DeleteError, OrphanedPasskeyError, PruningError, UpdateError } from "./passkey/errors.js";
 import type { RegistrationError, RegistrationOptions, RegistrationSuccess } from "./passkey/registration/registration.js";
-import type { DeleteCredentialOptions, DeletePasskeyOptions, DeleteSuccess, PrunePasskeyOptions, PruningSuccess, UpdateCredentialOptions, UpdatePasskeyOptions, UpdateSuccess } from "./passkey/signals/signals.js";
+import type { Credential, DeleteCredentialOptions, DeletePasskeyOptions, DeleteSuccess, PrunePasskeyOptions, PruningSuccess, UpdateCredentialOptions, UpdatePasskeyOptions, UpdateSuccess } from "./passkey/signals/signals.js";
 /**
  * Registers a passkey on the user's device, then saves the server-side component in your vault.
  * If successful, this function returns both a `code` and an `id_token` (JWT).
@@ -31,11 +44,9 @@ import type { DeleteCredentialOptions, DeletePasskeyOptions, DeleteSuccess, Prun
  *
  * @param options
  *
- * @returns Use {@link isRegistrationSuccess} to test for a successful result, {@link RegistrationError} is
- * an alias to a union of potential errors. Use one of the appropriate isXXX type guards to narrow
- * the error.
- *
- * Alternatively test the result's `_tag` property, which acts as a union discriminator.
+ * @returns A {@link PasslockClient} whose success branch contains a {@link RegistrationSuccess}
+ * and whose error branch contains a {@link RegistrationError}. Existing
+ * {@link isRegistrationSuccess} checks and `_tag` discrimination still work.
  *
  * @see {@link isRegistrationSuccess}
  * @see {@link isPasskeyUnsupportedError}
@@ -49,15 +60,15 @@ import type { DeleteCredentialOptions, DeletePasskeyOptions, DeleteSuccess, Prun
  *
  * const result = await registerPasskey({ tenancyId, username });
  *
- * if (isRegistrationSuccess(result)) {
+ * if (result.success) {
  *   // send this to your backend for verification
- *   console.log(result.code);
- * } else if (isPasskeyUnsupportedError(result)) {
+ *   console.log(result.value.code);
+ * } else if (result.failure && isPasskeyUnsupportedError(result.error)) {
  *   // ^^ using an error type guard
  *   console.log("Device does not support passkeys");
- * } else if (result._tag === "@error/OtherPasskey") {
+ * } else if (result.failure && result.error._tag === "@error/OtherPasskey") {
  *   // ^^ narrowing the result using the _tag
- *   console.log(result.message);
+ *   console.log(result.error.message);
  * } else {
  *  ...
  * }
@@ -66,7 +77,7 @@ import type { DeleteCredentialOptions, DeletePasskeyOptions, DeleteSuccess, Prun
  */
 export declare const registerPasskey: (options: RegistrationOptions, 
 /** @hidden */
-logger?: typeof Logger.Service) => Promise<RegistrationSuccess | RegistrationError>;
+logger?: typeof Logger.Service) => Promise<PasslockClient<RegistrationSuccess, RegistrationError>>;
 /**
  * Asks the client to present a passkey, which is then verified against the server-side component in your vault.
  * If successful, this function returns both a `code` and an `id_token` (JWT).
@@ -75,11 +86,10 @@ logger?: typeof Logger.Service) => Promise<RegistrationSuccess | RegistrationErr
  *
  * @param options
  *
- * @returns Use {@link isAuthenticationSuccess} to test for a successful result, {@link AuthenticationError} is
- * an alias to a union of potential errors. Use one of the appropriate isXXX type guards to narrow
- * the error.
- *
- * Alternatively test the result's `_tag` property, which acts as a union discriminator.
+ * @returns A {@link PasslockClient} whose success branch contains an
+ * {@link AuthenticationSuccess} and whose error branch contains an
+ * {@link AuthenticationError}. Existing {@link isAuthenticationSuccess}
+ * checks and `_tag` discrimination still work.
  *
  * @see {@link isAuthenticationSuccess}
  * @see {@link isPasskeyUnsupportedError}
@@ -92,22 +102,22 @@ logger?: typeof Logger.Service) => Promise<RegistrationSuccess | RegistrationErr
  *
  * const result = await authenticatePasskey({ tenancyId });
  *
- * if (isAuthenticationSuccess(result)) {
+ * if (result.success) {
  *   // send this to your backend for verification
- *   console.log(result.code);
- * } else if (isPasskeyUnsupportedError(result)) {
+ *   console.log(result.value.code);
+ * } else if (result.failure && isPasskeyUnsupportedError(result.error)) {
  *   // ^^ using an error type guard
  *   console.log("Device does not support passkeys");
- * } else if (result._tag === "@error/OtherPasskey") {
+ * } else if (result.failure && result.error._tag === "@error/OtherPasskey") {
  *   // ^^ narrowing the result using the _tag
- *   console.log(result.message);
+ *   console.log(result.error.message);
  * }
  *
  * @category Passkeys (core)
  */
 export declare const authenticatePasskey: (options: AuthenticationOptions, 
 /** @hidden */
-logger?: typeof Logger.Service) => Promise<AuthenticationSuccess | AuthenticationError>;
+logger?: typeof Logger.Service) => Promise<PasslockClient<AuthenticationSuccess, AuthenticationError>>;
 /**
  * Attempt to update the username or display name for a passkey (client-side only).
  *
@@ -118,11 +128,19 @@ logger?: typeof Logger.Service) => Promise<AuthenticationSuccess | Authenticatio
  *
  * By calling this function and supplying a new username/display name, their local
  * password manager will align with their updated account identifier.
- *
- * @param options You will typically supply a target `passkeyId` via {@link UpdatePasskeyOptions}. {@link UpdateCredentialOptions} is for advanced use cases.
- * @returns Use {@link isUpdateSuccess} and {@link isUpdateError} to test the update status.
- *
- * Alternatively, examine the result's `_tag` property, which acts as a discriminator.
+ * Support and metadata lookup failures populate the error branch as
+ * {@link UpdateError}. Browser-side signalling failures are logged as warnings
+ * and do not populate the error branch.
+ *
+ * @param options You will typically supply a target `passkeyId` via
+ * {@link UpdatePasskeyOptions}. {@link UpdateCredentialOptions} is intended
+ * for credential-scoped updates, for example when replaying data returned by
+ * `@passlock/server`.
+ * @returns A {@link PasslockClient} whose success branch contains an
+ * {@link UpdateSuccess} after the local update workflow has been started, and
+ * whose error branch contains an {@link UpdateError}.
+ * Existing {@link isUpdateSuccess}, {@link isUpdateError}, and `_tag` checks
+ * still work.
  *
  * @see {@link isUpdateSuccess}
  * @see {@link isUpdateError}
@@ -136,12 +154,11 @@ logger?: typeof Logger.Service) => Promise<AuthenticationSuccess | Authenticatio
  *
  * const result = await updatePasskey({ tenancyId, passkeyId, username, displayName });
  *
- * if (result._tag === "UpdateSuccess") {
- *   // ^^ narrowing the result using the _tag
- *   console.log("passkey updated locally");
- * } else if (isUpdateError(result)) {
+ * if (result.success) {
+ *   console.log("passkey update requested");
+ * } else if (result.failure && isUpdateError(result.error)) {
  *   // narrowed to an UpdateError type
- *   console.log(result.code);
+ *   console.log(result.error.code);
  * } else {
  *   console.log("unable to update passkey");
  * }
@@ -150,9 +167,101 @@ logger?: typeof Logger.Service) => Promise<AuthenticationSuccess | Authenticatio
  */
 export declare const updatePasskey: (options: UpdatePasskeyOptions | UpdateCredentialOptions, 
 /** @hidden */
-logger?: typeof Logger.Service) => Promise<UpdateSuccess | UpdateError>;
+logger?: typeof Logger.Service) => Promise<PasslockClient<UpdateSuccess, UpdateError>>;
+/**
+ * Attempt to update the username and/or display name for multiple passkeys (client-side only).
+ *
+ * Useful if the user has changed their account identifier. For example, they register
+ * using jdoe@gmail.com but later change their account username to jdoe@yahoo.com.
+ * Even after you update their account details in your backend, their local password
+ * manager will continue to display jdoe@gmail.com.
+ *
+ * By calling this function and supplying a new username/display name, their local
+ * password manager will align with their updated account identifier.
+ * Support failures populate the error branch as {@link UpdateError}.
+ * Browser-side signalling failures are logged as warnings and do not populate
+ * the error branch.
+ *
+ * @param options The `credentials` array returned by
+ * `@passlock/server/safe`'s `updatePasskeyUsernames` success branch.
+ * @returns A {@link PasslockClient} whose success branch contains an
+ * {@link UpdateSuccess} after the local update workflows have been started,
+ * and whose error branch contains an {@link UpdateError}.
+ * Existing {@link isUpdateSuccess}, {@link isUpdateError}, and `_tag` checks
+ * still work.
+ *
+ * @see {@link isUpdateSuccess}
+ * @see {@link isUpdateError}
+ *
+ * @example
+ * // server code
+ * import { updatePasskeyUsernames as updatePasskeyUsernamesOnServer } from "@passlock/server/safe";
+ *
+ * const backendResult = await updatePasskeyUsernamesOnServer({
+ *   tenancyId,
+ *   userId,
+ *   username,
+ *   displayName,
+ * });
+ * // send backendResult.value.credentials to your frontend when backendResult.success
+ *
+ * // client code
+ * import { updatePasskeyUsernames } from "@passlock/client/safe";
+ *
+ * const credentialsFromBackend = backendResult.value.credentials;
+ * const result = await updatePasskeyUsernames(credentialsFromBackend);
+ * console.log(result);
+ *
+ * @category Passkeys (core)
+ */
+export declare const updatePasskeyUsernames: (options: ReadonlyArray<UpdateCredentialOptions>, 
+/** @hidden */
+logger?: typeof Logger.Service) => Promise<PasslockClient<UpdateSuccess, UpdateError>>;
+/**
+ * Attempt to signal removal of multiple passkeys from a local device.
+ *
+ * Use this after deleting the server-side passkeys. The `deleted` array returned
+ * by `@passlock/server/safe` already has the right shape, so you can pass it
+ * straight into this function.
+ * Support failures populate the error branch as {@link DeleteError}.
+ * Browser-side signalling failures are logged as warnings and do not populate
+ * the error branch.
+ *
+ * @param options Credentials derived from deleted backend passkeys.
+ * @returns A {@link PasslockClient} whose success branch contains a
+ * {@link DeleteSuccess} once the local removal workflows have been started,
+ * and whose error branch contains a {@link DeleteError}. Existing
+ * {@link isDeleteSuccess}, {@link isDeleteError}, and `_tag` checks still work.
+ * @see {@link isDeleteSuccess}
+ * @see {@link isDeleteError}
+ *
+ * @example
+ * // server code
+ * import { deleteUserPasskeys as deleteUserPasskeysOnServer } from "@passlock/server/safe";
+ *
+ * const backendResult = await deleteUserPasskeysOnServer({
+ *   tenancyId,
+ *   userId,
+ *   apiKey,
+ * });
+ *
+ * // send backendResult.value.deleted to your frontend when backendResult.success
+ *
+ * // client code
+ * import { deleteUserPasskeys } from "@passlock/client/safe";
+ *
+ * const deletedCredentials = backendResult.value.deleted;
+ * const result = await deleteUserPasskeys(deletedCredentials);
+ * console.log(result);
+ *
+ * @category Passkeys (core)
+ */
+export declare const deleteUserPasskeys: (options: ReadonlyArray<Credential>, 
+/** @hidden */
+logger?: typeof Logger.Service) => Promise<PasslockClient<DeleteSuccess, DeleteError>>;
 /**
- * Attempts to delete a passkey from a local device. There are two scenarios in which this function is useful:
+ * Attempts to signal removal of a passkey from a local device. There are two
+ * scenarios in which this function is useful:
  *
  * 1. **Deleting a passkey** - Use the `@passlock/server` package or make vanilla REST calls from your
  * backend to delete the server-side component, then use this function to delete the client-side component.
@@ -162,10 +271,17 @@ logger?: typeof Logger.Service) => Promise<UpdateSuccess | UpdateError>;
  *
  * See [deleting passkeys](https://passlock.dev/passkeys/passkey-removal/) and
  * [handling missing passkeys](https://passlock.dev/handling-missing-passkeys/) in the documentation.
- *
- * @param options You will typically pass {@link DeletePasskeyOptions}, the other types are for advanced use cases/optimizations.
- * @returns Use {@link isDeleteSuccess} to test for a successful deletion, or {@link isDeleteError} to test for an error.
- * Alternatively, test the result's `_tag` property, which acts as a discriminator.
+ * Support and metadata lookup failures populate the error branch as
+ * {@link DeleteError}. Browser-side signalling failures are logged as warnings
+ * and do not populate the error branch.
+ *
+ * @param options You will typically pass {@link DeletePasskeyOptions}. Use
+ * {@link DeleteCredentialOptions} or {@link OrphanedPasskeyError} when you
+ * already have the credential metadata.
+ * @returns A {@link PasslockClient} whose success branch contains a
+ * {@link DeleteSuccess} once the local removal workflow has been started, and
+ * whose error branch contains a {@link DeleteError}. Existing
+ * {@link isDeleteSuccess}, {@link isDeleteError}, and `_tag` checks still work.
  * @see {@link isDeleteSuccess}
  * @see {@link isDeleteError}
  *
@@ -176,12 +292,11 @@ logger?: typeof Logger.Service) => Promise<UpdateSuccess | UpdateError>;
  *
  * const result = await deletePasskey({ tenancyId, passkeyId });
  *
- * if (result._tag === "DeleteSuccess") {
- *   // ^^ narrowing the result using the _tag
- *   console.log("passkey deleted locally");
- * } else if (isDeleteError(result)) {
+ * if (result.success) {
+ *   console.log("passkey removal requested");
+ * } else if (result.failure && isDeleteError(result.error)) {
  *   // narrowed to a DeleteError type
- *   console.log(result.code);
+ *   console.log(result.error.code);
  * } else {
  *   console.log("unable to delete passkey");
  * }
@@ -190,16 +305,22 @@ logger?: typeof Logger.Service) => Promise<UpdateSuccess | UpdateError>;
  */
 export declare const deletePasskey: (options: DeletePasskeyOptions | DeleteCredentialOptions | OrphanedPasskeyError, 
 /** @hidden */
-logger?: typeof Logger.Service) => Promise<DeleteSuccess | DeleteError>;
+logger?: typeof Logger.Service) => Promise<PasslockClient<DeleteSuccess, DeleteError>>;
 /**
  * Attempt to prune local passkeys by keeping only the passkey IDs you trust.
  *
  * This is useful when your backend is the source of truth for which passkeys
  * should still exist for a given account on this device.
+ * Support and metadata lookup failures populate the error branch as
+ * {@link PruningError}. Browser-side signalling failures are logged as
+ * warnings and do not populate the error branch.
  *
  * @param options Pass the passkeys you **want to retain**.
- * @returns Use {@link isPruningSuccess} and {@link isPruningError} to narrow the result.
- * Alternatively test the result's `_tag` property, which acts as a discriminator.
+ * @returns A {@link PasslockClient} whose success branch contains a
+ * {@link PruningSuccess} once the accepted-credentials signalling attempt has
+ * completed, and whose error branch contains a
+ * {@link PruningError}. Existing {@link isPruningSuccess},
+ * {@link isPruningError}, and `_tag` checks still work.
  *
  * @see {@link isPruningSuccess}
  * @see {@link isPruningError}
@@ -211,12 +332,11 @@ logger?: typeof Logger.Service) => Promise<DeleteSuccess | DeleteError>;
  *
  * const result = await prunePasskeys({ tenancyId, allowablePasskeyIds });
  *
- * if (result._tag === "PruningSuccess") {
- *   // ^^ narrowing the result using the _tag
- *   console.log("local passkeys pruned");
- * } else if (isPruningError(result)) {
+ * if (result.success) {
+ *   console.log("accepted credentials sync requested");
+ * } else if (result.failure && isPruningError(result.error)) {
  *   // narrowed to a PruningError type
- *   console.log(result.code);
+ *   console.log(result.error.code);
  * } else {
  *   console.log("unable to prune passkeys");
  * }
@@ -225,9 +345,9 @@ logger?: typeof Logger.Service) => Promise<DeleteSuccess | DeleteError>;
  */
 export declare const prunePasskeys: (options: PrunePasskeyOptions, 
 /** @hidden */
-logger?: typeof Logger.Service) => Promise<PruningSuccess | PruningError>;
+logger?: typeof Logger.Service) => Promise<PasslockClient<PruningSuccess, PruningError>>;
 /**
- * Does the local device support programmatic passkey deletion
+ * Does the local device support programmatic passkey deletion?
  *
  * @returns `true` if local passkey deletion is supported.
  *
@@ -235,7 +355,7 @@ logger?: typeof Logger.Service) => Promise<PruningSuccess | PruningError>;
  */
 export declare const isPasskeyDeleteSupport: () => boolean;
 /**
- * Does the local device support programmatic passkey pruning
+ * Does the local device support programmatic passkey pruning?
  *
  * @returns `true` if local passkey pruning is supported.
  *
@@ -243,7 +363,7 @@ export declare const isPasskeyDeleteSupport: () => boolean;
  */
 export declare const isPasskeyPruningSupport: () => boolean;
 /**
- * Does the local device support programmatic passkey updates
+ * Does the local device support programmatic passkey updates?
  *
  * @returns `true` if local passkey updates are supported.
  *
@@ -251,6 +371,7 @@ export declare const isPasskeyPruningSupport: () => boolean;
  */
 export declare const isPasskeyUpdateSupport: () => boolean;
 export { isNetworkError, NetworkError } from "./internal/network.js";
+export type { Err, Ok, Result } from "./internal/result.js";
 export { LogEvent, Logger, LogLevel, } from "./logger.js";
 export type { PasslockOptions } from "./options.js";
 export type { AuthenticationError, AuthenticationEvent, AuthenticationEvents, AuthenticationOptions, AuthenticationSuccess, OnAuthenticationEvent, } from "./passkey/authentication/authentication.js";
@@ -260,7 +381,7 @@ export { DeleteError, DuplicatePasskeyError, isDeleteError, isDuplicatePasskeyEr
 export type { OnRegistrationEvent, RegistrationError, RegistrationEvent, RegistrationOptions, RegistrationSuccess, } from "./passkey/registration/registration.js";
 export { isRegistrationSuccess, RegistrationHelper, } from "./passkey/registration/registration.js";
 export type { UserVerification } from "./passkey/shared.js";
-export type { CredentialMapping, DeleteCredentialOptions, DeletePasskeyOptions, DeleteSuccess, PrunePasskeyOptions, PruningSuccess, UpdateCredentialOptions, UpdatePasskeyOptions, UpdateSuccess, } from "./passkey/signals/signals.js";
+export type { Credential, DeleteCredentialOptions, DeletePasskeyOptions, DeleteSuccess, PrunePasskeyOptions, PruningSuccess, UpdateCredentialOptions, UpdatePasskeyOptions, UpdateSuccess, } from "./passkey/signals/signals.js";
 export { isDeleteSuccess, isPruningSuccess, isUpdateSuccess, } from "./passkey/signals/signals.js";
 export { isAutofillSupport, isPasskeySupport, } from "./passkey/support.js";
 export type { Principal } from "./principal.js";

package/dist/safe.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"safe.d.ts","sourceRoot":"","sources":["../src/safe.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;GAmBG;AAIH,OAAO,EAAe,MAAM,EAAE,MAAM,aAAa,CAAA;AACjD,OAAO,KAAK,EACV,mBAAmB,EACnB,qBAAqB,EACrB,qBAAqB,EACtB,MAAM,4CAA4C,CAAA;AAKnD,OAAO,KAAK,EACV,WAAW,EACX,oBAAoB,EACpB,YAAY,EACZ,WAAW,EACZ,MAAM,qBAAqB,CAAA;AAE5B,OAAO,KAAK,EACV,iBAAiB,EACjB,mBAAmB,EACnB,mBAAmB,EACpB,MAAM,wCAAwC,CAAA;AAM/C,OAAO,KAAK,EACV,uBAAuB,EACvB,oBAAoB,EACpB,aAAa,EACb,mBAAmB,EACnB,cAAc,EACd,uBAAuB,EACvB,oBAAoB,EACpB,aAAa,EACd,MAAM,8BAA8B,CAAA;AAerC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAwCG;AACH,eAAO,MAAM,eAAe,GAC1B,SAAS,mBAAmB;AAC5B,cAAc;AACd,SAAQ,OAAO,MAAM,CAAC,OAAqB,KAC1C,OAAO,CAAC,mBAAmB,GAAG,iBAAiB,CAM/C,CAAA;AAIH;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAqCG;AACH,eAAO,MAAM,mBAAmB,GAC9B,SAAS,qBAAqB;AAC9B,cAAc;AACd,SAAQ,OAAO,MAAM,CAAC,OAAqB,KAC1C,OAAO,CAAC,qBAAqB,GAAG,mBAAmB,CAMnD,CAAA;AAIH;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAuCG;AACH,eAAO,MAAM,aAAa,GACxB,SAAS,oBAAoB,GAAG,uBAAuB;AACvD,cAAc;AACd,SAAQ,OAAO,MAAM,CAAC,OAAqB,KAC1C,OAAO,CAAC,aAAa,GAAG,WAAW,CAGrC,CAAA;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAoCG;AACH,eAAO,MAAM,aAAa,GACxB,SACI,oBAAoB,GACpB,uBAAuB,GACvB,oBAAoB;AACxB,cAAc;AACd,SAAQ,OAAO,MAAM,CAAC,OAAqB,KAC1C,OAAO,CAAC,aAAa,GAAG,WAAW,CAGrC,CAAA;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+BG;AACH,eAAO,MAAM,aAAa,GACxB,SAAS,mBAAmB;AAC5B,cAAc;AACd,SAAQ,OAAO,MAAM,CAAC,OAAqB,KAC1C,OAAO,CAAC,cAAc,GAAG,YAAY,CAGvC,CAAA;AAID;;;;;;GAMG;AACH,eAAO,MAAM,sBAAsB,eACW,CAAA;AAE9C;;;;;;GAMG;AACH,eAAO,MAAM,uBAAuB,eACW,CAAA;AAE/C;;;;;;GAMG;AACH,eAAO,MAAM,sBAAsB,eACW,CAAA;AAI9C,OAAO,EAAE,cAAc,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAA;AACpE,OAAO,EACL,QAAQ,EACR,MAAM,EACN,QAAQ,GACT,MAAM,aAAa,CAAA;AACpB,YAAY,EAAE,eAAe,EAAE,MAAM,cAAc,CAAA;AACnD,YAAY,EACV,mBAAmB,EACnB,mBAAmB,EACnB,oBAAoB,EACpB,qBAAqB,EACrB,qBAAqB,EACrB,qBAAqB,GACtB,MAAM,4CAA4C,CAAA;AACnD,OAAO,EACL,oBAAoB,EACpB,uBAAuB,GACxB,MAAM,4CAA4C,CAAA;AACnD,YAAY,EAAE,SAAS,EAAE,MAAM,qBAAqB,CAAA;AACpD,OAAO,EACL,WAAW,EACX,qBAAqB,EACrB,aAAa,EACb,uBAAuB,EACvB,sBAAsB,EACtB,mBAAmB,EACnB,yBAAyB,EACzB,cAAc,EACd,aAAa,EACb,oBAAoB,EACpB,iBAAiB,EACjB,uBAAuB,EACvB,YAAY,EACZ,WAAW,GACZ,MAAM,qBAAqB,CAAA;AAC5B,YAAY,EACV,mBAAmB,EACnB,iBAAiB,EACjB,iBAAiB,EACjB,mBAAmB,EACnB,mBAAmB,GACpB,MAAM,wCAAwC,CAAA;AAC/C,OAAO,EACL,qBAAqB,EACrB,kBAAkB,GACnB,MAAM,wCAAwC,CAAA;AAC/C,YAAY,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAA;AAC3D,YAAY,EACV,iBAAiB,EACjB,uBAAuB,EACvB,oBAAoB,EACpB,aAAa,EACb,mBAAmB,EACnB,cAAc,EACd,uBAAuB,EACvB,oBAAoB,EACpB,aAAa,GACd,MAAM,8BAA8B,CAAA;AACrC,OAAO,EACL,eAAe,EACf,gBAAgB,EAChB,eAAe,GAChB,MAAM,8BAA8B,CAAA;AACrC,OAAO,EACL,iBAAiB,EACjB,gBAAgB,GACjB,MAAM,sBAAsB,CAAA;AAC7B,YAAY,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAA"}
+{"version":3,"file":"safe.d.ts","sourceRoot":"","sources":["../src/safe.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+BG;AAIH,OAAO,KAAK,EAAE,MAAM,IAAI,cAAc,EAAE,MAAM,sBAAsB,CAAA;AACpE,OAAO,EAAe,MAAM,EAAE,MAAM,aAAa,CAAA;AACjD,OAAO,KAAK,EACV,mBAAmB,EACnB,qBAAqB,EACrB,qBAAqB,EACtB,MAAM,4CAA4C,CAAA;AAKnD,OAAO,KAAK,EACV,WAAW,EACX,oBAAoB,EACpB,YAAY,EACZ,WAAW,EACZ,MAAM,qBAAqB,CAAA;AAE5B,OAAO,KAAK,EACV,iBAAiB,EACjB,mBAAmB,EACnB,mBAAmB,EACpB,MAAM,wCAAwC,CAAA;AAM/C,OAAO,KAAK,EACV,UAAU,EACV,uBAAuB,EACvB,oBAAoB,EACpB,aAAa,EACb,mBAAmB,EACnB,cAAc,EACd,uBAAuB,EACvB,oBAAoB,EACpB,aAAa,EACd,MAAM,8BAA8B,CAAA;AAiBrC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAsCG;AACH,eAAO,MAAM,eAAe,GAC1B,SAAS,mBAAmB;AAC5B,cAAc;AACd,SAAQ,OAAO,MAAM,CAAC,OAAqB,KAC1C,OAAO,CAAC,cAAc,CAAC,mBAAmB,EAAE,iBAAiB,CAAC,CAM9D,CAAA;AAIH;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAoCG;AACH,eAAO,MAAM,mBAAmB,GAC9B,SAAS,qBAAqB;AAC9B,cAAc;AACd,SAAQ,OAAO,MAAM,CAAC,OAAqB,KAC1C,OAAO,CAAC,cAAc,CAAC,qBAAqB,EAAE,mBAAmB,CAAC,CAMlE,CAAA;AAIH;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8CG;AACH,eAAO,MAAM,aAAa,GACxB,SAAS,oBAAoB,GAAG,uBAAuB;AACvD,cAAc;AACd,SAAQ,OAAO,MAAM,CAAC,OAAqB,KAC1C,OAAO,CAAC,cAAc,CAAC,aAAa,EAAE,WAAW,CAAC,CAGpD,CAAA;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA6CG;AACH,eAAO,MAAM,sBAAsB,GACjC,SAAS,aAAa,CAAC,uBAAuB,CAAC;AAC/C,cAAc;AACd,SAAQ,OAAO,MAAM,CAAC,OAAqB,KAC1C,OAAO,CAAC,cAAc,CAAC,aAAa,EAAE,WAAW,CAAC,CAGpD,CAAA;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAsCG;AACH,eAAO,MAAM,kBAAkB,GAC7B,SAAS,aAAa,CAAC,UAAU,CAAC;AAClC,cAAc;AACd,SAAQ,OAAO,MAAM,CAAC,OAAqB,KAC1C,OAAO,CAAC,cAAc,CAAC,aAAa,EAAE,WAAW,CAAC,CAGpD,CAAA;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2CG;AACH,eAAO,MAAM,aAAa,GACxB,SACI,oBAAoB,GACpB,uBAAuB,GACvB,oBAAoB;AACxB,cAAc;AACd,SAAQ,OAAO,MAAM,CAAC,OAAqB,KAC1C,OAAO,CAAC,cAAc,CAAC,aAAa,EAAE,WAAW,CAAC,CAGpD,CAAA;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAoCG;AACH,eAAO,MAAM,aAAa,GACxB,SAAS,mBAAmB;AAC5B,cAAc;AACd,SAAQ,OAAO,MAAM,CAAC,OAAqB,KAC1C,OAAO,CAAC,cAAc,CAAC,cAAc,EAAE,YAAY,CAAC,CAGtD,CAAA;AAID;;;;;;GAMG;AACH,eAAO,MAAM,sBAAsB,eACW,CAAA;AAE9C;;;;;;GAMG;AACH,eAAO,MAAM,uBAAuB,eACW,CAAA;AAE/C;;;;;;GAMG;AACH,eAAO,MAAM,sBAAsB,eACW,CAAA;AAI9C,OAAO,EAAE,cAAc,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAA;AACpE,YAAY,EAAE,GAAG,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,sBAAsB,CAAA;AAC3D,OAAO,EACL,QAAQ,EACR,MAAM,EACN,QAAQ,GACT,MAAM,aAAa,CAAA;AACpB,YAAY,EAAE,eAAe,EAAE,MAAM,cAAc,CAAA;AACnD,YAAY,EACV,mBAAmB,EACnB,mBAAmB,EACnB,oBAAoB,EACpB,qBAAqB,EACrB,qBAAqB,EACrB,qBAAqB,GACtB,MAAM,4CAA4C,CAAA;AACnD,OAAO,EACL,oBAAoB,EACpB,uBAAuB,GACxB,MAAM,4CAA4C,CAAA;AACnD,YAAY,EAAE,SAAS,EAAE,MAAM,qBAAqB,CAAA;AACpD,OAAO,EACL,WAAW,EACX,qBAAqB,EACrB,aAAa,EACb,uBAAuB,EACvB,sBAAsB,EACtB,mBAAmB,EACnB,yBAAyB,EACzB,cAAc,EACd,aAAa,EACb,oBAAoB,EACpB,iBAAiB,EACjB,uBAAuB,EACvB,YAAY,EACZ,WAAW,GACZ,MAAM,qBAAqB,CAAA;AAC5B,YAAY,EACV,mBAAmB,EACnB,iBAAiB,EACjB,iBAAiB,EACjB,mBAAmB,EACnB,mBAAmB,GACpB,MAAM,wCAAwC,CAAA;AAC/C,OAAO,EACL,qBAAqB,EACrB,kBAAkB,GACnB,MAAM,wCAAwC,CAAA;AAC/C,YAAY,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAA;AAC3D,YAAY,EACV,UAAU,EACV,uBAAuB,EACvB,oBAAoB,EACpB,aAAa,EACb,mBAAmB,EACnB,cAAc,EACd,uBAAuB,EACvB,oBAAoB,EACpB,aAAa,GACd,MAAM,8BAA8B,CAAA;AACrC,OAAO,EACL,eAAe,EACf,gBAAgB,EAChB,eAAe,GAChB,MAAM,8BAA8B,CAAA;AACrC,OAAO,EACL,iBAAiB,EACjB,gBAAgB,GACjB,MAAM,sBAAsB,CAAA;AAC7B,YAAY,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAA"}