npm - @passportsign/core - Versions diffs - 0.1.0 → 0.2.0 - Mend

@passportsign/core 0.1.0 → 0.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (106) hide show

package/dist/badge.d.ts +5 -0
package/dist/badge.d.ts.map +1 -1
package/dist/badge.js +8 -2
package/dist/badge.js.map +1 -1
package/dist/bind.d.ts.map +1 -1
package/dist/bind.js +2 -8
package/dist/bind.js.map +1 -1
package/dist/bundle-fs.d.ts +16 -0
package/dist/bundle-fs.d.ts.map +1 -0
package/dist/bundle-fs.js +31 -0
package/dist/bundle-fs.js.map +1 -0
package/dist/bundle.d.ts +13 -5
package/dist/bundle.d.ts.map +1 -1
package/dist/bundle.js +18 -20
package/dist/bundle.js.map +1 -1
package/dist/canonical.d.ts.map +1 -1
package/dist/canonical.js +3 -4
package/dist/canonical.js.map +1 -1
package/dist/classify.d.ts +68 -0
package/dist/classify.d.ts.map +1 -0
package/dist/classify.js +117 -0
package/dist/classify.js.map +1 -0
package/dist/dsse-common.d.ts +32 -0
package/dist/dsse-common.d.ts.map +1 -0
package/dist/dsse-common.js +26 -0
package/dist/dsse-common.js.map +1 -0
package/dist/dsse-web.d.ts +28 -0
package/dist/dsse-web.d.ts.map +1 -0
package/dist/dsse-web.js +81 -0
package/dist/dsse-web.js.map +1 -0
package/dist/dsse.d.ts +2 -26
package/dist/dsse.d.ts.map +1 -1
package/dist/dsse.js +2 -19
package/dist/dsse.js.map +1 -1
package/dist/encoding.d.ts +20 -0
package/dist/encoding.d.ts.map +1 -0
package/dist/encoding.js +88 -0
package/dist/encoding.js.map +1 -0
package/dist/github.js +2 -2
package/dist/github.js.map +1 -1
package/dist/index.d.ts +9 -3
package/dist/index.d.ts.map +1 -1
package/dist/index.js +8 -2
package/dist/index.js.map +1 -1
package/dist/log/rekor.d.ts +1 -1
package/dist/log/rekor.d.ts.map +1 -1
package/dist/log/rekor.js +7 -10
package/dist/log/rekor.js.map +1 -1
package/dist/lookup.d.ts +46 -0
package/dist/lookup.d.ts.map +1 -0
package/dist/lookup.js +101 -0
package/dist/lookup.js.map +1 -0
package/dist/merkle.js +3 -3
package/dist/merkle.js.map +1 -1
package/dist/nonce.js +1 -1
package/dist/nonce.js.map +1 -1
package/dist/profile-index.d.ts +64 -0
package/dist/profile-index.d.ts.map +1 -0
package/dist/profile-index.js +161 -0
package/dist/profile-index.js.map +1 -0
package/dist/revoke.d.ts +30 -0
package/dist/revoke.d.ts.map +1 -0
package/dist/revoke.js +42 -0
package/dist/revoke.js.map +1 -0
package/dist/sdk-payload.d.ts.map +1 -1
package/dist/sdk-payload.js +4 -6
package/dist/sdk-payload.js.map +1 -1
package/dist/statement.d.ts +41 -0
package/dist/statement.d.ts.map +1 -1
package/dist/statement.js +43 -0
package/dist/statement.js.map +1 -1
package/dist/submit.d.ts +3 -3
package/dist/submit.d.ts.map +1 -1
package/dist/submit.js +3 -14
package/dist/submit.js.map +1 -1
package/dist/verifier.d.ts.map +1 -1
package/dist/verifier.js +4 -14
package/dist/verifier.js.map +1 -1
package/dist/web.d.ts +35 -0
package/dist/web.d.ts.map +1 -0
package/dist/web.js +35 -0
package/dist/web.js.map +1 -0
package/package.json +6 -2
package/src/badge.ts +124 -113
package/src/bind.ts +128 -137
package/src/bundle-fs.ts +40 -0
package/src/bundle.ts +138 -127
package/src/canonical.ts +33 -33
package/src/classify.ts +165 -0
package/src/dsse-common.ts +45 -0
package/src/dsse-web.ts +97 -0
package/src/dsse.ts +63 -91
package/src/encoding.ts +96 -0
package/src/github.ts +196 -196
package/src/index.ts +59 -2
package/src/log/rekor.ts +330 -334
package/src/lookup.ts +175 -0
package/src/merkle.ts +187 -187
package/src/nonce.ts +53 -53
package/src/profile-index.ts +222 -0
package/src/revoke.ts +67 -0
package/src/sdk-payload.ts +60 -62
package/src/statement.ts +203 -119
package/src/submit.ts +38 -54
package/src/verifier.ts +304 -317
package/src/web.ts +175 -0

package/src/web.ts ADDED Viewed

@@ -0,0 +1,175 @@
+/**
+ * `@passportsign/core/web` — the runtime-neutral surface.
+ *
+ * Everything exported here runs on Node, Cloudflare Workers, and
+ * browsers: no `node:fs`, no `node:crypto`, no `node:sqlite`, no
+ * `Buffer`. The Worker badge service and the browser bind flow import
+ * from this subpath; if something node-only sneaks in, their bundlers
+ * fail loudly at build time — that's the contract this file enforces.
+ *
+ * Node-only counterparts stay on the main entry: `readBundle` /
+ * `writeBundle` (fs), `signEnvelope` (node crypto; use
+ * `signEnvelopeWeb` here), `submitBinding` (composes the node signer;
+ * compose `signEnvelopeWeb` + `RekorClient.submitIntoto` +
+ * `assembleBundle` instead), and the SQLite cache.
+ */
+export { canonicalize, canonicalSha256Hex } from './canonical.js';
+export {
+  base64ToBytes,
+  bytesToBase64,
+  bytesToHex,
+  bytesToUtf8,
+  hexToBytes,
+  randomBytes,
+  sha256Bytes,
+  sha256Hex,
+  utf8ToBytes,
+} from './encoding.js';
+export {
+  IN_TOTO_STATEMENT_TYPE,
+  PASSPORTSIGN_PREDICATE_TYPE,
+  PASSPORTSIGN_REVOCATION_PREDICATE_TYPE,
+  buildRevocationStatement,
+  buildStatement,
+  type BuildRevocationStatementInput,
+  type BuildStatementInput,
+  type DisclosureLevel,
+  type PassportsignPredicate,
+  type PassportsignRevocationPredicate,
+  type PassportsignRevocationStatement,
+  type PassportsignStatement,
+} from './statement.js';
+export {
+  BUNDLE_FORMAT_VERSION,
+  BundleValidationError,
+  assembleBundle,
+  validateBundle,
+  type PassportsignBundle,
+  type RekorBundleFields,
+  type SubmittableStatement,
+} from './bundle.js';
+export { ERROR_CODES, PassportsignError, type ErrorCode } from './errors.js';
+export {
+  NONCE_BYTES,
+  NONCE_BASE32_LENGTH,
+  base32Encode,
+  generateNonce,
+} from './nonce.js';
+export {
+  checkGistControl,
+  type CheckGistOptions,
+  type GistEvidence,
+} from './github.js';
+export {
+  prepareBinding,
+  type PrepareBindingDeps,
+  type PrepareBindingInit,
+  type PrepareBindingInput,
+  type PreparedBinding,
+} from './bind.js';
+export {
+  prepareRevocation,
+  type PrepareRevocationInput,
+  type PreparedRevocation,
+} from './revoke.js';
+export {
+  DSSE_VERSION,
+  IN_TOTO_PAYLOAD_TYPE,
+  pae,
+  type DsseEnvelope,
+  type DsseSignature,
+} from './dsse-common.js';
+export {
+  p1363ToDer,
+  signEnvelopeWeb,
+  type SignEnvelopeWebResult,
+} from './dsse-web.js';
+export {
+  DEFAULT_REKOR_BASE_URL,
+  PublicSigstoreRekorClient,
+  buildIntotoEntryBody,
+  type InclusionProof,
+  type PublicSigstoreRekorClientOptions,
+  type RekorClient,
+  type RekorEntryResponse,
+} from './log/rekor.js';
+export {
+  hashLeaf,
+  hashPair,
+  verifyConsistency,
+  verifyInclusion,
+} from './merkle.js';
+export {
+  packSdkPayload,
+  unpackSdkPayload,
+  type PackedSdkPayload,
+  type SdkPayload,
+} from './sdk-payload.js';
+export {
+  renderBadgeMarkdown,
+  renderBadgeSvg,
+  type BadgeInput,
+} from './badge.js';
+export {
+  PROFILE_INDEX_FILENAME,
+  PROFILE_INDEX_VERSION,
+  ProfileIndexValidationError,
+  addBinding,
+  addRevocation,
+  createProfileIndex,
+  fetchProfileIndex,
+  mergeProfileIndexes,
+  profileIndexUrl,
+  validateProfileIndex,
+  type FetchProfileIndexOptions,
+  type ProfileIndex,
+  type ProfileIndexBinding,
+  type ProfileIndexRevocation,
+} from './profile-index.js';
+export {
+  EntryParseError,
+  STALENESS_WINDOW_MS,
+  classifyBindings,
+  parseIntotoEntry,
+  type BindingState,
+  type ClassifiedBinding,
+  type ClassifyBindingsInput,
+  type InTotoStatement,
+  type ParsedIntotoEntry,
+} from './classify.js';
+export {
+  lookupBindings,
+  lookupFromIndex,
+  type LookupBindingsDeps,
+  type LookupDeps,
+  type LookupEntryProblem,
+  type LookupResult,
+} from './lookup.js';
+export {
+  verifyBundle,
+  type BundleVerifyResult,
+  type CheckResult,
+  type SdkVerifier,
+  type SdkVerifyInput,
+  type SdkVerifyResult,
+  type VerifyBundleDeps,
+} from './verifier.js';