@php-wasm/web-service-worker 3.1.18 → 3.1.20

package/index.cjs

@@ -1 +1 @@
-"use strict";Object.defineProperty(exports,Symbol.toStringTag,{value:"Module"});const d=require("@php-wasm/scopes"),q=require("@php-wasm/universal");var g=typeof document<"u"?document.currentScript:null;const I=25e3;let H=0;function v(e,t,...r){const n=S();return e.postMessage({...t,requestId:n},...r),n}function S(){return++H}function U(e,t,r=I){return new Promise((n,a)=>{const o=u=>{u.data.type==="response"&&u.data.requestId===t&&(e.removeEventListener("message",o),clearTimeout(s),n(u.data.response))},s=setTimeout(()=>{a(new Error("Request timed out")),e.removeEventListener("message",o)},r);e.addEventListener("message",o)})}function A(e,t){return{type:"response",requestId:e,response:t}}async function O(e){let t=new URL(e.request.url);if(!d.isURLScoped(t))try{const c=new URL(e.request.referrer);t=d.setURLScope(t,d.getURLScope(c))}catch{}const r=e.request.headers.get("content-type"),n=e.request.method==="POST"?new Uint8Array(await e.request.clone().arrayBuffer()):void 0,a={};for(const c of e.request.headers.entries())a[c[0]]=c[1];let o;try{const c={method:"request",args:[{body:n,url:t.toString(),method:e.request.method,headers:{...a,Host:t.host,"User-agent":self.navigator.userAgent,"Content-type":r}}]},i=d.getURLScope(t);if(i===null)throw new Error(`The URL ${t.toString()} is not scoped. This should not happen.`);const f=await b(c,i);if(o=await U(self,f),delete o.headers["x-frame-options"],o.headers["content-security-policy"]){const l=o.headers["content-security-policy"].map(p=>C("frame-ancestors",p)).filter(p=>p.trim().length>0);l.length>0?o.headers["content-security-policy"]=l:delete o.headers["content-security-policy"]}}catch(c){throw console.error(c,{url:t.toString()}),c}if(o.httpStatusCode>=300&&o.httpStatusCode<=399&&o.headers.location){const c=d.getURLScope(t);let i=new URL(o.headers.location[0],t.toString());return c&&!d.isURLScoped(i)&&(i=d.setURLScope(i,c)),Response.redirect(i.toString(),o.httpStatusCode)}const s=[101,103,204,205,304].includes(o.httpStatusCode);let u=null;return s||(o.bodyPort?u=q.portToStream(o.bodyPort):u=o.bytes),new Response(u,{headers:o.headers,status:o.httpStatusCode})}async function b(e,t){const r=S();for(const n of await self.clients.matchAll({includeUncontrolled:!0}))n.postMessage({...e,scope:t,requestId:r});return r}async function h(e,t){let r;return["GET","HEAD"].includes(e.method)?r=void 0:"body"in t?r=t.body:!e.bodyUsed&&e.body?r=e.body:r=await e.arrayBuffer(),new Request(t.url||e.url,{body:r,method:e.method,headers:e.headers,referrer:e.referrer,referrerPolicy:e.referrerPolicy,mode:e.mode==="navigate"?"same-origin":e.mode,credentials:e.credentials,cache:e.cache,redirect:e.redirect,integrity:e.integrity,...r instanceof ReadableStream&&{duplex:"half"},...t})}async function L(e){if(!e.body)return[e,e];const[t,r]=e.body.tee();return[await h(e,{body:t,duplex:"half"}),await h(e,{body:r,duplex:"half"})]}function D(e){const t={};return e.headers.forEach((r,n)=>{t[n]=r}),t}function C(e,t){const r=/^[\u{9}\u{A}\u{C}\u{D}\u{20}]+/u,n=/[\u{9}\u{A}\u{C}\u{D}\u{20}]+$/u,a=/[\u{9}\u{A}\u{C}\u{D}\u{20}]/u;return t.split(";").filter(o=>{const s=o.replace(r,"").replace(n,""),[u]=s.split(a,1);return u.toLowerCase()!==e.toLowerCase()}).join(";")}class T extends Error{constructor(t,r,n){super(`Could not fetch ${t} – your network appears to be blocking this request (HTTP ${r}). This often happens on school, university, or corporate networks. Try switching to a different network or using a VPN.`),this.name="FirewallInterferenceError",this.url=t,this.status=r,this.statusText=n}}const M="X-Playground-Cors-Proxy";async function j(e,t,r,n){var f;let a=typeof e=="string"?new Request(e,t):e;const o=n?new URL(n):null;let s=o?new URL(a.url,o):new URL(a.url);if(s.hostname==="localhost"||s.hostname==="127.0.0.1"||s.hostname==="[::1]"||s.hostname==="::1")return await fetch(a);if(s.protocol==="http:"){s.protocol="https:";const l=s.toString();a=await h(a,{url:l}),s=new URL(l)}if(!r)return await fetch(a);if(o&&s.protocol===o.protocol&&s.hostname===o.hostname&&s.port===o.port&&s.pathname.startsWith(o.pathname))return await fetch(a);const[c,i]=await L(a);try{return await fetch(c)}catch{const l=new Headers(i.headers),p=((f=l.get("x-cors-proxy-allowed-request-headers"))==null?void 0:f.split(","))||[],E=p.includes("authorization")||p.includes("cookie"),m=l.get("content-type");m&&m.toLowerCase().includes("multipart/form-data")&&(l.set("x-cors-proxy-content-type",m),l.set("content-type","application/octet-stream"));const y=new URL(typeof document>"u"?require("url").pathToFileURL(__filename).href:g&&g.tagName.toUpperCase()==="SCRIPT"&&g.src||new URL("index.cjs",document.baseURI).href);y.pathname="",y.search="",y.hash="";const P=new URL(r,y.toString());let w=i.body;w&&new URL(P).protocol==="http:"&&(w=await new Response(w).arrayBuffer());const x=await h(i,{url:`${r}${a.url}`,headers:l,body:w,...E&&{credentials:"include"}}),R=await fetch(x);if(!R.headers.has(M))throw new T(a.url,R.status,R.statusText);return R}}exports.FirewallInterferenceError=T;exports.awaitReply=U;exports.broadcastMessageExpectReply=b;exports.cloneRequest=h;exports.convertFetchEventToPHPRequest=O;exports.fetchWithCorsProxy=j;exports.getNextRequestId=S;exports.getRequestHeaders=D;exports.postMessageExpectReply=v;exports.removeContentSecurityPolicyDirective=C;exports.responseTo=A;exports.teeRequest=L;
+"use strict";Object.defineProperty(exports,Symbol.toStringTag,{value:"Module"});const d=require("@php-wasm/scopes"),q=require("@php-wasm/universal");var R=typeof document<"u"?document.currentScript:null;const x=25e3;let v=0;function H(e,t,...o){const a=S();return e.postMessage({...t,requestId:a},...o),a}function S(){return++v}function U(e,t,o=x){return new Promise((a,s)=>{const r=i=>{i.data.type==="response"&&i.data.requestId===t&&(e.removeEventListener("message",r),clearTimeout(n),a(i.data.response))},n=setTimeout(()=>{s(new Error("Request timed out")),e.removeEventListener("message",r)},o);e.addEventListener("message",r)})}function I(e,t){return{type:"response",requestId:e,response:t}}async function A(e){let t=new URL(e.request.url);if(!d.isURLScoped(t))try{const c=new URL(e.request.referrer);t=d.setURLScope(t,d.getURLScope(c))}catch{}const o=e.request.headers.get("content-type"),a=e.request.method==="POST"?new Uint8Array(await e.request.clone().arrayBuffer()):void 0,s={};for(const c of e.request.headers.entries())s[c[0]]=c[1];let r;try{const c={method:"request",args:[{body:a,url:t.toString(),method:e.request.method,headers:{...s,Host:t.host,"User-agent":self.navigator.userAgent,"Content-type":o}}]},l=d.getURLScope(t);if(l===null)throw new Error(`The URL ${t.toString()} is not scoped. This should not happen.`);const u=await L(c,l);if(r=await U(self,u),delete r.headers["x-frame-options"],r.headers["content-security-policy"]){const f=r.headers["content-security-policy"].map(y=>C("frame-ancestors",y)).filter(y=>y.trim().length>0);f.length>0?r.headers["content-security-policy"]=f:delete r.headers["content-security-policy"]}}catch(c){throw console.error(c,{url:t.toString()}),c}if(r.httpStatusCode>=300&&r.httpStatusCode<=399&&r.headers.location){const c=d.getURLScope(t);let l=new URL(r.headers.location[0],t.toString());return c&&!d.isURLScoped(l)&&(l=d.setURLScope(l,c)),Response.redirect(l.toString(),r.httpStatusCode)}const n=[101,103,204,205,304].includes(r.httpStatusCode);let i=null;return n||(r.bodyPort?i=q.portToStream(r.bodyPort):i=r.bytes),new Response(i,{headers:r.headers,status:r.httpStatusCode})}async function L(e,t){const o=S();for(const a of await self.clients.matchAll({includeUncontrolled:!0}))a.postMessage({...e,scope:t,requestId:o});return o}async function g(e,t){let o;return["GET","HEAD"].includes(e.method)?o=void 0:"body"in t?o=t.body:!e.bodyUsed&&e.body?o=e.body:o=await e.arrayBuffer(),new Request(t.url||e.url,{body:o,method:e.method,headers:e.headers,referrer:e.referrer,referrerPolicy:e.referrerPolicy,mode:e.mode==="navigate"?"same-origin":e.mode,credentials:e.credentials,cache:e.cache,redirect:e.redirect,integrity:e.integrity,...o instanceof ReadableStream&&{duplex:"half"},...t})}let h;const O={resetStreamBodySupported(){h=void 0}};async function T(){if(h!==void 0)return h;try{const e=new ReadableStream({start(t){t.close()}});await fetch("data:,",{method:"POST",body:e,duplex:"half"}),h=!0}catch{h=!1}return h}function _(e){const t={};return e.headers.forEach((o,a)=>{t[a]=o}),t}function C(e,t){const o=/^[\u{9}\u{A}\u{C}\u{D}\u{20}]+/u,a=/[\u{9}\u{A}\u{C}\u{D}\u{20}]+$/u,s=/[\u{9}\u{A}\u{C}\u{D}\u{20}]/u;return t.split(";").filter(r=>{const n=r.replace(o,"").replace(a,""),[i]=n.split(s,1);return i.toLowerCase()!==e.toLowerCase()}).join(";")}class E extends Error{constructor(t,o,a){super(`Could not fetch ${t} – your network appears to be blocking this request (HTTP ${o}). This often happens on school, university, or corporate networks. Try switching to a different network or using a VPN.`),this.name="FirewallInterferenceError",this.url=t,this.status=o,this.statusText=a}}const B="X-Playground-Cors-Proxy";async function D(e,t,o,a){var l;let s=typeof e=="string"?new Request(e,t):e;const r=a?new URL(a):null;let n=r?new URL(s.url,r):new URL(s.url);if(n.hostname==="localhost"||n.hostname==="127.0.0.1"||n.hostname==="[::1]"||n.hostname==="::1")return await fetch(s);if(n.protocol==="http:"){n.protocol="https:";const u=n.toString();s=await g(s,{url:u}),n=new URL(u)}if(!o)return await fetch(s);if(r&&n.protocol===r.protocol&&n.hostname===r.hostname&&n.port===r.port&&n.pathname.startsWith(r.pathname))return await fetch(s);const c=s.clone();try{return await fetch(s)}catch{const u=new Headers(s.headers),f=((l=u.get("x-cors-proxy-allowed-request-headers"))==null?void 0:l.split(","))||[],y=f.includes("authorization")||f.includes("cookie"),w=u.get("content-type");w&&w.toLowerCase().includes("multipart/form-data")&&(u.set("x-cors-proxy-content-type",w),u.set("content-type","application/octet-stream"));let p=null;const b=s.method.toUpperCase();b!=="GET"&&b!=="HEAD"&&(await T()?p=c.body:p=await c.arrayBuffer()),p instanceof ReadableStream&&new URL(o,typeof document>"u"?require("url").pathToFileURL(__filename).href:R&&R.tagName.toUpperCase()==="SCRIPT"&&R.src||new URL("index.cjs",document.baseURI).href).protocol==="http:"&&(p=await new Response(p).arrayBuffer());const P=await g(s,{url:`${o}${s.url}`,headers:u,body:p,...y&&{credentials:"include"}}),m=await fetch(P);if(!m.headers.has(B))throw new E(s.url,m.status,m.statusText);return m}}exports.FirewallInterferenceError=E;exports.__testing=O;exports.awaitReply=U;exports.broadcastMessageExpectReply=L;exports.cloneRequest=g;exports.convertFetchEventToPHPRequest=A;exports.fetchWithCorsProxy=D;exports.getNextRequestId=S;exports.getRequestHeaders=_;exports.postMessageExpectReply=H;exports.removeContentSecurityPolicyDirective=C;exports.responseTo=I;exports.supportsReadableStreamBody=T;

package/index.js

@@ -1,115 +1,115 @@
-import { isURLScoped as g, setURLScope as b, getURLScope as R } from "@php-wasm/scopes";
-import { portToStream as E } from "@php-wasm/universal";
-const T = 25e3;
-let x = 0;
-function j(e, t, ...r) {
-  const n = L();
+import { isURLScoped as g, setURLScope as S, getURLScope as w } from "@php-wasm/scopes";
+import { portToStream as C } from "@php-wasm/universal";
+const L = 25e3;
+let U = 0;
+function D(e, t, ...o) {
+  const a = E();
   return e.postMessage(
     {
       ...t,
-      requestId: n
+      requestId: a
     },
-    ...r
-  ), n;
+    ...o
+  ), a;
 }
-function L() {
-  return ++x;
+function E() {
+  return ++U;
 }
-function P(e, t, r = T) {
-  return new Promise((n, a) => {
-    const o = (u) => {
-      u.data.type === "response" && u.data.requestId === t && (e.removeEventListener("message", o), clearTimeout(s), n(u.data.response));
-    }, s = setTimeout(() => {
-      a(new Error("Request timed out")), e.removeEventListener("message", o);
-    }, r);
-    e.addEventListener("message", o);
+function P(e, t, o = L) {
+  return new Promise((a, s) => {
+    const r = (c) => {
+      c.data.type === "response" && c.data.requestId === t && (e.removeEventListener("message", r), clearTimeout(n), a(c.data.response));
+    }, n = setTimeout(() => {
+      s(new Error("Request timed out")), e.removeEventListener("message", r);
+    }, o);
+    e.addEventListener("message", r);
   });
 }
-function k(e, t) {
+function v(e, t) {
   return {
     type: "response",
     requestId: e,
     response: t
   };
 }
-async function v(e) {
+async function _(e) {
   let t = new URL(e.request.url);
   if (!g(t))
     try {
-      const c = new URL(e.request.referrer);
-      t = b(t, R(c));
+      const i = new URL(e.request.referrer);
+      t = S(t, w(i));
     } catch {
     }
-  const r = e.request.headers.get("content-type"), n = e.request.method === "POST" ? new Uint8Array(await e.request.clone().arrayBuffer()) : void 0, a = {};
-  for (const c of e.request.headers.entries())
-    a[c[0]] = c[1];
-  let o;
+  const o = e.request.headers.get("content-type"), a = e.request.method === "POST" ? new Uint8Array(await e.request.clone().arrayBuffer()) : void 0, s = {};
+  for (const i of e.request.headers.entries())
+    s[i[0]] = i[1];
+  let r;
   try {
-    const c = {
+    const i = {
       method: "request",
       args: [
         {
-          body: n,
+          body: a,
           url: t.toString(),
           method: e.request.method,
           headers: {
-            ...a,
+            ...s,
             Host: t.host,
             // Safari and Firefox don't make the User-Agent header
             // available in the fetch event. Let's add it manually:
             "User-agent": self.navigator.userAgent,
-            "Content-type": r
+            "Content-type": o
           }
         }
       ]
-    }, i = R(t);
-    if (i === null)
+    }, l = w(t);
+    if (l === null)
       throw new Error(
         `The URL ${t.toString()} is not scoped. This should not happen.`
       );
-    const h = await A(c, i);
-    if (o = await P(self, h), delete o.headers["x-frame-options"], o.headers["content-security-policy"]) {
-      const l = o.headers["content-security-policy"].map(
-        (d) => q(
+    const u = await x(i, l);
+    if (r = await P(self, u), delete r.headers["x-frame-options"], r.headers["content-security-policy"]) {
+      const h = r.headers["content-security-policy"].map(
+        (f) => A(
           "frame-ancestors",
-          d
+          f
         )
-      ).filter((d) => d.trim().length > 0);
-      l.length > 0 ? o.headers["content-security-policy"] = l : delete o.headers["content-security-policy"];
+      ).filter((f) => f.trim().length > 0);
+      h.length > 0 ? r.headers["content-security-policy"] = h : delete r.headers["content-security-policy"];
     }
-  } catch (c) {
-    throw console.error(c, { url: t.toString() }), c;
+  } catch (i) {
+    throw console.error(i, { url: t.toString() }), i;
   }
-  if (o.httpStatusCode >= 300 && o.httpStatusCode <= 399 && o.headers.location) {
-    const c = R(t);
-    let i = new URL(
-      o.headers.location[0],
+  if (r.httpStatusCode >= 300 && r.httpStatusCode <= 399 && r.headers.location) {
+    const i = w(t);
+    let l = new URL(
+      r.headers.location[0],
       t.toString()
     );
-    return c && !g(i) && (i = b(i, c)), Response.redirect(
-      i.toString(),
-      o.httpStatusCode
+    return i && !g(l) && (l = S(l, i)), Response.redirect(
+      l.toString(),
+      r.httpStatusCode
     );
   }
-  const s = [101, 103, 204, 205, 304].includes(
-    o.httpStatusCode
+  const n = [101, 103, 204, 205, 304].includes(
+    r.httpStatusCode
   );
-  let u = null;
-  return s || (o.bodyPort ? u = E(o.bodyPort) : u = o.bytes), new Response(u, {
-    headers: o.headers,
-    status: o.httpStatusCode
+  let c = null;
+  return n || (r.bodyPort ? c = C(r.bodyPort) : c = r.bytes), new Response(c, {
+    headers: r.headers,
+    status: r.httpStatusCode
   });
 }
-async function A(e, t) {
-  const r = L();
-  for (const n of await self.clients.matchAll({
+async function x(e, t) {
+  const o = E();
+  for (const a of await self.clients.matchAll({
     // Sometimes the client that triggered the current fetch()
     // event is considered uncontrolled in Google Chrome. This
     // only happens on the first few fetches() after the initial
     // registration of the service worker.
     includeUncontrolled: !0
   }))
-    n.postMessage({
+    a.postMessage({
       ...e,
       /**
        * Attach the scope with a URL starting with `/scope:` to this message.
@@ -119,14 +119,14 @@ async function A(e, t) {
        * helps WASM workers ignore requests meant for other WASM workers.
        */
       scope: t,
-      requestId: r
+      requestId: o
     });
-  return r;
+  return o;
 }
-async function w(e, t) {
-  let r;
-  return ["GET", "HEAD"].includes(e.method) ? r = void 0 : "body" in t ? r = t.body : !e.bodyUsed && e.body ? r = e.body : r = await e.arrayBuffer(), new Request(t.url || e.url, {
-    body: r,
+async function b(e, t) {
+  let o;
+  return ["GET", "HEAD"].includes(e.method) ? o = void 0 : "body" in t ? o = t.body : !e.bodyUsed && e.body ? o = e.body : o = await e.arrayBuffer(), new Request(t.url || e.url, {
+    body: o,
     method: e.method,
     headers: e.headers,
     referrer: e.referrer,
@@ -148,80 +148,94 @@ async function w(e, t) {
      *
      * See MDN: https://developer.mozilla.org/en-US/docs/Web/API/Request/duplex
      */
-    ...r instanceof ReadableStream && { duplex: "half" },
+    ...o instanceof ReadableStream && { duplex: "half" },
     ...t
   });
 }
-async function H(e) {
-  if (!e.body)
-    return [e, e];
-  const [t, r] = e.body.tee();
-  return [
-    await w(e, { body: t, duplex: "half" }),
-    await w(e, { body: r, duplex: "half" })
-  ];
+let p;
+const $ = {
+  resetStreamBodySupported() {
+    p = void 0;
+  }
+};
+async function q() {
+  if (p !== void 0)
+    return p;
+  try {
+    const e = new ReadableStream({
+      start(t) {
+        t.close();
+      }
+    });
+    await fetch("data:,", {
+      method: "POST",
+      body: e,
+      duplex: "half"
+    }), p = !0;
+  } catch {
+    p = !1;
+  }
+  return p;
 }
-function B(e) {
+function k(e) {
   const t = {};
-  return e.headers.forEach((r, n) => {
-    t[n] = r;
+  return e.headers.forEach((o, a) => {
+    t[a] = o;
   }), t;
 }
-function q(e, t) {
-  const r = /^[\u{9}\u{A}\u{C}\u{D}\u{20}]+/u, n = /[\u{9}\u{A}\u{C}\u{D}\u{20}]+$/u, a = /[\u{9}\u{A}\u{C}\u{D}\u{20}]/u;
-  return t.split(";").filter((o) => {
-    const s = o.replace(r, "").replace(n, ""), [u] = s.split(
-      a,
+function A(e, t) {
+  const o = /^[\u{9}\u{A}\u{C}\u{D}\u{20}]+/u, a = /[\u{9}\u{A}\u{C}\u{D}\u{20}]+$/u, s = /[\u{9}\u{A}\u{C}\u{D}\u{20}]/u;
+  return t.split(";").filter((r) => {
+    const n = r.replace(o, "").replace(a, ""), [c] = n.split(
+      s,
       // The directive name is the first token.
       1
     );
-    return u.toLowerCase() !== e.toLowerCase();
+    return c.toLowerCase() !== e.toLowerCase();
   }).join(";");
 }
-class I extends Error {
-  constructor(t, r, n) {
+class H extends Error {
+  constructor(t, o, a) {
     super(
-      `Could not fetch ${t} – your network appears to be blocking this request (HTTP ${r}). This often happens on school, university, or corporate networks. Try switching to a different network or using a VPN.`
-    ), this.name = "FirewallInterferenceError", this.url = t, this.status = r, this.statusText = n;
+      `Could not fetch ${t} – your network appears to be blocking this request (HTTP ${o}). This often happens on school, university, or corporate networks. Try switching to a different network or using a VPN.`
+    ), this.name = "FirewallInterferenceError", this.url = t, this.status = o, this.statusText = a;
   }
 }
-const O = "X-Playground-Cors-Proxy";
-async function M(e, t, r, n) {
-  var h;
-  let a = typeof e == "string" ? new Request(e, t) : e;
-  const o = n ? new URL(n) : null;
-  let s = o ? new URL(a.url, o) : new URL(a.url);
-  if (s.hostname === "localhost" || s.hostname === "127.0.0.1" || s.hostname === "[::1]" || s.hostname === "::1")
-    return await fetch(a);
-  if (s.protocol === "http:") {
-    s.protocol = "https:";
-    const l = s.toString();
-    a = await w(a, { url: l }), s = new URL(l);
+const I = "X-Playground-Cors-Proxy";
+async function M(e, t, o, a) {
+  var l;
+  let s = typeof e == "string" ? new Request(e, t) : e;
+  const r = a ? new URL(a) : null;
+  let n = r ? new URL(s.url, r) : new URL(s.url);
+  if (n.hostname === "localhost" || n.hostname === "127.0.0.1" || n.hostname === "[::1]" || n.hostname === "::1")
+    return await fetch(s);
+  if (n.protocol === "http:") {
+    n.protocol = "https:";
+    const u = n.toString();
+    s = await b(s, { url: u }), n = new URL(u);
   }
-  if (!r)
-    return await fetch(a);
-  if (o && s.protocol === o.protocol && s.hostname === o.hostname && s.port === o.port && s.pathname.startsWith(o.pathname))
-    return await fetch(a);
-  const [c, i] = await H(a);
+  if (!o)
+    return await fetch(s);
+  if (r && n.protocol === r.protocol && n.hostname === r.hostname && n.port === r.port && n.pathname.startsWith(r.pathname))
+    return await fetch(s);
+  const i = s.clone();
   try {
-    return await fetch(c);
+    return await fetch(s);
   } catch {
-    const l = new Headers(i.headers), d = ((h = l.get("x-cors-proxy-allowed-request-headers")) == null ? void 0 : h.split(",")) || [], U = d.includes("authorization") || d.includes("cookie"), m = l.get("content-type");
-    m && m.toLowerCase().includes("multipart/form-data") && (l.set("x-cors-proxy-content-type", m), l.set("content-type", "application/octet-stream"));
-    const p = new URL(import.meta.url);
-    p.pathname = "", p.search = "", p.hash = "";
-    const S = new URL(r, p.toString());
-    let f = i.body;
-    f && new URL(S).protocol === "http:" && (f = await new Response(f).arrayBuffer());
-    const C = await w(i, {
-      url: `${r}${a.url}`,
-      headers: l,
-      body: f,
-      ...U && { credentials: "include" }
-    }), y = await fetch(C);
-    if (!y.headers.has(O))
-      throw new I(
-        a.url,
+    const u = new Headers(s.headers), h = ((l = u.get("x-cors-proxy-allowed-request-headers")) == null ? void 0 : l.split(",")) || [], f = h.includes("authorization") || h.includes("cookie"), m = u.get("content-type");
+    m && m.toLowerCase().includes("multipart/form-data") && (u.set("x-cors-proxy-content-type", m), u.set("content-type", "application/octet-stream"));
+    let d = null;
+    const R = s.method.toUpperCase();
+    R !== "GET" && R !== "HEAD" && (await q() ? d = i.body : d = await i.arrayBuffer()), d instanceof ReadableStream && new URL(o, import.meta.url).protocol === "http:" && (d = await new Response(d).arrayBuffer());
+    const T = await b(s, {
+      url: `${o}${s.url}`,
+      headers: u,
+      body: d,
+      ...f && { credentials: "include" }
+    }), y = await fetch(T);
+    if (!y.headers.has(I))
+      throw new H(
+        s.url,
         y.status,
         y.statusText
       );
@@ -229,16 +243,17 @@ async function M(e, t, r, n) {
   }
 }
 export {
-  I as FirewallInterferenceError,
+  H as FirewallInterferenceError,
+  $ as __testing,
   P as awaitReply,
-  A as broadcastMessageExpectReply,
-  w as cloneRequest,
-  v as convertFetchEventToPHPRequest,
+  x as broadcastMessageExpectReply,
+  b as cloneRequest,
+  _ as convertFetchEventToPHPRequest,
   M as fetchWithCorsProxy,
-  L as getNextRequestId,
-  B as getRequestHeaders,
-  j as postMessageExpectReply,
-  q as removeContentSecurityPolicyDirective,
-  k as responseTo,
-  H as teeRequest
+  E as getNextRequestId,
+  k as getRequestHeaders,
+  D as postMessageExpectReply,
+  A as removeContentSecurityPolicyDirective,
+  v as responseTo,
+  q as supportsReadableStreamBody
 };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@php-wasm/web-service-worker",
-  "version": "3.1.18",
+  "version": "3.1.20",
   "description": "PHP.wasm – service worker utils",
   "repository": {
     "type": "git",
@@ -31,15 +31,15 @@
   "main": "./index.cjs",
   "module": "./index.js",
   "license": "GPL-2.0-or-later",
-  "gitHead": "556d5464c00b85ced0a505a31968b3fa1753eb28",
+  "gitHead": "98cfca0a050ef1dacce25710d6ebdf816e80b764",
   "engines": {
     "node": ">=20.10.0",
     "npm": ">=10.2.3"
   },
   "dependencies": {
     "ini": "4.1.2",
-    "@php-wasm/scopes": "3.1.18",
-    "@php-wasm/universal": "3.1.18"
+    "@php-wasm/scopes": "3.1.20",
+    "@php-wasm/universal": "3.1.20"
   },
   "packageManager": "npm@10.9.2",
   "overrides": {
@@ -51,6 +51,7 @@
     "tmp": "0.2.5",
     "form-data": "^4.0.4",
     "lodash": "^4.17.23",
-    "glob": "^9.3.0"
+    "glob": "^9.3.0",
+    "webpackbar": "^7.0.0"
   }
 }

package/utils.d.ts

@@ -34,14 +34,20 @@ export declare function broadcastMessageExpectReply(message: any, scope: string)
  * @returns The new request.
  */
 export declare function cloneRequest(request: Request, overrides: Record<string, any>): Promise<Request>;
+/** @internal Test-only utilities — not part of the public API. */
+export declare const __testing: {
+    resetStreamBodySupported(): void;
+};
 /**
- * Tee a request to ensure the body stream is not consumed
- * when executing or cloning the request.
+ * Detects whether the browser supports passing a ReadableStream as the body
+ * of a fetch() request. The result is probed once (via a `data:` URL) and
+ * cached for the lifetime of the page.
  *
- * @param request
- * @returns
+ * - Chrome: supported (with `duplex: 'half'`).
+ * - Safari: throws `NotSupportedError: ReadableStream uploading is not supported`.
+ * - Firefox: the probe fetch itself may fail; `request.body` is not even exposed.
  */
-export declare function teeRequest(request: Request): Promise<[Request, Request]>;
+export declare function supportsReadableStreamBody(): Promise<boolean>;
 /**
  * Extracts headers from a Request as a plain key->value JS object.
  *