@private.me/xbind 1.3.0 → 2.3.4

package/dist-standalone/xfetch.js

@@ -1,247 +1 @@
-/**
- * @module xfetch
- * Drop-in fetch() replacement with auto-upgrade to xBind
- *
- * Provides transparent upgrade from HTTP to xBind when both parties support it.
- * Falls back to regular HTTP fetch() when xBind is not available.
- */
-import { Agent } from './agent.js';
-import { AgentError, AgentErrorCode } from './agent-call.js';
-/**
- * Check if endpoint supports xBind
- *
- * Sends OPTIONS request with xBind capability header.
- * Endpoint responds with xBind-Support header if available.
- *
- * @param url - Target URL
- * @returns Capability check result
- */
-async function checkXBindSupport(url) {
-    try {
-        const response = await fetch(url, {
-            method: 'OPTIONS',
-            headers: {
-                'X-Capability-Check': 'xbind',
-            },
-        });
-        const supported = response.headers.get('X-xBind-Support') === 'true';
-        if (!supported) {
-            return { supported: false };
-        }
-        return {
-            supported: true,
-            endpoint: response.headers.get('X-xBind-Endpoint') || undefined,
-            peerDID: response.headers.get('X-xBind-DID') || undefined,
-            version: response.headers.get('X-xBind-Version') || undefined,
-        };
-    }
-    catch (error) {
-        // Network error or CORS - assume no xBind support
-        return { supported: false };
-    }
-}
-/**
- * Send request via xBind transport
- *
- * @param url - Target URL
- * @param capability - xBind capability info
- * @param options - Request options
- * @param agent - Agent instance
- * @returns xBind response
- */
-async function sendViaXBind(url, capability, options, agent) {
-    const startTime = Date.now();
-    // TODO: Integrate with Agent.send() when transport layer is ready
-    // For now, placeholder that will be completed by transport layer work
-    throw new AgentError(AgentErrorCode.NETWORK_ERROR, 'xBind transport not yet implemented - requires transport layer (xchange/xfetch integration)', {
-        url,
-        peerDID: capability.peerDID,
-        nextSteps: [
-            'Complete Agent.send() integration',
-            'Implement xBind message envelope',
-            'Add DID-based authentication',
-        ],
-    });
-}
-/**
- * Send request via standard HTTP fetch
- *
- * @param url - Target URL
- * @param options - Request options
- * @returns HTTP response wrapped as XFetchResponse
- */
-async function sendViaHTTP(url, options) {
-    const startTime = Date.now();
-    // Remove xFetch-specific options before passing to fetch
-    const { forceXBind, disableXBind, agent, retry, ...fetchOptions } = options;
-    const response = await fetch(url, fetchOptions);
-    const latency = Date.now() - startTime;
-    // Wrap Response with xFetch metadata
-    return Object.assign(response, {
-        usedXBind: false,
-        transport: {
-            protocol: url.startsWith('https') ? 'https' : 'http',
-            latency,
-        },
-    });
-}
-/**
- * Retry logic with exponential backoff
- *
- * @param fn - Function to retry
- * @param options - Retry configuration
- * @returns Result of function
- */
-async function withRetry(fn, options) {
-    const maxAttempts = options?.maxAttempts ?? 3;
-    const initialDelay = options?.initialDelay ?? 1000;
-    const multiplier = options?.multiplier ?? 2;
-    let lastError;
-    let delay = initialDelay;
-    for (let attempt = 1; attempt <= maxAttempts; attempt++) {
-        try {
-            return await fn();
-        }
-        catch (error) {
-            lastError = error instanceof Error ? error : new Error(String(error));
-            // Don't retry on client errors (4xx)
-            if (error instanceof Response && error.status >= 400 && error.status < 500) {
-                throw error;
-            }
-            if (attempt < maxAttempts) {
-                await new Promise((resolve) => setTimeout(resolve, delay));
-                delay *= multiplier;
-            }
-        }
-    }
-    throw lastError;
-}
-/**
- * xFetch - Drop-in fetch() replacement with auto-upgrade to xBind
- *
- * @param url - Target URL
- * @param options - Request options (extends fetch RequestInit)
- * @returns Response with xBind metadata
- *
- * @example
- * ```typescript
- * // Basic usage (auto-upgrades to xBind if supported)
- * const response = await xfetch('https://api.example.com/data');
- * console.log('Used xBind?', response.usedXBind);
- * const data = await response.json();
- * ```
- *
- * @example
- * ```typescript
- * // Force xBind (fail if not supported)
- * const response = await xfetch('https://api.example.com/secure', {
- *   forceXBind: true,
- * });
- * ```
- *
- * @example
- * ```typescript
- * // Disable xBind (HTTP only)
- * const response = await xfetch('https://api.example.com/public', {
- *   disableXBind: true,
- * });
- * ```
- *
- * @example
- * ```typescript
- * // With retry and timeout
- * const response = await xfetch('https://api.example.com/data', {
- *   timeout: 10000,
- *   retry: {
- *     maxAttempts: 5,
- *     initialDelay: 500,
- *     multiplier: 2,
- *   },
- * });
- * ```
- */
-export async function xfetch(url, options = {}) {
-    // Validate URL
-    let parsedURL;
-    try {
-        parsedURL = new URL(url);
-    }
-    catch (error) {
-        throw new AgentError(AgentErrorCode.INVALID_PARAMS, `Invalid URL: ${url}`, { url, error });
-    }
-    // Only support HTTP(S) protocols
-    if (!['http:', 'https:'].includes(parsedURL.protocol)) {
-        throw new AgentError(AgentErrorCode.INVALID_PARAMS, `Unsupported protocol: ${parsedURL.protocol}`, { url, protocol: parsedURL.protocol });
-    }
-    // Apply timeout if specified
-    const timeout = options.timeout ?? 30000;
-    const controller = new AbortController();
-    const timeoutId = setTimeout(() => controller.abort(), timeout);
-    try {
-        // Merge abort signals if user provided one
-        const signal = options.signal
-            ? AbortSignal.any?.([options.signal, controller.signal]) ?? controller.signal
-            : controller.signal;
-        const requestOptions = {
-            ...options,
-            signal,
-        };
-        // If xBind is explicitly disabled, use HTTP directly
-        if (options.disableXBind) {
-            return await withRetry(() => sendViaHTTP(url, requestOptions), options.retry);
-        }
-        // Check if endpoint supports xBind
-        const capability = await checkXBindSupport(url);
-        // If xBind is forced but not supported, fail
-        if (options.forceXBind && !capability.supported) {
-            throw new AgentError(AgentErrorCode.NETWORK_ERROR, `xBind required but endpoint does not support it: ${url}`, { url, forceXBind: true, capability });
-        }
-        // If xBind is supported, use it
-        if (capability.supported) {
-            // Create or use provided agent
-            const agent = options.agent ?? await Agent.from({ identity: 'ephemeral', identityTTL: 3600000 });
-            return await withRetry(() => sendViaXBind(url, capability, requestOptions, agent), options.retry);
-        }
-        // Fallback to HTTP
-        return await withRetry(() => sendViaHTTP(url, requestOptions), options.retry);
-    }
-    finally {
-        clearTimeout(timeoutId);
-    }
-}
-/**
- * Check if a URL supports xBind
- *
- * Utility function for checking xBind support before making a request.
- *
- * @param url - URL to check
- * @returns True if endpoint supports xBind
- *
- * @example
- * ```typescript
- * const supported = await isXBindSupported('https://api.example.com');
- * if (supported) {
- *   console.log('Endpoint supports xBind - request will be upgraded');
- * }
- * ```
- */
-export async function isXBindSupported(url) {
-    const capability = await checkXBindSupport(url);
-    return capability.supported;
-}
-/**
- * Get xBind capability information for a URL
- *
- * @param url - URL to check
- * @returns Capability information
- *
- * @example
- * ```typescript
- * const info = await getXBindCapability('https://api.example.com');
- * console.log('Peer DID:', info.peerDID);
- * console.log('xBind version:', info.version);
- * ```
- */
-export async function getXBindCapability(url) {
-    return checkXBindSupport(url);
-}
+import{Agent}from"./agent.js";import{AgentError,AgentErrorCode}from"./agent-call.js";async function checkXBindSupport(t){try{const e=await fetch(t,{method:"OPTIONS",headers:{"X-Capability-Check":"xbind"}});return"true"===e.headers.get("X-xBind-Support")?{supported:!0,endpoint:e.headers.get("X-xBind-Endpoint")||void 0,peerDID:e.headers.get("X-xBind-DID")||void 0,version:e.headers.get("X-xBind-Version")||void 0}:{supported:!1}}catch(t){return{supported:!1}}}async function sendViaXBind(t,e,r,o){const n=Date.now();if(!e.peerDID)throw new AgentError(AgentErrorCode.NETWORK_ERROR,"Server supports xBind but did not provide X-xBind-DID header",{url:t,capability:e});const i=e.peerDID,a=e.endpoint||t,s=new Uint8Array(16);crypto.getRandomValues(s);const d=Array.from(s).map(t=>t.toString(16).padStart(2,"0")).join(""),c=`xfetch_${Date.now()}_${d}`,p={correlationId:c,method:r.method||"GET",url:t,headers:r.headers||{},body:r.body?"string"==typeof r.body?r.body:JSON.stringify(r.body):void 0};return new Promise((e,s)=>{const d=setTimeout(()=>{s(new AgentError(AgentErrorCode.TIMEOUT,"xBind request timed out waiting for response",{url:t,correlationId:c,timeout:r.timeout||3e4}))},r.timeout||3e4);(async()=>{try{const u=await o.send({to:i,payload:p,scope:"xfetch",action:"http_request"});if(!u.ok)return clearTimeout(d),void s(new AgentError(AgentErrorCode.NETWORK_ERROR,`Failed to send xBind request: ${u.error}`,{url:t,error:u.error}));const l=`${a}/response/${c}`,g=100,h=(r.timeout||3e4)/g;for(let t=0;t<h;t++){await new Promise(t=>setTimeout(t,g));try{const t=await fetch(l);if(200===t.status){clearTimeout(d);const r=Date.now()-n;return void e(Object.assign(t,{usedXBind:!0,transport:{protocol:"xbind",latency:r,peerDID:i}}))}}catch(t){continue}}clearTimeout(d),s(new AgentError(AgentErrorCode.TIMEOUT,"Response not available after polling",{url:t,correlationId:c,polls:h}))}catch(e){clearTimeout(d),s(e instanceof AgentError?e:new AgentError(AgentErrorCode.NETWORK_ERROR,"xBind request failed",{url:t,error:String(e)}))}})()})}async function sendViaHTTP(t,e){const r=Date.now(),{forceXBind:o,disableXBind:n,agent:i,retry:a,...s}=e,d=await fetch(t,s),c=Date.now()-r;return Object.assign(d,{usedXBind:!1,transport:{protocol:t.startsWith("https")?"https":"http",latency:c}})}async function withRetry(t,e){const r=e?.maxAttempts??3,o=e?.initialDelay??1e3,n=e?.multiplier??2;let i,a=o;for(let e=1;e<=r;e++)try{return await t()}catch(t){if(i=t instanceof Error?t:new Error(String(t)),t instanceof Response&&t.status>=400&&t.status<500)throw t;e<r&&(await new Promise(t=>setTimeout(t,a)),a*=n)}throw i}export async function xfetch(t,e={}){let r;try{r=new URL(t)}catch(e){throw new AgentError(AgentErrorCode.INVALID_PARAMS,`Invalid URL: ${t}`,{url:t,error:e})}if(!["http:","https:"].includes(r.protocol))throw new AgentError(AgentErrorCode.INVALID_PARAMS,`Unsupported protocol: ${r.protocol}`,{url:t,protocol:r.protocol});const o=e.timeout??3e4,n=new AbortController,i=setTimeout(()=>n.abort(),o);try{const r=e.signal?AbortSignal.any?.([e.signal,n.signal])??n.signal:n.signal,o={...e,signal:r};if(e.disableXBind)return await withRetry(()=>sendViaHTTP(t,o),e.retry);const i=await checkXBindSupport(t);if(e.forceXBind&&!i.supported)throw new AgentError(AgentErrorCode.NETWORK_ERROR,`xBind required but endpoint does not support it: ${t}`,{url:t,forceXBind:!0,capability:i});if(i.supported){const r=e.agent??await Agent.from({identity:"ephemeral",identityTTL:36e5});return await withRetry(()=>sendViaXBind(t,i,o,r),e.retry)}return await withRetry(()=>sendViaHTTP(t,o),e.retry)}finally{clearTimeout(i)}}export async function isXBindSupported(t){return(await checkXBindSupport(t)).supported}export async function getXBindCapability(t){return checkXBindSupport(t)}

package/llms.txt

@@ -798,3 +798,4 @@ All IP protection measures active (obfuscation + Full Control + xGhost pattern).
 - White paper: https://private.me/docs/xbind.html
 - npm: https://npmjs.com/package/@private.me/xbind
 - GitHub: https://github.com/xail-io/xail/tree/main/packages/xbind
+docs/api/

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@private.me/xbind",
-  "version": "1.3.0",
+  "version": "2.3.4",
   "description": "Identity-based M2M authentication (Contains encryption - export restrictions apply)",
   "license": "Proprietary",
   "author": "Private.Me Contributors",
@@ -27,8 +27,51 @@
         "default": "./dist-standalone/cjs/index.js"
       }
     },
-    "./_deps/*": "./dist-standalone/_deps/*/index.js"
+    "./agent": {
+      "types": "./dist-standalone/agent.d.ts",
+      "import": "./dist-standalone/agent.js",
+      "require": "./dist-standalone/cjs/agent.js"
+    },
+    "./identity": {
+      "types": "./dist-standalone/identity.d.ts",
+      "import": "./dist-standalone/identity.js",
+      "require": "./dist-standalone/cjs/identity.js"
+    },
+    "./trust-registry": {
+      "types": "./dist-standalone/trust-registry.d.ts",
+      "import": "./dist-standalone/trust-registry.js",
+      "require": "./dist-standalone/cjs/trust-registry.js"
+    },
+    "./key-agreement": {
+      "types": "./dist-standalone/key-agreement.d.ts",
+      "import": "./dist-standalone/key-agreement.js",
+      "require": "./dist-standalone/cjs/key-agreement.js"
+    },
+    "./errors": {
+      "types": "./dist-standalone/errors.d.ts",
+      "import": "./dist-standalone/errors.js",
+      "require": "./dist-standalone/cjs/errors.js"
+    },
+    "./runtime/edge": {
+      "types": "./dist-standalone/runtime/edge.d.ts",
+      "import": "./dist-standalone/runtime/edge.js",
+      "require": "./dist-standalone/cjs/runtime/edge.js"
+    },
+    "./_deps/*": "./dist-standalone/_deps/*/index.js",
+    "./package.json": "./package.json"
   },
+  "sideEffects": false,
+  "packageManager": "pnpm@10.29.2",
+  "size-limit": [
+    {
+      "path": "dist-standalone/index.js",
+      "limit": "350 KB",
+      "ignore": [
+        "dist-standalone/_deps/**"
+      ],
+      "comment": "Reduced from 500KB after crypto package excluded (Vault Store architecture)"
+    }
+  ],
   "bin": {
     "xbind": "./dist-standalone/cli/xbind.js",
     "xbind-init": "./dist-standalone/cli/init.js",
@@ -40,26 +83,41 @@
     "dist-standalone/cli/**",
     "dist-standalone/cjs/**",
     "dist-standalone/_deps/**",
+    "!dist-standalone/_deps/crypto/**",
     "dist-standalone/package.json",
+    "dist-standalone/vault-store-loader.js",
+    "dist-standalone/vault-store-loader.d.ts",
     "share1.dat",
     "README.md",
     "LICENSE.md",
+    "LICENSES.md",
     "AGENTS.md",
     "llms.txt"
   ],
   "scripts": {
-    "build": "pnpm clean:xbind && node scripts/build-with-deps.mjs && node generate-shares.mjs",
+    "build": "pnpm clean:xbind && node scripts/build-with-deps.mjs && node generate-shares.mjs && pnpm build:optimize",
+    "build:optimize": "find dist-standalone -name '*.map' -type f -delete && node scripts/minify.mjs",
     "clean:xbind": "rm -rf dist dist-standalone .turbo",
     "obfuscate": "echo 'Obfuscation skipped - core IP already protected in crypto package'",
     "lint": "eslint src/",
     "typecheck": "tsc --noEmit",
     "test": "vitest run",
     "test:coverage": "vitest run --coverage",
+    "docs": "typedoc",
+    "docs:watch": "typedoc --watch",
+    "docs:json": "typedoc --json docs/api-reference/documentation.json",
+    "audit": "bash ../../scripts/audit-dependencies.sh $(pwd)",
+    "audit:fix": "npm audit fix",
+    "license-check": "bash ../../scripts/check-crypto-licenses.sh $(pwd)",
+    "sbom:generate": "bash ../../scripts/generate-sbom.sh -f both .",
+    "sbom:validate": "bash ../../scripts/validate-sbom.sh .",
     "clean": "rm -rf dist dist-standalone .turbo",
+    "size-check": "bash ../../scripts/validate-package-size.sh $(pwd) --max-size-kb=3000",
     "prepublish-check": "bash scripts/prepublish-check.sh",
-    "prepublishOnly": "node -e \"const pkg=require('./package.json');if(pkg.license!=='Proprietary'){console.error('❌ package.json license must be: Proprietary');process.exit(1)}\" && bash ../../scripts/gold-automation.sh $(pwd) && bash ../../scripts/hooks/prepublish-crypto-check.sh && bash ../../scripts/hooks/prepublish-tarball-validation.sh $(pwd)"
+    "prepublishOnly": "node -e \"const pkg=require('./package.json');if(pkg.license!=='Proprietary'){console.error('❌ package.json license must be: Proprietary');process.exit(1)}\" && bash ../../scripts/validate-semver.sh $(pwd) --strict && bash ../../scripts/audit-dependencies.sh $(pwd) && bash ../../scripts/generate-sbom.sh -f both . && bash ../../scripts/validate-package-size.sh $(pwd) --max-size-kb=3000 && bash ../../scripts/gold-automation.sh $(pwd) && bash ../../scripts/hooks/prepublish-crypto-check.sh && bash ../../scripts/hooks/prepublish-tarball-validation.sh $(pwd) && bash ../../scripts/validate-vault-store.sh $(pwd)"
   },
   "dependencies": {
+    "@private.me/xbind": "^1.3.0",
     "bonjour-service": "^1.3.0",
     "mlkem": "^2.7.0",
     "nodemailer": "8.0.7"
@@ -67,7 +125,10 @@
   "comment_vendored": "mldsa-wasm@0.0.4 vendored in dist-standalone/_deps/ (L3 fix)",
   "devDependencies": {
     "@types/node": "^25.6.0",
-    "@types/nodemailer": "8.0.0"
+    "@types/nodemailer": "8.0.0",
+    "glob": "^13.0.6",
+    "terser": "^5.48.0",
+    "typedoc": "^0.28.19"
   },
   "imports": {
     "#deps/shared": "./dist-standalone/_deps/shared/index.js",

package/dist-standalone/_deps/crypto/base64.d.ts

@@ -1,29 +0,0 @@
-/**
- * Encode bytes to standard Base64 (RFC 4648).
- *
- * @param data - Bytes to encode
- * @returns Base64-encoded string with padding
- */
-export declare function toBase64(data: Uint8Array): string;
-/**
- * Decode standard Base64 string to bytes.
- *
- * @param str - Base64-encoded string
- * @returns Decoded bytes
- */
-export declare function fromBase64(str: string): Uint8Array;
-/**
- * Encode bytes to Base64url (RFC 4648 Section 5).
- * Uses URL-safe characters (-_ instead of +/) and no padding.
- *
- * @param data - Bytes to encode
- * @returns Base64url-encoded string without padding
- */
-export declare function toBase64Url(data: Uint8Array): string;
-/**
- * Decode Base64url string to bytes.
- *
- * @param str - Base64url-encoded string
- * @returns Decoded bytes
- */
-export declare function fromBase64Url(str: string): Uint8Array;

package/dist-standalone/_deps/crypto/base64.js

@@ -1,209 +0,0 @@
-const a0_0x407ecd = a0_0x55fd;
-function a0_0x79ca() {
-    const _0x269e49 = [
-        'qujdrevgr0HjsKTmtu5puffsu1rvvLDywvPHyMnKzwzNAgLQA2XTBM9WCxjZDhv2D3H5EJaXmJm0nty3odKTxW',
-        'svPqDxi',
-        'mtiWmJm3owzmEwfIuW',
-        'nhLTrLLeEq',
-        'AfroB3e',
-        'wNrbA1e',
-        'sMLeu1m',
-        'mJy2nZiXmhfTzMTKDG',
-        'C2v0',
-        'qujdrevgr0HjsKTmtu5puffsu1rvvLDywvPHyMnKzwzNAgLQA2XTBM9WCxjZDhv2D3H5EJaXmJm0nty3odKRlW',
-        'ntC2otq0A1f6B3n2',
-        'EMnXDgi',
-        'uLDRu3K',
-        'wM5Ore0',
-        'mJi4nZy5mfLqrwjdwG',
-        'ChLVBwG',
-        'CMvWBgfJzq',
-        'z2fyDeG',
-        'mZeXmK1dyw5vyW',
-        'nta2nZKXofP1yLPZva',
-        'BgvUz3rO',
-        'z2v0',
-        'BMrdthC',
-        'zMXVB3i',
-        'D05jCLu',
-        'sKfNAMe',
-        'mZi5mevXuhfkAa',
-        'nta4mZK4C0XTCuri',
-        'B09Tt3a',
-        'B2TLEgi',
-        'A3j2rNy'
-    ];
-    a0_0x79ca = function () {
-        return _0x269e49;
-    };
-    return a0_0x79ca();
-}
-(function (_0x37b354, _0x358ec3) {
-    const a0_0x2fc9ac = {
-            _0x3159a2: 0xbd,
-            _0xc1e990: 0xaa
-        }, _0x32b9ff = a0_0x55fd, _0x1340dc = _0x37b354();
-    while (!![]) {
-        try {
-            const _0x55b465 = parseInt(_0x32b9ff(0xa6)) / 0x1 + -parseInt(_0x32b9ff(0xb7)) / 0x2 + -parseInt(_0x32b9ff(a0_0x2fc9ac._0x3159a2)) / 0x3 * (parseInt(_0x32b9ff(0x9f)) / 0x4) + -parseInt(_0x32b9ff(a0_0x2fc9ac._0xc1e990)) / 0x5 + parseInt(_0x32b9ff(0xa3)) / 0x6 + parseInt(_0x32b9ff(0xb6)) / 0x7 * (-parseInt(_0x32b9ff(0xae)) / 0x8) + parseInt(_0x32b9ff(0xaf)) / 0x9;
-            if (_0x55b465 === _0x358ec3)
-                break;
-            else
-                _0x1340dc['push'](_0x1340dc['shift']());
-        } catch (_0xa5b03b) {
-            _0x1340dc['push'](_0x1340dc['shift']());
-        }
-    }
-}(a0_0x79ca, 0x469c5));
-const CHARS = a0_0x407ecd(0xa5), URL_CHARS = a0_0x407ecd(0xbb);
-export function toBase64(_0x7882be) {
-    const a0_0x56e76 = { _0x112634: 0xb8 }, _0x7690e1 = a0_0x55fd, _0x2fb01d = {
-            'oOmOp': function (_0x3fd976, _0x1edb9d, _0x628255, _0x5f0773) {
-                return _0x3fd976(_0x1edb9d, _0x628255, _0x5f0773);
-            }
-        };
-    return _0x2fb01d[_0x7690e1(a0_0x56e76._0x112634)](encode, _0x7882be, CHARS, !![]);
-}
-export function fromBase64(_0x341c01) {
-    return decode(_0x341c01, CHARS);
-}
-function a0_0x55fd(_0xd2e137, _0x326f65) {
-    _0xd2e137 = _0xd2e137 - 0x9f;
-    const _0x79ca3e = a0_0x79ca();
-    let _0x55fda = _0x79ca3e[_0xd2e137];
-    if (a0_0x55fd['lCKHFT'] === undefined) {
-        var _0x20922a = function (_0x2f78f1) {
-            const _0x5a366b = 'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789+/=';
-            let _0xaa8c87 = '', _0x42b8ab = '';
-            for (let _0x48a87d = 0x0, _0x3057da, _0x637fa1, _0x5e6d9b = 0x0; _0x637fa1 = _0x2f78f1['charAt'](_0x5e6d9b++); ~_0x637fa1 && (_0x3057da = _0x48a87d % 0x4 ? _0x3057da * 0x40 + _0x637fa1 : _0x637fa1, _0x48a87d++ % 0x4) ? _0xaa8c87 += String['fromCharCode'](0xff & _0x3057da >> (-0x2 * _0x48a87d & 0x6)) : 0x0) {
-                _0x637fa1 = _0x5a366b['indexOf'](_0x637fa1);
-            }
-            for (let _0x53b705 = 0x0, _0x186834 = _0xaa8c87['length']; _0x53b705 < _0x186834; _0x53b705++) {
-                _0x42b8ab += '%' + ('00' + _0xaa8c87['charCodeAt'](_0x53b705)['toString'](0x10))['slice'](-0x2);
-            }
-            return decodeURIComponent(_0x42b8ab);
-        };
-        a0_0x55fd['mFQNPa'] = _0x20922a, a0_0x55fd['juyKCU'] = {}, a0_0x55fd['lCKHFT'] = !![];
-    }
-    const _0x57a7e8 = _0x79ca3e[0x0], _0x3d4b6d = _0xd2e137 + _0x57a7e8, _0x4cb20f = a0_0x55fd['juyKCU'][_0x3d4b6d];
-    return !_0x4cb20f ? (_0x55fda = a0_0x55fd['mFQNPa'](_0x55fda), a0_0x55fd['juyKCU'][_0x3d4b6d] = _0x55fda) : _0x55fda = _0x4cb20f, _0x55fda;
-}
-export function toBase64Url(_0x4625a9) {
-    const a0_0x468f4e = { _0x1d4e5f: 0xab }, _0x1333ce = a0_0x55fd, _0x5a56a7 = {
-            'pyomh': function (_0x37bd11, _0x252733, _0x455435, _0x26f9d3) {
-                return _0x37bd11(_0x252733, _0x455435, _0x26f9d3);
-            }
-        };
-    return _0x5a56a7[_0x1333ce(a0_0x468f4e._0x1d4e5f)](encode, _0x4625a9, URL_CHARS, ![]);
-}
-export function fromBase64Url(_0x36a904) {
-    const _0x29600a = {
-        'NpZNT': function (_0x1046eb, _0x40ebd2, _0x3ba804) {
-            return _0x1046eb(_0x40ebd2, _0x3ba804);
-        }
-    };
-    return _0x29600a['NpZNT'](decode, _0x36a904, URL_CHARS);
-}
-function encode(_0x5484d7, _0x4457be, _0x791257) {
-    const a0_0x148662 = {
-            _0x2dde39: 0xa0,
-            _0x47c32b: 0xb0,
-            _0x289972: 0xa9,
-            _0x125c2b: 0xb4,
-            _0x3d67c2: 0xbc
-        }, _0x1ff8cc = a0_0x55fd, _0x430456 = {
-            'gaXtH': function (_0x393610, _0x254377) {
-                return _0x393610 < _0x254377;
-            },
-            'ZtAkQ': function (_0x36ff92, _0xdfd039) {
-                return _0x36ff92 >> _0xdfd039;
-            },
-            'hTNoq': function (_0x202c6d, _0x5e82bd) {
-                return _0x202c6d & _0x5e82bd;
-            },
-            'krvFv': function (_0x3e596f, _0x574957) {
-                return _0x3e596f >> _0x574957;
-            },
-            'ZnhDM': function (_0x389e43, _0x4b1be4) {
-                return _0x389e43 + _0x4b1be4;
-            },
-            'QWYsC': function (_0x2035f0, _0x1631e7) {
-                return _0x2035f0 | _0x1631e7;
-            },
-            'qEwkk': function (_0x42a035, _0x311ce8) {
-                return _0x42a035 << _0x311ce8;
-            },
-            'wNIrU': function (_0x4fd747, _0x11a61b) {
-                return _0x4fd747 & _0x11a61b;
-            },
-            'IZPur': function (_0x5cc965, _0x386a03) {
-                return _0x5cc965 % _0x386a03;
-            },
-            'ndCLw': function (_0x57d725, _0xe46f80) {
-                return _0x57d725 === _0xe46f80;
-            }
-        };
-    let _0x148a12 = '';
-    for (let _0x5029d2 = 0x0; _0x430456['gaXtH'](_0x5029d2, _0x5484d7['length']); _0x5029d2 += 0x3) {
-        const _0x15e920 = _0x5484d7[_0x5029d2], _0x15cf5c = _0x430456['gaXtH'](_0x5029d2 + 0x1, _0x5484d7[_0x1ff8cc(0xb0)]) ? _0x5484d7[_0x5029d2 + 0x1] : 0x0, _0x2d3056 = _0x5029d2 + 0x2 < _0x5484d7[_0x1ff8cc(0xb0)] ? _0x5484d7[_0x5029d2 + 0x2] : 0x0;
-        _0x148a12 += _0x4457be[_0x430456[_0x1ff8cc(0xa1)](_0x15e920, 0x2)], _0x148a12 += _0x4457be[_0x430456[_0x1ff8cc(a0_0x148662._0x2dde39)](_0x15e920, 0x3) << 0x4 | _0x430456[_0x1ff8cc(0xba)](_0x15cf5c, 0x4)], _0x430456[_0x1ff8cc(0xad)](_0x430456[_0x1ff8cc(0xa9)](_0x5029d2, 0x1), _0x5484d7[_0x1ff8cc(a0_0x148662._0x47c32b)]) && (_0x148a12 += _0x4457be[_0x430456['QWYsC'](_0x430456['qEwkk'](_0x15cf5c & 0xf, 0x2), _0x2d3056 >> 0x6)]), _0x430456[_0x1ff8cc(a0_0x148662._0x289972)](_0x5029d2, 0x2) < _0x5484d7[_0x1ff8cc(0xb0)] && (_0x148a12 += _0x4457be[_0x430456[_0x1ff8cc(a0_0x148662._0x125c2b)](_0x2d3056, 0x3f)]);
-    }
-    if (_0x791257) {
-        const _0x1b68d5 = _0x430456[_0x1ff8cc(a0_0x148662._0x3d67c2)](_0x5484d7[_0x1ff8cc(a0_0x148662._0x47c32b)], 0x3);
-        if (_0x430456[_0x1ff8cc(0xb2)](_0x1b68d5, 0x1))
-            _0x148a12 += '==';
-        else {
-            if (_0x1b68d5 === 0x2)
-                _0x148a12 += '=';
-        }
-    }
-    return _0x148a12;
-}
-function buildLookup(_0x449d7c) {
-    const a0_0x8838e5 = { _0x338677: 0xa4 }, _0x31eebe = a0_0x55fd, _0x194703 = {
-            'zcqtb': function (_0x51f81a, _0x395753) {
-                return _0x51f81a < _0x395753;
-            }
-        }, _0x502bb0 = new Map();
-    for (let _0x1a4104 = 0x0; _0x194703[_0x31eebe(0xa7)](_0x1a4104, _0x449d7c['length']); _0x1a4104++) {
-        _0x502bb0[_0x31eebe(a0_0x8838e5._0x338677)](_0x449d7c[_0x1a4104], _0x1a4104);
-    }
-    return _0x502bb0;
-}
-const STD_LOOKUP = buildLookup(CHARS), URL_LOOKUP = buildLookup(URL_CHARS);
-function decode(_0x1f04f0, _0x6096a3) {
-    const a0_0x37b412 = {
-            _0x4289de: 0xac,
-            _0x36380f: 0xb3,
-            _0x3202d9: 0xb1,
-            _0x2c7911: 0xb9,
-            _0x108b6c: 0xb5,
-            _0x52e6d3: 0xa2,
-            _0x480188: 0xb0
-        }, _0x5ea819 = a0_0x55fd, _0x3e6393 = {
-            'Zfjqh': function (_0x1b257a, _0x265ced) {
-                return _0x1b257a === _0x265ced;
-            },
-            'okexb': function (_0x1178d6, _0x30bfb7) {
-                return _0x1178d6 + _0x30bfb7;
-            },
-            'JAgja': function (_0x112b4c, _0x57090c) {
-                return _0x112b4c < _0x57090c;
-            },
-            'RWkSy': function (_0x35f0a3, _0x42f12c) {
-                return _0x35f0a3 << _0x42f12c;
-            },
-            'JiDSS': function (_0x304cb6, _0x2b69f6) {
-                return _0x304cb6 >> _0x2b69f6;
-            },
-            'WLmSh': function (_0x4ae072, _0xa5baf0) {
-                return _0x4ae072 | _0xa5baf0;
-            }
-        }, _0x52752e = _0x3e6393['Zfjqh'](_0x6096a3, CHARS) ? STD_LOOKUP : URL_LOOKUP, _0x346df1 = _0x1f04f0[_0x5ea819(a0_0x37b412._0x4289de)](/\s/g, ''), _0x2cf2b2 = _0x346df1['replace'](/=+$/, ''), _0x28aed3 = Math[_0x5ea819(a0_0x37b412._0x36380f)](_0x2cf2b2[_0x5ea819(0xb0)] * 0x3 / 0x4), _0x1ccb95 = new Uint8Array(_0x28aed3);
-    let _0x1e37f7 = 0x0;
-    for (let _0x3b4bb1 = 0x0; _0x3b4bb1 < _0x2cf2b2[_0x5ea819(0xb0)]; _0x3b4bb1 += 0x4) {
-        const _0x1f58fb = _0x52752e[_0x5ea819(a0_0x37b412._0x3202d9)](_0x2cf2b2[_0x3b4bb1]) ?? 0x0, _0x285628 = _0x52752e[_0x5ea819(0xb1)](_0x2cf2b2[_0x3e6393[_0x5ea819(a0_0x37b412._0x2c7911)](_0x3b4bb1, 0x1)]) ?? 0x0, _0x271f47 = _0x3e6393[_0x5ea819(0xb9)](_0x3b4bb1, 0x2) < _0x2cf2b2['length'] ? _0x52752e[_0x5ea819(a0_0x37b412._0x3202d9)](_0x2cf2b2[_0x3b4bb1 + 0x2]) ?? 0x0 : 0x0, _0xcdb129 = _0x3b4bb1 + 0x3 < _0x2cf2b2['length'] ? _0x52752e[_0x5ea819(0xb1)](_0x2cf2b2[_0x3b4bb1 + 0x3]) ?? 0x0 : 0x0;
-        _0x1ccb95[_0x1e37f7++] = _0x1f58fb << 0x2 | _0x285628 >> 0x4, _0x3e6393[_0x5ea819(a0_0x37b412._0x108b6c)](_0x3b4bb1 + 0x2, _0x2cf2b2[_0x5ea819(0xb0)]) && (_0x1ccb95[_0x1e37f7++] = _0x3e6393[_0x5ea819(0xa8)](_0x285628 & 0xf, 0x4) | _0x3e6393[_0x5ea819(a0_0x37b412._0x52e6d3)](_0x271f47, 0x2)), _0x3e6393[_0x5ea819(0xb5)](_0x3b4bb1 + 0x3, _0x2cf2b2[_0x5ea819(a0_0x37b412._0x480188)]) && (_0x1ccb95[_0x1e37f7++] = _0x3e6393['WLmSh']((_0x271f47 & 0x3) << 0x6, _0xcdb129));
-    }
-    return _0x1ccb95;
-}