npm - @riverbankcms/sdk - Versions diffs - 0.7.0 → 0.7.2 - Mend

@riverbankcms/sdk 0.7.0 → 0.7.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (151) hide show

package/README.md +175 -0
package/dist/cli/index.js +42 -95
package/dist/cli/index.js.map +1 -1
package/dist/cli/init-docs/content/agents-section.md +50 -0
package/dist/cli/init-docs/content/cli-reference.md +574 -0
package/dist/cli/init-docs/content/content-management.md +384 -0
package/dist/cli/init-docs/content/context-brand.md +125 -0
package/dist/cli/init-docs/content/context-brief.md +77 -0
package/dist/cli/init-docs/content/context-knowledge.md +111 -0
package/dist/cli/init-docs/content/getting-started.md +130 -0
package/dist/cli/init-docs/content/site-workflows-readme.md +96 -0
package/dist/cli/init-docs/content/workflow-add-block.md +228 -0
package/dist/cli/init-docs/content/workflow-create-page.md +193 -0
package/dist/cli/init-docs/content/workflow-publish.md +280 -0
package/dist/client/client.d.mts +2 -2
package/dist/client/client.d.ts +2 -2
package/dist/client/client.js +536 -71
package/dist/client/client.js.map +1 -1
package/dist/client/client.mjs +536 -78
package/dist/client/client.mjs.map +1 -1
package/dist/client/hooks.d.mts +2 -2
package/dist/client/hooks.d.ts +2 -2
package/dist/client/usePage-C9tJpuKa.d.mts +6813 -0
package/dist/client/usePage-Db9kzA41.d.ts +6813 -0
package/dist/server/{Layout-wBtJLTVX.d.ts → Layout-Ce7PU9I5.d.ts} +1 -1
package/dist/server/{Layout-B7cvis7r.d.mts → Layout-WllR8Zug.d.mts} +1 -1
package/dist/server/{chunk-7FIJSGHU.mjs → chunk-5JT452F2.mjs} +537 -76
package/dist/server/chunk-5JT452F2.mjs.map +1 -0
package/dist/server/chunk-AET56TQX.mjs +45 -0
package/dist/server/chunk-AET56TQX.mjs.map +1 -0
package/dist/server/{chunk-P7UVAMK6.js → chunk-HMENX4Y7.js} +543 -82
package/dist/server/chunk-HMENX4Y7.js.map +1 -0
package/dist/server/chunk-LQUKXIW7.mjs +13 -0
package/dist/server/chunk-LQUKXIW7.mjs.map +1 -0
package/dist/server/chunk-VODFQMUW.js +45 -0
package/dist/server/chunk-VODFQMUW.js.map +1 -0
package/dist/server/chunk-WYNEYDXO.js +13 -0
package/dist/server/chunk-WYNEYDXO.js.map +1 -0
package/dist/server/{components-CICSJyp_.d.ts → components--LT61IKp.d.ts} +2 -2
package/dist/server/{components-CMMwDXTW.d.mts → components-RPzRQve6.d.mts} +2 -2
package/dist/server/components.d.mts +4 -4
package/dist/server/components.d.ts +4 -4
package/dist/server/components.js +0 -1
package/dist/server/components.js.map +1 -1
package/dist/server/components.mjs +0 -1
package/dist/server/config-validation.js +0 -1
package/dist/server/config-validation.js.map +1 -1
package/dist/server/config-validation.mjs +0 -1
package/dist/server/config.js +0 -1
package/dist/server/config.js.map +1 -1
package/dist/server/config.mjs +0 -1
package/dist/server/config.mjs.map +1 -1
package/dist/server/data.d.mts +1 -1
package/dist/server/data.d.ts +1 -1
package/dist/server/data.js +0 -1
package/dist/server/data.js.map +1 -1
package/dist/server/data.mjs +0 -1
package/dist/server/env.d.mts +23 -0
package/dist/server/env.d.ts +23 -0
package/dist/server/env.js +7 -0
package/dist/server/env.js.map +1 -0
package/dist/server/env.mjs +7 -0
package/dist/server/{index-DI_qlYx3.d.mts → index-BL66CU6d.d.mts} +2 -2
package/dist/server/{index-Bucs6UqG.d.mts → index-Bkva0WAj.d.mts} +1 -1
package/dist/server/{index-BTwWvSBu.d.ts → index-CJk9iQQW.d.ts} +2 -2
package/dist/server/{index-Cp7tJuRt.d.ts → index-CSBWKA3r.d.ts} +1 -1
package/dist/server/index.d.mts +3 -3
package/dist/server/index.d.ts +3 -3
package/dist/server/index.js +2 -3
package/dist/server/index.js.map +1 -1
package/dist/server/index.mjs +1 -2
package/dist/server/index.mjs.map +1 -1
package/dist/server/{loadContent-DmgpFcFC.d.ts → loadContent-CXUWMuzY.d.ts} +2 -2
package/dist/server/{loadContent-C-YYUKQa.d.mts → loadContent-F_tAS0Nl.d.mts} +2 -2
package/dist/server/{loadPage-IDGVDFBB.js → loadPage-6I7F6GRF.js} +1 -2
package/dist/server/loadPage-6I7F6GRF.js.map +1 -0
package/dist/server/{loadPage-B8mQUUSo.d.mts → loadPage-CxlYLe5K.d.mts} +1 -1
package/dist/server/{loadPage-DNQTTRHL.mjs → loadPage-JI2SML4M.mjs} +1 -2
package/dist/server/{loadPage-DP3nrHBi.d.ts → loadPage-i2r-X5b9.d.ts} +1 -1
package/dist/server/metadata.d.mts +3 -3
package/dist/server/metadata.d.ts +3 -3
package/dist/server/metadata.js +0 -1
package/dist/server/metadata.js.map +1 -1
package/dist/server/metadata.mjs +0 -1
package/dist/server/navigation.js +0 -1
package/dist/server/navigation.js.map +1 -1
package/dist/server/navigation.mjs +0 -1
package/dist/server/next/revalidate.d.mts +66 -0
package/dist/server/next/revalidate.d.ts +66 -0
package/dist/server/next/revalidate.js +59 -0
package/dist/server/next/revalidate.js.map +1 -0
package/dist/server/next/revalidate.mjs +59 -0
package/dist/server/next/revalidate.mjs.map +1 -0
package/dist/server/next/tags.d.mts +78 -0
package/dist/server/next/tags.d.ts +78 -0
package/dist/server/next/tags.js +34 -0
package/dist/server/next/tags.js.map +1 -0
package/dist/server/next/tags.mjs +34 -0
package/dist/server/next/tags.mjs.map +1 -0
package/dist/server/next.d.mts +163 -5
package/dist/server/next.d.ts +163 -5
package/dist/server/next.js +78 -11
package/dist/server/next.js.map +1 -1
package/dist/server/next.mjs +75 -8
package/dist/server/next.mjs.map +1 -1
package/dist/server/rendering/server.d.mts +3 -3
package/dist/server/rendering/server.d.ts +3 -3
package/dist/server/rendering/server.js +0 -1
package/dist/server/rendering/server.js.map +1 -1
package/dist/server/rendering/server.mjs +0 -1
package/dist/server/rendering.d.mts +6 -6
package/dist/server/rendering.d.ts +6 -6
package/dist/server/rendering.js +2 -3
package/dist/server/rendering.js.map +1 -1
package/dist/server/rendering.mjs +3 -4
package/dist/server/routing.d.mts +2 -2
package/dist/server/routing.d.ts +2 -2
package/dist/server/routing.js +2 -4
package/dist/server/routing.js.map +1 -1
package/dist/server/routing.mjs +1 -3
package/dist/server/routing.mjs.map +1 -1
package/dist/server/server.d.mts +4 -4
package/dist/server/server.d.ts +4 -4
package/dist/server/server.js +4 -5
package/dist/server/server.js.map +1 -1
package/dist/server/server.mjs +4 -5
package/dist/server/theme-bridge.js +0 -1
package/dist/server/theme-bridge.js.map +1 -1
package/dist/server/theme-bridge.mjs +0 -1
package/dist/server/theme-bridge.mjs.map +1 -1
package/dist/server/theme.js +1 -3
package/dist/server/theme.js.map +1 -1
package/dist/server/theme.mjs +0 -2
package/dist/server/theme.mjs.map +1 -1
package/dist/server/{types-BvcJU7zk.d.ts → types-DnkRh0UL.d.ts} +118 -9
package/dist/server/{types-1cLz0vnq.d.mts → types-MF2AWoKv.d.mts} +118 -9
package/dist/server/webhooks.d.mts +75 -0
package/dist/server/webhooks.d.ts +75 -0
package/dist/server/webhooks.js +11 -0
package/dist/server/webhooks.js.map +1 -0
package/dist/server/webhooks.mjs +11 -0
package/dist/server/webhooks.mjs.map +1 -0
package/package.json +23 -3
package/dist/server/chunk-7FIJSGHU.mjs.map +0 -1
package/dist/server/chunk-BJTO5JO5.mjs +0 -11
package/dist/server/chunk-DGUM43GV.js +0 -11
package/dist/server/chunk-DGUM43GV.js.map +0 -1
package/dist/server/chunk-P7UVAMK6.js.map +0 -1
package/dist/server/loadPage-IDGVDFBB.js.map +0 -1
/package/dist/server/{chunk-BJTO5JO5.mjs.map → env.mjs.map} +0 -0
/package/dist/server/{loadPage-DNQTTRHL.mjs.map → loadPage-JI2SML4M.mjs.map} +0 -0

package/dist/server/{types-BvcJU7zk.d.ts → types-DnkRh0UL.d.ts} RENAMED Viewed

@@ -33,10 +33,17 @@ interface PaginationMeta {
 type EntriesResponseWithMeta = {
     entries: EntriesResponse['entries'];
 } & PaginationMeta;
+/**
+ * Common options for all SDK methods
+ */
+interface SdkMethodOptions {
+    /** AbortSignal for cancelling the request */
+    signal?: AbortSignal;
+}
 /**
  * Base parameters for getEntries - shared across all overloads
  */
-interface GetEntriesBaseParams {
+interface GetEntriesBaseParams extends SdkMethodOptions {
     /** The site ID */
     siteId: string;
     /** The content type key (e.g., 'blog-post', 'product') */
@@ -54,6 +61,92 @@ interface GetEntriesBaseParams {
     /** Entry IDs to fetch when mode is 'manual' */
     entryIds?: string[];
 }
+/**
+ * Source of the data returned by a resilient fetch
+ */
+type ResilienceSource = 'live' | 'cache' | 'stale' | 'prebuild' | 'error';
+/**
+ * Status information from a resilient fetch operation
+ */
+interface ResilienceStatus {
+    /** Where the data came from */
+    source: ResilienceSource;
+    /** Whether this was a preview request */
+    isPreview: boolean;
+    /** Cache key used for this request */
+    cacheKey?: string;
+    /** Error details if fetch failed */
+    error?: {
+        code?: string;
+        message: string;
+    };
+    /** Seconds since cache TTL expired (when source='stale') */
+    staleAgeSec?: number;
+    /** Seconds since prebuild was generated (when source='prebuild') */
+    prebuildAgeSec?: number;
+    /** Circuit breaker state at time of request */
+    circuit: CircuitState;
+    /** Correlation ID for debugging */
+    requestId?: string;
+    /** Total request duration including retries (ms) */
+    durationMs?: number;
+}
+/**
+ * Circuit breaker state information
+ */
+interface CircuitState {
+    state: 'closed' | 'open' | 'half-open';
+    failureCount: number;
+    /** Timestamp when circuit will transition from open to half-open */
+    openUntil?: number;
+}
+/**
+ * Retry configuration
+ */
+interface RetryConfig {
+    /** Maximum number of attempts (including initial) */
+    maxAttempts?: number;
+    /** Base delay between retries in ms */
+    baseDelayMs?: number;
+    /** Maximum delay between retries in ms */
+    maxDelayMs?: number;
+    /** Jitter strategy: 'full' adds randomization, 'none' uses exact delays */
+    jitter?: 'full' | 'none';
+    /** Custom function to determine if an error should be retried */
+    retryOn?: (error: Error, statusCode?: number) => boolean;
+}
+/**
+ * Circuit breaker configuration
+ */
+interface CircuitBreakerConfig {
+    /** Number of failures before opening circuit */
+    failureThreshold?: number;
+    /** Time in ms before attempting to close circuit */
+    resetTimeoutMs?: number;
+    /** Number of successful requests needed to close from half-open */
+    halfOpenMaxRequests?: number;
+}
+/**
+ * Resilience configuration for the SDK client
+ */
+interface ResilienceConfig {
+    /** Enable resilience features (default: true) */
+    enabled?: boolean;
+    /** Serve stale data on fetch failure (default: true) */
+    staleIfError?: boolean;
+    /** Seconds AFTER cache TTL expires that stale data remains valid (default: 300) */
+    staleTtlSec?: number;
+    /** Request timeout in ms (default: 8000 server, 5000 browser) */
+    requestTimeoutMs?: number;
+    /** Retry configuration */
+    retry?: RetryConfig;
+    /** Circuit breaker configuration */
+    circuitBreaker?: CircuitBreakerConfig;
+    /** Callback fired on every request with status information */
+    onStatusChange?: (status: ResilienceStatus) => void;
+    /** Callback fired only when transitioning into/out of degraded mode */
+    onDegradedMode?: (degraded: boolean, status: ResilienceStatus) => void;
+}
 /**
  * Configuration for creating a Riverbank CMS client
  */
@@ -85,6 +178,10 @@ interface RiverbankClientConfig {
          */
         maxSize?: number;
     };
+    /**
+     * Resilience configuration for error handling, retries, and fallbacks
+     */
+    resilience?: ResilienceConfig;
 }
 /**
  * Riverbank CMS client interface
@@ -97,7 +194,7 @@ interface RiverbankClient {
         slug?: string;
         domain?: string;
         id?: string;
-    }): Promise<SiteResponse>;
+    } & SdkMethodOptions): Promise<SiteResponse>;
     /**
      * Fetch a specific page by path
      *
@@ -107,7 +204,7 @@ interface RiverbankClient {
         siteId: string;
         path: string;
         preview?: boolean;
-    }): Promise<PageResponse>;
+    } & SdkMethodOptions): Promise<PageResponse>;
     /**
      * Fetch published content entries with optional pagination, sorting, and preview mode
      *
@@ -168,20 +265,20 @@ interface RiverbankClient {
         siteId: string;
         contentType: string;
         slug: string;
-    }): Promise<EntryResponse>;
+    } & SdkMethodOptions): Promise<EntryResponse>;
     /**
      * Fetch a public form definition by ID
      */
     getPublicFormById(params: {
         formId: string;
-    }): Promise<PublicFormResponse>;
+    } & SdkMethodOptions): Promise<PublicFormResponse>;
     /**
      * Fetch public booking services for a site
      */
     getPublicBookingServices(params: {
         siteId: string;
         ids?: string;
-    }): Promise<PublicBookingServicesResponse>;
+    } & SdkMethodOptions): Promise<PublicBookingServicesResponse>;
     /**
      * List public events for a site (optionally time-filtered)
      */
@@ -191,7 +288,7 @@ interface RiverbankClient {
         from?: string;
         to?: string;
         stage?: string;
-    }): Promise<PublicEventsResponse>;
+    } & SdkMethodOptions): Promise<PublicEventsResponse>;
     /**
      * Resolve an event occurrence by URL segment (date or UUID)
      *
@@ -220,7 +317,7 @@ interface RiverbankClient {
         siteId: string;
         entryId: string;
         segment: string;
-    }): Promise<ResolveEventOccurrenceResponse>;
+    } & SdkMethodOptions): Promise<ResolveEventOccurrenceResponse>;
     /**
      * Check if a path has a configured redirect rule
      *
@@ -241,11 +338,23 @@ interface RiverbankClient {
     checkRedirect(params: {
         siteId: string;
         path: string;
-    }): Promise<CheckRedirectResponse>;
+    } & SdkMethodOptions): Promise<CheckRedirectResponse>;
     /**
      * Force clear the cache
      */
     clearCache(): void;
+    /**
+     * Get the status from the most recently emitted request
+     *
+     * Note: With concurrent requests, this returns the last status emitted,
+     * which may not be from the request you're interested in. For reliable
+     * per-request status, use the onStatusChange callback instead.
+     */
+    getLastEmittedStatus(): ResilienceStatus | null;
+    /**
+     * Get the current circuit breaker state
+     */
+    getCircuitState(): CircuitState;
 }
 export type { EntriesResponse as E, PageResponse as P, RiverbankClient as R, SiteResponse as S, RiverbankClientConfig as a, EntryResponse as b, EntriesResponseWithMeta as c, PaginationMeta as d, ResolveEventOccurrenceResponse as e };

package/dist/server/{types-1cLz0vnq.d.mts → types-MF2AWoKv.d.mts} RENAMED Viewed

@@ -33,10 +33,17 @@ interface PaginationMeta {
 type EntriesResponseWithMeta = {
     entries: EntriesResponse['entries'];
 } & PaginationMeta;
+/**
+ * Common options for all SDK methods
+ */
+interface SdkMethodOptions {
+    /** AbortSignal for cancelling the request */
+    signal?: AbortSignal;
+}
 /**
  * Base parameters for getEntries - shared across all overloads
  */
-interface GetEntriesBaseParams {
+interface GetEntriesBaseParams extends SdkMethodOptions {
     /** The site ID */
     siteId: string;
     /** The content type key (e.g., 'blog-post', 'product') */
@@ -54,6 +61,92 @@ interface GetEntriesBaseParams {
     /** Entry IDs to fetch when mode is 'manual' */
     entryIds?: string[];
 }
+/**
+ * Source of the data returned by a resilient fetch
+ */
+type ResilienceSource = 'live' | 'cache' | 'stale' | 'prebuild' | 'error';
+/**
+ * Status information from a resilient fetch operation
+ */
+interface ResilienceStatus {
+    /** Where the data came from */
+    source: ResilienceSource;
+    /** Whether this was a preview request */
+    isPreview: boolean;
+    /** Cache key used for this request */
+    cacheKey?: string;
+    /** Error details if fetch failed */
+    error?: {
+        code?: string;
+        message: string;
+    };
+    /** Seconds since cache TTL expired (when source='stale') */
+    staleAgeSec?: number;
+    /** Seconds since prebuild was generated (when source='prebuild') */
+    prebuildAgeSec?: number;
+    /** Circuit breaker state at time of request */
+    circuit: CircuitState;
+    /** Correlation ID for debugging */
+    requestId?: string;
+    /** Total request duration including retries (ms) */
+    durationMs?: number;
+}
+/**
+ * Circuit breaker state information
+ */
+interface CircuitState {
+    state: 'closed' | 'open' | 'half-open';
+    failureCount: number;
+    /** Timestamp when circuit will transition from open to half-open */
+    openUntil?: number;
+}
+/**
+ * Retry configuration
+ */
+interface RetryConfig {
+    /** Maximum number of attempts (including initial) */
+    maxAttempts?: number;
+    /** Base delay between retries in ms */
+    baseDelayMs?: number;
+    /** Maximum delay between retries in ms */
+    maxDelayMs?: number;
+    /** Jitter strategy: 'full' adds randomization, 'none' uses exact delays */
+    jitter?: 'full' | 'none';
+    /** Custom function to determine if an error should be retried */
+    retryOn?: (error: Error, statusCode?: number) => boolean;
+}
+/**
+ * Circuit breaker configuration
+ */
+interface CircuitBreakerConfig {
+    /** Number of failures before opening circuit */
+    failureThreshold?: number;
+    /** Time in ms before attempting to close circuit */
+    resetTimeoutMs?: number;
+    /** Number of successful requests needed to close from half-open */
+    halfOpenMaxRequests?: number;
+}
+/**
+ * Resilience configuration for the SDK client
+ */
+interface ResilienceConfig {
+    /** Enable resilience features (default: true) */
+    enabled?: boolean;
+    /** Serve stale data on fetch failure (default: true) */
+    staleIfError?: boolean;
+    /** Seconds AFTER cache TTL expires that stale data remains valid (default: 300) */
+    staleTtlSec?: number;
+    /** Request timeout in ms (default: 8000 server, 5000 browser) */
+    requestTimeoutMs?: number;
+    /** Retry configuration */
+    retry?: RetryConfig;
+    /** Circuit breaker configuration */
+    circuitBreaker?: CircuitBreakerConfig;
+    /** Callback fired on every request with status information */
+    onStatusChange?: (status: ResilienceStatus) => void;
+    /** Callback fired only when transitioning into/out of degraded mode */
+    onDegradedMode?: (degraded: boolean, status: ResilienceStatus) => void;
+}
 /**
  * Configuration for creating a Riverbank CMS client
  */
@@ -85,6 +178,10 @@ interface RiverbankClientConfig {
          */
         maxSize?: number;
     };
+    /**
+     * Resilience configuration for error handling, retries, and fallbacks
+     */
+    resilience?: ResilienceConfig;
 }
 /**
  * Riverbank CMS client interface
@@ -97,7 +194,7 @@ interface RiverbankClient {
         slug?: string;
         domain?: string;
         id?: string;
-    }): Promise<SiteResponse>;
+    } & SdkMethodOptions): Promise<SiteResponse>;
     /**
      * Fetch a specific page by path
      *
@@ -107,7 +204,7 @@ interface RiverbankClient {
         siteId: string;
         path: string;
         preview?: boolean;
-    }): Promise<PageResponse>;
+    } & SdkMethodOptions): Promise<PageResponse>;
     /**
      * Fetch published content entries with optional pagination, sorting, and preview mode
      *
@@ -168,20 +265,20 @@ interface RiverbankClient {
         siteId: string;
         contentType: string;
         slug: string;
-    }): Promise<EntryResponse>;
+    } & SdkMethodOptions): Promise<EntryResponse>;
     /**
      * Fetch a public form definition by ID
      */
     getPublicFormById(params: {
         formId: string;
-    }): Promise<PublicFormResponse>;
+    } & SdkMethodOptions): Promise<PublicFormResponse>;
     /**
      * Fetch public booking services for a site
      */
     getPublicBookingServices(params: {
         siteId: string;
         ids?: string;
-    }): Promise<PublicBookingServicesResponse>;
+    } & SdkMethodOptions): Promise<PublicBookingServicesResponse>;
     /**
      * List public events for a site (optionally time-filtered)
      */
@@ -191,7 +288,7 @@ interface RiverbankClient {
         from?: string;
         to?: string;
         stage?: string;
-    }): Promise<PublicEventsResponse>;
+    } & SdkMethodOptions): Promise<PublicEventsResponse>;
     /**
      * Resolve an event occurrence by URL segment (date or UUID)
      *
@@ -220,7 +317,7 @@ interface RiverbankClient {
         siteId: string;
         entryId: string;
         segment: string;
-    }): Promise<ResolveEventOccurrenceResponse>;
+    } & SdkMethodOptions): Promise<ResolveEventOccurrenceResponse>;
     /**
      * Check if a path has a configured redirect rule
      *
@@ -241,11 +338,23 @@ interface RiverbankClient {
     checkRedirect(params: {
         siteId: string;
         path: string;
-    }): Promise<CheckRedirectResponse>;
+    } & SdkMethodOptions): Promise<CheckRedirectResponse>;
     /**
      * Force clear the cache
      */
     clearCache(): void;
+    /**
+     * Get the status from the most recently emitted request
+     *
+     * Note: With concurrent requests, this returns the last status emitted,
+     * which may not be from the request you're interested in. For reliable
+     * per-request status, use the onStatusChange callback instead.
+     */
+    getLastEmittedStatus(): ResilienceStatus | null;
+    /**
+     * Get the current circuit breaker state
+     */
+    getCircuitState(): CircuitState;
 }
 export type { EntriesResponse as E, PageResponse as P, RiverbankClient as R, SiteResponse as S, RiverbankClientConfig as a, EntryResponse as b, EntriesResponseWithMeta as c, PaginationMeta as d, ResolveEventOccurrenceResponse as e };

package/dist/server/webhooks.d.mts ADDED Viewed

@@ -0,0 +1,75 @@
+import { z } from 'zod';
+/**
+ * Webhook verification utilities for Riverbank SDK
+ *
+ * Provides framework-agnostic webhook signature verification and payload parsing.
+ */
+/**
+ * Zod schema for webhook payload validation.
+ */
+declare const WebhookPayloadSchema: z.ZodObject<{
+    event: z.ZodString;
+    timestamp: z.ZodString;
+    siteId: z.ZodString;
+    data: z.ZodRecord<z.ZodString, z.ZodAny>;
+    tags: z.ZodOptional<z.ZodArray<z.ZodString>>;
+}, z.core.$strip>;
+/**
+ * Webhook payload structure sent by the CMS.
+ */
+type WebhookPayload = z.infer<typeof WebhookPayloadSchema>;
+/**
+ * Verify a webhook signature using HMAC-SHA256.
+ *
+ * Uses timing-safe comparison to prevent timing attacks.
+ *
+ * @param payload - The raw request body as a string
+ * @param signature - The X-Riverbank-Signature header value
+ * @param secret - The webhook signing secret (RIVERBANK_WEBHOOK_SECRET)
+ * @returns true if signature is valid, false otherwise
+ *
+ * @example
+ * ```ts
+ * const body = await request.text();
+ * const signature = request.headers.get('x-riverbank-signature');
+ * const secret = process.env.RIVERBANK_WEBHOOK_SECRET;
+ *
+ * if (!verifyWebhookSignature(body, signature, secret)) {
+ *   return new Response('Invalid signature', { status: 401 });
+ * }
+ * ```
+ */
+declare function verifyWebhookSignature(payload: string, signature: string, secret: string): boolean;
+/**
+ * Result type for webhook payload parsing.
+ */
+type ParseWebhookResult = {
+    success: true;
+    payload: WebhookPayload;
+} | {
+    success: false;
+    error: string;
+};
+/**
+ * Parse and validate a webhook payload from the request body.
+ *
+ * Uses Zod schema validation to ensure the payload has the expected structure.
+ *
+ * @param body - The raw request body as a string
+ * @returns A result object with either the validated payload or an error message
+ *
+ * @example
+ * ```ts
+ * const body = await request.text();
+ * const result = parseWebhookPayload(body);
+ * if (!result.success) {
+ *   return new Response(result.error, { status: 400 });
+ * }
+ * console.log(`Received ${result.payload.event} for site ${result.payload.siteId}`);
+ * ```
+ */
+declare function parseWebhookPayload(body: string): ParseWebhookResult;
+export { type ParseWebhookResult, type WebhookPayload, WebhookPayloadSchema, parseWebhookPayload, verifyWebhookSignature };

package/dist/server/webhooks.d.ts ADDED Viewed

@@ -0,0 +1,75 @@
+import { z } from 'zod';
+/**
+ * Webhook verification utilities for Riverbank SDK
+ *
+ * Provides framework-agnostic webhook signature verification and payload parsing.
+ */
+/**
+ * Zod schema for webhook payload validation.
+ */
+declare const WebhookPayloadSchema: z.ZodObject<{
+    event: z.ZodString;
+    timestamp: z.ZodString;
+    siteId: z.ZodString;
+    data: z.ZodRecord<z.ZodString, z.ZodAny>;
+    tags: z.ZodOptional<z.ZodArray<z.ZodString>>;
+}, z.core.$strip>;
+/**
+ * Webhook payload structure sent by the CMS.
+ */
+type WebhookPayload = z.infer<typeof WebhookPayloadSchema>;
+/**
+ * Verify a webhook signature using HMAC-SHA256.
+ *
+ * Uses timing-safe comparison to prevent timing attacks.
+ *
+ * @param payload - The raw request body as a string
+ * @param signature - The X-Riverbank-Signature header value
+ * @param secret - The webhook signing secret (RIVERBANK_WEBHOOK_SECRET)
+ * @returns true if signature is valid, false otherwise
+ *
+ * @example
+ * ```ts
+ * const body = await request.text();
+ * const signature = request.headers.get('x-riverbank-signature');
+ * const secret = process.env.RIVERBANK_WEBHOOK_SECRET;
+ *
+ * if (!verifyWebhookSignature(body, signature, secret)) {
+ *   return new Response('Invalid signature', { status: 401 });
+ * }
+ * ```
+ */
+declare function verifyWebhookSignature(payload: string, signature: string, secret: string): boolean;
+/**
+ * Result type for webhook payload parsing.
+ */
+type ParseWebhookResult = {
+    success: true;
+    payload: WebhookPayload;
+} | {
+    success: false;
+    error: string;
+};
+/**
+ * Parse and validate a webhook payload from the request body.
+ *
+ * Uses Zod schema validation to ensure the payload has the expected structure.
+ *
+ * @param body - The raw request body as a string
+ * @returns A result object with either the validated payload or an error message
+ *
+ * @example
+ * ```ts
+ * const body = await request.text();
+ * const result = parseWebhookPayload(body);
+ * if (!result.success) {
+ *   return new Response(result.error, { status: 400 });
+ * }
+ * console.log(`Received ${result.payload.event} for site ${result.payload.siteId}`);
+ * ```
+ */
+declare function parseWebhookPayload(body: string): ParseWebhookResult;
+export { type ParseWebhookResult, type WebhookPayload, WebhookPayloadSchema, parseWebhookPayload, verifyWebhookSignature };

package/dist/server/webhooks.js ADDED Viewed

@@ -0,0 +1,11 @@
+"use strict";Object.defineProperty(exports, "__esModule", {value: true});
+var _chunkVODFQMUWjs = require('./chunk-VODFQMUW.js');
+exports.WebhookPayloadSchema = _chunkVODFQMUWjs.WebhookPayloadSchema; exports.parseWebhookPayload = _chunkVODFQMUWjs.parseWebhookPayload; exports.verifyWebhookSignature = _chunkVODFQMUWjs.verifyWebhookSignature;
+//# sourceMappingURL=webhooks.js.map

package/dist/server/webhooks.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"sources":["/Users/will/Projects/Business/cms/builder/packages/sdk/dist/server/webhooks.js"],"names":[],"mappings":"AAAA;AACE;AACA;AACA;AACF,sDAA4B;AAC5B;AACE;AACA;AACA;AACF,mNAAC","file":"/Users/will/Projects/Business/cms/builder/packages/sdk/dist/server/webhooks.js"}

package/dist/server/webhooks.mjs ADDED Viewed

@@ -0,0 +1,11 @@
+import {
+  WebhookPayloadSchema,
+  parseWebhookPayload,
+  verifyWebhookSignature
+} from "./chunk-AET56TQX.mjs";
+export {
+  WebhookPayloadSchema,
+  parseWebhookPayload,
+  verifyWebhookSignature
+};
+//# sourceMappingURL=webhooks.mjs.map

package/dist/server/webhooks.mjs.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"sources":[],"sourcesContent":[],"mappings":"","names":[]}

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@riverbankcms/sdk",
-  "version": "0.7.0",
+  "version": "0.7.2",
   "description": "Riverbank CMS SDK for headless content consumption",
   "main": "./dist/server/index.js",
   "module": "./dist/server/index.mjs",
@@ -104,6 +104,26 @@
       "import": "./dist/server/theme-bridge.mjs",
       "require": "./dist/server/theme-bridge.js"
     },
+    "./env": {
+      "types": "./dist/server/env.d.ts",
+      "import": "./dist/server/env.mjs",
+      "require": "./dist/server/env.js"
+    },
+    "./next/revalidate": {
+      "types": "./dist/server/next/revalidate.d.ts",
+      "import": "./dist/server/next/revalidate.mjs",
+      "require": "./dist/server/next/revalidate.js"
+    },
+    "./next/tags": {
+      "types": "./dist/server/next/tags.d.ts",
+      "import": "./dist/server/next/tags.mjs",
+      "require": "./dist/server/next/tags.js"
+    },
+    "./webhooks": {
+      "types": "./dist/server/webhooks.d.ts",
+      "import": "./dist/server/webhooks.mjs",
+      "require": "./dist/server/webhooks.js"
+    },
     "./styles.css": "./src/styles/index.css"
   },
   "files": [
@@ -128,7 +148,7 @@
     "zod": "^4.1.1"
   },
   "peerDependencies": {
-    "next": "^14.0.0 || ^15.0.0",
+    "next": ">=14.0.0",
     "react": "^19.2.1",
     "react-dom": "^19.2.1"
   },
@@ -147,7 +167,7 @@
     "@types/react": "^19.1.0",
     "@types/react-dom": "^19.1.0",
     "eslint": "^9.15.0",
-    "next": "^15.0.0",
+    "next": "^15.5.0",
     "tsup": "^8.3.5",
     "typescript": "^5.6.3",
     "vitest": "^1.6.1"