@sonicjs-cms/core 2.8.1 → 2.8.3

package/dist/middleware.cjs

@@ -1,8 +1,8 @@
 'use strict';
 
-var chunkGIWIJNBH_cjs = require('./chunk-GIWIJNBH.cjs');
+var chunkK4Q4SFJJ_cjs = require('./chunk-K4Q4SFJJ.cjs');
 require('./chunk-MPT5PA6U.cjs');
-require('./chunk-SKLRRFJJ.cjs');
+require('./chunk-HXHVU5GM.cjs');
 require('./chunk-RCQ2HIQD.cjs');
 require('./chunk-IGJUBJBW.cjs');
 
@@ -10,87 +10,107 @@ require('./chunk-IGJUBJBW.cjs');
 
 Object.defineProperty(exports, "AuthManager", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.AuthManager; }
+  get: function () { return chunkK4Q4SFJJ_cjs.AuthManager; }
 });
 Object.defineProperty(exports, "PermissionManager", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.PermissionManager; }
+  get: function () { return chunkK4Q4SFJJ_cjs.PermissionManager; }
 });
 Object.defineProperty(exports, "bootstrapMiddleware", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.bootstrapMiddleware; }
+  get: function () { return chunkK4Q4SFJJ_cjs.bootstrapMiddleware; }
 });
 Object.defineProperty(exports, "cacheHeaders", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.cacheHeaders; }
+  get: function () { return chunkK4Q4SFJJ_cjs.cacheHeaders; }
 });
 Object.defineProperty(exports, "compressionMiddleware", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.compressionMiddleware; }
+  get: function () { return chunkK4Q4SFJJ_cjs.compressionMiddleware; }
+});
+Object.defineProperty(exports, "csrfProtection", {
+  enumerable: true,
+  get: function () { return chunkK4Q4SFJJ_cjs.csrfProtection; }
 });
 Object.defineProperty(exports, "detailedLoggingMiddleware", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.detailedLoggingMiddleware; }
+  get: function () { return chunkK4Q4SFJJ_cjs.detailedLoggingMiddleware; }
+});
+Object.defineProperty(exports, "generateCsrfToken", {
+  enumerable: true,
+  get: function () { return chunkK4Q4SFJJ_cjs.generateCsrfToken; }
 });
 Object.defineProperty(exports, "getActivePlugins", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.getActivePlugins; }
+  get: function () { return chunkK4Q4SFJJ_cjs.getActivePlugins; }
 });
 Object.defineProperty(exports, "isPluginActive", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.isPluginActive; }
+  get: function () { return chunkK4Q4SFJJ_cjs.isPluginActive; }
 });
 Object.defineProperty(exports, "logActivity", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.logActivity; }
+  get: function () { return chunkK4Q4SFJJ_cjs.logActivity; }
 });
 Object.defineProperty(exports, "loggingMiddleware", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.loggingMiddleware; }
+  get: function () { return chunkK4Q4SFJJ_cjs.loggingMiddleware; }
 });
 Object.defineProperty(exports, "metricsMiddleware", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.metricsMiddleware; }
+  get: function () { return chunkK4Q4SFJJ_cjs.metricsMiddleware; }
 });
 Object.defineProperty(exports, "optionalAuth", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.optionalAuth; }
+  get: function () { return chunkK4Q4SFJJ_cjs.optionalAuth; }
 });
 Object.defineProperty(exports, "performanceLoggingMiddleware", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.performanceLoggingMiddleware; }
+  get: function () { return chunkK4Q4SFJJ_cjs.performanceLoggingMiddleware; }
+});
+Object.defineProperty(exports, "rateLimit", {
+  enumerable: true,
+  get: function () { return chunkK4Q4SFJJ_cjs.rateLimit; }
 });
 Object.defineProperty(exports, "requireActivePlugin", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.requireActivePlugin; }
+  get: function () { return chunkK4Q4SFJJ_cjs.requireActivePlugin; }
 });
 Object.defineProperty(exports, "requireActivePlugins", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.requireActivePlugins; }
+  get: function () { return chunkK4Q4SFJJ_cjs.requireActivePlugins; }
 });
 Object.defineProperty(exports, "requireAnyPermission", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.requireAnyPermission; }
+  get: function () { return chunkK4Q4SFJJ_cjs.requireAnyPermission; }
 });
 Object.defineProperty(exports, "requireAuth", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.requireAuth; }
+  get: function () { return chunkK4Q4SFJJ_cjs.requireAuth; }
 });
 Object.defineProperty(exports, "requirePermission", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.requirePermission; }
+  get: function () { return chunkK4Q4SFJJ_cjs.requirePermission; }
 });
 Object.defineProperty(exports, "requireRole", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.requireRole; }
+  get: function () { return chunkK4Q4SFJJ_cjs.requireRole; }
 });
 Object.defineProperty(exports, "securityHeaders", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.securityHeaders; }
+  get: function () { return chunkK4Q4SFJJ_cjs.securityHeadersMiddleware; }
 });
 Object.defineProperty(exports, "securityLoggingMiddleware", {
   enumerable: true,
-  get: function () { return chunkGIWIJNBH_cjs.securityLoggingMiddleware; }
+  get: function () { return chunkK4Q4SFJJ_cjs.securityLoggingMiddleware; }
+});
+Object.defineProperty(exports, "validateCsrfToken", {
+  enumerable: true,
+  get: function () { return chunkK4Q4SFJJ_cjs.validateCsrfToken; }
+});
+Object.defineProperty(exports, "verifySecurityConfig", {
+  enumerable: true,
+  get: function () { return chunkK4Q4SFJJ_cjs.verifySecurityConfig; }
 });
 //# sourceMappingURL=middleware.cjs.map
 //# sourceMappingURL=middleware.cjs.map

package/dist/middleware.d.cts

@@ -1,12 +1,21 @@
 import * as hono from 'hono';
 import { Context, Next, MiddlewareHandler } from 'hono';
-import { S as SonicJSConfig } from './app-CYEm1ytG.cjs';
+import { S as SonicJSConfig } from './app-DnQ26Lho.cjs';
 import '@cloudflare/workers-types';
 
 type Bindings = {
     DB: D1Database;
     KV: KVNamespace;
+    JWT_SECRET?: string;
+    CORS_ORIGINS?: string;
+    ENVIRONMENT?: string;
 };
+/**
+ * Verify security-critical environment configuration at startup.
+ * Logs warnings in development, throws in production to prevent
+ * insecure deployments from silently running.
+ */
+declare function verifySecurityConfig(env: Bindings): void;
 /**
  * Bootstrap middleware that ensures system initialization
  * Runs once per worker instance
@@ -23,10 +32,12 @@ type JWTPayload = {
     iat: number;
 };
 declare class AuthManager {
-    static generateToken(userId: string, email: string, role: string): Promise<string>;
-    static verifyToken(token: string): Promise<JWTPayload | null>;
+    static generateToken(userId: string, email: string, role: string, secret?: string): Promise<string>;
+    static verifyToken(token: string, secret?: string): Promise<JWTPayload | null>;
     static hashPassword(password: string): Promise<string>;
-    static verifyPassword(password: string, hash: string): Promise<boolean>;
+    static hashPasswordLegacy(password: string): Promise<string>;
+    static verifyPassword(password: string, storedHash: string): Promise<boolean>;
+    static isLegacyHash(storedHash: string): boolean;
     /**
      * Set authentication cookie - useful for plugins implementing alternative auth methods
      * @param c - Hono context
@@ -56,6 +67,75 @@ declare const optionalAuth: () => (c: Context, next: Next) => Promise<void>;
  */
 declare const metricsMiddleware: () => MiddlewareHandler;
 
+/**
+ * CSRF Protection Middleware — Signed Double-Submit Cookie
+ *
+ * Stateless CSRF protection for Cloudflare Workers (no session store needed).
+ * Token format: `<nonce>.<hmac>` where HMAC-SHA256 is keyed with JWT_SECRET.
+ *
+ * Flow:
+ *   GET  — ensureCsrfCookie(): reuse existing valid cookie or set a new one
+ *   POST/PUT/DELETE/PATCH — validate X-CSRF-Token header === csrf_token cookie, HMAC valid
+ *
+ * Exempt:
+ *   - Safe methods (GET, HEAD, OPTIONS)
+ *   - Auth routes that create sessions (/auth/login*, /auth/register*, etc.)
+ *   - Public form submissions (/forms/*, /api/forms/*) — NOT /admin/forms/*
+ *   - Requests with no auth_token cookie (Bearer-only or API-key-only)
+ */
+
+/**
+ * Generate a signed CSRF token: `<nonce>.<hmac_signature>`
+ * - nonce = 32 random bytes, base64url-encoded
+ * - signature = HMAC-SHA256(nonce, secret), base64url-encoded
+ */
+declare function generateCsrfToken(secret: string): Promise<string>;
+/**
+ * Validate a signed CSRF token.
+ *
+ * Checks that the token has the correct `<nonce>.<signature>` format and that
+ * the HMAC signature is valid for the given secret. Uses crypto.subtle.verify
+ * which provides constant-time comparison.
+ *
+ * NOTE: No expiry check here — by design. The security property of signed
+ * double-submit comes from the unpredictability of the nonce + the
+ * secret-bound HMAC, not from time-bounding. The cookie's maxAge (86400s)
+ * handles expiry at the browser level.
+ */
+declare function validateCsrfToken(token: string, secret: string): Promise<boolean>;
+interface CsrfOptions {
+    /** Additional paths to exempt from CSRF validation. */
+    exemptPaths?: string[];
+}
+/**
+ * CSRF protection middleware (Signed Double-Submit Cookie).
+ *
+ * - GET/HEAD/OPTIONS: ensure a valid csrf_token cookie exists
+ * - POST/PUT/DELETE/PATCH: validate X-CSRF-Token header matches cookie, HMAC valid
+ * - Exempt: auth routes, public /forms/*, Bearer-only, API-key-only
+ */
+declare function csrfProtection(options?: CsrfOptions): (c: Context, next: Next) => Promise<Response | void>;
+
+interface RateLimitOptions {
+    max: number;
+    windowMs: number;
+    keyPrefix: string;
+}
+/**
+ * KV-based sliding window rate limiter middleware.
+ * Gracefully skips if CACHE_KV binding is not available.
+ */
+declare function rateLimit(options: RateLimitOptions): (c: Context, next: Next) => Promise<void | (Response & hono.TypedResponse<{
+    error: string;
+}, 429, "json">)>;
+
+/**
+ * Security headers middleware.
+ * Sets standard security headers on every response.
+ * Skips HSTS in development to avoid local dev issues.
+ */
+declare const securityHeadersMiddleware: () => (c: Context, next: Next) => Promise<void>;
+
 /**
  * Middleware Module Exports
  *
@@ -76,7 +156,7 @@ declare const securityLoggingMiddleware: any;
 declare const performanceLoggingMiddleware: any;
 declare const cacheHeaders: any;
 declare const compressionMiddleware: any;
-declare const securityHeaders: any;
+
 declare const PermissionManager: any;
 declare const requirePermission: any;
 declare const requireAnyPermission: any;
@@ -86,4 +166,4 @@ declare const requireActivePlugins: any;
 declare const getActivePlugins: any;
 declare const isPluginActive: any;
 
-export { AuthManager, type Permission, PermissionManager, type UserPermissions, bootstrapMiddleware, cacheHeaders, compressionMiddleware, detailedLoggingMiddleware, getActivePlugins, isPluginActive, logActivity, loggingMiddleware, metricsMiddleware, optionalAuth, performanceLoggingMiddleware, requireActivePlugin, requireActivePlugins, requireAnyPermission, requireAuth, requirePermission, requireRole, securityHeaders, securityLoggingMiddleware };
+export { AuthManager, type Permission, PermissionManager, type UserPermissions, bootstrapMiddleware, cacheHeaders, compressionMiddleware, csrfProtection, detailedLoggingMiddleware, generateCsrfToken, getActivePlugins, isPluginActive, logActivity, loggingMiddleware, metricsMiddleware, optionalAuth, performanceLoggingMiddleware, rateLimit, requireActivePlugin, requireActivePlugins, requireAnyPermission, requireAuth, requirePermission, requireRole, securityHeadersMiddleware as securityHeaders, securityLoggingMiddleware, validateCsrfToken, verifySecurityConfig };

package/dist/middleware.d.ts

@@ -1,12 +1,21 @@
 import * as hono from 'hono';
 import { Context, Next, MiddlewareHandler } from 'hono';
-import { S as SonicJSConfig } from './app-CYEm1ytG.js';
+import { S as SonicJSConfig } from './app-DnQ26Lho.js';
 import '@cloudflare/workers-types';
 
 type Bindings = {
     DB: D1Database;
     KV: KVNamespace;
+    JWT_SECRET?: string;
+    CORS_ORIGINS?: string;
+    ENVIRONMENT?: string;
 };
+/**
+ * Verify security-critical environment configuration at startup.
+ * Logs warnings in development, throws in production to prevent
+ * insecure deployments from silently running.
+ */
+declare function verifySecurityConfig(env: Bindings): void;
 /**
  * Bootstrap middleware that ensures system initialization
  * Runs once per worker instance
@@ -23,10 +32,12 @@ type JWTPayload = {
     iat: number;
 };
 declare class AuthManager {
-    static generateToken(userId: string, email: string, role: string): Promise<string>;
-    static verifyToken(token: string): Promise<JWTPayload | null>;
+    static generateToken(userId: string, email: string, role: string, secret?: string): Promise<string>;
+    static verifyToken(token: string, secret?: string): Promise<JWTPayload | null>;
     static hashPassword(password: string): Promise<string>;
-    static verifyPassword(password: string, hash: string): Promise<boolean>;
+    static hashPasswordLegacy(password: string): Promise<string>;
+    static verifyPassword(password: string, storedHash: string): Promise<boolean>;
+    static isLegacyHash(storedHash: string): boolean;
     /**
      * Set authentication cookie - useful for plugins implementing alternative auth methods
      * @param c - Hono context
@@ -56,6 +67,75 @@ declare const optionalAuth: () => (c: Context, next: Next) => Promise<void>;
  */
 declare const metricsMiddleware: () => MiddlewareHandler;
 
+/**
+ * CSRF Protection Middleware — Signed Double-Submit Cookie
+ *
+ * Stateless CSRF protection for Cloudflare Workers (no session store needed).
+ * Token format: `<nonce>.<hmac>` where HMAC-SHA256 is keyed with JWT_SECRET.
+ *
+ * Flow:
+ *   GET  — ensureCsrfCookie(): reuse existing valid cookie or set a new one
+ *   POST/PUT/DELETE/PATCH — validate X-CSRF-Token header === csrf_token cookie, HMAC valid
+ *
+ * Exempt:
+ *   - Safe methods (GET, HEAD, OPTIONS)
+ *   - Auth routes that create sessions (/auth/login*, /auth/register*, etc.)
+ *   - Public form submissions (/forms/*, /api/forms/*) — NOT /admin/forms/*
+ *   - Requests with no auth_token cookie (Bearer-only or API-key-only)
+ */
+
+/**
+ * Generate a signed CSRF token: `<nonce>.<hmac_signature>`
+ * - nonce = 32 random bytes, base64url-encoded
+ * - signature = HMAC-SHA256(nonce, secret), base64url-encoded
+ */
+declare function generateCsrfToken(secret: string): Promise<string>;
+/**
+ * Validate a signed CSRF token.
+ *
+ * Checks that the token has the correct `<nonce>.<signature>` format and that
+ * the HMAC signature is valid for the given secret. Uses crypto.subtle.verify
+ * which provides constant-time comparison.
+ *
+ * NOTE: No expiry check here — by design. The security property of signed
+ * double-submit comes from the unpredictability of the nonce + the
+ * secret-bound HMAC, not from time-bounding. The cookie's maxAge (86400s)
+ * handles expiry at the browser level.
+ */
+declare function validateCsrfToken(token: string, secret: string): Promise<boolean>;
+interface CsrfOptions {
+    /** Additional paths to exempt from CSRF validation. */
+    exemptPaths?: string[];
+}
+/**
+ * CSRF protection middleware (Signed Double-Submit Cookie).
+ *
+ * - GET/HEAD/OPTIONS: ensure a valid csrf_token cookie exists
+ * - POST/PUT/DELETE/PATCH: validate X-CSRF-Token header matches cookie, HMAC valid
+ * - Exempt: auth routes, public /forms/*, Bearer-only, API-key-only
+ */
+declare function csrfProtection(options?: CsrfOptions): (c: Context, next: Next) => Promise<Response | void>;
+
+interface RateLimitOptions {
+    max: number;
+    windowMs: number;
+    keyPrefix: string;
+}
+/**
+ * KV-based sliding window rate limiter middleware.
+ * Gracefully skips if CACHE_KV binding is not available.
+ */
+declare function rateLimit(options: RateLimitOptions): (c: Context, next: Next) => Promise<void | (Response & hono.TypedResponse<{
+    error: string;
+}, 429, "json">)>;
+
+/**
+ * Security headers middleware.
+ * Sets standard security headers on every response.
+ * Skips HSTS in development to avoid local dev issues.
+ */
+declare const securityHeadersMiddleware: () => (c: Context, next: Next) => Promise<void>;
+
 /**
  * Middleware Module Exports
  *
@@ -76,7 +156,7 @@ declare const securityLoggingMiddleware: any;
 declare const performanceLoggingMiddleware: any;
 declare const cacheHeaders: any;
 declare const compressionMiddleware: any;
-declare const securityHeaders: any;
+
 declare const PermissionManager: any;
 declare const requirePermission: any;
 declare const requireAnyPermission: any;
@@ -86,4 +166,4 @@ declare const requireActivePlugins: any;
 declare const getActivePlugins: any;
 declare const isPluginActive: any;
 
-export { AuthManager, type Permission, PermissionManager, type UserPermissions, bootstrapMiddleware, cacheHeaders, compressionMiddleware, detailedLoggingMiddleware, getActivePlugins, isPluginActive, logActivity, loggingMiddleware, metricsMiddleware, optionalAuth, performanceLoggingMiddleware, requireActivePlugin, requireActivePlugins, requireAnyPermission, requireAuth, requirePermission, requireRole, securityHeaders, securityLoggingMiddleware };
+export { AuthManager, type Permission, PermissionManager, type UserPermissions, bootstrapMiddleware, cacheHeaders, compressionMiddleware, csrfProtection, detailedLoggingMiddleware, generateCsrfToken, getActivePlugins, isPluginActive, logActivity, loggingMiddleware, metricsMiddleware, optionalAuth, performanceLoggingMiddleware, rateLimit, requireActivePlugin, requireActivePlugins, requireAnyPermission, requireAuth, requirePermission, requireRole, securityHeadersMiddleware as securityHeaders, securityLoggingMiddleware, validateCsrfToken, verifySecurityConfig };

package/dist/middleware.js

@@ -1,6 +1,6 @@
-export { AuthManager, PermissionManager, bootstrapMiddleware, cacheHeaders, compressionMiddleware, detailedLoggingMiddleware, getActivePlugins, isPluginActive, logActivity, loggingMiddleware, metricsMiddleware, optionalAuth, performanceLoggingMiddleware, requireActivePlugin, requireActivePlugins, requireAnyPermission, requireAuth, requirePermission, requireRole, securityHeaders, securityLoggingMiddleware } from './chunk-QWTS6NSP.js';
+export { AuthManager, PermissionManager, bootstrapMiddleware, cacheHeaders, compressionMiddleware, csrfProtection, detailedLoggingMiddleware, generateCsrfToken, getActivePlugins, isPluginActive, logActivity, loggingMiddleware, metricsMiddleware, optionalAuth, performanceLoggingMiddleware, rateLimit, requireActivePlugin, requireActivePlugins, requireAnyPermission, requireAuth, requirePermission, requireRole, securityHeadersMiddleware as securityHeaders, securityLoggingMiddleware, validateCsrfToken, verifySecurityConfig } from './chunk-Y3VMEGY2.js';
 import './chunk-YFJJU26H.js';
-import './chunk-7Q2XPM2U.js';
+import './chunk-GTFMI24U.js';
 import './chunk-FICTAGD4.js';
 import './chunk-V4OQ3NZ2.js';
 //# sourceMappingURL=middleware.js.map

package/dist/migrations-7X4RPH7O.cjs

@@ -0,0 +1,13 @@
+'use strict';
+
+var chunkHXHVU5GM_cjs = require('./chunk-HXHVU5GM.cjs');
+require('./chunk-IGJUBJBW.cjs');
+
+
+
+Object.defineProperty(exports, "MigrationService", {
+  enumerable: true,
+  get: function () { return chunkHXHVU5GM_cjs.MigrationService; }
+});
+//# sourceMappingURL=migrations-7X4RPH7O.cjs.map
+//# sourceMappingURL=migrations-7X4RPH7O.cjs.map

package/dist/{migrations-76NR5BVF.cjs.map → migrations-7X4RPH7O.cjs.map}

@@ -1 +1 @@
-{"version":3,"sources":[],"names":[],"mappings":"","file":"migrations-76NR5BVF.cjs"}
+{"version":3,"sources":[],"names":[],"mappings":"","file":"migrations-7X4RPH7O.cjs"}

package/dist/migrations-KHWFJ2HN.js

@@ -0,0 +1,4 @@
+export { MigrationService } from './chunk-GTFMI24U.js';
+import './chunk-V4OQ3NZ2.js';
+//# sourceMappingURL=migrations-KHWFJ2HN.js.map
+//# sourceMappingURL=migrations-KHWFJ2HN.js.map

package/dist/{migrations-2NTJ44OR.js.map → migrations-KHWFJ2HN.js.map}

@@ -1 +1 @@
-{"version":3,"sources":[],"names":[],"mappings":"","file":"migrations-2NTJ44OR.js"}
+{"version":3,"sources":[],"names":[],"mappings":"","file":"migrations-KHWFJ2HN.js"}

package/dist/{plugin-bootstrap-C7Mj00Ud.d.ts → plugin-bootstrap-CJozpgmI.d.cts}

@@ -1,4 +1,4 @@
-import { c as CollectionConfig, e as CollectionSyncResult } from './collection-config-BF95LgQb.js';
+import { c as CollectionConfig, e as CollectionSyncResult } from './collection-config-i8EaAF7z.cjs';
 import { D1Database as D1Database$1 } from '@cloudflare/workers-types';
 import * as drizzle_zod from 'drizzle-zod';
 import * as drizzle_orm_sqlite_core from 'drizzle-orm/sqlite-core';

package/dist/{plugin-bootstrap-DKB5f8-E.d.cts → plugin-bootstrap-DU5VmuHZ.d.ts}

@@ -1,4 +1,4 @@
-import { c as CollectionConfig, e as CollectionSyncResult } from './collection-config-BF95LgQb.cjs';
+import { c as CollectionConfig, e as CollectionSyncResult } from './collection-config-i8EaAF7z.js';
 import { D1Database as D1Database$1 } from '@cloudflare/workers-types';
 import * as drizzle_zod from 'drizzle-zod';
 import * as drizzle_orm_sqlite_core from 'drizzle-orm/sqlite-core';

package/dist/routes.cjs

@@ -1,110 +1,111 @@
 'use strict';
 
-var chunkJVRRG36J_cjs = require('./chunk-JVRRG36J.cjs');
+var chunkR4WR3VTN_cjs = require('./chunk-R4WR3VTN.cjs');
 require('./chunk-VNLR35GO.cjs');
-require('./chunk-GIWIJNBH.cjs');
+require('./chunk-K4Q4SFJJ.cjs');
 require('./chunk-MPT5PA6U.cjs');
-require('./chunk-SKLRRFJJ.cjs');
-require('./chunk-SHCYIZAN.cjs');
+require('./chunk-HXHVU5GM.cjs');
+require('./chunk-LTKV7AE5.cjs');
 require('./chunk-6FHNRRJ3.cjs');
-require('./chunk-WDQZYCQO.cjs');
+require('./chunk-JDIM5AG7.cjs');
 require('./chunk-P3XDZL6Q.cjs');
 require('./chunk-RCQ2HIQD.cjs');
+require('./chunk-MNWKYY5E.cjs');
 require('./chunk-IGJUBJBW.cjs');
 
 
 
 Object.defineProperty(exports, "ROUTES_INFO", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.ROUTES_INFO; }
+  get: function () { return chunkR4WR3VTN_cjs.ROUTES_INFO; }
 });
 Object.defineProperty(exports, "adminApiReferenceRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.router2; }
+  get: function () { return chunkR4WR3VTN_cjs.router2; }
 });
 Object.defineProperty(exports, "adminApiRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.admin_api_default; }
+  get: function () { return chunkR4WR3VTN_cjs.admin_api_default; }
 });
 Object.defineProperty(exports, "adminCheckboxRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.adminCheckboxRoutes; }
+  get: function () { return chunkR4WR3VTN_cjs.adminCheckboxRoutes; }
 });
 Object.defineProperty(exports, "adminCodeExamplesRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.admin_code_examples_default; }
+  get: function () { return chunkR4WR3VTN_cjs.admin_code_examples_default; }
 });
 Object.defineProperty(exports, "adminCollectionsRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.adminCollectionsRoutes; }
+  get: function () { return chunkR4WR3VTN_cjs.adminCollectionsRoutes; }
 });
 Object.defineProperty(exports, "adminContentRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.admin_content_default; }
+  get: function () { return chunkR4WR3VTN_cjs.admin_content_default; }
 });
 Object.defineProperty(exports, "adminDashboardRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.router; }
+  get: function () { return chunkR4WR3VTN_cjs.router; }
 });
 Object.defineProperty(exports, "adminDesignRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.adminDesignRoutes; }
+  get: function () { return chunkR4WR3VTN_cjs.adminDesignRoutes; }
 });
 Object.defineProperty(exports, "adminFormsRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.adminFormsRoutes; }
+  get: function () { return chunkR4WR3VTN_cjs.adminFormsRoutes; }
 });
 Object.defineProperty(exports, "adminLogsRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.adminLogsRoutes; }
+  get: function () { return chunkR4WR3VTN_cjs.adminLogsRoutes; }
 });
 Object.defineProperty(exports, "adminMediaRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.adminMediaRoutes; }
+  get: function () { return chunkR4WR3VTN_cjs.adminMediaRoutes; }
 });
 Object.defineProperty(exports, "adminPluginRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.adminPluginRoutes; }
+  get: function () { return chunkR4WR3VTN_cjs.adminPluginRoutes; }
 });
 Object.defineProperty(exports, "adminSettingsRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.adminSettingsRoutes; }
+  get: function () { return chunkR4WR3VTN_cjs.adminSettingsRoutes; }
 });
 Object.defineProperty(exports, "adminTestimonialsRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.admin_testimonials_default; }
+  get: function () { return chunkR4WR3VTN_cjs.admin_testimonials_default; }
 });
 Object.defineProperty(exports, "adminUsersRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.userRoutes; }
+  get: function () { return chunkR4WR3VTN_cjs.userRoutes; }
 });
 Object.defineProperty(exports, "apiContentCrudRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.api_content_crud_default; }
+  get: function () { return chunkR4WR3VTN_cjs.api_content_crud_default; }
 });
 Object.defineProperty(exports, "apiMediaRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.api_media_default; }
+  get: function () { return chunkR4WR3VTN_cjs.api_media_default; }
 });
 Object.defineProperty(exports, "apiRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.api_default; }
+  get: function () { return chunkR4WR3VTN_cjs.api_default; }
 });
 Object.defineProperty(exports, "apiSystemRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.api_system_default; }
+  get: function () { return chunkR4WR3VTN_cjs.api_system_default; }
 });
 Object.defineProperty(exports, "authRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.auth_default; }
+  get: function () { return chunkR4WR3VTN_cjs.auth_default; }
 });
 Object.defineProperty(exports, "publicFormsRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.public_forms_default; }
+  get: function () { return chunkR4WR3VTN_cjs.public_forms_default; }
 });
 Object.defineProperty(exports, "testCleanupRoutes", {
   enumerable: true,
-  get: function () { return chunkJVRRG36J_cjs.test_cleanup_default; }
+  get: function () { return chunkR4WR3VTN_cjs.test_cleanup_default; }
 });
 //# sourceMappingURL=routes.cjs.map
 //# sourceMappingURL=routes.cjs.map

package/dist/routes.d.cts

@@ -1,6 +1,6 @@
 import * as hono_types from 'hono/types';
 import { Hono } from 'hono';
-import { B as Bindings$a, V as Variables$b } from './app-CYEm1ytG.cjs';
+import { B as Bindings$a, V as Variables$b } from './app-DnQ26Lho.cjs';
 import { D1Database as D1Database$1, KVNamespace as KVNamespace$1, R2Bucket as R2Bucket$1 } from '@cloudflare/workers-types';
 
 interface Variables$a extends Variables$b {

package/dist/routes.d.ts

@@ -1,6 +1,6 @@
 import * as hono_types from 'hono/types';
 import { Hono } from 'hono';
-import { B as Bindings$a, V as Variables$b } from './app-CYEm1ytG.js';
+import { B as Bindings$a, V as Variables$b } from './app-DnQ26Lho.js';
 import { D1Database as D1Database$1, KVNamespace as KVNamespace$1, R2Bucket as R2Bucket$1 } from '@cloudflare/workers-types';
 
 interface Variables$a extends Variables$b {

package/dist/routes.js

@@ -1,13 +1,14 @@
-export { ROUTES_INFO, router2 as adminApiReferenceRoutes, admin_api_default as adminApiRoutes, adminCheckboxRoutes, admin_code_examples_default as adminCodeExamplesRoutes, adminCollectionsRoutes, admin_content_default as adminContentRoutes, router as adminDashboardRoutes, adminDesignRoutes, adminFormsRoutes, adminLogsRoutes, adminMediaRoutes, adminPluginRoutes, adminSettingsRoutes, admin_testimonials_default as adminTestimonialsRoutes, userRoutes as adminUsersRoutes, api_content_crud_default as apiContentCrudRoutes, api_media_default as apiMediaRoutes, api_default as apiRoutes, api_system_default as apiSystemRoutes, auth_default as authRoutes, public_forms_default as publicFormsRoutes, test_cleanup_default as testCleanupRoutes } from './chunk-FZRZYQYU.js';
+export { ROUTES_INFO, router2 as adminApiReferenceRoutes, admin_api_default as adminApiRoutes, adminCheckboxRoutes, admin_code_examples_default as adminCodeExamplesRoutes, adminCollectionsRoutes, admin_content_default as adminContentRoutes, router as adminDashboardRoutes, adminDesignRoutes, adminFormsRoutes, adminLogsRoutes, adminMediaRoutes, adminPluginRoutes, adminSettingsRoutes, admin_testimonials_default as adminTestimonialsRoutes, userRoutes as adminUsersRoutes, api_content_crud_default as apiContentCrudRoutes, api_media_default as apiMediaRoutes, api_default as apiRoutes, api_system_default as apiSystemRoutes, auth_default as authRoutes, public_forms_default as publicFormsRoutes, test_cleanup_default as testCleanupRoutes } from './chunk-CH5UHZVM.js';
 import './chunk-G44QUVNM.js';
-import './chunk-QWTS6NSP.js';
+import './chunk-Y3VMEGY2.js';
 import './chunk-YFJJU26H.js';
-import './chunk-7Q2XPM2U.js';
-import './chunk-VCH6HXVP.js';
+import './chunk-GTFMI24U.js';
+import './chunk-JJS7JZCH.js';
 import './chunk-J5WGMRSU.js';
-import './chunk-KAT3OKHE.js';
+import './chunk-5XAI2XUF.js';
 import './chunk-X7ZAEI5S.js';
 import './chunk-FICTAGD4.js';
+import './chunk-TQABQWOP.js';
 import './chunk-V4OQ3NZ2.js';
 //# sourceMappingURL=routes.js.map
 //# sourceMappingURL=routes.js.map

package/dist/services.cjs

@@ -2,7 +2,7 @@
 
 var chunkVNLR35GO_cjs = require('./chunk-VNLR35GO.cjs');
 var chunkMPT5PA6U_cjs = require('./chunk-MPT5PA6U.cjs');
-var chunkSKLRRFJJ_cjs = require('./chunk-SKLRRFJJ.cjs');
+var chunkHXHVU5GM_cjs = require('./chunk-HXHVU5GM.cjs');
 require('./chunk-P3XDZL6Q.cjs');
 require('./chunk-IGJUBJBW.cjs');
 
@@ -106,7 +106,7 @@ Object.defineProperty(exports, "validateCollectionConfig", {
 });
 Object.defineProperty(exports, "MigrationService", {
   enumerable: true,
-  get: function () { return chunkSKLRRFJJ_cjs.MigrationService; }
+  get: function () { return chunkHXHVU5GM_cjs.MigrationService; }
 });
 //# sourceMappingURL=services.cjs.map
 //# sourceMappingURL=services.cjs.map