@teleporthq/teleport-project-generator-next 0.43.21 → 0.43.22

package/__tests__/analytics-tracker-double-count.test.ts

@@ -0,0 +1,47 @@
+import { TRACKER_SOURCE } from '../src/analytics/tracker-source'
+import { TRACKER_COMPONENT_SOURCE } from '../src/analytics/tracker-component'
+
+// Regression guard for the page-view / page-leave double-count: the pages-router
+// emits routeChangeStart/Complete for the SAME path during hydration (and on a
+// link to the current page), which used to fire a second pageview (new
+// pageLoadId — not server-deduped) and a 0ms page_leave. The fix guards the two
+// route entry points on the router's destination url, with a defensive same-path
+// guard inside trackPageview.
+describe('tracker — same-path double-count guard', () => {
+  it('defines a same-path helper over the router url', () => {
+    expect(TRACKER_SOURCE).toContain('function samePathAsCurrent(url)')
+    expect(TRACKER_SOURCE).toContain('function pathnameOf(url)')
+  })
+
+  it('guards trackRouteChange against a same-path re-fire', () => {
+    expect(TRACKER_SOURCE).toMatch(
+      /export function trackRouteChange\(url\)\s*{\s*if \(samePathAsCurrent\(url\)\)\s*{\s*return\s*}/
+    )
+  })
+
+  it('guards trackRouteLeave so hydration cannot enqueue a bogus page_leave', () => {
+    expect(TRACKER_SOURCE).toMatch(
+      /export function trackRouteLeave\(url\)\s*{[\s\S]*?if \(samePathAsCurrent\(url\)\)\s*{\s*return\s*}/
+    )
+  })
+
+  it('keeps the defensive same-path guard inside trackPageview', () => {
+    expect(TRACKER_SOURCE).toContain(
+      '!isFirstLoad && currentPath !== null && newPath === currentPath'
+    )
+  })
+
+  it('keeps pagehide end-of-visit unconditional (genuine leave)', () => {
+    expect(TRACKER_SOURCE).toContain("window.addEventListener('pagehide', () => {")
+    expect(TRACKER_SOURCE).toContain('trackLeave(true)')
+  })
+
+  it('passes the router destination url into both handlers', () => {
+    expect(TRACKER_COMPONENT_SOURCE).toContain(
+      'const handleRouteChangeStart = (url) => trackRouteLeave(url)'
+    )
+    expect(TRACKER_COMPONENT_SOURCE).toContain(
+      'const handleRouteChangeComplete = (url) => trackRouteChange(url)'
+    )
+  })
+})

package/__tests__/calendarkit-project-plugin.test.ts

@@ -54,6 +54,11 @@ describe('NextCalendarKitProjectPlugin', () => {
     expect(structure.dependencies.react).toBe('^18.3.1')
     expect(structure.dependencies['react-dom']).toBe('^18.3.1')
 
+    const npmrc = structure.files.get('calendarkit-npmrc')
+    expect(npmrc?.path).toEqual([])
+    expect(npmrc?.files[0].name).toBe('.npmrc')
+    expect(npmrc?.files[0].content).toContain('legacy-peer-deps=true')
+
     const cssRecord = structure.files.get('calendarkit-css')
     expect(cssRecord?.path).toEqual(['pages'])
     expect(cssRecord?.files[0]).toEqual({

package/__tests__/motion-end2end.test.ts

@@ -0,0 +1,82 @@
+import { GeneratedFolder, ProjectUIDL } from '@teleporthq/teleport-types'
+import uidlSample from '../../../examples/test-samples/project-sample.json'
+import { createNextProjectGenerator } from '../src'
+import NextTemplate from '../src/project-template'
+
+// The production template (react ^17) — the same one the GUI publish path feeds
+// into packProject, so the react bump is asserted against real deps.
+const template = JSON.parse(JSON.stringify(NextTemplate)) as GeneratedFolder
+
+// A Motion CONTAINER wrapping a child — mirrors what the GUI's motionNodeToUIDL
+// emits (elementType 'motion-node', camelCase props, children preserved).
+const MOTION_ELEMENT_NODE = {
+  type: 'element',
+  content: {
+    elementType: 'motion-node',
+    name: 'motion',
+    attrs: {
+      preset: { type: 'static', content: 'slide-up' },
+      trigger: { type: 'static', content: 'in-view' },
+      stagger: { type: 'static', content: 0.08 },
+    },
+    children: [
+      {
+        type: 'element',
+        content: {
+          elementType: 'container',
+          attrs: { id: { type: 'static', content: 'motion-inner-child' } },
+          children: [],
+        },
+      },
+    ],
+  },
+}
+
+const buildUidlWithMotion = (): ProjectUIDL => {
+  const uidl = JSON.parse(JSON.stringify(uidlSample)) as ProjectUIDL
+  const indexPage = (uidl.root.node.content.children || []).find(
+    (child) =>
+      child.type === 'conditional' && (child.content as { value?: string }).value === 'index'
+  )
+  const pageElement = (indexPage as { content: { node: { content: { children: unknown[] } } } })
+    .content.node.content
+  pageElement.children.push(MOTION_ELEMENT_NODE)
+  return uidl
+}
+
+const findFile = (folder: GeneratedFolder, folderName: string, fileName: string) =>
+  folder.subFolders
+    .find((sub) => sub.name === folderName)
+    ?.files.find((file) => file.name === fileName)
+
+describe('Next generator with a Motion element', () => {
+  const generator = createNextProjectGenerator()
+
+  it('renders <TqMotion> wrapping its children, ships the wrapper and bumps react', async () => {
+    const outputFolder = await generator.generateProject(buildUidlWithMotion(), template)
+
+    // The page imports and renders TqMotion, wrapping the child (not self-closing).
+    const indexPage = findFile(outputFolder, 'pages', 'index')
+    expect(indexPage?.content).toContain('TqMotion')
+    expect(indexPage?.content).toContain('preset')
+    expect(indexPage?.content).toMatch(/<TqMotion[\s\S]*motion-inner-child[\s\S]*<\/TqMotion>/)
+
+    // The local wrapper component is emitted and uses framer-motion.
+    const component = findFile(outputFolder, 'components', 'tq-motion')
+    expect(component?.content).toContain("from 'framer-motion'")
+    expect(component?.content).toContain('{children}')
+
+    // framer-motion is added and react is bumped to 18 (next left on its caret).
+    const packageFile = outputFolder.files.find((file) => file.name === 'package')
+    const packageJson = JSON.parse(packageFile?.content || '{}')
+    expect(packageJson.dependencies['framer-motion']).toBe('^11.18.0')
+    expect(packageJson.dependencies.react).toBe('^18.3.1')
+    expect(packageJson.dependencies['react-dom']).toBe('^18.3.1')
+    expect(packageJson.dependencies.next).toBe('^12.1.10')
+
+    // A root .npmrc (legacy-peer-deps) ships so the React-18 bump survives
+    // template deps with React-17-only peer ranges (e.g. dangerous-html embeds).
+    const npmrc = outputFolder.files.find((file) => file.name === '.npmrc')
+    expect(npmrc?.content).toContain('legacy-peer-deps=true')
+  })
+})

package/__tests__/widget-project-plugins.test.ts

@@ -0,0 +1,252 @@
+import {
+  FileType,
+  InMemoryFileRecord,
+  ProjectPlugin,
+  ProjectPluginStructure,
+  ProjectUIDL,
+  UIDLElementNode,
+} from '@teleporthq/teleport-types'
+import { createNextWidgetProjectPlugins } from '../src/widgets'
+
+const APP_CONTENT = `import './style.css'
+
+export default function MyApp({ Component, pageProps }) {
+  return <Component {...pageProps} />
+}
+`
+
+const elementNode = (elementType: string, children: UIDLElementNode[] = []): UIDLElementNode => ({
+  type: 'element',
+  content: {
+    elementType,
+    children,
+  },
+})
+
+const buildStructure = (pageChildren: UIDLElementNode[]): ProjectPluginStructure => {
+  const files = new Map<string, InMemoryFileRecord>()
+  files.set('_app', {
+    path: ['pages'],
+    files: [{ name: '_app', fileType: FileType.JS, content: APP_CONTENT }],
+  })
+
+  const uidl = {
+    name: 'test',
+    root: {
+      name: 'App',
+      node: elementNode('container', pageChildren),
+    },
+    components: {},
+  } as unknown as ProjectUIDL
+
+  return {
+    uidl,
+    files,
+    dependencies: {},
+    devDependencies: {},
+  } as unknown as ProjectPluginStructure
+}
+
+const runAll = async (structure: ProjectPluginStructure): Promise<void> => {
+  const plugins: ProjectPlugin[] = createNextWidgetProjectPlugins()
+  for (const plugin of plugins) {
+    await plugin.runAfter(structure)
+  }
+}
+
+interface WidgetCase {
+  elementType: string
+  fileKey: string
+  fileName: string
+  componentName: string
+  dependency: string
+  version: string
+}
+
+const WIDGET_CASES: WidgetCase[] = [
+  {
+    elementType: 'qrcode-node',
+    fileKey: 'tq-qrcode-component',
+    fileName: 'tq-qrcode',
+    componentName: 'TqQrCode',
+    dependency: 'qrcode',
+    version: '1.5.4',
+  },
+  {
+    elementType: 'barcode-node',
+    fileKey: 'tq-barcode-component',
+    fileName: 'tq-barcode',
+    componentName: 'TqBarcode',
+    dependency: 'jsbarcode',
+    version: '3.12.1',
+  },
+  {
+    elementType: 'signature-node',
+    fileKey: 'tq-signature-component',
+    fileName: 'tq-signature',
+    componentName: 'TqSignature',
+    dependency: 'signature_pad',
+    version: '5.0.4',
+  },
+  {
+    elementType: 'color-picker-node',
+    fileKey: 'tq-color-picker-component',
+    fileName: 'tq-color-picker',
+    componentName: 'TqColorPicker',
+    dependency: '@simonwep/pickr',
+    version: '1.9.1',
+  },
+  {
+    elementType: 'emoji-picker-node',
+    fileKey: 'tq-emoji-picker-component',
+    fileName: 'tq-emoji-picker',
+    componentName: 'TqEmojiPicker',
+    dependency: 'emoji-picker-element',
+    version: '1.26.3',
+  },
+  {
+    elementType: 'motion-node',
+    fileKey: 'tq-motion-component',
+    fileName: 'tq-motion',
+    componentName: 'TqMotion',
+    dependency: 'framer-motion',
+    version: '^11.18.0',
+  },
+]
+
+describe('Next widget project plugins', () => {
+  it('are a no-op for projects without any widget primitive', async () => {
+    const structure = buildStructure([elementNode('container')])
+
+    await runAll(structure)
+
+    for (const widget of WIDGET_CASES) {
+      expect(structure.files.has(widget.fileKey)).toBe(false)
+      expect(structure.dependencies[widget.dependency]).toBeUndefined()
+    }
+    expect(structure.files.get('_app')?.files[0].content).toBe(APP_CONTENT)
+  })
+
+  it.each(WIDGET_CASES)(
+    'emits the $componentName wrapper + dependency when $elementType is used',
+    async (widget) => {
+      const structure = buildStructure([elementNode(widget.elementType)])
+
+      await runAll(structure)
+
+      const record = structure.files.get(widget.fileKey)
+      expect(record?.path).toEqual(['components'])
+      expect(record?.files[0].name).toBe(widget.fileName)
+      expect(record?.files[0].fileType).toBe(FileType.JS)
+      expect(record?.files[0].content).toContain(`const ${widget.componentName} =`)
+      expect(record?.files[0].content).toContain(`export default ${widget.componentName}`)
+      expect(structure.dependencies[widget.dependency]).toBe(widget.version)
+    }
+  )
+
+  it('detects a widget primitive nested deep in the tree', async () => {
+    const structure = buildStructure([
+      elementNode('container', [elementNode('container', [elementNode('qrcode-node')])]),
+    ])
+
+    await runAll(structure)
+
+    expect(structure.files.has('tq-qrcode-component')).toBe(true)
+  })
+
+  it('injects the Pickr theme stylesheet into _app only for the color picker', async () => {
+    const structure = buildStructure([elementNode('color-picker-node')])
+
+    await runAll(structure)
+
+    const appContent = structure.files.get('_app')?.files[0].content as string
+    expect(appContent).toContain("import '@simonwep/pickr/dist/themes/nano.min.css'")
+  })
+
+  it('does not inject any stylesheet for a widget without CSS (qr code)', async () => {
+    const structure = buildStructure([elementNode('qrcode-node')])
+
+    await runAll(structure)
+
+    const appContent = structure.files.get('_app')?.files[0].content as string
+    expect(appContent).toBe(APP_CONTENT)
+  })
+
+  it('bumps react/react-dom to ^18 only when the motion widget is used', async () => {
+    const withoutMotion = buildStructure([elementNode('qrcode-node')])
+    await runAll(withoutMotion)
+    expect(withoutMotion.dependencies.react).toBeUndefined()
+    expect(withoutMotion.dependencies['react-dom']).toBeUndefined()
+
+    const withMotion = buildStructure([elementNode('motion-node')])
+    await runAll(withMotion)
+    expect(withMotion.dependencies['framer-motion']).toBe('^11.18.0')
+    expect(withMotion.dependencies.react).toBe('^18.3.1')
+    expect(withMotion.dependencies['react-dom']).toBe('^18.3.1')
+  })
+
+  it('emits a root .npmrc (legacy-peer-deps) only when the React-18 bump runs', async () => {
+    const withoutMotion = buildStructure([elementNode('qrcode-node')])
+    await runAll(withoutMotion)
+    expect(withoutMotion.files.get('tq-motion-component-npmrc')).toBeUndefined()
+
+    const withMotion = buildStructure([elementNode('motion-node')])
+    await runAll(withMotion)
+    const npmrc = withMotion.files.get('tq-motion-component-npmrc')
+    expect(npmrc?.path).toEqual([])
+    expect(npmrc?.files[0].name).toBe('.npmrc')
+    expect(npmrc?.files[0].content).toContain('legacy-peer-deps=true')
+  })
+
+  it('generates a TqMotion wrapper that imports framer-motion and renders children', async () => {
+    const structure = buildStructure([elementNode('motion-node')])
+    await runAll(structure)
+    const content = structure.files.get('tq-motion-component')?.files[0].content as string
+    expect(content).toContain(
+      "import { motion, useInView, useReducedMotion, useScroll, useTransform } from 'framer-motion'"
+    )
+    expect(content).toContain('<motion.div')
+    expect(content).toContain('{children}')
+    expect(content).toContain('useReducedMotion')
+  })
+
+  it('drives in-view via useInView + a timed in-viewport failsafe (never trapped at opacity:0)', async () => {
+    const structure = buildStructure([elementNode('motion-node')])
+    await runAll(structure)
+    const content = structure.files.get('tq-motion-component')?.files[0].content as string
+    // in-view is no longer the bare whileInView (which could miss an already-in-view
+    // hero) — it is gated on useInView OR a forced reveal after a timed visibility check.
+    expect(content).toContain('useInView(ref')
+    expect(content).toContain('setForceReveal')
+    expect(content).toContain('getBoundingClientRect')
+    expect(content).toContain('animate: revealed ? toVars : fromVars')
+    expect(content).not.toContain('whileInView')
+  })
+
+  it('staggers the real repeated items (descends grid/array-mapper wrappers), not the block', async () => {
+    const structure = buildStructure([elementNode('motion-node')])
+    await runAll(structure)
+    const content = structure.files.get('tq-motion-component')?.files[0].content as string
+    // The descent helper + per-child wrapping must be generated so a wrapped grid
+    // cascades its cards rather than animating as one block.
+    expect(content).toContain('mapStaggerTargets')
+    expect(content).toContain('cloneElement')
+    expect(content).toContain('index * Number(stagger)')
+  })
+
+  it('uses next/dynamic ssr:false for the window-dependent wrappers', async () => {
+    const structure = buildStructure([
+      elementNode('color-picker-node'),
+      elementNode('emoji-picker-node'),
+    ])
+
+    await runAll(structure)
+
+    expect(structure.files.get('tq-color-picker-component')?.files[0].content).toContain(
+      "import('@simonwep/pickr')"
+    )
+    expect(structure.files.get('tq-emoji-picker-component')?.files[0].content).toContain(
+      "import('emoji-picker-element')"
+    )
+  })
+})

package/dist/cjs/analytics/tracker-component.d.ts

@@ -1,2 +1,2 @@
-export declare const TRACKER_COMPONENT_SOURCE = "import { useEffect } from 'react'\nimport { useRouter } from 'next/router'\nimport {\n  initTeleportAnalytics,\n  trackRouteChange,\n  trackRouteLeave,\n} from '../../lib/teleport-analytics'\n\nconst AnalyticsTracker = () => {\n  const router = useRouter()\n\n  useEffect(() => {\n    initTeleportAnalytics()\n\n    const handleRouteChangeStart = () => trackRouteLeave()\n    const handleRouteChangeComplete = () => trackRouteChange()\n\n    router.events.on('routeChangeStart', handleRouteChangeStart)\n    router.events.on('routeChangeComplete', handleRouteChangeComplete)\n\n    return () => {\n      router.events.off('routeChangeStart', handleRouteChangeStart)\n      router.events.off('routeChangeComplete', handleRouteChangeComplete)\n    }\n    // eslint-disable-next-line react-hooks/exhaustive-deps\n  }, [])\n\n  return null\n}\n\nexport default AnalyticsTracker\n";
+export declare const TRACKER_COMPONENT_SOURCE = "import { useEffect } from 'react'\nimport { useRouter } from 'next/router'\nimport {\n  initTeleportAnalytics,\n  trackRouteChange,\n  trackRouteLeave,\n} from '../../lib/teleport-analytics'\n\nconst AnalyticsTracker = () => {\n  const router = useRouter()\n\n  useEffect(() => {\n    initTeleportAnalytics()\n\n    const handleRouteChangeStart = (url) => trackRouteLeave(url)\n    const handleRouteChangeComplete = (url) => trackRouteChange(url)\n\n    router.events.on('routeChangeStart', handleRouteChangeStart)\n    router.events.on('routeChangeComplete', handleRouteChangeComplete)\n\n    return () => {\n      router.events.off('routeChangeStart', handleRouteChangeStart)\n      router.events.off('routeChangeComplete', handleRouteChangeComplete)\n    }\n    // eslint-disable-next-line react-hooks/exhaustive-deps\n  }, [])\n\n  return null\n}\n\nexport default AnalyticsTracker\n";
 //# sourceMappingURL=tracker-component.d.ts.map

package/dist/cjs/analytics/tracker-component.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"tracker-component.d.ts","sourceRoot":"","sources":["../../../src/analytics/tracker-component.ts"],"names":[],"mappings":"AAGA,eAAO,MAAM,wBAAwB,g3BA+BpC,CAAA"}
+{"version":3,"file":"tracker-component.d.ts","sourceRoot":"","sources":["../../../src/analytics/tracker-component.ts"],"names":[],"mappings":"AAGA,eAAO,MAAM,wBAAwB,43BA+BpC,CAAA"}

package/dist/cjs/analytics/tracker-component.js

@@ -4,5 +4,5 @@ exports.TRACKER_COMPONENT_SOURCE = void 0;
 // Source of the generated `components/analytics/AnalyticsTracker.js` —
 // null-rendering component that boots the tracker and bridges Next.js
 // pages-router navigation events to pageview/page_leave tracking.
-exports.TRACKER_COMPONENT_SOURCE = "import { useEffect } from 'react'\nimport { useRouter } from 'next/router'\nimport {\n  initTeleportAnalytics,\n  trackRouteChange,\n  trackRouteLeave,\n} from '../../lib/teleport-analytics'\n\nconst AnalyticsTracker = () => {\n  const router = useRouter()\n\n  useEffect(() => {\n    initTeleportAnalytics()\n\n    const handleRouteChangeStart = () => trackRouteLeave()\n    const handleRouteChangeComplete = () => trackRouteChange()\n\n    router.events.on('routeChangeStart', handleRouteChangeStart)\n    router.events.on('routeChangeComplete', handleRouteChangeComplete)\n\n    return () => {\n      router.events.off('routeChangeStart', handleRouteChangeStart)\n      router.events.off('routeChangeComplete', handleRouteChangeComplete)\n    }\n    // eslint-disable-next-line react-hooks/exhaustive-deps\n  }, [])\n\n  return null\n}\n\nexport default AnalyticsTracker\n";
+exports.TRACKER_COMPONENT_SOURCE = "import { useEffect } from 'react'\nimport { useRouter } from 'next/router'\nimport {\n  initTeleportAnalytics,\n  trackRouteChange,\n  trackRouteLeave,\n} from '../../lib/teleport-analytics'\n\nconst AnalyticsTracker = () => {\n  const router = useRouter()\n\n  useEffect(() => {\n    initTeleportAnalytics()\n\n    const handleRouteChangeStart = (url) => trackRouteLeave(url)\n    const handleRouteChangeComplete = (url) => trackRouteChange(url)\n\n    router.events.on('routeChangeStart', handleRouteChangeStart)\n    router.events.on('routeChangeComplete', handleRouteChangeComplete)\n\n    return () => {\n      router.events.off('routeChangeStart', handleRouteChangeStart)\n      router.events.off('routeChangeComplete', handleRouteChangeComplete)\n    }\n    // eslint-disable-next-line react-hooks/exhaustive-deps\n  }, [])\n\n  return null\n}\n\nexport default AnalyticsTracker\n";
 //# sourceMappingURL=tracker-component.js.map

package/dist/cjs/analytics/tracker-component.js.map

@@ -1 +1 @@
-{"version":3,"file":"tracker-component.js","sourceRoot":"","sources":["../../../src/analytics/tracker-component.ts"],"names":[],"mappings":";;;AAAA,uEAAuE;AACvE,sEAAsE;AACtE,kEAAkE;AACrD,QAAA,wBAAwB,GAAG,62BA+BvC,CAAA"}
+{"version":3,"file":"tracker-component.js","sourceRoot":"","sources":["../../../src/analytics/tracker-component.ts"],"names":[],"mappings":";;;AAAA,uEAAuE;AACvE,sEAAsE;AACtE,kEAAkE;AACrD,QAAA,wBAAwB,GAAG,y3BA+BvC,CAAA"}

package/dist/cjs/analytics/tracker-source.d.ts

@@ -1,2 +1,2 @@
-export declare const TRACKER_SOURCE = "/* TeleportHQ first-party analytics tracker. Anonymous, cookieless by default. */\nconst SERVER_URL = process.env.NEXT_PUBLIC_TELEPORT_ANALYTICS_URL\nconst PUBLIC_KEY = process.env.NEXT_PUBLIC_TELEPORT_ANALYTICS_KEY\n\nconst HEARTBEAT_INTERVAL_MS = 30000\nconst FLUSH_INTERVAL_MS = 5000\nconst FLUSH_AT_QUEUE_SIZE = 10\nconst MAX_BATCH = 25\nconst RETRY_DELAYS_MS = [1000, 5000, 15000]\nconst SESSION_WINDOW_MS = 30 * 60 * 1000\n\nlet initialized = false\nlet disabled = false\nlet forbiddenCount = 0\n\nlet sessionId = null\nlet visitorId = null\nlet pageLoadId = null\nlet seq = 0\nlet currentPath = null\nlet initialReferrer = null\nlet utm = null\n\nlet visibleSince = null\nlet visibleAccumMs = 0\nlet maxScrollPct = 0\n\nlet queue = []\nlet flushTimer = null\nlet heartbeatTimer = null\nlet retryAttempt = 0\n\nfunction uuid() {\n  if (typeof crypto !== 'undefined' && crypto.randomUUID) {\n    return crypto.randomUUID()\n  }\n  return 'xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx'.replace(/[xy]/g, (c) => {\n    const r = (Math.random() * 16) | 0\n    return (c === 'x' ? r : (r & 0x3) | 0x8).toString(16)\n  })\n}\n\nfunction hasConsent() {\n  try {\n    return window.localStorage.getItem('cookieConsent') === 'accepted'\n  } catch (e) {\n    return false\n  }\n}\n\nfunction isTrackingPossible() {\n  if (disabled || typeof window === 'undefined') {\n    return false\n  }\n  if (!SERVER_URL || !PUBLIC_KEY) {\n    return false\n  }\n  // Fail safe: a misconfigured deploy can leave the unresolved\n  // \"teleporthq.secrets.*\" placeholder (or any non-absolute value) baked into\n  // these build-time vars. Never fire requests at a non-absolute URL \u2014 that\n  // would point every beacon at the host site's own origin instead of the\n  // analytics API.\n  if (SERVER_URL.indexOf('http') !== 0 || PUBLIC_KEY.indexOf('teleporthq.secrets.') === 0) {\n    return false\n  }\n  const host = window.location.hostname\n  if (host === 'localhost' || host === '127.0.0.1' || host === '0.0.0.0') {\n    return false\n  }\n  if (typeof navigator !== 'undefined' && navigator.webdriver) {\n    return false\n  }\n  return true\n}\n\nfunction setupIdentity() {\n  if (!hasConsent()) {\n    // Consentless mode: nothing is stored on the device. The session id only\n    // lives in JS memory; the server stitches sessions via its anonymized\n    // daily visitor hash.\n    sessionId = uuid()\n    visitorId = null\n    return\n  }\n\n  try {\n    visitorId = window.localStorage.getItem('tp_aid')\n    if (!visitorId) {\n      visitorId = uuid()\n      window.localStorage.setItem('tp_aid', visitorId)\n    }\n\n    const now = Date.now()\n    const storedSession = window.sessionStorage.getItem('tp_sid')\n    const storedAt = Number(window.sessionStorage.getItem('tp_sid_t') || 0)\n\n    if (storedSession && now - storedAt < SESSION_WINDOW_MS) {\n      sessionId = storedSession\n    } else {\n      sessionId = uuid()\n    }\n    window.sessionStorage.setItem('tp_sid', sessionId)\n    window.sessionStorage.setItem('tp_sid_t', String(now))\n  } catch (e) {\n    sessionId = uuid()\n    visitorId = null\n  }\n}\n\nfunction touchSession() {\n  if (visitorId === null) {\n    return\n  }\n  try {\n    window.sessionStorage.setItem('tp_sid_t', String(Date.now()))\n  } catch (e) {\n    /* storage unavailable */\n  }\n}\n\nfunction parseUtm() {\n  try {\n    const params = new URLSearchParams(window.location.search)\n    const read = (key) => {\n      const value = params.get(key)\n      return value ? value.slice(0, 255) : null\n    }\n    const parsed = {\n      source: read('utm_source'),\n      medium: read('utm_medium'),\n      campaign: read('utm_campaign'),\n      term: read('utm_term'),\n      content: read('utm_content'),\n    }\n    const hasAny = Object.keys(parsed).some((key) => parsed[key])\n    return hasAny ? parsed : null\n  } catch (e) {\n    return null\n  }\n}\n\nfunction endpoint(suffix) {\n  return SERVER_URL.replace(/\\/$/, '') + '/events/' + PUBLIC_KEY + (suffix || '')\n}\n\nfunction markForbidden(status) {\n  if (status === 403 || status === 401) {\n    forbiddenCount += 1\n    if (forbiddenCount >= 3) {\n      // Analytics disabled server-side \u2014 go silent for this page lifetime\n      disabled = true\n      queue = []\n      if (flushTimer) clearInterval(flushTimer)\n      if (heartbeatTimer) clearInterval(heartbeatTimer)\n    }\n  } else {\n    forbiddenCount = 0\n  }\n}\n\nfunction sendBatch(events, useBeacon) {\n  if (events.length === 0) {\n    return Promise.resolve(true)\n  }\n\n  const body = JSON.stringify({ events: events })\n  const url = endpoint('/batch')\n\n  // text/plain is a CORS-safelisted content type, so the request skips the\n  // preflight. That preflight is what makes an application/json beacon fail on\n  // page unload (the browser can't complete OPTIONS while the page is dying),\n  // and it also doubles every normal batch into OPTIONS+POST. The server reads\n  // the JSON body regardless of this content type.\n  if (useBeacon && typeof navigator !== 'undefined' && navigator.sendBeacon) {\n    try {\n      const blob = new Blob([body], { type: 'text/plain;charset=UTF-8' })\n      return Promise.resolve(navigator.sendBeacon(url, blob))\n    } catch (e) {\n      /* fall through to fetch */\n    }\n  }\n\n  return fetch(url, {\n    method: 'POST',\n    headers: { 'Content-Type': 'text/plain;charset=UTF-8' },\n    body: body,\n    keepalive: true,\n  })\n    .then((response) => {\n      markForbidden(response.status)\n      return response.status < 400\n    })\n    .catch(() => false)\n}\n\nfunction flush(useBeacon) {\n  if (queue.length === 0 || disabled) {\n    return\n  }\n\n  const batch = queue.slice(0, MAX_BATCH)\n  queue = queue.slice(batch.length)\n\n  sendBatch(batch, useBeacon).then((ok) => {\n    if (ok) {\n      retryAttempt = 0\n      return\n    }\n    if (retryAttempt < RETRY_DELAYS_MS.length && !disabled) {\n      // Re-queue once per backoff step, then drop \u2014 analytics is lossy-tolerant\n      queue = batch.concat(queue)\n      const delay = RETRY_DELAYS_MS[retryAttempt]\n      retryAttempt += 1\n      setTimeout(() => flush(false), delay)\n    }\n  })\n}\n\nfunction enqueue(event) {\n  if (disabled) {\n    return\n  }\n  queue.push(event)\n  touchSession()\n  if (queue.length >= FLUSH_AT_QUEUE_SIZE) {\n    flush(false)\n  }\n}\n\nfunction baseEvent(type) {\n  seq += 1\n  return {\n    type: type,\n    pageLoadId: pageLoadId,\n    seq: seq - 1,\n    sessionId: sessionId,\n    visitorId: visitorId,\n    path: currentPath,\n    clientTs: Date.now(),\n  }\n}\n\nfunction visibleTimeMs() {\n  let total = visibleAccumMs\n  if (visibleSince !== null) {\n    total += Date.now() - visibleSince\n  }\n  return Math.max(0, Math.round(total))\n}\n\nfunction resetPageMetrics() {\n  visibleAccumMs = 0\n  visibleSince = document.visibilityState === 'visible' ? Date.now() : null\n  maxScrollPct = 0\n}\n\nfunction currentScrollPct() {\n  try {\n    const doc = document.documentElement\n    const scrollable = doc.scrollHeight - window.innerHeight\n    if (scrollable <= 0) {\n      return 100\n    }\n    return Math.min(100, Math.round((window.scrollY / scrollable) * 100))\n  } catch (e) {\n    return 0\n  }\n}\n\nfunction trackPageview(isFirstLoad) {\n  if (!isTrackingPossible()) {\n    return\n  }\n\n  pageLoadId = uuid()\n  seq = 0\n  currentPath = window.location.pathname || '/'\n  resetPageMetrics()\n\n  const event = baseEvent('pageview')\n  event.referrer = isFirstLoad ? (document.referrer || null) : null\n  event.utm = isFirstLoad ? utm : null\n  event.screenW = window.screen && window.screen.width ? window.screen.width : null\n  enqueue(event)\n}\n\nfunction trackLeave(useBeacon) {\n  if (!isTrackingPossible() || !pageLoadId) {\n    return\n  }\n\n  const event = baseEvent('page_leave')\n  event.timeOnPageMs = visibleTimeMs()\n  event.maxScrollPct = maxScrollPct\n  enqueue(event)\n\n  if (useBeacon) {\n    flush(true)\n  }\n}\n\nfunction sendHeartbeat() {\n  if (!isTrackingPossible() || document.visibilityState !== 'visible' || !pageLoadId) {\n    return\n  }\n\n  // Heartbeats go direct (never queued) \u2014 a stale heartbeat is worthless.\n  // text/plain keeps this preflight-free too (see sendBatch).\n  fetch(endpoint('/heartbeat'), {\n    method: 'POST',\n    headers: { 'Content-Type': 'text/plain;charset=UTF-8' },\n    body: JSON.stringify({\n      sessionId: sessionId,\n      visitorId: visitorId,\n      pageLoadId: pageLoadId,\n      path: currentPath,\n    }),\n    keepalive: true,\n  })\n    .then((response) => markForbidden(response.status))\n    .catch(() => undefined)\n}\n\nfunction onClickCapture(domEvent) {\n  if (!isTrackingPossible() || !pageLoadId) {\n    return\n  }\n\n  try {\n    const target = domEvent.target && domEvent.target.closest\n      ? domEvent.target.closest('a, button, [role=\"button\"], input[type=\"submit\"], [data-tp-event]')\n      : null\n    if (!target) {\n      return\n    }\n\n    const namedAttr = target.getAttribute('data-tp-event')\n    let href = null\n    if (target.tagName === 'A' && target.getAttribute('href')) {\n      const raw = target.getAttribute('href')\n      if (raw.indexOf('http') === 0) {\n        try {\n          const parsed = new URL(raw)\n          href = parsed.origin === window.location.origin ? parsed.pathname : raw.slice(0, 512)\n        } catch (e) {\n          href = raw.slice(0, 512)\n        }\n      } else {\n        href = raw.split('?')[0].split('#')[0].slice(0, 512) || null\n      }\n    }\n\n    const event = baseEvent('click')\n    event.click = {\n      tag: target.tagName ? target.tagName.toLowerCase().slice(0, 16) : null,\n      id: target.id ? target.id.slice(0, 64) : null,\n      text: target.textContent ? target.textContent.trim().slice(0, 64) : null,\n      href: href,\n      name: namedAttr && /^[a-zA-Z0-9_-]{1,64}$/.test(namedAttr) ? namedAttr : null,\n    }\n    enqueue(event)\n  } catch (e) {\n    /* never break the host page */\n  }\n}\n\nexport function initTeleportAnalytics() {\n  if (initialized || typeof window === 'undefined') {\n    return\n  }\n  initialized = true\n\n  if (!isTrackingPossible()) {\n    return\n  }\n\n  setupIdentity()\n  utm = parseUtm()\n\n  document.addEventListener('click', onClickCapture, true)\n\n  document.addEventListener('visibilitychange', () => {\n    if (document.visibilityState === 'visible') {\n      visibleSince = Date.now()\n      sendHeartbeat()\n    } else {\n      if (visibleSince !== null) {\n        visibleAccumMs += Date.now() - visibleSince\n        visibleSince = null\n      }\n      flush(true)\n    }\n  })\n\n  window.addEventListener(\n    'scroll',\n    () => {\n      const pct = currentScrollPct()\n      if (pct > maxScrollPct) {\n        maxScrollPct = pct\n      }\n    },\n    { passive: true }\n  )\n\n  // pagehide covers tab close, navigation away and most mobile terminations.\n  // When even this never fires (power loss, process kill), the server's\n  // heartbeat window + session finalizer close the visit.\n  window.addEventListener('pagehide', () => {\n    trackLeave(true)\n  })\n\n  flushTimer = setInterval(() => flush(false), FLUSH_INTERVAL_MS)\n  heartbeatTimer = setInterval(sendHeartbeat, HEARTBEAT_INTERVAL_MS)\n\n  trackPageview(true)\n  sendHeartbeat()\n}\n\nexport function trackRouteLeave() {\n  trackLeave(false)\n}\n\nexport function trackRouteChange() {\n  trackPageview(false)\n  sendHeartbeat()\n}\n";
+export declare const TRACKER_SOURCE = "/* TeleportHQ first-party analytics tracker. Anonymous, cookieless by default. */\nconst SERVER_URL = process.env.NEXT_PUBLIC_TELEPORT_ANALYTICS_URL\nconst PUBLIC_KEY = process.env.NEXT_PUBLIC_TELEPORT_ANALYTICS_KEY\n\nconst HEARTBEAT_INTERVAL_MS = 30000\nconst FLUSH_INTERVAL_MS = 5000\nconst FLUSH_AT_QUEUE_SIZE = 10\nconst MAX_BATCH = 25\nconst RETRY_DELAYS_MS = [1000, 5000, 15000]\nconst SESSION_WINDOW_MS = 30 * 60 * 1000\n\nlet initialized = false\nlet disabled = false\nlet forbiddenCount = 0\n\nlet sessionId = null\nlet visitorId = null\nlet pageLoadId = null\nlet seq = 0\nlet currentPath = null\nlet initialReferrer = null\nlet utm = null\n\nlet visibleSince = null\nlet visibleAccumMs = 0\nlet maxScrollPct = 0\n\nlet queue = []\nlet flushTimer = null\nlet heartbeatTimer = null\nlet retryAttempt = 0\n\nfunction uuid() {\n  if (typeof crypto !== 'undefined' && crypto.randomUUID) {\n    return crypto.randomUUID()\n  }\n  return 'xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx'.replace(/[xy]/g, (c) => {\n    const r = (Math.random() * 16) | 0\n    return (c === 'x' ? r : (r & 0x3) | 0x8).toString(16)\n  })\n}\n\nfunction hasConsent() {\n  try {\n    return window.localStorage.getItem('cookieConsent') === 'accepted'\n  } catch (e) {\n    return false\n  }\n}\n\nfunction isTrackingPossible() {\n  if (disabled || typeof window === 'undefined') {\n    return false\n  }\n  if (!SERVER_URL || !PUBLIC_KEY) {\n    return false\n  }\n  // Fail safe: a misconfigured deploy can leave the unresolved\n  // \"teleporthq.secrets.*\" placeholder (or any non-absolute value) baked into\n  // these build-time vars. Never fire requests at a non-absolute URL \u2014 that\n  // would point every beacon at the host site's own origin instead of the\n  // analytics API.\n  if (SERVER_URL.indexOf('http') !== 0 || PUBLIC_KEY.indexOf('teleporthq.secrets.') === 0) {\n    return false\n  }\n  const host = window.location.hostname\n  if (host === 'localhost' || host === '127.0.0.1' || host === '0.0.0.0') {\n    return false\n  }\n  if (typeof navigator !== 'undefined' && navigator.webdriver) {\n    return false\n  }\n  return true\n}\n\nfunction setupIdentity() {\n  if (!hasConsent()) {\n    // Consentless mode: nothing is stored on the device. The session id only\n    // lives in JS memory; the server stitches sessions via its anonymized\n    // daily visitor hash.\n    sessionId = uuid()\n    visitorId = null\n    return\n  }\n\n  try {\n    visitorId = window.localStorage.getItem('tp_aid')\n    if (!visitorId) {\n      visitorId = uuid()\n      window.localStorage.setItem('tp_aid', visitorId)\n    }\n\n    const now = Date.now()\n    const storedSession = window.sessionStorage.getItem('tp_sid')\n    const storedAt = Number(window.sessionStorage.getItem('tp_sid_t') || 0)\n\n    if (storedSession && now - storedAt < SESSION_WINDOW_MS) {\n      sessionId = storedSession\n    } else {\n      sessionId = uuid()\n    }\n    window.sessionStorage.setItem('tp_sid', sessionId)\n    window.sessionStorage.setItem('tp_sid_t', String(now))\n  } catch (e) {\n    sessionId = uuid()\n    visitorId = null\n  }\n}\n\nfunction touchSession() {\n  if (visitorId === null) {\n    return\n  }\n  try {\n    window.sessionStorage.setItem('tp_sid_t', String(Date.now()))\n  } catch (e) {\n    /* storage unavailable */\n  }\n}\n\nfunction parseUtm() {\n  try {\n    const params = new URLSearchParams(window.location.search)\n    const read = (key) => {\n      const value = params.get(key)\n      return value ? value.slice(0, 255) : null\n    }\n    const parsed = {\n      source: read('utm_source'),\n      medium: read('utm_medium'),\n      campaign: read('utm_campaign'),\n      term: read('utm_term'),\n      content: read('utm_content'),\n    }\n    const hasAny = Object.keys(parsed).some((key) => parsed[key])\n    return hasAny ? parsed : null\n  } catch (e) {\n    return null\n  }\n}\n\nfunction endpoint(suffix) {\n  return SERVER_URL.replace(/\\/$/, '') + '/events/' + PUBLIC_KEY + (suffix || '')\n}\n\nfunction markForbidden(status) {\n  if (status === 403 || status === 401) {\n    forbiddenCount += 1\n    if (forbiddenCount >= 3) {\n      // Analytics disabled server-side \u2014 go silent for this page lifetime\n      disabled = true\n      queue = []\n      if (flushTimer) clearInterval(flushTimer)\n      if (heartbeatTimer) clearInterval(heartbeatTimer)\n    }\n  } else {\n    forbiddenCount = 0\n  }\n}\n\nfunction sendBatch(events, useBeacon) {\n  if (events.length === 0) {\n    return Promise.resolve(true)\n  }\n\n  const body = JSON.stringify({ events: events })\n  const url = endpoint('/batch')\n\n  // text/plain is a CORS-safelisted content type, so the request skips the\n  // preflight. That preflight is what makes an application/json beacon fail on\n  // page unload (the browser can't complete OPTIONS while the page is dying),\n  // and it also doubles every normal batch into OPTIONS+POST. The server reads\n  // the JSON body regardless of this content type.\n  if (useBeacon && typeof navigator !== 'undefined' && navigator.sendBeacon) {\n    try {\n      const blob = new Blob([body], { type: 'text/plain;charset=UTF-8' })\n      return Promise.resolve(navigator.sendBeacon(url, blob))\n    } catch (e) {\n      /* fall through to fetch */\n    }\n  }\n\n  return fetch(url, {\n    method: 'POST',\n    headers: { 'Content-Type': 'text/plain;charset=UTF-8' },\n    body: body,\n    keepalive: true,\n  })\n    .then((response) => {\n      markForbidden(response.status)\n      return response.status < 400\n    })\n    .catch(() => false)\n}\n\nfunction flush(useBeacon) {\n  if (queue.length === 0 || disabled) {\n    return\n  }\n\n  const batch = queue.slice(0, MAX_BATCH)\n  queue = queue.slice(batch.length)\n\n  sendBatch(batch, useBeacon).then((ok) => {\n    if (ok) {\n      retryAttempt = 0\n      return\n    }\n    if (retryAttempt < RETRY_DELAYS_MS.length && !disabled) {\n      // Re-queue once per backoff step, then drop \u2014 analytics is lossy-tolerant\n      queue = batch.concat(queue)\n      const delay = RETRY_DELAYS_MS[retryAttempt]\n      retryAttempt += 1\n      setTimeout(() => flush(false), delay)\n    }\n  })\n}\n\nfunction enqueue(event) {\n  if (disabled) {\n    return\n  }\n  queue.push(event)\n  touchSession()\n  if (queue.length >= FLUSH_AT_QUEUE_SIZE) {\n    flush(false)\n  }\n}\n\nfunction baseEvent(type) {\n  seq += 1\n  return {\n    type: type,\n    pageLoadId: pageLoadId,\n    seq: seq - 1,\n    sessionId: sessionId,\n    visitorId: visitorId,\n    path: currentPath,\n    clientTs: Date.now(),\n  }\n}\n\nfunction visibleTimeMs() {\n  let total = visibleAccumMs\n  if (visibleSince !== null) {\n    total += Date.now() - visibleSince\n  }\n  return Math.max(0, Math.round(total))\n}\n\nfunction resetPageMetrics() {\n  visibleAccumMs = 0\n  visibleSince = document.visibilityState === 'visible' ? Date.now() : null\n  maxScrollPct = 0\n}\n\nfunction currentScrollPct() {\n  try {\n    const doc = document.documentElement\n    const scrollable = doc.scrollHeight - window.innerHeight\n    if (scrollable <= 0) {\n      return 100\n    }\n    return Math.min(100, Math.round((window.scrollY / scrollable) * 100))\n  } catch (e) {\n    return 0\n  }\n}\n\nfunction pathnameOf(url) {\n  if (typeof url !== 'string' || !url) {\n    return null\n  }\n  return url.split('?')[0].split('#')[0] || '/'\n}\n\n// True when a route event resolves to the page we are already tracking. The\n// pages-router emits routeChangeStart/Complete for the SAME path during initial\n// hydration (and when a link points at the current page), which would otherwise\n// double-count the pageview and emit a bogus 0ms page_leave.\nfunction samePathAsCurrent(url) {\n  const next = pathnameOf(url)\n  return currentPath !== null && next !== null && next === currentPath\n}\n\nfunction trackPageview(isFirstLoad) {\n  if (!isTrackingPossible()) {\n    return\n  }\n\n  const newPath = window.location.pathname || '/'\n  // Defensive same-path guard (the route handlers also guard on the router's\n  // destination url): never emit a second pageview for the page already shown.\n  if (!isFirstLoad && currentPath !== null && newPath === currentPath) {\n    return\n  }\n\n  pageLoadId = uuid()\n  seq = 0\n  currentPath = newPath\n  resetPageMetrics()\n\n  const event = baseEvent('pageview')\n  event.referrer = isFirstLoad ? (document.referrer || null) : null\n  event.utm = isFirstLoad ? utm : null\n  event.screenW = window.screen && window.screen.width ? window.screen.width : null\n  enqueue(event)\n}\n\nfunction trackLeave(useBeacon) {\n  if (!isTrackingPossible() || !pageLoadId) {\n    return\n  }\n\n  const event = baseEvent('page_leave')\n  event.timeOnPageMs = visibleTimeMs()\n  event.maxScrollPct = maxScrollPct\n  enqueue(event)\n\n  if (useBeacon) {\n    flush(true)\n  }\n}\n\nfunction sendHeartbeat() {\n  if (!isTrackingPossible() || document.visibilityState !== 'visible' || !pageLoadId) {\n    return\n  }\n\n  // Heartbeats go direct (never queued) \u2014 a stale heartbeat is worthless.\n  // text/plain keeps this preflight-free too (see sendBatch).\n  fetch(endpoint('/heartbeat'), {\n    method: 'POST',\n    headers: { 'Content-Type': 'text/plain;charset=UTF-8' },\n    body: JSON.stringify({\n      sessionId: sessionId,\n      visitorId: visitorId,\n      pageLoadId: pageLoadId,\n      path: currentPath,\n    }),\n    keepalive: true,\n  })\n    .then((response) => markForbidden(response.status))\n    .catch(() => undefined)\n}\n\nfunction onClickCapture(domEvent) {\n  if (!isTrackingPossible() || !pageLoadId) {\n    return\n  }\n\n  try {\n    const target = domEvent.target && domEvent.target.closest\n      ? domEvent.target.closest('a, button, [role=\"button\"], input[type=\"submit\"], [data-tp-event]')\n      : null\n    if (!target) {\n      return\n    }\n\n    const namedAttr = target.getAttribute('data-tp-event')\n    let href = null\n    if (target.tagName === 'A' && target.getAttribute('href')) {\n      const raw = target.getAttribute('href')\n      if (raw.indexOf('http') === 0) {\n        try {\n          const parsed = new URL(raw)\n          href = parsed.origin === window.location.origin ? parsed.pathname : raw.slice(0, 512)\n        } catch (e) {\n          href = raw.slice(0, 512)\n        }\n      } else {\n        href = raw.split('?')[0].split('#')[0].slice(0, 512) || null\n      }\n    }\n\n    const event = baseEvent('click')\n    event.click = {\n      tag: target.tagName ? target.tagName.toLowerCase().slice(0, 16) : null,\n      id: target.id ? target.id.slice(0, 64) : null,\n      text: target.textContent ? target.textContent.trim().slice(0, 64) : null,\n      href: href,\n      name: namedAttr && /^[a-zA-Z0-9_-]{1,64}$/.test(namedAttr) ? namedAttr : null,\n    }\n    enqueue(event)\n  } catch (e) {\n    /* never break the host page */\n  }\n}\n\nexport function initTeleportAnalytics() {\n  if (initialized || typeof window === 'undefined') {\n    return\n  }\n  initialized = true\n\n  if (!isTrackingPossible()) {\n    return\n  }\n\n  setupIdentity()\n  utm = parseUtm()\n\n  document.addEventListener('click', onClickCapture, true)\n\n  document.addEventListener('visibilitychange', () => {\n    if (document.visibilityState === 'visible') {\n      visibleSince = Date.now()\n      sendHeartbeat()\n    } else {\n      if (visibleSince !== null) {\n        visibleAccumMs += Date.now() - visibleSince\n        visibleSince = null\n      }\n      flush(true)\n    }\n  })\n\n  window.addEventListener(\n    'scroll',\n    () => {\n      const pct = currentScrollPct()\n      if (pct > maxScrollPct) {\n        maxScrollPct = pct\n      }\n    },\n    { passive: true }\n  )\n\n  // pagehide covers tab close, navigation away and most mobile terminations.\n  // When even this never fires (power loss, process kill), the server's\n  // heartbeat window + session finalizer close the visit.\n  window.addEventListener('pagehide', () => {\n    trackLeave(true)\n  })\n\n  flushTimer = setInterval(() => flush(false), FLUSH_INTERVAL_MS)\n  heartbeatTimer = setInterval(sendHeartbeat, HEARTBEAT_INTERVAL_MS)\n\n  trackPageview(true)\n  sendHeartbeat()\n}\n\nexport function trackRouteLeave(url) {\n  // A same-path routeChangeStart (hydration) is not a real leave \u2014 skip it so we\n  // don't enqueue a 0ms page_leave. Genuine end-of-visit goes through pagehide\n  // (trackLeave(true)), which is intentionally unconditional.\n  if (samePathAsCurrent(url)) {\n    return\n  }\n  trackLeave(false)\n}\n\nexport function trackRouteChange(url) {\n  if (samePathAsCurrent(url)) {\n    return\n  }\n  trackPageview(false)\n  sendHeartbeat()\n}\n";
 //# sourceMappingURL=tracker-source.d.ts.map

package/dist/cjs/analytics/tracker-source.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"tracker-source.d.ts","sourceRoot":"","sources":["../../../src/analytics/tracker-source.ts"],"names":[],"mappings":"AAUA,eAAO,MAAM,cAAc,utWA2a1B,CAAA"}
+{"version":3,"file":"tracker-source.d.ts","sourceRoot":"","sources":["../../../src/analytics/tracker-source.ts"],"names":[],"mappings":"AAUA,eAAO,MAAM,cAAc,q5YA2c1B,CAAA"}

package/dist/cjs/analytics/tracker-source.js

@@ -11,5 +11,5 @@ exports.TRACKER_SOURCE = void 0;
 // - Only pathnames are sent — never query strings or fragments.
 // - The tracker self-disables on localhost, for bots (navigator.webdriver)
 //   and after repeated 403s (analytics turned off server-side).
-exports.TRACKER_SOURCE = "/* TeleportHQ first-party analytics tracker. Anonymous, cookieless by default. */\nconst SERVER_URL = process.env.NEXT_PUBLIC_TELEPORT_ANALYTICS_URL\nconst PUBLIC_KEY = process.env.NEXT_PUBLIC_TELEPORT_ANALYTICS_KEY\n\nconst HEARTBEAT_INTERVAL_MS = 30000\nconst FLUSH_INTERVAL_MS = 5000\nconst FLUSH_AT_QUEUE_SIZE = 10\nconst MAX_BATCH = 25\nconst RETRY_DELAYS_MS = [1000, 5000, 15000]\nconst SESSION_WINDOW_MS = 30 * 60 * 1000\n\nlet initialized = false\nlet disabled = false\nlet forbiddenCount = 0\n\nlet sessionId = null\nlet visitorId = null\nlet pageLoadId = null\nlet seq = 0\nlet currentPath = null\nlet initialReferrer = null\nlet utm = null\n\nlet visibleSince = null\nlet visibleAccumMs = 0\nlet maxScrollPct = 0\n\nlet queue = []\nlet flushTimer = null\nlet heartbeatTimer = null\nlet retryAttempt = 0\n\nfunction uuid() {\n  if (typeof crypto !== 'undefined' && crypto.randomUUID) {\n    return crypto.randomUUID()\n  }\n  return 'xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx'.replace(/[xy]/g, (c) => {\n    const r = (Math.random() * 16) | 0\n    return (c === 'x' ? r : (r & 0x3) | 0x8).toString(16)\n  })\n}\n\nfunction hasConsent() {\n  try {\n    return window.localStorage.getItem('cookieConsent') === 'accepted'\n  } catch (e) {\n    return false\n  }\n}\n\nfunction isTrackingPossible() {\n  if (disabled || typeof window === 'undefined') {\n    return false\n  }\n  if (!SERVER_URL || !PUBLIC_KEY) {\n    return false\n  }\n  // Fail safe: a misconfigured deploy can leave the unresolved\n  // \"teleporthq.secrets.*\" placeholder (or any non-absolute value) baked into\n  // these build-time vars. Never fire requests at a non-absolute URL \u2014 that\n  // would point every beacon at the host site's own origin instead of the\n  // analytics API.\n  if (SERVER_URL.indexOf('http') !== 0 || PUBLIC_KEY.indexOf('teleporthq.secrets.') === 0) {\n    return false\n  }\n  const host = window.location.hostname\n  if (host === 'localhost' || host === '127.0.0.1' || host === '0.0.0.0') {\n    return false\n  }\n  if (typeof navigator !== 'undefined' && navigator.webdriver) {\n    return false\n  }\n  return true\n}\n\nfunction setupIdentity() {\n  if (!hasConsent()) {\n    // Consentless mode: nothing is stored on the device. The session id only\n    // lives in JS memory; the server stitches sessions via its anonymized\n    // daily visitor hash.\n    sessionId = uuid()\n    visitorId = null\n    return\n  }\n\n  try {\n    visitorId = window.localStorage.getItem('tp_aid')\n    if (!visitorId) {\n      visitorId = uuid()\n      window.localStorage.setItem('tp_aid', visitorId)\n    }\n\n    const now = Date.now()\n    const storedSession = window.sessionStorage.getItem('tp_sid')\n    const storedAt = Number(window.sessionStorage.getItem('tp_sid_t') || 0)\n\n    if (storedSession && now - storedAt < SESSION_WINDOW_MS) {\n      sessionId = storedSession\n    } else {\n      sessionId = uuid()\n    }\n    window.sessionStorage.setItem('tp_sid', sessionId)\n    window.sessionStorage.setItem('tp_sid_t', String(now))\n  } catch (e) {\n    sessionId = uuid()\n    visitorId = null\n  }\n}\n\nfunction touchSession() {\n  if (visitorId === null) {\n    return\n  }\n  try {\n    window.sessionStorage.setItem('tp_sid_t', String(Date.now()))\n  } catch (e) {\n    /* storage unavailable */\n  }\n}\n\nfunction parseUtm() {\n  try {\n    const params = new URLSearchParams(window.location.search)\n    const read = (key) => {\n      const value = params.get(key)\n      return value ? value.slice(0, 255) : null\n    }\n    const parsed = {\n      source: read('utm_source'),\n      medium: read('utm_medium'),\n      campaign: read('utm_campaign'),\n      term: read('utm_term'),\n      content: read('utm_content'),\n    }\n    const hasAny = Object.keys(parsed).some((key) => parsed[key])\n    return hasAny ? parsed : null\n  } catch (e) {\n    return null\n  }\n}\n\nfunction endpoint(suffix) {\n  return SERVER_URL.replace(/\\/$/, '') + '/events/' + PUBLIC_KEY + (suffix || '')\n}\n\nfunction markForbidden(status) {\n  if (status === 403 || status === 401) {\n    forbiddenCount += 1\n    if (forbiddenCount >= 3) {\n      // Analytics disabled server-side \u2014 go silent for this page lifetime\n      disabled = true\n      queue = []\n      if (flushTimer) clearInterval(flushTimer)\n      if (heartbeatTimer) clearInterval(heartbeatTimer)\n    }\n  } else {\n    forbiddenCount = 0\n  }\n}\n\nfunction sendBatch(events, useBeacon) {\n  if (events.length === 0) {\n    return Promise.resolve(true)\n  }\n\n  const body = JSON.stringify({ events: events })\n  const url = endpoint('/batch')\n\n  // text/plain is a CORS-safelisted content type, so the request skips the\n  // preflight. That preflight is what makes an application/json beacon fail on\n  // page unload (the browser can't complete OPTIONS while the page is dying),\n  // and it also doubles every normal batch into OPTIONS+POST. The server reads\n  // the JSON body regardless of this content type.\n  if (useBeacon && typeof navigator !== 'undefined' && navigator.sendBeacon) {\n    try {\n      const blob = new Blob([body], { type: 'text/plain;charset=UTF-8' })\n      return Promise.resolve(navigator.sendBeacon(url, blob))\n    } catch (e) {\n      /* fall through to fetch */\n    }\n  }\n\n  return fetch(url, {\n    method: 'POST',\n    headers: { 'Content-Type': 'text/plain;charset=UTF-8' },\n    body: body,\n    keepalive: true,\n  })\n    .then((response) => {\n      markForbidden(response.status)\n      return response.status < 400\n    })\n    .catch(() => false)\n}\n\nfunction flush(useBeacon) {\n  if (queue.length === 0 || disabled) {\n    return\n  }\n\n  const batch = queue.slice(0, MAX_BATCH)\n  queue = queue.slice(batch.length)\n\n  sendBatch(batch, useBeacon).then((ok) => {\n    if (ok) {\n      retryAttempt = 0\n      return\n    }\n    if (retryAttempt < RETRY_DELAYS_MS.length && !disabled) {\n      // Re-queue once per backoff step, then drop \u2014 analytics is lossy-tolerant\n      queue = batch.concat(queue)\n      const delay = RETRY_DELAYS_MS[retryAttempt]\n      retryAttempt += 1\n      setTimeout(() => flush(false), delay)\n    }\n  })\n}\n\nfunction enqueue(event) {\n  if (disabled) {\n    return\n  }\n  queue.push(event)\n  touchSession()\n  if (queue.length >= FLUSH_AT_QUEUE_SIZE) {\n    flush(false)\n  }\n}\n\nfunction baseEvent(type) {\n  seq += 1\n  return {\n    type: type,\n    pageLoadId: pageLoadId,\n    seq: seq - 1,\n    sessionId: sessionId,\n    visitorId: visitorId,\n    path: currentPath,\n    clientTs: Date.now(),\n  }\n}\n\nfunction visibleTimeMs() {\n  let total = visibleAccumMs\n  if (visibleSince !== null) {\n    total += Date.now() - visibleSince\n  }\n  return Math.max(0, Math.round(total))\n}\n\nfunction resetPageMetrics() {\n  visibleAccumMs = 0\n  visibleSince = document.visibilityState === 'visible' ? Date.now() : null\n  maxScrollPct = 0\n}\n\nfunction currentScrollPct() {\n  try {\n    const doc = document.documentElement\n    const scrollable = doc.scrollHeight - window.innerHeight\n    if (scrollable <= 0) {\n      return 100\n    }\n    return Math.min(100, Math.round((window.scrollY / scrollable) * 100))\n  } catch (e) {\n    return 0\n  }\n}\n\nfunction trackPageview(isFirstLoad) {\n  if (!isTrackingPossible()) {\n    return\n  }\n\n  pageLoadId = uuid()\n  seq = 0\n  currentPath = window.location.pathname || '/'\n  resetPageMetrics()\n\n  const event = baseEvent('pageview')\n  event.referrer = isFirstLoad ? (document.referrer || null) : null\n  event.utm = isFirstLoad ? utm : null\n  event.screenW = window.screen && window.screen.width ? window.screen.width : null\n  enqueue(event)\n}\n\nfunction trackLeave(useBeacon) {\n  if (!isTrackingPossible() || !pageLoadId) {\n    return\n  }\n\n  const event = baseEvent('page_leave')\n  event.timeOnPageMs = visibleTimeMs()\n  event.maxScrollPct = maxScrollPct\n  enqueue(event)\n\n  if (useBeacon) {\n    flush(true)\n  }\n}\n\nfunction sendHeartbeat() {\n  if (!isTrackingPossible() || document.visibilityState !== 'visible' || !pageLoadId) {\n    return\n  }\n\n  // Heartbeats go direct (never queued) \u2014 a stale heartbeat is worthless.\n  // text/plain keeps this preflight-free too (see sendBatch).\n  fetch(endpoint('/heartbeat'), {\n    method: 'POST',\n    headers: { 'Content-Type': 'text/plain;charset=UTF-8' },\n    body: JSON.stringify({\n      sessionId: sessionId,\n      visitorId: visitorId,\n      pageLoadId: pageLoadId,\n      path: currentPath,\n    }),\n    keepalive: true,\n  })\n    .then((response) => markForbidden(response.status))\n    .catch(() => undefined)\n}\n\nfunction onClickCapture(domEvent) {\n  if (!isTrackingPossible() || !pageLoadId) {\n    return\n  }\n\n  try {\n    const target = domEvent.target && domEvent.target.closest\n      ? domEvent.target.closest('a, button, [role=\"button\"], input[type=\"submit\"], [data-tp-event]')\n      : null\n    if (!target) {\n      return\n    }\n\n    const namedAttr = target.getAttribute('data-tp-event')\n    let href = null\n    if (target.tagName === 'A' && target.getAttribute('href')) {\n      const raw = target.getAttribute('href')\n      if (raw.indexOf('http') === 0) {\n        try {\n          const parsed = new URL(raw)\n          href = parsed.origin === window.location.origin ? parsed.pathname : raw.slice(0, 512)\n        } catch (e) {\n          href = raw.slice(0, 512)\n        }\n      } else {\n        href = raw.split('?')[0].split('#')[0].slice(0, 512) || null\n      }\n    }\n\n    const event = baseEvent('click')\n    event.click = {\n      tag: target.tagName ? target.tagName.toLowerCase().slice(0, 16) : null,\n      id: target.id ? target.id.slice(0, 64) : null,\n      text: target.textContent ? target.textContent.trim().slice(0, 64) : null,\n      href: href,\n      name: namedAttr && /^[a-zA-Z0-9_-]{1,64}$/.test(namedAttr) ? namedAttr : null,\n    }\n    enqueue(event)\n  } catch (e) {\n    /* never break the host page */\n  }\n}\n\nexport function initTeleportAnalytics() {\n  if (initialized || typeof window === 'undefined') {\n    return\n  }\n  initialized = true\n\n  if (!isTrackingPossible()) {\n    return\n  }\n\n  setupIdentity()\n  utm = parseUtm()\n\n  document.addEventListener('click', onClickCapture, true)\n\n  document.addEventListener('visibilitychange', () => {\n    if (document.visibilityState === 'visible') {\n      visibleSince = Date.now()\n      sendHeartbeat()\n    } else {\n      if (visibleSince !== null) {\n        visibleAccumMs += Date.now() - visibleSince\n        visibleSince = null\n      }\n      flush(true)\n    }\n  })\n\n  window.addEventListener(\n    'scroll',\n    () => {\n      const pct = currentScrollPct()\n      if (pct > maxScrollPct) {\n        maxScrollPct = pct\n      }\n    },\n    { passive: true }\n  )\n\n  // pagehide covers tab close, navigation away and most mobile terminations.\n  // When even this never fires (power loss, process kill), the server's\n  // heartbeat window + session finalizer close the visit.\n  window.addEventListener('pagehide', () => {\n    trackLeave(true)\n  })\n\n  flushTimer = setInterval(() => flush(false), FLUSH_INTERVAL_MS)\n  heartbeatTimer = setInterval(sendHeartbeat, HEARTBEAT_INTERVAL_MS)\n\n  trackPageview(true)\n  sendHeartbeat()\n}\n\nexport function trackRouteLeave() {\n  trackLeave(false)\n}\n\nexport function trackRouteChange() {\n  trackPageview(false)\n  sendHeartbeat()\n}\n";
+exports.TRACKER_SOURCE = "/* TeleportHQ first-party analytics tracker. Anonymous, cookieless by default. */\nconst SERVER_URL = process.env.NEXT_PUBLIC_TELEPORT_ANALYTICS_URL\nconst PUBLIC_KEY = process.env.NEXT_PUBLIC_TELEPORT_ANALYTICS_KEY\n\nconst HEARTBEAT_INTERVAL_MS = 30000\nconst FLUSH_INTERVAL_MS = 5000\nconst FLUSH_AT_QUEUE_SIZE = 10\nconst MAX_BATCH = 25\nconst RETRY_DELAYS_MS = [1000, 5000, 15000]\nconst SESSION_WINDOW_MS = 30 * 60 * 1000\n\nlet initialized = false\nlet disabled = false\nlet forbiddenCount = 0\n\nlet sessionId = null\nlet visitorId = null\nlet pageLoadId = null\nlet seq = 0\nlet currentPath = null\nlet initialReferrer = null\nlet utm = null\n\nlet visibleSince = null\nlet visibleAccumMs = 0\nlet maxScrollPct = 0\n\nlet queue = []\nlet flushTimer = null\nlet heartbeatTimer = null\nlet retryAttempt = 0\n\nfunction uuid() {\n  if (typeof crypto !== 'undefined' && crypto.randomUUID) {\n    return crypto.randomUUID()\n  }\n  return 'xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx'.replace(/[xy]/g, (c) => {\n    const r = (Math.random() * 16) | 0\n    return (c === 'x' ? r : (r & 0x3) | 0x8).toString(16)\n  })\n}\n\nfunction hasConsent() {\n  try {\n    return window.localStorage.getItem('cookieConsent') === 'accepted'\n  } catch (e) {\n    return false\n  }\n}\n\nfunction isTrackingPossible() {\n  if (disabled || typeof window === 'undefined') {\n    return false\n  }\n  if (!SERVER_URL || !PUBLIC_KEY) {\n    return false\n  }\n  // Fail safe: a misconfigured deploy can leave the unresolved\n  // \"teleporthq.secrets.*\" placeholder (or any non-absolute value) baked into\n  // these build-time vars. Never fire requests at a non-absolute URL \u2014 that\n  // would point every beacon at the host site's own origin instead of the\n  // analytics API.\n  if (SERVER_URL.indexOf('http') !== 0 || PUBLIC_KEY.indexOf('teleporthq.secrets.') === 0) {\n    return false\n  }\n  const host = window.location.hostname\n  if (host === 'localhost' || host === '127.0.0.1' || host === '0.0.0.0') {\n    return false\n  }\n  if (typeof navigator !== 'undefined' && navigator.webdriver) {\n    return false\n  }\n  return true\n}\n\nfunction setupIdentity() {\n  if (!hasConsent()) {\n    // Consentless mode: nothing is stored on the device. The session id only\n    // lives in JS memory; the server stitches sessions via its anonymized\n    // daily visitor hash.\n    sessionId = uuid()\n    visitorId = null\n    return\n  }\n\n  try {\n    visitorId = window.localStorage.getItem('tp_aid')\n    if (!visitorId) {\n      visitorId = uuid()\n      window.localStorage.setItem('tp_aid', visitorId)\n    }\n\n    const now = Date.now()\n    const storedSession = window.sessionStorage.getItem('tp_sid')\n    const storedAt = Number(window.sessionStorage.getItem('tp_sid_t') || 0)\n\n    if (storedSession && now - storedAt < SESSION_WINDOW_MS) {\n      sessionId = storedSession\n    } else {\n      sessionId = uuid()\n    }\n    window.sessionStorage.setItem('tp_sid', sessionId)\n    window.sessionStorage.setItem('tp_sid_t', String(now))\n  } catch (e) {\n    sessionId = uuid()\n    visitorId = null\n  }\n}\n\nfunction touchSession() {\n  if (visitorId === null) {\n    return\n  }\n  try {\n    window.sessionStorage.setItem('tp_sid_t', String(Date.now()))\n  } catch (e) {\n    /* storage unavailable */\n  }\n}\n\nfunction parseUtm() {\n  try {\n    const params = new URLSearchParams(window.location.search)\n    const read = (key) => {\n      const value = params.get(key)\n      return value ? value.slice(0, 255) : null\n    }\n    const parsed = {\n      source: read('utm_source'),\n      medium: read('utm_medium'),\n      campaign: read('utm_campaign'),\n      term: read('utm_term'),\n      content: read('utm_content'),\n    }\n    const hasAny = Object.keys(parsed).some((key) => parsed[key])\n    return hasAny ? parsed : null\n  } catch (e) {\n    return null\n  }\n}\n\nfunction endpoint(suffix) {\n  return SERVER_URL.replace(/\\/$/, '') + '/events/' + PUBLIC_KEY + (suffix || '')\n}\n\nfunction markForbidden(status) {\n  if (status === 403 || status === 401) {\n    forbiddenCount += 1\n    if (forbiddenCount >= 3) {\n      // Analytics disabled server-side \u2014 go silent for this page lifetime\n      disabled = true\n      queue = []\n      if (flushTimer) clearInterval(flushTimer)\n      if (heartbeatTimer) clearInterval(heartbeatTimer)\n    }\n  } else {\n    forbiddenCount = 0\n  }\n}\n\nfunction sendBatch(events, useBeacon) {\n  if (events.length === 0) {\n    return Promise.resolve(true)\n  }\n\n  const body = JSON.stringify({ events: events })\n  const url = endpoint('/batch')\n\n  // text/plain is a CORS-safelisted content type, so the request skips the\n  // preflight. That preflight is what makes an application/json beacon fail on\n  // page unload (the browser can't complete OPTIONS while the page is dying),\n  // and it also doubles every normal batch into OPTIONS+POST. The server reads\n  // the JSON body regardless of this content type.\n  if (useBeacon && typeof navigator !== 'undefined' && navigator.sendBeacon) {\n    try {\n      const blob = new Blob([body], { type: 'text/plain;charset=UTF-8' })\n      return Promise.resolve(navigator.sendBeacon(url, blob))\n    } catch (e) {\n      /* fall through to fetch */\n    }\n  }\n\n  return fetch(url, {\n    method: 'POST',\n    headers: { 'Content-Type': 'text/plain;charset=UTF-8' },\n    body: body,\n    keepalive: true,\n  })\n    .then((response) => {\n      markForbidden(response.status)\n      return response.status < 400\n    })\n    .catch(() => false)\n}\n\nfunction flush(useBeacon) {\n  if (queue.length === 0 || disabled) {\n    return\n  }\n\n  const batch = queue.slice(0, MAX_BATCH)\n  queue = queue.slice(batch.length)\n\n  sendBatch(batch, useBeacon).then((ok) => {\n    if (ok) {\n      retryAttempt = 0\n      return\n    }\n    if (retryAttempt < RETRY_DELAYS_MS.length && !disabled) {\n      // Re-queue once per backoff step, then drop \u2014 analytics is lossy-tolerant\n      queue = batch.concat(queue)\n      const delay = RETRY_DELAYS_MS[retryAttempt]\n      retryAttempt += 1\n      setTimeout(() => flush(false), delay)\n    }\n  })\n}\n\nfunction enqueue(event) {\n  if (disabled) {\n    return\n  }\n  queue.push(event)\n  touchSession()\n  if (queue.length >= FLUSH_AT_QUEUE_SIZE) {\n    flush(false)\n  }\n}\n\nfunction baseEvent(type) {\n  seq += 1\n  return {\n    type: type,\n    pageLoadId: pageLoadId,\n    seq: seq - 1,\n    sessionId: sessionId,\n    visitorId: visitorId,\n    path: currentPath,\n    clientTs: Date.now(),\n  }\n}\n\nfunction visibleTimeMs() {\n  let total = visibleAccumMs\n  if (visibleSince !== null) {\n    total += Date.now() - visibleSince\n  }\n  return Math.max(0, Math.round(total))\n}\n\nfunction resetPageMetrics() {\n  visibleAccumMs = 0\n  visibleSince = document.visibilityState === 'visible' ? Date.now() : null\n  maxScrollPct = 0\n}\n\nfunction currentScrollPct() {\n  try {\n    const doc = document.documentElement\n    const scrollable = doc.scrollHeight - window.innerHeight\n    if (scrollable <= 0) {\n      return 100\n    }\n    return Math.min(100, Math.round((window.scrollY / scrollable) * 100))\n  } catch (e) {\n    return 0\n  }\n}\n\nfunction pathnameOf(url) {\n  if (typeof url !== 'string' || !url) {\n    return null\n  }\n  return url.split('?')[0].split('#')[0] || '/'\n}\n\n// True when a route event resolves to the page we are already tracking. The\n// pages-router emits routeChangeStart/Complete for the SAME path during initial\n// hydration (and when a link points at the current page), which would otherwise\n// double-count the pageview and emit a bogus 0ms page_leave.\nfunction samePathAsCurrent(url) {\n  const next = pathnameOf(url)\n  return currentPath !== null && next !== null && next === currentPath\n}\n\nfunction trackPageview(isFirstLoad) {\n  if (!isTrackingPossible()) {\n    return\n  }\n\n  const newPath = window.location.pathname || '/'\n  // Defensive same-path guard (the route handlers also guard on the router's\n  // destination url): never emit a second pageview for the page already shown.\n  if (!isFirstLoad && currentPath !== null && newPath === currentPath) {\n    return\n  }\n\n  pageLoadId = uuid()\n  seq = 0\n  currentPath = newPath\n  resetPageMetrics()\n\n  const event = baseEvent('pageview')\n  event.referrer = isFirstLoad ? (document.referrer || null) : null\n  event.utm = isFirstLoad ? utm : null\n  event.screenW = window.screen && window.screen.width ? window.screen.width : null\n  enqueue(event)\n}\n\nfunction trackLeave(useBeacon) {\n  if (!isTrackingPossible() || !pageLoadId) {\n    return\n  }\n\n  const event = baseEvent('page_leave')\n  event.timeOnPageMs = visibleTimeMs()\n  event.maxScrollPct = maxScrollPct\n  enqueue(event)\n\n  if (useBeacon) {\n    flush(true)\n  }\n}\n\nfunction sendHeartbeat() {\n  if (!isTrackingPossible() || document.visibilityState !== 'visible' || !pageLoadId) {\n    return\n  }\n\n  // Heartbeats go direct (never queued) \u2014 a stale heartbeat is worthless.\n  // text/plain keeps this preflight-free too (see sendBatch).\n  fetch(endpoint('/heartbeat'), {\n    method: 'POST',\n    headers: { 'Content-Type': 'text/plain;charset=UTF-8' },\n    body: JSON.stringify({\n      sessionId: sessionId,\n      visitorId: visitorId,\n      pageLoadId: pageLoadId,\n      path: currentPath,\n    }),\n    keepalive: true,\n  })\n    .then((response) => markForbidden(response.status))\n    .catch(() => undefined)\n}\n\nfunction onClickCapture(domEvent) {\n  if (!isTrackingPossible() || !pageLoadId) {\n    return\n  }\n\n  try {\n    const target = domEvent.target && domEvent.target.closest\n      ? domEvent.target.closest('a, button, [role=\"button\"], input[type=\"submit\"], [data-tp-event]')\n      : null\n    if (!target) {\n      return\n    }\n\n    const namedAttr = target.getAttribute('data-tp-event')\n    let href = null\n    if (target.tagName === 'A' && target.getAttribute('href')) {\n      const raw = target.getAttribute('href')\n      if (raw.indexOf('http') === 0) {\n        try {\n          const parsed = new URL(raw)\n          href = parsed.origin === window.location.origin ? parsed.pathname : raw.slice(0, 512)\n        } catch (e) {\n          href = raw.slice(0, 512)\n        }\n      } else {\n        href = raw.split('?')[0].split('#')[0].slice(0, 512) || null\n      }\n    }\n\n    const event = baseEvent('click')\n    event.click = {\n      tag: target.tagName ? target.tagName.toLowerCase().slice(0, 16) : null,\n      id: target.id ? target.id.slice(0, 64) : null,\n      text: target.textContent ? target.textContent.trim().slice(0, 64) : null,\n      href: href,\n      name: namedAttr && /^[a-zA-Z0-9_-]{1,64}$/.test(namedAttr) ? namedAttr : null,\n    }\n    enqueue(event)\n  } catch (e) {\n    /* never break the host page */\n  }\n}\n\nexport function initTeleportAnalytics() {\n  if (initialized || typeof window === 'undefined') {\n    return\n  }\n  initialized = true\n\n  if (!isTrackingPossible()) {\n    return\n  }\n\n  setupIdentity()\n  utm = parseUtm()\n\n  document.addEventListener('click', onClickCapture, true)\n\n  document.addEventListener('visibilitychange', () => {\n    if (document.visibilityState === 'visible') {\n      visibleSince = Date.now()\n      sendHeartbeat()\n    } else {\n      if (visibleSince !== null) {\n        visibleAccumMs += Date.now() - visibleSince\n        visibleSince = null\n      }\n      flush(true)\n    }\n  })\n\n  window.addEventListener(\n    'scroll',\n    () => {\n      const pct = currentScrollPct()\n      if (pct > maxScrollPct) {\n        maxScrollPct = pct\n      }\n    },\n    { passive: true }\n  )\n\n  // pagehide covers tab close, navigation away and most mobile terminations.\n  // When even this never fires (power loss, process kill), the server's\n  // heartbeat window + session finalizer close the visit.\n  window.addEventListener('pagehide', () => {\n    trackLeave(true)\n  })\n\n  flushTimer = setInterval(() => flush(false), FLUSH_INTERVAL_MS)\n  heartbeatTimer = setInterval(sendHeartbeat, HEARTBEAT_INTERVAL_MS)\n\n  trackPageview(true)\n  sendHeartbeat()\n}\n\nexport function trackRouteLeave(url) {\n  // A same-path routeChangeStart (hydration) is not a real leave \u2014 skip it so we\n  // don't enqueue a 0ms page_leave. Genuine end-of-visit goes through pagehide\n  // (trackLeave(true)), which is intentionally unconditional.\n  if (samePathAsCurrent(url)) {\n    return\n  }\n  trackLeave(false)\n}\n\nexport function trackRouteChange(url) {\n  if (samePathAsCurrent(url)) {\n    return\n  }\n  trackPageview(false)\n  sendHeartbeat()\n}\n";
 //# sourceMappingURL=tracker-source.js.map

package/dist/cjs/analytics/tracker-source.js.map

@@ -1 +1 @@
-{"version":3,"file":"tracker-source.js","sourceRoot":"","sources":["../../../src/analytics/tracker-source.ts"],"names":[],"mappings":";;;AAAA,4EAA4E;AAC5E,6DAA6D;AAC7D,EAAE;AACF,mDAAmD;AACnD,yEAAyE;AACzE,6EAA6E;AAC7E,0EAA0E;AAC1E,gEAAgE;AAChE,2EAA2E;AAC3E,gEAAgE;AACnD,QAAA,cAAc,GAAG,otWA2a7B,CAAA"}
+{"version":3,"file":"tracker-source.js","sourceRoot":"","sources":["../../../src/analytics/tracker-source.ts"],"names":[],"mappings":";;;AAAA,4EAA4E;AAC5E,6DAA6D;AAC7D,EAAE;AACF,mDAAmD;AACnD,yEAAyE;AACzE,6EAA6E;AAC7E,0EAA0E;AAC1E,gEAAgE;AAChE,2EAA2E;AAC3E,gEAAgE;AACnD,QAAA,cAAc,GAAG,k5YA2c7B,CAAA"}

package/dist/cjs/calendar/project-plugin.d.ts

@@ -5,6 +5,8 @@ import { ProjectPlugin, ProjectPluginStructure } from '@teleporthq/teleport-type
  *  - bumps react/react-dom to ^18 — calendarkit-basic requires React 18
  *    (the template's `next` range already supports React 18, so `next`
  *    itself is left untouched)
+ *  - writes an .npmrc (legacy-peer-deps) so the React-18 bump survives template
+ *    deps with React-17-only peer ranges (e.g. dangerous-html embeds)
  *  - writes the precompiled CalendarKit stylesheet to pages/calendarkit.css
  *    (the library ships uncompiled Tailwind, see scripts/generate-calendarkit-css.mjs)
  *  - imports the stylesheet from _app, where Next.js requires global CSS

package/dist/cjs/calendar/project-plugin.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"project-plugin.d.ts","sourceRoot":"","sources":["../../../src/calendar/project-plugin.ts"],"names":[],"mappings":"AAAA,OAAO,EAAY,aAAa,EAAE,sBAAsB,EAAE,MAAM,4BAA4B,CAAA;AAO5F;;;;;;;;;GASG;AACH,qBAAa,4BAA6B,YAAW,aAAa;IAC1D,SAAS,CAAC,SAAS,EAAE,sBAAsB,GAAG,OAAO,CAAC,sBAAsB,CAAC;IAI7E,QAAQ,CAAC,SAAS,EAAE,sBAAsB,GAAG,OAAO,CAAC,sBAAsB,CAAC;CAyBnF"}
+{"version":3,"file":"project-plugin.d.ts","sourceRoot":"","sources":["../../../src/calendar/project-plugin.ts"],"names":[],"mappings":"AAAA,OAAO,EAAY,aAAa,EAAE,sBAAsB,EAAE,MAAM,4BAA4B,CAAA;AAQ5F;;;;;;;;;;;GAWG;AACH,qBAAa,4BAA6B,YAAW,aAAa;IAC1D,SAAS,CAAC,SAAS,EAAE,sBAAsB,GAAG,OAAO,CAAC,sBAAsB,CAAC;IAI7E,QAAQ,CAAC,SAAS,EAAE,sBAAsB,GAAG,OAAO,CAAC,sBAAsB,CAAC;CA0BnF"}

package/dist/cjs/calendar/project-plugin.js

@@ -39,6 +39,7 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.NextCalendarKitProjectPlugin = void 0;
 var teleport_types_1 = require("@teleporthq/teleport-types");
 var app_import_injection_1 = require("../app-import-injection");
+var npmrc_legacy_peer_deps_1 = require("../npmrc-legacy-peer-deps");
 var calendarkit_css_1 = require("./calendarkit-css");
 var CALENDARKIT_PACKAGE = 'calendarkit-basic';
 var CALENDARKIT_CSS_IMPORT = "import './calendarkit.css'";
@@ -48,6 +49,8 @@ var CALENDARKIT_CSS_IMPORT = "import './calendarkit.css'";
  *  - bumps react/react-dom to ^18 — calendarkit-basic requires React 18
  *    (the template's `next` range already supports React 18, so `next`
  *    itself is left untouched)
+ *  - writes an .npmrc (legacy-peer-deps) so the React-18 bump survives template
+ *    deps with React-17-only peer ranges (e.g. dangerous-html embeds)
  *  - writes the precompiled CalendarKit stylesheet to pages/calendarkit.css
  *    (the library ships uncompiled Tailwind, see scripts/generate-calendarkit-css.mjs)
  *  - imports the stylesheet from _app, where Next.js requires global CSS
@@ -72,6 +75,7 @@ var NextCalendarKitProjectPlugin = /** @class */ (function () {
                 }
                 dependencies.react = '^18.3.1';
                 dependencies['react-dom'] = '^18.3.1';
+                (0, npmrc_legacy_peer_deps_1.emitLegacyPeerDepsNpmrc)(structure, 'calendarkit-npmrc');
                 files.set('calendarkit-css', {
                     path: ['pages'],
                     files: [

package/dist/cjs/calendar/project-plugin.js.map

@@ -1 +1 @@
-{"version":3,"file":"project-plugin.js","sourceRoot":"","sources":["../../../src/calendar/project-plugin.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,6DAA4F;AAC5F,gEAA6D;AAC7D,qDAAmD;AAEnD,IAAM,mBAAmB,GAAG,mBAAmB,CAAA;AAC/C,IAAM,sBAAsB,GAAG,4BAA4B,CAAA;AAE3D;;;;;;;;;GASG;AACH;IAAA;IA8BA,CAAC;IA7BO,gDAAS,GAAf,UAAgB,SAAiC;;;gBAC/C,sBAAO,SAAS,EAAA;;;KACjB;IAEK,+CAAQ,GAAd,UAAe,SAAiC;;;;gBACtC,YAAY,GAAY,SAAS,aAArB,EAAE,KAAK,GAAK,SAAS,MAAd,CAAc;gBAEzC,IAAI,CAAC,YAAY,CAAC,mBAAmB,CAAC,EAAE;oBACtC,sBAAO,SAAS,EAAA;iBACjB;gBAED,YAAY,CAAC,KAAK,GAAG,SAAS,CAAA;gBAC9B,YAAY,CAAC,WAAW,CAAC,GAAG,SAAS,CAAA;gBAErC,KAAK,CAAC,GAAG,CAAC,iBAAiB,EAAE;oBAC3B,IAAI,EAAE,CAAC,OAAO,CAAC;oBACf,KAAK,EAAE;wBACL;4BACE,IAAI,EAAE,aAAa;4BACnB,QAAQ,EAAE,yBAAQ,CAAC,GAAG;4BACtB,OAAO,EAAE,iCAAe;yBACzB;qBACF;iBACF,CAAC,CAAA;gBAEF,IAAA,0CAAmB,EAAC,SAAS,EAAE,sBAAsB,CAAC,CAAA;gBAEtD,sBAAO,SAAS,EAAA;;;KACjB;IACH,mCAAC;AAAD,CAAC,AA9BD,IA8BC;AA9BY,oEAA4B"}
+{"version":3,"file":"project-plugin.js","sourceRoot":"","sources":["../../../src/calendar/project-plugin.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,6DAA4F;AAC5F,gEAA6D;AAC7D,oEAAmE;AACnE,qDAAmD;AAEnD,IAAM,mBAAmB,GAAG,mBAAmB,CAAA;AAC/C,IAAM,sBAAsB,GAAG,4BAA4B,CAAA;AAE3D;;;;;;;;;;;GAWG;AACH;IAAA;IA+BA,CAAC;IA9BO,gDAAS,GAAf,UAAgB,SAAiC;;;gBAC/C,sBAAO,SAAS,EAAA;;;KACjB;IAEK,+CAAQ,GAAd,UAAe,SAAiC;;;;gBACtC,YAAY,GAAY,SAAS,aAArB,EAAE,KAAK,GAAK,SAAS,MAAd,CAAc;gBAEzC,IAAI,CAAC,YAAY,CAAC,mBAAmB,CAAC,EAAE;oBACtC,sBAAO,SAAS,EAAA;iBACjB;gBAED,YAAY,CAAC,KAAK,GAAG,SAAS,CAAA;gBAC9B,YAAY,CAAC,WAAW,CAAC,GAAG,SAAS,CAAA;gBACrC,IAAA,gDAAuB,EAAC,SAAS,EAAE,mBAAmB,CAAC,CAAA;gBAEvD,KAAK,CAAC,GAAG,CAAC,iBAAiB,EAAE;oBAC3B,IAAI,EAAE,CAAC,OAAO,CAAC;oBACf,KAAK,EAAE;wBACL;4BACE,IAAI,EAAE,aAAa;4BACnB,QAAQ,EAAE,yBAAQ,CAAC,GAAG;4BACtB,OAAO,EAAE,iCAAe;yBACzB;qBACF;iBACF,CAAC,CAAA;gBAEF,IAAA,0CAAmB,EAAC,SAAS,EAAE,sBAAsB,CAAC,CAAA;gBAEtD,sBAAO,SAAS,EAAA;;;KACjB;IACH,mCAAC;AAAD,CAAC,AA/BD,IA+BC;AA/BY,oEAA4B"}

package/dist/cjs/countdown/component-generator.d.ts

@@ -0,0 +1,15 @@
+/**
+ * Generates the TqCountdown wrapper component source.
+ *
+ * It uses react-countdown (the SAME library the editor canvas drives via
+ * `calcTimeDelta`/`zeroPad`) so the published countdown shows identical digits.
+ * The markup + class names (.tq-countdown / .tq-countdown-unit /
+ * .tq-countdown-value / .tq-countdown-label) match the renderer one-for-one.
+ *
+ * SSR safety: the live value depends on the visitor's clock, which differs from
+ * the server render and would throw a hydration mismatch. The component renders
+ * a deterministic placeholder (zeros, same structure) until mounted, then swaps
+ * to the live countdown — so hydration matches and ticking starts client-side.
+ */
+export declare const generateCountdownComponentCode: () => string;
+//# sourceMappingURL=component-generator.d.ts.map

package/dist/cjs/countdown/component-generator.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"component-generator.d.ts","sourceRoot":"","sources":["../../../src/countdown/component-generator.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AACH,eAAO,MAAM,8BAA8B,QAAO,MA0JjD,CAAA"}