@uniforge/platform-core 0.1.0-alpha.2

package/dist/security/index.d.cts

@@ -0,0 +1,148 @@
+/**
+ * Security types and configuration interfaces.
+ */
+interface SanitizeOptions {
+    stripHtml: boolean;
+    maxLength?: number;
+    allowedPattern?: RegExp;
+}
+interface InputValidationRule {
+    field: string;
+    type: 'shopDomain' | 'email' | 'url' | 'apiKey' | 'string' | 'custom';
+    required?: boolean;
+    maxLength?: number;
+    pattern?: RegExp;
+    message?: string;
+}
+interface InputValidationError {
+    field: string;
+    message: string;
+    code: string;
+}
+interface InputValidationResult {
+    valid: boolean;
+    errors: InputValidationError[];
+    sanitized: Record<string, string>;
+}
+interface RateLimitConfig {
+    windowMs: number;
+    maxRequests: number;
+    keyPrefix?: string;
+}
+interface RateLimitResult {
+    allowed: boolean;
+    remaining: number;
+    resetAt: number;
+    retryAfter?: number;
+}
+interface SecurityHeadersConfig {
+    hsts: boolean;
+    hstsMaxAge?: number;
+    hstsIncludeSubDomains?: boolean;
+    noSniff: boolean;
+    frameOptions: 'DENY' | 'SAMEORIGIN';
+    xssProtection: boolean;
+    referrerPolicy: string;
+}
+interface CSPDirectives {
+    defaultSrc: string[];
+    scriptSrc: string[];
+    styleSrc: string[];
+    imgSrc: string[];
+    connectSrc: string[];
+    fontSrc: string[];
+    frameSrc: string[];
+    frameAncestors: string[];
+}
+type SecurityFindingSeverity = 'critical' | 'high' | 'medium' | 'low' | 'info';
+interface SecurityAuditFinding {
+    id: string;
+    severity: SecurityFindingSeverity;
+    category: string;
+    title: string;
+    description: string;
+    recommendation: string;
+}
+interface SecurityAuditResult {
+    passed: boolean;
+    score: number;
+    findings: SecurityAuditFinding[];
+    timestamp: string;
+}
+
+/**
+ * Input validation interface.
+ */
+
+interface InputValidator {
+    /** Validate input against a set of rules */
+    validate(input: Record<string, unknown>, rules: InputValidationRule[]): InputValidationResult;
+    /** Sanitize a string value */
+    sanitize(value: string, options?: SanitizeOptions): string;
+    /** Validate a shop domain format */
+    isValidShopDomain(domain: string): boolean;
+    /** Validate an email format */
+    isValidEmail(email: string): boolean;
+    /** Validate a URL format */
+    isValidUrl(url: string): boolean;
+    /** Validate an API key format */
+    isValidApiKey(key: string): boolean;
+}
+
+/**
+ * Security middleware interfaces.
+ */
+
+/** HTTP request/response abstraction for middleware */
+interface SecurityRequest {
+    ip?: string;
+    headers: Record<string, string | string[] | undefined>;
+    path: string;
+    method: string;
+}
+interface SecurityResponse {
+    setHeader(name: string, value: string): void;
+}
+/** Applies security headers to HTTP responses */
+interface SecurityHeadersMiddleware {
+    readonly config: SecurityHeadersConfig;
+    applyHeaders(res: SecurityResponse): void;
+}
+/** Applies Content Security Policy headers */
+interface CSPMiddleware {
+    readonly directives: CSPDirectives;
+    applyCSP(res: SecurityResponse): void;
+    toHeaderString(): string;
+}
+/** Rate limiter for HTTP requests */
+interface RequestRateLimiter {
+    readonly config: RateLimitConfig;
+    /** Check if a request is allowed. Key is typically IP or shop domain. */
+    check(key: string): Promise<RateLimitResult>;
+    /** Reset rate limit for a key */
+    reset(key: string): Promise<void>;
+}
+
+/**
+ * Security audit interface.
+ */
+
+interface SecurityAuditConfig {
+    checkEncryption: boolean;
+    checkHeaders: boolean;
+    checkRateLimiting: boolean;
+    checkInputValidation: boolean;
+    checkWebhookSecurity: boolean;
+    checkSessionSecurity: boolean;
+}
+interface SecurityAuditor {
+    /** Run a full security audit */
+    audit(config: SecurityAuditConfig): SecurityAuditResult;
+    /** Check if encryption is properly configured */
+    checkEncryption(config: Record<string, unknown>): SecurityAuditResult;
+    /** Check if security headers are configured */
+    checkHeaders(headers: Record<string, string>): SecurityAuditResult;
+}
+declare const DEFAULT_AUDIT_CONFIG: SecurityAuditConfig;
+
+export { type CSPDirectives, type CSPMiddleware, DEFAULT_AUDIT_CONFIG, type InputValidationError, type InputValidationResult, type InputValidationRule, type InputValidator, type RateLimitConfig, type RateLimitResult, type RequestRateLimiter, type SanitizeOptions, type SecurityAuditConfig, type SecurityAuditFinding, type SecurityAuditResult, type SecurityAuditor, type SecurityFindingSeverity, type SecurityHeadersConfig, type SecurityHeadersMiddleware, type SecurityRequest, type SecurityResponse };

package/dist/security/index.d.ts

@@ -0,0 +1,148 @@
+/**
+ * Security types and configuration interfaces.
+ */
+interface SanitizeOptions {
+    stripHtml: boolean;
+    maxLength?: number;
+    allowedPattern?: RegExp;
+}
+interface InputValidationRule {
+    field: string;
+    type: 'shopDomain' | 'email' | 'url' | 'apiKey' | 'string' | 'custom';
+    required?: boolean;
+    maxLength?: number;
+    pattern?: RegExp;
+    message?: string;
+}
+interface InputValidationError {
+    field: string;
+    message: string;
+    code: string;
+}
+interface InputValidationResult {
+    valid: boolean;
+    errors: InputValidationError[];
+    sanitized: Record<string, string>;
+}
+interface RateLimitConfig {
+    windowMs: number;
+    maxRequests: number;
+    keyPrefix?: string;
+}
+interface RateLimitResult {
+    allowed: boolean;
+    remaining: number;
+    resetAt: number;
+    retryAfter?: number;
+}
+interface SecurityHeadersConfig {
+    hsts: boolean;
+    hstsMaxAge?: number;
+    hstsIncludeSubDomains?: boolean;
+    noSniff: boolean;
+    frameOptions: 'DENY' | 'SAMEORIGIN';
+    xssProtection: boolean;
+    referrerPolicy: string;
+}
+interface CSPDirectives {
+    defaultSrc: string[];
+    scriptSrc: string[];
+    styleSrc: string[];
+    imgSrc: string[];
+    connectSrc: string[];
+    fontSrc: string[];
+    frameSrc: string[];
+    frameAncestors: string[];
+}
+type SecurityFindingSeverity = 'critical' | 'high' | 'medium' | 'low' | 'info';
+interface SecurityAuditFinding {
+    id: string;
+    severity: SecurityFindingSeverity;
+    category: string;
+    title: string;
+    description: string;
+    recommendation: string;
+}
+interface SecurityAuditResult {
+    passed: boolean;
+    score: number;
+    findings: SecurityAuditFinding[];
+    timestamp: string;
+}
+
+/**
+ * Input validation interface.
+ */
+
+interface InputValidator {
+    /** Validate input against a set of rules */
+    validate(input: Record<string, unknown>, rules: InputValidationRule[]): InputValidationResult;
+    /** Sanitize a string value */
+    sanitize(value: string, options?: SanitizeOptions): string;
+    /** Validate a shop domain format */
+    isValidShopDomain(domain: string): boolean;
+    /** Validate an email format */
+    isValidEmail(email: string): boolean;
+    /** Validate a URL format */
+    isValidUrl(url: string): boolean;
+    /** Validate an API key format */
+    isValidApiKey(key: string): boolean;
+}
+
+/**
+ * Security middleware interfaces.
+ */
+
+/** HTTP request/response abstraction for middleware */
+interface SecurityRequest {
+    ip?: string;
+    headers: Record<string, string | string[] | undefined>;
+    path: string;
+    method: string;
+}
+interface SecurityResponse {
+    setHeader(name: string, value: string): void;
+}
+/** Applies security headers to HTTP responses */
+interface SecurityHeadersMiddleware {
+    readonly config: SecurityHeadersConfig;
+    applyHeaders(res: SecurityResponse): void;
+}
+/** Applies Content Security Policy headers */
+interface CSPMiddleware {
+    readonly directives: CSPDirectives;
+    applyCSP(res: SecurityResponse): void;
+    toHeaderString(): string;
+}
+/** Rate limiter for HTTP requests */
+interface RequestRateLimiter {
+    readonly config: RateLimitConfig;
+    /** Check if a request is allowed. Key is typically IP or shop domain. */
+    check(key: string): Promise<RateLimitResult>;
+    /** Reset rate limit for a key */
+    reset(key: string): Promise<void>;
+}
+
+/**
+ * Security audit interface.
+ */
+
+interface SecurityAuditConfig {
+    checkEncryption: boolean;
+    checkHeaders: boolean;
+    checkRateLimiting: boolean;
+    checkInputValidation: boolean;
+    checkWebhookSecurity: boolean;
+    checkSessionSecurity: boolean;
+}
+interface SecurityAuditor {
+    /** Run a full security audit */
+    audit(config: SecurityAuditConfig): SecurityAuditResult;
+    /** Check if encryption is properly configured */
+    checkEncryption(config: Record<string, unknown>): SecurityAuditResult;
+    /** Check if security headers are configured */
+    checkHeaders(headers: Record<string, string>): SecurityAuditResult;
+}
+declare const DEFAULT_AUDIT_CONFIG: SecurityAuditConfig;
+
+export { type CSPDirectives, type CSPMiddleware, DEFAULT_AUDIT_CONFIG, type InputValidationError, type InputValidationResult, type InputValidationRule, type InputValidator, type RateLimitConfig, type RateLimitResult, type RequestRateLimiter, type SanitizeOptions, type SecurityAuditConfig, type SecurityAuditFinding, type SecurityAuditResult, type SecurityAuditor, type SecurityFindingSeverity, type SecurityHeadersConfig, type SecurityHeadersMiddleware, type SecurityRequest, type SecurityResponse };

package/dist/security/index.js

@@ -0,0 +1,40 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/security/index.ts
+var security_exports = {};
+__export(security_exports, {
+  DEFAULT_AUDIT_CONFIG: () => DEFAULT_AUDIT_CONFIG
+});
+module.exports = __toCommonJS(security_exports);
+
+// src/security/audit.ts
+var DEFAULT_AUDIT_CONFIG = {
+  checkEncryption: true,
+  checkHeaders: true,
+  checkRateLimiting: true,
+  checkInputValidation: true,
+  checkWebhookSecurity: true,
+  checkSessionSecurity: true
+};
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  DEFAULT_AUDIT_CONFIG
+});
+//# sourceMappingURL=index.js.map

package/dist/security/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/security/index.ts","../../src/security/audit.ts"],"sourcesContent":["/**\n * @uniforge/platform-core/security\n *\n * Security interfaces for input validation, security headers,\n * CSP, rate limiting, and security auditing.\n */\n\nexport type {\n  SanitizeOptions,\n  InputValidationRule,\n  InputValidationError,\n  InputValidationResult,\n  RateLimitConfig,\n  RateLimitResult,\n  SecurityHeadersConfig,\n  CSPDirectives,\n  SecurityFindingSeverity,\n  SecurityAuditFinding,\n  SecurityAuditResult,\n} from './types';\n\nexport type { InputValidator } from './input-validation';\n\nexport type {\n  SecurityRequest,\n  SecurityResponse,\n  SecurityHeadersMiddleware,\n  CSPMiddleware,\n  RequestRateLimiter,\n} from './middleware';\n\nexport type { SecurityAuditConfig, SecurityAuditor } from './audit';\nexport { DEFAULT_AUDIT_CONFIG } from './audit';\n","/**\n * Security audit interface.\n */\n\nimport type { SecurityAuditResult } from './types';\n\nexport interface SecurityAuditConfig {\n  checkEncryption: boolean;\n  checkHeaders: boolean;\n  checkRateLimiting: boolean;\n  checkInputValidation: boolean;\n  checkWebhookSecurity: boolean;\n  checkSessionSecurity: boolean;\n}\n\nexport interface SecurityAuditor {\n  /** Run a full security audit */\n  audit(config: SecurityAuditConfig): SecurityAuditResult;\n\n  /** Check if encryption is properly configured */\n  checkEncryption(config: Record<string, unknown>): SecurityAuditResult;\n\n  /** Check if security headers are configured */\n  checkHeaders(headers: Record<string, string>): SecurityAuditResult;\n}\n\nexport const DEFAULT_AUDIT_CONFIG: SecurityAuditConfig = {\n  checkEncryption: true,\n  checkHeaders: true,\n  checkRateLimiting: true,\n  checkInputValidation: true,\n  checkWebhookSecurity: true,\n  checkSessionSecurity: true,\n};\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;;;AC0BO,IAAM,uBAA4C;AAAA,EACvD,iBAAiB;AAAA,EACjB,cAAc;AAAA,EACd,mBAAmB;AAAA,EACnB,sBAAsB;AAAA,EACtB,sBAAsB;AAAA,EACtB,sBAAsB;AACxB;","names":[]}

package/dist/security/index.mjs

@@ -0,0 +1,13 @@
+// src/security/audit.ts
+var DEFAULT_AUDIT_CONFIG = {
+  checkEncryption: true,
+  checkHeaders: true,
+  checkRateLimiting: true,
+  checkInputValidation: true,
+  checkWebhookSecurity: true,
+  checkSessionSecurity: true
+};
+export {
+  DEFAULT_AUDIT_CONFIG
+};
+//# sourceMappingURL=index.mjs.map

package/dist/security/index.mjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/security/audit.ts"],"sourcesContent":["/**\n * Security audit interface.\n */\n\nimport type { SecurityAuditResult } from './types';\n\nexport interface SecurityAuditConfig {\n  checkEncryption: boolean;\n  checkHeaders: boolean;\n  checkRateLimiting: boolean;\n  checkInputValidation: boolean;\n  checkWebhookSecurity: boolean;\n  checkSessionSecurity: boolean;\n}\n\nexport interface SecurityAuditor {\n  /** Run a full security audit */\n  audit(config: SecurityAuditConfig): SecurityAuditResult;\n\n  /** Check if encryption is properly configured */\n  checkEncryption(config: Record<string, unknown>): SecurityAuditResult;\n\n  /** Check if security headers are configured */\n  checkHeaders(headers: Record<string, string>): SecurityAuditResult;\n}\n\nexport const DEFAULT_AUDIT_CONFIG: SecurityAuditConfig = {\n  checkEncryption: true,\n  checkHeaders: true,\n  checkRateLimiting: true,\n  checkInputValidation: true,\n  checkWebhookSecurity: true,\n  checkSessionSecurity: true,\n};\n"],"mappings":";AA0BO,IAAM,uBAA4C;AAAA,EACvD,iBAAiB;AAAA,EACjB,cAAc;AAAA,EACd,mBAAmB;AAAA,EACnB,sBAAsB;AAAA,EACtB,sBAAsB;AAAA,EACtB,sBAAsB;AACxB;","names":[]}

package/dist/types-CgnJiK8Z.d.cts

@@ -0,0 +1,74 @@
+/**
+ * Platform-agnostic authentication types.
+ *
+ * These types define the session data model used across all platform adapters.
+ * Closely maps to Shopify's Session type but extends it with UniForge-specific
+ * fields for encryption metadata and refresh token support.
+ */
+/** Represents an authenticated session with a Shopify store. */
+interface Session {
+    readonly id: string;
+    shop: string;
+    state: string;
+    isOnline: boolean;
+    scope: string;
+    expires: Date | null;
+    accessToken?: string;
+    refreshToken?: string;
+    refreshTokenExpiresAt?: Date | null;
+    onlineAccessInfo?: OnlineAccessInfo;
+    createdAt: Date;
+    updatedAt: Date;
+}
+/** Online access information for user-scoped sessions. */
+interface OnlineAccessInfo {
+    expiresIn: number;
+    associatedUserScope: string;
+    associatedUser: AssociatedUser;
+}
+/** Shopify user associated with an online session. */
+interface AssociatedUser {
+    id: number;
+    firstName: string;
+    lastName: string;
+    email: string;
+    emailVerified: boolean;
+    accountOwner: boolean;
+    locale: string;
+    collaborator: boolean;
+}
+/** Serialized session data for storage and transport. */
+interface SessionData {
+    id: string;
+    shop: string;
+    state: string;
+    isOnline: boolean;
+    scope: string;
+    expires: string | null;
+    accessToken?: string;
+    refreshToken?: string;
+    refreshTokenExpiresAt?: string | null;
+    onlineAccessInfo?: OnlineAccessInfo;
+    createdAt: string;
+    updatedAt: string;
+}
+/** Shopify store record for tracking installation state. */
+interface Shop {
+    shopDomain: string;
+    isInstalled: boolean;
+    installedAt: Date | null;
+    uninstalledAt: Date | null;
+    scopes: string;
+    shopifyPlan: string | null;
+    createdAt: Date;
+    updatedAt: Date;
+}
+/** Request-scoped context containing shop details and session. */
+interface ShopContext {
+    shopDomain: string;
+    accessToken: string;
+    scopes: string[];
+    session: Session;
+}
+
+export type { AssociatedUser as A, OnlineAccessInfo as O, Session as S, ShopContext as a, SessionData as b, Shop as c };

package/dist/types-CgnJiK8Z.d.ts

@@ -0,0 +1,74 @@
+/**
+ * Platform-agnostic authentication types.
+ *
+ * These types define the session data model used across all platform adapters.
+ * Closely maps to Shopify's Session type but extends it with UniForge-specific
+ * fields for encryption metadata and refresh token support.
+ */
+/** Represents an authenticated session with a Shopify store. */
+interface Session {
+    readonly id: string;
+    shop: string;
+    state: string;
+    isOnline: boolean;
+    scope: string;
+    expires: Date | null;
+    accessToken?: string;
+    refreshToken?: string;
+    refreshTokenExpiresAt?: Date | null;
+    onlineAccessInfo?: OnlineAccessInfo;
+    createdAt: Date;
+    updatedAt: Date;
+}
+/** Online access information for user-scoped sessions. */
+interface OnlineAccessInfo {
+    expiresIn: number;
+    associatedUserScope: string;
+    associatedUser: AssociatedUser;
+}
+/** Shopify user associated with an online session. */
+interface AssociatedUser {
+    id: number;
+    firstName: string;
+    lastName: string;
+    email: string;
+    emailVerified: boolean;
+    accountOwner: boolean;
+    locale: string;
+    collaborator: boolean;
+}
+/** Serialized session data for storage and transport. */
+interface SessionData {
+    id: string;
+    shop: string;
+    state: string;
+    isOnline: boolean;
+    scope: string;
+    expires: string | null;
+    accessToken?: string;
+    refreshToken?: string;
+    refreshTokenExpiresAt?: string | null;
+    onlineAccessInfo?: OnlineAccessInfo;
+    createdAt: string;
+    updatedAt: string;
+}
+/** Shopify store record for tracking installation state. */
+interface Shop {
+    shopDomain: string;
+    isInstalled: boolean;
+    installedAt: Date | null;
+    uninstalledAt: Date | null;
+    scopes: string;
+    shopifyPlan: string | null;
+    createdAt: Date;
+    updatedAt: Date;
+}
+/** Request-scoped context containing shop details and session. */
+interface ShopContext {
+    shopDomain: string;
+    accessToken: string;
+    scopes: string[];
+    session: Session;
+}
+
+export type { AssociatedUser as A, OnlineAccessInfo as O, Session as S, ShopContext as a, SessionData as b, Shop as c };

package/dist/webhooks/index.d.cts

@@ -0,0 +1,114 @@
+/**
+ * Core webhook types and interfaces.
+ *
+ * Platform-agnostic types for webhook handling including
+ * payloads, handlers, and registration.
+ */
+/** Common Shopify webhook topics. */
+type WebhookTopic = 'APP_UNINSTALLED' | 'APP_SUBSCRIPTIONS_UPDATE' | 'PRODUCTS_CREATE' | 'PRODUCTS_UPDATE' | 'PRODUCTS_DELETE' | 'ORDERS_CREATE' | 'ORDERS_UPDATED' | 'ORDERS_PAID' | 'ORDERS_FULFILLED' | 'CUSTOMERS_CREATE' | 'CUSTOMERS_UPDATE' | 'CUSTOMERS_DELETE' | 'SHOP_UPDATE' | string;
+interface WebhookPayload {
+    topic: string;
+    shopDomain: string;
+    apiVersion: string;
+    payload: unknown;
+    webhookId: string;
+    timestamp: Date;
+}
+interface WebhookHandler {
+    handle(payload: WebhookPayload): Promise<WebhookHandlerResult>;
+}
+interface WebhookHandlerResult {
+    success: boolean;
+    error?: string;
+}
+interface WebhookRegistration {
+    topic: string;
+    address: string;
+    format?: 'json' | 'xml';
+}
+
+/**
+ * Webhook HMAC validation interfaces.
+ *
+ * Defines the contract for validating incoming webhook requests
+ * using HMAC-SHA256 signatures (base64-encoded for Shopify webhooks).
+ */
+interface WebhookValidator {
+    validate(request: WebhookValidationRequest): boolean;
+}
+interface WebhookValidationRequest {
+    rawBody: Buffer;
+    hmac: string;
+    secret: string;
+}
+
+/**
+ * Webhook queue interfaces.
+ *
+ * Defines the contract for a Redis-backed webhook processing queue
+ * with retry support and dead letter handling.
+ */
+
+type WebhookJobStatus = 'pending' | 'processing' | 'completed' | 'failed' | 'dead';
+interface WebhookQueue {
+    enqueue(payload: WebhookPayload): Promise<string>;
+    dequeueNext(): Promise<WebhookJob | undefined>;
+    getJob(jobId: string): Promise<WebhookJob | undefined>;
+    acknowledgeJob(jobId: string, result: WebhookHandlerResult): Promise<void>;
+    requeueJob(jobId: string, error: string): Promise<void>;
+    getDeadLetterJobs(limit?: number): Promise<WebhookJob[]>;
+}
+interface WebhookJob {
+    id: string;
+    payload: WebhookPayload;
+    status: WebhookJobStatus;
+    attempts: number;
+    maxAttempts: number;
+    lastError?: string;
+    createdAt: Date;
+    updatedAt: Date;
+    nextRetryAt?: Date;
+}
+interface WebhookQueueConfig {
+    maxAttempts?: number;
+    baseRetryDelayMs?: number;
+    maxRetryDelayMs?: number;
+    keyPrefix?: string;
+}
+
+/**
+ * GDPR webhook types.
+ *
+ * Defines the Shopify mandatory GDPR webhook payload shapes
+ * and the handler interface for processing them.
+ */
+interface CustomersDataRequest {
+    shop_domain: string;
+    customer: {
+        id: number;
+        email: string;
+        phone?: string;
+    };
+    orders_requested: number[];
+}
+interface CustomersRedact {
+    shop_domain: string;
+    customer: {
+        id: number;
+        email: string;
+        phone?: string;
+    };
+    orders_to_redact: number[];
+}
+interface ShopRedact {
+    shop_domain: string;
+    shop_id: number;
+}
+type GdprWebhookType = 'customers/data_request' | 'customers/redact' | 'shop/redact';
+interface GdprHandler {
+    handleDataRequest(payload: CustomersDataRequest): Promise<void>;
+    handleCustomerRedact(payload: CustomersRedact): Promise<void>;
+    handleShopRedact(payload: ShopRedact): Promise<void>;
+}
+
+export type { CustomersDataRequest, CustomersRedact, GdprHandler, GdprWebhookType, ShopRedact, WebhookHandler, WebhookHandlerResult, WebhookJob, WebhookJobStatus, WebhookPayload, WebhookQueue, WebhookQueueConfig, WebhookRegistration, WebhookTopic, WebhookValidationRequest, WebhookValidator };