@vibeorm/runtime 1.0.0

package/src/errors.ts

@@ -0,0 +1,39 @@
+/**
+ * VibeORM Validation Error
+ *
+ * Thrown when Zod validation fails for query inputs or outputs.
+ * Contains structured information about which model, operation, and
+ * direction (input/output) the validation failure occurred in.
+ */
+
+export class VibeValidationError extends Error {
+  readonly model: string;
+  readonly operation: string;
+  readonly direction: "input" | "output";
+  readonly zodError: unknown;
+
+  constructor(params: {
+    model: string;
+    operation: string;
+    direction: "input" | "output";
+    zodError: unknown;
+  }) {
+    const { model, operation, direction, zodError } = params;
+    const msg = `Validation failed for ${model}.${operation} (${direction}): ${formatZodError({ error: zodError })}`;
+    super(msg);
+    this.name = "VibeValidationError";
+    this.model = model;
+    this.operation = operation;
+    this.direction = direction;
+    this.zodError = zodError;
+  }
+}
+
+function formatZodError(params: { error: unknown }): string {
+  const { error } = params;
+  if (error && typeof error === "object" && "issues" in error) {
+    const issues = (error as { issues: Array<{ path: (string | number)[]; message: string }> }).issues;
+    return issues.map((i) => `${i.path.join(".")}: ${i.message}`).join("; ");
+  }
+  return String(error);
+}

package/src/id-generators.ts

@@ -0,0 +1,151 @@
+/**
+ * Zero-dependency, cryptographically secure ID generators.
+ *
+ * Used by the runtime to auto-generate values for fields with
+ * @default(uuid()), @default(cuid()), @default(nanoid()), @default(ulid()).
+ *
+ * All implementations use crypto.getRandomValues() for security.
+ */
+
+// ─── UUID v4 ──────────────────────────────────────────────────────
+
+/**
+ * Generate a UUID v4 string.
+ * Uses crypto.randomUUID() when available (Node 19+, Bun, Deno, browsers),
+ * falls back to a manual implementation.
+ */
+export function generateUuid(): string {
+  if (typeof crypto !== "undefined" && typeof crypto.randomUUID === "function") {
+    return crypto.randomUUID();
+  }
+  // Manual fallback using crypto.getRandomValues
+  const bytes = new Uint8Array(16);
+  crypto.getRandomValues(bytes);
+  // Set version (4) and variant (RFC 4122)
+  bytes[6] = (bytes[6]! & 0x0f) | 0x40;
+  bytes[8] = (bytes[8]! & 0x3f) | 0x80;
+  const hex = Array.from(bytes, (b) => b.toString(16).padStart(2, "0")).join("");
+  return `${hex.slice(0, 8)}-${hex.slice(8, 12)}-${hex.slice(12, 16)}-${hex.slice(16, 20)}-${hex.slice(20)}`;
+}
+
+// ─── CUID2 ────────────────────────────────────────────────────────
+
+/**
+ * Generate a CUID2-compatible string.
+ *
+ * CUID2 is a secure, collision-resistant ID optimized for horizontal scaling.
+ * This is a simplified implementation that produces IDs with the same properties:
+ * - Starts with a letter (for HTML element IDs and DB compatibility)
+ * - 24 characters long (default CUID2 length)
+ * - Cryptographically random
+ *
+ * Uses a base-36 encoding of random bytes with a letter prefix.
+ */
+const CUID_LENGTH = 24;
+const CUID_ALPHABET = "abcdefghijklmnopqrstuvwxyz";
+
+export function generateCuid(): string {
+  // First char is always a letter
+  const firstByte = new Uint8Array(1);
+  crypto.getRandomValues(firstByte);
+  const prefix = CUID_ALPHABET[firstByte[0]! % 26]!;
+
+  // Remaining chars from random bytes encoded as base36
+  // We need enough random bytes to produce CUID_LENGTH - 1 base36 chars
+  // Each byte gives ~1.29 base36 chars, so we need ceil((CUID_LENGTH-1)/1.29) ≈ 18 bytes
+  const bytes = new Uint8Array(32);
+  crypto.getRandomValues(bytes);
+
+  let result = prefix;
+  // Convert bytes to a big number string in base36
+  let carry = 0n;
+  for (let i = 0; i < bytes.length; i++) {
+    carry = (carry << 8n) | BigInt(bytes[i]!);
+  }
+  const base36 = carry.toString(36);
+  result += base36.slice(0, CUID_LENGTH - 1).padStart(CUID_LENGTH - 1, "a");
+
+  return result;
+}
+
+// ─── NanoID ───────────────────────────────────────────────────────
+
+/**
+ * Generate a NanoID-compatible string.
+ *
+ * NanoID uses a URL-safe alphabet (A-Za-z0-9_-) and produces 21-character IDs.
+ * This is a high-performance implementation using bit masking for uniform distribution.
+ */
+const NANOID_ALPHABET = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789_-";
+const NANOID_LENGTH = 21;
+const NANOID_MASK = 63; // 0x3F — 6 bits, matching alphabet size of 64
+
+export function generateNanoid(): string {
+  const bytes = new Uint8Array(NANOID_LENGTH);
+  crypto.getRandomValues(bytes);
+
+  let id = "";
+  for (let i = 0; i < NANOID_LENGTH; i++) {
+    id += NANOID_ALPHABET[bytes[i]! & NANOID_MASK]!;
+  }
+  return id;
+}
+
+// ─── ULID ─────────────────────────────────────────────────────────
+
+/**
+ * Generate a ULID (Universally Unique Lexicographically Sortable Identifier).
+ *
+ * Format: 10 chars timestamp (48-bit ms since epoch) + 16 chars randomness (80-bit)
+ * Encoding: Crockford's Base32 (0-9A-HJKMNP-TV-Z)
+ * Total: 26 characters, lexicographically sortable by creation time.
+ */
+const ULID_ENCODING = "0123456789ABCDEFGHJKMNPQRSTVWXYZ";
+const ULID_ENCODING_LEN = 32;
+
+function encodeTime(params: { now: number; len: number }): string {
+  let { now, len } = params;
+  let str = "";
+  for (; len > 0; len--) {
+    str = ULID_ENCODING[now % ULID_ENCODING_LEN]! + str;
+    now = Math.floor(now / ULID_ENCODING_LEN);
+  }
+  return str;
+}
+
+function encodeRandom(params: { len: number }): string {
+  const { len } = params;
+  const bytes = new Uint8Array(len);
+  crypto.getRandomValues(bytes);
+  let str = "";
+  for (let i = 0; i < len; i++) {
+    str += ULID_ENCODING[bytes[i]! % ULID_ENCODING_LEN]!;
+  }
+  return str;
+}
+
+export function generateUlid(): string {
+  const now = Date.now();
+  return encodeTime({ now, len: 10 }) + encodeRandom({ len: 16 });
+}
+
+// ─── Dispatcher ───────────────────────────────────────────────────
+
+/**
+ * Generate an ID value based on the default kind.
+ * Returns undefined for kinds that are handled at the DB level (autoincrement, now, literal).
+ */
+export function generateDefault(params: { kind: string }): string | undefined {
+  switch (params.kind) {
+    case "uuid":
+      return generateUuid();
+    case "cuid":
+      return generateCuid();
+    case "nanoid":
+      return generateNanoid();
+    case "ulid":
+      return generateUlid();
+    default:
+      return undefined;
+  }
+}

package/src/index.ts

@@ -0,0 +1,36 @@
+/**
+ * @vibeorm/runtime — Driver-agnostic VibeORM client runtime.
+ *
+ * This package contains the core query engine, SQL builders, and relation
+ * loading strategies. It does NOT include any database driver — use one
+ * of the adapter packages (@vibeorm/adapter-bun, @vibeorm/adapter-pg)
+ * to connect to PostgreSQL.
+ */
+
+export { createClient } from "./client.ts";
+export { VibeValidationError } from "./errors.ts";
+export {
+  loadRelationsWithLateralJoin,
+  executeLateralJoinQuery,
+} from "./lateral-join-builder.ts";
+export { toSqlExecutor } from "./adapter.ts";
+
+export type {
+  DatabaseAdapter,
+  QueryResult,
+  SqlExecutor,
+} from "./adapter.ts";
+
+export type {
+  VibeClientOptions,
+  ModelMeta,
+  ModelMetaMap,
+  ModelSchemas,
+  ValidationSchema,
+  QueryProfile,
+  RelationProfile,
+  ScalarFieldMeta,
+  RelationFieldMeta,
+  SqlQuery,
+  Operation,
+} from "./types.ts";