@vltpkg/registry-client 0.0.0-0.1730239248325 → 0.0.0-10

package/dist/esm/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,eAAe,CAAA;AACrC,OAAO,EAAE,QAAQ,EAAE,MAAM,qBAAqB,CAAA;AAE9C,OAAO,EAAE,GAAG,EAAE,MAAM,aAAa,CAAA;AACjC,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAA;AACxD,OAAO,EAAE,KAAK,EAAc,MAAM,QAAQ,CAAA;AAC1C,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAA;AAC3C,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAA;AAC7C,OAAO,EAAE,GAAG,EAAE,IAAI,EAAE,IAAI,EAAE,MAAM,UAAU,CAAA;AAC1C,OAAO,EAAE,iBAAiB,EAAE,MAAM,0BAA0B,CAAA;AAC5D,OAAO,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAA;AACpD,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAA;AAsDxD,MAAM,EAAE,OAAO,EAAE,GAAG,eAAe,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;AACzD,MAAM,GAAG,GACN,UAAU,CAAC,SAAmC,EAAE,SAAS;IAC1D,CAAC,GAAG,CAAC,CAAC,CAAC,OAAO,GAAG,EAAE;QACnB,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,QAAQ,IAAI,EAAE;YACvB,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,WAAW,IAAI,EAAE;gBAC1B,CAAC,CAAC,oBAAoB,CAAC,CAAA;AACzB,MAAM,CAAC,MAAM,SAAS,GAAG,2BAA2B,OAAO,IAAI,GAAG,EAAE,CAAA;AAEpE,MAAM,YAAY,GAAkB;IAClC,WAAW,EAAE,OAAO;IACpB,cAAc,EAAE,OAAO;IACvB,mBAAmB,EAAE,SAAS;IAC9B,gBAAgB,EAAE,OAAO;IACzB,yBAAyB,EAAE,MAAM;IACjC,OAAO,EAAE;QACP,OAAO,EAAE,OAAO;QAChB,SAAS,EAAE,IAAI;QACf,qBAAqB,EAAE,MAAM;QAC7B,cAAc,EAAE,GAAG;KACpB;IACD,WAAW,EAAE,GAAG;IAChB,UAAU,EAAE,EAAE;CACf,CAAA;AAED,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,CAAA;AAE1B,MAAM,OAAO,cAAc;IACzB,KAAK,CAAO;IACZ,KAAK,CAAO;IAEZ,YAAY,EACV,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,iBAAiB,CAAC,GACd;QACtB,IAAI,CAAC,KAAK,GAAG,IAAI,KAAK,CAAC;YACrB,IAAI,EAAE,KAAK;YACX,WAAW,CAAC,KAAK,EAAE,GAAG,EAAE,IAAI;gBAC1B,IAAI,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,MAAM;oBAAE,QAAQ,CAAC,KAAK,EAAE,GAAG,CAAC,CAAA;YAC1D,CAAC;SACF,CAAC,CAAA;QACF,IAAI,CAAC,KAAK,GAAG,IAAI,KAAK,CAAC,YAAY,CAAC,CAAA;IACtC,CAAC;IAED,KAAK,CAAC,OAAO,CACX,GAAiB,EACjB,UAAwC,EAAE;QAE1C,MAAM,CAAC,GAAG,OAAO,GAAG,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAA;QACtD,MAAM,EACJ,MAAM,GAAG,KAAK,EACd,SAAS,EACT,YAAY,GAAG,IAAI,GAAG,EAAE,GACzB,GAAG,OAAO,CAAA;QAEX,8DAA8D;QAC9D,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,GAAG,CAAC,CAAA;QAC9B,MAAM,GAAG,GAAG,IAAI,CAAC,SAAS,CAAC,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC,CAAA;QACtD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,EAAE;YACzC,OAAO,EAAE,EAAE,SAAS,EAAE;SACvB,CAAC,CAAA;QAEF,MAAM,KAAK,GAAG,MAAM,CAAC,CAAC,CAAC,UAAU,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;QAC5D,IAAI,KAAK,EAAE,KAAK;YAAE,OAAO,KAAK,CAAA;QAC9B,+DAA+D;QAC/D,6DAA6D;QAC7D,4CAA4C;QAE5C,mDAAmD;QACnD,eAAe,CAAC,OAAO,EAAE,KAAK,CAAC,CAAA;QAE/B,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAA;QAE7B,MAAM,CAAC,MAAM,CAAC,OAAO,EAAE;YACrB,IAAI,EAAE,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,GAAG,CAAC,CAAC,MAAM;YAC/C,GAAG,YAAY;SAChB,CAAC,CAAA;QAEF,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC,MAAM,CAAA;QACzB,OAAO,CAAC,OAAO,GAAG,SAAS,CACzB,SAAS,CACP,OAAO,CAAC,OAAO,EACf,iBAAiB,EACjB,4BAA4B,CAC7B,EACD,YAAY,EACZ,SAAS,CACV,CAAA;QACD,OAAO,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,KAAK,CAAA;QAExC,MAAM,MAAM,GAAG,MAAM,IAAI,OAAO,CAC9B,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;YACX,yDAAyD;YACzD,IAAI,CAAC,KAAK;iBACP,OAAO,CAAC,OAAoC,CAAC;iBAC7C,IAAI,CAAC,GAAG,CAAC;iBACT,KAAK,CAAC,CAAC,EAAW,EAAE,EAAE,CAAC,GAAG,CAAC,EAAW,CAAC,CAAC,CAAA;YAC3C,oBAAoB;QACtB,CAAC,CACF,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;YACZ,IAAI,iBAAiB,CAAC,IAAI,EAAE,KAAK,CAAC;gBAAE,OAAO,KAAK,CAAA;YAEhD,MAAM,CAAC,GAAa,EAAE,CAAA;YACtB,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;gBACxD,mCAAmC;gBACnC,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;oBACzB,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;oBACvD,oBAAoB;gBACtB,CAAC;qBAAM,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;oBACrC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAA;gBAC9C,CAAC;YACH,CAAC;YACD,MAAM,MAAM,GAAG,IAAI,UAAU;YAC3B,uDAAuD;YACvD,IAAI,CAAC,UAAU,IAAI,GAAG,EACtB,CAAC,EACD,OAAO,CAAC,SAAS,CAClB,CAAA;YAED,IAAI,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;gBACvB,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAA;gBAClB,IAAI,CAAC;oBACH,MAAM,CAAC,OAAO,EAAE,WAAW,CAAC,GAAG,QAAQ,CAAC,OAAO,EAAE,MAAM,EAAE,CAAC,CAAC,CAAA;oBAC3D,IAAI,WAAW,IAAI,OAAO,EAAE,CAAC;wBAC3B,OAAO,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,WAAW,CAAC,CAAA;oBAC3C,CAAC;oBACD,OAAO,MAAM,CAAA;gBACf,CAAC;gBAAC,OAAO,EAAE,EAAE,CAAC;oBACZ,qBAAqB;oBACrB,MAAM,EAAE,YAAY,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAC7B,IAAI,KAAK,CAAC,OAAO,EAAE,KAAK,QAAQ,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,eAAe,CAAC,CACzD,CAAA;oBACH,oBAAoB;gBACtB,CAAC;YACH,CAAC;YAED,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAa,EAAE,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAA;YAC9D,OAAO,IAAI,OAAO,CAAa,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;gBAC1C,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,CAAC,CAAA;gBAC1B,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAA;YACxC,CAAC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QAEF,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,EAAE,MAAM,CAAC,MAAM,EAAE,CAAC,CAAA;QACpC,OAAO,MAAM,CAAA;IACf,CAAC;CACF","sourcesContent":["import { Cache } from '@vltpkg/cache'\nimport { register } from '@vltpkg/cache-unzip'\nimport { Integrity } from '@vltpkg/types'\nimport { XDG } from '@vltpkg/xdg'\nimport { loadPackageJson } from 'package-json-from-dist'\nimport { Agent, Dispatcher } from 'undici'\nimport { addHeader } from './add-header.js'\nimport { CacheEntry } from './cache-entry.js'\nimport { bun, deno, node } from './env.js'\nimport { handle304Response } from './handle-304-response.js'\nimport { isRedirect, redirect } from './redirect.js'\nimport { setCacheHeaders } from './set-cache-headers.js'\n\nexport { type CacheEntry }\n\nexport type RegistryClientOptions = {\n  /**\n   * Path on disk where the cache should be stored\n   *\n   * @default `$HOME/.config/vlt/cache`\n   */\n  cache?: string\n}\n\nexport type RegistryClientRequestOptions = Omit<\n  Dispatcher.DispatchOptions,\n  'method' | 'path'\n> & {\n  /**\n   * `path` should not be set when using the RegistryClient.\n   * It will be overwritten with the path on the URL being requested.\n   * This only here for compliance with the DispatchOptions base type.\n   * @deprecated\n   */\n  path?: string\n\n  /**\n   * Method is optional, defaults to 'GET'\n   */\n  method?: Dispatcher.DispatchOptions['method']\n  /**\n   * Provide an SRI string to verify integrity of the item being fetched.\n   *\n   * This is only relevant when it must make a request to the registry. Once in\n   * the local disk cache, items are assumed to be trustworthy.\n   */\n  integrity?: Integrity\n\n  /**\n   * Follow up to 10 redirections by default. Set this to 0 to just return\n   * the 3xx response. If the max redirections are expired, and we still get\n   * a redirection response, then fail the request. Redirection cycles are\n   * always treated as an error.\n   */\n  maxRedirections?: number\n\n  /**\n   * the number of redirections that have already been seen. This is used\n   * internally, and should always start at 0.\n   *\n   * @internal\n   */\n  redirections?: Set<string>\n}\n\nconst { version } = loadPackageJson(import.meta.filename)\nconst nua =\n  (globalThis.navigator as Navigator | undefined)?.userAgent ??\n  (bun ? `Bun/${bun}`\n  : deno ? `Deno/${deno}`\n  : node ? `Node.js/${node}`\n  : '(unknown platform)')\nexport const userAgent = `@vltpkg/registry-client/${version} ${nua}`\n\nconst agentOptions: Agent.Options = {\n  bodyTimeout: 600_000,\n  headersTimeout: 600_000,\n  keepAliveMaxTimeout: 1_200_000,\n  keepAliveTimeout: 600_000,\n  keepAliveTimeoutThreshold: 30_000,\n  connect: {\n    timeout: 600_000,\n    keepAlive: true,\n    keepAliveInitialDelay: 30_000,\n    sessionTimeout: 600,\n  },\n  connections: 128,\n  pipelining: 10,\n}\n\nconst xdg = new XDG('vlt')\n\nexport class RegistryClient {\n  agent: Agent\n  cache: Cache\n\n  constructor({\n    cache = xdg.cache('registry-client'),\n  }: RegistryClientOptions) {\n    this.cache = new Cache({\n      path: cache,\n      onDiskWrite(_path, key, data) {\n        if (CacheEntry.decode(data).isGzip) register(cache, key)\n      },\n    })\n    this.agent = new Agent(agentOptions)\n  }\n\n  async request(\n    url: URL | string,\n    options: RegistryClientRequestOptions = {},\n  ): Promise<CacheEntry> {\n    const u = typeof url === 'string' ? new URL(url) : url\n    const {\n      method = 'GET',\n      integrity,\n      redirections = new Set(),\n    } = options\n\n    // first, try to get from the cache before making any request.\n    const { origin, pathname } = u\n    const key = JSON.stringify([origin, method, pathname])\n    const buffer = await this.cache.fetch(key, {\n      context: { integrity },\n    })\n\n    const entry = buffer ? CacheEntry.decode(buffer) : undefined\n    if (entry?.valid) return entry\n    // TODO: stale-while-revalidate timeout, say 1 day, where we'll\n    // use the cached response even if it's invalid, and validate\n    // in the background without waiting for it.\n\n    // either no cache entry, or need to revalidate it.\n    setCacheHeaders(options, entry)\n\n    redirections.add(String(url))\n\n    Object.assign(options, {\n      path: u.pathname.replace(/\\/+$/, '') + u.search,\n      ...agentOptions,\n    })\n\n    options.origin = u.origin\n    options.headers = addHeader(\n      addHeader(\n        options.headers,\n        'accept-encoding',\n        'gzip;q=1.0, identity;q=0.5',\n      ),\n      'user-agent',\n      userAgent,\n    )\n    options.method = options.method ?? 'GET'\n\n    const result = await new Promise<Dispatcher.ResponseData>(\n      (res, rej) => {\n        /* c8 ignore start - excessive type setting for eslint */\n        this.agent\n          .request(options as Dispatcher.RequestOptions)\n          .then(res)\n          .catch((er: unknown) => rej(er as Error))\n        /* c8 ignore stop */\n      },\n    ).then(resp => {\n      if (handle304Response(resp, entry)) return entry\n\n      const h: Buffer[] = []\n      for (const [key, value] of Object.entries(resp.headers)) {\n        /* c8 ignore start - theoretical */\n        if (Array.isArray(value)) {\n          h.push(Buffer.from(key), Buffer.from(value.join(', ')))\n          /* c8 ignore stop */\n        } else if (typeof value === 'string') {\n          h.push(Buffer.from(key), Buffer.from(value))\n        }\n      }\n      const result = new CacheEntry(\n        /* c8 ignore next - should always have a status code */\n        resp.statusCode || 200,\n        h,\n        options.integrity,\n      )\n\n      if (isRedirect(result)) {\n        resp.body.resume()\n        try {\n          const [nextURL, nextOptions] = redirect(options, result, u)\n          if (nextOptions && nextURL) {\n            return this.request(nextURL, nextOptions)\n          }\n          return result\n        } catch (er) {\n          /* c8 ignore start */\n          throw er instanceof Error ? er : (\n              new Error(typeof er === 'string' ? er : 'Unknown error')\n            )\n          /* c8 ignore stop */\n        }\n      }\n\n      resp.body.on('data', (chunk: Buffer) => result.addBody(chunk))\n      return new Promise<CacheEntry>((res, rej) => {\n        resp.body.on('error', rej)\n        resp.body.on('end', () => res(result))\n      })\n    })\n\n    this.cache.set(key, result.encode())\n    return result\n  }\n}\n"]}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,eAAe,CAAA;AACrC,OAAO,EAAE,QAAQ,IAAI,kBAAkB,EAAE,MAAM,qBAAqB,CAAA;AACpE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,qBAAqB,CAAA;AACpD,OAAO,EAAE,UAAU,EAAE,MAAM,gBAAgB,CAAA;AAE3C,OAAO,EAAE,OAAO,EAAE,MAAM,kBAAkB,CAAA;AAC1C,OAAO,EAAE,GAAG,EAAE,MAAM,aAAa,CAAA;AACjC,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAA;AAC5C,OAAO,EAAE,UAAU,EAAE,MAAM,sBAAsB,CAAA;AACjD,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAA;AAExD,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAA;AAC1C,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAA;AAE3C,OAAO,EACL,WAAW,EACX,KAAK,EACL,QAAQ,EACR,OAAO,EACP,SAAS,EACT,QAAQ,GACT,MAAM,WAAW,CAAA;AAElB,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAA;AAC7C,OAAO,EAAE,QAAQ,EAAE,MAAM,uBAAuB,CAAA;AAChD,OAAO,EAAE,GAAG,EAAE,IAAI,EAAE,IAAI,EAAE,MAAM,UAAU,CAAA;AAC1C,OAAO,EAAE,iBAAiB,EAAE,MAAM,0BAA0B,CAAA;AAC5D,OAAO,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAA;AACxC,OAAO,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAA;AACpD,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAA;AAExD,OAAO,EAAE,eAAe,EAAE,MAAM,qBAAqB,CAAA;AAErD,OAAO,EAAE,kBAAkB,EAAE,MAAM,yBAAyB,CAAA;AAC5D,OAAO,EACL,UAAU,EACV,WAAW,EACX,KAAK,EACL,OAAO,EACP,SAAS,EACT,QAAQ,GAKT,CAAA;AAGD,MAAM,CAAC,MAAM,iBAAiB,GAAG,CAAC,CAAU,EAAwB,EAAE,CACpE,CAAC,KAAK,KAAK,IAAI,CAAC,KAAK,MAAM,CAAA;AA+G7B,MAAM,EAAE,OAAO,EAAE,GAAG,eAAe,CACjC,MAAM,CAAC,IAAI,CAAC,QAAQ,EACpB,OAAO,CAAC,GAAG,CAAC,2CAA2C,CAGxD,CAAA;AACD,2DAA2D;AAC3D,MAAM,GAAG,GACN,UAAU,CAAC,SAAmC,EAAE,SAAS;IAC1D,CAAC,GAAG,CAAC,CAAC,CAAC,OAAO,GAAG,EAAE;QACnB,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,QAAQ,IAAI,EAAE;YACvB,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,WAAW,IAAI,EAAE;gBAC1B,CAAC,CAAC,oBAAoB,CAAC,CAAA;AACzB,oBAAoB;AACpB,MAAM,CAAC,MAAM,SAAS,GAAG,2BAA2B,OAAO,IAAI,GAAG,EAAE,CAAA;AAEpE,MAAM,YAAY,GAAkB;IAClC,WAAW,EAAE,OAAO;IACpB,cAAc,EAAE,OAAO;IACvB,mBAAmB,EAAE,SAAS;IAC9B,gBAAgB,EAAE,OAAO;IACzB,yBAAyB,EAAE,MAAM;IACjC,OAAO,EAAE;QACP,OAAO,EAAE,OAAO;QAChB,SAAS,EAAE,IAAI;QACf,qBAAqB,EAAE,MAAM;QAC7B,cAAc,EAAE,GAAG;KACpB;IACD,WAAW,EAAE,GAAG;IAChB,UAAU,EAAE,EAAE;CACf,CAAA;AAED,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,CAAA;AAE1B,MAAM,OAAO,cAAc;IACzB,KAAK,CAAY;IACjB,KAAK,CAAO;IACZ,QAAQ,CAAQ;IAChB,0BAA0B,CAAQ;IAElC,YAAY,OAA8B;QACxC,MAAM,EACJ,KAAK,GAAG,GAAG,CAAC,KAAK,EAAE,EACnB,oBAAoB,EAAE,aAAa,GAAG,CAAC,EACvC,wBAAwB,EAAE,UAAU,GAAG,CAAC,EACxC,wBAAwB,EAAE,UAAU,GAAG,MAAM,EAC7C,eAAe,EAAE,UAAU,GAAG,CAAC,EAC/B,QAAQ,GAAG,EAAE,EACb,+BAA+B,EAC7B,0BAA0B,GAAG,EAAE,GAClC,GAAG,OAAO,CAAA;QACX,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAA;QACxB,IAAI,CAAC,0BAA0B,GAAG,0BAA0B,CAAA;QAC5D,MAAM,IAAI,GAAG,OAAO,CAAC,KAAK,EAAE,iBAAiB,CAAC,CAAA;QAC9C,IAAI,CAAC,KAAK,GAAG,IAAI,KAAK,CAAC;YACrB,IAAI;YACJ,WAAW,CAAC,KAAK,EAAE,GAAG,EAAE,IAAI;gBAC1B,IAAI,UAAU,CAAC,WAAW,CAAC,IAAI,CAAC,EAAE,CAAC;oBACjC,kBAAkB,CAAC,IAAI,EAAE,GAAG,CAAC,CAAA;gBAC/B,CAAC;YACH,CAAC;SACF,CAAC,CAAA;QACF,MAAM,QAAQ,GAAG,IAAI,KAAK,CAAC,YAAY,CAAC,CAAA;QACxC,IAAI,CAAC,KAAK,GAAG,IAAI,UAAU,CAAC,QAAQ,EAAE;YACpC,UAAU;YACV,aAAa;YACb,UAAU;YACV,UAAU;YACV,UAAU,EAAE,IAAI;YAChB,UAAU,EAAE;gBACV,cAAc;gBACd,YAAY;gBACZ,WAAW;gBACX,UAAU;gBACV,aAAa;gBACb,WAAW;gBACX,OAAO;gBACP,gBAAgB;aACjB;SACF,CAAC,CAAA;IACJ,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,MAAM,CACV,GAAiB,EACjB,UAAwC,EAAE,EAC1C,IAA0B;QAE1B,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,OAAO,CAAC,CAAA;QAC7C,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE,GAAG,IAAI,CAAC,IAAI,EAGlC,CAAA;QACD,4DAA4D;QAC5D,OAAO,IAAI,CAAC,IAAI,IAAI,CAAC,CAAC,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAC/C,OAAO,CAAC,MAAM,CAAC,MAAM,IAAI,CAAC,MAAM,CAAI,IAAI,CAAC,IAAI,EAAE,OAAO,EAAE,IAAI,CAAC,CAAC;YAChE,CAAC,CAAC,OAAO,CAAA;IACb,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,IAAI,CACR,GAAiB,EACjB,IAAyB,EACzB,UAAwC,EAAE;QAE1C,OAAO,CAAC,MAAM,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,OAAO,EAAE,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAC3D,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,MAAM,CAAC,QAAgB;QAC3B,uDAAuD;QACvD,MAAM,GAAG,GAAG,MAAM,QAAQ,CAAC,QAAQ,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAA;QACnD,IAAI,CAAC,GAAG;YAAE,OAAM;QAEhB,MAAM,CAAC,GAAG,GAAG,CAAC,OAAO,CAAC,mBAAmB,EAAE,EAAE,CAAC,CAAA;QAE9C,MAAM,SAAS,GAAG,IAAI,GAAG,CAAC,iBAAiB,EAAE,QAAQ,CAAC,CAAA;QACtD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,IAAI,CAG3B,SAAS,EAAE,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC,KAAK,CAAC,EAAE;YAChD,QAAQ,EAAE,KAAK;SAChB,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,SAAS,CAAC,CAAA;QAEzB,IAAI,MAAM,EAAE,CAAC;YACX,MAAM,EAAE,GAAG,EAAE,GAAG,MAAM,CAAA;YACtB,MAAM,IAAI,CAAC,OAAO,CAChB,IAAI,GAAG,CAAC,yBAAyB,GAAG,EAAE,EAAE,QAAQ,CAAC,EACjD,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,EAAE,QAAQ,EAAE,CACtC,CAAA;QACH,CAAC;QAED,MAAM,WAAW,CAAC,QAAQ,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAA;IAC5C,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,KAAK,CAAC,QAAgB;QAC1B,+BAA+B;QAC/B,+CAA+C;QAC/C,8BAA8B;QAC9B,sBAAsB;QACtB,mCAAmC;QACnC,EAAE;QACF,4CAA4C;QAC5C,MAAM,WAAW,GAAG,IAAI,GAAG,CAAC,YAAY,EAAE,QAAQ,CAAC,CAAA;QACnD,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE;YAC/C,MAAM,EAAE,MAAM;YACd,QAAQ,EAAE,KAAK;YACf,OAAO,EAAE;gBACP,cAAc,EAAE,kBAAkB;gBAClC,eAAe,EAAE,KAAK;aACvB;YACD,IAAI,EAAE,IAAI;SACX,CAAC,CAAA;QAEF,IAAI,QAAQ,CAAC,UAAU,KAAK,GAAG,EAAE,CAAC;YAChC,MAAM,SAAS,GAAG,QAAQ,CAAC,IAAI,EAAE,CAAA;YACjC,IAAI,kBAAkB,CAAC,SAAS,CAAC,EAAE,CAAC;gBAClC,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,SAAS,CAAC,CAAA;gBAClD,MAAM,QAAQ,CACZ,QAAQ,EACR,UAAU,MAAM,CAAC,KAAK,EAAE,EACxB,IAAI,CAAC,QAAQ,CACd,CAAA;gBACD,OAAM;YACR,CAAC;QACH,CAAC;QACD,qBAAqB;QACrB,uEAAuE;QACvE,MAAM,KAAK,CAAC,6BAA6B,EAAE,EAAE,QAAQ,EAAE,CAAC,CAAA;IAC1D,CAAC;IACD,oBAAoB;IAEpB;;;OAGG;IACH,KAAK,CAAC,aAAa,CAAC,EAAE,OAAO,EAAE,QAAQ,EAAoB;QACzD,MAAM,EAAE,GAAG,IAAI,eAAe,EAAE,CAAA;QAChC,MAAM,EAAE,MAAM,EAAE,GAAG,EAAE,CAAA;QACrB,sCAAsC;QACtC,MAAM,CAAC,MAAM,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;YACjC,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,EAAE,MAAM,EAAE,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE;gBAClD,EAAE,CAAC,KAAK,EAAE,CAAA;gBACV,OAAO,MAAM,CAAA;YACf,CAAC,CAAC;YACF,OAAO,CAAC,QAAQ,EAAE,EAAE,MAAM,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,EAAW,EAAE,EAAE;gBAClD,IAAI,OAAO,CAAC,EAAE,CAAC,CAAC,IAAI,KAAK,YAAY;oBAAE,OAAM;gBAC7C,EAAE,CAAC,KAAK,EAAE,CAAA;gBACV,MAAM,EAAE,CAAA;YACV,CAAC,CAAC;SACH,CAAC,CAAA;QACF,oBAAoB;QACpB,OAAO,MAAM,CAAA;IACf,CAAC;IAED,KAAK,CAAC,WAAW,CACf,GAAiB,EACjB,UAAwC,EAAE;QAE1C,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE;YACvC,GAAG,OAAO;YACV,QAAQ,EAAE,KAAK;SAChB,CAAC,CAAA;QACF,MAAM,EAAE,MAAM,EAAE,GAAG,OAAmC,CAAA;QACtD,IAAI,QAAQ,CAAC,UAAU,KAAK,GAAG,EAAE,CAAC;YAChC,MAAM,EAAE,GAAG,QAAQ,CAAC,SAAS,CAAC,aAAa,CAAC,CAAA;YAC5C,MAAM,UAAU,GAAG,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAA;YAClD,IAAI,UAAU,GAAG,CAAC,EAAE,CAAC;gBACnB,MAAM,UAAU,CAAC,UAAU,GAAG,IAAI,EAAE,IAAI,EAAE,EAAE,MAAM,EAAE,CAAC,CAAA;YACvD,CAAC;YACD,OAAO,MAAM,IAAI,CAAC,WAAW,CAAC,GAAG,EAAE,OAAO,CAAC,CAAA;QAC7C,CAAC;QACD,IAAI,QAAQ,CAAC,UAAU,KAAK,GAAG,EAAE,CAAC;YAChC,MAAM,IAAI,GAAG,QAAQ,CAAC,IAAI,EAAE,CAAA;YAC5B,IAAI,eAAe,CAAC,IAAI,CAAC;gBAAE,OAAO,IAAI,CAAA;QACxC,CAAC;QACD,MAAM,KAAK,CAAC,0CAA0C,EAAE;YACtD,QAAQ;SACT,CAAC,CAAA;IACJ,CAAC;IAED,KAAK,CAAC,OAAO,CACX,GAAiB,EACjB,UAAwC,EAAE;QAE1C,UAAU,CAAC,GAAG,EAAE,OAAO,CAAC,CAAA;QAExB,MAAM,CAAC,GAAG,OAAO,GAAG,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAA;QACtD,MAAM,EACJ,MAAM,GAAG,KAAK,EACd,SAAS,EACT,YAAY,GAAG,IAAI,GAAG,EAAE,EACxB,MAAM,EACN,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,OAAO,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,EACxC,oBAAoB,GAAG,IAAI,GAC5B,GAAG,OAAO,CAAA;QACX,IAAI,EAAE,cAAc,EAAE,GAAG,OAAO,CAAA;QAEhC,MAAM,CAAC,GAAG,iBAAiB,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAA;QACxD,MAAM,EAAE,QAAQ,GAAG,CAAC,CAAC,CAAC,EAAE,GAAG,OAAO,CAEjC;QAAC,MAA6B,EAAE,cAAc,EAAE,CAAA;QAEjD,8DAA8D;QAC9D,MAAM,EAAE,MAAM,EAAE,GAAG,CAAC,CAAA;QACpB,MAAM,GAAG,GAAG,GAAG,MAAM,KAAK,KAAK,CAAC,CAAC,CAAC,MAAM,GAAG,GAAG,CAAC,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,CAAA;QACzD,MAAM,MAAM,GACV,QAAQ,CAAC,CAAC;YACR,MAAM,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,EAAE,EAAE,OAAO,EAAE,EAAE,SAAS,EAAE,EAAE,CAAC;YACzD,CAAC,CAAC,SAAS,CAAA;QAEb,MAAM,KAAK,GAAG,MAAM,CAAC,CAAC,CAAC,UAAU,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;QAC5D,IAAI,KAAK,EAAE,KAAK,EAAE,CAAC;YACjB,OAAO,KAAK,CAAA;QACd,CAAC;QAED,IAAI,oBAAoB,IAAI,KAAK,EAAE,oBAAoB,IAAI,CAAC,EAAE,CAAC;YAC7D,6CAA6C;YAC7C,QAAQ,CAAC,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,EAAE,CAAC,EAAE,GAAG,CAAC,CAAA;YAC5C,OAAO,KAAK,CAAA;QACd,CAAC;QAED,2DAA2D;QAC3D,eAAe,CAAC,OAAO,EAAE,KAAK,CAAC,CAAA;QAE/B,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAA;QAE7B,MAAM,CAAC,MAAM,CAAC,OAAO,EAAE;YACrB,IAAI,EAAE,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,GAAG,CAAC,CAAC,MAAM;YAC/C,GAAG,YAAY;SAChB,CAAC,CAAA;QAEF,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC,MAAM,CAAA;QACzB,OAAO,CAAC,OAAO,GAAG,SAAS,CACzB,SAAS,CACP,OAAO,CAAC,OAAO,EACf,iBAAiB,EACjB,4BAA4B,CAC7B,EACD,YAAY,EACZ,SAAS,CACV,CAAA;QACD,IAAI,GAAG,EAAE,CAAC;YACR,OAAO,CAAC,OAAO,GAAG,SAAS,CAAC,OAAO,CAAC,OAAO,EAAE,SAAS,EAAE,GAAG,CAAC,CAAA;QAC9D,CAAC;QACD,IAAI,SAAS,EAAE,CAAC;YACd,OAAO,CAAC,OAAO,GAAG,SAAS,CACzB,OAAO,CAAC,OAAO,EACf,kBAAkB,EAClB,SAAS,CACV,CAAA;QACH,CAAC;QACD,OAAO,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,KAAK,CAAA;QAExC,wCAAwC;QACxC,OAAO,CAAC,OAAO,GAAG,SAAS,CACzB,OAAO,CAAC,OAAO,EACf,eAAe,EACf,MAAM,QAAQ,CAAC,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC,CACtC,CAAA;QAED,IAAI,QAAQ,GAAmC,IAAI,CAAA;QACnD,IAAI,CAAC;YACH,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,OAAO,CACjC,OAAoC,CACrC,CAAA;YACD,qBAAqB;QACvB,CAAC;QAAC,OAAO,EAAE,EAAE,CAAC;YACZ,yCAAyC;YACzC,MAAM,KAAK,CAAC,gBAAgB,EAAE;gBAC5B,IAAI,EAAE,UAAU;gBAChB,KAAK,EAAE,EAAE;gBACT,GAAG;gBACH,MAAM;aACP,CAAC,CAAA;QACJ,CAAC;QACD,oBAAoB;QAEpB,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,eAAe,CACvC,CAAC,EACD,OAAO,EACP,QAAQ,EACR,KAAK,CACN,CAAA;QAED,IAAI,MAAM,CAAC,SAAS,CAAC,WAAW,CAAC,EAAE,CAAC;YAClC,cAAc,GAAG,IAAI,CAAA;QACvB,CAAC;QAED,IAAI,MAAM,CAAC,MAAM,IAAI,CAAC,cAAc,EAAE,CAAC;YACrC,MAAM,CAAC,cAAc,CAAC,EAAE,GAAG,EAAE,CAAC,CAAA;QAChC,CAAC;QACD,IAAI,QAAQ,EAAE,CAAC;YACb,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,EAAE,MAAM,CAAC,MAAM,EAAE,EAAE;gBACnC,SAAS,EAAE,MAAM,CAAC,SAAS;aAC5B,CAAC,CAAA;QACJ,CAAC;QACD,OAAO,MAAM,CAAA;IACf,CAAC;IAED,KAAK,CAAC,eAAe,CACnB,GAAQ,EACR,OAAqC,EACrC,QAAiC,EACjC,KAAkB;QAElB,IAAI,iBAAiB,CAAC,QAAQ,EAAE,KAAK,CAAC;YAAE,OAAO,KAAK,CAAA;QAEpD,IAAI,QAAQ,CAAC,UAAU,KAAK,GAAG,EAAE,CAAC;YAChC,MAAM,aAAa,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,OAAO,EAAE,QAAQ,CAAC,CAAA;YAC7D,IAAI,aAAa;gBAAE,OAAO,MAAM,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,aAAa,CAAC,CAAA;QAClE,CAAC;QAED,MAAM,CAAC,GAAa,EAAE,CAAA;QACtB,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;YAC5D,mCAAmC;YACnC,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;gBACzB,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;gBACvD,oBAAoB;YACtB,CAAC;iBAAM,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;gBACrC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAA;YAC9C,CAAC;QACH,CAAC;QAED,MAAM,EAAE,SAAS,EAAE,cAAc,EAAE,GAAG,OAAO,CAAA;QAC7C,MAAM,MAAM,GAAG,IAAI,UAAU;QAC3B,uDAAuD;QACvD,QAAQ,CAAC,UAAU,IAAI,GAAG,EAC1B,CAAC,EACD;YACE,SAAS;YACT,cAAc;YACd,+BAA+B,EAC7B,IAAI,CAAC,0BAA0B;SAClC,CACF,CAAA;QAED,IAAI,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;YACvB,QAAQ,CAAC,IAAI,CAAC,MAAM,EAAE,CAAA;YACtB,MAAM,CAAC,OAAO,EAAE,WAAW,CAAC,GAAG,QAAQ,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,CAAC,CAAA;YAC7D,IAAI,WAAW,IAAI,OAAO,EAAE,CAAC;gBAC3B,OAAO,MAAM,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,WAAW,CAAC,CAAA;YACjD,CAAC;YACD,OAAO,MAAM,CAAA;QACf,CAAC;QAED,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAa,EAAE,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAA;QAClE,OAAO,MAAM,IAAI,OAAO,CAAa,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;YAChD,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,CAAC,CAAA;YAC9B,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAA;QAC5C,CAAC,CAAC,CAAA;IACJ,CAAC;CACF","sourcesContent":["import { Cache } from '@vltpkg/cache'\nimport { register as cacheUnzipRegister } from '@vltpkg/cache-unzip'\nimport { asError, error } from '@vltpkg/error-cause'\nimport { logRequest } from '@vltpkg/output'\nimport type { Integrity } from '@vltpkg/types'\nimport { urlOpen } from '@vltpkg/url-open'\nimport { XDG } from '@vltpkg/xdg'\nimport { dirname, resolve } from 'node:path'\nimport { setTimeout } from 'node:timers/promises'\nimport { loadPackageJson } from 'package-json-from-dist'\nimport type { Dispatcher } from 'undici'\nimport { Agent, RetryAgent } from 'undici'\nimport { addHeader } from './add-header.ts'\nimport type { Token } from './auth.ts'\nimport {\n  deleteToken,\n  getKC,\n  getToken,\n  isToken,\n  keychains,\n  setToken,\n} from './auth.ts'\nimport type { JSONObj } from './cache-entry.ts'\nimport { CacheEntry } from './cache-entry.ts'\nimport { register } from './cache-revalidate.ts'\nimport { bun, deno, node } from './env.ts'\nimport { handle304Response } from './handle-304-response.ts'\nimport { otplease } from './otplease.ts'\nimport { isRedirect, redirect } from './redirect.ts'\nimport { setCacheHeaders } from './set-cache-headers.ts'\nimport type { TokenResponse } from './token-response.ts'\nimport { isTokenResponse } from './token-response.ts'\nimport type { WebAuthChallenge } from './web-auth-challenge.ts'\nimport { isWebAuthChallenge } from './web-auth-challenge.ts'\nexport {\n  CacheEntry,\n  deleteToken,\n  getKC,\n  isToken,\n  keychains,\n  setToken,\n  type JSONObj,\n  type Token,\n  type TokenResponse,\n  type WebAuthChallenge,\n}\n\nexport type CacheableMethod = 'GET' | 'HEAD'\nexport const isCacheableMethod = (m: unknown): m is CacheableMethod =>\n  m === 'GET' || m === 'HEAD'\n\nexport type RegistryClientOptions = {\n  /**\n   * Path on disk where the cache should be stored\n   *\n   * Defaults to the XDG cache folder for `vlt/registry-client`\n   */\n  cache?: string\n  /**\n   * Number of retries to perform when encountering network errors or\n   * likely-transient errors from git hosts.\n   */\n  'fetch-retries'?: number\n  /** The exponential backoff factor to use when retrying git hosts */\n  'fetch-retry-factor'?: number\n  /** Number of milliseconds before starting first retry */\n  'fetch-retry-mintimeout'?: number\n  /** Maximum number of milliseconds between two retries */\n  'fetch-retry-maxtimeout'?: number\n\n  /** the identity to use for storing auth tokens */\n  identity?: string\n\n  /**\n   * If the server does not serve a `stale-while-revalidate` value in the\n   * `cache-control` header, then this multiplier is applied to the `max-age`\n   * or `s-maxage` values.\n   *\n   * By default, this is `60`, so for example a response that is cacheable for\n   * 5 minutes will allow a stale response while revalidating for up to 5\n   * hours.\n   *\n   * If the server *does* provide a `stale-while-revalidate` value, then that\n   * is always used.\n   *\n   * Set to 0 to prevent any `stale-while-revalidate` behavior unless\n   * explicitly allowed by the server's `cache-control` header.\n   */\n  'stale-while-revalidate-factor'?: number\n}\n\nexport type RegistryClientRequestOptions = Omit<\n  Dispatcher.RequestOptions,\n  'method' | 'path'\n> & {\n  /**\n   * `path` should not be set when using the RegistryClient.\n   * It will be overwritten with the path on the URL being requested.\n   * This only here for compliance with the DispatchOptions base type.\n   * @deprecated\n   */\n  path?: string\n\n  /**\n   * Method is optional, defaults to 'GET'\n   */\n  method?: Dispatcher.DispatchOptions['method']\n  /**\n   * Provide an SRI string to verify integrity of the item being fetched.\n   *\n   * This is only relevant when it must make a request to the registry. Once in\n   * the local disk cache, items are assumed to be trustworthy.\n   */\n  integrity?: Integrity\n\n  /**\n   * Set to true if the integrity should be trusted implicitly without\n   * a recalculation, for example if it comes from a trusted registry that\n   * also serves the tarball itself.\n   */\n  trustIntegrity?: boolean\n\n  /**\n   * Follow up to 10 redirections by default. Set this to 0 to just return\n   * the 3xx response. If the max redirections are expired, and we still get\n   * a redirection response, then fail the request. Redirection cycles are\n   * always treated as an error.\n   */\n  maxRedirections?: number\n\n  /**\n   * the number of redirections that have already been seen. This is used\n   * internally, and should always start at 0.\n   * @internal\n   */\n  redirections?: Set<string>\n\n  /**\n   * Set to `false` to suppress ANY lookups from cache. This will also\n   * prevent storing the result to the cache.\n   */\n  useCache?: false\n\n  /**\n   * Set to pass an `npm-otp` header on the request.\n   *\n   * This should not be set except by the RegistryClient itself, when\n   * we receive a 401 response with an OTP challenge.\n   * @internal\n   */\n  otp?: string\n\n  /**\n   * Set to false to explicitly prevent `stale-while-revalidate` behavior,\n   * for use in revalidating while stale.\n   * @internal\n   */\n  staleWhileRevalidate?: false\n}\n\nconst { version } = loadPackageJson(\n  import.meta.filename,\n  process.env.__VLT_INTERNAL_REGISTRY_CLIENT_PACKAGE_JSON,\n) as {\n  version: string\n}\n/* c8 ignore start - we do test this, but coverage fails */\nconst nua =\n  (globalThis.navigator as Navigator | undefined)?.userAgent ??\n  (bun ? `Bun/${bun}`\n  : deno ? `Deno/${deno}`\n  : node ? `Node.js/${node}`\n  : '(unknown platform)')\n/* c8 ignore stop */\nexport const userAgent = `@vltpkg/registry-client/${version} ${nua}`\n\nconst agentOptions: Agent.Options = {\n  bodyTimeout: 600_000,\n  headersTimeout: 600_000,\n  keepAliveMaxTimeout: 1_200_000,\n  keepAliveTimeout: 600_000,\n  keepAliveTimeoutThreshold: 30_000,\n  connect: {\n    timeout: 600_000,\n    keepAlive: true,\n    keepAliveInitialDelay: 30_000,\n    sessionTimeout: 600,\n  },\n  connections: 128,\n  pipelining: 10,\n}\n\nconst xdg = new XDG('vlt')\n\nexport class RegistryClient {\n  agent: RetryAgent\n  cache: Cache\n  identity: string\n  staleWhileRevalidateFactor: number\n\n  constructor(options: RegistryClientOptions) {\n    const {\n      cache = xdg.cache(),\n      'fetch-retry-factor': timeoutFactor = 2,\n      'fetch-retry-mintimeout': minTimeout = 0,\n      'fetch-retry-maxtimeout': maxTimeout = 30_000,\n      'fetch-retries': maxRetries = 3,\n      identity = '',\n      'stale-while-revalidate-factor':\n        staleWhileRevalidateFactor = 60,\n    } = options\n    this.identity = identity\n    this.staleWhileRevalidateFactor = staleWhileRevalidateFactor\n    const path = resolve(cache, 'registry-client')\n    this.cache = new Cache({\n      path,\n      onDiskWrite(_path, key, data) {\n        if (CacheEntry.isGzipEntry(data)) {\n          cacheUnzipRegister(path, key)\n        }\n      },\n    })\n    const dispatch = new Agent(agentOptions)\n    this.agent = new RetryAgent(dispatch, {\n      maxRetries,\n      timeoutFactor,\n      minTimeout,\n      maxTimeout,\n      retryAfter: true,\n      errorCodes: [\n        'ECONNREFUSED',\n        'ECONNRESET',\n        'EHOSTDOWN',\n        'ENETDOWN',\n        'ENETUNREACH',\n        'ENOTFOUND',\n        'EPIPE',\n        'UND_ERR_SOCKET',\n      ],\n    })\n  }\n\n  /**\n   * Fetch the entire set of a paginated list of objects\n   */\n  async scroll<T>(\n    url: URL | string,\n    options: RegistryClientRequestOptions = {},\n    seek?: (obj: T) => boolean,\n  ): Promise<T[]> {\n    const resp = await this.request(url, options)\n    const { objects, urls } = resp.json() as {\n      objects: T[]\n      urls: { next?: string }\n    }\n    // if we have more, and haven't found our target, fetch more\n    return urls.next && !(seek && objects.some(seek)) ?\n        objects.concat(await this.scroll<T>(urls.next, options, seek))\n      : objects\n  }\n\n  /**\n   * find a given item in a paginated set\n   */\n  async seek<T>(\n    url: URL | string,\n    seek: (obj: T) => boolean,\n    options: RegistryClientRequestOptions = {},\n  ): Promise<T | undefined> {\n    return (await this.scroll(url, options, seek)).find(seek)\n  }\n\n  /**\n   * Log out from the registry specified, attempting to destroy the\n   * token if the registry supports that endpoint.\n   */\n  async logout(registry: string) {\n    // if we have no token for that registry, nothing to do\n    const tok = await getToken(registry, this.identity)\n    if (!tok) return\n\n    const s = tok.replace(/^(Bearer|Basic) /i, '')\n\n    const tokensUrl = new URL('-/npm/v1/tokens', registry)\n    const record = await this.seek<{\n      key: string\n      token: string\n    }>(tokensUrl, ({ token }) => s.startsWith(token), {\n      useCache: false,\n    }).catch(() => undefined)\n\n    if (record) {\n      const { key } = record\n      await this.request(\n        new URL(`-/npm/v1/tokens/token/${key}`, registry),\n        { useCache: false, method: 'DELETE' },\n      )\n    }\n\n    await deleteToken(registry, this.identity)\n  }\n\n  /**\n   * Log into the registry specified\n   *\n   * Does not return the token or expose it, just saves to the auth keychain\n   * and returns void if it worked. Otherwise, error is raised.\n   */\n  async login(registry: string) {\n    // - make POST to '/-/v1/login'\n    // - include a body of {} and npm-auth-type:web\n    // - get a {doneUrl, loginUrl}\n    // - open the loginUrl\n    // - hang on the doneUrl until done\n    //\n    // if that fails: fall back to couchdb login\n    const webLoginURL = new URL('-/v1/login', registry)\n    const response = await this.request(webLoginURL, {\n      method: 'POST',\n      useCache: false,\n      headers: {\n        'content-type': 'application/json',\n        'npm-auth-type': 'web',\n      },\n      body: '{}',\n    })\n\n    if (response.statusCode === 200) {\n      const challenge = response.json()\n      if (isWebAuthChallenge(challenge)) {\n        const result = await this.webAuthOpener(challenge)\n        await setToken(\n          registry,\n          `Bearer ${result.token}`,\n          this.identity,\n        )\n        return\n      }\n    }\n    /* c8 ignore start */\n    // TODO: fall back to username/password login, and/or couchdb PUT login\n    throw error('Failed to perform web login', { response })\n  }\n  /* c8 ignore stop */\n\n  /**\n   * Given a {@link WebAuthChallenge}, open the `loginUrl` in a browser and\n   * hang on the `doneUrl` until it returns a {@link TokenResponse} object.\n   */\n  async webAuthOpener({ doneUrl, loginUrl }: WebAuthChallenge) {\n    const ac = new AbortController()\n    const { signal } = ac\n    /* c8 ignore start - race condition */\n    const [result] = await Promise.all([\n      this.#checkLogin(doneUrl, { signal }).then(result => {\n        ac.abort()\n        return result\n      }),\n      urlOpen(loginUrl, { signal }).catch((er: unknown) => {\n        if (asError(er).name === 'AbortError') return\n        ac.abort()\n        throw er\n      }),\n    ])\n    /* c8 ignore stop */\n    return result\n  }\n\n  async #checkLogin(\n    url: URL | string,\n    options: RegistryClientRequestOptions = {},\n  ): Promise<TokenResponse> {\n    const response = await this.request(url, {\n      ...options,\n      useCache: false,\n    })\n    const { signal } = options as { signal?: AbortSignal }\n    if (response.statusCode === 202) {\n      const rt = response.getHeader('retry-after')\n      const retryAfter = rt ? Number(rt.toString()) : -1\n      if (retryAfter > 0) {\n        await setTimeout(retryAfter * 1000, null, { signal })\n      }\n      return await this.#checkLogin(url, options)\n    }\n    if (response.statusCode === 200) {\n      const body = response.json()\n      if (isTokenResponse(body)) return body\n    }\n    throw error('Invalid response from web login endpoint', {\n      response,\n    })\n  }\n\n  async request(\n    url: URL | string,\n    options: RegistryClientRequestOptions = {},\n  ): Promise<CacheEntry> {\n    logRequest(url, 'start')\n\n    const u = typeof url === 'string' ? new URL(url) : url\n    const {\n      method = 'GET',\n      integrity,\n      redirections = new Set(),\n      signal,\n      otp = (process.env.VLT_OTP ?? '').trim(),\n      staleWhileRevalidate = true,\n    } = options\n    let { trustIntegrity } = options\n\n    const m = isCacheableMethod(method) ? method : undefined\n    const { useCache = !!m } = options\n\n    ;(signal as AbortSignal | null)?.throwIfAborted()\n\n    // first, try to get from the cache before making any request.\n    const { origin } = u\n    const key = `${method !== 'GET' ? method + ' ' : ''}${u}`\n    const buffer =\n      useCache ?\n        await this.cache.fetch(key, { context: { integrity } })\n      : undefined\n\n    const entry = buffer ? CacheEntry.decode(buffer) : undefined\n    if (entry?.valid) {\n      return entry\n    }\n\n    if (staleWhileRevalidate && entry?.staleWhileRevalidate && m) {\n      // revalidate while returning the stale entry\n      register(dirname(this.cache.path()), m, url)\n      return entry\n    }\n\n    // either no cache entry, or need to revalidate before use.\n    setCacheHeaders(options, entry)\n\n    redirections.add(String(url))\n\n    Object.assign(options, {\n      path: u.pathname.replace(/\\/+$/, '') + u.search,\n      ...agentOptions,\n    })\n\n    options.origin = u.origin\n    options.headers = addHeader(\n      addHeader(\n        options.headers,\n        'accept-encoding',\n        'gzip;q=1.0, identity;q=0.5',\n      ),\n      'user-agent',\n      userAgent,\n    )\n    if (otp) {\n      options.headers = addHeader(options.headers, 'npm-otp', otp)\n    }\n    if (integrity) {\n      options.headers = addHeader(\n        options.headers,\n        'accept-integrity',\n        integrity,\n      )\n    }\n    options.method = options.method ?? 'GET'\n\n    // will remove if we don't have a token.\n    options.headers = addHeader(\n      options.headers,\n      'authorization',\n      await getToken(origin, this.identity),\n    )\n\n    let response: Dispatcher.ResponseData | null = null\n    try {\n      response = await this.agent.request(\n        options as Dispatcher.RequestOptions,\n      )\n      /* c8 ignore start */\n    } catch (er) {\n      // Rethrow so we get a better stack trace\n      throw error('Request failed', {\n        code: 'EREQUEST',\n        cause: er,\n        url,\n        method,\n      })\n    }\n    /* c8 ignore stop */\n\n    const result = await this.#handleResponse(\n      u,\n      options,\n      response,\n      entry,\n    )\n\n    if (result.getHeader('integrity')) {\n      trustIntegrity = true\n    }\n\n    if (result.isGzip && !trustIntegrity) {\n      result.checkIntegrity({ url })\n    }\n    if (useCache) {\n      this.cache.set(key, result.encode(), {\n        integrity: result.integrity,\n      })\n    }\n    return result\n  }\n\n  async #handleResponse(\n    url: URL,\n    options: RegistryClientRequestOptions,\n    response: Dispatcher.ResponseData,\n    entry?: CacheEntry,\n  ): Promise<CacheEntry> {\n    if (handle304Response(response, entry)) return entry\n\n    if (response.statusCode === 401) {\n      const repeatRequest = await otplease(this, options, response)\n      if (repeatRequest) return await this.request(url, repeatRequest)\n    }\n\n    const h: Buffer[] = []\n    for (const [key, value] of Object.entries(response.headers)) {\n      /* c8 ignore start - theoretical */\n      if (Array.isArray(value)) {\n        h.push(Buffer.from(key), Buffer.from(value.join(', ')))\n        /* c8 ignore stop */\n      } else if (typeof value === 'string') {\n        h.push(Buffer.from(key), Buffer.from(value))\n      }\n    }\n\n    const { integrity, trustIntegrity } = options\n    const result = new CacheEntry(\n      /* c8 ignore next - should always have a status code */\n      response.statusCode || 200,\n      h,\n      {\n        integrity,\n        trustIntegrity,\n        'stale-while-revalidate-factor':\n          this.staleWhileRevalidateFactor,\n      },\n    )\n\n    if (isRedirect(result)) {\n      response.body.resume()\n      const [nextURL, nextOptions] = redirect(options, result, url)\n      if (nextOptions && nextURL) {\n        return await this.request(nextURL, nextOptions)\n      }\n      return result\n    }\n\n    response.body.on('data', (chunk: Buffer) => result.addBody(chunk))\n    return await new Promise<CacheEntry>((res, rej) => {\n      response.body.on('error', rej)\n      response.body.on('end', () => res(result))\n    })\n  }\n}\n"]}

package/dist/esm/is-iterable.d.ts

@@ -0,0 +1,2 @@
+export declare const isIterable: <T>(o: unknown) => o is Iterable<T>;
+//# sourceMappingURL=is-iterable.d.ts.map

package/dist/esm/is-iterable.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"is-iterable.d.ts","sourceRoot":"","sources":["../../src/is-iterable.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,UAAU,GAAI,CAAC,KAAK,OAAO,KAAG,CAAC,IAAI,QAAQ,CAAC,CAAC,CACJ,CAAA"}

package/dist/esm/is-iterable.js

@@ -0,0 +1,2 @@
+export const isIterable = (o) => !!o && typeof o === 'object' && Symbol.iterator in o;
+//# sourceMappingURL=is-iterable.js.map

package/dist/esm/is-iterable.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"is-iterable.js","sourceRoot":"","sources":["../../src/is-iterable.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,UAAU,GAAG,CAAI,CAAU,EAAoB,EAAE,CAC5D,CAAC,CAAC,CAAC,IAAI,OAAO,CAAC,KAAK,QAAQ,IAAI,MAAM,CAAC,QAAQ,IAAI,CAAC,CAAA","sourcesContent":["export const isIterable = <T>(o: unknown): o is Iterable<T> =>\n  !!o && typeof o === 'object' && Symbol.iterator in o\n"]}

package/dist/esm/otplease.d.ts

@@ -0,0 +1,4 @@
+import type { Dispatcher } from 'undici';
+import type { RegistryClient, RegistryClientRequestOptions } from './index.ts';
+export declare const otplease: (client: RegistryClient, options: RegistryClientRequestOptions, response: Dispatcher.ResponseData) => Promise<RegistryClientRequestOptions | undefined>;
+//# sourceMappingURL=otplease.d.ts.map

package/dist/esm/otplease.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"otplease.d.ts","sourceRoot":"","sources":["../../src/otplease.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAA;AACxC,OAAO,KAAK,EACV,cAAc,EACd,4BAA4B,EAC7B,MAAM,YAAY,CAAA;AASnB,eAAO,MAAM,QAAQ,WACX,cAAc,WACb,4BAA4B,YAC3B,UAAU,CAAC,YAAY,KAChC,OAAO,CAAC,4BAA4B,GAAG,SAAS,CAuDlD,CAAA"}

package/dist/esm/otplease.js

@@ -0,0 +1,55 @@
+import { error } from '@vltpkg/error-cause';
+import { isWebAuthChallenge } from "./web-auth-challenge.js";
+import { urlOpen } from '@vltpkg/url-open';
+import { createInterface } from 'node:readline/promises';
+const otpChallengeNotice = /^Open ([^ ]+) to use your security key for authentication or enter OTP from your authenticator app/i;
+export const otplease = async (client, options, response) => {
+    const waHeader = String(response.headers['www-authenticate'] ?? '');
+    const wwwAuth = new Set(waHeader ? waHeader.toLowerCase().split(/,\s*/) : []);
+    if (wwwAuth.has('ipaddress')) {
+        throw error('Authorization is not allowed from your ip address', {
+            response,
+        });
+    }
+    if (wwwAuth.has('otp')) {
+        // do a web auth opener to get otp token
+        const challenge = await response.body.json();
+        if (isWebAuthChallenge(challenge)) {
+            return {
+                ...options,
+                otp: (await client.webAuthOpener(challenge)).token,
+            };
+        }
+        else {
+            const { 'npm-notice': npmNotice } = response.headers;
+            if (npmNotice) {
+                const n = String(npmNotice);
+                const match = otpChallengeNotice.exec(n);
+                if (match) {
+                    void urlOpen(match[1]);
+                    const otp = await createInterface({
+                        input: process.stdin,
+                        output: process.stdout,
+                    }).question(n);
+                    return { ...options, otp };
+                }
+            }
+            throw error('Unrecognized OTP authentication challenge', {
+                response,
+            });
+        }
+    }
+    if (wwwAuth.size) {
+        throw error('Unknown authentication challenge', { response });
+    }
+    // see if the body is prompting for otp
+    const text = await response.body.text();
+    if (text.toLowerCase().includes('one-time pass')) {
+        const otp = await createInterface({
+            input: process.stdin,
+            output: process.stdout,
+        }).question(text);
+        return { ...options, otp };
+    }
+};
+//# sourceMappingURL=otplease.js.map

package/dist/esm/otplease.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"otplease.js","sourceRoot":"","sources":["../../src/otplease.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,qBAAqB,CAAA;AAM3C,OAAO,EAAE,kBAAkB,EAAE,MAAM,yBAAyB,CAAA;AAE5D,OAAO,EAAE,OAAO,EAAE,MAAM,kBAAkB,CAAA;AAC1C,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAA;AAExD,MAAM,kBAAkB,GACtB,qGAAqG,CAAA;AAEvG,MAAM,CAAC,MAAM,QAAQ,GAAG,KAAK,EAC3B,MAAsB,EACtB,OAAqC,EACrC,QAAiC,EACkB,EAAE;IACrD,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,kBAAkB,CAAC,IAAI,EAAE,CAAC,CAAA;IACnE,MAAM,OAAO,GAAG,IAAI,GAAG,CACrB,QAAQ,CAAC,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,EAAE,CACrD,CAAA;IAED,IAAI,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC,EAAE,CAAC;QAC7B,MAAM,KAAK,CAAC,mDAAmD,EAAE;YAC/D,QAAQ;SACT,CAAC,CAAA;IACJ,CAAC;IAED,IAAI,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;QACvB,wCAAwC;QACxC,MAAM,SAAS,GAAG,MAAM,QAAQ,CAAC,IAAI,CAAC,IAAI,EAAE,CAAA;QAC5C,IAAI,kBAAkB,CAAC,SAAS,CAAC,EAAE,CAAC;YAClC,OAAO;gBACL,GAAG,OAAO;gBACV,GAAG,EAAE,CAAC,MAAM,MAAM,CAAC,aAAa,CAAC,SAAS,CAAC,CAAC,CAAC,KAAK;aACnD,CAAA;QACH,CAAC;aAAM,CAAC;YACN,MAAM,EAAE,YAAY,EAAE,SAAS,EAAE,GAAG,QAAQ,CAAC,OAAO,CAAA;YACpD,IAAI,SAAS,EAAE,CAAC;gBACd,MAAM,CAAC,GAAG,MAAM,CAAC,SAAS,CAAC,CAAA;gBAC3B,MAAM,KAAK,GAAG,kBAAkB,CAAC,IAAI,CAAC,CAAC,CAEnB,CAAA;gBACpB,IAAI,KAAK,EAAE,CAAC;oBACV,KAAK,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAA;oBACtB,MAAM,GAAG,GAAG,MAAM,eAAe,CAAC;wBAChC,KAAK,EAAE,OAAO,CAAC,KAAK;wBACpB,MAAM,EAAE,OAAO,CAAC,MAAM;qBACvB,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAA;oBACd,OAAO,EAAE,GAAG,OAAO,EAAE,GAAG,EAAE,CAAA;gBAC5B,CAAC;YACH,CAAC;YACD,MAAM,KAAK,CAAC,2CAA2C,EAAE;gBACvD,QAAQ;aACT,CAAC,CAAA;QACJ,CAAC;IACH,CAAC;IAED,IAAI,OAAO,CAAC,IAAI,EAAE,CAAC;QACjB,MAAM,KAAK,CAAC,kCAAkC,EAAE,EAAE,QAAQ,EAAE,CAAC,CAAA;IAC/D,CAAC;IAED,uCAAuC;IACvC,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,CAAC,IAAI,EAAE,CAAA;IACvC,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,eAAe,CAAC,EAAE,CAAC;QACjD,MAAM,GAAG,GAAG,MAAM,eAAe,CAAC;YAChC,KAAK,EAAE,OAAO,CAAC,KAAK;YACpB,MAAM,EAAE,OAAO,CAAC,MAAM;SACvB,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;QACjB,OAAO,EAAE,GAAG,OAAO,EAAE,GAAG,EAAE,CAAA;IAC5B,CAAC;AACH,CAAC,CAAA","sourcesContent":["import { error } from '@vltpkg/error-cause'\nimport type { Dispatcher } from 'undici'\nimport type {\n  RegistryClient,\n  RegistryClientRequestOptions,\n} from './index.ts'\nimport { isWebAuthChallenge } from './web-auth-challenge.ts'\n\nimport { urlOpen } from '@vltpkg/url-open'\nimport { createInterface } from 'node:readline/promises'\n\nconst otpChallengeNotice =\n  /^Open ([^ ]+) to use your security key for authentication or enter OTP from your authenticator app/i\n\nexport const otplease = async (\n  client: RegistryClient,\n  options: RegistryClientRequestOptions,\n  response: Dispatcher.ResponseData,\n): Promise<RegistryClientRequestOptions | undefined> => {\n  const waHeader = String(response.headers['www-authenticate'] ?? '')\n  const wwwAuth = new Set(\n    waHeader ? waHeader.toLowerCase().split(/,\\s*/) : [],\n  )\n\n  if (wwwAuth.has('ipaddress')) {\n    throw error('Authorization is not allowed from your ip address', {\n      response,\n    })\n  }\n\n  if (wwwAuth.has('otp')) {\n    // do a web auth opener to get otp token\n    const challenge = await response.body.json()\n    if (isWebAuthChallenge(challenge)) {\n      return {\n        ...options,\n        otp: (await client.webAuthOpener(challenge)).token,\n      }\n    } else {\n      const { 'npm-notice': npmNotice } = response.headers\n      if (npmNotice) {\n        const n = String(npmNotice)\n        const match = otpChallengeNotice.exec(n) as\n          | null\n          | [string, string]\n        if (match) {\n          void urlOpen(match[1])\n          const otp = await createInterface({\n            input: process.stdin,\n            output: process.stdout,\n          }).question(n)\n          return { ...options, otp }\n        }\n      }\n      throw error('Unrecognized OTP authentication challenge', {\n        response,\n      })\n    }\n  }\n\n  if (wwwAuth.size) {\n    throw error('Unknown authentication challenge', { response })\n  }\n\n  // see if the body is prompting for otp\n  const text = await response.body.text()\n  if (text.toLowerCase().includes('one-time pass')) {\n    const otp = await createInterface({\n      input: process.stdin,\n      output: process.stdout,\n    }).question(text)\n    return { ...options, otp }\n  }\n}\n"]}

package/dist/esm/raw-header.d.ts

@@ -1,7 +1,7 @@
 /**
  * Give it a key, and it'll return the buffer of that header value
  */
-export declare const getRawHeader: (headers: Buffer[], k: string) => Buffer | undefined;
+export declare const getRawHeader: (headers: Buffer[], k: string) => Buffer<ArrayBufferLike> | undefined;
 /**
  * Give it a key and value, and it'll overwrite or add the header entry
  */

package/dist/esm/raw-header.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"raw-header.d.ts","sourceRoot":"","sources":["../../src/raw-header.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,eAAO,MAAM,YAAY,YAAa,MAAM,EAAE,KAAK,MAAM,uBAYxD,CAAA;AAED;;GAEG;AACH,eAAO,MAAM,YAAY,YACd,MAAM,EAAE,KACd,MAAM,KACN,MAAM,GAAG,MAAM,KACjB,MAAM,EAkBR,CAAA"}
+{"version":3,"file":"raw-header.d.ts","sourceRoot":"","sources":["../../src/raw-header.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,eAAO,MAAM,YAAY,YAAa,MAAM,EAAE,KAAK,MAAM,wCAYxD,CAAA;AAED;;GAEG;AACH,eAAO,MAAM,YAAY,YACd,MAAM,EAAE,KACd,MAAM,KACN,MAAM,GAAG,MAAM,KACjB,MAAM,EAkBR,CAAA"}

package/dist/esm/redirect.d.ts

@@ -1,5 +1,5 @@
-import { CacheEntry } from './cache-entry.js';
-import { RegistryClientRequestOptions } from './index.js';
+import type { CacheEntry } from './cache-entry.ts';
+import type { RegistryClientRequestOptions } from './index.ts';
 export type RedirectStatus = 301 | 302 | 303 | 307 | 308;
 export type RedirectResponse = CacheEntry & {
     statusCode: RedirectStatus;

package/dist/esm/redirect.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"redirect.d.ts","sourceRoot":"","sources":["../../src/redirect.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAA;AAC7C,OAAO,EAAE,4BAA4B,EAAE,MAAM,YAAY,CAAA;AAEzD,MAAM,MAAM,cAAc,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,CAAA;AAIxD,MAAM,MAAM,gBAAgB,GAAG,UAAU,GAAG;IAC1C,UAAU,EAAE,cAAc,CAAA;IAC1B,SAAS,CAAC,GAAG,EAAE,UAAU,GAAG,MAAM,CAAA;CACnC,CAAA;AAED,eAAO,MAAM,UAAU,aACX,UAAU,KACnB,QAAQ,IAAI,gBAE2B,CAAA;AAE1C;;;;;;;;;;;;GAYG;AACH,eAAO,MAAM,QAAQ,YACV,4BAA4B,YAC3B,gBAAgB,QACpB,GAAG,KACR,EAAE,GAAG,CAAC,GAAG,EAAE,4BAA4B,CAwCzC,CAAA"}
+{"version":3,"file":"redirect.d.ts","sourceRoot":"","sources":["../../src/redirect.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAA;AAClD,OAAO,KAAK,EAAE,4BAA4B,EAAE,MAAM,YAAY,CAAA;AAE9D,MAAM,MAAM,cAAc,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,CAAA;AAIxD,MAAM,MAAM,gBAAgB,GAAG,UAAU,GAAG;IAC1C,UAAU,EAAE,cAAc,CAAA;IAC1B,SAAS,CAAC,GAAG,EAAE,UAAU,GAAG,MAAM,CAAA;CACnC,CAAA;AAED,eAAO,MAAM,UAAU,aACX,UAAU,KACnB,QAAQ,IAAI,gBAE2B,CAAA;AAE1C;;;;;;;;;;;;GAYG;AACH,eAAO,MAAM,QAAQ,YACV,4BAA4B,YAC3B,gBAAgB,QACpB,GAAG,KACR,EAAE,GAAG,CAAC,GAAG,EAAE,4BAA4B,CAyCzC,CAAA"}

package/dist/esm/redirect.js

@@ -40,6 +40,7 @@ export const redirect = (options, response, from) => {
         ...options,
         redirections,
     };
+    // eslint-disable-next-line @typescript-eslint/no-deprecated -- thats why we are deleting it
     delete nextOptions.path;
     redirections.add(String(nextURL));
     switch (response.statusCode) {

package/dist/esm/redirect.js.map

@@ -1 +1 @@
-{"version":3,"file":"redirect.js","sourceRoot":"","sources":["../../src/redirect.ts"],"names":[],"mappings":"AAAA,oEAAoE;AAEpE,OAAO,EAAE,KAAK,EAAE,MAAM,qBAAqB,CAAA;AAM3C,MAAM,gBAAgB,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC,CAAA;AAO3D,MAAM,CAAC,MAAM,UAAU,GAAG,CACxB,QAAoB,EACU,EAAE,CAChC,gBAAgB,CAAC,GAAG,CAAC,QAAQ,CAAC,UAAU,CAAC;IACzC,CAAC,CAAC,QAAQ,CAAC,SAAS,CAAC,UAAU,CAAC,EAAE,MAAM,CAAA;AAE1C;;;;;;;;;;;;GAYG;AACH,MAAM,CAAC,MAAM,QAAQ,GAAG,CACtB,OAAqC,EACrC,QAA0B,EAC1B,IAAS,EACiC,EAAE;IAC5C,MAAM,EAAE,YAAY,GAAG,IAAI,GAAG,EAAU,EAAE,eAAe,GAAG,EAAE,EAAE,GAC9D,OAAO,CAAA;IACT,IAAI,eAAe,IAAI,CAAC;QAAE,OAAO,EAAE,CAAA;IACnC,IAAI,YAAY,CAAC,IAAI,IAAI,eAAe,EAAE,CAAC;QACzC,MAAM,KAAK,CAAC,+BAA+B,EAAE;YAC3C,GAAG,EAAE,eAAe;YACpB,KAAK,EAAE,CAAC,GAAG,YAAY,CAAC;YACxB,GAAG,EAAE,IAAI;SACV,CAAC,CAAA;IACJ,CAAC;IACD,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC,CAAA;IACvD,MAAM,OAAO,GAAG,IAAI,GAAG,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAA;IACvC,IAAI,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,EAAE,CAAC;QACtC,MAAM,KAAK,CAAC,4BAA4B,EAAE;YACxC,GAAG,EAAE,eAAe;YACpB,KAAK,EAAE,CAAC,GAAG,YAAY,CAAC;YACxB,GAAG,EAAE,IAAI;SACV,CAAC,CAAA;IACJ,CAAC;IACD,MAAM,WAAW,GAAiC;QAChD,GAAG,OAAO;QACV,YAAY;KACb,CAAA;IACD,OAAO,WAAW,CAAC,IAAI,CAAA;IACvB,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAA;IACjC,QAAQ,QAAQ,CAAC,UAAU,EAAE,CAAC;QAC5B,KAAK,GAAG,CAAC,CAAC,CAAC;YACT,kCAAkC;YAClC,WAAW,CAAC,MAAM,GAAG,KAAK,CAAA;YAC1B,WAAW,CAAC,IAAI,GAAG,SAAS,CAAA;YAC5B,cAAc;QAChB,CAAC;QACD,KAAK,GAAG,CAAC;QACT,KAAK,GAAG,CAAC,CAAC,mDAAmD;QAC7D,KAAK,GAAG,CAAC;QACT,KAAK,GAAG,CAAC,CAAC,CAAC;YACT,OAAO,CAAC,OAAO,EAAE,WAAW,CAAC,CAAA;QAC/B,CAAC;IACH,CAAC;AACH,CAAC,CAAA","sourcesContent":["// given a RegistryClientOptions object, and a redirection response,\n\nimport { error } from '@vltpkg/error-cause'\nimport { CacheEntry } from './cache-entry.js'\nimport { RegistryClientRequestOptions } from './index.js'\n\nexport type RedirectStatus = 301 | 302 | 303 | 307 | 308\n\nconst redirectStatuses = new Set([301, 302, 303, 307, 308])\n\nexport type RedirectResponse = CacheEntry & {\n  statusCode: RedirectStatus\n  getHeader(key: 'location'): Buffer\n}\n\nexport const isRedirect = (\n  response: CacheEntry,\n): response is RedirectResponse =>\n  redirectStatuses.has(response.statusCode) &&\n  !!response.getHeader('location')?.length\n\n/**\n * If this response is allowed to follow the redirect (because max has not\n * been hit, and the new location has not been seen already), then return\n * the [url, options] to use for the subsequent request.\n *\n * Return [] if the response should be returned as-is.\n *\n * Throws an error if maxRedirections is hit or the redirections set already\n * contains the new location.\n *\n * Ensure that the response is in fact a redirection first, by calling\n * {@link isRedirect} on it.\n */\nexport const redirect = (\n  options: RegistryClientRequestOptions,\n  response: RedirectResponse,\n  from: URL,\n): [] | [URL, RegistryClientRequestOptions] => {\n  const { redirections = new Set<string>(), maxRedirections = 10 } =\n    options\n  if (maxRedirections <= 0) return []\n  if (redirections.size >= maxRedirections) {\n    throw error('Maximum redirections exceeded', {\n      max: maxRedirections,\n      found: [...redirections],\n      url: from,\n    })\n  }\n  const location = String(response.getHeader('location'))\n  const nextURL = new URL(location, from)\n  if (redirections.has(String(nextURL))) {\n    throw error('Redirection cycle detected', {\n      max: maxRedirections,\n      found: [...redirections],\n      url: from,\n    })\n  }\n  const nextOptions: RegistryClientRequestOptions = {\n    ...options,\n    redirections,\n  }\n  delete nextOptions.path\n  redirections.add(String(nextURL))\n  switch (response.statusCode) {\n    case 303: {\n      // drop body, change method to GET\n      nextOptions.method = 'GET'\n      nextOptions.body = undefined\n      // fallthrough\n    }\n    case 301:\n    case 302: // some user agents treat as 303, but they're wrong\n    case 307:\n    case 308: {\n      return [nextURL, nextOptions]\n    }\n  }\n}\n"]}
+{"version":3,"file":"redirect.js","sourceRoot":"","sources":["../../src/redirect.ts"],"names":[],"mappings":"AAAA,oEAAoE;AAEpE,OAAO,EAAE,KAAK,EAAE,MAAM,qBAAqB,CAAA;AAM3C,MAAM,gBAAgB,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC,CAAA;AAO3D,MAAM,CAAC,MAAM,UAAU,GAAG,CACxB,QAAoB,EACU,EAAE,CAChC,gBAAgB,CAAC,GAAG,CAAC,QAAQ,CAAC,UAAU,CAAC;IACzC,CAAC,CAAC,QAAQ,CAAC,SAAS,CAAC,UAAU,CAAC,EAAE,MAAM,CAAA;AAE1C;;;;;;;;;;;;GAYG;AACH,MAAM,CAAC,MAAM,QAAQ,GAAG,CACtB,OAAqC,EACrC,QAA0B,EAC1B,IAAS,EACiC,EAAE;IAC5C,MAAM,EAAE,YAAY,GAAG,IAAI,GAAG,EAAU,EAAE,eAAe,GAAG,EAAE,EAAE,GAC9D,OAAO,CAAA;IACT,IAAI,eAAe,IAAI,CAAC;QAAE,OAAO,EAAE,CAAA;IACnC,IAAI,YAAY,CAAC,IAAI,IAAI,eAAe,EAAE,CAAC;QACzC,MAAM,KAAK,CAAC,+BAA+B,EAAE;YAC3C,GAAG,EAAE,eAAe;YACpB,KAAK,EAAE,CAAC,GAAG,YAAY,CAAC;YACxB,GAAG,EAAE,IAAI;SACV,CAAC,CAAA;IACJ,CAAC;IACD,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC,CAAA;IACvD,MAAM,OAAO,GAAG,IAAI,GAAG,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAA;IACvC,IAAI,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,EAAE,CAAC;QACtC,MAAM,KAAK,CAAC,4BAA4B,EAAE;YACxC,GAAG,EAAE,eAAe;YACpB,KAAK,EAAE,CAAC,GAAG,YAAY,CAAC;YACxB,GAAG,EAAE,IAAI;SACV,CAAC,CAAA;IACJ,CAAC;IACD,MAAM,WAAW,GAAiC;QAChD,GAAG,OAAO;QACV,YAAY;KACb,CAAA;IACD,4FAA4F;IAC5F,OAAO,WAAW,CAAC,IAAI,CAAA;IACvB,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAA;IACjC,QAAQ,QAAQ,CAAC,UAAU,EAAE,CAAC;QAC5B,KAAK,GAAG,CAAC,CAAC,CAAC;YACT,kCAAkC;YAClC,WAAW,CAAC,MAAM,GAAG,KAAK,CAAA;YAC1B,WAAW,CAAC,IAAI,GAAG,SAAS,CAAA;YAC5B,cAAc;QAChB,CAAC;QACD,KAAK,GAAG,CAAC;QACT,KAAK,GAAG,CAAC,CAAC,mDAAmD;QAC7D,KAAK,GAAG,CAAC;QACT,KAAK,GAAG,CAAC,CAAC,CAAC;YACT,OAAO,CAAC,OAAO,EAAE,WAAW,CAAC,CAAA;QAC/B,CAAC;IACH,CAAC;AACH,CAAC,CAAA","sourcesContent":["// given a RegistryClientOptions object, and a redirection response,\n\nimport { error } from '@vltpkg/error-cause'\nimport type { CacheEntry } from './cache-entry.ts'\nimport type { RegistryClientRequestOptions } from './index.ts'\n\nexport type RedirectStatus = 301 | 302 | 303 | 307 | 308\n\nconst redirectStatuses = new Set([301, 302, 303, 307, 308])\n\nexport type RedirectResponse = CacheEntry & {\n  statusCode: RedirectStatus\n  getHeader(key: 'location'): Buffer\n}\n\nexport const isRedirect = (\n  response: CacheEntry,\n): response is RedirectResponse =>\n  redirectStatuses.has(response.statusCode) &&\n  !!response.getHeader('location')?.length\n\n/**\n * If this response is allowed to follow the redirect (because max has not\n * been hit, and the new location has not been seen already), then return\n * the [url, options] to use for the subsequent request.\n *\n * Return [] if the response should be returned as-is.\n *\n * Throws an error if maxRedirections is hit or the redirections set already\n * contains the new location.\n *\n * Ensure that the response is in fact a redirection first, by calling\n * {@link isRedirect} on it.\n */\nexport const redirect = (\n  options: RegistryClientRequestOptions,\n  response: RedirectResponse,\n  from: URL,\n): [] | [URL, RegistryClientRequestOptions] => {\n  const { redirections = new Set<string>(), maxRedirections = 10 } =\n    options\n  if (maxRedirections <= 0) return []\n  if (redirections.size >= maxRedirections) {\n    throw error('Maximum redirections exceeded', {\n      max: maxRedirections,\n      found: [...redirections],\n      url: from,\n    })\n  }\n  const location = String(response.getHeader('location'))\n  const nextURL = new URL(location, from)\n  if (redirections.has(String(nextURL))) {\n    throw error('Redirection cycle detected', {\n      max: maxRedirections,\n      found: [...redirections],\n      url: from,\n    })\n  }\n  const nextOptions: RegistryClientRequestOptions = {\n    ...options,\n    redirections,\n  }\n  // eslint-disable-next-line @typescript-eslint/no-deprecated -- thats why we are deleting it\n  delete nextOptions.path\n  redirections.add(String(nextURL))\n  switch (response.statusCode) {\n    case 303: {\n      // drop body, change method to GET\n      nextOptions.method = 'GET'\n      nextOptions.body = undefined\n      // fallthrough\n    }\n    case 301:\n    case 302: // some user agents treat as 303, but they're wrong\n    case 307:\n    case 308: {\n      return [nextURL, nextOptions]\n    }\n  }\n}\n"]}

package/dist/esm/revalidate.d.ts

@@ -0,0 +1,5 @@
+export declare const __CODE_SPLIT_SCRIPT_NAME: string;
+export declare const main: (cache?: string, input?: NodeJS.ReadStream & {
+    fd: 0;
+}) => Promise<void>;
+//# sourceMappingURL=revalidate.d.ts.map

package/dist/esm/revalidate.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"revalidate.d.ts","sourceRoot":"","sources":["../../src/revalidate.ts"],"names":[],"mappings":"AAMA,eAAO,MAAM,wBAAwB,QAAuB,CAAA;AAM5D,eAAO,MAAM,IAAI,WAAkB,MAAM;;mBAuCxC,CAAA"}

package/dist/esm/revalidate.js

@@ -0,0 +1,49 @@
+// This needs to live in the same workspace as the RegistryClient, because
+// otherwise we have a cyclical dependency cycle of dependencies in a cycle,
+// which is even more cyclical than this description describing it.
+import { pathToFileURL } from 'node:url';
+import { RegistryClient } from "./index.js";
+export const __CODE_SPLIT_SCRIPT_NAME = import.meta.filename;
+const isMain = (path) => path === __CODE_SPLIT_SCRIPT_NAME ||
+    path === pathToFileURL(__CODE_SPLIT_SCRIPT_NAME).toString();
+export const main = async (cache, input = process.stdin) => {
+    if (!cache)
+        process.exit(1);
+    const reqs = await new Promise(res => {
+        const chunks = [];
+        let chunkLen = 0;
+        input.on('data', chunk => {
+            chunks.push(chunk);
+            chunkLen += chunk.length;
+        });
+        input.on('end', () => {
+            const reqs = Buffer.concat(chunks, chunkLen)
+                .toString()
+                .split('\0')
+                .filter(i => !!i && (i.startsWith('GET ') || i.startsWith('HEAD ')))
+                .map(i => i.startsWith('GET ') ?
+                ['GET', new URL(i.substring('GET '.length))]
+                : ['HEAD', new URL(i.substring('HEAD '.length))]);
+            res(reqs);
+        });
+    });
+    if (!reqs.length)
+        process.exit(1);
+    const rc = new RegistryClient({ cache });
+    await Promise.all(reqs.map(async ([method, url]) => {
+        await rc.request(url, {
+            method,
+            staleWhileRevalidate: false,
+        });
+    }));
+};
+const g = globalThis;
+if (isMain(g.__VLT_INTERNAL_MAIN ?? process.argv[1])) {
+    process.title = 'vlt-cache-revalidate';
+    // When compiled there can be other leading args supplied by Deno
+    // so always use the last arg unless there are only two which means
+    // no path was supplied.
+    const cacheFolder = process.argv.length === 2 ? undefined : process.argv.at(-1);
+    void main(cacheFolder, process.stdin);
+}
+//# sourceMappingURL=revalidate.js.map

package/dist/esm/revalidate.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"revalidate.js","sourceRoot":"","sources":["../../src/revalidate.ts"],"names":[],"mappings":"AAAA,0EAA0E;AAC1E,4EAA4E;AAC5E,mEAAmE;AACnE,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAA;AACxC,OAAO,EAAE,cAAc,EAAE,MAAM,YAAY,CAAA;AAE3C,MAAM,CAAC,MAAM,wBAAwB,GAAG,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAA;AAE5D,MAAM,MAAM,GAAG,CAAC,IAAa,EAAE,EAAE,CAC/B,IAAI,KAAK,wBAAwB;IACjC,IAAI,KAAK,aAAa,CAAC,wBAAwB,CAAC,CAAC,QAAQ,EAAE,CAAA;AAE7D,MAAM,CAAC,MAAM,IAAI,GAAG,KAAK,EAAE,KAAc,EAAE,KAAK,GAAG,OAAO,CAAC,KAAK,EAAE,EAAE;IAClE,IAAI,CAAC,KAAK;QAAE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;IAC3B,MAAM,IAAI,GAAG,MAAM,IAAI,OAAO,CAA0B,GAAG,CAAC,EAAE;QAC5D,MAAM,MAAM,GAAa,EAAE,CAAA;QAC3B,IAAI,QAAQ,GAAG,CAAC,CAAA;QAChB,KAAK,CAAC,EAAE,CAAC,MAAM,EAAE,KAAK,CAAC,EAAE;YACvB,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;YAClB,QAAQ,IAAI,KAAK,CAAC,MAAM,CAAA;QAC1B,CAAC,CAAC,CAAA;QACF,KAAK,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE;YACnB,MAAM,IAAI,GAA4B,MAAM,CAAC,MAAM,CACjD,MAAM,EACN,QAAQ,CACT;iBACE,QAAQ,EAAE;iBACV,KAAK,CAAC,IAAI,CAAC;iBACX,MAAM,CACL,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAC5D;iBACA,GAAG,CAAC,CAAC,CAAC,EAAE,CACP,CAAC,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC;gBACpB,CAAC,KAAK,EAAE,IAAI,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC;gBAC9C,CAAC,CAAC,CAAC,MAAM,EAAE,IAAI,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CACjD,CAAA;YAEH,GAAG,CAAC,IAAI,CAAC,CAAA;QACX,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,IAAI,CAAC,IAAI,CAAC,MAAM;QAAE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;IACjC,MAAM,EAAE,GAAG,IAAI,cAAc,CAAC,EAAE,KAAK,EAAE,CAAC,CAAA;IACxC,MAAM,OAAO,CAAC,GAAG,CACf,IAAI,CAAC,GAAG,CAAC,KAAK,EAAE,CAAC,MAAM,EAAE,GAAG,CAAC,EAAE,EAAE;QAC/B,MAAM,EAAE,CAAC,OAAO,CAAC,GAAG,EAAE;YACpB,MAAM;YACN,oBAAoB,EAAE,KAAK;SAC5B,CAAC,CAAA;IACJ,CAAC,CAAC,CACH,CAAA;AACH,CAAC,CAAA;AAED,MAAM,CAAC,GAAG,UAET,CAAA;AAED,IAAI,MAAM,CAAC,CAAC,CAAC,mBAAmB,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;IACrD,OAAO,CAAC,KAAK,GAAG,sBAAsB,CAAA;IACtC,iEAAiE;IACjE,mEAAmE;IACnE,wBAAwB;IACxB,MAAM,WAAW,GACf,OAAO,CAAC,IAAI,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAA;IAE7D,KAAK,IAAI,CAAC,WAAW,EAAE,OAAO,CAAC,KAAK,CAAC,CAAA;AACvC,CAAC","sourcesContent":["// This needs to live in the same workspace as the RegistryClient, because\n// otherwise we have a cyclical dependency cycle of dependencies in a cycle,\n// which is even more cyclical than this description describing it.\nimport { pathToFileURL } from 'node:url'\nimport { RegistryClient } from './index.ts'\n\nexport const __CODE_SPLIT_SCRIPT_NAME = import.meta.filename\n\nconst isMain = (path?: string) =>\n  path === __CODE_SPLIT_SCRIPT_NAME ||\n  path === pathToFileURL(__CODE_SPLIT_SCRIPT_NAME).toString()\n\nexport const main = async (cache?: string, input = process.stdin) => {\n  if (!cache) process.exit(1)\n  const reqs = await new Promise<['GET' | 'HEAD', URL][]>(res => {\n    const chunks: Buffer[] = []\n    let chunkLen = 0\n    input.on('data', chunk => {\n      chunks.push(chunk)\n      chunkLen += chunk.length\n    })\n    input.on('end', () => {\n      const reqs: ['GET' | 'HEAD', URL][] = Buffer.concat(\n        chunks,\n        chunkLen,\n      )\n        .toString()\n        .split('\\0')\n        .filter(\n          i => !!i && (i.startsWith('GET ') || i.startsWith('HEAD ')),\n        )\n        .map(i =>\n          i.startsWith('GET ') ?\n            ['GET', new URL(i.substring('GET '.length))]\n          : ['HEAD', new URL(i.substring('HEAD '.length))],\n        )\n\n      res(reqs)\n    })\n  })\n\n  if (!reqs.length) process.exit(1)\n  const rc = new RegistryClient({ cache })\n  await Promise.all(\n    reqs.map(async ([method, url]) => {\n      await rc.request(url, {\n        method,\n        staleWhileRevalidate: false,\n      })\n    }),\n  )\n}\n\nconst g = globalThis as typeof globalThis & {\n  __VLT_INTERNAL_MAIN?: string\n}\n\nif (isMain(g.__VLT_INTERNAL_MAIN ?? process.argv[1])) {\n  process.title = 'vlt-cache-revalidate'\n  // When compiled there can be other leading args supplied by Deno\n  // so always use the last arg unless there are only two which means\n  // no path was supplied.\n  const cacheFolder =\n    process.argv.length === 2 ? undefined : process.argv.at(-1)\n\n  void main(cacheFolder, process.stdin)\n}\n"]}

package/dist/esm/set-cache-headers.d.ts

@@ -1,4 +1,4 @@
-import { CacheEntry } from './cache-entry.js';
-import { RegistryClientRequestOptions } from './index.js';
+import type { CacheEntry } from './cache-entry.ts';
+import type { RegistryClientRequestOptions } from './index.ts';
 export declare const setCacheHeaders: (options: RegistryClientRequestOptions, entry?: CacheEntry) => void;
 //# sourceMappingURL=set-cache-headers.d.ts.map

package/dist/esm/set-cache-headers.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"set-cache-headers.d.ts","sourceRoot":"","sources":["../../src/set-cache-headers.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAA;AAC7C,OAAO,EAAE,4BAA4B,EAAE,MAAM,YAAY,CAAA;AAEzD,eAAO,MAAM,eAAe,YACjB,4BAA4B,UAC7B,UAAU,KACjB,IAqBF,CAAA"}
+{"version":3,"file":"set-cache-headers.d.ts","sourceRoot":"","sources":["../../src/set-cache-headers.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAA;AAClD,OAAO,KAAK,EAAE,4BAA4B,EAAE,MAAM,YAAY,CAAA;AAE9D,eAAO,MAAM,eAAe,YACjB,4BAA4B,UAC7B,UAAU,KACjB,IAqBF,CAAA"}

package/dist/esm/set-cache-headers.js

@@ -1,6 +1,6 @@
 // Set the cache headers on a request options object
 // based on what we know from a CacheEntry
-import { addHeader } from './add-header.js';
+import { addHeader } from "./add-header.js";
 export const setCacheHeaders = (options, entry) => {
     if (!entry)
         return;

package/dist/esm/set-cache-headers.js.map

@@ -1 +1 @@
-{"version":3,"file":"set-cache-headers.js","sourceRoot":"","sources":["../../src/set-cache-headers.ts"],"names":[],"mappings":"AAAA,oDAAoD;AACpD,0CAA0C;AAE1C,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAA;AAI3C,MAAM,CAAC,MAAM,eAAe,GAAG,CAC7B,OAAqC,EACrC,KAAkB,EACZ,EAAE;IACR,IAAI,CAAC,KAAK;QAAE,OAAM;IAClB,MAAM,IAAI,GAAG,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,QAAQ,EAAE,CAAA;IAChD,IAAI,IAAI,EAAE,CAAC;QACT,OAAO,CAAC,OAAO,GAAG,SAAS,CACzB,OAAO,CAAC,OAAO,EACf,eAAe,EACf,IAAI,CACL,CAAA;IACH,CAAC;IAED,MAAM,IAAI,GACR,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,QAAQ,EAAE;QACnC,KAAK,CAAC,SAAS,CAAC,eAAe,CAAC,EAAE,QAAQ,EAAE,CAAA;IAC9C,IAAI,IAAI,EAAE,CAAC;QACT,OAAO,CAAC,OAAO,GAAG,SAAS,CACzB,OAAO,CAAC,OAAO,EACf,mBAAmB,EACnB,IAAI,CACL,CAAA;IACH,CAAC;AACH,CAAC,CAAA","sourcesContent":["// Set the cache headers on a request options object\n// based on what we know from a CacheEntry\n\nimport { addHeader } from './add-header.js'\nimport { CacheEntry } from './cache-entry.js'\nimport { RegistryClientRequestOptions } from './index.js'\n\nexport const setCacheHeaders = (\n  options: RegistryClientRequestOptions,\n  entry?: CacheEntry,\n): void => {\n  if (!entry) return\n  const etag = entry.getHeader('etag')?.toString()\n  if (etag) {\n    options.headers = addHeader(\n      options.headers,\n      'if-none-match',\n      etag,\n    )\n  }\n\n  const date =\n    entry.getHeader('date')?.toString() ??\n    entry.getHeader('last-modified')?.toString()\n  if (date) {\n    options.headers = addHeader(\n      options.headers,\n      'if-modified-since',\n      date,\n    )\n  }\n}\n"]}
+{"version":3,"file":"set-cache-headers.js","sourceRoot":"","sources":["../../src/set-cache-headers.ts"],"names":[],"mappings":"AAAA,oDAAoD;AACpD,0CAA0C;AAE1C,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAA;AAI3C,MAAM,CAAC,MAAM,eAAe,GAAG,CAC7B,OAAqC,EACrC,KAAkB,EACZ,EAAE;IACR,IAAI,CAAC,KAAK;QAAE,OAAM;IAClB,MAAM,IAAI,GAAG,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,QAAQ,EAAE,CAAA;IAChD,IAAI,IAAI,EAAE,CAAC;QACT,OAAO,CAAC,OAAO,GAAG,SAAS,CACzB,OAAO,CAAC,OAAO,EACf,eAAe,EACf,IAAI,CACL,CAAA;IACH,CAAC;IAED,MAAM,IAAI,GACR,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,QAAQ,EAAE;QACnC,KAAK,CAAC,SAAS,CAAC,eAAe,CAAC,EAAE,QAAQ,EAAE,CAAA;IAC9C,IAAI,IAAI,EAAE,CAAC;QACT,OAAO,CAAC,OAAO,GAAG,SAAS,CACzB,OAAO,CAAC,OAAO,EACf,mBAAmB,EACnB,IAAI,CACL,CAAA;IACH,CAAC;AACH,CAAC,CAAA","sourcesContent":["// Set the cache headers on a request options object\n// based on what we know from a CacheEntry\n\nimport { addHeader } from './add-header.ts'\nimport type { CacheEntry } from './cache-entry.ts'\nimport type { RegistryClientRequestOptions } from './index.ts'\n\nexport const setCacheHeaders = (\n  options: RegistryClientRequestOptions,\n  entry?: CacheEntry,\n): void => {\n  if (!entry) return\n  const etag = entry.getHeader('etag')?.toString()\n  if (etag) {\n    options.headers = addHeader(\n      options.headers,\n      'if-none-match',\n      etag,\n    )\n  }\n\n  const date =\n    entry.getHeader('date')?.toString() ??\n    entry.getHeader('last-modified')?.toString()\n  if (date) {\n    options.headers = addHeader(\n      options.headers,\n      'if-modified-since',\n      date,\n    )\n  }\n}\n"]}

package/dist/esm/token-response.d.ts

@@ -0,0 +1,5 @@
+export type TokenResponse = {
+    token: string;
+};
+export declare const isTokenResponse: (b: unknown) => b is TokenResponse;
+//# sourceMappingURL=token-response.d.ts.map

package/dist/esm/token-response.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"token-response.d.ts","sourceRoot":"","sources":["../../src/token-response.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,aAAa,GAAG;IAC1B,KAAK,EAAE,MAAM,CAAA;CACd,CAAA;AAED,eAAO,MAAM,eAAe,MAAO,OAAO,KAAG,CAAC,IAAI,aAIpB,CAAA"}

package/dist/esm/token-response.js

@@ -0,0 +1,5 @@
+export const isTokenResponse = (b) => !!b &&
+    typeof b === 'object' &&
+    typeof b.token === 'string' &&
+    !!b.token;
+//# sourceMappingURL=token-response.js.map

package/dist/esm/token-response.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"token-response.js","sourceRoot":"","sources":["../../src/token-response.ts"],"names":[],"mappings":"AAIA,MAAM,CAAC,MAAM,eAAe,GAAG,CAAC,CAAU,EAAsB,EAAE,CAChE,CAAC,CAAC,CAAC;IACH,OAAO,CAAC,KAAK,QAAQ;IACrB,OAAQ,CAAmB,CAAC,KAAK,KAAK,QAAQ;IAC9C,CAAC,CAAE,CAAmB,CAAC,KAAK,CAAA","sourcesContent":["export type TokenResponse = {\n  token: string\n}\n\nexport const isTokenResponse = (b: unknown): b is TokenResponse =>\n  !!b &&\n  typeof b === 'object' &&\n  typeof (b as TokenResponse).token === 'string' &&\n  !!(b as TokenResponse).token\n"]}

package/dist/esm/web-auth-challenge.d.ts

@@ -0,0 +1,6 @@
+export type WebAuthChallenge = {
+    doneUrl: string;
+    loginUrl: string;
+};
+export declare const isWebAuthChallenge: (o: unknown) => o is WebAuthChallenge;
+//# sourceMappingURL=web-auth-challenge.d.ts.map

package/dist/esm/web-auth-challenge.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"web-auth-challenge.d.ts","sourceRoot":"","sources":["../../src/web-auth-challenge.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,gBAAgB,GAAG;IAC7B,OAAO,EAAE,MAAM,CAAA;IACf,QAAQ,EAAE,MAAM,CAAA;CACjB,CAAA;AAED,eAAO,MAAM,kBAAkB,MAC1B,OAAO,KACT,CAAC,IAAI,gBAM8C,CAAA"}

package/dist/esm/web-auth-challenge.js

@@ -0,0 +1,7 @@
+export const isWebAuthChallenge = (o) => !!o &&
+    typeof o === 'object' &&
+    !!o.doneUrl &&
+    !!o.loginUrl &&
+    typeof o.doneUrl === 'string' &&
+    typeof o.loginUrl === 'string';
+//# sourceMappingURL=web-auth-challenge.js.map

package/dist/esm/web-auth-challenge.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"web-auth-challenge.js","sourceRoot":"","sources":["../../src/web-auth-challenge.ts"],"names":[],"mappings":"AAKA,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAChC,CAAU,EACa,EAAE,CACzB,CAAC,CAAC,CAAC;IACH,OAAO,CAAC,KAAK,QAAQ;IACrB,CAAC,CAAE,CAAsB,CAAC,OAAO;IACjC,CAAC,CAAE,CAAsB,CAAC,QAAQ;IAClC,OAAQ,CAAsB,CAAC,OAAO,KAAK,QAAQ;IACnD,OAAQ,CAAsB,CAAC,QAAQ,KAAK,QAAQ,CAAA","sourcesContent":["export type WebAuthChallenge = {\n  doneUrl: string\n  loginUrl: string\n}\n\nexport const isWebAuthChallenge = (\n  o: unknown,\n): o is WebAuthChallenge =>\n  !!o &&\n  typeof o === 'object' &&\n  !!(o as WebAuthChallenge).doneUrl &&\n  !!(o as WebAuthChallenge).loginUrl &&\n  typeof (o as WebAuthChallenge).doneUrl === 'string' &&\n  typeof (o as WebAuthChallenge).loginUrl === 'string'\n"]}

package/package.json

@@ -1,9 +1,15 @@
 {
   "name": "@vltpkg/registry-client",
   "description": "Fetch package artifacts and metadata from registries",
-  "version": "0.0.0-0.1730239248325",
+  "version": "0.0.0-10",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/vltpkg/vltpkg.git",
+    "directory": "src/registry-client"
+  },
   "tshy": {
     "selfLink": false,
+    "liveDev": true,
     "dialects": [
       "esm"
     ],
@@ -14,29 +20,32 @@
     }
   },
   "dependencies": {
-    "cache-control-parser": "^2.0.5",
-    "package-json-from-dist": "^1.0.0",
-    "undici": "^6.20.0",
-    "@vltpkg/cache": "0.0.0-0.1730239248325",
-    "@vltpkg/cache-unzip": "0.0.0-0.1730239248325",
-    "@vltpkg/error-cause": "0.0.0-0.1730239248325",
-    "@vltpkg/types": "0.0.0-0.1730239248325",
-    "@vltpkg/xdg": "0.0.0-0.1730239248325"
+    "cache-control-parser": "^2.0.6",
+    "package-json-from-dist": "^1.0.1",
+    "undici": "^7.8.0",
+    "@vltpkg/cache": "0.0.0-10",
+    "@vltpkg/cache-unzip": "0.0.0-10",
+    "@vltpkg/error-cause": "0.0.0-10",
+    "@vltpkg/output": "0.0.0-10",
+    "@vltpkg/url-open": "0.0.0-10",
+    "@vltpkg/keychain": "0.0.0-10",
+    "@vltpkg/types": "0.0.0-10",
+    "@vltpkg/xdg": "0.0.0-10"
   },
   "devDependencies": {
-    "@eslint/js": "^9.8.0",
-    "@types/eslint__js": "^8.42.3",
-    "@types/node": "^22.4.1",
-    "eslint": "^9.8.0",
-    "prettier": "^3.3.2",
-    "tap": "^21.0.1",
+    "@eslint/js": "^9.25.0",
+    "@types/node": "^22.14.1",
+    "eslint": "^9.25.0",
+    "prettier": "^3.5.3",
+    "tap": "^21.1.0",
     "tshy": "^3.0.2",
-    "typescript": "^5.5.4",
-    "typescript-eslint": "^8.0.1"
+    "typedoc": "~0.27.6",
+    "typescript": "5.7.3",
+    "typescript-eslint": "^8.30.1"
   },
   "license": "BSD-2-Clause-Patent",
   "engines": {
-    "node": "20 || >=22"
+    "node": ">=22"
   },
   "tap": {
     "extends": "../../tap-config.yaml"
@@ -67,9 +76,9 @@
     "format:check": "prettier --check . --ignore-path ../../.prettierignore --cache",
     "lint": "eslint . --fix",
     "lint:check": "eslint .",
-    "presnap": "tshy",
     "snap": "tap",
-    "pretest": "tshy",
-    "test": "tap"
+    "test": "tap",
+    "posttest": "tsc --noEmit",
+    "typecheck": "tsc --noEmit"
   }
 }

package/dist/esm/serdes.d.ts

@@ -1,15 +0,0 @@
-/**
- * This tiny module abstracts out the v8-specific serialization mechanism,
- * so that we can swap out based on platform.
- *
- * Bun, Deno, and Node all export serialize/deserialize from the `node:v8`
- * built-in module, but only Deno and Node are v8, Bun uses JSC's wire format.
- *
- * Any change to the serialization format is a semver-major change,
- * but not every major-version bump is a serialization change. So, this is
- * somewhat more conservative than necessary, but saves us having to track
- * which major versions changed the serialization wire format.
- */
-export declare const serializedHeader: string | undefined;
-export { deserialize, serialize } from 'node:v8';
-//# sourceMappingURL=serdes.d.ts.map

package/dist/esm/serdes.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"serdes.d.ts","sourceRoot":"","sources":["../../src/serdes.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAKH,eAAO,MAAM,gBAAgB,oBAGhB,CAAA;AAEb,OAAO,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,SAAS,CAAA"}

package/dist/esm/serdes.js

@@ -1,19 +0,0 @@
-/**
- * This tiny module abstracts out the v8-specific serialization mechanism,
- * so that we can swap out based on platform.
- *
- * Bun, Deno, and Node all export serialize/deserialize from the `node:v8`
- * built-in module, but only Deno and Node are v8, Bun uses JSC's wire format.
- *
- * Any change to the serialization format is a semver-major change,
- * but not every major-version bump is a serialization change. So, this is
- * somewhat more conservative than necessary, but saves us having to track
- * which major versions changed the serialization wire format.
- */
-import { engine } from './env.js';
-// these aren't used if we couldn't determine the engine type & version
-export const serializedHeader = engine ?
-    `${engine.name}-serialize-${parseInt(engine.version.replace(/[^0-9]/g, ' ').trim(), 10)}`
-    : undefined;
-export { deserialize, serialize } from 'node:v8';
-//# sourceMappingURL=serdes.js.map

package/dist/esm/serdes.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"serdes.js","sourceRoot":"","sources":["../../src/serdes.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,EAAE,MAAM,EAAE,MAAM,UAAU,CAAA;AAEjC,uEAAuE;AACvE,MAAM,CAAC,MAAM,gBAAgB,GAC3B,MAAM,CAAC,CAAC;IACN,GAAG,MAAM,CAAC,IAAI,cAAc,QAAQ,CAAC,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,EAAE,CAAC,EAAE;IAC3F,CAAC,CAAC,SAAS,CAAA;AAEb,OAAO,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,SAAS,CAAA","sourcesContent":["/**\n * This tiny module abstracts out the v8-specific serialization mechanism,\n * so that we can swap out based on platform.\n *\n * Bun, Deno, and Node all export serialize/deserialize from the `node:v8`\n * built-in module, but only Deno and Node are v8, Bun uses JSC's wire format.\n *\n * Any change to the serialization format is a semver-major change,\n * but not every major-version bump is a serialization change. So, this is\n * somewhat more conservative than necessary, but saves us having to track\n * which major versions changed the serialization wire format.\n */\n\nimport { engine } from './env.js'\n\n// these aren't used if we couldn't determine the engine type & version\nexport const serializedHeader =\n  engine ?\n    `${engine.name}-serialize-${parseInt(engine.version.replace(/[^0-9]/g, ' ').trim(), 10)}`\n  : undefined\n\nexport { deserialize, serialize } from 'node:v8'\n"]}