@vltpkg/registry-client 0.0.0-0.1730724342581 → 0.0.0-10

package/dist/esm/otplease.d.ts

@@ -0,0 +1,4 @@
+import type { Dispatcher } from 'undici';
+import type { RegistryClient, RegistryClientRequestOptions } from './index.ts';
+export declare const otplease: (client: RegistryClient, options: RegistryClientRequestOptions, response: Dispatcher.ResponseData) => Promise<RegistryClientRequestOptions | undefined>;
+//# sourceMappingURL=otplease.d.ts.map

package/dist/esm/otplease.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"otplease.d.ts","sourceRoot":"","sources":["../../src/otplease.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAA;AACxC,OAAO,KAAK,EACV,cAAc,EACd,4BAA4B,EAC7B,MAAM,YAAY,CAAA;AASnB,eAAO,MAAM,QAAQ,WACX,cAAc,WACb,4BAA4B,YAC3B,UAAU,CAAC,YAAY,KAChC,OAAO,CAAC,4BAA4B,GAAG,SAAS,CAuDlD,CAAA"}

package/dist/esm/otplease.js

@@ -0,0 +1,55 @@
+import { error } from '@vltpkg/error-cause';
+import { isWebAuthChallenge } from "./web-auth-challenge.js";
+import { urlOpen } from '@vltpkg/url-open';
+import { createInterface } from 'node:readline/promises';
+const otpChallengeNotice = /^Open ([^ ]+) to use your security key for authentication or enter OTP from your authenticator app/i;
+export const otplease = async (client, options, response) => {
+    const waHeader = String(response.headers['www-authenticate'] ?? '');
+    const wwwAuth = new Set(waHeader ? waHeader.toLowerCase().split(/,\s*/) : []);
+    if (wwwAuth.has('ipaddress')) {
+        throw error('Authorization is not allowed from your ip address', {
+            response,
+        });
+    }
+    if (wwwAuth.has('otp')) {
+        // do a web auth opener to get otp token
+        const challenge = await response.body.json();
+        if (isWebAuthChallenge(challenge)) {
+            return {
+                ...options,
+                otp: (await client.webAuthOpener(challenge)).token,
+            };
+        }
+        else {
+            const { 'npm-notice': npmNotice } = response.headers;
+            if (npmNotice) {
+                const n = String(npmNotice);
+                const match = otpChallengeNotice.exec(n);
+                if (match) {
+                    void urlOpen(match[1]);
+                    const otp = await createInterface({
+                        input: process.stdin,
+                        output: process.stdout,
+                    }).question(n);
+                    return { ...options, otp };
+                }
+            }
+            throw error('Unrecognized OTP authentication challenge', {
+                response,
+            });
+        }
+    }
+    if (wwwAuth.size) {
+        throw error('Unknown authentication challenge', { response });
+    }
+    // see if the body is prompting for otp
+    const text = await response.body.text();
+    if (text.toLowerCase().includes('one-time pass')) {
+        const otp = await createInterface({
+            input: process.stdin,
+            output: process.stdout,
+        }).question(text);
+        return { ...options, otp };
+    }
+};
+//# sourceMappingURL=otplease.js.map

package/dist/esm/otplease.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"otplease.js","sourceRoot":"","sources":["../../src/otplease.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,qBAAqB,CAAA;AAM3C,OAAO,EAAE,kBAAkB,EAAE,MAAM,yBAAyB,CAAA;AAE5D,OAAO,EAAE,OAAO,EAAE,MAAM,kBAAkB,CAAA;AAC1C,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAA;AAExD,MAAM,kBAAkB,GACtB,qGAAqG,CAAA;AAEvG,MAAM,CAAC,MAAM,QAAQ,GAAG,KAAK,EAC3B,MAAsB,EACtB,OAAqC,EACrC,QAAiC,EACkB,EAAE;IACrD,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,kBAAkB,CAAC,IAAI,EAAE,CAAC,CAAA;IACnE,MAAM,OAAO,GAAG,IAAI,GAAG,CACrB,QAAQ,CAAC,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,EAAE,CACrD,CAAA;IAED,IAAI,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC,EAAE,CAAC;QAC7B,MAAM,KAAK,CAAC,mDAAmD,EAAE;YAC/D,QAAQ;SACT,CAAC,CAAA;IACJ,CAAC;IAED,IAAI,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;QACvB,wCAAwC;QACxC,MAAM,SAAS,GAAG,MAAM,QAAQ,CAAC,IAAI,CAAC,IAAI,EAAE,CAAA;QAC5C,IAAI,kBAAkB,CAAC,SAAS,CAAC,EAAE,CAAC;YAClC,OAAO;gBACL,GAAG,OAAO;gBACV,GAAG,EAAE,CAAC,MAAM,MAAM,CAAC,aAAa,CAAC,SAAS,CAAC,CAAC,CAAC,KAAK;aACnD,CAAA;QACH,CAAC;aAAM,CAAC;YACN,MAAM,EAAE,YAAY,EAAE,SAAS,EAAE,GAAG,QAAQ,CAAC,OAAO,CAAA;YACpD,IAAI,SAAS,EAAE,CAAC;gBACd,MAAM,CAAC,GAAG,MAAM,CAAC,SAAS,CAAC,CAAA;gBAC3B,MAAM,KAAK,GAAG,kBAAkB,CAAC,IAAI,CAAC,CAAC,CAEnB,CAAA;gBACpB,IAAI,KAAK,EAAE,CAAC;oBACV,KAAK,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAA;oBACtB,MAAM,GAAG,GAAG,MAAM,eAAe,CAAC;wBAChC,KAAK,EAAE,OAAO,CAAC,KAAK;wBACpB,MAAM,EAAE,OAAO,CAAC,MAAM;qBACvB,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAA;oBACd,OAAO,EAAE,GAAG,OAAO,EAAE,GAAG,EAAE,CAAA;gBAC5B,CAAC;YACH,CAAC;YACD,MAAM,KAAK,CAAC,2CAA2C,EAAE;gBACvD,QAAQ;aACT,CAAC,CAAA;QACJ,CAAC;IACH,CAAC;IAED,IAAI,OAAO,CAAC,IAAI,EAAE,CAAC;QACjB,MAAM,KAAK,CAAC,kCAAkC,EAAE,EAAE,QAAQ,EAAE,CAAC,CAAA;IAC/D,CAAC;IAED,uCAAuC;IACvC,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,CAAC,IAAI,EAAE,CAAA;IACvC,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,eAAe,CAAC,EAAE,CAAC;QACjD,MAAM,GAAG,GAAG,MAAM,eAAe,CAAC;YAChC,KAAK,EAAE,OAAO,CAAC,KAAK;YACpB,MAAM,EAAE,OAAO,CAAC,MAAM;SACvB,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;QACjB,OAAO,EAAE,GAAG,OAAO,EAAE,GAAG,EAAE,CAAA;IAC5B,CAAC;AACH,CAAC,CAAA","sourcesContent":["import { error } from '@vltpkg/error-cause'\nimport type { Dispatcher } from 'undici'\nimport type {\n  RegistryClient,\n  RegistryClientRequestOptions,\n} from './index.ts'\nimport { isWebAuthChallenge } from './web-auth-challenge.ts'\n\nimport { urlOpen } from '@vltpkg/url-open'\nimport { createInterface } from 'node:readline/promises'\n\nconst otpChallengeNotice =\n  /^Open ([^ ]+) to use your security key for authentication or enter OTP from your authenticator app/i\n\nexport const otplease = async (\n  client: RegistryClient,\n  options: RegistryClientRequestOptions,\n  response: Dispatcher.ResponseData,\n): Promise<RegistryClientRequestOptions | undefined> => {\n  const waHeader = String(response.headers['www-authenticate'] ?? '')\n  const wwwAuth = new Set(\n    waHeader ? waHeader.toLowerCase().split(/,\\s*/) : [],\n  )\n\n  if (wwwAuth.has('ipaddress')) {\n    throw error('Authorization is not allowed from your ip address', {\n      response,\n    })\n  }\n\n  if (wwwAuth.has('otp')) {\n    // do a web auth opener to get otp token\n    const challenge = await response.body.json()\n    if (isWebAuthChallenge(challenge)) {\n      return {\n        ...options,\n        otp: (await client.webAuthOpener(challenge)).token,\n      }\n    } else {\n      const { 'npm-notice': npmNotice } = response.headers\n      if (npmNotice) {\n        const n = String(npmNotice)\n        const match = otpChallengeNotice.exec(n) as\n          | null\n          | [string, string]\n        if (match) {\n          void urlOpen(match[1])\n          const otp = await createInterface({\n            input: process.stdin,\n            output: process.stdout,\n          }).question(n)\n          return { ...options, otp }\n        }\n      }\n      throw error('Unrecognized OTP authentication challenge', {\n        response,\n      })\n    }\n  }\n\n  if (wwwAuth.size) {\n    throw error('Unknown authentication challenge', { response })\n  }\n\n  // see if the body is prompting for otp\n  const text = await response.body.text()\n  if (text.toLowerCase().includes('one-time pass')) {\n    const otp = await createInterface({\n      input: process.stdin,\n      output: process.stdout,\n    }).question(text)\n    return { ...options, otp }\n  }\n}\n"]}

package/dist/esm/raw-header.d.ts

@@ -1,7 +1,7 @@
 /**
  * Give it a key, and it'll return the buffer of that header value
  */
-export declare const getRawHeader: (headers: Buffer[], k: string) => Buffer | undefined;
+export declare const getRawHeader: (headers: Buffer[], k: string) => Buffer<ArrayBufferLike> | undefined;
 /**
  * Give it a key and value, and it'll overwrite or add the header entry
  */

package/dist/esm/raw-header.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"raw-header.d.ts","sourceRoot":"","sources":["../../src/raw-header.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,eAAO,MAAM,YAAY,YAAa,MAAM,EAAE,KAAK,MAAM,uBAYxD,CAAA;AAED;;GAEG;AACH,eAAO,MAAM,YAAY,YACd,MAAM,EAAE,KACd,MAAM,KACN,MAAM,GAAG,MAAM,KACjB,MAAM,EAkBR,CAAA"}
+{"version":3,"file":"raw-header.d.ts","sourceRoot":"","sources":["../../src/raw-header.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,eAAO,MAAM,YAAY,YAAa,MAAM,EAAE,KAAK,MAAM,wCAYxD,CAAA;AAED;;GAEG;AACH,eAAO,MAAM,YAAY,YACd,MAAM,EAAE,KACd,MAAM,KACN,MAAM,GAAG,MAAM,KACjB,MAAM,EAkBR,CAAA"}

package/dist/esm/redirect.d.ts

@@ -1,5 +1,5 @@
-import { type CacheEntry } from './cache-entry.js';
-import { type RegistryClientRequestOptions } from './index.js';
+import type { CacheEntry } from './cache-entry.ts';
+import type { RegistryClientRequestOptions } from './index.ts';
 export type RedirectStatus = 301 | 302 | 303 | 307 | 308;
 export type RedirectResponse = CacheEntry & {
     statusCode: RedirectStatus;

package/dist/esm/redirect.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"redirect.d.ts","sourceRoot":"","sources":["../../src/redirect.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,KAAK,UAAU,EAAE,MAAM,kBAAkB,CAAA;AAClD,OAAO,EAAE,KAAK,4BAA4B,EAAE,MAAM,YAAY,CAAA;AAE9D,MAAM,MAAM,cAAc,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,CAAA;AAIxD,MAAM,MAAM,gBAAgB,GAAG,UAAU,GAAG;IAC1C,UAAU,EAAE,cAAc,CAAA;IAC1B,SAAS,CAAC,GAAG,EAAE,UAAU,GAAG,MAAM,CAAA;CACnC,CAAA;AAED,eAAO,MAAM,UAAU,aACX,UAAU,KACnB,QAAQ,IAAI,gBAE2B,CAAA;AAE1C;;;;;;;;;;;;GAYG;AACH,eAAO,MAAM,QAAQ,YACV,4BAA4B,YAC3B,gBAAgB,QACpB,GAAG,KACR,EAAE,GAAG,CAAC,GAAG,EAAE,4BAA4B,CAwCzC,CAAA"}
+{"version":3,"file":"redirect.d.ts","sourceRoot":"","sources":["../../src/redirect.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAA;AAClD,OAAO,KAAK,EAAE,4BAA4B,EAAE,MAAM,YAAY,CAAA;AAE9D,MAAM,MAAM,cAAc,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,CAAA;AAIxD,MAAM,MAAM,gBAAgB,GAAG,UAAU,GAAG;IAC1C,UAAU,EAAE,cAAc,CAAA;IAC1B,SAAS,CAAC,GAAG,EAAE,UAAU,GAAG,MAAM,CAAA;CACnC,CAAA;AAED,eAAO,MAAM,UAAU,aACX,UAAU,KACnB,QAAQ,IAAI,gBAE2B,CAAA;AAE1C;;;;;;;;;;;;GAYG;AACH,eAAO,MAAM,QAAQ,YACV,4BAA4B,YAC3B,gBAAgB,QACpB,GAAG,KACR,EAAE,GAAG,CAAC,GAAG,EAAE,4BAA4B,CAyCzC,CAAA"}

package/dist/esm/redirect.js

@@ -40,6 +40,7 @@ export const redirect = (options, response, from) => {
         ...options,
         redirections,
     };
+    // eslint-disable-next-line @typescript-eslint/no-deprecated -- thats why we are deleting it
     delete nextOptions.path;
     redirections.add(String(nextURL));
     switch (response.statusCode) {

package/dist/esm/redirect.js.map

@@ -1 +1 @@
-{"version":3,"file":"redirect.js","sourceRoot":"","sources":["../../src/redirect.ts"],"names":[],"mappings":"AAAA,oEAAoE;AAEpE,OAAO,EAAE,KAAK,EAAE,MAAM,qBAAqB,CAAA;AAM3C,MAAM,gBAAgB,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC,CAAA;AAO3D,MAAM,CAAC,MAAM,UAAU,GAAG,CACxB,QAAoB,EACU,EAAE,CAChC,gBAAgB,CAAC,GAAG,CAAC,QAAQ,CAAC,UAAU,CAAC;IACzC,CAAC,CAAC,QAAQ,CAAC,SAAS,CAAC,UAAU,CAAC,EAAE,MAAM,CAAA;AAE1C;;;;;;;;;;;;GAYG;AACH,MAAM,CAAC,MAAM,QAAQ,GAAG,CACtB,OAAqC,EACrC,QAA0B,EAC1B,IAAS,EACiC,EAAE;IAC5C,MAAM,EAAE,YAAY,GAAG,IAAI,GAAG,EAAU,EAAE,eAAe,GAAG,EAAE,EAAE,GAC9D,OAAO,CAAA;IACT,IAAI,eAAe,IAAI,CAAC;QAAE,OAAO,EAAE,CAAA;IACnC,IAAI,YAAY,CAAC,IAAI,IAAI,eAAe,EAAE,CAAC;QACzC,MAAM,KAAK,CAAC,+BAA+B,EAAE;YAC3C,GAAG,EAAE,eAAe;YACpB,KAAK,EAAE,CAAC,GAAG,YAAY,CAAC;YACxB,GAAG,EAAE,IAAI;SACV,CAAC,CAAA;IACJ,CAAC;IACD,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC,CAAA;IACvD,MAAM,OAAO,GAAG,IAAI,GAAG,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAA;IACvC,IAAI,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,EAAE,CAAC;QACtC,MAAM,KAAK,CAAC,4BAA4B,EAAE;YACxC,GAAG,EAAE,eAAe;YACpB,KAAK,EAAE,CAAC,GAAG,YAAY,CAAC;YACxB,GAAG,EAAE,IAAI;SACV,CAAC,CAAA;IACJ,CAAC;IACD,MAAM,WAAW,GAAiC;QAChD,GAAG,OAAO;QACV,YAAY;KACb,CAAA;IACD,OAAO,WAAW,CAAC,IAAI,CAAA;IACvB,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAA;IACjC,QAAQ,QAAQ,CAAC,UAAU,EAAE,CAAC;QAC5B,KAAK,GAAG,CAAC,CAAC,CAAC;YACT,kCAAkC;YAClC,WAAW,CAAC,MAAM,GAAG,KAAK,CAAA;YAC1B,WAAW,CAAC,IAAI,GAAG,SAAS,CAAA;YAC5B,cAAc;QAChB,CAAC;QACD,KAAK,GAAG,CAAC;QACT,KAAK,GAAG,CAAC,CAAC,mDAAmD;QAC7D,KAAK,GAAG,CAAC;QACT,KAAK,GAAG,CAAC,CAAC,CAAC;YACT,OAAO,CAAC,OAAO,EAAE,WAAW,CAAC,CAAA;QAC/B,CAAC;IACH,CAAC;AACH,CAAC,CAAA","sourcesContent":["// given a RegistryClientOptions object, and a redirection response,\n\nimport { error } from '@vltpkg/error-cause'\nimport { type CacheEntry } from './cache-entry.js'\nimport { type RegistryClientRequestOptions } from './index.js'\n\nexport type RedirectStatus = 301 | 302 | 303 | 307 | 308\n\nconst redirectStatuses = new Set([301, 302, 303, 307, 308])\n\nexport type RedirectResponse = CacheEntry & {\n  statusCode: RedirectStatus\n  getHeader(key: 'location'): Buffer\n}\n\nexport const isRedirect = (\n  response: CacheEntry,\n): response is RedirectResponse =>\n  redirectStatuses.has(response.statusCode) &&\n  !!response.getHeader('location')?.length\n\n/**\n * If this response is allowed to follow the redirect (because max has not\n * been hit, and the new location has not been seen already), then return\n * the [url, options] to use for the subsequent request.\n *\n * Return [] if the response should be returned as-is.\n *\n * Throws an error if maxRedirections is hit or the redirections set already\n * contains the new location.\n *\n * Ensure that the response is in fact a redirection first, by calling\n * {@link isRedirect} on it.\n */\nexport const redirect = (\n  options: RegistryClientRequestOptions,\n  response: RedirectResponse,\n  from: URL,\n): [] | [URL, RegistryClientRequestOptions] => {\n  const { redirections = new Set<string>(), maxRedirections = 10 } =\n    options\n  if (maxRedirections <= 0) return []\n  if (redirections.size >= maxRedirections) {\n    throw error('Maximum redirections exceeded', {\n      max: maxRedirections,\n      found: [...redirections],\n      url: from,\n    })\n  }\n  const location = String(response.getHeader('location'))\n  const nextURL = new URL(location, from)\n  if (redirections.has(String(nextURL))) {\n    throw error('Redirection cycle detected', {\n      max: maxRedirections,\n      found: [...redirections],\n      url: from,\n    })\n  }\n  const nextOptions: RegistryClientRequestOptions = {\n    ...options,\n    redirections,\n  }\n  delete nextOptions.path\n  redirections.add(String(nextURL))\n  switch (response.statusCode) {\n    case 303: {\n      // drop body, change method to GET\n      nextOptions.method = 'GET'\n      nextOptions.body = undefined\n      // fallthrough\n    }\n    case 301:\n    case 302: // some user agents treat as 303, but they're wrong\n    case 307:\n    case 308: {\n      return [nextURL, nextOptions]\n    }\n  }\n}\n"]}
+{"version":3,"file":"redirect.js","sourceRoot":"","sources":["../../src/redirect.ts"],"names":[],"mappings":"AAAA,oEAAoE;AAEpE,OAAO,EAAE,KAAK,EAAE,MAAM,qBAAqB,CAAA;AAM3C,MAAM,gBAAgB,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC,CAAA;AAO3D,MAAM,CAAC,MAAM,UAAU,GAAG,CACxB,QAAoB,EACU,EAAE,CAChC,gBAAgB,CAAC,GAAG,CAAC,QAAQ,CAAC,UAAU,CAAC;IACzC,CAAC,CAAC,QAAQ,CAAC,SAAS,CAAC,UAAU,CAAC,EAAE,MAAM,CAAA;AAE1C;;;;;;;;;;;;GAYG;AACH,MAAM,CAAC,MAAM,QAAQ,GAAG,CACtB,OAAqC,EACrC,QAA0B,EAC1B,IAAS,EACiC,EAAE;IAC5C,MAAM,EAAE,YAAY,GAAG,IAAI,GAAG,EAAU,EAAE,eAAe,GAAG,EAAE,EAAE,GAC9D,OAAO,CAAA;IACT,IAAI,eAAe,IAAI,CAAC;QAAE,OAAO,EAAE,CAAA;IACnC,IAAI,YAAY,CAAC,IAAI,IAAI,eAAe,EAAE,CAAC;QACzC,MAAM,KAAK,CAAC,+BAA+B,EAAE;YAC3C,GAAG,EAAE,eAAe;YACpB,KAAK,EAAE,CAAC,GAAG,YAAY,CAAC;YACxB,GAAG,EAAE,IAAI;SACV,CAAC,CAAA;IACJ,CAAC;IACD,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC,CAAA;IACvD,MAAM,OAAO,GAAG,IAAI,GAAG,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAA;IACvC,IAAI,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,EAAE,CAAC;QACtC,MAAM,KAAK,CAAC,4BAA4B,EAAE;YACxC,GAAG,EAAE,eAAe;YACpB,KAAK,EAAE,CAAC,GAAG,YAAY,CAAC;YACxB,GAAG,EAAE,IAAI;SACV,CAAC,CAAA;IACJ,CAAC;IACD,MAAM,WAAW,GAAiC;QAChD,GAAG,OAAO;QACV,YAAY;KACb,CAAA;IACD,4FAA4F;IAC5F,OAAO,WAAW,CAAC,IAAI,CAAA;IACvB,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAA;IACjC,QAAQ,QAAQ,CAAC,UAAU,EAAE,CAAC;QAC5B,KAAK,GAAG,CAAC,CAAC,CAAC;YACT,kCAAkC;YAClC,WAAW,CAAC,MAAM,GAAG,KAAK,CAAA;YAC1B,WAAW,CAAC,IAAI,GAAG,SAAS,CAAA;YAC5B,cAAc;QAChB,CAAC;QACD,KAAK,GAAG,CAAC;QACT,KAAK,GAAG,CAAC,CAAC,mDAAmD;QAC7D,KAAK,GAAG,CAAC;QACT,KAAK,GAAG,CAAC,CAAC,CAAC;YACT,OAAO,CAAC,OAAO,EAAE,WAAW,CAAC,CAAA;QAC/B,CAAC;IACH,CAAC;AACH,CAAC,CAAA","sourcesContent":["// given a RegistryClientOptions object, and a redirection response,\n\nimport { error } from '@vltpkg/error-cause'\nimport type { CacheEntry } from './cache-entry.ts'\nimport type { RegistryClientRequestOptions } from './index.ts'\n\nexport type RedirectStatus = 301 | 302 | 303 | 307 | 308\n\nconst redirectStatuses = new Set([301, 302, 303, 307, 308])\n\nexport type RedirectResponse = CacheEntry & {\n  statusCode: RedirectStatus\n  getHeader(key: 'location'): Buffer\n}\n\nexport const isRedirect = (\n  response: CacheEntry,\n): response is RedirectResponse =>\n  redirectStatuses.has(response.statusCode) &&\n  !!response.getHeader('location')?.length\n\n/**\n * If this response is allowed to follow the redirect (because max has not\n * been hit, and the new location has not been seen already), then return\n * the [url, options] to use for the subsequent request.\n *\n * Return [] if the response should be returned as-is.\n *\n * Throws an error if maxRedirections is hit or the redirections set already\n * contains the new location.\n *\n * Ensure that the response is in fact a redirection first, by calling\n * {@link isRedirect} on it.\n */\nexport const redirect = (\n  options: RegistryClientRequestOptions,\n  response: RedirectResponse,\n  from: URL,\n): [] | [URL, RegistryClientRequestOptions] => {\n  const { redirections = new Set<string>(), maxRedirections = 10 } =\n    options\n  if (maxRedirections <= 0) return []\n  if (redirections.size >= maxRedirections) {\n    throw error('Maximum redirections exceeded', {\n      max: maxRedirections,\n      found: [...redirections],\n      url: from,\n    })\n  }\n  const location = String(response.getHeader('location'))\n  const nextURL = new URL(location, from)\n  if (redirections.has(String(nextURL))) {\n    throw error('Redirection cycle detected', {\n      max: maxRedirections,\n      found: [...redirections],\n      url: from,\n    })\n  }\n  const nextOptions: RegistryClientRequestOptions = {\n    ...options,\n    redirections,\n  }\n  // eslint-disable-next-line @typescript-eslint/no-deprecated -- thats why we are deleting it\n  delete nextOptions.path\n  redirections.add(String(nextURL))\n  switch (response.statusCode) {\n    case 303: {\n      // drop body, change method to GET\n      nextOptions.method = 'GET'\n      nextOptions.body = undefined\n      // fallthrough\n    }\n    case 301:\n    case 302: // some user agents treat as 303, but they're wrong\n    case 307:\n    case 308: {\n      return [nextURL, nextOptions]\n    }\n  }\n}\n"]}

package/dist/esm/revalidate.d.ts

@@ -0,0 +1,5 @@
+export declare const __CODE_SPLIT_SCRIPT_NAME: string;
+export declare const main: (cache?: string, input?: NodeJS.ReadStream & {
+    fd: 0;
+}) => Promise<void>;
+//# sourceMappingURL=revalidate.d.ts.map

package/dist/esm/revalidate.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"revalidate.d.ts","sourceRoot":"","sources":["../../src/revalidate.ts"],"names":[],"mappings":"AAMA,eAAO,MAAM,wBAAwB,QAAuB,CAAA;AAM5D,eAAO,MAAM,IAAI,WAAkB,MAAM;;mBAuCxC,CAAA"}

package/dist/esm/revalidate.js

@@ -0,0 +1,49 @@
+// This needs to live in the same workspace as the RegistryClient, because
+// otherwise we have a cyclical dependency cycle of dependencies in a cycle,
+// which is even more cyclical than this description describing it.
+import { pathToFileURL } from 'node:url';
+import { RegistryClient } from "./index.js";
+export const __CODE_SPLIT_SCRIPT_NAME = import.meta.filename;
+const isMain = (path) => path === __CODE_SPLIT_SCRIPT_NAME ||
+    path === pathToFileURL(__CODE_SPLIT_SCRIPT_NAME).toString();
+export const main = async (cache, input = process.stdin) => {
+    if (!cache)
+        process.exit(1);
+    const reqs = await new Promise(res => {
+        const chunks = [];
+        let chunkLen = 0;
+        input.on('data', chunk => {
+            chunks.push(chunk);
+            chunkLen += chunk.length;
+        });
+        input.on('end', () => {
+            const reqs = Buffer.concat(chunks, chunkLen)
+                .toString()
+                .split('\0')
+                .filter(i => !!i && (i.startsWith('GET ') || i.startsWith('HEAD ')))
+                .map(i => i.startsWith('GET ') ?
+                ['GET', new URL(i.substring('GET '.length))]
+                : ['HEAD', new URL(i.substring('HEAD '.length))]);
+            res(reqs);
+        });
+    });
+    if (!reqs.length)
+        process.exit(1);
+    const rc = new RegistryClient({ cache });
+    await Promise.all(reqs.map(async ([method, url]) => {
+        await rc.request(url, {
+            method,
+            staleWhileRevalidate: false,
+        });
+    }));
+};
+const g = globalThis;
+if (isMain(g.__VLT_INTERNAL_MAIN ?? process.argv[1])) {
+    process.title = 'vlt-cache-revalidate';
+    // When compiled there can be other leading args supplied by Deno
+    // so always use the last arg unless there are only two which means
+    // no path was supplied.
+    const cacheFolder = process.argv.length === 2 ? undefined : process.argv.at(-1);
+    void main(cacheFolder, process.stdin);
+}
+//# sourceMappingURL=revalidate.js.map

package/dist/esm/revalidate.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"revalidate.js","sourceRoot":"","sources":["../../src/revalidate.ts"],"names":[],"mappings":"AAAA,0EAA0E;AAC1E,4EAA4E;AAC5E,mEAAmE;AACnE,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAA;AACxC,OAAO,EAAE,cAAc,EAAE,MAAM,YAAY,CAAA;AAE3C,MAAM,CAAC,MAAM,wBAAwB,GAAG,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAA;AAE5D,MAAM,MAAM,GAAG,CAAC,IAAa,EAAE,EAAE,CAC/B,IAAI,KAAK,wBAAwB;IACjC,IAAI,KAAK,aAAa,CAAC,wBAAwB,CAAC,CAAC,QAAQ,EAAE,CAAA;AAE7D,MAAM,CAAC,MAAM,IAAI,GAAG,KAAK,EAAE,KAAc,EAAE,KAAK,GAAG,OAAO,CAAC,KAAK,EAAE,EAAE;IAClE,IAAI,CAAC,KAAK;QAAE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;IAC3B,MAAM,IAAI,GAAG,MAAM,IAAI,OAAO,CAA0B,GAAG,CAAC,EAAE;QAC5D,MAAM,MAAM,GAAa,EAAE,CAAA;QAC3B,IAAI,QAAQ,GAAG,CAAC,CAAA;QAChB,KAAK,CAAC,EAAE,CAAC,MAAM,EAAE,KAAK,CAAC,EAAE;YACvB,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;YAClB,QAAQ,IAAI,KAAK,CAAC,MAAM,CAAA;QAC1B,CAAC,CAAC,CAAA;QACF,KAAK,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE;YACnB,MAAM,IAAI,GAA4B,MAAM,CAAC,MAAM,CACjD,MAAM,EACN,QAAQ,CACT;iBACE,QAAQ,EAAE;iBACV,KAAK,CAAC,IAAI,CAAC;iBACX,MAAM,CACL,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAC5D;iBACA,GAAG,CAAC,CAAC,CAAC,EAAE,CACP,CAAC,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC;gBACpB,CAAC,KAAK,EAAE,IAAI,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC;gBAC9C,CAAC,CAAC,CAAC,MAAM,EAAE,IAAI,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CACjD,CAAA;YAEH,GAAG,CAAC,IAAI,CAAC,CAAA;QACX,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,IAAI,CAAC,IAAI,CAAC,MAAM;QAAE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;IACjC,MAAM,EAAE,GAAG,IAAI,cAAc,CAAC,EAAE,KAAK,EAAE,CAAC,CAAA;IACxC,MAAM,OAAO,CAAC,GAAG,CACf,IAAI,CAAC,GAAG,CAAC,KAAK,EAAE,CAAC,MAAM,EAAE,GAAG,CAAC,EAAE,EAAE;QAC/B,MAAM,EAAE,CAAC,OAAO,CAAC,GAAG,EAAE;YACpB,MAAM;YACN,oBAAoB,EAAE,KAAK;SAC5B,CAAC,CAAA;IACJ,CAAC,CAAC,CACH,CAAA;AACH,CAAC,CAAA;AAED,MAAM,CAAC,GAAG,UAET,CAAA;AAED,IAAI,MAAM,CAAC,CAAC,CAAC,mBAAmB,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;IACrD,OAAO,CAAC,KAAK,GAAG,sBAAsB,CAAA;IACtC,iEAAiE;IACjE,mEAAmE;IACnE,wBAAwB;IACxB,MAAM,WAAW,GACf,OAAO,CAAC,IAAI,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAA;IAE7D,KAAK,IAAI,CAAC,WAAW,EAAE,OAAO,CAAC,KAAK,CAAC,CAAA;AACvC,CAAC","sourcesContent":["// This needs to live in the same workspace as the RegistryClient, because\n// otherwise we have a cyclical dependency cycle of dependencies in a cycle,\n// which is even more cyclical than this description describing it.\nimport { pathToFileURL } from 'node:url'\nimport { RegistryClient } from './index.ts'\n\nexport const __CODE_SPLIT_SCRIPT_NAME = import.meta.filename\n\nconst isMain = (path?: string) =>\n  path === __CODE_SPLIT_SCRIPT_NAME ||\n  path === pathToFileURL(__CODE_SPLIT_SCRIPT_NAME).toString()\n\nexport const main = async (cache?: string, input = process.stdin) => {\n  if (!cache) process.exit(1)\n  const reqs = await new Promise<['GET' | 'HEAD', URL][]>(res => {\n    const chunks: Buffer[] = []\n    let chunkLen = 0\n    input.on('data', chunk => {\n      chunks.push(chunk)\n      chunkLen += chunk.length\n    })\n    input.on('end', () => {\n      const reqs: ['GET' | 'HEAD', URL][] = Buffer.concat(\n        chunks,\n        chunkLen,\n      )\n        .toString()\n        .split('\\0')\n        .filter(\n          i => !!i && (i.startsWith('GET ') || i.startsWith('HEAD ')),\n        )\n        .map(i =>\n          i.startsWith('GET ') ?\n            ['GET', new URL(i.substring('GET '.length))]\n          : ['HEAD', new URL(i.substring('HEAD '.length))],\n        )\n\n      res(reqs)\n    })\n  })\n\n  if (!reqs.length) process.exit(1)\n  const rc = new RegistryClient({ cache })\n  await Promise.all(\n    reqs.map(async ([method, url]) => {\n      await rc.request(url, {\n        method,\n        staleWhileRevalidate: false,\n      })\n    }),\n  )\n}\n\nconst g = globalThis as typeof globalThis & {\n  __VLT_INTERNAL_MAIN?: string\n}\n\nif (isMain(g.__VLT_INTERNAL_MAIN ?? process.argv[1])) {\n  process.title = 'vlt-cache-revalidate'\n  // When compiled there can be other leading args supplied by Deno\n  // so always use the last arg unless there are only two which means\n  // no path was supplied.\n  const cacheFolder =\n    process.argv.length === 2 ? undefined : process.argv.at(-1)\n\n  void main(cacheFolder, process.stdin)\n}\n"]}

package/dist/esm/set-cache-headers.d.ts

@@ -1,4 +1,4 @@
-import { type CacheEntry } from './cache-entry.js';
-import { type RegistryClientRequestOptions } from './index.js';
+import type { CacheEntry } from './cache-entry.ts';
+import type { RegistryClientRequestOptions } from './index.ts';
 export declare const setCacheHeaders: (options: RegistryClientRequestOptions, entry?: CacheEntry) => void;
 //# sourceMappingURL=set-cache-headers.d.ts.map

package/dist/esm/set-cache-headers.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"set-cache-headers.d.ts","sourceRoot":"","sources":["../../src/set-cache-headers.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,KAAK,UAAU,EAAE,MAAM,kBAAkB,CAAA;AAClD,OAAO,EAAE,KAAK,4BAA4B,EAAE,MAAM,YAAY,CAAA;AAE9D,eAAO,MAAM,eAAe,YACjB,4BAA4B,UAC7B,UAAU,KACjB,IAqBF,CAAA"}
+{"version":3,"file":"set-cache-headers.d.ts","sourceRoot":"","sources":["../../src/set-cache-headers.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAA;AAClD,OAAO,KAAK,EAAE,4BAA4B,EAAE,MAAM,YAAY,CAAA;AAE9D,eAAO,MAAM,eAAe,YACjB,4BAA4B,UAC7B,UAAU,KACjB,IAqBF,CAAA"}

package/dist/esm/set-cache-headers.js

@@ -1,6 +1,6 @@
 // Set the cache headers on a request options object
 // based on what we know from a CacheEntry
-import { addHeader } from './add-header.js';
+import { addHeader } from "./add-header.js";
 export const setCacheHeaders = (options, entry) => {
     if (!entry)
         return;

package/dist/esm/set-cache-headers.js.map

@@ -1 +1 @@
-{"version":3,"file":"set-cache-headers.js","sourceRoot":"","sources":["../../src/set-cache-headers.ts"],"names":[],"mappings":"AAAA,oDAAoD;AACpD,0CAA0C;AAE1C,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAA;AAI3C,MAAM,CAAC,MAAM,eAAe,GAAG,CAC7B,OAAqC,EACrC,KAAkB,EACZ,EAAE;IACR,IAAI,CAAC,KAAK;QAAE,OAAM;IAClB,MAAM,IAAI,GAAG,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,QAAQ,EAAE,CAAA;IAChD,IAAI,IAAI,EAAE,CAAC;QACT,OAAO,CAAC,OAAO,GAAG,SAAS,CACzB,OAAO,CAAC,OAAO,EACf,eAAe,EACf,IAAI,CACL,CAAA;IACH,CAAC;IAED,MAAM,IAAI,GACR,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,QAAQ,EAAE;QACnC,KAAK,CAAC,SAAS,CAAC,eAAe,CAAC,EAAE,QAAQ,EAAE,CAAA;IAC9C,IAAI,IAAI,EAAE,CAAC;QACT,OAAO,CAAC,OAAO,GAAG,SAAS,CACzB,OAAO,CAAC,OAAO,EACf,mBAAmB,EACnB,IAAI,CACL,CAAA;IACH,CAAC;AACH,CAAC,CAAA","sourcesContent":["// Set the cache headers on a request options object\n// based on what we know from a CacheEntry\n\nimport { addHeader } from './add-header.js'\nimport { type CacheEntry } from './cache-entry.js'\nimport { type RegistryClientRequestOptions } from './index.js'\n\nexport const setCacheHeaders = (\n  options: RegistryClientRequestOptions,\n  entry?: CacheEntry,\n): void => {\n  if (!entry) return\n  const etag = entry.getHeader('etag')?.toString()\n  if (etag) {\n    options.headers = addHeader(\n      options.headers,\n      'if-none-match',\n      etag,\n    )\n  }\n\n  const date =\n    entry.getHeader('date')?.toString() ??\n    entry.getHeader('last-modified')?.toString()\n  if (date) {\n    options.headers = addHeader(\n      options.headers,\n      'if-modified-since',\n      date,\n    )\n  }\n}\n"]}
+{"version":3,"file":"set-cache-headers.js","sourceRoot":"","sources":["../../src/set-cache-headers.ts"],"names":[],"mappings":"AAAA,oDAAoD;AACpD,0CAA0C;AAE1C,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAA;AAI3C,MAAM,CAAC,MAAM,eAAe,GAAG,CAC7B,OAAqC,EACrC,KAAkB,EACZ,EAAE;IACR,IAAI,CAAC,KAAK;QAAE,OAAM;IAClB,MAAM,IAAI,GAAG,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,QAAQ,EAAE,CAAA;IAChD,IAAI,IAAI,EAAE,CAAC;QACT,OAAO,CAAC,OAAO,GAAG,SAAS,CACzB,OAAO,CAAC,OAAO,EACf,eAAe,EACf,IAAI,CACL,CAAA;IACH,CAAC;IAED,MAAM,IAAI,GACR,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,QAAQ,EAAE;QACnC,KAAK,CAAC,SAAS,CAAC,eAAe,CAAC,EAAE,QAAQ,EAAE,CAAA;IAC9C,IAAI,IAAI,EAAE,CAAC;QACT,OAAO,CAAC,OAAO,GAAG,SAAS,CACzB,OAAO,CAAC,OAAO,EACf,mBAAmB,EACnB,IAAI,CACL,CAAA;IACH,CAAC;AACH,CAAC,CAAA","sourcesContent":["// Set the cache headers on a request options object\n// based on what we know from a CacheEntry\n\nimport { addHeader } from './add-header.ts'\nimport type { CacheEntry } from './cache-entry.ts'\nimport type { RegistryClientRequestOptions } from './index.ts'\n\nexport const setCacheHeaders = (\n  options: RegistryClientRequestOptions,\n  entry?: CacheEntry,\n): void => {\n  if (!entry) return\n  const etag = entry.getHeader('etag')?.toString()\n  if (etag) {\n    options.headers = addHeader(\n      options.headers,\n      'if-none-match',\n      etag,\n    )\n  }\n\n  const date =\n    entry.getHeader('date')?.toString() ??\n    entry.getHeader('last-modified')?.toString()\n  if (date) {\n    options.headers = addHeader(\n      options.headers,\n      'if-modified-since',\n      date,\n    )\n  }\n}\n"]}

package/dist/esm/token-response.d.ts

@@ -0,0 +1,5 @@
+export type TokenResponse = {
+    token: string;
+};
+export declare const isTokenResponse: (b: unknown) => b is TokenResponse;
+//# sourceMappingURL=token-response.d.ts.map

package/dist/esm/token-response.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"token-response.d.ts","sourceRoot":"","sources":["../../src/token-response.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,aAAa,GAAG;IAC1B,KAAK,EAAE,MAAM,CAAA;CACd,CAAA;AAED,eAAO,MAAM,eAAe,MAAO,OAAO,KAAG,CAAC,IAAI,aAIpB,CAAA"}

package/dist/esm/token-response.js

@@ -0,0 +1,5 @@
+export const isTokenResponse = (b) => !!b &&
+    typeof b === 'object' &&
+    typeof b.token === 'string' &&
+    !!b.token;
+//# sourceMappingURL=token-response.js.map

package/dist/esm/token-response.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"token-response.js","sourceRoot":"","sources":["../../src/token-response.ts"],"names":[],"mappings":"AAIA,MAAM,CAAC,MAAM,eAAe,GAAG,CAAC,CAAU,EAAsB,EAAE,CAChE,CAAC,CAAC,CAAC;IACH,OAAO,CAAC,KAAK,QAAQ;IACrB,OAAQ,CAAmB,CAAC,KAAK,KAAK,QAAQ;IAC9C,CAAC,CAAE,CAAmB,CAAC,KAAK,CAAA","sourcesContent":["export type TokenResponse = {\n  token: string\n}\n\nexport const isTokenResponse = (b: unknown): b is TokenResponse =>\n  !!b &&\n  typeof b === 'object' &&\n  typeof (b as TokenResponse).token === 'string' &&\n  !!(b as TokenResponse).token\n"]}

package/dist/esm/web-auth-challenge.d.ts

@@ -0,0 +1,6 @@
+export type WebAuthChallenge = {
+    doneUrl: string;
+    loginUrl: string;
+};
+export declare const isWebAuthChallenge: (o: unknown) => o is WebAuthChallenge;
+//# sourceMappingURL=web-auth-challenge.d.ts.map

package/dist/esm/web-auth-challenge.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"web-auth-challenge.d.ts","sourceRoot":"","sources":["../../src/web-auth-challenge.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,gBAAgB,GAAG;IAC7B,OAAO,EAAE,MAAM,CAAA;IACf,QAAQ,EAAE,MAAM,CAAA;CACjB,CAAA;AAED,eAAO,MAAM,kBAAkB,MAC1B,OAAO,KACT,CAAC,IAAI,gBAM8C,CAAA"}

package/dist/esm/web-auth-challenge.js

@@ -0,0 +1,7 @@
+export const isWebAuthChallenge = (o) => !!o &&
+    typeof o === 'object' &&
+    !!o.doneUrl &&
+    !!o.loginUrl &&
+    typeof o.doneUrl === 'string' &&
+    typeof o.loginUrl === 'string';
+//# sourceMappingURL=web-auth-challenge.js.map

package/dist/esm/web-auth-challenge.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"web-auth-challenge.js","sourceRoot":"","sources":["../../src/web-auth-challenge.ts"],"names":[],"mappings":"AAKA,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAChC,CAAU,EACa,EAAE,CACzB,CAAC,CAAC,CAAC;IACH,OAAO,CAAC,KAAK,QAAQ;IACrB,CAAC,CAAE,CAAsB,CAAC,OAAO;IACjC,CAAC,CAAE,CAAsB,CAAC,QAAQ;IAClC,OAAQ,CAAsB,CAAC,OAAO,KAAK,QAAQ;IACnD,OAAQ,CAAsB,CAAC,QAAQ,KAAK,QAAQ,CAAA","sourcesContent":["export type WebAuthChallenge = {\n  doneUrl: string\n  loginUrl: string\n}\n\nexport const isWebAuthChallenge = (\n  o: unknown,\n): o is WebAuthChallenge =>\n  !!o &&\n  typeof o === 'object' &&\n  !!(o as WebAuthChallenge).doneUrl &&\n  !!(o as WebAuthChallenge).loginUrl &&\n  typeof (o as WebAuthChallenge).doneUrl === 'string' &&\n  typeof (o as WebAuthChallenge).loginUrl === 'string'\n"]}

package/package.json

@@ -1,9 +1,15 @@
 {
   "name": "@vltpkg/registry-client",
   "description": "Fetch package artifacts and metadata from registries",
-  "version": "0.0.0-0.1730724342581",
+  "version": "0.0.0-10",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/vltpkg/vltpkg.git",
+    "directory": "src/registry-client"
+  },
   "tshy": {
     "selfLink": false,
+    "liveDev": true,
     "dialects": [
       "esm"
     ],
@@ -14,29 +20,32 @@
     }
   },
   "dependencies": {
-    "cache-control-parser": "^2.0.5",
-    "package-json-from-dist": "^1.0.0",
-    "undici": "^6.20.0",
-    "@vltpkg/cache": "0.0.0-0.1730724342581",
-    "@vltpkg/cache-unzip": "0.0.0-0.1730724342581",
-    "@vltpkg/xdg": "0.0.0-0.1730724342581",
-    "@vltpkg/types": "0.0.0-0.1730724342581",
-    "@vltpkg/error-cause": "0.0.0-0.1730724342581"
+    "cache-control-parser": "^2.0.6",
+    "package-json-from-dist": "^1.0.1",
+    "undici": "^7.8.0",
+    "@vltpkg/cache": "0.0.0-10",
+    "@vltpkg/cache-unzip": "0.0.0-10",
+    "@vltpkg/error-cause": "0.0.0-10",
+    "@vltpkg/output": "0.0.0-10",
+    "@vltpkg/url-open": "0.0.0-10",
+    "@vltpkg/keychain": "0.0.0-10",
+    "@vltpkg/types": "0.0.0-10",
+    "@vltpkg/xdg": "0.0.0-10"
   },
   "devDependencies": {
-    "@eslint/js": "^9.8.0",
-    "@types/eslint__js": "^8.42.3",
-    "@types/node": "^22.4.1",
-    "eslint": "^9.8.0",
-    "prettier": "^3.3.2",
-    "tap": "^21.0.1",
+    "@eslint/js": "^9.25.0",
+    "@types/node": "^22.14.1",
+    "eslint": "^9.25.0",
+    "prettier": "^3.5.3",
+    "tap": "^21.1.0",
     "tshy": "^3.0.2",
-    "typescript": "^5.5.4",
-    "typescript-eslint": "^8.0.1"
+    "typedoc": "~0.27.6",
+    "typescript": "5.7.3",
+    "typescript-eslint": "^8.30.1"
   },
   "license": "BSD-2-Clause-Patent",
   "engines": {
-    "node": "20 || >=22"
+    "node": ">=22"
   },
   "tap": {
     "extends": "../../tap-config.yaml"
@@ -67,9 +76,9 @@
     "format:check": "prettier --check . --ignore-path ../../.prettierignore --cache",
     "lint": "eslint . --fix",
     "lint:check": "eslint .",
-    "presnap": "tshy",
     "snap": "tap",
-    "pretest": "tshy",
-    "test": "tap"
+    "test": "tap",
+    "posttest": "tsc --noEmit",
+    "typecheck": "tsc --noEmit"
   }
 }

package/dist/esm/serdes.d.ts

@@ -1,15 +0,0 @@
-/**
- * This tiny module abstracts out the v8-specific serialization mechanism,
- * so that we can swap out based on platform.
- *
- * Bun, Deno, and Node all export serialize/deserialize from the `node:v8`
- * built-in module, but only Deno and Node are v8, Bun uses JSC's wire format.
- *
- * Any change to the serialization format is a semver-major change,
- * but not every major-version bump is a serialization change. So, this is
- * somewhat more conservative than necessary, but saves us having to track
- * which major versions changed the serialization wire format.
- */
-export declare const serializedHeader: string | undefined;
-export { deserialize, serialize } from 'node:v8';
-//# sourceMappingURL=serdes.d.ts.map

package/dist/esm/serdes.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"serdes.d.ts","sourceRoot":"","sources":["../../src/serdes.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAKH,eAAO,MAAM,gBAAgB,oBAGhB,CAAA;AAEb,OAAO,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,SAAS,CAAA"}

package/dist/esm/serdes.js

@@ -1,19 +0,0 @@
-/**
- * This tiny module abstracts out the v8-specific serialization mechanism,
- * so that we can swap out based on platform.
- *
- * Bun, Deno, and Node all export serialize/deserialize from the `node:v8`
- * built-in module, but only Deno and Node are v8, Bun uses JSC's wire format.
- *
- * Any change to the serialization format is a semver-major change,
- * but not every major-version bump is a serialization change. So, this is
- * somewhat more conservative than necessary, but saves us having to track
- * which major versions changed the serialization wire format.
- */
-import { engine } from './env.js';
-// these aren't used if we couldn't determine the engine type & version
-export const serializedHeader = engine ?
-    `${engine.name}-serialize-${parseInt(engine.version.replace(/[^0-9]/g, ' ').trim(), 10)}`
-    : undefined;
-export { deserialize, serialize } from 'node:v8';
-//# sourceMappingURL=serdes.js.map

package/dist/esm/serdes.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"serdes.js","sourceRoot":"","sources":["../../src/serdes.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,EAAE,MAAM,EAAE,MAAM,UAAU,CAAA;AAEjC,uEAAuE;AACvE,MAAM,CAAC,MAAM,gBAAgB,GAC3B,MAAM,CAAC,CAAC;IACN,GAAG,MAAM,CAAC,IAAI,cAAc,QAAQ,CAAC,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,EAAE,CAAC,EAAE;IAC3F,CAAC,CAAC,SAAS,CAAA;AAEb,OAAO,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,SAAS,CAAA","sourcesContent":["/**\n * This tiny module abstracts out the v8-specific serialization mechanism,\n * so that we can swap out based on platform.\n *\n * Bun, Deno, and Node all export serialize/deserialize from the `node:v8`\n * built-in module, but only Deno and Node are v8, Bun uses JSC's wire format.\n *\n * Any change to the serialization format is a semver-major change,\n * but not every major-version bump is a serialization change. So, this is\n * somewhat more conservative than necessary, but saves us having to track\n * which major versions changed the serialization wire format.\n */\n\nimport { engine } from './env.js'\n\n// these aren't used if we couldn't determine the engine type & version\nexport const serializedHeader =\n  engine ?\n    `${engine.name}-serialize-${parseInt(engine.version.replace(/[^0-9]/g, ' ').trim(), 10)}`\n  : undefined\n\nexport { deserialize, serialize } from 'node:v8'\n"]}