@zintrust/core 0.1.48 → 0.1.50

package/config/workers.d.ts

@@ -1,54 +0,0 @@
-declare const _default: {
-    driver: string;
-    middleware: ReadonlyArray<string>;
-    enabled: boolean;
-    healthCheckInterval: number;
-    clusterMode: boolean;
-    autoScaling: {
-        enabled: boolean;
-        interval: number;
-        offPeakSchedule: string;
-        offPeakReduction: number;
-    };
-    costOptimization: {
-        enabled: boolean;
-        spotInstances: boolean;
-        offPeakScaling: boolean;
-    };
-    compliance: {
-        auditLog: boolean;
-        encryption: boolean;
-        dataRetention: number;
-        gdpr: boolean;
-        hipaa: boolean;
-        soc2: boolean;
-    };
-    observability: {
-        prometheus: {
-            enabled: boolean;
-            port: number;
-        };
-        opentelemetry: {
-            enabled: boolean;
-            endpoint: string;
-        };
-        datadog: {
-            enabled: boolean;
-            apiKey: string;
-        };
-    };
-    defaultWorker: {
-        enabled: boolean;
-        concurrency: number;
-        timeout: number;
-        retries: number;
-        autoStart: boolean;
-        priority: number;
-        healthCheckInterval: number;
-        clusterMode: boolean;
-        region: string;
-    };
-    workers: {};
-};
-export default _default;
-//# sourceMappingURL=workers.d.ts.map

package/config/workers.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"workers.d.ts","sourceRoot":"","sources":["../../config/workers.ts"],"names":[],"mappings":";;gBAgB4C,aAAa,CAAC,MAAM,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AALjE,wBA+EmC"}

package/config/workers.js

@@ -1,83 +0,0 @@
-/**
- * Workers Configuration (default override)
- *
- * Keep this file declarative:
- * - Core owns env parsing/default logic.
- * - Projects can override config by editing values below.
- */
-// @ts-ignore - config templates are excluded from the main TS project in this repo
-import { Env } from '../src/config/env.js';
-export default {
-    driver: Env.get('WORKER_PERSISTENCE_DRIVER', 'memory'),
-    middleware: Env.get('QUEUE_MONITOR_MIDDLEWARE', '')
-        .split(',')
-        .map((m) => m.trim())
-        .filter((m) => m.length > 0),
-    enabled: Env.getBool('WORKERS_ENABLED', true),
-    healthCheckInterval: Env.getInt('WORKERS_HEALTH_CHECK_INTERVAL', 60),
-    clusterMode: Env.getBool('WORKERS_CLUSTER_MODE', false),
-    autoScaling: {
-        enabled: Env.getBool('WORKER_AUTO_SCALING_ENABLED', false),
-        interval: Env.getInt('WORKER_AUTO_SCALING_INTERVAL', 30),
-        offPeakSchedule: Env.get('WORKER_OFF_PEAK_SCHEDULE', '22:00-06:00'),
-        offPeakReduction: Env.getFloat('WORKER_OFF_PEAK_REDUCTION', 0.7),
-    },
-    costOptimization: {
-        enabled: Env.getBool('WORKER_COST_OPTIMIZATION_ENABLED', false),
-        spotInstances: Env.getBool('WORKER_SPOT_INSTANCES', false),
-        offPeakScaling: Env.getBool('WORKER_OFF_PEAK_SCALING', false),
-    },
-    compliance: {
-        auditLog: Env.getBool('WORKER_AUDIT_LOG', true),
-        encryption: Env.getBool('WORKER_ENCRYPTION', true),
-        dataRetention: Env.getInt('WORKER_DATA_RETENTION', 90),
-        gdpr: Env.getBool('WORKER_GDPR', false),
-        hipaa: Env.getBool('WORKER_HIPAA', false),
-        soc2: Env.getBool('WORKER_SOC2', true),
-    },
-    observability: {
-        prometheus: {
-            enabled: Env.getBool('WORKER_PROMETHEUS_ENABLED', false),
-            port: Env.getInt('WORKER_PROMETHEUS_PORT', 9090),
-        },
-        opentelemetry: {
-            enabled: Env.getBool('WORKER_OPENTELEMETRY_ENABLED', false),
-            endpoint: Env.get('WORKER_OPENTELEMETRY_ENDPOINT', 'http://localhost:4318'),
-        },
-        datadog: {
-            enabled: Env.getBool('WORKER_DATADOG_ENABLED', false),
-            apiKey: Env.get('WORKER_DATADOG_API_KEY', ''),
-        },
-    },
-    defaultWorker: {
-        enabled: Env.getBool('WORKER_ENABLED', true),
-        concurrency: Env.getInt('WORKER_CONCURRENCY', 5),
-        timeout: Env.getInt('WORKER_TIMEOUT', 60),
-        retries: Env.getInt('WORKER_RETRIES', 3),
-        autoStart: Env.getBool('WORKER_AUTO_START', false),
-        priority: Env.getInt('WORKER_PRIORITY', 1),
-        healthCheckInterval: Env.getInt('WORKER_HEALTH_CHECK_INTERVAL', 60),
-        clusterMode: Env.getBool('WORKER_CLUSTER_MODE', true),
-        region: Env.get('WORKER_REGION', 'us-east-1'),
-    },
-    // Per-worker overrides
-    workers: {
-    // Example: Customize 'test' worker
-    // test: {
-    //   enabled: true,
-    //   concurrency: 3,
-    //   autoStart: true,
-    //   priority: 5,
-    //   queues: ['test', 'test-backup'],
-    //   region: 'us-east-1',
-    //   autoScaling: {
-    //     enabled: true,
-    //     minWorkers: 1,
-    //     maxWorkers: 5,
-    //     queueThreshold: 100,
-    //     scaleUpCooldown: 60,
-    //     scaleDownCooldown: 300,
-    //   },
-    // },
-    },
-};

package/packages/cloudflare-d1-proxy/src/index.d.ts

@@ -1,48 +0,0 @@
-type KvGetType = 'text' | 'json' | 'arrayBuffer';
-type KVNamespacePutOptions = {
-    expirationTtl?: number;
-};
-type KVNamespace = {
-    get: {
-        (key: string): Promise<string | null>;
-        (key: string, type: 'json'): Promise<unknown | null>;
-        (key: string, type: 'arrayBuffer'): Promise<ArrayBuffer | null>;
-        (key: string, type: KvGetType): Promise<unknown | ArrayBuffer | string | null>;
-    };
-    put: (key: string, value: string, options?: KVNamespacePutOptions) => Promise<void>;
-};
-type D1AllResult<T> = {
-    results?: T[];
-};
-type D1RunResult = {
-    meta?: unknown;
-};
-type D1PreparedStatement = {
-    bind: (...values: unknown[]) => D1PreparedStatement;
-    all: <T = unknown>() => Promise<D1AllResult<T>>;
-    first: <T = unknown>() => Promise<T | null>;
-    run: () => Promise<D1RunResult>;
-};
-type D1Database = {
-    prepare: (sql: string) => D1PreparedStatement;
-};
-type D1Env = {
-    DB?: D1Database;
-    D1_BINDING?: string;
-    APP_KEY?: string;
-    D1_REMOTE_SECRET?: string;
-    ZT_PROXY_SIGNING_WINDOW_MS?: string;
-    ZT_NONCES?: KVNamespace;
-    ZT_PROXY_DEBUG?: string;
-    ZT_MAX_BODY_BYTES?: string;
-    ZT_MAX_SQL_BYTES?: string;
-    ZT_MAX_PARAMS?: string;
-    ZT_D1_STATEMENTS_JSON?: string;
-};
-export declare const ZintrustD1Proxy: Readonly<{
-    _ZINTRUST_CLOUDFLARE_D1_PROXY_VERSION: "0.1.15";
-    _ZINTRUST_CLOUDFLARE_D1_PROXY_BUILD_DATE: "__BUILD_DATE__";
-    fetch(request: Request, env: D1Env): Promise<Response>;
-}>;
-export default ZintrustD1Proxy;
-//# sourceMappingURL=index.d.ts.map

package/packages/cloudflare-d1-proxy/src/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../packages/cloudflare-d1-proxy/src/index.ts"],"names":[],"mappings":"AAEA,KAAK,SAAS,GAAG,MAAM,GAAG,MAAM,GAAG,aAAa,CAAC;AAEjD,KAAK,qBAAqB,GAAG;IAC3B,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB,CAAC;AAEF,KAAK,WAAW,GAAG;IACjB,GAAG,EAAE;QACH,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC;QACtC,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,GAAG,IAAI,CAAC,CAAC;QACrD,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,aAAa,GAAG,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC,CAAC;QAChE,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,SAAS,GAAG,OAAO,CAAC,OAAO,GAAG,WAAW,GAAG,MAAM,GAAG,IAAI,CAAC,CAAC;KAChF,CAAC;IACF,GAAG,EAAE,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,qBAAqB,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;CACrF,CAAC;AAEF,KAAK,WAAW,CAAC,CAAC,IAAI;IACpB,OAAO,CAAC,EAAE,CAAC,EAAE,CAAC;CACf,CAAC;AAEF,KAAK,WAAW,GAAG;IACjB,IAAI,CAAC,EAAE,OAAO,CAAC;CAChB,CAAC;AAEF,KAAK,mBAAmB,GAAG;IACzB,IAAI,EAAE,CAAC,GAAG,MAAM,EAAE,OAAO,EAAE,KAAK,mBAAmB,CAAC;IACpD,GAAG,EAAE,CAAC,CAAC,GAAG,OAAO,OAAO,OAAO,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC;IAChD,KAAK,EAAE,CAAC,CAAC,GAAG,OAAO,OAAO,OAAO,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC;IAC5C,GAAG,EAAE,MAAM,OAAO,CAAC,WAAW,CAAC,CAAC;CACjC,CAAC;AAEF,KAAK,UAAU,GAAG;IAChB,OAAO,EAAE,CAAC,GAAG,EAAE,MAAM,KAAK,mBAAmB,CAAC;CAC/C,CAAC;AAEF,KAAK,KAAK,GAAG;IACX,EAAE,CAAC,EAAE,UAAU,CAAC;IAChB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,0BAA0B,CAAC,EAAE,MAAM,CAAC;IACpC,SAAS,CAAC,EAAE,WAAW,CAAC;IACxB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,qBAAqB,CAAC,EAAE,MAAM,CAAC;CAChC,CAAC;AA4aF,eAAO,MAAM,eAAe;;;mBAGL,OAAO,OAAO,KAAK,GAAG,OAAO,CAAC,QAAQ,CAAC;EAqB5D,CAAC;AAEH,eAAe,eAAe,CAAC"}

package/packages/cloudflare-d1-proxy/src/index.js

@@ -1,387 +0,0 @@
-import { ErrorHandler, RequestValidator, SigningService } from '../../../src/proxy.js';
-const DEFAULT_SIGNING_WINDOW_MS = 60_000;
-const DEFAULT_MAX_BODY_BYTES = 128 * 1024;
-const DEFAULT_MAX_SQL_BYTES = 32 * 1024;
-const DEFAULT_MAX_PARAMS = 256;
-const json = (status, body) => new Response(JSON.stringify(body), {
-    status,
-    headers: {
-        'Content-Type': 'application/json; charset=utf-8',
-        'Cache-Control': 'no-store',
-    },
-});
-const toErrorResponse = (status, code, message) => {
-    const error = ErrorHandler.toProxyError(status, code, message);
-    return json(error.status, error.body);
-};
-const getEnvInt = (env, name, fallback) => {
-    const raw = env[name];
-    if (typeof raw !== 'string')
-        return fallback;
-    const parsed = Number.parseInt(raw, 10);
-    return Number.isFinite(parsed) ? parsed : fallback;
-};
-const isRecord = (value) => typeof value === 'object' && value !== null;
-const isString = (value) => typeof value === 'string';
-const isArray = (value) => Array.isArray(value);
-const isDebugEnabled = (env) => {
-    const raw = env.ZT_PROXY_DEBUG;
-    if (typeof raw !== 'string')
-        return false;
-    const normalized = raw.trim().toLowerCase();
-    return normalized === 'true' || normalized === '1' || normalized === 'yes';
-};
-const safeErrorMessage = (error) => {
-    if (error instanceof Error)
-        return error.message;
-    if (typeof error === 'string')
-        return error;
-    try {
-        return JSON.stringify(error);
-    }
-    catch {
-        return 'Unknown D1 error';
-    }
-};
-const logProxyError = (env, context, error) => {
-    if (!isDebugEnabled(env))
-        return;
-    try {
-        // eslint-disable-next-line no-console
-        console.error('[ZintrustD1Proxy] error', {
-            ...context,
-            message: safeErrorMessage(error).slice(0, 800),
-        });
-    }
-    catch {
-        // ignore logging failures
-    }
-};
-const normalizeBindingName = (value) => {
-    if (typeof value !== 'string')
-        return null;
-    const trimmed = value.trim();
-    return trimmed === '' ? null : trimmed;
-};
-const resolveD1Binding = (env) => {
-    const candidates = ['DB', 'zintrust_db', normalizeBindingName(env.D1_BINDING)].filter((v, idx, arr) => typeof v === 'string' && v.trim() !== '' && arr.indexOf(v) === idx);
-    const record = env;
-    for (const name of candidates) {
-        const binding = record[name];
-        if (binding !== undefined && binding !== null && typeof binding.prepare === 'function')
-            return binding;
-    }
-    return null;
-};
-const readBodyBytes = async (request, maxBytes) => {
-    const buf = await request.arrayBuffer();
-    if (buf.byteLength > maxBytes) {
-        return {
-            ok: false,
-            response: toErrorResponse(413, 'PAYLOAD_TOO_LARGE', 'Body too large'),
-        };
-    }
-    const bytes = new Uint8Array(buf);
-    const text = new TextDecoder().decode(bytes);
-    return { ok: true, bytes, text };
-};
-const parseOptionalJson = (text) => {
-    if (text.trim() === '')
-        return { ok: true, payload: null };
-    const parsed = RequestValidator.parseJson(text);
-    if (!parsed.ok) {
-        // Type guard: we know parsed has 'error' property when ok is false
-        const errorResult = parsed;
-        let message = errorResult.error.message;
-        if (errorResult.error.code === 'INVALID_JSON') {
-            message = 'Invalid JSON body';
-        }
-        else if (errorResult.error.code === 'VALIDATION_ERROR') {
-            message = 'Invalid body';
-        }
-        return { ok: false, response: toErrorResponse(400, errorResult.error.code, message) };
-    }
-    // Type guard: we know parsed has 'value' property when ok is true
-    const successResult = parsed;
-    return { ok: true, payload: successResult.value };
-};
-const loadSigningSecret = (env) => {
-    const direct = typeof env.D1_REMOTE_SECRET === 'string' ? env.D1_REMOTE_SECRET.trim() : '';
-    if (direct !== '')
-        return direct;
-    const fallback = typeof env.APP_KEY === 'string' ? env.APP_KEY.trim() : '';
-    if (fallback !== '')
-        return fallback;
-    return null;
-};
-const loadStatements = (env) => {
-    const raw = env.ZT_D1_STATEMENTS_JSON;
-    if (typeof raw !== 'string' || raw.trim() === '')
-        return null;
-    try {
-        const parsed = JSON.parse(raw);
-        if (!isRecord(parsed))
-            return null;
-        return parsed;
-    }
-    catch {
-        return null;
-    }
-};
-const isMutatingSql = (sql) => {
-    const s = sql.trimStart().toLowerCase();
-    return (s.startsWith('insert') ||
-        s.startsWith('update') ||
-        s.startsWith('delete') ||
-        s.startsWith('create') ||
-        s.startsWith('drop') ||
-        s.startsWith('alter') ||
-        s.startsWith('replace'));
-};
-const verifyNonceKv = async (kv, keyId, nonce, ttlMs) => {
-    const ttlSeconds = Math.max(1, Math.ceil(ttlMs / 1000));
-    const storageKey = `nonce:${keyId}:${nonce}`;
-    const existing = await kv.get(storageKey);
-    if (existing !== null)
-        return false;
-    await kv.put(storageKey, '1', { expirationTtl: ttlSeconds });
-    return true;
-};
-const verifySignedRequest = async (request, env, bodyBytes) => {
-    const secret = loadSigningSecret(env);
-    if (secret === null) {
-        return toErrorResponse(401, 'CONFIG_ERROR', 'Missing signing secret (D1_REMOTE_SECRET or APP_KEY)');
-    }
-    const windowMs = getEnvInt(env, 'ZT_PROXY_SIGNING_WINDOW_MS', DEFAULT_SIGNING_WINDOW_MS);
-    const verifyResult = await SigningService.verifyWithKeyProvider({
-        method: request.method,
-        url: request.url,
-        body: bodyBytes,
-        headers: request.headers,
-        windowMs,
-        getSecretForKeyId: async (_keyId) => secret,
-        verifyNonce: env.ZT_NONCES === undefined
-            ? undefined
-            : async (keyId, nonce, ttlMs) => verifyNonceKv(env.ZT_NONCES, keyId, nonce, ttlMs),
-    });
-    if (verifyResult.ok === false) {
-        return toErrorResponse(verifyResult.status, verifyResult.code, verifyResult.message);
-    }
-    return { ok: true };
-};
-const requireDb = (env) => {
-    const db = resolveD1Binding(env);
-    if (db === null) {
-        return toErrorResponse(400, 'CONFIG_ERROR', 'Missing D1 binding (DB) or binding name via D1_BINDING');
-    }
-    return db;
-};
-const toD1ExceptionResponse = (error) => {
-    let message;
-    if (error instanceof Error) {
-        message = error.message;
-    }
-    else if (typeof error === 'string') {
-        message = error;
-    }
-    else {
-        message = 'Unknown D1 error';
-    }
-    return toErrorResponse(500, 'D1_ERROR', message);
-};
-const parseSqlPayload = (payload) => {
-    if (!isRecord(payload)) {
-        return {
-            ok: false,
-            response: toErrorResponse(400, 'VALIDATION_ERROR', 'Invalid body'),
-        };
-    }
-    const sql = payload['sql'];
-    const params = payload['params'];
-    if (!isString(sql)) {
-        return {
-            ok: false,
-            response: toErrorResponse(400, 'VALIDATION_ERROR', 'sql must be a string'),
-        };
-    }
-    return { ok: true, sql, params: isArray(params) ? params : [] };
-};
-const enforceSqlLimits = (env, sql, params) => {
-    const maxSqlBytes = getEnvInt(env, 'ZT_MAX_SQL_BYTES', DEFAULT_MAX_SQL_BYTES);
-    const maxParams = getEnvInt(env, 'ZT_MAX_PARAMS', DEFAULT_MAX_PARAMS);
-    if (new TextEncoder().encode(sql).byteLength > maxSqlBytes) {
-        return toErrorResponse(413, 'PAYLOAD_TOO_LARGE', 'SQL too large');
-    }
-    if (params.length > maxParams) {
-        return toErrorResponse(400, 'VALIDATION_ERROR', 'Too many params');
-    }
-    return null;
-};
-const readAndVerifyJson = async (request, env) => {
-    const maxBodyBytes = getEnvInt(env, 'ZT_MAX_BODY_BYTES', DEFAULT_MAX_BODY_BYTES);
-    const bodyResult = await readBodyBytes(request, maxBodyBytes);
-    if (bodyResult.ok === false)
-        return { ok: false, response: bodyResult.response };
-    const auth = await verifySignedRequest(request, env, bodyResult.bytes);
-    if (auth instanceof Response)
-        return { ok: false, response: auth };
-    const parsed = parseOptionalJson(bodyResult.text);
-    if (parsed.ok === false)
-        return { ok: false, response: parsed.response };
-    return { ok: true, payload: parsed.payload, bodyBytes: bodyResult.bytes };
-};
-const handleQuery = async (request, env) => {
-    try {
-        const check = await readAndVerifyJson(request, env);
-        if (check.ok === false)
-            return check.response;
-        const db = requireDb(env);
-        if (db instanceof Response)
-            return db;
-        const parsed = parseSqlPayload(check.payload);
-        if (parsed.ok === false)
-            return parsed.response;
-        const limit = enforceSqlLimits(env, parsed.sql, parsed.params);
-        if (limit !== null)
-            return limit;
-        const result = await db
-            .prepare(parsed.sql)
-            .bind(...parsed.params)
-            .all();
-        const rows = result.results ?? [];
-        return json(200, { rows, rowCount: rows.length });
-    }
-    catch (error) {
-        logProxyError(env, { op: 'query', path: '/zin/d1/query' }, error);
-        return toD1ExceptionResponse(error);
-    }
-};
-const handleQueryOne = async (request, env) => {
-    try {
-        const check = await readAndVerifyJson(request, env);
-        if (check.ok === false)
-            return check.response;
-        const db = requireDb(env);
-        if (db instanceof Response)
-            return db;
-        const parsed = parseSqlPayload(check.payload);
-        if (parsed.ok === false)
-            return parsed.response;
-        const limit = enforceSqlLimits(env, parsed.sql, parsed.params);
-        if (limit !== null)
-            return limit;
-        const row = await db
-            .prepare(parsed.sql)
-            .bind(...parsed.params)
-            .first();
-        return json(200, { row: row ?? null });
-    }
-    catch (error) {
-        logProxyError(env, { op: 'queryOne', path: '/zin/d1/queryOne' }, error);
-        return toD1ExceptionResponse(error);
-    }
-};
-const handleExec = async (request, env) => {
-    try {
-        const check = await readAndVerifyJson(request, env);
-        if (check.ok === false)
-            return check.response;
-        const db = requireDb(env);
-        if (db instanceof Response)
-            return db;
-        const parsed = parseSqlPayload(check.payload);
-        if (parsed.ok === false)
-            return parsed.response;
-        const limit = enforceSqlLimits(env, parsed.sql, parsed.params);
-        if (limit !== null)
-            return limit;
-        const out = await db
-            .prepare(parsed.sql)
-            .bind(...parsed.params)
-            .run();
-        return json(200, { ok: true, meta: out.meta });
-    }
-    catch (error) {
-        logProxyError(env, { op: 'exec', path: '/zin/d1/exec' }, error);
-        return toD1ExceptionResponse(error);
-    }
-};
-const parseStatementPayload = (payload) => {
-    if (!isRecord(payload)) {
-        return {
-            ok: false,
-            response: toErrorResponse(400, 'VALIDATION_ERROR', 'Invalid body'),
-        };
-    }
-    const statementId = payload['statementId'];
-    const params = payload['params'];
-    if (!isString(statementId) || statementId.trim() === '') {
-        return {
-            ok: false,
-            response: toErrorResponse(400, 'VALIDATION_ERROR', 'statementId must be a string'),
-        };
-    }
-    return { ok: true, statementId, params: isArray(params) ? params : [] };
-};
-const handleStatement = async (request, env) => {
-    try {
-        const check = await readAndVerifyJson(request, env);
-        if (check.ok === false)
-            return check.response;
-        const db = requireDb(env);
-        if (db instanceof Response)
-            return db;
-        const statements = loadStatements(env);
-        if (statements === null) {
-            return toErrorResponse(400, 'CONFIG_ERROR', 'Missing or invalid ZT_D1_STATEMENTS_JSON');
-        }
-        const parsed = parseStatementPayload(check.payload);
-        if (parsed.ok === false)
-            return parsed.response;
-        const sql = statements[parsed.statementId];
-        if (!isString(sql) || sql.trim() === '') {
-            return toErrorResponse(404, 'NOT_FOUND', 'Unknown statementId');
-        }
-        if (isMutatingSql(sql)) {
-            const out = await db
-                .prepare(sql)
-                .bind(...parsed.params)
-                .run();
-            return json(200, { ok: true, meta: out.meta });
-        }
-        const out = await db
-            .prepare(sql)
-            .bind(...parsed.params)
-            .all();
-        const rows = out.results ?? [];
-        return json(200, { rows, rowCount: rows.length });
-    }
-    catch (error) {
-        logProxyError(env, { op: 'statement', path: '/zin/d1/statement' }, error);
-        return toD1ExceptionResponse(error);
-    }
-};
-export const ZintrustD1Proxy = Object.freeze({
-    _ZINTRUST_CLOUDFLARE_D1_PROXY_VERSION: '0.1.15',
-    _ZINTRUST_CLOUDFLARE_D1_PROXY_BUILD_DATE: '__BUILD_DATE__',
-    async fetch(request, env) {
-        const url = new URL(request.url);
-        const methodError = RequestValidator.requirePost(request.method);
-        if (methodError !== null) {
-            return toErrorResponse(405, methodError.code, 'Method not allowed');
-        }
-        switch (url.pathname) {
-            case '/zin/d1/query':
-                return handleQuery(request, env);
-            case '/zin/d1/queryOne':
-                return handleQueryOne(request, env);
-            case '/zin/d1/exec':
-                return handleExec(request, env);
-            case '/zin/d1/statement':
-                return handleStatement(request, env);
-            default:
-                return toErrorResponse(404, 'NOT_FOUND', 'Not found');
-        }
-    },
-});
-export default ZintrustD1Proxy;

package/packages/cloudflare-kv-proxy/src/index.d.ts

@@ -1,44 +0,0 @@
-type KVNamespacePutOptions = {
-    expirationTtl?: number;
-};
-type KvGetType = 'text' | 'json' | 'arrayBuffer';
-type KVListResult = {
-    keys: Array<{
-        name: string;
-    }>;
-    cursor: string;
-    list_complete: boolean;
-};
-type KVNamespace = {
-    get: {
-        (key: string): Promise<string | null>;
-        (key: string, type: 'json'): Promise<unknown | null>;
-        (key: string, type: 'arrayBuffer'): Promise<ArrayBuffer | null>;
-        (key: string, type: KvGetType): Promise<unknown | ArrayBuffer | string | null>;
-    };
-    put: (key: string, value: string, options?: KVNamespacePutOptions) => Promise<void>;
-    delete: (key: string) => Promise<void>;
-    list: (options: {
-        prefix?: string;
-        limit?: number;
-        cursor?: string;
-    }) => Promise<KVListResult>;
-};
-type KvEnv = {
-    CACHE?: KVNamespace;
-    KV_NAMESPACE?: string;
-    APP_KEY?: string;
-    KV_REMOTE_SECRET?: string;
-    ZT_PROXY_SIGNING_WINDOW_MS?: string;
-    ZT_NONCES?: KVNamespace;
-    ZT_MAX_BODY_BYTES?: string;
-    ZT_KV_PREFIX?: string;
-    ZT_KV_LIST_LIMIT?: string;
-};
-export declare const ZintrustKvProxy: Readonly<{
-    _ZINTRUST_CLOUDFLARE_KV_PROXY_VERSION: "0.1.15";
-    _ZINTRUST_CLOUDFLARE_KV_PROXY_BUILD_DATE: "__BUILD_DATE__";
-    fetch(request: Request, env: KvEnv): Promise<Response>;
-}>;
-export default ZintrustKvProxy;
-//# sourceMappingURL=index.d.ts.map

package/packages/cloudflare-kv-proxy/src/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../packages/cloudflare-kv-proxy/src/index.ts"],"names":[],"mappings":"AAEA,KAAK,qBAAqB,GAAG;IAC3B,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB,CAAC;AAEF,KAAK,SAAS,GAAG,MAAM,GAAG,MAAM,GAAG,aAAa,CAAC;AAEjD,KAAK,YAAY,GAAG;IAClB,IAAI,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IAC9B,MAAM,EAAE,MAAM,CAAC;IACf,aAAa,EAAE,OAAO,CAAC;CACxB,CAAC;AAEF,KAAK,WAAW,GAAG;IACjB,GAAG,EAAE;QACH,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC;QACtC,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,GAAG,IAAI,CAAC,CAAC;QACrD,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,aAAa,GAAG,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC,CAAC;QAChE,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,SAAS,GAAG,OAAO,CAAC,OAAO,GAAG,WAAW,GAAG,MAAM,GAAG,IAAI,CAAC,CAAC;KAChF,CAAC;IACF,GAAG,EAAE,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,qBAAqB,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACpF,MAAM,EAAE,CAAC,GAAG,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACvC,IAAI,EAAE,CAAC,OAAO,EAAE;QAAE,MAAM,CAAC,EAAE,MAAM,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAC;QAAC,MAAM,CAAC,EAAE,MAAM,CAAA;KAAE,KAAK,OAAO,CAAC,YAAY,CAAC,CAAC;CAChG,CAAC;AAEF,KAAK,KAAK,GAAG;IACX,KAAK,CAAC,EAAE,WAAW,CAAC;IACpB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,0BAA0B,CAAC,EAAE,MAAM,CAAC;IACpC,SAAS,CAAC,EAAE,WAAW,CAAC;IACxB,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC3B,CAAC;AAyYF,eAAO,MAAM,eAAe;;;mBAGL,OAAO,OAAO,KAAK,GAAG,OAAO,CAAC,QAAQ,CAAC;EAqB5D,CAAC;AAEH,eAAe,eAAe,CAAC"}