npm - attaform - Versions diffs - 0.0.1 → 0.14.0 - Mend

attaform 0.0.1 → 0.14.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (97) hide show

package/LICENSE +21 -0
package/README.md +142 -2
package/dist/chunks/devtools.cjs +179 -0
package/dist/chunks/devtools.cjs.map +1 -0
package/dist/chunks/devtools.mjs +177 -0
package/dist/chunks/devtools.mjs.map +1 -0
package/dist/chunks/indexeddb.cjs +119 -0
package/dist/chunks/indexeddb.cjs.map +1 -0
package/dist/chunks/indexeddb.mjs +117 -0
package/dist/chunks/indexeddb.mjs.map +1 -0
package/dist/chunks/local-storage.cjs +58 -0
package/dist/chunks/local-storage.cjs.map +1 -0
package/dist/chunks/local-storage.mjs +56 -0
package/dist/chunks/local-storage.mjs.map +1 -0
package/dist/chunks/session-storage.cjs +58 -0
package/dist/chunks/session-storage.cjs.map +1 -0
package/dist/chunks/session-storage.mjs +56 -0
package/dist/chunks/session-storage.mjs.map +1 -0
package/dist/index.cjs +173 -0
package/dist/index.cjs.map +1 -0
package/dist/index.d.cts +493 -0
package/dist/index.d.mts +493 -0
package/dist/index.d.ts +493 -0
package/dist/index.mjs +141 -0
package/dist/index.mjs.map +1 -0
package/dist/nuxt.cjs +97 -0
package/dist/nuxt.cjs.map +1 -0
package/dist/nuxt.d.cts +38 -0
package/dist/nuxt.d.mts +38 -0
package/dist/nuxt.d.ts +38 -0
package/dist/nuxt.mjs +94 -0
package/dist/nuxt.mjs.map +1 -0
package/dist/runtime/plugins/attaform.cjs +32 -0
package/dist/runtime/plugins/attaform.cjs.map +1 -0
package/dist/runtime/plugins/attaform.d.cts +5 -0
package/dist/runtime/plugins/attaform.d.mts +5 -0
package/dist/runtime/plugins/attaform.d.ts +5 -0
package/dist/runtime/plugins/attaform.mjs +30 -0
package/dist/runtime/plugins/attaform.mjs.map +1 -0
package/dist/shared/attaform.B5GWYl76.cjs +386 -0
package/dist/shared/attaform.B5GWYl76.cjs.map +1 -0
package/dist/shared/attaform.BRTxpA3q.mjs +3283 -0
package/dist/shared/attaform.BRTxpA3q.mjs.map +1 -0
package/dist/shared/attaform.BYc9kugA.d.ts +124 -0
package/dist/shared/attaform.Bubm_slq.cjs +622 -0
package/dist/shared/attaform.Bubm_slq.cjs.map +1 -0
package/dist/shared/attaform.BwaYWtMs.d.cts +126 -0
package/dist/shared/attaform.BwaYWtMs.d.mts +126 -0
package/dist/shared/attaform.BwaYWtMs.d.ts +126 -0
package/dist/shared/attaform.CNJO3mME.cjs +3295 -0
package/dist/shared/attaform.CNJO3mME.cjs.map +1 -0
package/dist/shared/attaform.CRgix6_n.cjs +796 -0
package/dist/shared/attaform.CRgix6_n.cjs.map +1 -0
package/dist/shared/attaform.CXZgUECn.d.cts +124 -0
package/dist/shared/attaform.CXpzmj38.mjs +617 -0
package/dist/shared/attaform.CXpzmj38.mjs.map +1 -0
package/dist/shared/attaform.Cc93zNzD.mjs +83 -0
package/dist/shared/attaform.Cc93zNzD.mjs.map +1 -0
package/dist/shared/attaform.DDXrY-1Q.d.cts +2568 -0
package/dist/shared/attaform.DDXrY-1Q.d.mts +2568 -0
package/dist/shared/attaform.DDXrY-1Q.d.ts +2568 -0
package/dist/shared/attaform.DOKOyb3Y.d.mts +124 -0
package/dist/shared/attaform.DlgKK10S.mjs +789 -0
package/dist/shared/attaform.DlgKK10S.mjs.map +1 -0
package/dist/shared/attaform.al_rpt7_.mjs +361 -0
package/dist/shared/attaform.al_rpt7_.mjs.map +1 -0
package/dist/shared/attaform.xKWYHMdq.cjs +89 -0
package/dist/shared/attaform.xKWYHMdq.cjs.map +1 -0
package/dist/transforms.cjs +11 -0
package/dist/transforms.cjs.map +1 -0
package/dist/transforms.d.cts +49 -0
package/dist/transforms.d.mts +49 -0
package/dist/transforms.d.ts +49 -0
package/dist/transforms.mjs +2 -0
package/dist/transforms.mjs.map +1 -0
package/dist/vite.cjs +39 -0
package/dist/vite.cjs.map +1 -0
package/dist/vite.d.cts +53 -0
package/dist/vite.d.mts +53 -0
package/dist/vite.d.ts +53 -0
package/dist/vite.mjs +37 -0
package/dist/vite.mjs.map +1 -0
package/dist/zod-v3.cjs +1511 -0
package/dist/zod-v3.cjs.map +1 -0
package/dist/zod-v3.d.cts +164 -0
package/dist/zod-v3.d.mts +164 -0
package/dist/zod-v3.d.ts +164 -0
package/dist/zod-v3.mjs +1504 -0
package/dist/zod-v3.mjs.map +1 -0
package/dist/zod.cjs +1548 -0
package/dist/zod.cjs.map +1 -0
package/dist/zod.d.cts +67 -0
package/dist/zod.d.mts +67 -0
package/dist/zod.d.ts +67 -0
package/dist/zod.mjs +1541 -0
package/dist/zod.mjs.map +1 -0
package/package.json +182 -6

package/dist/index.cjs ADDED Viewed

@@ -0,0 +1,173 @@
+'use strict';
+const serialize = require('./shared/attaform.CRgix6_n.cjs');
+const sensitiveNames = require('./shared/attaform.B5GWYl76.cjs');
+const useFormContext = require('./shared/attaform.CNJO3mME.cjs');
+const paths = require('./shared/attaform.xKWYHMdq.cjs');
+function escapeForInlineScript(json) {
+  return json.replace(/[<>&\u2028\u2029]/g, (char) => {
+    switch (char) {
+      case "<":
+        return "\\u003c";
+      case ">":
+        return "\\u003e";
+      case "&":
+        return "\\u0026";
+      case "\u2028":
+        return "\\u2028";
+      case "\u2029":
+        return "\\u2029";
+      default:
+        return char;
+    }
+  });
+}
+const PARSE_API_ERRORS_DEFAULTS = {
+  maxEntries: 1e3,
+  maxPathDepth: 32,
+  maxTotalSegments: 1e4,
+  defaultCode: "api:unknown"
+};
+function parseApiErrors(payload, options) {
+  const maxEntries = options.maxEntries ?? PARSE_API_ERRORS_DEFAULTS.maxEntries;
+  const maxPathDepth = options.maxPathDepth ?? PARSE_API_ERRORS_DEFAULTS.maxPathDepth;
+  const maxTotalSegments = options.maxTotalSegments ?? PARSE_API_ERRORS_DEFAULTS.maxTotalSegments;
+  const defaultCode = options.defaultCode ?? PARSE_API_ERRORS_DEFAULTS.defaultCode;
+  if (payload === null || payload === void 0) {
+    return { ok: true, errors: [] };
+  }
+  if (typeof payload !== "object") {
+    return { ok: false, errors: [], rejected: `payload was ${typeof payload}, expected object` };
+  }
+  const extraction = extractDetails(payload);
+  if (!extraction.ok) {
+    return { ok: false, errors: [], rejected: extraction.reason };
+  }
+  const { details } = extraction;
+  const entryCount = Object.keys(details).length;
+  if (entryCount > maxEntries) {
+    return {
+      ok: false,
+      errors: [],
+      rejected: `payload has ${entryCount} entries, exceeds maxEntries=${maxEntries}`
+    };
+  }
+  const errors = [];
+  let totalSegments = 0;
+  for (const [key, value] of Object.entries(details)) {
+    const entryList = Array.isArray(value) ? value : [value];
+    let segments;
+    try {
+      segments = paths.canonicalizePath(key).segments;
+    } catch (err) {
+      if (err instanceof sensitiveNames.InvalidPathError) continue;
+      throw err;
+    }
+    if (segments.length > maxPathDepth) continue;
+    totalSegments += segments.length;
+    if (totalSegments > maxTotalSegments) {
+      return {
+        ok: false,
+        errors: [],
+        rejected: `payload total path segments exceeds maxTotalSegments=${maxTotalSegments}`
+      };
+    }
+    for (const entry of entryList) {
+      const message = typeof entry === "string" ? entry : entry.message;
+      const code = typeof entry === "string" ? defaultCode : entry.code;
+      if (message.length === 0) continue;
+      errors.push({
+        message,
+        path: Array.from(segments),
+        formKey: options.formKey,
+        code
+      });
+    }
+  }
+  return { ok: true, errors };
+}
+function extractDetails(payload) {
+  const wrappedError = payload["error"];
+  if (wrappedError !== null && wrappedError !== void 0 && typeof wrappedError === "object") {
+    const inner = wrappedError.details;
+    if (inner === void 0) {
+      return { ok: true, details: {} };
+    }
+    if (isDetailsRecord(inner)) return { ok: true, details: inner };
+    return {
+      ok: false,
+      reason: "error.details entries must be strings or { message, code } objects"
+    };
+  }
+  if (wrappedError !== null && wrappedError !== void 0 && typeof wrappedError !== "object") {
+    return {
+      ok: false,
+      reason: `payload.error was ${typeof wrappedError}, expected an object with { details }`
+    };
+  }
+  if ("details" in payload) {
+    const inner = payload["details"];
+    if (inner === void 0) return { ok: true, details: {} };
+    if (isDetailsRecord(inner)) return { ok: true, details: inner };
+    return { ok: false, reason: "details entries must be strings or { message, code } objects" };
+  }
+  if (isDetailsRecord(payload)) return { ok: true, details: payload };
+  if (Object.keys(payload).length === 0) return { ok: true, details: {} };
+  return { ok: false, reason: "unrecognised payload shape" };
+}
+function isStructuredEntry(value) {
+  if (value === null || typeof value !== "object" || Array.isArray(value)) return false;
+  const obj = value;
+  return typeof obj.message === "string" && typeof obj.code === "string";
+}
+function isAcceptedEntry(value) {
+  return typeof value === "string" || isStructuredEntry(value);
+}
+function isDetailsRecord(value) {
+  if (value === null || typeof value !== "object" || Array.isArray(value)) return false;
+  const record = value;
+  for (const k of Object.keys(record)) {
+    const v = record[k];
+    if (isAcceptedEntry(v)) continue;
+    if (Array.isArray(v) && v.every((entry) => isAcceptedEntry(entry))) continue;
+    return false;
+  }
+  return true;
+}
+exports.assignKey = serialize.assignKey;
+exports.createAttaform = serialize.createAttaform;
+exports.hydrateAttaformState = serialize.hydrateAttaformState;
+exports.isRegisterValue = serialize.isRegisterValue;
+exports.renderAttaformState = serialize.renderAttaformState;
+exports.vRegister = serialize.vRegister;
+exports.AnonPersistError = sensitiveNames.AnonPersistError;
+exports.AttaformError = sensitiveNames.AttaformError;
+exports.InvalidPathError = sensitiveNames.InvalidPathError;
+exports.OutsideSetupError = sensitiveNames.OutsideSetupError;
+exports.RegistryNotInstalledError = sensitiveNames.RegistryNotInstalledError;
+exports.ReservedFormKeyError = sensitiveNames.ReservedFormKeyError;
+exports.SensitivePersistFieldError = sensitiveNames.SensitivePersistFieldError;
+exports.SubmitErrorHandlerError = sensitiveNames.SubmitErrorHandlerError;
+exports.createRegistry = sensitiveNames.createRegistry;
+exports.getRegistryFromApp = sensitiveNames.getRegistryFromApp;
+exports.kAttaformRegistry = sensitiveNames.kAttaformRegistry;
+exports.useRegister = sensitiveNames.useRegister;
+exports.useRegistry = sensitiveNames.useRegistry;
+exports.AttaformErrorCode = useFormContext.AttaformErrorCode;
+exports.defaultCoercionRules = useFormContext.defaultCoercionRules;
+exports.defineCoercion = useFormContext.defineCoercion;
+exports.injectForm = useFormContext.injectForm;
+exports.isUnset = useFormContext.isUnset;
+exports.unset = useFormContext.unset;
+exports.useForm = useFormContext.useAbstractForm;
+exports.ROOT_PATH = paths.ROOT_PATH;
+exports.ROOT_PATH_KEY = paths.ROOT_PATH_KEY;
+exports.canonicalizePath = paths.canonicalizePath;
+exports.parseDottedPath = paths.parseDottedPath;
+exports.PARSE_API_ERRORS_DEFAULTS = PARSE_API_ERRORS_DEFAULTS;
+exports.escapeForInlineScript = escapeForInlineScript;
+exports.parseApiErrors = parseApiErrors;
+//# sourceMappingURL=index.cjs.map

package/dist/index.cjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.cjs","sources":["../src/runtime/core/serialize-script.ts","../src/runtime/core/parse-api-errors.ts"],"sourcesContent":["/**\n * Escape a JSON string so it's safe to embed inside an inline\n * `<script>` tag during SSR. Plain `JSON.stringify` is not safe — a\n * form value containing the literal substring `</script>` would\n * break out of the script tag.\n *\n * ```ts\n * const payload = escapeForInlineScript(JSON.stringify(renderAttaformState(app)))\n * // `<script>window.__ATTAFORM_STATE__ = ${payload}</script>` is safe.\n * ```\n *\n * Output remains valid JSON — `JSON.parse` round-trips back to the\n * original value on the client.\n */\nexport function escapeForInlineScript(json: string): string {\n return json.replace(/[<>&\\u2028\\u2029]/g, (char) => {\n switch (char) {\n case '<':\n return '\\\\u003c'\n case '>':\n return '\\\\u003e'\n case '&':\n return '\\\\u0026'\n case '\\u2028':\n return '\\\\u2028'\n case '\\u2029':\n return '\\\\u2029'\n default:\n return char\n }\n })\n}\n","import type {\n ApiErrorDetails,\n ApiErrorEntry,\n ApiErrorEnvelope,\n FormKey,\n ValidationError,\n} from '../types/types-api'\nimport { InvalidPathError } from './errors'\nimport { canonicalizePath } from './paths'\n\n/**\n * Result of `parseApiErrors`. Branch on `ok` to handle the two cases:\n *\n * ```ts\n * const result = parseApiErrors(payload, { formKey: form.key })\n * if (result.ok) {\n * form.setFieldErrors(result.errors)\n * } else {\n * console.warn('Bad error payload:', result.rejected)\n * }\n * ```\n *\n * `ok: true` means the payload was recognised — `errors` may still be\n * empty if the payload was valid but had no actual errors.\n * `ok: false` means the payload didn't match a known shape; `rejected`\n * carries a one-line description of why.\n */\nexport type ParseApiErrorsResult = {\n /** `true` when the payload was recognised; `false` when the shape was unfamiliar. */\n readonly ok: boolean\n /** Errors extracted from the payload. May be empty even when `ok: true`. */\n readonly errors: ValidationError[]\n /** When `ok: false`, a one-line description of why the payload was rejected. */\n readonly rejected?: string\n}\n\n/**\n * Options for `parseApiErrors`. The size caps protect against\n * misbehaving or hostile servers — exceeding any cap causes the\n * parser to reject the payload wholesale rather than partially apply.\n */\nexport type ParseApiErrorsOptions = {\n /**\n * The form's identifier — pass `form.key`. Stamped on every\n * produced `ValidationError` so errors route to the right form.\n */\n readonly formKey: FormKey\n /**\n * Code stamped on `ValidationError`s synthesized from bare-string\n * entries (the Rails / DRF / Laravel `{ field: [\"msg\"] }` shape).\n * Default `'api:unknown'`. Pick something more specific\n * (`'api:server-validation'`, `'myapp:legacy'`, …) when you know\n * the source.\n *\n * Structured `{ message, code }` entries forward their `code`\n * verbatim and ignore this option.\n */\n readonly defaultCode?: string\n /**\n * Maximum number of distinct keys to accept. Default `1000`.\n * Raise for trusted backends that legitimately produce more.\n */\n readonly maxEntries?: number\n /**\n * Maximum number of path segments per key. Default `32`. Keys\n * deeper than this are dropped (the rest of the payload still\n * applies if it stays under the other caps).\n */\n readonly maxPathDepth?: number\n /**\n * Maximum total path segments summed across every accepted key.\n * Default `10000`. Bounds the worst-case traversal cost.\n */\n readonly maxTotalSegments?: number\n}\n\n/**\n * Default size caps + default fallback code used by `parseApiErrors`.\n * Conservative; pass larger values (or a more specific code) via the\n * options bag for trusted-backend integrations.\n */\nexport const PARSE_API_ERRORS_DEFAULTS = {\n maxEntries: 1000,\n maxPathDepth: 32,\n maxTotalSegments: 10000,\n defaultCode: 'api:unknown',\n} as const\n\n/**\n * Normalise a server-side validation error payload into\n * `ValidationError[]`. Pair with `form.setFieldErrors` /\n * `form.addFieldErrors` to surface server errors on the form:\n *\n * ```ts\n * const response = await fetch('/api/signup', { … })\n * if (!response.ok) {\n * const payload = await response.json()\n * const result = parseApiErrors(payload, { formKey: form.key })\n * if (result.ok) form.setFieldErrors(result.errors)\n * }\n * ```\n *\n * Recognised payload shapes:\n *\n * - Wrapped envelope:\n * `{ error: { details: { email: { message: 'taken', code: 'api:duplicate-email' } } } }`\n * - Unwrapped envelope:\n * `{ details: { email: { message: 'taken', code: 'api:duplicate-email' } } }`\n * - Raw details record:\n * `{ email: { message: 'taken', code: 'api:duplicate-email' } }`\n * - **Bare-string Rails / DRF / Laravel shape:**\n * `{ email: ['Email already taken.'], username: 'too short' }`\n * - `null` / `undefined` — returns `{ ok: true, errors: [] }`\n *\n * Two entry shapes are accepted:\n *\n * 1. **Structured** — `{ message: string, code: string }`. The `code`\n * is forwarded verbatim onto the produced `ValidationError`.\n * 2. **Bare-string** — a plain string. Synthesized into\n * `{ message: <string>, code: <defaultCode> }` where `defaultCode`\n * comes from `options.defaultCode` (default `'api:unknown'`).\n * Useful for the Rails / Django REST Framework / FastAPI / Laravel\n * JSON shape that doesn't carry a per-field code.\n *\n * Each detail key's value can be a single entry, an array, or a mix\n * of structured and bare-string entries; arrays expand into one\n * `ValidationError` per entry. Pick a prefix on the server (`api:`,\n * `auth:`, etc.) and stay consistent so error renderers can branch\n * on `code` — or rely on `defaultCode` when the wire shape is\n * message-only.\n *\n * Dotted keys (`\"address.line1\"`) are split into structured paths\n * automatically. Use a custom server response shape outside these\n * patterns? Build the `ValidationError[]` array yourself and pass\n * it to `setFieldErrors` directly — `parseApiErrors` is just a\n * convenience for the common shapes.\n */\nexport function parseApiErrors(\n payload: ApiErrorEnvelope | ApiErrorDetails | null | undefined | unknown,\n options: ParseApiErrorsOptions\n): ParseApiErrorsResult {\n const maxEntries = options.maxEntries ?? PARSE_API_ERRORS_DEFAULTS.maxEntries\n const maxPathDepth = options.maxPathDepth ?? PARSE_API_ERRORS_DEFAULTS.maxPathDepth\n const maxTotalSegments = options.maxTotalSegments ?? PARSE_API_ERRORS_DEFAULTS.maxTotalSegments\n const defaultCode = options.defaultCode ?? PARSE_API_ERRORS_DEFAULTS.defaultCode\n\n if (payload === null || payload === undefined) {\n return { ok: true, errors: [] }\n }\n if (typeof payload !== 'object') {\n return { ok: false, errors: [], rejected: `payload was ${typeof payload}, expected object` }\n }\n\n const extraction = extractDetails(payload as Record<string, unknown>)\n if (!extraction.ok) {\n return { ok: false, errors: [], rejected: extraction.reason }\n }\n\n const { details } = extraction\n const entryCount = Object.keys(details).length\n // Enforce the guardrails before we spend time walking the payload.\n // Rejecting wholesale (not partial-applying) keeps the failure visible\n // so consumers can tune the caps or investigate the server payload.\n if (entryCount > maxEntries) {\n return {\n ok: false,\n errors: [],\n rejected: `payload has ${entryCount} entries, exceeds maxEntries=${maxEntries}`,\n }\n }\n\n const errors: ValidationError[] = []\n let totalSegments = 0\n for (const [key, value] of Object.entries(details)) {\n const entryList: ReadonlyArray<string | ApiErrorEntry> = Array.isArray(value) ? value : [value]\n // `canonicalizePath` throws `InvalidPathError` for dotted strings with\n // empty segments (e.g. `'. '`, `'a..b'`). A misbehaving server can\n // genuinely emit such a key; the hydrator is a normaliser, not a\n // validator, so we drop offending keys rather than let the exception\n // escape. Well-formed keys continue as normal.\n let segments: readonly (string | number)[]\n try {\n segments = canonicalizePath(key).segments\n } catch (err) {\n if (err instanceof InvalidPathError) continue\n throw err\n }\n // Per-path depth cap. We drop the offending key (rather than\n // rejecting the whole payload) because a single stray deep path\n // in an otherwise legitimate error set is still worth surfacing\n // the rest. Consumers who want strict rejection can post-filter\n // on `result.errors.length < details entryCount`.\n if (segments.length > maxPathDepth) continue\n // Total-segment cap. Enforced wholesale (not per-key) so a payload\n // that passes the per-key gate but stacks into a pathological\n // total still fails visibly. Mirrors `maxEntries` strictness.\n totalSegments += segments.length\n if (totalSegments > maxTotalSegments) {\n return {\n ok: false,\n errors: [],\n rejected: `payload total path segments exceeds maxTotalSegments=${maxTotalSegments}`,\n }\n }\n for (const entry of entryList) {\n // Bare-string entries (Rails / DRF / Laravel shape) synthesize a\n // `code` from `options.defaultCode`; structured `{ message, code }`\n // entries forward `code` verbatim. Empty messages drop silently\n // (`{ message: '' }` or `''`) — same recoverable-malformed-server\n // policy as before.\n const message = typeof entry === 'string' ? entry : entry.message\n const code = typeof entry === 'string' ? defaultCode : entry.code\n if (message.length === 0) continue\n errors.push({\n message,\n path: Array.from(segments),\n formKey: options.formKey,\n code,\n })\n }\n }\n return { ok: true, errors }\n}\n\ntype ExtractResult = { ok: true; details: ApiErrorDetails } | { ok: false; reason: string }\n\nfunction extractDetails(payload: Record<string, unknown>): ExtractResult {\n const wrappedError = payload['error']\n if (wrappedError !== null && wrappedError !== undefined && typeof wrappedError === 'object') {\n const inner = (wrappedError as { details?: unknown }).details\n if (inner === undefined) {\n // A wrapped envelope without details is considered \"no errors\" — valid shape.\n return { ok: true, details: {} }\n }\n if (isDetailsRecord(inner)) return { ok: true, details: inner }\n return {\n ok: false,\n reason: 'error.details entries must be strings or { message, code } objects',\n }\n }\n\n // `{ error: 'oops' }` / `{ error: 42 }` is a malformed wrapped envelope —\n // the server meant an error object but sent a scalar. Without this guard\n // the payload would fall through to the raw-details branch below, where\n // `{ error: 'oops' }` satisfies `isDetailsRecord` and silently produces\n // a phantom `ValidationError` at path `['error']`.\n if (wrappedError !== null && wrappedError !== undefined && typeof wrappedError !== 'object') {\n return {\n ok: false,\n reason: `payload.error was ${typeof wrappedError}, expected an object with { details }`,\n }\n }\n\n if ('details' in payload) {\n const inner = payload['details']\n if (inner === undefined) return { ok: true, details: {} }\n if (isDetailsRecord(inner)) return { ok: true, details: inner }\n return { ok: false, reason: 'details entries must be strings or { message, code } objects' }\n }\n\n if (isDetailsRecord(payload)) return { ok: true, details: payload }\n\n // Heuristic: if the payload has keys but none of them look like details,\n // it's probably a completely different shape. Reject.\n if (Object.keys(payload).length === 0) return { ok: true, details: {} }\n return { ok: false, reason: 'unrecognised payload shape' }\n}\n\nfunction isStructuredEntry(value: unknown): value is ApiErrorEntry {\n if (value === null || typeof value !== 'object' || Array.isArray(value)) return false\n const obj = value as { message?: unknown; code?: unknown }\n return typeof obj.message === 'string' && typeof obj.code === 'string'\n}\n\n/**\n * Accepts either a structured `{ message, code }` entry OR a bare\n * string. Bare strings synthesize a `code` at parse time\n * (`options.defaultCode`) and are useful for the Rails / Django REST\n * Framework / Laravel JSON shape that doesn't carry a per-field code.\n */\nfunction isAcceptedEntry(value: unknown): value is string | ApiErrorEntry {\n return typeof value === 'string' || isStructuredEntry(value)\n}\n\n/**\n * A record is a \"details\" record when every value is either an\n * accepted entry or an array of accepted entries (mixing structured +\n * bare-string in the same array is fine; the parser normalises per\n * entry). Half-structured objects (e.g. `{ message: 'x' }` missing\n * `code`) are still rejected so the bug surfaces — see the\n * `'rejects entries that are objects but missing required fields'`\n * test for the rationale.\n */\nfunction isDetailsRecord(value: unknown): value is ApiErrorDetails {\n if (value === null || typeof value !== 'object' || Array.isArray(value)) return false\n // Reject prototype-polluted keys — we don't use them here, but downstream\n // spreads shouldn't have to worry about this input.\n const record = value as Record<string, unknown>\n for (const k of Object.keys(record)) {\n const v = record[k]\n if (isAcceptedEntry(v)) continue\n if (Array.isArray(v) && v.every((entry) => isAcceptedEntry(entry))) continue\n return false\n }\n return true\n}\n"],"names":["canonicalizePath","InvalidPathError"],"mappings":";;;;;;;AAcO,SAAS,sBAAsB,IAAA,EAAsB;AAC1D,EAAA,OAAO,IAAA,CAAK,OAAA,CAAQ,oBAAA,EAAsB,CAAC,IAAA,KAAS;AAClD,IAAA,QAAQ,IAAA;AAAM,MACZ,KAAK,GAAA;AACH,QAAA,OAAO,SAAA;AAAA,MACT,KAAK,GAAA;AACH,QAAA,OAAO,SAAA;AAAA,MACT,KAAK,GAAA;AACH,QAAA,OAAO,SAAA;AAAA,MACT,KAAK,QAAA;AACH,QAAA,OAAO,SAAA;AAAA,MACT,KAAK,QAAA;AACH,QAAA,OAAO,SAAA;AAAA,MACT;AACE,QAAA,OAAO,IAAA;AAAA;AACX,EACF,CAAC,CAAA;AACH;;ACkDO,MAAM,yBAAA,GAA4B;AAAA,EACvC,UAAA,EAAY,GAAA;AAAA,EACZ,YAAA,EAAc,EAAA;AAAA,EACd,gBAAA,EAAkB,GAAA;AAAA,EAClB,WAAA,EAAa;AACf;AAmDO,SAAS,cAAA,CACd,SACA,OAAA,EACsB;AACtB,EAAA,MAAM,UAAA,GAAa,OAAA,CAAQ,UAAA,IAAc,yBAAA,CAA0B,UAAA;AACnE,EAAA,MAAM,YAAA,GAAe,OAAA,CAAQ,YAAA,IAAgB,yBAAA,CAA0B,YAAA;AACvE,EAAA,MAAM,gBAAA,GAAmB,OAAA,CAAQ,gBAAA,IAAoB,yBAAA,CAA0B,gBAAA;AAC/E,EAAA,MAAM,WAAA,GAAc,OAAA,CAAQ,WAAA,IAAe,yBAAA,CAA0B,WAAA;AAErE,EAAA,IAAI,OAAA,KAAY,IAAA,IAAQ,OAAA,KAAY,MAAA,EAAW;AAC7C,IAAA,OAAO,EAAE,EAAA,EAAI,IAAA,EAAM,MAAA,EAAQ,EAAC,EAAE;AAAA,EAChC;AACA,EAAA,IAAI,OAAO,YAAY,QAAA,EAAU;AAC/B,IAAA,OAAO,EAAE,EAAA,EAAI,KAAA,EAAO,MAAA,EAAQ,IAAI,QAAA,EAAU,CAAA,YAAA,EAAe,OAAO,OAAO,CAAA,iBAAA,CAAA,EAAoB;AAAA,EAC7F;AAEA,EAAA,MAAM,UAAA,GAAa,eAAe,OAAkC,CAAA;AACpE,EAAA,IAAI,CAAC,WAAW,EAAA,EAAI;AAClB,IAAA,OAAO,EAAE,IAAI,KAAA,EAAO,MAAA,EAAQ,EAAC,EAAG,QAAA,EAAU,WAAW,MAAA,EAAO;AAAA,EAC9D;AAEA,EAAA,MAAM,EAAE,SAAQ,GAAI,UAAA;AACpB,EAAA,MAAM,UAAA,GAAa,MAAA,CAAO,IAAA,CAAK,OAAO,CAAA,CAAE,MAAA;AAIxC,EAAA,IAAI,aAAa,UAAA,EAAY;AAC3B,IAAA,OAAO;AAAA,MACL,EAAA,EAAI,KAAA;AAAA,MACJ,QAAQ,EAAC;AAAA,MACT,QAAA,EAAU,CAAA,YAAA,EAAe,UAAU,CAAA,6BAAA,EAAgC,UAAU,CAAA;AAAA,KAC/E;AAAA,EACF;AAEA,EAAA,MAAM,SAA4B,EAAC;AACnC,EAAA,IAAI,aAAA,GAAgB,CAAA;AACpB,EAAA,KAAA,MAAW,CAAC,GAAA,EAAK,KAAK,KAAK,MAAA,CAAO,OAAA,CAAQ,OAAO,CAAA,EAAG;AAClD,IAAA,MAAM,YAAmD,KAAA,CAAM,OAAA,CAAQ,KAAK,CAAA,GAAI,KAAA,GAAQ,CAAC,KAAK,CAAA;AAM9F,IAAA,IAAI,QAAA;AACJ,IAAA,IAAI;AACF,MAAA,QAAA,GAAWA,sBAAA,CAAiB,GAAG,CAAA,CAAE,QAAA;AAAA,IACnC,SAAS,GAAA,EAAK;AACZ,MAAA,IAAI,eAAeC,+BAAA,EAAkB;AACrC,MAAA,MAAM,GAAA;AAAA,IACR;AAMA,IAAA,IAAI,QAAA,CAAS,SAAS,YAAA,EAAc;AAIpC,IAAA,aAAA,IAAiB,QAAA,CAAS,MAAA;AAC1B,IAAA,IAAI,gBAAgB,gBAAA,EAAkB;AACpC,MAAA,OAAO;AAAA,QACL,EAAA,EAAI,KAAA;AAAA,QACJ,QAAQ,EAAC;AAAA,QACT,QAAA,EAAU,wDAAwD,gBAAgB,CAAA;AAAA,OACpF;AAAA,IACF;AACA,IAAA,KAAA,MAAW,SAAS,SAAA,EAAW;AAM7B,MAAA,MAAM,OAAA,GAAU,OAAO,KAAA,KAAU,QAAA,GAAW,QAAQ,KAAA,CAAM,OAAA;AAC1D,MAAA,MAAM,IAAA,GAAO,OAAO,KAAA,KAAU,QAAA,GAAW,cAAc,KAAA,CAAM,IAAA;AAC7D,MAAA,IAAI,OAAA,CAAQ,WAAW,CAAA,EAAG;AAC1B,MAAA,MAAA,CAAO,IAAA,CAAK;AAAA,QACV,OAAA;AAAA,QACA,IAAA,EAAM,KAAA,CAAM,IAAA,CAAK,QAAQ,CAAA;AAAA,QACzB,SAAS,OAAA,CAAQ,OAAA;AAAA,QACjB;AAAA,OACD,CAAA;AAAA,IACH;AAAA,EACF;AACA,EAAA,OAAO,EAAE,EAAA,EAAI,IAAA,EAAM,MAAA,EAAO;AAC5B;AAIA,SAAS,eAAe,OAAA,EAAiD;AACvE,EAAA,MAAM,YAAA,GAAe,QAAQ,OAAO,CAAA;AACpC,EAAA,IAAI,iBAAiB,IAAA,IAAQ,YAAA,KAAiB,MAAA,IAAa,OAAO,iBAAiB,QAAA,EAAU;AAC3F,IAAA,MAAM,QAAS,YAAA,CAAuC,OAAA;AACtD,IAAA,IAAI,UAAU,MAAA,EAAW;AAEvB,MAAA,OAAO,EAAE,EAAA,EAAI,IAAA,EAAM,OAAA,EAAS,EAAC,EAAE;AAAA,IACjC;AACA,IAAA,IAAI,eAAA,CAAgB,KAAK,CAAA,EAAG,OAAO,EAAE,EAAA,EAAI,IAAA,EAAM,SAAS,KAAA,EAAM;AAC9D,IAAA,OAAO;AAAA,MACL,EAAA,EAAI,KAAA;AAAA,MACJ,MAAA,EAAQ;AAAA,KACV;AAAA,EACF;AAOA,EAAA,IAAI,iBAAiB,IAAA,IAAQ,YAAA,KAAiB,MAAA,IAAa,OAAO,iBAAiB,QAAA,EAAU;AAC3F,IAAA,OAAO;AAAA,MACL,EAAA,EAAI,KAAA;AAAA,MACJ,MAAA,EAAQ,CAAA,kBAAA,EAAqB,OAAO,YAAY,CAAA,qCAAA;AAAA,KAClD;AAAA,EACF;AAEA,EAAA,IAAI,aAAa,OAAA,EAAS;AACxB,IAAA,MAAM,KAAA,GAAQ,QAAQ,SAAS,CAAA;AAC/B,IAAA,IAAI,KAAA,KAAU,QAAW,OAAO,EAAE,IAAI,IAAA,EAAM,OAAA,EAAS,EAAC,EAAE;AACxD,IAAA,IAAI,eAAA,CAAgB,KAAK,CAAA,EAAG,OAAO,EAAE,EAAA,EAAI,IAAA,EAAM,SAAS,KAAA,EAAM;AAC9D,IAAA,OAAO,EAAE,EAAA,EAAI,KAAA,EAAO,MAAA,EAAQ,8DAAA,EAA+D;AAAA,EAC7F;AAEA,EAAA,IAAI,eAAA,CAAgB,OAAO,CAAA,EAAG,OAAO,EAAE,EAAA,EAAI,IAAA,EAAM,SAAS,OAAA,EAAQ;AAIlE,EAAA,IAAI,MAAA,CAAO,IAAA,CAAK,OAAO,CAAA,CAAE,MAAA,KAAW,CAAA,EAAG,OAAO,EAAE,EAAA,EAAI,IAAA,EAAM,OAAA,EAAS,EAAC,EAAE;AACtE,EAAA,OAAO,EAAE,EAAA,EAAI,KAAA,EAAO,MAAA,EAAQ,4BAAA,EAA6B;AAC3D;AAEA,SAAS,kBAAkB,KAAA,EAAwC;AACjE,EAAA,IAAI,KAAA,KAAU,QAAQ,OAAO,KAAA,KAAU,YAAY,KAAA,CAAM,OAAA,CAAQ,KAAK,CAAA,EAAG,OAAO,KAAA;AAChF,EAAA,MAAM,GAAA,GAAM,KAAA;AACZ,EAAA,OAAO,OAAO,GAAA,CAAI,OAAA,KAAY,QAAA,IAAY,OAAO,IAAI,IAAA,KAAS,QAAA;AAChE;AAQA,SAAS,gBAAgB,KAAA,EAAiD;AACxE,EAAA,OAAO,OAAO,KAAA,KAAU,QAAA,IAAY,iBAAA,CAAkB,KAAK,CAAA;AAC7D;AAWA,SAAS,gBAAgB,KAAA,EAA0C;AACjE,EAAA,IAAI,KAAA,KAAU,QAAQ,OAAO,KAAA,KAAU,YAAY,KAAA,CAAM,OAAA,CAAQ,KAAK,CAAA,EAAG,OAAO,KAAA;AAGhF,EAAA,MAAM,MAAA,GAAS,KAAA;AACf,EAAA,KAAA,MAAW,CAAA,IAAK,MAAA,CAAO,IAAA,CAAK,MAAM,CAAA,EAAG;AACnC,IAAA,MAAM,CAAA,GAAI,OAAO,CAAC,CAAA;AAClB,IAAA,IAAI,eAAA,CAAgB,CAAC,CAAA,EAAG;AACxB,IAAA,IAAI,KAAA,CAAM,OAAA,CAAQ,CAAC,CAAA,IAAK,CAAA,CAAE,KAAA,CAAM,CAAC,KAAA,KAAU,eAAA,CAAgB,KAAK,CAAC,CAAA,EAAG;AACpE,IAAA,OAAO,KAAA;AAAA,EACT;AACA,EAAA,OAAO,IAAA;AACT;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;"}