npm - cookie-es - Versions diffs - 1.2.2 → 3.0.0 - Mend

cookie-es 1.2.2 → 3.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/README.md CHANGED Viewed

@@ -1,82 +1,160 @@
 # 🍪 cookie-es
-<!-- automd:badges bundlejs -->
+<!-- automd:badges bundlejs packagephobia codecov -->
 [![npm version](https://img.shields.io/npm/v/cookie-es)](https://npmjs.com/package/cookie-es)
-[![npm downloads](https://img.shields.io/npm/dm/cookie-es)](https://npmjs.com/package/cookie-es)
+[![npm downloads](https://img.shields.io/npm/dm/cookie-es)](https://npm.chart.dev/cookie-es)
 [![bundle size](https://img.shields.io/bundlejs/size/cookie-es)](https://bundlejs.com/?q=cookie-es)
+[![install size](https://badgen.net/packagephobia/install/cookie-es)](https://packagephobia.com/result?p=cookie-es)
+[![codecov](https://img.shields.io/codecov/c/gh/unjs/cookie-es)](https://codecov.io/gh/unjs/cookie-es)
 <!-- /automd -->
-🍪 [`Cookie`](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Cookie) and [`Set-Cookie`](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie) parser and serializer based on [cookie](https://github.com/jshttp/cookie) and [set-cookie-parser](https://github.com/nfriedly/set-cookie-parser) with dual ESM/CJS exports and bundled types. 🎁
-## Usage
+ESM-ready [`Cookie`](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Cookie) and [`Set-Cookie`](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie) parser and serializer based on [cookie](https://github.com/jshttp/cookie) and [set-cookie-parser](https://github.com/nfriedly/set-cookie-parser) with built-in TypeScript types. Compliant with [RFC 6265bis](https://httpwg.org/http-extensions/draft-ietf-httpbis-rfc6265bis.html).
-Install:
-<!-- automd:pm-install -->
+## Install
 ```sh
-# ✨ Auto-detect
+# ✨ Auto-detect (npm, yarn, pnpm, bun, deno)
 npx nypm install cookie-es
+```
-# npm
-npm install cookie-es
+## Import
-# yarn
-yarn add cookie-es
+**ESM** (Node.js, Bun, Deno)
-# pnpm
-pnpm install cookie-es
+```js
+import {
+  parseCookie,
+  parseSetCookie,
+  serializeCookie,
+  stringifyCookie,
+  splitSetCookieString,
+} from "cookie-es";
+```
-# bun
-bun install cookie-es
+**CDN** (Deno, Bun and Browsers)
+```js
+import {
+  parseCookie,
+  parseSetCookie,
+  serializeCookie,
+  stringifyCookie,
+  splitSetCookieString,
+} from "https://esm.sh/cookie-es";
 ```
-<!-- /automd-->
+## API
-Import:
+### `parseCookie(str, options?)`
+Parse a `Cookie` header string into an object. First occurrence wins for duplicate names.
-<!-- automd:jsimport cdn cjs src=./src/index.ts -->
+```js
+parseCookie("foo=bar; equation=E%3Dmc%5E2");
+// { foo: "bar", equation: "E=mc^2" }
+// Custom decoder
+parseCookie("foo=bar", { decode: (v) => v });
-**ESM** (Node.js, Bun)
+// Only parse specific keys
+parseCookie("a=1; b=2; c=3", { filter: (key) => key !== "b" });
+// { a: "1", c: "3" }
+```
+### `parseSetCookie(str, options?)`
+Parse a `Set-Cookie` header string into an object with all cookie attributes.
 ```js
-import {
-  parse,
-  serialize,
-  parseSetCookie,
-  splitSetCookieString,
-} from "cookie-es";
+parseSetCookie(
+  "id=abc; Domain=example.com; Path=/; HttpOnly; Secure; SameSite=Lax; Max-Age=3600; Partitioned; Priority=High",
+);
+// {
+//   name: "id",
+//   value: "abc",
+//   domain: "example.com",
+//   path: "/",
+//   httpOnly: true,
+//   secure: true,
+//   sameSite: "lax",
+//   maxAge: 3600,
+//   partitioned: true,
+//   priority: "high",
+// }
 ```
-**CommonJS** (Legacy Node.js)
+Supports `decode` option (custom function or `false` to skip decoding). Returns `undefined` for cookies with forbidden names (prototype pollution protection) or when both name and value are empty ([RFC 6265bis](https://httpwg.org/http-extensions/draft-ietf-httpbis-rfc6265bis.html) sec 5.7).
+### `serializeCookie(name, value, options?)`
+Serialize a cookie name-value pair into a `Set-Cookie` header string.
 ```js
-const {
-  parse,
-  serialize,
-  parseSetCookie,
-  splitSetCookieString,
-} = require("cookie-es");
+serializeCookie("foo", "bar", { httpOnly: true, secure: true, maxAge: 3600 });
+// "foo=bar; Max-Age=3600; HttpOnly; Secure"
+// Also accepts a cookie object
+serializeCookie({
+  name: "foo",
+  value: "bar",
+  domain: "example.com",
+  path: "/",
+  sameSite: "lax",
+});
+// "foo=bar; Domain=example.com; Path=/; SameSite=Lax"
 ```
-**CDN** (Deno, Bun and Browsers)
+Supported attributes: `maxAge`, `expires`, `domain`, `path`, `httpOnly`, `secure`, `sameSite`, `priority`, `partitioned`. Use `encode` option for custom value encoding (default: `encodeURIComponent`).
+> [!NOTE]
+> `parse` and `serialize` are available as shorter aliases for `parseCookie` and `serializeCookie`.
+### `stringifyCookie(cookies, options?)`
+Stringify a cookies object into an HTTP `Cookie` header string.
 ```js
-import {
-  parse,
-  serialize,
-  parseSetCookie,
-  splitSetCookieString,
-} from "https://esm.sh/cookie-es";
+stringifyCookie({ foo: "bar", baz: "qux" });
+// "foo=bar; baz=qux"
 ```
-<!-- /automd -->
+### `splitSetCookieString(input)`
+Split comma-joined `Set-Cookie` headers into individual strings. Correctly handles commas within cookie attributes like `Expires` dates.
+```js
+splitSetCookieString(
+  "foo=bar; Expires=Thu, 01 Jan 2026 00:00:00 GMT, baz=qux",
+);
+// ["foo=bar; Expires=Thu, 01 Jan 2026 00:00:00 GMT", "baz=qux"]
+// Also accepts an array
+splitSetCookieString(["a=1, b=2", "c=3"]);
+// ["a=1", "b=2", "c=3"]
+```
+## Parsing Options
+### `allowMultiple`
+By default, when a cookie name appears more than once, only the first value is kept. Set `allowMultiple: true` to collect all values into an array:
+```js
+import { parseCookie } from "cookie-es";
+// Default: first value wins
+parseCookie("foo=a;bar=b;foo=c");
+// => { foo: "a", bar: "b" }
+// With allowMultiple: duplicates return arrays
+parseCookie("foo=a;bar=b;foo=c", { allowMultiple: true });
+// => { foo: ["a", "c"], bar: "b" }
+```
 ## License
 [MIT](./LICENSE)
+Based on [jshttp/cookie](https://github.com/jshttp/cookie) (Roman Shtylman and Douglas Christopher Wilson) and [nfriedly/set-cookie-parser](https://github.com/nfriedly/set-cookie-parser) (Nathan Friedly).

package/dist/index.d.mts CHANGED Viewed

@@ -1,216 +1,238 @@
+//#region src/cookie/types.d.ts
 /**
- * Basic HTTP cookie parser and serializer for HTTP servers.
+ * Parse options.
  */
+interface CookieParseOptions {
+  /**
+   * Specifies a function that will be used to decode a [cookie-value](https://datatracker.ietf.org/doc/html/rfc6265#section-4.1.1).
+   * Since the value of a cookie has a limited character set (and must be a simple string), this function can be used to decode
+   * a previously-encoded cookie value into a JavaScript string.
+   *
+   * The default function is the global `decodeURIComponent`, wrapped in a `try..catch`. If an error
+   * is thrown it will return the cookie's original value. If you provide your own encode/decode
+   * scheme you must ensure errors are appropriately handled.
+   *
+   * @default decode
+   */
+  decode?: (str: string) => string | undefined;
+  /**
+   * Custom function to filter parsing specific keys.
+   */
+  filter?(key: string): boolean;
+  /**
+   * When enabled, duplicate cookie names will return an array of values
+   * instead of only the first value.
+   */
+  allowMultiple?: boolean;
+}
+/**
+ * Cookies object.
+ */
+type Cookies = Record<string, string | undefined>;
 /**
- * Additional serialization options
+ * Cookies object when `allowMultiple` is enabled.
  */
-interface CookieSerializeOptions {
-    /**
-     * Specifies the value for the {@link https://tools.ietf.org/html/rfc6265#section-5.2.3|Domain Set-Cookie attribute}. By default, no
-     * domain is set, and most clients will consider the cookie to apply to only
-     * the current domain.
-     */
-    domain?: string | undefined;
-    /**
-     * Specifies a function that will be used to encode a cookie's value. Since
-     * value of a cookie has a limited character set (and must be a simple
-     * string), this function can be used to encode a value into a string suited
-     * for a cookie's value.
-     *
-     * The default function is the global `encodeURIComponent`, which will
-     * encode a JavaScript string into UTF-8 byte sequences and then URL-encode
-     * any that fall outside of the cookie range.
-     */
-    encode?(value: string): string;
-    /**
-     * Specifies the `Date` object to be the value for the {@link https://tools.ietf.org/html/rfc6265#section-5.2.1|`Expires` `Set-Cookie` attribute}. By default,
-     * no expiration is set, and most clients will consider this a "non-persistent cookie" and will delete
-     * it on a condition like exiting a web browser application.
-     *
-     * *Note* the {@link https://tools.ietf.org/html/rfc6265#section-5.3|cookie storage model specification}
-     * states that if both `expires` and `maxAge` are set, then `maxAge` takes precedence, but it is
-     * possible not all clients by obey this, so if both are set, they should
-     * point to the same date and time.
-     */
-    expires?: Date | undefined;
-    /**
-     * Specifies the boolean value for the {@link https://tools.ietf.org/html/rfc6265#section-5.2.6|`HttpOnly` `Set-Cookie` attribute}.
-     * When truthy, the `HttpOnly` attribute is set, otherwise it is not. By
-     * default, the `HttpOnly` attribute is not set.
-     *
-     * *Note* be careful when setting this to true, as compliant clients will
-     * not allow client-side JavaScript to see the cookie in `document.cookie`.
-     */
-    httpOnly?: boolean | undefined;
-    /**
-     * Specifies the number (in seconds) to be the value for the `Max-Age`
-     * `Set-Cookie` attribute. The given number will be converted to an integer
-     * by rounding down. By default, no maximum age is set.
-     *
-     * *Note* the {@link https://tools.ietf.org/html/rfc6265#section-5.3|cookie storage model specification}
-     * states that if both `expires` and `maxAge` are set, then `maxAge` takes precedence, but it is
-     * possible not all clients by obey this, so if both are set, they should
-     * point to the same date and time.
-     */
-    maxAge?: number | undefined;
-    /**
-     * Specifies the value for the {@link https://tools.ietf.org/html/rfc6265#section-5.2.4|`Path` `Set-Cookie` attribute}.
-     * By default, the path is considered the "default path".
-     */
-    path?: string | undefined;
-    /**
-     * Specifies the `string` to be the value for the [`Priority` `Set-Cookie` attribute][rfc-west-cookie-priority-00-4.1].
-     *
-     * - `'low'` will set the `Priority` attribute to `Low`.
-     * - `'medium'` will set the `Priority` attribute to `Medium`, the default priority when not set.
-     * - `'high'` will set the `Priority` attribute to `High`.
-     *
-     * More information about the different priority levels can be found in
-     * [the specification][rfc-west-cookie-priority-00-4.1].
-     *
-     * **note** This is an attribute that has not yet been fully standardized, and may change in the future.
-     * This also means many clients may ignore this attribute until they understand it.
-     */
-    priority?: "low" | "medium" | "high" | undefined;
-    /**
-     * Specifies the boolean or string to be the value for the {@link https://tools.ietf.org/html/draft-ietf-httpbis-rfc6265bis-03#section-4.1.2.7|`SameSite` `Set-Cookie` attribute}.
-     *
-     * - `true` will set the `SameSite` attribute to `Strict` for strict same
-     * site enforcement.
-     * - `false` will not set the `SameSite` attribute.
-     * - `'lax'` will set the `SameSite` attribute to Lax for lax same site
-     * enforcement.
-     * - `'strict'` will set the `SameSite` attribute to Strict for strict same
-     * site enforcement.
-     *  - `'none'` will set the SameSite attribute to None for an explicit
-     *  cross-site cookie.
-     *
-     * More information about the different enforcement levels can be found in {@link https://tools.ietf.org/html/draft-ietf-httpbis-rfc6265bis-03#section-4.1.2.7|the specification}.
-     *
-     * *note* This is an attribute that has not yet been fully standardized, and may change in the future. This also means many clients may ignore this attribute until they understand it.
-     */
-    sameSite?: true | false | "lax" | "strict" | "none" | undefined;
-    /**
-     * Specifies the boolean value for the {@link https://tools.ietf.org/html/rfc6265#section-5.2.5|`Secure` `Set-Cookie` attribute}. When truthy, the
-     * `Secure` attribute is set, otherwise it is not. By default, the `Secure` attribute is not set.
-     *
-     * *Note* be careful when setting this to `true`, as compliant clients will
-     * not send the cookie back to the server in the future if the browser does
-     * not have an HTTPS connection.
-     */
-    secure?: boolean | undefined;
-    /**
-     * Specifies the `boolean` value for the [`Partitioned` `Set-Cookie`](https://datatracker.ietf.org/doc/html/draft-cutler-httpbis-partitioned-cookies#section-2.1)
-     * attribute. When truthy, the `Partitioned` attribute is set, otherwise it is not. By default, the
-     * `Partitioned` attribute is not set.
-     *
-     * **note** This is an attribute that has not yet been fully standardized, and may change in the future.
-     * This also means many clients may ignore this attribute until they understand it.
-     *
-     * More information can be found in the [proposal](https://github.com/privacycg/CHIPS).
-     */
-    partitioned?: boolean;
+type MultiCookies = Record<string, string | string[] | undefined>;
+/**
+ * Stringify options.
+ */
+interface CookieStringifyOptions {
+  /**
+   * Specifies a function that will be used to encode a [cookie-value](https://datatracker.ietf.org/doc/html/rfc6265#section-4.1.1).
+   * Since value of a cookie has a limited character set (and must be a simple string), this function can be used to encode
+   * a value into a string suited for a cookie's value, and should mirror `decode` when parsing.
+   *
+   * @default encodeURIComponent
+   */
+  encode?: (str: string) => string;
 }
 /**
- * Additional parsing options
+ * Set-Cookie object.
  */
-interface CookieParseOptions {
-    /**
-     * Specifies a function that will be used to decode a cookie's value. Since
-     * the value of a cookie has a limited character set (and must be a simple
-     * string), this function can be used to decode a previously-encoded cookie
-     * value into a JavaScript string or other object.
-     *
-     * The default function is the global `decodeURIComponent`, which will decode
-     * any URL-encoded sequences into their byte representations.
-     *
-     * *Note* if an error is thrown from this function, the original, non-decoded
-     * cookie value will be returned as the cookie's value.
-     */
-    decode?(value: string): string;
-    /**
-     * Custom function to filter parsing specific keys.
-     */
-    filter?(key: string): boolean;
+interface SetCookie {
+  /**
+   * Specifies the name of the cookie.
+   */
+  name: string;
+  /**
+   * Specifies the string to be the value for the cookie.
+   */
+  value: string | undefined;
+  /**
+   * Specifies the `number` (in seconds) to be the value for the [`Max-Age` `Set-Cookie` attribute](https://tools.ietf.org/html/rfc6265#section-5.2.2).
+   *
+   * The [cookie storage model specification](https://tools.ietf.org/html/rfc6265#section-5.3) states that if both `expires` and
+   * `maxAge` are set, then `maxAge` takes precedence, but it is possible not all clients by obey this,
+   * so if both are set, they should point to the same date and time.
+   */
+  maxAge?: number;
+  /**
+   * Specifies the `Date` object to be the value for the [`Expires` `Set-Cookie` attribute](https://tools.ietf.org/html/rfc6265#section-5.2.1).
+   * When no expiration is set, clients consider this a "non-persistent cookie" and delete it when the current session is over.
+   *
+   * The [cookie storage model specification](https://tools.ietf.org/html/rfc6265#section-5.3) states that if both `expires` and
+   * `maxAge` are set, then `maxAge` takes precedence, but it is possible not all clients by obey this,
+   * so if both are set, they should point to the same date and time.
+   */
+  expires?: Date;
+  /**
+   * Specifies the value for the [`Domain` `Set-Cookie` attribute](https://tools.ietf.org/html/rfc6265#section-5.2.3).
+   * When no domain is set, clients consider the cookie to apply to the current domain only.
+   */
+  domain?: string;
+  /**
+   * Specifies the value for the [`Path` `Set-Cookie` attribute](https://tools.ietf.org/html/rfc6265#section-5.2.4).
+   * When no path is set, the path is considered the ["default path"](https://tools.ietf.org/html/rfc6265#section-5.1.4).
+   */
+  path?: string;
+  /**
+   * Enables the [`HttpOnly` `Set-Cookie` attribute](https://tools.ietf.org/html/rfc6265#section-5.2.6).
+   * When enabled, clients will not allow client-side JavaScript to see the cookie in `document.cookie`.
+   */
+  httpOnly?: boolean;
+  /**
+   * Enables the [`Secure` `Set-Cookie` attribute](https://tools.ietf.org/html/rfc6265#section-5.2.5).
+   * When enabled, clients will only send the cookie back if the browser has an HTTPS connection.
+   */
+  secure?: boolean;
+  /**
+   * Enables the [`Partitioned` `Set-Cookie` attribute](https://tools.ietf.org/html/draft-cutler-httpbis-partitioned-cookies/).
+   * When enabled, clients will only send the cookie back when the current domain _and_ top-level domain matches.
+   *
+   * This is an attribute that has not yet been fully standardized, and may change in the future.
+   * This also means clients may ignore this attribute until they understand it. More information
+   * about can be found in [the proposal](https://github.com/privacycg/CHIPS).
+   */
+  partitioned?: boolean;
+  /**
+   * Specifies the value for the [`Priority` `Set-Cookie` attribute](https://tools.ietf.org/html/draft-west-cookie-priority-00#section-4.1).
+   *
+   * - `'low'` will set the `Priority` attribute to `Low`.
+   * - `'medium'` will set the `Priority` attribute to `Medium`, the default priority when not set.
+   * - `'high'` will set the `Priority` attribute to `High`.
+   *
+   * More information about priority levels can be found in [the specification](https://tools.ietf.org/html/draft-west-cookie-priority-00#section-4.1).
+   */
+  priority?: "low" | "medium" | "high";
+  /**
+   * Specifies the value for the [`SameSite` `Set-Cookie` attribute](https://tools.ietf.org/html/draft-ietf-httpbis-rfc6265bis-09#section-5.4.7).
+   *
+   * - `true` will set the `SameSite` attribute to `Strict` for strict same site enforcement.
+   * - `'lax'` will set the `SameSite` attribute to `Lax` for lax same site enforcement.
+   * - `'none'` will set the `SameSite` attribute to `None` for an explicit cross-site cookie.
+   * - `'strict'` will set the `SameSite` attribute to `Strict` for strict same site enforcement.
+   *
+   * More information about enforcement levels can be found in [the specification](https://tools.ietf.org/html/draft-ietf-httpbis-rfc6265bis-09#section-5.4.7).
+   */
+  sameSite?: boolean | "lax" | "strict" | "none";
 }
 /**
- * Parse an HTTP Cookie header string and returning an object of all cookie
- * name-value pairs.
+ * Backward compatibility serialize options.
+ */
+type CookieSerializeOptions = CookieStringifyOptions & Omit<SetCookie, "name" | "value">;
+//#endregion
+//#region src/cookie/parse.d.ts
+/**
+ * Parse a `Cookie` header.
  *
- * @param str the string representing a `Cookie` header value
- * @param [options] object containing parsing options
+ * Parse the given cookie header string into an object
+ * The object has the various cookies as keys(names) => values
  */
-declare function parse(str: string, options?: CookieParseOptions): Record<string, string>;
+declare function parse(str: string, options: CookieParseOptions & {
+  allowMultiple: true;
+}): MultiCookies;
+declare function parse(str: string, options?: CookieParseOptions): Cookies;
+//#endregion
+//#region src/cookie/serialize.d.ts
 /**
- * Serialize a cookie name-value pair into a `Set-Cookie` header string.
+ * Stringifies an object into an HTTP `Cookie` header.
+ */
+declare function stringifyCookie(cookie: Cookies, options?: CookieStringifyOptions): string;
+/**
+ * Serialize data into a cookie header.
+ *
+ * Serialize a name value pair into a cookie string suitable for
+ * http headers. An optional options object specifies cookie parameters.
  *
- * @param name the name for the cookie
- * @param value value to set the cookie to
- * @param [options] object containing serialization options
- * @throws {TypeError} when `maxAge` options is invalid
+ * serialize('foo', 'bar', { httpOnly: true })
+ *   => "foo=bar; httpOnly"
  */
-declare function serialize(name: string, value: string, options?: CookieSerializeOptions): string;
+declare function serialize(cookie: SetCookie, options?: CookieStringifyOptions): string;
+declare function serialize(name: string, val: string, options?: CookieSerializeOptions): string;
+//#endregion
+//#region src/set-cookie/types.d.ts
 interface SetCookieParseOptions {
-    /**
-     * Custom decode function to use on cookie values.
-     *
-     * By default, `decodeURIComponent` is used.
-     *
-     * **Note:** If decoding fails, the original (undecoded) value will be used
-     */
-    decode?: false | ((value: string) => string);
+  /**
+   * Custom decode function to use on cookie values.
+   *
+   * By default, `decodeURIComponent` is used.
+   *
+   * **Note:** If decoding fails, the original (undecoded) value will be used
+   */
+  decode?: false | ((value: string) => string);
 }
-interface SetCookie {
-    /**
-     * Cookie name
-     */
-    name: string;
-    /**
-     * Cookie value
-     */
-    value: string;
-    /**
-     * Cookie path
-     */
-    path?: string | undefined;
-    /**
-     * Absolute expiration date for the cookie
-     */
-    expires?: Date | undefined;
-    /**
-     * Relative max age of the cookie in seconds from when the client receives it (integer or undefined)
-     *
-     * Note: when using with express's res.cookie() method, multiply maxAge by 1000 to convert to milliseconds
-     */
-    maxAge?: number | undefined;
-    /**
-     * Domain for the cookie,
-     * May begin with "." to indicate the named domain or any subdomain of it
-     */
-    domain?: string | undefined;
-    /**
-     * Indicates that this cookie should only be sent over HTTPs
-     */
-    secure?: boolean | undefined;
-    /**
-     * Indicates that this cookie should not be accessible to client-side JavaScript
-     */
-    httpOnly?: boolean | undefined;
-    /**
-     * Indicates a cookie ought not to be sent along with cross-site requests
-     */
-    sameSite?: true | false | "lax" | "strict" | "none" | undefined;
-    [key: string]: unknown;
+interface SetCookie$1 {
+  /**
+   * Cookie name
+   */
+  name: string;
+  /**
+   * Cookie value
+   */
+  value: string;
+  /**
+   * Cookie path
+   */
+  path?: string | undefined;
+  /**
+   * Absolute expiration date for the cookie
+   */
+  expires?: Date | undefined;
+  /**
+   * Relative max age of the cookie in seconds from when the client receives it (integer or undefined)
+   *
+   * Note: when using with express's res.cookie() method, multiply maxAge by 1000 to convert to milliseconds
+   */
+  maxAge?: number | undefined;
+  /**
+   * Domain for the cookie,
+   * May begin with "." to indicate the named domain or any subdomain of it
+   */
+  domain?: string | undefined;
+  /**
+   * Indicates that this cookie should only be sent over HTTPs
+   */
+  secure?: boolean | undefined;
+  /**
+   * Indicates that this cookie should not be accessible to client-side JavaScript
+   */
+  httpOnly?: boolean | undefined;
+  /**
+   * Indicates a cookie ought not to be sent along with cross-site requests
+   */
+  sameSite?: true | false | "lax" | "strict" | "none" | undefined;
+  /**
+   * Indicates that the cookie should be stored using partitioned storage
+   *
+   * See https://developer.mozilla.org/en-US/docs/Web/Privacy/Privacy_sandbox/Partitioned_cookies
+   */
+  partitioned?: boolean | undefined;
+  /**
+   * Indicates the priority of the cookie
+   *
+   * See https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#prioritylow_medium_high
+   */
+  priority?: "low" | "medium" | "high" | undefined;
+  [key: string]: unknown;
 }
+//#endregion
+//#region src/set-cookie/parse.d.ts
 /**
  * Parse a [Set-Cookie](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie) header string into an object.
  */
-declare function parseSetCookie(setCookieValue: string, options?: SetCookieParseOptions): SetCookie;
+declare function parseSetCookie(str: string, options?: SetCookieParseOptions): SetCookie$1 | undefined;
+//#endregion
+//#region src/set-cookie/split.d.ts
 /**
  * Set-Cookie header field-values are sometimes comma joined in one string. This splits them without choking on commas
  * that are within a single set-cookie field-value, such as in the Expires portion.
@@ -218,5 +240,5 @@ declare function parseSetCookie(setCookieValue: string, options?: SetCookieParse
  * See https://tools.ietf.org/html/rfc2616#section-4.2
  */
 declare function splitSetCookieString(cookiesString: string | string[]): string[];
-export { type CookieParseOptions, type CookieSerializeOptions, type SetCookie, type SetCookieParseOptions, parse, parseSetCookie, serialize, splitSetCookieString };
+//#endregion
+export { type CookieParseOptions, type CookieSerializeOptions, type CookieStringifyOptions, type Cookies, type MultiCookies, type SetCookie, type SetCookieParseOptions, parse, parse as parseCookie, parseSetCookie, serialize, serialize as serializeCookie, splitSetCookieString, stringifyCookie };