npm - declastruct-github - Versions diffs - 1.1.1 → 1.2.1 - Mend

declastruct-github 1.1.1 → 1.2.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (116) hide show

package/dist/domain.operations/orgMemberPrivileges/castToDeclaredGithubOrgMemberPrivileges.d.ts ADDED Viewed

@@ -0,0 +1,15 @@
+import type { Endpoints } from '@octokit/types';
+import type { RefByUnique } from 'domain-objects';
+import type { HasMetadata } from 'type-fns';
+import type { DeclaredGithubOrg } from '../../domain.objects/DeclaredGithubOrg';
+import { DeclaredGithubOrgMemberPrivileges } from '../../domain.objects/DeclaredGithubOrgMemberPrivileges';
+type GithubOrgResponse = Endpoints['GET /orgs/{org}']['response']['data'];
+/**
+ * .what = casts GitHub API org response to DeclaredGithubOrgMemberPrivileges
+ * .why = extracts member privilege fields from org API response
+ */
+export declare const castToDeclaredGithubOrgMemberPrivileges: (input: {
+    data: GithubOrgResponse;
+    org: RefByUnique<typeof DeclaredGithubOrg>;
+}) => HasMetadata<DeclaredGithubOrgMemberPrivileges>;
+export {};

package/dist/domain.operations/orgMemberPrivileges/castToDeclaredGithubOrgMemberPrivileges.js ADDED Viewed

@@ -0,0 +1,47 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.castToDeclaredGithubOrgMemberPrivileges = void 0;
+const uni_time_1 = require("@ehmpathy/uni-time");
+const DeclaredGithubOrgMemberPrivileges_1 = require("../../domain.objects/DeclaredGithubOrgMemberPrivileges");
+/**
+ * .what = casts GitHub API org response to DeclaredGithubOrgMemberPrivileges
+ * .why = extracts member privilege fields from org API response
+ */
+const castToDeclaredGithubOrgMemberPrivileges = (input) => {
+    return DeclaredGithubOrgMemberPrivileges_1.DeclaredGithubOrgMemberPrivileges.as({
+        org: input.org,
+        updatedAt: input.data.updated_at
+            ? (0, uni_time_1.asUniDateTime)(input.data.updated_at)
+            : undefined,
+        // Repository creation
+        membersCanCreateRepositories: input.data.members_can_create_repositories ?? true,
+        membersCanCreatePublicRepositories: input.data.members_can_create_public_repositories ?? true,
+        membersCanCreatePrivateRepositories: input.data.members_can_create_private_repositories ?? true,
+        membersCanCreateInternalRepositories: (() => {
+            // internal repos only available for enterprise orgs
+            const isEnterprise = input.data.plan?.name
+                ?.toLowerCase()
+                .includes('enterprise');
+            if (!isEnterprise)
+                return null;
+            return input.data.members_can_create_internal_repositories ?? null;
+        })(),
+        // Repository management (KEY SECURITY)
+        membersCanDeleteRepositories:
+        // Note: GitHub API uses 'members_can_delete_repositories' field
+        input.data
+            .members_can_delete_repositories ?? true,
+        membersCanChangeRepoVisibility: input.data
+            .members_can_change_repo_visibility ?? true,
+        membersCanForkPrivateRepositories: input.data.members_can_fork_private_repositories ?? false,
+        // Collaboration
+        membersCanInviteOutsideCollaborators: true, // Not directly exposed in API
+        // GitHub Pages
+        membersCanCreatePages: input.data.members_can_create_pages ?? true,
+        membersCanCreatePublicPages: input.data.members_can_create_public_pages ?? true,
+        membersCanCreatePrivatePages: input.data.members_can_create_private_pages ?? true,
+        defaultRepositoryPermission: input.data.default_repository_permission ?? 'read',
+    });
+};
+exports.castToDeclaredGithubOrgMemberPrivileges = castToDeclaredGithubOrgMemberPrivileges;
+//# sourceMappingURL=castToDeclaredGithubOrgMemberPrivileges.js.map

package/dist/domain.operations/orgMemberPrivileges/castToDeclaredGithubOrgMemberPrivileges.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"castToDeclaredGithubOrgMemberPrivileges.js","sourceRoot":"","sources":["../../../src/domain.operations/orgMemberPrivileges/castToDeclaredGithubOrgMemberPrivileges.ts"],"names":[],"mappings":";;;AAAA,iDAAmD;AAMnD,6GAA0G;AAI1G;;;GAGG;AACI,MAAM,uCAAuC,GAAG,CAAC,KAGvD,EAAkD,EAAE;IACnD,OAAO,qEAAiC,CAAC,EAAE,CAAC;QAC1C,GAAG,EAAE,KAAK,CAAC,GAAG;QACd,SAAS,EAAE,KAAK,CAAC,IAAI,CAAC,UAAU;YAC9B,CAAC,CAAC,IAAA,wBAAa,EAAC,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC;YACtC,CAAC,CAAC,SAAS;QAEb,sBAAsB;QACtB,4BAA4B,EAC1B,KAAK,CAAC,IAAI,CAAC,+BAA+B,IAAI,IAAI;QACpD,kCAAkC,EAChC,KAAK,CAAC,IAAI,CAAC,sCAAsC,IAAI,IAAI;QAC3D,mCAAmC,EACjC,KAAK,CAAC,IAAI,CAAC,uCAAuC,IAAI,IAAI;QAC5D,oCAAoC,EAAE,CAAC,GAAG,EAAE;YAC1C,oDAAoD;YACpD,MAAM,YAAY,GAAG,KAAK,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI;gBACxC,EAAE,WAAW,EAAE;iBACd,QAAQ,CAAC,YAAY,CAAC,CAAC;YAC1B,IAAI,CAAC,YAAY;gBAAE,OAAO,IAAI,CAAC;YAC/B,OAAO,KAAK,CAAC,IAAI,CAAC,wCAAwC,IAAI,IAAI,CAAC;QACrE,CAAC,CAAC,EAAE;QAEJ,uCAAuC;QACvC,4BAA4B;QAC1B,gEAAgE;QAC9D,KAAK,CAAC,IAAgC;aACrC,+BAA2C,IAAI,IAAI;QACxD,8BAA8B,EAC1B,KAAK,CAAC,IAAgC;aACrC,kCAA8C,IAAI,IAAI;QAC3D,iCAAiC,EAC/B,KAAK,CAAC,IAAI,CAAC,qCAAqC,IAAI,KAAK;QAE3D,gBAAgB;QAChB,oCAAoC,EAAE,IAAI,EAAE,8BAA8B;QAE1E,eAAe;QACf,qBAAqB,EAAE,KAAK,CAAC,IAAI,CAAC,wBAAwB,IAAI,IAAI;QAClE,2BAA2B,EACzB,KAAK,CAAC,IAAI,CAAC,+BAA+B,IAAI,IAAI;QACpD,4BAA4B,EAC1B,KAAK,CAAC,IAAI,CAAC,gCAAgC,IAAI,IAAI;QAErD,2BAA2B,EACxB,KAAK,CAAC,IAAI,CAAC,6BAID,IAAI,MAAM;KACxB,CAAmD,CAAC;AACvD,CAAC,CAAC;AAtDW,QAAA,uCAAuC,2CAsDlD"}

package/dist/domain.operations/orgMemberPrivileges/getOneOrgMemberPrivileges.d.ts ADDED Viewed

@@ -0,0 +1,14 @@
+import type { RefByUnique } from 'domain-objects';
+import type { HasMetadata, PickOne } from 'type-fns';
+import type { VisualogicContext } from 'visualogic';
+import type { ContextGithubApi } from '../../domain.objects/ContextGithubApi';
+import type { DeclaredGithubOrgMemberPrivileges } from '../../domain.objects/DeclaredGithubOrgMemberPrivileges';
+/**
+ * .what = gets GitHub Organization member privileges
+ * .why = retrieves current security settings for declarative management
+ */
+export declare const getOneOrgMemberPrivileges: (input: {
+    by: PickOne<{
+        unique: RefByUnique<typeof DeclaredGithubOrgMemberPrivileges>;
+    }>;
+}, context: ContextGithubApi & VisualogicContext) => Promise<HasMetadata<DeclaredGithubOrgMemberPrivileges> | null>;

package/dist/domain.operations/orgMemberPrivileges/getOneOrgMemberPrivileges.js ADDED Viewed

@@ -0,0 +1,36 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getOneOrgMemberPrivileges = void 0;
+const as_procedure_1 = require("as-procedure");
+const helpful_errors_1 = require("helpful-errors");
+const getGithubClient_1 = require("../../access/sdks/getGithubClient");
+const castToDeclaredGithubOrgMemberPrivileges_1 = require("./castToDeclaredGithubOrgMemberPrivileges");
+/**
+ * .what = gets GitHub Organization member privileges
+ * .why = retrieves current security settings for declarative management
+ */
+exports.getOneOrgMemberPrivileges = (0, as_procedure_1.asProcedure)(async (input, context) => {
+    const github = (0, getGithubClient_1.getGithubClient)({}, context);
+    const org = (() => {
+        if (input.by.unique)
+            return input.by.unique.org;
+        helpful_errors_1.UnexpectedCodePathError.throw('not referenced by unique', { input });
+    })();
+    try {
+        const response = await github.orgs.get({ org: org.login });
+        return (0, castToDeclaredGithubOrgMemberPrivileges_1.castToDeclaredGithubOrgMemberPrivileges)({
+            data: response.data,
+            org,
+        });
+    }
+    catch (error) {
+        if (!(error instanceof Error))
+            throw error;
+        if (error.message.includes('Not Found'))
+            return null;
+        throw new helpful_errors_1.HelpfulError('github.getOrgMemberPrivileges error', {
+            cause: error,
+        });
+    }
+});
+//# sourceMappingURL=getOneOrgMemberPrivileges.js.map

package/dist/domain.operations/orgMemberPrivileges/getOneOrgMemberPrivileges.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"getOneOrgMemberPrivileges.js","sourceRoot":"","sources":["../../../src/domain.operations/orgMemberPrivileges/getOneOrgMemberPrivileges.ts"],"names":[],"mappings":";;;AAAA,+CAA2C;AAE3C,mDAAuE;AAIvE,sEAAmE;AAInE,uGAAoG;AAEpG;;;GAGG;AACU,QAAA,yBAAyB,GAAG,IAAA,0BAAW,EAClD,KAAK,EACH,KAIC,EACD,OAA6C,EACmB,EAAE;IAClE,MAAM,MAAM,GAAG,IAAA,iCAAe,EAAC,EAAE,EAAE,OAAO,CAAC,CAAC;IAE5C,MAAM,GAAG,GAAG,CAAC,GAAG,EAAE;QAChB,IAAI,KAAK,CAAC,EAAE,CAAC,MAAM;YAAE,OAAO,KAAK,CAAC,EAAE,CAAC,MAAM,CAAC,GAAG,CAAC;QAChD,wCAAuB,CAAC,KAAK,CAAC,0BAA0B,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;IACvE,CAAC,CAAC,EAAE,CAAC;IAEL,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,GAAG,EAAE,GAAG,CAAC,KAAK,EAAE,CAAC,CAAC;QAC3D,OAAO,IAAA,iFAAuC,EAAC;YAC7C,IAAI,EAAE,QAAQ,CAAC,IAAI;YACnB,GAAG;SACJ,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,CAAC,CAAC,KAAK,YAAY,KAAK,CAAC;YAAE,MAAM,KAAK,CAAC;QAC3C,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAC;YAAE,OAAO,IAAI,CAAC;QACrD,MAAM,IAAI,6BAAY,CAAC,qCAAqC,EAAE;YAC5D,KAAK,EAAE,KAAK;SACb,CAAC,CAAC;IACL,CAAC;AACH,CAAC,CACF,CAAC"}

package/dist/domain.operations/orgMemberPrivileges/setOrgMemberPrivileges.d.ts ADDED Viewed

@@ -0,0 +1,16 @@
+import type { HasMetadata, PickOne } from 'type-fns';
+import type { VisualogicContext } from 'visualogic';
+import type { ContextGithubApi } from '../../domain.objects/ContextGithubApi';
+import type { DeclaredGithubOrgMemberPrivileges } from '../../domain.objects/DeclaredGithubOrgMemberPrivileges';
+/**
+ * .what = sets GitHub Organization member privileges
+ * .why = enables declarative management of org security settings
+ *
+ * KEY SECURITY SETTINGS:
+ * - membersCanDeleteRepositories: false -> only owners can delete/transfer repos
+ * - membersCanChangeRepoVisibility: false -> only owners can change visibility
+ */
+export declare const setOrgMemberPrivileges: (input: PickOne<{
+    finsert: DeclaredGithubOrgMemberPrivileges;
+    upsert: DeclaredGithubOrgMemberPrivileges;
+}>, context: ContextGithubApi & VisualogicContext) => Promise<HasMetadata<DeclaredGithubOrgMemberPrivileges>>;

package/dist/domain.operations/orgMemberPrivileges/setOrgMemberPrivileges.js ADDED Viewed

@@ -0,0 +1,64 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.setOrgMemberPrivileges = void 0;
+const as_procedure_1 = require("as-procedure");
+const helpful_errors_1 = require("helpful-errors");
+const getGithubClient_1 = require("../../access/sdks/getGithubClient");
+const castToDeclaredGithubOrgMemberPrivileges_1 = require("./castToDeclaredGithubOrgMemberPrivileges");
+const getOneOrgMemberPrivileges_1 = require("./getOneOrgMemberPrivileges");
+/**
+ * .what = sets GitHub Organization member privileges
+ * .why = enables declarative management of org security settings
+ *
+ * KEY SECURITY SETTINGS:
+ * - membersCanDeleteRepositories: false -> only owners can delete/transfer repos
+ * - membersCanChangeRepoVisibility: false -> only owners can change visibility
+ */
+exports.setOrgMemberPrivileges = (0, as_procedure_1.asProcedure)(async (input, context) => {
+    const desired = input.finsert ?? input.upsert;
+    const github = (0, getGithubClient_1.getGithubClient)({}, context);
+    // Check current state
+    const before = await (0, getOneOrgMemberPrivileges_1.getOneOrgMemberPrivileges)({ by: { unique: { org: desired.org } } }, context);
+    // Org must exist
+    if (!before) {
+        throw new helpful_errors_1.HelpfulError('GitHub Organization does not exist.', {
+            desiredPrivileges: desired,
+        });
+    }
+    // If finsert and found, return as-is (no changes)
+    if (before && input.finsert)
+        return before;
+    // Apply member privilege updates via PATCH
+    try {
+        const response = await github.orgs.update({
+            org: desired.org.login,
+            // Repository creation
+            members_can_create_repositories: desired.membersCanCreateRepositories,
+            members_can_create_public_repositories: desired.membersCanCreatePublicRepositories,
+            members_can_create_private_repositories: desired.membersCanCreatePrivateRepositories,
+            members_can_create_internal_repositories: desired.membersCanCreateInternalRepositories ?? undefined,
+            // KEY SECURITY SETTINGS
+            // Note: These fields may not be directly settable via the standard API
+            // They are typically org settings that require admin permissions
+            members_can_fork_private_repositories: desired.membersCanForkPrivateRepositories,
+            // GitHub Pages
+            members_can_create_pages: desired.membersCanCreatePages,
+            members_can_create_public_pages: desired.membersCanCreatePublicPages,
+            members_can_create_private_pages: desired.membersCanCreatePrivatePages,
+            // Other
+            default_repository_permission: desired.defaultRepositoryPermission,
+        });
+        return (0, castToDeclaredGithubOrgMemberPrivileges_1.castToDeclaredGithubOrgMemberPrivileges)({
+            data: response.data,
+            org: desired.org,
+        });
+    }
+    catch (error) {
+        if (!(error instanceof Error))
+            throw error;
+        throw new helpful_errors_1.HelpfulError('github.setOrgMemberPrivileges.update error', {
+            cause: error,
+        });
+    }
+});
+//# sourceMappingURL=setOrgMemberPrivileges.js.map

package/dist/domain.operations/orgMemberPrivileges/setOrgMemberPrivileges.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"setOrgMemberPrivileges.js","sourceRoot":"","sources":["../../../src/domain.operations/orgMemberPrivileges/setOrgMemberPrivileges.ts"],"names":[],"mappings":";;;AAAA,+CAA2C;AAC3C,mDAA8C;AAI9C,sEAAmE;AAInE,uGAAoG;AACpG,2EAAwE;AAExE;;;;;;;GAOG;AACU,QAAA,sBAAsB,GAAG,IAAA,0BAAW,EAC/C,KAAK,EACH,KAGE,EACF,OAA6C,EACY,EAAE;IAC3D,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,IAAI,KAAK,CAAC,MAAM,CAAC;IAC9C,MAAM,MAAM,GAAG,IAAA,iCAAe,EAAC,EAAE,EAAE,OAAO,CAAC,CAAC;IAE5C,sBAAsB;IACtB,MAAM,MAAM,GAAG,MAAM,IAAA,qDAAyB,EAC5C,EAAE,EAAE,EAAE,EAAE,MAAM,EAAE,EAAE,GAAG,EAAE,OAAO,CAAC,GAAG,EAAE,EAAE,EAAE,EACxC,OAAO,CACR,CAAC;IAEF,iBAAiB;IACjB,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,MAAM,IAAI,6BAAY,CAAC,qCAAqC,EAAE;YAC5D,iBAAiB,EAAE,OAAO;SAC3B,CAAC,CAAC;IACL,CAAC;IAED,kDAAkD;IAClD,IAAI,MAAM,IAAI,KAAK,CAAC,OAAO;QAAE,OAAO,MAAM,CAAC;IAE3C,2CAA2C;IAC3C,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC;YACxC,GAAG,EAAE,OAAO,CAAC,GAAG,CAAC,KAAK;YACtB,sBAAsB;YACtB,+BAA+B,EAAE,OAAO,CAAC,4BAA4B;YACrE,sCAAsC,EACpC,OAAO,CAAC,kCAAkC;YAC5C,uCAAuC,EACrC,OAAO,CAAC,mCAAmC;YAC7C,wCAAwC,EACtC,OAAO,CAAC,oCAAoC,IAAI,SAAS;YAC3D,wBAAwB;YACxB,uEAAuE;YACvE,iEAAiE;YACjE,qCAAqC,EACnC,OAAO,CAAC,iCAAiC;YAC3C,eAAe;YACf,wBAAwB,EAAE,OAAO,CAAC,qBAAqB;YACvD,+BAA+B,EAAE,OAAO,CAAC,2BAA2B;YACpE,gCAAgC,EAAE,OAAO,CAAC,4BAA4B;YACtE,QAAQ;YACR,6BAA6B,EAAE,OAAO,CAAC,2BAA2B;SACnE,CAAC,CAAC;QAEH,OAAO,IAAA,iFAAuC,EAAC;YAC7C,IAAI,EAAE,QAAQ,CAAC,IAAI;YACnB,GAAG,EAAE,OAAO,CAAC,GAAG;SACjB,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,CAAC,CAAC,KAAK,YAAY,KAAK,CAAC;YAAE,MAAM,KAAK,CAAC;QAC3C,MAAM,IAAI,6BAAY,CAAC,4CAA4C,EAAE;YACnE,KAAK,EAAE,KAAK;SACb,CAAC,CAAC;IACL,CAAC;AACH,CAAC,CACF,CAAC"}

package/dist/domain.operations/orgSecret/castToDeclaredGithubOrgSecret.d.ts ADDED Viewed

@@ -0,0 +1,17 @@
+import type { Endpoints } from '@octokit/types';
+import type { RefByUnique } from 'domain-objects';
+import type { HasMetadata } from 'type-fns';
+import type { DeclaredGithubOrg } from '../../domain.objects/DeclaredGithubOrg';
+import { DeclaredGithubOrgSecret } from '../../domain.objects/DeclaredGithubOrgSecret';
+type GithubOrgSecretResponse = Endpoints['GET /orgs/{org}/actions/secrets/{secret_name}']['response']['data'];
+type GithubOrgSecretListItem = Endpoints['GET /orgs/{org}/actions/secrets']['response']['data']['secrets'][number];
+/**
+ * .what = casts GitHub API secret response to DeclaredGithubOrgSecret
+ * .why = transforms external API shape to our domain model
+ * .note = value is NEVER returned - secrets are write-only
+ */
+export declare const castToDeclaredGithubOrgSecret: (input: {
+    data: GithubOrgSecretResponse | GithubOrgSecretListItem;
+    org: RefByUnique<typeof DeclaredGithubOrg>;
+}) => HasMetadata<DeclaredGithubOrgSecret>;
+export {};

package/dist/domain.operations/orgSecret/castToDeclaredGithubOrgSecret.js ADDED Viewed

@@ -0,0 +1,28 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.castToDeclaredGithubOrgSecret = void 0;
+const uni_time_1 = require("@ehmpathy/uni-time");
+const DeclaredGithubOrgSecret_1 = require("../../domain.objects/DeclaredGithubOrgSecret");
+/**
+ * .what = casts GitHub API secret response to DeclaredGithubOrgSecret
+ * .why = transforms external API shape to our domain model
+ * .note = value is NEVER returned - secrets are write-only
+ */
+const castToDeclaredGithubOrgSecret = (input) => {
+    return DeclaredGithubOrgSecret_1.DeclaredGithubOrgSecret.as({
+        org: input.org,
+        name: input.data.name,
+        // value is NEVER returned from API - secrets are write-only
+        value: undefined,
+        visibility: input.data.visibility,
+        // selectedRepositoryNames not set - not returned in API response
+        createdAt: input.data.created_at
+            ? (0, uni_time_1.asUniDateTime)(input.data.created_at)
+            : undefined,
+        updatedAt: input.data.updated_at
+            ? (0, uni_time_1.asUniDateTime)(input.data.updated_at)
+            : undefined,
+    });
+};
+exports.castToDeclaredGithubOrgSecret = castToDeclaredGithubOrgSecret;
+//# sourceMappingURL=castToDeclaredGithubOrgSecret.js.map

package/dist/domain.operations/orgSecret/castToDeclaredGithubOrgSecret.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"castToDeclaredGithubOrgSecret.js","sourceRoot":"","sources":["../../../src/domain.operations/orgSecret/castToDeclaredGithubOrgSecret.ts"],"names":[],"mappings":";;;AAAA,iDAAmD;AAMnD,yFAAsF;AAQtF;;;;GAIG;AACI,MAAM,6BAA6B,GAAG,CAAC,KAG7C,EAAwC,EAAE;IACzC,OAAO,iDAAuB,CAAC,EAAE,CAAC;QAChC,GAAG,EAAE,KAAK,CAAC,GAAG;QACd,IAAI,EAAE,KAAK,CAAC,IAAI,CAAC,IAAI;QACrB,4DAA4D;QAC5D,KAAK,EAAE,SAAS;QAChB,UAAU,EAAE,KAAK,CAAC,IAAI,CAAC,UAA4C;QACnE,iEAAiE;QACjE,SAAS,EAAE,KAAK,CAAC,IAAI,CAAC,UAAU;YAC9B,CAAC,CAAC,IAAA,wBAAa,EAAC,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC;YACtC,CAAC,CAAC,SAAS;QACb,SAAS,EAAE,KAAK,CAAC,IAAI,CAAC,UAAU;YAC9B,CAAC,CAAC,IAAA,wBAAa,EAAC,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC;YACtC,CAAC,CAAC,SAAS;KACd,CAAyC,CAAC;AAC7C,CAAC,CAAC;AAlBW,QAAA,6BAA6B,iCAkBxC"}

package/dist/domain.operations/orgSecret/delOrgSecret.d.ts ADDED Viewed

@@ -0,0 +1,11 @@
+import type { Ref } from 'domain-objects';
+import type { VisualogicContext } from 'visualogic';
+import type { ContextGithubApi } from '../../domain.objects/ContextGithubApi';
+import type { DeclaredGithubOrgSecret } from '../../domain.objects/DeclaredGithubOrgSecret';
+/**
+ * .what = deletes a GitHub Organization secret
+ * .why = enables declarative management of org-level secrets
+ */
+export declare const delOrgSecret: (input: {
+    secret: Ref<typeof DeclaredGithubOrgSecret>;
+}, context: ContextGithubApi & VisualogicContext) => Promise<void>;

package/dist/domain.operations/orgSecret/delOrgSecret.js ADDED Viewed

@@ -0,0 +1,27 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.delOrgSecret = void 0;
+const as_procedure_1 = require("as-procedure");
+const helpful_errors_1 = require("helpful-errors");
+const getGithubClient_1 = require("../../access/sdks/getGithubClient");
+/**
+ * .what = deletes a GitHub Organization secret
+ * .why = enables declarative management of org-level secrets
+ */
+exports.delOrgSecret = (0, as_procedure_1.asProcedure)(async (input, context) => {
+    const github = (0, getGithubClient_1.getGithubClient)({}, context);
+    // extract unique key fields
+    const secret = input.secret;
+    try {
+        await github.actions.deleteOrgSecret({
+            org: secret.org.login,
+            secret_name: secret.name,
+        });
+    }
+    catch (error) {
+        if (!(error instanceof Error))
+            throw error;
+        throw new helpful_errors_1.HelpfulError('github.delOrgSecret error', { cause: error });
+    }
+});
+//# sourceMappingURL=delOrgSecret.js.map

package/dist/domain.operations/orgSecret/delOrgSecret.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"delOrgSecret.js","sourceRoot":"","sources":["../../../src/domain.operations/orgSecret/delOrgSecret.ts"],"names":[],"mappings":";;;AAAA,+CAA2C;AAE3C,mDAA8C;AAG9C,sEAAmE;AAInE;;;GAGG;AACU,QAAA,YAAY,GAAG,IAAA,0BAAW,EACrC,KAAK,EACH,KAAsD,EACtD,OAA6C,EAC9B,EAAE;IACjB,MAAM,MAAM,GAAG,IAAA,iCAAe,EAAC,EAAE,EAAE,OAAO,CAAC,CAAC;IAE5C,4BAA4B;IAC5B,MAAM,MAAM,GAAG,KAAK,CAAC,MAAkD,CAAC;IAExE,IAAI,CAAC;QACH,MAAM,MAAM,CAAC,OAAO,CAAC,eAAe,CAAC;YACnC,GAAG,EAAE,MAAM,CAAC,GAAG,CAAC,KAAK;YACrB,WAAW,EAAE,MAAM,CAAC,IAAI;SACzB,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,CAAC,CAAC,KAAK,YAAY,KAAK,CAAC;YAAE,MAAM,KAAK,CAAC;QAC3C,MAAM,IAAI,6BAAY,CAAC,2BAA2B,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,CAAC;IACxE,CAAC;AACH,CAAC,CACF,CAAC"}

package/dist/domain.operations/orgSecret/getAllOrgSecrets.d.ts ADDED Viewed

@@ -0,0 +1,14 @@
+import type { RefByUnique } from 'domain-objects';
+import type { HasMetadata } from 'type-fns';
+import type { VisualogicContext } from 'visualogic';
+import type { ContextGithubApi } from '../../domain.objects/ContextGithubApi';
+import type { DeclaredGithubOrg } from '../../domain.objects/DeclaredGithubOrg';
+import type { DeclaredGithubOrgSecret } from '../../domain.objects/DeclaredGithubOrgSecret';
+/**
+ * .what = gets all GitHub Organization secrets (metadata only)
+ * .why = retrieves current state for declarative management
+ * .note = values are NEVER returned - secrets are write-only
+ */
+export declare const getAllOrgSecrets: (input: {
+    org: RefByUnique<typeof DeclaredGithubOrg>;
+}, context: ContextGithubApi & VisualogicContext) => Promise<HasMetadata<DeclaredGithubOrgSecret>[]>;

package/dist/domain.operations/orgSecret/getAllOrgSecrets.js ADDED Viewed

@@ -0,0 +1,27 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getAllOrgSecrets = void 0;
+const as_procedure_1 = require("as-procedure");
+const helpful_errors_1 = require("helpful-errors");
+const getGithubClient_1 = require("../../access/sdks/getGithubClient");
+const castToDeclaredGithubOrgSecret_1 = require("./castToDeclaredGithubOrgSecret");
+/**
+ * .what = gets all GitHub Organization secrets (metadata only)
+ * .why = retrieves current state for declarative management
+ * .note = values are NEVER returned - secrets are write-only
+ */
+exports.getAllOrgSecrets = (0, as_procedure_1.asProcedure)(async (input, context) => {
+    const github = (0, getGithubClient_1.getGithubClient)({}, context);
+    try {
+        const response = await github.actions.listOrgSecrets({
+            org: input.org.login,
+        });
+        return response.data.secrets.map((s) => (0, castToDeclaredGithubOrgSecret_1.castToDeclaredGithubOrgSecret)({ data: s, org: input.org }));
+    }
+    catch (error) {
+        if (!(error instanceof Error))
+            throw error;
+        throw new helpful_errors_1.HelpfulError('github.getAllOrgSecrets error', { cause: error });
+    }
+});
+//# sourceMappingURL=getAllOrgSecrets.js.map

package/dist/domain.operations/orgSecret/getAllOrgSecrets.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"getAllOrgSecrets.js","sourceRoot":"","sources":["../../../src/domain.operations/orgSecret/getAllOrgSecrets.ts"],"names":[],"mappings":";;;AAAA,+CAA2C;AAE3C,mDAA8C;AAI9C,sEAAmE;AAKnE,mFAAgF;AAEhF;;;;GAIG;AACU,QAAA,gBAAgB,GAAG,IAAA,0BAAW,EACzC,KAAK,EACH,KAAqD,EACrD,OAA6C,EACI,EAAE;IACnD,MAAM,MAAM,GAAG,IAAA,iCAAe,EAAC,EAAE,EAAE,OAAO,CAAC,CAAC;IAE5C,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,cAAc,CAAC;YACnD,GAAG,EAAE,KAAK,CAAC,GAAG,CAAC,KAAK;SACrB,CAAC,CAAC;QACH,OAAO,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CACrC,IAAA,6DAA6B,EAAC,EAAE,IAAI,EAAE,CAAC,EAAE,GAAG,EAAE,KAAK,CAAC,GAAG,EAAE,CAAC,CAC3D,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,CAAC,CAAC,KAAK,YAAY,KAAK,CAAC;YAAE,MAAM,KAAK,CAAC;QAC3C,MAAM,IAAI,6BAAY,CAAC,+BAA+B,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,CAAC;IAC5E,CAAC;AACH,CAAC,CACF,CAAC"}

package/dist/domain.operations/orgSecret/getOneOrgSecret.d.ts ADDED Viewed

@@ -0,0 +1,15 @@
+import type { RefByUnique } from 'domain-objects';
+import type { HasMetadata, PickOne } from 'type-fns';
+import type { VisualogicContext } from 'visualogic';
+import type { ContextGithubApi } from '../../domain.objects/ContextGithubApi';
+import type { DeclaredGithubOrgSecret } from '../../domain.objects/DeclaredGithubOrgSecret';
+/**
+ * .what = gets a GitHub Organization secret (metadata only)
+ * .why = retrieves current state for declarative management
+ * .note = value is NEVER returned - secrets are write-only
+ */
+export declare const getOneOrgSecret: (input: {
+    by: PickOne<{
+        unique: RefByUnique<typeof DeclaredGithubOrgSecret>;
+    }>;
+}, context: ContextGithubApi & VisualogicContext) => Promise<HasMetadata<DeclaredGithubOrgSecret> | null>;

package/dist/domain.operations/orgSecret/getOneOrgSecret.js ADDED Viewed

@@ -0,0 +1,35 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getOneOrgSecret = void 0;
+const as_procedure_1 = require("as-procedure");
+const helpful_errors_1 = require("helpful-errors");
+const getGithubClient_1 = require("../../access/sdks/getGithubClient");
+const castToDeclaredGithubOrgSecret_1 = require("./castToDeclaredGithubOrgSecret");
+/**
+ * .what = gets a GitHub Organization secret (metadata only)
+ * .why = retrieves current state for declarative management
+ * .note = value is NEVER returned - secrets are write-only
+ */
+exports.getOneOrgSecret = (0, as_procedure_1.asProcedure)(async (input, context) => {
+    const github = (0, getGithubClient_1.getGithubClient)({}, context);
+    const { org, name } = (() => {
+        if (input.by.unique)
+            return { org: input.by.unique.org, name: input.by.unique.name };
+        helpful_errors_1.UnexpectedCodePathError.throw('not referenced by unique', { input });
+    })();
+    try {
+        const response = await github.actions.getOrgSecret({
+            org: org.login,
+            secret_name: name,
+        });
+        return (0, castToDeclaredGithubOrgSecret_1.castToDeclaredGithubOrgSecret)({ data: response.data, org });
+    }
+    catch (error) {
+        if (!(error instanceof Error))
+            throw error;
+        if (error.message.includes('Not Found'))
+            return null;
+        throw new helpful_errors_1.HelpfulError('github.getOrgSecret error', { cause: error });
+    }
+});
+//# sourceMappingURL=getOneOrgSecret.js.map

package/dist/domain.operations/orgSecret/getOneOrgSecret.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"getOneOrgSecret.js","sourceRoot":"","sources":["../../../src/domain.operations/orgSecret/getOneOrgSecret.ts"],"names":[],"mappings":";;;AAAA,+CAA2C;AAE3C,mDAAuE;AAIvE,sEAAmE;AAInE,mFAAgF;AAEhF;;;;GAIG;AACU,QAAA,eAAe,GAAG,IAAA,0BAAW,EACxC,KAAK,EACH,KAIC,EACD,OAA6C,EACS,EAAE;IACxD,MAAM,MAAM,GAAG,IAAA,iCAAe,EAAC,EAAE,EAAE,OAAO,CAAC,CAAC;IAE5C,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,GAAG,CAAC,GAAG,EAAE;QAC1B,IAAI,KAAK,CAAC,EAAE,CAAC,MAAM;YACjB,OAAO,EAAE,GAAG,EAAE,KAAK,CAAC,EAAE,CAAC,MAAM,CAAC,GAAG,EAAE,IAAI,EAAE,KAAK,CAAC,EAAE,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;QAClE,wCAAuB,CAAC,KAAK,CAAC,0BAA0B,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;IACvE,CAAC,CAAC,EAAE,CAAC;IAEL,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC;YACjD,GAAG,EAAE,GAAG,CAAC,KAAK;YACd,WAAW,EAAE,IAAI;SAClB,CAAC,CAAC;QACH,OAAO,IAAA,6DAA6B,EAAC,EAAE,IAAI,EAAE,QAAQ,CAAC,IAAI,EAAE,GAAG,EAAE,CAAC,CAAC;IACrE,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,CAAC,CAAC,KAAK,YAAY,KAAK,CAAC;YAAE,MAAM,KAAK,CAAC;QAC3C,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAC;YAAE,OAAO,IAAI,CAAC;QACrD,MAAM,IAAI,6BAAY,CAAC,2BAA2B,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,CAAC;IACxE,CAAC;AACH,CAAC,CACF,CAAC"}

package/dist/domain.operations/orgSecret/setOrgSecret.d.ts ADDED Viewed

@@ -0,0 +1,17 @@
+import type { HasMetadata, PickOne } from 'type-fns';
+import type { VisualogicContext } from 'visualogic';
+import type { ContextGithubApi } from '../../domain.objects/ContextGithubApi';
+import type { DeclaredGithubOrgSecret } from '../../domain.objects/DeclaredGithubOrgSecret';
+/**
+ * .what = sets a GitHub Organization secret
+ * .why = enables declarative management of org-level secrets
+ *
+ * WRITE-ONLY PATTERN:
+ * - If value is undefined and secret exists: keeps existing value (no-op)
+ * - If value is undefined and secret doesn't exist: throws error (must provide value)
+ * - If value is provided: encrypts and creates/updates secret
+ */
+export declare const setOrgSecret: (input: PickOne<{
+    finsert: DeclaredGithubOrgSecret;
+    upsert: DeclaredGithubOrgSecret;
+}>, context: ContextGithubApi & VisualogicContext) => Promise<HasMetadata<DeclaredGithubOrgSecret>>;

package/dist/domain.operations/orgSecret/setOrgSecret.js ADDED Viewed

@@ -0,0 +1,123 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || function (mod) {
+    if (mod && mod.__esModule) return mod;
+    var result = {};
+    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
+    __setModuleDefault(result, mod);
+    return result;
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.setOrgSecret = void 0;
+const as_procedure_1 = require("as-procedure");
+const helpful_errors_1 = require("helpful-errors");
+const getGithubClient_1 = require("../../access/sdks/getGithubClient");
+const getRepo_1 = require("../../domain.operations/repo/getRepo");
+const getOneOrgSecret_1 = require("./getOneOrgSecret");
+/**
+ * .what = encrypts a secret value using the org's public key
+ * .why = GitHub requires secrets to be encrypted before sending
+ * .note = uses dynamic import to avoid module init issues in test environments
+ */
+const encryptSecret = async (input) => {
+    // dynamic import to avoid libsodium init issues at module load time
+    const sodium = await Promise.resolve().then(() => __importStar(require('libsodium-wrappers'))).then((m) => m.default);
+    await sodium.ready;
+    const binKey = sodium.from_base64(input.publicKey, sodium.base64_variants.ORIGINAL);
+    const binSec = sodium.from_string(input.value);
+    const encBytes = sodium.crypto_box_seal(binSec, binKey);
+    return sodium.to_base64(encBytes, sodium.base64_variants.ORIGINAL);
+};
+/**
+ * .what = sets a GitHub Organization secret
+ * .why = enables declarative management of org-level secrets
+ *
+ * WRITE-ONLY PATTERN:
+ * - If value is undefined and secret exists: keeps existing value (no-op)
+ * - If value is undefined and secret doesn't exist: throws error (must provide value)
+ * - If value is provided: encrypts and creates/updates secret
+ */
+exports.setOrgSecret = (0, as_procedure_1.asProcedure)(async (input, context) => {
+    const desired = input.finsert ?? input.upsert;
+    const github = (0, getGithubClient_1.getGithubClient)({}, context);
+    // Check if secret exists (metadata only)
+    const before = await (0, getOneOrgSecret_1.getOneOrgSecret)({ by: { unique: { org: desired.org, name: desired.name } } }, context);
+    // If finsert and found, return as-is (no changes needed)
+    if (before && input.finsert)
+        return before;
+    // If no value provided and secret doesn't exist, error
+    if (!desired.value && !before) {
+        throw new helpful_errors_1.HelpfulError('Cannot create secret without a value. ' +
+            'Provide the secret value via process.env or directly.', { desiredSecret: desired });
+    }
+    // If no value provided and secret exists, check if we can skip the update
+    // NOTE: GitHub API requires encrypted_value for PUT, so we cannot update
+    // visibility without re-providing the value.
+    if (!desired.value && before) {
+        const visibilityChanged = desired.visibility !== before.visibility;
+        const selectedReposChanged = desired.visibility === 'selected' &&
+            JSON.stringify(desired.selectedRepositoryNames?.sort()) !==
+                JSON.stringify(before.selectedRepositoryNames?.sort());
+        if (visibilityChanged || selectedReposChanged) {
+            throw new helpful_errors_1.HelpfulError('Cannot update secret visibility without re-providing the secret value. ' +
+                'GitHub API requires the encrypted value for any secret update.', {
+                desiredSecret: desired,
+                currentVisibility: before.visibility,
+                desiredVisibility: desired.visibility,
+            });
+        }
+        // No changes needed, return existing metadata
+        return before;
+    }
+    // Get org's public key for encryption
+    const keyResponse = await github.actions.getOrgPublicKey({
+        org: desired.org.login,
+    });
+    // Encrypt the secret value
+    const encryptedValue = await encryptSecret({
+        value: desired.value,
+        publicKey: keyResponse.data.key,
+    });
+    // Resolve repo IDs if visibility is 'selected'
+    const selectedRepositoryIds = desired.visibility === 'selected' && desired.selectedRepositoryNames
+        ? await Promise.all(desired.selectedRepositoryNames.map(async (name) => {
+            const repo = await (0, getRepo_1.getRepo)({ by: { unique: { owner: desired.org.login, name } } }, context);
+            if (!repo)
+                throw new helpful_errors_1.HelpfulError(`Repository not found: ${desired.org.login}/${name}`);
+            return repo.id;
+        }))
+        : undefined;
+    // Create or update secret
+    try {
+        await github.actions.createOrUpdateOrgSecret({
+            org: desired.org.login,
+            secret_name: desired.name,
+            encrypted_value: encryptedValue,
+            key_id: keyResponse.data.key_id,
+            visibility: desired.visibility,
+            selected_repository_ids: selectedRepositoryIds,
+        });
+        return (await (0, getOneOrgSecret_1.getOneOrgSecret)({ by: { unique: { org: desired.org, name: desired.name } } }, context));
+    }
+    catch (error) {
+        if (!(error instanceof Error))
+            throw error;
+        throw new helpful_errors_1.HelpfulError('github.setOrgSecret error', { cause: error });
+    }
+});
+//# sourceMappingURL=setOrgSecret.js.map

package/dist/domain.operations/orgSecret/setOrgSecret.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"setOrgSecret.js","sourceRoot":"","sources":["../../../src/domain.operations/orgSecret/setOrgSecret.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,+CAA2C;AAC3C,mDAA8C;AAI9C,sEAAmE;AAGnE,iEAA8D;AAE9D,uDAAoD;AAEpD;;;;GAIG;AACH,MAAM,aAAa,GAAG,KAAK,EAAE,KAG5B,EAAmB,EAAE;IACpB,oEAAoE;IACpE,MAAM,MAAM,GAAG,MAAM,kDAAO,oBAAoB,IAAE,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC;IACzE,MAAM,MAAM,CAAC,KAAK,CAAC;IACnB,MAAM,MAAM,GAAG,MAAM,CAAC,WAAW,CAC/B,KAAK,CAAC,SAAS,EACf,MAAM,CAAC,eAAe,CAAC,QAAQ,CAChC,CAAC;IACF,MAAM,MAAM,GAAG,MAAM,CAAC,WAAW,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;IAC/C,MAAM,QAAQ,GAAG,MAAM,CAAC,eAAe,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACxD,OAAO,MAAM,CAAC,SAAS,CAAC,QAAQ,EAAE,MAAM,CAAC,eAAe,CAAC,QAAQ,CAAC,CAAC;AACrE,CAAC,CAAC;AAEF;;;;;;;;GAQG;AACU,QAAA,YAAY,GAAG,IAAA,0BAAW,EACrC,KAAK,EACH,KAGE,EACF,OAA6C,EACE,EAAE;IACjD,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,IAAI,KAAK,CAAC,MAAM,CAAC;IAC9C,MAAM,MAAM,GAAG,IAAA,iCAAe,EAAC,EAAE,EAAE,OAAO,CAAC,CAAC;IAE5C,yCAAyC;IACzC,MAAM,MAAM,GAAG,MAAM,IAAA,iCAAe,EAClC,EAAE,EAAE,EAAE,EAAE,MAAM,EAAE,EAAE,GAAG,EAAE,OAAO,CAAC,GAAG,EAAE,IAAI,EAAE,OAAO,CAAC,IAAI,EAAE,EAAE,EAAE,EAC5D,OAAO,CACR,CAAC;IAEF,yDAAyD;IACzD,IAAI,MAAM,IAAI,KAAK,CAAC,OAAO;QAAE,OAAO,MAAM,CAAC;IAE3C,uDAAuD;IACvD,IAAI,CAAC,OAAO,CAAC,KAAK,IAAI,CAAC,MAAM,EAAE,CAAC;QAC9B,MAAM,IAAI,6BAAY,CACpB,wCAAwC;YACtC,uDAAuD,EACzD,EAAE,aAAa,EAAE,OAAO,EAAE,CAC3B,CAAC;IACJ,CAAC;IAED,0EAA0E;IAC1E,yEAAyE;IACzE,6CAA6C;IAC7C,IAAI,CAAC,OAAO,CAAC,KAAK,IAAI,MAAM,EAAE,CAAC;QAC7B,MAAM,iBAAiB,GAAG,OAAO,CAAC,UAAU,KAAK,MAAM,CAAC,UAAU,CAAC;QACnE,MAAM,oBAAoB,GACxB,OAAO,CAAC,UAAU,KAAK,UAAU;YACjC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,uBAAuB,EAAE,IAAI,EAAE,CAAC;gBACrD,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,uBAAuB,EAAE,IAAI,EAAE,CAAC,CAAC;QAE3D,IAAI,iBAAiB,IAAI,oBAAoB,EAAE,CAAC;YAC9C,MAAM,IAAI,6BAAY,CACpB,yEAAyE;gBACvE,gEAAgE,EAClE;gBACE,aAAa,EAAE,OAAO;gBACtB,iBAAiB,EAAE,MAAM,CAAC,UAAU;gBACpC,iBAAiB,EAAE,OAAO,CAAC,UAAU;aACtC,CACF,CAAC;QACJ,CAAC;QAED,8CAA8C;QAC9C,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,sCAAsC;IACtC,MAAM,WAAW,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,eAAe,CAAC;QACvD,GAAG,EAAE,OAAO,CAAC,GAAG,CAAC,KAAK;KACvB,CAAC,CAAC;IAEH,2BAA2B;IAC3B,MAAM,cAAc,GAAG,MAAM,aAAa,CAAC;QACzC,KAAK,EAAE,OAAO,CAAC,KAAM;QACrB,SAAS,EAAE,WAAW,CAAC,IAAI,CAAC,GAAG;KAChC,CAAC,CAAC;IAEH,+CAA+C;IAC/C,MAAM,qBAAqB,GACzB,OAAO,CAAC,UAAU,KAAK,UAAU,IAAI,OAAO,CAAC,uBAAuB;QAClE,CAAC,CAAC,MAAM,OAAO,CAAC,GAAG,CACf,OAAO,CAAC,uBAAuB,CAAC,GAAG,CAAC,KAAK,EAAE,IAAI,EAAE,EAAE;YACjD,MAAM,IAAI,GAAG,MAAM,IAAA,iBAAO,EACxB,EAAE,EAAE,EAAE,EAAE,MAAM,EAAE,EAAE,KAAK,EAAE,OAAO,CAAC,GAAG,CAAC,KAAK,EAAE,IAAI,EAAE,EAAE,EAAE,EACtD,OAAO,CACR,CAAC;YACF,IAAI,CAAC,IAAI;gBACP,MAAM,IAAI,6BAAY,CACpB,yBAAyB,OAAO,CAAC,GAAG,CAAC,KAAK,IAAI,IAAI,EAAE,CACrD,CAAC;YACJ,OAAO,IAAI,CAAC,EAAG,CAAC;QAClB,CAAC,CAAC,CACH;QACH,CAAC,CAAC,SAAS,CAAC;IAEhB,0BAA0B;IAC1B,IAAI,CAAC;QACH,MAAM,MAAM,CAAC,OAAO,CAAC,uBAAuB,CAAC;YAC3C,GAAG,EAAE,OAAO,CAAC,GAAG,CAAC,KAAK;YACtB,WAAW,EAAE,OAAO,CAAC,IAAI;YACzB,eAAe,EAAE,cAAc;YAC/B,MAAM,EAAE,WAAW,CAAC,IAAI,CAAC,MAAM;YAC/B,UAAU,EAAE,OAAO,CAAC,UAAU;YAC9B,uBAAuB,EAAE,qBAAqB;SAC/C,CAAC,CAAC;QAEH,OAAO,CAAC,MAAM,IAAA,iCAAe,EAC3B,EAAE,EAAE,EAAE,EAAE,MAAM,EAAE,EAAE,GAAG,EAAE,OAAO,CAAC,GAAG,EAAE,IAAI,EAAE,OAAO,CAAC,IAAI,EAAE,EAAE,EAAE,EAC5D,OAAO,CACR,CAAE,CAAC;IACN,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,CAAC,CAAC,KAAK,YAAY,KAAK,CAAC;YAAE,MAAM,KAAK,CAAC;QAC3C,MAAM,IAAI,6BAAY,CAAC,2BAA2B,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,CAAC;IACxE,CAAC;AACH,CAAC,CACF,CAAC"}

package/dist/domain.operations/orgVariable/castToDeclaredGithubOrgVariable.d.ts ADDED Viewed

@@ -0,0 +1,16 @@
+import type { Endpoints } from '@octokit/types';
+import type { RefByUnique } from 'domain-objects';
+import type { HasMetadata } from 'type-fns';
+import type { DeclaredGithubOrg } from '../../domain.objects/DeclaredGithubOrg';
+import { DeclaredGithubOrgVariable } from '../../domain.objects/DeclaredGithubOrgVariable';
+type GithubOrgVariableResponse = Endpoints['GET /orgs/{org}/actions/variables/{name}']['response']['data'];
+type GithubOrgVariableListItem = Endpoints['GET /orgs/{org}/actions/variables']['response']['data']['variables'][number];
+/**
+ * .what = casts GitHub API variable response to DeclaredGithubOrgVariable
+ * .why = transforms external API shape to our domain model
+ */
+export declare const castToDeclaredGithubOrgVariable: (input: {
+    data: GithubOrgVariableResponse | GithubOrgVariableListItem;
+    org: RefByUnique<typeof DeclaredGithubOrg>;
+}) => HasMetadata<DeclaredGithubOrgVariable>;
+export {};

package/dist/domain.operations/orgVariable/castToDeclaredGithubOrgVariable.js ADDED Viewed

@@ -0,0 +1,26 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.castToDeclaredGithubOrgVariable = void 0;
+const uni_time_1 = require("@ehmpathy/uni-time");
+const DeclaredGithubOrgVariable_1 = require("../../domain.objects/DeclaredGithubOrgVariable");
+/**
+ * .what = casts GitHub API variable response to DeclaredGithubOrgVariable
+ * .why = transforms external API shape to our domain model
+ */
+const castToDeclaredGithubOrgVariable = (input) => {
+    return DeclaredGithubOrgVariable_1.DeclaredGithubOrgVariable.as({
+        org: input.org,
+        name: input.data.name,
+        value: input.data.value,
+        visibility: input.data.visibility,
+        // selectedRepositoryNames not set - not returned in API response
+        createdAt: input.data.created_at
+            ? (0, uni_time_1.asUniDateTime)(input.data.created_at)
+            : undefined,
+        updatedAt: input.data.updated_at
+            ? (0, uni_time_1.asUniDateTime)(input.data.updated_at)
+            : undefined,
+    });
+};
+exports.castToDeclaredGithubOrgVariable = castToDeclaredGithubOrgVariable;
+//# sourceMappingURL=castToDeclaredGithubOrgVariable.js.map

package/dist/domain.operations/orgVariable/castToDeclaredGithubOrgVariable.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"castToDeclaredGithubOrgVariable.js","sourceRoot":"","sources":["../../../src/domain.operations/orgVariable/castToDeclaredGithubOrgVariable.ts"],"names":[],"mappings":";;;AAAA,iDAAmD;AAMnD,6FAA0F;AAQ1F;;;GAGG;AACI,MAAM,+BAA+B,GAAG,CAAC,KAG/C,EAA0C,EAAE;IAC3C,OAAO,qDAAyB,CAAC,EAAE,CAAC;QAClC,GAAG,EAAE,KAAK,CAAC,GAAG;QACd,IAAI,EAAE,KAAK,CAAC,IAAI,CAAC,IAAI;QACrB,KAAK,EAAE,KAAK,CAAC,IAAI,CAAC,KAAK;QACvB,UAAU,EAAE,KAAK,CAAC,IAAI,CAAC,UAA4C;QACnE,iEAAiE;QACjE,SAAS,EAAE,KAAK,CAAC,IAAI,CAAC,UAAU;YAC9B,CAAC,CAAC,IAAA,wBAAa,EAAC,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC;YACtC,CAAC,CAAC,SAAS;QACb,SAAS,EAAE,KAAK,CAAC,IAAI,CAAC,UAAU;YAC9B,CAAC,CAAC,IAAA,wBAAa,EAAC,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC;YACtC,CAAC,CAAC,SAAS;KACd,CAA2C,CAAC;AAC/C,CAAC,CAAC;AAjBW,QAAA,+BAA+B,mCAiB1C"}

package/dist/domain.operations/orgVariable/delOrgVariable.d.ts ADDED Viewed

@@ -0,0 +1,11 @@
+import type { Ref } from 'domain-objects';
+import type { VisualogicContext } from 'visualogic';
+import type { ContextGithubApi } from '../../domain.objects/ContextGithubApi';
+import type { DeclaredGithubOrgVariable } from '../../domain.objects/DeclaredGithubOrgVariable';
+/**
+ * .what = deletes a GitHub Organization variable
+ * .why = enables declarative management of org-level variables
+ */
+export declare const delOrgVariable: (input: {
+    variable: Ref<typeof DeclaredGithubOrgVariable>;
+}, context: ContextGithubApi & VisualogicContext) => Promise<void>;