npm - hi-secure - Versions diffs - 1.0.0 - Mend

hi-secure 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (210) hide show

package/dist/adapters/ArgonAdapter.d.ts +8 -0
package/dist/adapters/ArgonAdapter.d.ts.map +1 -0
package/dist/adapters/ArgonAdapter.js +45 -0
package/dist/adapters/ArgonAdapter.js.map +1 -0
package/dist/adapters/BcryptAdapter.d.ts +7 -0
package/dist/adapters/BcryptAdapter.d.ts.map +1 -0
package/dist/adapters/BcryptAdapter.js +48 -0
package/dist/adapters/BcryptAdapter.js.map +1 -0
package/dist/adapters/DomPurifyAdapter.d.ts +13 -0
package/dist/adapters/DomPurifyAdapter.d.ts.map +1 -0
package/dist/adapters/DomPurifyAdapter.js +61 -0
package/dist/adapters/DomPurifyAdapter.js.map +1 -0
package/dist/adapters/ExpressRLAdapter.d.ts +13 -0
package/dist/adapters/ExpressRLAdapter.d.ts.map +1 -0
package/dist/adapters/ExpressRLAdapter.js +68 -0
package/dist/adapters/ExpressRLAdapter.js.map +1 -0
package/dist/adapters/ExpressValidatorAdapter.d.ts +6 -0
package/dist/adapters/ExpressValidatorAdapter.d.ts.map +1 -0
package/dist/adapters/ExpressValidatorAdapter.js +78 -0
package/dist/adapters/ExpressValidatorAdapter.js.map +1 -0
package/dist/adapters/GoggleAdapter.d.ts +15 -0
package/dist/adapters/GoggleAdapter.d.ts.map +1 -0
package/dist/adapters/GoggleAdapter.js +91 -0
package/dist/adapters/GoggleAdapter.js.map +1 -0
package/dist/adapters/GoogleAdapter.d.ts +15 -0
package/dist/adapters/GoogleAdapter.d.ts.map +1 -0
package/dist/adapters/GoogleAdapter.js +159 -0
package/dist/adapters/GoogleAdapter.js.map +1 -0
package/dist/adapters/JWTAdapter.d.ts +28 -0
package/dist/adapters/JWTAdapter.d.ts.map +1 -0
package/dist/adapters/JWTAdapter.js +276 -0
package/dist/adapters/JWTAdapter.js.map +1 -0
package/dist/adapters/RLFlexibleAdapter.d.ts +11 -0
package/dist/adapters/RLFlexibleAdapter.d.ts.map +1 -0
package/dist/adapters/RLFlexibleAdapter.js +115 -0
package/dist/adapters/RLFlexibleAdapter.js.map +1 -0
package/dist/adapters/SanitizeHtmlAdapter.d.ts +12 -0
package/dist/adapters/SanitizeHtmlAdapter.d.ts.map +1 -0
package/dist/adapters/SanitizeHtmlAdapter.js +141 -0
package/dist/adapters/SanitizeHtmlAdapter.js.map +1 -0
package/dist/adapters/XSSAdapter.d.ts +33 -0
package/dist/adapters/XSSAdapter.d.ts.map +1 -0
package/dist/adapters/XSSAdapter.js +127 -0
package/dist/adapters/XSSAdapter.js.map +1 -0
package/dist/adapters/ZodAdapter.d.ts +7 -0
package/dist/adapters/ZodAdapter.d.ts.map +1 -0
package/dist/adapters/ZodAdapter.js +39 -0
package/dist/adapters/ZodAdapter.js.map +1 -0
package/dist/core/HiSecure.d.ts +62 -0
package/dist/core/HiSecure.d.ts.map +1 -0
package/dist/core/HiSecure.js +273 -0
package/dist/core/HiSecure.js.map +1 -0
package/dist/core/config.d.ts +3 -0
package/dist/core/config.d.ts.map +1 -0
package/dist/core/config.js +53 -0
package/dist/core/config.js.map +1 -0
package/dist/core/constants.d.ts +37 -0
package/dist/core/constants.d.ts.map +1 -0
package/dist/core/constants.js +67 -0
package/dist/core/constants.js.map +1 -0
package/dist/core/errors/AdapterError.d.ts +5 -0
package/dist/core/errors/AdapterError.d.ts.map +1 -0
package/dist/core/errors/AdapterError.js +15 -0
package/dist/core/errors/AdapterError.js.map +1 -0
package/dist/core/errors/HttpErrror.d.ts +17 -0
package/dist/core/errors/HttpErrror.d.ts.map +1 -0
package/dist/core/errors/HttpErrror.js +36 -0
package/dist/core/errors/HttpErrror.js.map +1 -0
package/dist/core/errors/SanitizerError.d.ts +5 -0
package/dist/core/errors/SanitizerError.d.ts.map +1 -0
package/dist/core/errors/SanitizerError.js +14 -0
package/dist/core/errors/SanitizerError.js.map +1 -0
package/dist/core/errors/SecurityError.d.ts +5 -0
package/dist/core/errors/SecurityError.d.ts.map +1 -0
package/dist/core/errors/SecurityError.js +14 -0
package/dist/core/errors/SecurityError.js.map +1 -0
package/dist/core/errors/ValidationError.d.ts +5 -0
package/dist/core/errors/ValidationError.d.ts.map +1 -0
package/dist/core/errors/ValidationError.js +14 -0
package/dist/core/errors/ValidationError.js.map +1 -0
package/dist/core/types/HiSecureConfig.d.ts +47 -0
package/dist/core/types/HiSecureConfig.d.ts.map +1 -0
package/dist/core/types/HiSecureConfig.js +3 -0
package/dist/core/types/HiSecureConfig.js.map +1 -0
package/dist/core/types/SecureOptions.d.ts +30 -0
package/dist/core/types/SecureOptions.d.ts.map +1 -0
package/dist/core/types/SecureOptions.js +4 -0
package/dist/core/types/SecureOptions.js.map +1 -0
package/dist/core/useSecure.d.ts +10 -0
package/dist/core/useSecure.d.ts.map +1 -0
package/dist/core/useSecure.js +85 -0
package/dist/core/useSecure.js.map +1 -0
package/dist/examples/e1.d.ts +1 -0
package/dist/examples/e1.d.ts.map +1 -0
package/dist/examples/e1.js +3 -0
package/dist/examples/e1.js.map +1 -0
package/dist/index.d.ts +9 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +15 -0
package/dist/index.js.map +1 -0
package/dist/logging/index.d.ts +3 -0
package/dist/logging/index.d.ts.map +1 -0
package/dist/logging/index.js +19 -0
package/dist/logging/index.js.map +1 -0
package/dist/logging/morganSetup.d.ts +2 -0
package/dist/logging/morganSetup.d.ts.map +1 -0
package/dist/logging/morganSetup.js +9 -0
package/dist/logging/morganSetup.js.map +1 -0
package/dist/logging/winstonSetup.d.ts +6 -0
package/dist/logging/winstonSetup.d.ts.map +1 -0
package/dist/logging/winstonSetup.js +22 -0
package/dist/logging/winstonSetup.js.map +1 -0
package/dist/managers/AuthManager.d.ts +23 -0
package/dist/managers/AuthManager.d.ts.map +1 -0
package/dist/managers/AuthManager.js +190 -0
package/dist/managers/AuthManager.js.map +1 -0
package/dist/managers/CorsManager.d.ts +9 -0
package/dist/managers/CorsManager.d.ts.map +1 -0
package/dist/managers/CorsManager.js +55 -0
package/dist/managers/CorsManager.js.map +1 -0
package/dist/managers/HashManager.d.ts +22 -0
package/dist/managers/HashManager.d.ts.map +1 -0
package/dist/managers/HashManager.js +319 -0
package/dist/managers/HashManager.js.map +1 -0
package/dist/managers/JsonManager.d.ts +6 -0
package/dist/managers/JsonManager.d.ts.map +1 -0
package/dist/managers/JsonManager.js +142 -0
package/dist/managers/JsonManager.js.map +1 -0
package/dist/managers/RateLimitManager.d.ts +16 -0
package/dist/managers/RateLimitManager.d.ts.map +1 -0
package/dist/managers/RateLimitManager.js +108 -0
package/dist/managers/RateLimitManager.js.map +1 -0
package/dist/managers/SanitizerManager.d.ts +18 -0
package/dist/managers/SanitizerManager.d.ts.map +1 -0
package/dist/managers/SanitizerManager.js +296 -0
package/dist/managers/SanitizerManager.js.map +1 -0
package/dist/managers/ValidatorManager.d.ts +13 -0
package/dist/managers/ValidatorManager.d.ts.map +1 -0
package/dist/managers/ValidatorManager.js +218 -0
package/dist/managers/ValidatorManager.js.map +1 -0
package/dist/middlewares/errorHandler.d.ts +3 -0
package/dist/middlewares/errorHandler.d.ts.map +1 -0
package/dist/middlewares/errorHandler.js +94 -0
package/dist/middlewares/errorHandler.js.map +1 -0
package/dist/middlewares/index.d.ts +3 -0
package/dist/middlewares/index.d.ts.map +1 -0
package/dist/middlewares/index.js +19 -0
package/dist/middlewares/index.js.map +1 -0
package/dist/middlewares/requestLogger.d.ts +2 -0
package/dist/middlewares/requestLogger.d.ts.map +1 -0
package/dist/middlewares/requestLogger.js +8 -0
package/dist/middlewares/requestLogger.js.map +1 -0
package/dist/test/t1.d.ts +1 -0
package/dist/test/t1.d.ts.map +1 -0
package/dist/test/t1.js +3 -0
package/dist/test/t1.js.map +1 -0
package/dist/utils/deepFreeze.d.ts +2 -0
package/dist/utils/deepFreeze.d.ts.map +1 -0
package/dist/utils/deepFreeze.js +69 -0
package/dist/utils/deepFreeze.js.map +1 -0
package/dist/utils/deepMerge.d.ts +5 -0
package/dist/utils/deepMerge.d.ts.map +1 -0
package/dist/utils/deepMerge.js +68 -0
package/dist/utils/deepMerge.js.map +1 -0
package/dist/utils/normalizeOptions.d.ts +38 -0
package/dist/utils/normalizeOptions.d.ts.map +1 -0
package/dist/utils/normalizeOptions.js +119 -0
package/dist/utils/normalizeOptions.js.map +1 -0
package/package.json +50 -0
package/src/adapters/ArgonAdapter.ts +41 -0
package/src/adapters/BcryptAdapter.ts +49 -0
package/src/adapters/ExpressRLAdapter.ts +84 -0
package/src/adapters/ExpressValidatorAdapter.ts +99 -0
package/src/adapters/GoogleAdapter.ts +206 -0
package/src/adapters/JWTAdapter.ts +346 -0
package/src/adapters/RLFlexibleAdapter.ts +139 -0
package/src/adapters/SanitizeHtmlAdapter.ts +162 -0
package/src/adapters/XSSAdapter.ts +153 -0
package/src/adapters/ZodAdapter.ts +91 -0
package/src/core/HiSecure.ts +955 -0
package/src/core/config.ts +156 -0
package/src/core/constants.ts +73 -0
package/src/core/errors/AdapterError.ts +14 -0
package/src/core/errors/HttpErrror.ts +46 -0
package/src/core/errors/SanitizerError.ts +13 -0
package/src/core/errors/SecurityError.ts +13 -0
package/src/core/errors/ValidationError.ts +13 -0
package/src/core/types/HiSecureConfig.ts +62 -0
package/src/core/types/SecureOptions.ts +61 -0
package/src/core/useSecure.ts +111 -0
package/src/examples/e1.ts +1 -0
package/src/index.ts +17 -0
package/src/logging/index.ts +2 -0
package/src/logging/morganSetup.ts +3 -0
package/src/logging/winstonSetup.ts +17 -0
package/src/managers/AuthManager.ts +237 -0
package/src/managers/CorsManager.ts +58 -0
package/src/managers/HashManager.ts +390 -0
package/src/managers/JsonManager.ts +149 -0
package/src/managers/RateLimitManager.ts +368 -0
package/src/managers/SanitizerManager.ts +359 -0
package/src/managers/ValidatorManager.ts +269 -0
package/src/middlewares/errorHandler.ts +265 -0
package/src/middlewares/index.ts +2 -0
package/src/middlewares/requestLogger.ts +5 -0
package/src/test/t1.ts +1 -0
package/src/utils/deepFreeze.ts +76 -0
package/src/utils/deepMerge.ts +87 -0
package/src/utils/normalizeOptions.ts +265 -0
package/tsconfig.json +30 -0

package/src/middlewares/errorHandler.ts ADDED Viewed

@@ -0,0 +1,265 @@
+// import { Request, Response, NextFunction } from "express";
+// import { logger } from "../logging";
+// import { AdapterError } from "../core/errors/AdapterError";
+// import { ValidationError } from "../core/errors/ValidationError";
+// import { SanitizerError } from "../core/errors/SanitizerError";
+// import { SecurityError } from "../core/errors/SecurityError";
+// export function errorHandler(
+//     err: any,
+//     req: Request,
+//     res: Response,
+//     _next: NextFunction
+// ) {
+//     // Normalize unknown errors
+//     const errorMessage =
+//         typeof err === "string"
+//             ? err
+//             : err?.message || "Unknown error occurred";
+//     const errorStack =
+//         err instanceof Error && err.stack
+//             ? err.stack.split("\n").slice(0, 2).join(" | ")
+//             : undefined;
+//     // Log error centrally
+//     logger.error("❌ HiSecure Error Captured", {
+//         message: errorMessage,
+//         path: req.path,
+//         method: req.method,
+//         stack: errorStack,
+//         raw: err
+//     });
+//     // ------------------------------
+//     // CLASSIFIED ERROR RESPONSES
+//     // ------------------------------
+//     if (err instanceof ValidationError) {
+//         return res.status(400).json({
+//             success: false,
+//             error: "VALIDATION_ERROR",
+//             message: errorMessage
+//         });
+//     }
+//     if (err instanceof SanitizerError) {
+//         return res.status(400).json({
+//             success: false,
+//             error: "SANITIZER_ERROR",
+//             message: errorMessage
+//         });
+//     }
+//     if (err instanceof AdapterError) {
+//         return res.status(500).json({
+//             success: false,
+//             error: "ADAPTER_ERROR",
+//             message: errorMessage
+//         });
+//     }
+//     if (err instanceof SecurityError) {
+//         return res.status(500).json({
+//             success: false,
+//             error: "SECURITY_ERROR",
+//             message: errorMessage
+//         });
+//     }
+//     // ------------------------------
+//     // UNEXPECTED ERROR
+//     // ------------------------------
+//     return res.status(500).json({
+//         success: false,
+//         error: "INTERNAL_SERVER_ERROR",
+//         message: "An unexpected error occurred in HiSecure middleware."
+//     });
+// }
+// import { Request, Response, NextFunction } from "express";
+// import { logger } from "../logging";
+// import { AdapterError } from "../core/errors/AdapterError";
+// import { ValidationError } from "../core/errors/ValidationError";
+// import { SanitizerError } from "../core/errors/SanitizerError";
+// import { SecurityError } from "../core/errors/SecurityError";
+// export function errorHandler(
+//     err: any,
+//     req: Request,
+//     res: Response,
+//     _next: NextFunction
+// ) {
+//     // Normalize unknown errors
+//     const errorMessage =
+//         typeof err === "string"
+//             ? err
+//             : err?.message || "Unknown error occurred";
+//     const errorStack =
+//         err instanceof Error && err.stack
+//             ? err.stack.split("\n").slice(0, 2).join(" | ")
+//             : undefined;
+//     // Log error centrally
+//     logger.error("❌ HiSecure Error Captured", {
+//         message: errorMessage,
+//         path: req.path,
+//         method: req.method,
+//         stack: errorStack,
+//         raw: err
+//     });
+//     // ------------------------------
+//     // CLASSIFIED ERROR RESPONSES
+//     // ------------------------------
+//     if (err instanceof ValidationError) {
+//         return res.status(400).json({
+//             success: false,
+//             error: "VALIDATION_ERROR",
+//             message: errorMessage
+//         });
+//     }
+//     if (err instanceof SanitizerError) {
+//         return res.status(400).json({
+//             success: false,
+//             error: "SANITIZER_ERROR",
+//             message: errorMessage
+//         });
+//     }
+//     if (err instanceof AdapterError) {
+//         return res.status(500).json({
+//             success: false,
+//             error: "ADAPTER_ERROR",
+//             message: errorMessage
+//         });
+//     }
+//     if (err instanceof SecurityError) {
+//         return res.status(500).json({
+//             success: false,
+//             error: "SECURITY_ERROR",
+//             message: errorMessage
+//         });
+//     }
+//     // ------------------------------
+//     // UNEXPECTED ERROR
+//     // ------------------------------
+//     return res.status(500).json({
+//         success: false,
+//         error: "INTERNAL_SERVER_ERROR",
+//         message: "An unexpected error occurred in HiSecure middleware."
+//     });
+// }
+import { Request, Response, NextFunction } from "express";
+import { logger } from "../logging";
+import { AdapterError } from "../core/errors/AdapterError.js";
+import { ValidationError } from "../core/errors/ValidationError.js";
+import { SanitizerError } from "../core/errors/SanitizerError.js";
+import { SecurityError } from "../core/errors/SecurityError.js";
+import { HttpError } from "../core/errors/HttpErrror.js";
+export function errorHandler(
+    err: any,
+    req: Request,
+    res: Response,
+    _next: NextFunction
+) {
+    const message =
+        typeof err === "string"
+            ? err
+            : err?.message || "Unknown error";
+    const stack =
+        err instanceof Error && err.stack
+            ? err.stack.split("\n").slice(0, 2).join(" | ")
+            : undefined;
+    // Unified logging
+    logger.error("❌ HiSecure Error", {
+        type: err?.name || "UnknownError",
+        message,
+        status: err?.status,
+        code: err?.code,
+        path: req.path,
+        method: req.method,
+        stack,
+        raw: err,
+    });
+    // ---------------------------------------------------
+    // 1. HttpError (developer thrown)
+    // ---------------------------------------------------
+    if (err instanceof HttpError) {
+        return res.status(err.status).json({
+            success: false,
+            error: err.code,
+            message: err.message,
+            details: err.details || undefined,
+        });
+    }
+    // ---------------------------------------------------
+    // 2. Validation Errors
+    // ---------------------------------------------------
+    if (err instanceof ValidationError) {
+        return res.status(400).json({
+            success: false,
+            error: "VALIDATION_ERROR",
+            message,
+        });
+    }
+    // ---------------------------------------------------
+    // 3. Sanitizer Errors
+    // ---------------------------------------------------
+    if (err instanceof SanitizerError) {
+        return res.status(400).json({
+            success: false,
+            error: "SANITIZER_ERROR",
+            message,
+        });
+    }
+    // ---------------------------------------------------
+    // 4. Adapter Errors (hashing, rate-limit, sanitizer, validator ...)
+    // ---------------------------------------------------
+    if (err instanceof AdapterError) {
+        return res.status(500).json({
+            success: false,
+            error: "ADAPTER_ERROR",
+            message,
+        });
+    }
+    // ---------------------------------------------------
+    // 5. Security Errors (internal library security logic)
+    // ---------------------------------------------------
+    if (err instanceof SecurityError) {
+        return res.status(500).json({
+            success: false,
+            error: "SECURITY_ERROR",
+            message,
+        });
+    }
+    // ---------------------------------------------------
+    // 6. Fallback → Unexpected
+    // ---------------------------------------------------
+    return res.status(500).json({
+        success: false,
+        error: "INTERNAL_SERVER_ERROR",
+        message: "An unexpected error occurred in HiSecure.",
+    });
+}

package/src/middlewares/index.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export * from "./requestLogger.js";
2	+ export * from "./errorHandler.js";

package/src/middlewares/requestLogger.ts ADDED Viewed

@@ -0,0 +1,5 @@
+import { requestLogger } from "../logging";
+export function httpLogger() {
+    return requestLogger;
+}

package/src/test/t1.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ // dekhete hai baad mein

package/src/utils/deepFreeze.ts ADDED Viewed

@@ -0,0 +1,76 @@
+// export function deepFreeze<T>(obj: T): T {
+//     // Freeze the top level object
+//     Object.freeze(obj);
+//     // Now recursively freeze nested objects
+//     Object.getOwnPropertyNames(obj).forEach((prop) => {
+//         // @ts-ignore
+//         const value = obj[prop];
+//         if (
+//             value &&
+//             (typeof value === "object" || typeof value === "function") &&
+//             !Object.isFrozen(value)
+//         ) {
+//             deepFreeze(value); // recursive freeze
+//         }
+//     });
+//     return obj;
+// }
+export function deepFreeze<T>(obj: T, visited = new WeakSet()): T {
+    // Handle primitives and null/undefined
+    if (obj === null || obj === undefined) return obj;
+    if (typeof obj !== 'object' && typeof obj !== 'function') return obj;
+    // Handle circular references
+    if (visited.has(obj)) return obj;
+    visited.add(obj);
+    // Don't freeze built-in objects that shouldn't be frozen
+    const constructor = obj.constructor;
+    const builtIns = [Date, RegExp, Map, Set, WeakMap, WeakSet, Promise];
+    if (builtIns.some(builtIn => obj instanceof builtIn)) {
+        return obj;
+    }
+    // Don't freeze functions
+    if (typeof obj === 'function') return obj;
+    // Freeze the object itself
+    Object.freeze(obj);
+    // Freeze array elements
+    if (Array.isArray(obj)) {
+        for (const item of obj) {
+            if (item && typeof item === 'object') {
+                deepFreeze(item, visited);
+            }
+        }
+        return obj;
+    }
+    // Freeze object properties
+    const props = Object.getOwnPropertyNames(obj);
+    for (const prop of props) {
+        const value = (obj as any)[prop];
+        if (value && typeof value === 'object') {
+            deepFreeze(value, visited);
+        }
+    }
+    // Freeze symbol properties
+    const symbols = Object.getOwnPropertySymbols(obj);
+    for (const sym of symbols) {
+        const value = (obj as any)[sym];
+        if (value && typeof value === 'object') {
+            deepFreeze(value, visited);
+        }
+    }
+    return obj;
+}

package/src/utils/deepMerge.ts ADDED Viewed

@@ -0,0 +1,87 @@
+// export function deepMerge<T>(target: T, source: Partial<T>): T {
+//   if (!source) return target;
+//   const output: any = Array.isArray(target) ? [...(target as any)] : { ...(target as any) };
+//   for (const key of Object.keys(source) as Array<keyof typeof source>) {
+//     const sourceValue = (source as any)[key];
+//     const targetValue = (target as any)[key];
+//     const shouldRecurse =
+//       sourceValue &&
+//       typeof sourceValue === "object" &&
+//       !Array.isArray(sourceValue) &&
+//       targetValue &&
+//       typeof targetValue === "object";
+//     if (shouldRecurse) {
+//       output[key] = deepMerge(targetValue, sourceValue);
+//     } else {
+//       output[key] = sourceValue;
+//     }
+//   }
+//   return output;
+// }
+export function deepMerge<T extends object, U extends Partial<T>>(
+    target: T,
+    source: U,
+    options: { mergeArrays?: boolean; skipUndefined?: boolean } = {}
+): T & U {
+    const { mergeArrays = false, skipUndefined = true } = options;
+    if (!source || typeof source !== 'object') {
+        return target as T & U;
+    }
+    const output: any = Array.isArray(target)
+        ? [...target]
+        : { ...target };
+    for (const key in source) {
+        if (!source.hasOwnProperty(key)) continue;
+        const sourceValue = (source as any)[key];
+        const targetValue = (target as any)[key];
+        // Skip undefined values if configured
+        if (skipUndefined && sourceValue === undefined) continue;
+        // Handle null explicitly
+        if (sourceValue === null) {
+            output[key] = null;
+            continue;
+        }
+        // Merge arrays if option enabled
+        if (mergeArrays && Array.isArray(targetValue) && Array.isArray(sourceValue)) {
+            output[key] = [...targetValue, ...sourceValue];
+            continue;
+        }
+        // Recursive merge for plain objects
+        if (sourceValue && typeof sourceValue === 'object' &&
+            targetValue && typeof targetValue === 'object' &&
+            !Array.isArray(sourceValue) && !Array.isArray(targetValue) &&
+            sourceValue.constructor === Object && targetValue.constructor === Object) {
+            output[key] = deepMerge(targetValue, sourceValue, options);
+            continue;
+        }
+        // Overwrite for everything else
+        output[key] = sourceValue;
+    }
+    // Handle symbol properties
+    const symbols = Object.getOwnPropertySymbols(source);
+    for (const sym of symbols) {
+        output[sym] = (source as any)[sym];
+    }
+    return output as T & U;
+}