hi-secure 1.0.12 → 1.0.14

package/src/adapters/ArgonAdapter.ts

@@ -17,7 +17,7 @@ export class ArgonAdapter {
                 ? await argon2.hash(value, this.options)
                 : await argon2.hash(value);
         } catch (err: any) {
-            logger.error("❌ Argon2 hashing failed", {
+            logger.error("Argon2 hashing failed", {
                 error: err?.message || err
             });
             throw new AdapterError("Argon2 hashing failed.");
@@ -32,7 +32,7 @@ export class ArgonAdapter {
 
             return await argon2.verify(hashed, value);
         } catch (err: any) {
-            logger.error("❌ Argon2 verify failed", {
+            logger.error("Argon2 verify failed", {
                 error: err?.message || err
             });
             throw new AdapterError("Argon2 verify failed.");

package/src/adapters/BcryptAdapter.ts

@@ -13,7 +13,7 @@ export class BcryptAdapter {
 
             return await bcrypt.hash(value, this.saltRounds);
         } catch (err: any) {
-            logger.error("❌ Bcrypt hashing failed", {
+            logger.error("Bcrypt hashing failed", {
                 error: err?.message || err,
                 saltRounds: this.saltRounds
             });
@@ -34,7 +34,7 @@ export class BcryptAdapter {
 
             return await bcrypt.compare(value, hashed);
         } catch (err: any) {
-            logger.error("❌ Bcrypt verify failed", {
+            logger.error("Bcrypt verify failed", {
                 error: err?.message || err
             });
 

package/src/adapters/ExpressRLAdapter.ts

@@ -28,7 +28,7 @@ export class ExpressRLAdapter {
             
             const limiter = rateLimit(finalOptions);
             
-            logger.debug("📌 Express rate limiter configured", {
+            logger.debug("Express rate limiter configured", {
                 windowMs: finalOptions.windowMs,
                 max: finalOptions.max
             });
@@ -36,7 +36,7 @@ export class ExpressRLAdapter {
             return limiter;
 
         } catch (err: any) {
-            logger.error("❌ ExpressRLAdapter: failed to create limiter", {
+            logger.error("ExpressRLAdapter: failed to create limiter", {
                 error: err?.message || err
             });
             throw new AdapterError("Express rate limiter creation failed.");

package/src/adapters/ExpressValidatorAdapter.ts

@@ -29,7 +29,7 @@ export class ExpressValidatorAdapter {
                         // location: err.location
                     }));
 
-                    logger.warn("⚠ express-validator failed", {
+                    logger.warn("express-validator failed", {
                         path: req.path,
                         method: req.method,
                         errors: formatted,

package/src/adapters/GoogleAdapter.ts

@@ -35,7 +35,7 @@ export class GoogleAdapter {
                 idToken 
             };
 
-            // Add audience only if clientId is provided and not empty
+            // audience only if clientId is provided and not empty
             if (this.clientId && this.clientId.trim().length > 0) {
                 options.audience = this.clientId;
             }
@@ -48,7 +48,7 @@ export class GoogleAdapter {
                 throw new AdapterError("Invalid Google ID token payload.");
             }
 
-            // Create result object
+            // result object
             const result: GoogleTokenPayload = {
                 sub: payload.sub,
                 email: payload.email || '',
@@ -57,7 +57,7 @@ export class GoogleAdapter {
                 picture: payload.picture
             };
 
-            // Add remaining properties from payload (excluding duplicates)
+            // remaining properties from payload 
             const { sub, email, email_verified, name, picture, ...rest } = payload;
             Object.assign(result, rest);
 

package/src/adapters/JWTAdapter.ts

@@ -33,8 +33,8 @@ export class JWTAdapter {
         }
 
         if (options.secret.length < 32) {
-            logger.warn("🚨 JWT secret shorter than 32 chars. Consider using stronger secret.");
-            // logError("⚠ JWT secret is too short (minimum 32 characters recommended)");
+            logger.warn("JWT secret shorter than 32 chars. Consider using stronger secret.");
+            // logError("JWT secret is too short (minimum 32 characters recommended)");
         }
 
         this.secret = options.secret;

package/src/adapters/RLFlexibleAdapter.ts

@@ -37,7 +37,7 @@ export class RLFlexibleAdapter {
                 } catch (err: any) {
                     const rlErr = err as RateLimiterRes;
 
-                    logger.warn("⚠ RLFlexibleAdapter: rate limit exceeded", {
+                    logger.warn("RLFlexibleAdapter: rate limit exceeded", {
                         ip,
                         path: req.path,
                         method: req.method,
@@ -56,7 +56,7 @@ export class RLFlexibleAdapter {
             };
 
         } catch (err: any) {
-            logger.error("❌ RLFlexibleAdapter: failed to initialize limiter", {
+            logger.error("RLFlexibleAdapter: failed to initialize limiter", {
                 error: err?.message || err
             });
             throw new AdapterError("RateLimiterFlexible creation failed.");

package/src/adapters/SanitizeHtmlAdapter.ts

@@ -17,7 +17,7 @@ export class SanitizeHtmlAdapter {
             return typeof clean === "string" ? clean : String(clean);
 
         } catch (err: any) {
-            logger.error("❌ sanitize-html failed", {
+            logger.error("sanitize-html failed", {
                 error: err?.message || err,
                 preview: typeof input === "string" ? input.slice(0, 100) : undefined
             });
@@ -61,14 +61,14 @@ export class SanitizeHtmlAdapter {
                 if (req.body) {
                     req.body = this.deepSanitize(req.body, dynamicOptions);
 
-                    logger.debug("🧼 sanitize-html applied", {
+                    logger.debug("sanitize-html applied", {
                         keys: Object.keys(req.body)
                     });
                 }
                 next();
 
             } catch (err: any) {
-                logger.error("❌ sanitize-html middleware failed", {
+                logger.error("sanitize-html middleware failed", {
                     error: err?.message || err
                 });
                 next(err);

package/src/adapters/XSSAdapter.ts

@@ -60,7 +60,7 @@ export class XSSAdapter {
             return customFilter.process(input);
 
         } catch (err: any) {
-            logger.error("❌ XSS sanitizer failed", {
+            logger.error("XSS sanitizer failed", {
                 error: err?.message,
                 preview: input?.slice?.(0, 80)
             });
@@ -98,7 +98,7 @@ export class XSSAdapter {
                    
                     req.sanitizedBody = sanitizedBody;
                     
-                    logger.debug("🛡️ XSS sanitizer applied", {
+                    logger.debug("XSS sanitizer applied", {
                         originalKeys: Object.keys(originalBody),
                         sanitizedKeys: Object.keys(sanitizedBody)
                     });
@@ -106,7 +106,7 @@ export class XSSAdapter {
 
                 next();
             } catch (err: any) {
-                logger.error("❌ XSS middleware failed", {
+                logger.error("XSS middleware failed", {
                     error: err?.message || err
                 });
                 next(err);

package/src/adapters/ZodAdapter.ts

@@ -27,7 +27,7 @@ export class ZodAdapter {
                 code: issue.code
             }));
 
-            logger.warn("⚠ Zod validation failed", {
+            logger.warn("Zod validation failed", {
                 path: req.path,
                 method: req.method,
                 issues,

package/src/core/HiSecure.ts

@@ -76,17 +76,18 @@ export class HiSecure {
 
     init(): void {
         if (this.initialized) {
-            logger.warn("⚠ HiSecure already initialized");
+            logger.warn(" HiSecure already initialized");
             return;
         }
 
-        logger.info(`🔐 ${LIB_NAME} v${LIB_VERSION} initializing...`);
+        logger.info(` ${LIB_NAME} v${LIB_VERSION} initializing...`);
 
         this.setupAdapters();
         this.setupManagers();
         this.setupDynamicManagers();
 
         deepFreeze(this.config);
+        // deep Freeze - for now we remove from manager it needs to manage the adapters
         // deepFreeze(this.hashManager);
         // deepFreeze(this.rateLimitManager);
         // deepFreeze(this.validatorManager);
@@ -96,7 +97,7 @@ export class HiSecure {
         // if (this.authManager) deepFreeze(this.authManager);
 
         this.initialized = true;
-        logger.info("✅ HiSecure initialized successfully");
+        logger.info("HiSecure initialized successfully");
     }
 
     isInitialized(): boolean {
@@ -148,7 +149,7 @@ export class HiSecure {
         return chain;
     }
 
-    // UTILITY METHODS (Direct usage)
+    // UTILITY METHODS - For direct use
     
     static async hash(password: string): Promise<string> {
         const instance = this.getInstance();
@@ -214,7 +215,7 @@ export class HiSecure {
     // Internal Methods
     
     private setupAdapters(): void {
-        logger.info("🧩 Setting up adapters...");
+        logger.info(" Setting up adapters...");
 
         // Hashing
         this.hashingPrimary = this.config.hashing.primary === "argon2"
@@ -233,7 +234,8 @@ export class HiSecure {
 
 
 
-        // // Validation
+
+        // // Validation - we handle this in d/f way for now 
         // this.validatorPrimary = this.config.validation.mode === "zod"
         //     ? new ZodAdapter()
         //     : new ExpressValidatorAdapter();
@@ -246,7 +248,7 @@ export class HiSecure {
         this.sanitizerPrimary = new SanitizeHtmlAdapter(this.config.sanitizer);
         this.sanitizerFallback = new XSSAdapter(this.config.sanitizer);
 
-        logger.info("✅ Adapters ready");
+        logger.info("Adapters ready");
     }
 
     private setupManagers(): void {
@@ -341,7 +343,7 @@ export class HiSecure {
             chain.push(this.authManager.protect(authOpts));
         }
         
-        // Error handler (always last)
+        // Error handler - at last usage
         chain.push(errorHandler);
         
         return chain;

package/src/core/config.ts

@@ -1,108 +1,3 @@
-
-
-// export interface HiSecureConfig {
-//     enableHelmet: boolean;
-//     enableHPP: boolean;
-//     enableCORS: boolean;
-//     enableSanitizer: boolean;
-//     enableRateLimiter: boolean;
-//     enableValidation: boolean;
-
-//     hashing: {
-//         primary: "argon2" | "bcrypt";
-//         fallback: "bcrypt" | null;
-//         saltRounds: number;
-//     };
-
-//     rateLimiter: {
-//         windowMs: number;
-//         maxRequests: number;
-//         message: string;
-//         useAdaptiveMode: boolean;
-//     };
-
-//     validation: {
-//         mode: "zod" | "express-validator";
-//         fallback: "express-validator" | null;
-//     };
-
-//     sanitizer: {
-//         allowedTags: string[];
-//         allowedAttributes: Record<string, string[]>;
-//     };
-
-//     logging: {
-//         enabled: boolean;
-//         level: "info" | "warn" | "error" | "debug";
-//     };
-
-//     /** 🔥 ADD THIS */
-//     auth: {
-//         enabled: boolean;
-//         jwtExpiresIn: string | number | undefined;
-//     };
-
-//     /** 🔥 optional configs for dynamic JSON/CORS */
-//     json?: any;
-//     urlencoded?: any;
-//     cors?: any;
-// }
-
-
-
-
-// export const defaultConfig: HiSecureConfig = {
-//     enableHelmet: true,
-//     enableHPP: true,
-//     enableCORS: true,
-//     enableSanitizer: true,
-//     enableRateLimiter: true,
-//     enableValidation: true,
-
-//     hashing: {
-//         primary: "argon2",
-//         fallback: "bcrypt",
-//         saltRounds: 10,
-//     },
-
-//     rateLimiter: {
-//         windowMs: 15 * 60 * 1000,
-//         maxRequests: 100,
-//         message: "Too many requests, please try again later.",
-//         useAdaptiveMode: false,
-//     },
-
-//     validation: {
-//         mode: "zod",
-//         fallback: "express-validator",
-//     },
-
-//     sanitizer: {
-//         allowedTags: ["b", "i", "em", "strong", "a"],
-//         allowedAttributes: { a: ["href"] },
-//     },
-
-//     logging: {
-//         enabled: true,
-//         level: "info",
-//     },
-
-//     /** 🔥 NEW AUTH CONFIG */
-//     auth: {
-//         enabled: false,            // user enables manually
-//         jwtExpiresIn: "1d",        // default value
-//     },
-
-//     /** Optional parser configs */
-//     json: {},
-//     urlencoded: { extended: true },
-//     cors: {},
-// };
-
-
-
-
-// src/core/config.ts
 import { HiSecureConfig } from "./types/HiSecureConfig";
 
 export const defaultConfig: HiSecureConfig = {

package/src/core/constants.ts

@@ -1,36 +1,3 @@
-// export const LIB_NAME = "HiSecure";
-// export const LIB_VERSION = "1.0.0";
-
-// // Adapter Names
-// export const ADAPTERS = {
-//     HASHING_PRIMARY: "HASHING_PRIMARY",
-//     HASHING_FALLBACK: "HASHING_FALLBACK",
-//     RATE_LIMITER: "RATE_LIMITER",
-//     VALIDATOR: "VALIDATOR",
-//     SANITIZER: "SANITIZER"
-// } as const;
-
-// // Manager Names
-// export const MANAGERS = {
-//     HASH_MANAGER: "HASH_MANAGER",
-//     RATE_LIMIT_MANAGER: "RATE_LIMIT_MANAGER",
-//     VALIDATION_MANAGER: "VALIDATION_MANAGER",
-//     SANITIZER_MANAGER:"SANITIZER_MANAGER"
-// } as const;
-
-// // Error Codes
-// export const ERROR_CODES = {
-//     ADAPTER_FAILURE: "ADAPTER_FAILURE",
-//     VALIDATION_ERROR: "VALIDATION_ERROR",
-//     RATE_LIMIT_EXCEEDED: "RATE_LIMIT_EXCEEDED",
-//     SANITIZER_ERROR:"SANITIZER_ERROR",
-//     CONFIG_ERROR: "CONFIG_ERROR",
-//     UNKNOWN: "UNKNOWN"
-// } as const;
-
-
-
-// src/core/constants.ts
 export const LIB_NAME = "HiSecure";
 export const LIB_VERSION = "1.0.0";
 

package/src/core/errors/AdapterError.ts

@@ -8,7 +8,7 @@ export class AdapterError extends Error {
         this.code = code;
         this.name = "AdapterError";
 
-        // Capture stack trace properly
+        // stack trace properly
         Error.captureStackTrace?.(this, AdapterError);
     }
 }

package/src/core/types/HiSecureConfig.ts

@@ -1,4 +1,3 @@
-// src/core/types/HiSecureConfig.ts
 export interface HiSecureConfig {
     // Core security features
     enableHelmet: boolean;

package/src/core/types/SecureOptions.ts

@@ -1,30 +1,3 @@
-// // src/core/types/SecureOptions.ts
-
-// export interface SecureOptions {
-//     /** Enable/override CORS for this route */
-//     cors?: boolean | object;
-
-//     /** Per-route rate limit */
-//     rateLimit?: boolean | "strict" | "relaxed" | object;
-
-//     /** Sanitize request body */
-//     sanitize?: boolean;
-
-//     /** Validation schema (Zod or express-validator) */
-//     validate?: any;
-
-//     /** Auto-JSON parsing (express.json) options */
-//     json?: boolean | object;
-
-//     /** NEW: Per-route authentication (JWT protect) */
-//     auth?: boolean | { required?: boolean };
-// }
-
-
-
-
-
-// src/core/types/SecureOptions.ts
 import { z, ZodSchema } from 'zod';
 import { ValidationChain } from 'express-validator';
 

package/src/core/useSecure.ts

@@ -6,14 +6,13 @@ import { SecureOptions } from "./types/SecureOptions.js";
  */
 
 export function useSecure(options?: SecureOptions | "api" | "strict" | "public") {
-    console.warn("⚠ useSecure() is deprecated. Use HiSecure.middleware() or fluent API methods.");
+    console.warn("useSecure() is deprecated. Use HiSecure.middleware() or fluent API methods.");
     return HiSecure.middleware(options);
 }
 
 
 //  Legacy support - route-level security
 
-
 export function secureRoute(options?: SecureOptions) {
     const chain: any[] = [];
     
@@ -45,7 +44,6 @@ export function secureRoute(options?: SecureOptions) {
             typeof options.auth === 'object' ? options.auth : undefined
         ));
     }
-    
     return chain;
 }
 

package/src/managers/AuthManager.ts

@@ -27,7 +27,7 @@ export class AuthManager {
         }
 
         if (opts.jwtSecret.length < 32) {
-            logger.warn("⚠ JWT secret is less than 32 characters - consider using a stronger secret");
+            logger.warn(" JWT secret is less than 32 characters - consider using a stronger secret");
         }
 
         logger.info("AuthManager initialized");
@@ -108,7 +108,7 @@ export class AuthManager {
                 (req as any).auth = decoded;
                 (req as any).user = decoded; 
                 
-                // Role-based authorization
+                // Role-based authorization - role added Middleware
                 if (roles && roles.length > 0) {
                     const userRole = (decoded as any).role || (decoded as any).roles?.[0];
                     if (!userRole || !roles.includes(userRole)) {

package/src/managers/CorsManager.ts

@@ -16,7 +16,7 @@ export class CorsManager {
             
             const finalOptions = options ? { ...defaultOptions, ...options } : defaultOptions;
             
-            logger.debug("🔧 CORS configured", {
+            logger.debug("CORS configured", {
                 origin: finalOptions.origin,
                 methods: finalOptions.methods
             });
@@ -24,7 +24,7 @@ export class CorsManager {
             return cors(finalOptions);
             
         } catch (err: any) {
-            logger.error("❌ CORS Manager: failed to create CORS middleware", {
+            logger.error(" CORS Manager: failed to create CORS middleware", {
                 error: err?.message || err,
                 options
             });

package/src/managers/HashManager.ts

@@ -37,7 +37,7 @@ export class HashManager {
                 usedFallback: false
             };
         } catch (err: any) {
-            logger.warn("⚠ Primary hashing failed", {
+            logger.warn("Primary hashing failed", {
                 error: err.message,
                 algorithm: this.config.primary
             });
@@ -52,7 +52,7 @@ export class HashManager {
                 const hash = await this.fallbackAdapter.hash(value);
                 
                 // Log security downgrade warning
-                logger.warn("⚠ SECURITY DOWNGRADE: Using fallback hashing", {
+                logger.warn("SECURITY DOWNGRADE: Using fallback hashing", {
                     from: this.config.primary,
                     to: this.config.fallback
                 });
@@ -63,7 +63,7 @@ export class HashManager {
                     usedFallback: true
                 };
             } catch (fallbackErr: any) {
-                logger.error("❌ Fallback hashing failed", {
+                logger.error("Fallback hashing failed", {
                     error: fallbackErr?.message,
                 });
                 throw new AdapterError(
@@ -74,20 +74,20 @@ export class HashManager {
     }
 
     async verify(value: string, hashed: string): Promise<boolean> {
-        // Try primary adapter first
+        //  primary adapter - first
         try {
             return await this.primaryAdapter.verify(value, hashed);
         } catch (primaryErr: any) {
-            logger.warn("⚠ Primary verify failed", {
+            logger.warn("Primary verify failed", {
                 error: primaryErr?.message,
             });
 
-            // If fallback exists, try it
+            //  fallback exists -  try it
             if (this.fallbackAdapter) {
                 try {
                     return await this.fallbackAdapter.verify(value, hashed);
                 } catch (fallbackErr: any) {
-                    logger.error("❌ Fallback verify failed", {
+                    logger.error(" Fallback verify failed", {
                         error: fallbackErr?.message,
                     });
                     throw new AdapterError(

package/src/managers/JsonManager.ts

@@ -13,7 +13,7 @@ export class JsonManager {
             };
             return express.json({ ...defaultOptions, ...(options || {}) });
         } catch (err: any) {
-            logger.error("❌ JSON Manager: failed to create JSON parser");
+            logger.error("JSON Manager: failed to create JSON parser");
             throw new AdapterError("JSON parser initialization failed.");
         }
     }
@@ -28,7 +28,7 @@ export class JsonManager {
             const opts = { ...defaultOptions, ...(options || {}) };
             return express.urlencoded(opts);
         } catch (err: any) {
-            logger.error("❌ URL-encoded parser failed");
+            logger.error("URL-encoded parser failed");
             throw new AdapterError("URL-encoded parser initialization failed.");
         }
     }
@@ -45,13 +45,13 @@ export class JsonManager {
                     });
                     
                     req.parsedQuery = parsed;
-                    logger.debug("🔍 Query parsed", {
+                    logger.debug(" Query parsed", {
                         keys: Object.keys(parsed)
                     });
                 }
                 next();
             } catch (err: any) {
-                logger.error("❌ Failed to parse query", { error: err?.message });
+                logger.error("Failed to parse query", { error: err?.message });
                 next(new AdapterError("Query parsing failed."));
             }
         };

package/src/managers/RateLimitManager.ts

@@ -64,7 +64,7 @@ export class RateLimitManager {
                 k => !allowedOverrides.includes(k) && k !== 'mode'
             );
             if (attemptedOverrides.length > 0) {
-                logger.warn("⚠ Rate limit overrides ignored", {
+                logger.warn("Rate limit overrides ignored", {
                     preset: opts?.mode || 'default',
                     ignoredOptions: attemptedOverrides
                 });
@@ -79,7 +79,7 @@ export class RateLimitManager {
         }
 
         try {
-            logger.info("📌 Applying rate limiting", {
+            logger.info("Applying rate limiting", {
                 mode: opts?.mode || 'default',
                 windowMs: finalOptions.windowMs,
                 max: finalOptions.max
@@ -87,7 +87,7 @@ export class RateLimitManager {
             
             return this.primaryAdapter.getMiddleware(finalOptions);
         } catch (err: any) {
-            logger.warn("⚠ Primary rate limiter failed → fallback", {
+            logger.warn("Primary rate limiter failed → fallback", {
                 error: err?.message
             });
 
@@ -96,10 +96,10 @@ export class RateLimitManager {
             }
 
             try {
-                logger.info("📌 Using fallback rate limiter");
+                logger.info("Using fallback rate limiter");
                 return this.fallbackAdapter.getMiddleware(finalOptions);
             } catch (fallbackErr: any) {
-                logger.error("❌ Fallback limiter also failed", {
+                logger.error("Fallback limiter also failed", {
                     error: fallbackErr?.message
                 });
                 throw new AdapterError("Both primary and fallback limiters failed.");