hibp 0.0.0-dev.0e634825

package/dist/esm/pwnedPassword.mjs

@@ -0,0 +1,43 @@
+import JSSHA from 'jssha/dist/sha1';
+import { pwnedPasswordRange } from './pwnedPasswordRange.mjs';
+
+/**
+ * Fetches the number of times the the given password has been exposed in a
+ * breach (0 indicating no exposure). The password is given in plain text, but
+ * only the first 5 characters of its SHA-1 hash will be submitted to the API.
+ *
+ * @param {string} password a password in plain text
+ * @param {object} [options] a configuration object
+ * @param {string} [options.baseUrl] a custom base URL for the
+ * pwnedpasswords.com API endpoints (default: `https://api.pwnedpasswords.com`)
+ * @param {string} [options.userAgent] a custom string to send as the User-Agent
+ * field in the request headers (default: `hibp <version>`)
+ * @returns {Promise<number>} a Promise which resolves to the number of times
+ * the password has been exposed in a breach, or rejects with an Error
+ * @example
+ * pwnedPassword('f00b4r')
+ *   .then(numPwns => {
+ *     // truthy check or numeric condition
+ *     if (numPwns) {
+ *       // ...
+ *     } else {
+ *       // ...
+ *     }
+ *   })
+ *   .catch(err => {
+ *     // ...
+ *   });
+ * @see https://haveibeenpwned.com/api/v3#PwnedPasswords
+ */
+function pwnedPassword(password, options = {}) {
+  const sha1 = new JSSHA('SHA-1', 'TEXT');
+  sha1.update(password);
+  const hash = sha1.getHash('HEX', {
+    outputUpper: true
+  });
+  const prefix = hash.slice(0, 5);
+  const suffix = hash.slice(5);
+  return pwnedPasswordRange(prefix, options).then(range => range[suffix] || 0);
+}
+export { pwnedPassword };
+//# sourceMappingURL=pwnedPassword.mjs.map

package/dist/esm/pwnedPassword.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"pwnedPassword.mjs","sources":["../../src/pwnedPassword.ts"],"sourcesContent":["import JSSHA from 'jssha/dist/sha1';\nimport { pwnedPasswordRange } from './pwnedPasswordRange';\n\n/**\n * Fetches the number of times the the given password has been exposed in a\n * breach (0 indicating no exposure). The password is given in plain text, but\n * only the first 5 characters of its SHA-1 hash will be submitted to the API.\n *\n * @param {string} password a password in plain text\n * @param {object} [options] a configuration object\n * @param {string} [options.baseUrl] a custom base URL for the\n * pwnedpasswords.com API endpoints (default: `https://api.pwnedpasswords.com`)\n * @param {string} [options.userAgent] a custom string to send as the User-Agent\n * field in the request headers (default: `hibp <version>`)\n * @returns {Promise<number>} a Promise which resolves to the number of times\n * the password has been exposed in a breach, or rejects with an Error\n * @example\n * pwnedPassword('f00b4r')\n *   .then(numPwns => {\n *     // truthy check or numeric condition\n *     if (numPwns) {\n *       // ...\n *     } else {\n *       // ...\n *     }\n *   })\n *   .catch(err => {\n *     // ...\n *   });\n * @see https://haveibeenpwned.com/api/v3#PwnedPasswords\n */\nexport function pwnedPassword(\n  password: string,\n  options: { baseUrl?: string; userAgent?: string } = {},\n): Promise<number> {\n  const sha1 = new JSSHA('SHA-1', 'TEXT');\n  sha1.update(password);\n  const hash = sha1.getHash('HEX', { outputUpper: true });\n  const prefix = hash.slice(0, 5);\n  const suffix = hash.slice(5);\n\n  return pwnedPasswordRange(prefix, options).then(\n    (range) => range[suffix] || 0,\n  );\n}\n"],"names":["pwnedPassword","password","options","sha1","JSSHA","update","hash","getHash","outputUpper","prefix","slice","suffix","pwnedPasswordRange","then","range"],"mappings":";;;AAGA;;;;;;;;;;;;;;;;;;;;;;;;;;;AA2BG;SACaA,aAAaA,CAC3BC,QAAgB,EAChBC,UAAoD,EAAE,EAAA;EAEtD,MAAMC,IAAI,GAAG,IAAIC,KAAK,CAAC,OAAO,EAAE,MAAM,CAAC;EACvCD,IAAI,CAACE,MAAM,CAACJ,QAAQ,CAAC;EACrB,MAAMK,IAAI,GAAGH,IAAI,CAACI,OAAO,CAAC,KAAK,EAAE;IAAEC,WAAW,EAAE;EAAI,CAAE,CAAC;EACvD,MAAMC,MAAM,GAAGH,IAAI,CAACI,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC;EAC/B,MAAMC,MAAM,GAAGL,IAAI,CAACI,KAAK,CAAC,CAAC,CAAC;EAE5B,OAAOE,kBAAkB,CAACH,MAAM,EAAEP,OAAO,CAAC,CAACW,IAAI,CAC5CC,KAAK,IAAKA,KAAK,CAACH,MAAM,CAAC,IAAI,CAAC,CAC9B;AACH;"}

package/dist/esm/pwnedPasswordRange.mjs

@@ -0,0 +1,61 @@
+import { fetchFromApi } from './api/pwnedpasswords/fetchFromApi.mjs';
+
+/**
+ * An object mapping an exposed password hash suffix (corresponding to a given
+ * hash prefix) to how many times it occurred in the Pwned Passwords repository.
+ *
+ * @typedef {Object.<string, number>} PwnedPasswordSuffixes
+ */
+/**
+ * Fetches the SHA-1 hash suffixes for the given 5-character SHA-1 hash prefix.
+ *
+ * When a password hash with the same first 5 characters is found in the Pwned
+ * Passwords repository, the API will respond with an HTTP 200 and include the
+ * suffix of every hash beginning with the specified prefix, followed by a count
+ * of how many times it appears in the data set. This function parses the
+ * response and returns a more structured format.
+ *
+ * @param {string} prefix the first 5 characters of a SHA-1 password hash (case
+ * insensitive)
+ * @param {object} [options] a configuration object
+ * @param {string} [options.baseUrl] a custom base URL for the
+ * pwnedpasswords.com API endpoints (default: `https://api.pwnedpasswords.com`)
+ * @param {string} [options.userAgent] a custom string to send as the User-Agent
+ * field in the request headers (default: `hibp <version>`)
+ * @returns {Promise<PwnedPasswordSuffixes>} a Promise which resolves to an
+ * object mapping the `suffix` that when matched with the prefix composes the
+ * complete hash, to the `count` of how many times it appears in the breached
+ * password data set, or rejects with an Error
+ *
+ * @example
+ * pwnedPasswordRange('5BAA6')
+ *   .then(results => {
+ *     // results will have the following shape:
+ *     // {
+ *     //   "003D68EB55068C33ACE09247EE4C639306B": 3,
+ *     //   "012C192B2F16F82EA0EB9EF18D9D539B0DD": 1,
+ *     //   ...
+ *     // }
+ *   })
+ * @example
+ * const suffix = '1E4C9B93F3F0682250B6CF8331B7EE68FD8';
+ * pwnedPasswordRange('5BAA6')
+ *   .then(results => (results[suffix] || 0))
+ *   .catch(err => {
+ *     // ...
+ *   });
+ * @see https://haveibeenpwned.com/api/v3#SearchingPwnedPasswordsByRange
+ */
+function pwnedPasswordRange(prefix, options = {}) {
+  return fetchFromApi(`/range/${encodeURIComponent(prefix)}`, options)
+  // create array from lines of text in response body
+  .then(data => data.split('\n').filter(Boolean))
+  // convert into an object mapping suffix to count for each line
+  .then(results => results.reduce((acc, row) => {
+    const [suffix, countString] = row.split(':');
+    acc[suffix] = parseInt(countString, 10);
+    return acc;
+  }, {}));
+}
+export { pwnedPasswordRange };
+//# sourceMappingURL=pwnedPasswordRange.mjs.map

package/dist/esm/pwnedPasswordRange.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"pwnedPasswordRange.mjs","sources":["../../src/pwnedPasswordRange.ts"],"sourcesContent":["import { fetchFromApi } from './api/pwnedpasswords';\n\nexport interface PwnedPasswordSuffixes {\n  [suffix: string]: number;\n}\n\n/**\n * An object mapping an exposed password hash suffix (corresponding to a given\n * hash prefix) to how many times it occurred in the Pwned Passwords repository.\n *\n * @typedef {Object.<string, number>} PwnedPasswordSuffixes\n */\n\n/**\n * Fetches the SHA-1 hash suffixes for the given 5-character SHA-1 hash prefix.\n *\n * When a password hash with the same first 5 characters is found in the Pwned\n * Passwords repository, the API will respond with an HTTP 200 and include the\n * suffix of every hash beginning with the specified prefix, followed by a count\n * of how many times it appears in the data set. This function parses the\n * response and returns a more structured format.\n *\n * @param {string} prefix the first 5 characters of a SHA-1 password hash (case\n * insensitive)\n * @param {object} [options] a configuration object\n * @param {string} [options.baseUrl] a custom base URL for the\n * pwnedpasswords.com API endpoints (default: `https://api.pwnedpasswords.com`)\n * @param {string} [options.userAgent] a custom string to send as the User-Agent\n * field in the request headers (default: `hibp <version>`)\n * @returns {Promise<PwnedPasswordSuffixes>} a Promise which resolves to an\n * object mapping the `suffix` that when matched with the prefix composes the\n * complete hash, to the `count` of how many times it appears in the breached\n * password data set, or rejects with an Error\n *\n * @example\n * pwnedPasswordRange('5BAA6')\n *   .then(results => {\n *     // results will have the following shape:\n *     // {\n *     //   \"003D68EB55068C33ACE09247EE4C639306B\": 3,\n *     //   \"012C192B2F16F82EA0EB9EF18D9D539B0DD\": 1,\n *     //   ...\n *     // }\n *   })\n * @example\n * const suffix = '1E4C9B93F3F0682250B6CF8331B7EE68FD8';\n * pwnedPasswordRange('5BAA6')\n *   .then(results => (results[suffix] || 0))\n *   .catch(err => {\n *     // ...\n *   });\n * @see https://haveibeenpwned.com/api/v3#SearchingPwnedPasswordsByRange\n */\nexport function pwnedPasswordRange(\n  prefix: string,\n  options: { baseUrl?: string; userAgent?: string } = {},\n): Promise<PwnedPasswordSuffixes> {\n  return (\n    fetchFromApi(`/range/${encodeURIComponent(prefix)}`, options)\n      // create array from lines of text in response body\n      .then((data) => data.split('\\n').filter(Boolean))\n      // convert into an object mapping suffix to count for each line\n      .then((results) =>\n        results.reduce<PwnedPasswordSuffixes>((acc, row) => {\n          const [suffix, countString] = row.split(':');\n          acc[suffix] = parseInt(countString, 10);\n          return acc;\n        }, {}),\n      )\n  );\n}\n"],"names":["pwnedPasswordRange","prefix","options","fetchFromApi","encodeURIComponent","then","data","split","filter","Boolean","results","reduce","acc","row","suffix","countString","parseInt"],"mappings":";;AAMA;;;;;AAKG;AAEH;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAuCG;SACaA,kBAAkBA,CAChCC,MAAc,EACdC,UAAoD,EAAE,EAAA;EAEtD,OACEC,YAAY,CAAW,UAAAC,kBAAkB,CAACH,MAAM,CAAC,EAAE,EAAEC,OAAO;;GAEzDG,IAAI,CAAEC,IAAI,IAAKA,IAAI,CAACC,KAAK,CAAC,IAAI,CAAC,CAACC,MAAM,CAACC,OAAO,CAAC;;GAE/CJ,IAAI,CAAEK,OAAO,IACZA,OAAO,CAACC,MAAM,CAAwB,CAACC,GAAG,EAAEC,GAAG,KAAI;IACjD,MAAM,CAACC,MAAM,EAAEC,WAAW,CAAC,GAAGF,GAAG,CAACN,KAAK,CAAC,GAAG,CAAC;IAC5CK,GAAG,CAACE,MAAM,CAAC,GAAGE,QAAQ,CAACD,WAAW,EAAE,EAAE,CAAC;IACvC,OAAOH,GAAG;EACZ,CAAC,EAAE,CAAA,CAAE,CAAC,CACP;AAEP;"}

package/dist/esm/search.mjs

@@ -0,0 +1,95 @@
+import { breachedAccount } from './breachedAccount.mjs';
+import { pasteAccount } from './pasteAccount.mjs';
+
+/**
+ * An object representing search results.
+ *
+ * @typedef {object} SearchResults
+ * @property {(Breach[] | null)} breaches
+ * @property {(Paste[] | null)} pastes
+ */
+/**
+ * Fetches all breaches and all pastes associated with the provided account
+ * (email address or username). Note that the remote API does not support
+ * querying pastes by username (only email addresses), so in the event the
+ * provided account is not a valid email address, only breach data is queried
+ * and the "pastes" field of the resulting object will always be null. This is
+ * exactly how searching via the current web interface behaves, which this
+ * convenience method is designed to mimic.
+ *
+ * ***Warning (July 18, 2019):***
+ *
+ * `haveibeenpwned.com` now requires an API key from
+ * https://haveibeenpwned.com/API/Key for the `breachedaccount` and
+ * `pasteaccount` endpoints. The  `apiKey` option here is not explicitly
+ * required, but direct requests made without it (that is, without specifying a
+ * `baseUrl` to a proxy that inserts a valid API key on your behalf) will fail.
+ *
+ * @param {string} account an email address or username
+ * @param {object} [breachOptions] a configuration object pertaining to breach
+ * queries
+ * @param {string} [breachOptions.apiKey] an API key from
+ * https://haveibeenpwned.com/API/Key
+ * @param {string} [breachOptions.domain] a domain by which to filter the
+ * results (default: all domains)
+ * @param {boolean} [breachOptions.truncate] truncate the results to only
+ * include the name of each breach (default: true)
+ * @param {string} [breachOptions.baseUrl] a custom base URL for the
+ * haveibeenpwned.com API endpoints (default:
+ * `https://haveibeenpwned.com/api/v3`)
+ * @param {string} [breachOptions.userAgent] a custom string to send as the
+ * User-Agent field in the request headers (default: `hibp <version>`)
+ * @returns {Promise<SearchResults>} a Promise which resolves to an object
+ * containing a "breaches" key (which can be null or an array of breach objects)
+ * and a "pastes" key (which can be null or an array of paste objects), or
+ * rejects with an Error
+ * @example
+ * search('foo', { apiKey: 'my-api-key' })
+ *   .then(data => {
+ *     if (data.breaches || data.pastes) {
+ *       // ...
+ *     } else {
+ *       // ...
+ *     }
+ *   })
+ *   .catch(err => {
+ *     // ...
+ *   });
+ * @example
+ * search('nobody@nowhere.com', { apiKey: 'my-api-key', truncate: false })
+ *   .then(data => {
+ *     if (data.breaches || data.pastes) {
+ *       // ...
+ *     } else {
+ *       // ...
+ *     }
+ *   })
+ *   .catch(err => {
+ *     // ...
+ *   });
+ *
+ * @see https://haveibeenpwned.com/
+ */
+function search(account, breachOptions = {
+  truncate: true
+}) {
+  const {
+    apiKey,
+    baseUrl,
+    userAgent
+  } = breachOptions;
+  return Promise.all([breachedAccount(account, breachOptions),
+  // This email regex is garbage but it seems to be what the API uses:
+  /^.+@.+$/.test(account) ? pasteAccount(account, {
+    apiKey,
+    baseUrl,
+    userAgent
+  }) : null]).then(
+  // Avoid array destructuring here to prevent need for Babel helpers
+  promises => ({
+    breaches: promises[0],
+    pastes: promises[1]
+  }));
+}
+export { search };
+//# sourceMappingURL=search.mjs.map

package/dist/esm/search.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"search.mjs","sources":["../../src/search.ts"],"sourcesContent":["import type { Breach, Paste } from './api/haveibeenpwned/types';\nimport { breachedAccount } from './breachedAccount';\nimport { pasteAccount } from './pasteAccount';\n\nexport interface SearchResults {\n  breaches: Breach[] | null;\n  pastes: Paste[] | null;\n}\n\n/**\n * An object representing search results.\n *\n * @typedef {object} SearchResults\n * @property {(Breach[] | null)} breaches\n * @property {(Paste[] | null)} pastes\n */\n\n/**\n * Fetches all breaches and all pastes associated with the provided account\n * (email address or username). Note that the remote API does not support\n * querying pastes by username (only email addresses), so in the event the\n * provided account is not a valid email address, only breach data is queried\n * and the \"pastes\" field of the resulting object will always be null. This is\n * exactly how searching via the current web interface behaves, which this\n * convenience method is designed to mimic.\n *\n * ***Warning (July 18, 2019):***\n *\n * `haveibeenpwned.com` now requires an API key from\n * https://haveibeenpwned.com/API/Key for the `breachedaccount` and\n * `pasteaccount` endpoints. The  `apiKey` option here is not explicitly\n * required, but direct requests made without it (that is, without specifying a\n * `baseUrl` to a proxy that inserts a valid API key on your behalf) will fail.\n *\n * @param {string} account an email address or username\n * @param {object} [breachOptions] a configuration object pertaining to breach\n * queries\n * @param {string} [breachOptions.apiKey] an API key from\n * https://haveibeenpwned.com/API/Key\n * @param {string} [breachOptions.domain] a domain by which to filter the\n * results (default: all domains)\n * @param {boolean} [breachOptions.truncate] truncate the results to only\n * include the name of each breach (default: true)\n * @param {string} [breachOptions.baseUrl] a custom base URL for the\n * haveibeenpwned.com API endpoints (default:\n * `https://haveibeenpwned.com/api/v3`)\n * @param {string} [breachOptions.userAgent] a custom string to send as the\n * User-Agent field in the request headers (default: `hibp <version>`)\n * @returns {Promise<SearchResults>} a Promise which resolves to an object\n * containing a \"breaches\" key (which can be null or an array of breach objects)\n * and a \"pastes\" key (which can be null or an array of paste objects), or\n * rejects with an Error\n * @example\n * search('foo', { apiKey: 'my-api-key' })\n *   .then(data => {\n *     if (data.breaches || data.pastes) {\n *       // ...\n *     } else {\n *       // ...\n *     }\n *   })\n *   .catch(err => {\n *     // ...\n *   });\n * @example\n * search('nobody@nowhere.com', { apiKey: 'my-api-key', truncate: false })\n *   .then(data => {\n *     if (data.breaches || data.pastes) {\n *       // ...\n *     } else {\n *       // ...\n *     }\n *   })\n *   .catch(err => {\n *     // ...\n *   });\n *\n * @see https://haveibeenpwned.com/\n */\nexport function search(\n  account: string,\n  breachOptions: {\n    apiKey?: string;\n    domain?: string;\n    truncate?: boolean;\n    baseUrl?: string;\n    userAgent?: string;\n  } = {\n    truncate: true,\n  },\n): Promise<SearchResults> {\n  const { apiKey, baseUrl, userAgent } = breachOptions;\n\n  return Promise.all([\n    breachedAccount(account, breachOptions),\n    // This email regex is garbage but it seems to be what the API uses:\n    /^.+@.+$/.test(account)\n      ? pasteAccount(account, { apiKey, baseUrl, userAgent })\n      : null,\n  ]).then(\n    // Avoid array destructuring here to prevent need for Babel helpers\n    (promises) => ({\n      breaches: promises[0],\n      pastes: promises[1],\n    }),\n  );\n}\n"],"names":["search","account","breachOptions","truncate","apiKey","baseUrl","userAgent","Promise","all","breachedAccount","test","pasteAccount","then","promises","breaches","pastes"],"mappings":";;;AASA;;;;;;AAMG;AAEH;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA6DG;AACa,SAAAA,MAAMA,CACpBC,OAAe,EACfC,aAMI,GAAA;EACFC,QAAQ,EAAE;AACX,CAAA,EAAA;EAED,MAAM;IAAEC,MAAM;IAAEC,OAAO;IAAEC;EAAS,CAAE,GAAGJ,aAAa;EAEpD,OAAOK,OAAO,CAACC,GAAG,CAAC,CACjBC,eAAe,CAACR,OAAO,EAAEC,aAAa,CAAC;;EAEvC,SAAS,CAACQ,IAAI,CAACT,OAAO,CAAC,GACnBU,YAAY,CAACV,OAAO,EAAE;IAAEG,MAAM;IAAEC,OAAO;IAAEC;EAAS,CAAE,CAAC,GACrD,IAAI,CACT,CAAC,CAACM,IAAI;;EAEJC,QAAQ,KAAM;IACbC,QAAQ,EAAED,QAAQ,CAAC,CAAC,CAAC;IACrBE,MAAM,EAAEF,QAAQ,CAAC,CAAC;EACnB,CAAA,CAAC,CACH;AACH;"}

package/example/runkit.js

@@ -0,0 +1,16 @@
+const hibp = require('hibp');
+
+hibp
+  .breach('Adobe')
+  .then((data) => {
+    if (data) {
+      // Breach data found
+      console.log(data);
+    } else {
+      console.log('No breach data found by that name.');
+    }
+  })
+  .catch((err) => {
+    // Something went wrong.
+    console.log(err.message);
+  });

package/package.json

@@ -0,0 +1,138 @@
+{
+  "name": "hibp",
+  "version": "0.0.0-dev.0e634825",
+  "description": "A Promise-based client for the 'Have I been pwned?' service.",
+  "keywords": [
+    "haveibeenpwned",
+    "hibp",
+    "pwned",
+    "security",
+    "hack",
+    "dump",
+    "breach",
+    "pastes",
+    "passwords",
+    "client"
+  ],
+  "author": {
+    "name": "Justin Hall",
+    "email": "justin.r.hall@gmail.com"
+  },
+  "license": "MIT",
+  "exports": {
+    ".": {
+      "browser": "./dist/browser/hibp.module.js",
+      "umd": "./dist/browser/hibp.umd.js",
+      "require": "./dist/cjs/hibp.js",
+      "import": "./dist/esm/hibp.mjs"
+    },
+    "./package.json": "./package.json"
+  },
+  "main": "dist/cjs/hibp.js",
+  "module": "dist/esm/hibp.mjs",
+  "unpkg": "dist/browser/hibp.umd.js",
+  "runkitExampleFilename": "example/runkit.js",
+  "files": [
+    "dist",
+    "example",
+    "API.md",
+    "CHANGELOG.md",
+    "MIGRATION.md"
+  ],
+  "sideEffects": false,
+  "scripts": {
+    "build": "run-s --silent build:bundle build:types build:docs",
+    "build:bundle": "rollup --config",
+    "build:docs": "jsdoc2md --no-cache --files src/*.ts --configure jsdoc2md.json > API.md && node scripts/fix-api-docs.js",
+    "build:types": "dts-bundle-generator --silent --umd-module-name hibp --out-file dist/cjs/hibp.d.ts src/hibp.ts && prettier --loglevel silent --write dist/cjs/hibp.d.ts && cpy dist/cjs/hibp.d.ts dist/esm --flat --rename=hibp.d.mts",
+    "changeset": "changeset",
+    "changeset:version": "changeset version && npm install --package-lock-only",
+    "changeset:publish": "changeset publish",
+    "check-types": "run-p --silent check-types:*",
+    "check-types:cypress": "tsc --project cypress",
+    "check-types:src": "tsc --noEmit",
+    "clean": "rimraf dist coverage",
+    "cy:open": "cypress open",
+    "cy:run": "cypress run",
+    "format": "prettier --cache --write .",
+    "lint": "eslint .",
+    "prebuild": "npm run --silent clean",
+    "prepare": "npm run --silent build",
+    "prepublishOnly": "run-s --silent lint check-types test test:browser:run",
+    "size": "bundlewatch --config .bundlewatch.config.js",
+    "ssat": "start-server-and-test start-test-server 3000",
+    "start-test-server": "serve --no-clipboard",
+    "test": "vitest run",
+    "test:coverage": "vitest run --coverage",
+    "test:browser:open": "run-s --silent build:bundle \"ssat cy:open\"",
+    "test:browser:run": "run-s --silent build:bundle \"ssat cy:run\"",
+    "test:watch": "vitest watch"
+  },
+  "private": false,
+  "publishConfig": {
+    "access": "public"
+  },
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/wKovacs64/hibp.git"
+  },
+  "bugs": {
+    "url": "https://github.com/wKovacs64/hibp/issues"
+  },
+  "homepage": "https://wkovacs64.github.io/hibp",
+  "engines": {
+    "node": ">= 14.13.1"
+  },
+  "dependencies": {
+    "@remix-run/web-fetch": "^4.3.2",
+    "jssha": "^3.3.0"
+  },
+  "devDependencies": {
+    "@babel/core": "7.21.0",
+    "@babel/parser": "7.21.2",
+    "@babel/plugin-proposal-class-properties": "7.18.6",
+    "@babel/plugin-proposal-object-rest-spread": "7.20.7",
+    "@babel/preset-env": "7.20.2",
+    "@babel/preset-typescript": "7.21.0",
+    "@changesets/changelog-github": "0.4.8",
+    "@changesets/cli": "2.26.0",
+    "@rollup/plugin-babel": "6.0.3",
+    "@rollup/plugin-commonjs": "24.0.1",
+    "@rollup/plugin-json": "6.0.0",
+    "@rollup/plugin-node-resolve": "15.0.1",
+    "@rollup/plugin-replace": "5.0.2",
+    "@rollup/plugin-terser": "0.4.0",
+    "@rollup/plugin-typescript": "11.0.0",
+    "@types/common-tags": "1.8.1",
+    "@types/debug": "4.1.7",
+    "@types/node": "18.15.3",
+    "@types/ws": "8.5.4",
+    "@vitest/coverage-c8": "0.29.2",
+    "@wkovacs64/prettier-config": "3.0.3",
+    "babel-plugin-annotate-pure-calls": "0.4.0",
+    "bundlewatch": "0.3.3",
+    "c8": "7.13.0",
+    "codecov": "3.8.3",
+    "common-tags": "1.8.2",
+    "cpy-cli": "4.2.0",
+    "cross-env": "7.0.3",
+    "cypress": "12.7.0",
+    "dts-bundle-generator": "7.2.0",
+    "eslint": "8.36.0",
+    "eslint-plugin-cypress": "2.12.1",
+    "eslint-plugin-wkovacs64": "14.1.0",
+    "glob": "9.2.1",
+    "jsdoc-babel": "0.5.0",
+    "jsdoc-to-markdown": "8.0.0",
+    "msw": "1.1.0",
+    "npm-run-all": "4.1.5",
+    "prettier": "2.8.4",
+    "rimraf": "4.4.0",
+    "rollup": "3.19.1",
+    "serve": "14.2.0",
+    "start-server-and-test": "2.0.0",
+    "tslib": "2.5.0",
+    "typescript": "4.9.5",
+    "vitest": "0.29.2"
+  }
+}