hibp 11.0.0 → 11.1.1

package/CHANGELOG.md

@@ -1,356 +1,7 @@
 # Change Log
 
-The changelog is automatically updated using
-[semantic-release](https://github.com/semantic-release/semantic-release). You
-can see it on the [releases page](../../releases).
+## 11.1.1
 
----
+### Patch Changes
 
-<details>
-<summary>Historical Change Log</summary>
-
-#### Version 7.5.1 _(2019-03-05)_
-
-- Fixed an issue preventing the use of `hibp` in React Native development mode
-  ([8e5b4de7][8e5b4de7])
-
-#### Version 7.5.0 _(2019-01-27)_
-
-- Added a `userAgent` option to all functions to facilitate specifying your own
-  `User-Agent` header value for requests made to the haveibeenpwned.com and
-  pwnedpasswords.com APIs ([#63][63])
-- Added a `baseUrl` option to all functions to facilitate specifying your own
-  URL for requests that would normally be made to
-  `https://haveibeenpwned.com/api` and `https://api.pwnedpasswords.com` to
-  facilitate proxying the requests through your own server (which may be
-  necessary if you wish to use the `breachedAccount` and `search` functions
-  after January, 2019 as `haveibeenpwned.com` no longer accepts
-  `breachedaccount` endpoint requests originating from a browser)
-
-  See issue [#60][60] for more details and discussion.
-
-#### Version 7.4.0 _(2019-01-19)_
-
-- Added an `includeUnverified` option to the `breachedAccount` function to
-  include "unverified" breaches in the results ([be01ad12][be01ad12])
-- Generalized the 403 Forbidden response message to simply "access denied" as
-  this type of response from `haveibeenpwned.com` is no longer limited to a
-  missing `User-Agent` header field ([15e02f97][15e02f97])
-- Added a new error specific to 403 Forbidden responses that includes the Ray ID
-  from Cloudflare so users can contact `haveibeenpwned.com` when they are being
-  blocked ([cd74e40d][cd74e40d])
-- Removed (and prevented future creation of) empty `remote-api` bundle in the
-  ESM build
-- Defined and exported the `hibp` namespace for typing the UMD build
-
-#### Version 7.3.0 _(2019-01-05)_
-
-- Converted to TypeScript ([#56][56])
-
-#### Version 7.2.3 _(2018-12-20)_
-
-- Fixed build on Windows ([48d25282][48d25282])
-- Moved CI from Travis to Circle ([#52][52])
-- Moved coverage reports from Coveralls to Codecov ([#53][53])
-
-#### Version 7.2.2 _(2018-11-26)_
-
-- Updated a **development-only** dependency (`start-server-and-test`) to remove
-  a compromised transitive dependency (`flatmap-stream@0.1.1`). See
-  [dominictarr/event-stream#116][dominictarr/event-stream#116] for further
-  details.
-- Removed redundant pre-publish build step
-
-#### Version 7.2.1 _(2018-10-23)_
-
-- Fixed the CommonJS build ([3f33becf][3f33becf])
-
-#### Version 7.2.0 _(2018-10-16)_
-
-- Added an ESM for browsers build ([#49][49])
-
-#### Version 7.1.3 _(2018-06-26)_
-
-- Fixed custom `User-Agent` request header implementation ([#40][40])
-
-#### Version 7.1.2 _(2018-06-26)_
-
-- Fixed `Forbidden` errors by adding a custom `User-Agent` request header when
-  running outside the browser ([#39][39])
-
-#### Version 7.1.1 _(2018-04-04)_
-
-- Fixed build scripts to prevent including test-only mocks in published output
-
-#### Version 7.1.0 _(2018-04-04)_
-
-- Added npm `prepare` script to facilitate installing from hosted git
-- Replaced [js-sha1][js-sha1] with [jsSHA][jssha]
-- Fixed a misleading comment in the `hibp` export documentation
-- Integrated [Renovate][renovate] for automated dependency updates
-- Changed mocking strategy and refactored tests
-
-#### Version 7.0.0 _(2018-03-13)_
-
-##### Breaking Changes (see [MIGRATION.md](MIGRATION.md) for details):
-
-- Modified `pwnedPassword` to use the more secure hash range API
-  ([@danieladams456][danieladams456] in [#23][23])
-- Modified `pwnedPasswordRange` to resolve with array of objects
-  ([@danieladams456][danieladams456] in [#24][24])
-
-#### Version 6.0.0 _(2018-02-25)_
-
-- Restored `puppeteer` to a development dependency
-- Cleaned up some tests
-
-##### Breaking Changes (see [MIGRATION.md](MIGRATION.md) for details):
-
-- Dropped support for Node < 6
-
-#### Version 5.3.0 _(2018-02-24)_
-
-- Added `"sideEffects": false` to support Webpack 4 tree-shaking
-- Added support for searching pwned passwords by range (#21)
-- Switched API endpoint for `pwnedPassword` module to new `pwnedpasswords.com`
-  domain
-
-#### Version 5.2.5 _(2017-12-07)_
-
-- Removed `puppeteer` optional dependency as it was causing downstream consumers
-  to download Chromium (particularly, when running things with `npx`). The
-  `test:umd` script now requires you manually install `puppeteer` before running
-  it, which will be done automatically in CI.
-
-#### Version 5.2.4 _(2017-12-07)_
-
-- Reverted `puppeteer` to `0.12.0` ~~as `0.13.0` was causing downstream
-  consumers to download Chromium.~~
-
-#### Version 5.2.3 _(2017-12-07)_
-
-- Reformated some documentation files
-- Updated dependencies
-
-#### Version 5.2.2 _(2017-11-08)_
-
-- Internal maintenance
-
-#### Version 5.2.1 _(2017-11-07)_
-
-- Internal maintenance
-
-#### Version 5.2.0 _(2017-08-04)_
-
-- Added [`pwnedPassword`][hibp-pwnedpassword] method to check a password to see
-  if it has been previously exposed in a data breach (#16)
-
-#### Version 5.1.0 _(2017-07-10)_
-
-- Replaced webpack with rollup for UMD bundling (#15)
-- Updated dependencies
-
-#### Version 5.0.0 _(2017-07-01)_
-
-- Targeted browsers in CommonJS/ES Module builds (#11)
-- Updated dependencies
-
-##### Breaking Changes (see [MIGRATION.md](MIGRATION.md) for details):
-
-- Removed `index.js`, the `source-map-support` entry point (#7)
-- Replaced `browser` field in package.json with `unpkg` (#12)
-- Removed the top-level `default` export (#14)
-
-#### Version 4.4.0 _(2017-06-22)_
-
-- Separated functions into individual modules (fixed tree-shaking)
-- Provided safer UMD script tag instructions
-- Explicitly targeted browsers in UMD build (resulting in reduced file size)
-- Updated dependencies
-
-#### Version 4.3.0 _(2017-06-08)_
-
-- Added [`search`][hibp-search] method for querying breaches and pastes
-  simultaneously (like the search form on the [website][haveibeenpwned])
-- Set the AMD module name in the UMD build to `hibp` rather than anonymous
-- Updated dependencies
-
-#### Version 4.2.1 _(2017-05-27)_
-
-- Fixed UMD build that broke in 4.2.0
-
-#### Version 4.2.0 _(2017-05-25)_
-
-- Fixed return type in `breachedAccount` documentation
-- Added support for tree-shaking bundlers
-- Optimized tests
-- Updated dependencies
-
-#### Version 4.1.1 _(2017-01-16)_
-
-- Published `example` directory for RunKit support
-- Removed `old` directory from package that slipped in by mistake
-
-#### Version 4.1.0 _(2017-01-16)_
-
-- Encoded user input used in API query string parameters
-- Added RunKit information for live trial usage
-
-#### Version 4.0.1 _(2017-01-04)_
-
-- First release of 2017! :tada:
-- Reduced size of UMD build by 75%
-- Updated dependencies
-
-#### Version 4.0.0 _(2016-12-10)_
-
-- Tweaked toolchain configs
-- Restructured test data
-- Updated dependencies
-
-##### Breaking Changes (see [MIGRATION.md](MIGRATION.md) for details):
-
-- Dropped support for Node < 4
-
-#### Version 3.0.0 _(2016-10-23)_
-
-- Added `yarn.lock` for experimental [yarn][yarn] support
-- Removed expect.js dependency from the test environment
-- Expanded usage documentation
-- Updated dependencies
-
-##### Breaking Changes (see [MIGRATION.md](MIGRATION.md) for details):
-
-- The browser (UMD) version has moved from the `lib` directory to the `dist`
-  directory.
-
-#### Version 2.2.0 _(2016-10-03)_
-
-- Added fallback for unexpected HTTP responses (thanks @jellekralt)
-- Added handling for new HTTP 429 (Too Many Requests) rate-limiting responses
-- Improved tests
-- Switched code style from SemiStandard to Airbnb
-- Updated dependencies
-
-#### Version 2.1.0 _(2016-09-04)_
-
-- Replaced **npmcdn.com** with **unpkg.com** in the documentation as the service
-  is being renamed
-- Inherited support for `http_proxy` and `https_proxy` environment variables
-  from Axios 0.14.0
-- Simplified build scripts
-- Refactored test environment
-- Updated dependencies
-
-#### Version 2.0.0 _(2016-08-07)_
-
-##### New:
-
-- Added browser support
-
-##### Breaking Changes (see [MIGRATION.md](MIGRATION.md) for details):
-
-- Changed API methods to resolve to null instead of undefined when no data was
-  found
-- Changed API methods to take a configuration object rather than optional,
-  positional parameters
-
-#### Version 1.0.8 _(2016-08-06)_
-
-- Updated description and example usage
-- Switched test coverage from istanbul to nyc
-- Improved cross-platform compatibility for development
-- Updated dependencies
-
-#### Version 1.0.7 _(2016-07-21)_
-
-- Minor performance increase
-- Fixed API documentation for 'breaches' query
-- Updated dependencies
-
-#### Version 1.0.6 _(2016-06-28)_
-
-- Increased visibility in npm search
-- Minor improvements to development environment
-
-#### Version 1.0.5 _(2016-04-22)_
-
-- Removed temporary 'breach' hack as the API endpoint has been fixed
-- Updated dependencies
-
-#### Version 1.0.4 _(2016-04-12)_
-
-- Changed temporary 'breach' hack to match author's intentions
-
-  _The API author (Troy Hunt) indicated there is no hard format restrictions on
-  a breach name, so the concept of an invalid breach name is not in play here.
-  The API will respond with HTTP status 404 (not found) once the fix has been
-  applied. This change mimics that behavior as opposed to responding with HTTP
-  status 400 (bad request), which was my initial interpretation._
-
-#### Version 1.0.3 _(2016-04-10)_
-
-- Updated documentation
-
-#### Version 1.0.2 _(2016-04-10)_
-
-- Shield clients from broken '[breach][singlebreach]' endpoint when querying for
-  an invalid breach name
-
-  _Currently, the endpoint responds with HTTP status 200 and "page not found"
-  HTML in the body if an invalid breach name is queried (e.g. 'adobe.com',
-  instead of the proper breach name, 'adobe'). Based on the response codes
-  described in the API documentation, I believe it should respond with HTTP
-  status 400 (bad request). Prior to this patch, it lead to a confusing one-off
-  scenario for clients consuming this module. This change should provide a
-  consistent experience by intercepting this specific case and throwing a "bad
-  request" error instead of a `SyntaxError` from trying to parse HTML. I brought
-  this API behavioral discrepancy to the API author's attention and he agreed it
-  was broken and noted that a fix is incoming._
-
-- Updated tests
-
-#### Version 1.0.1 _(2016-04-08)_
-
-- Removed `preferGlobal` option from package.json
-
-#### Version 1.0.0 _(2016-04-08)_
-
-- Initial release
-
-</details>
-
-[hibp-pwnedpassword]: API.md#module_pwnedPassword
-[hibp-search]: API.md#module_search
-[haveibeenpwned]: https://haveibeenpwned.com
-[singlebreach]: https://haveibeenpwned.com/API/v2#SingleBreach
-[yarn]: https://yarnpkg.com
-[danieladams456]: https://github.com/danieladams456
-[23]: https://github.com/wKovacs64/hibp/pull/23
-[24]: https://github.com/wKovacs64/hibp/pull/24
-[renovate]: https://renovateapp.com/
-[js-sha1]: https://github.com/emn178/js-sha1
-[jssha]: https://github.com/Caligatio/jsSHA
-[39]: https://github.com/wKovacs64/hibp/pull/39
-[40]: https://github.com/wKovacs64/hibp/pull/40
-[49]: https://github.com/wKovacs64/hibp/pull/49
-[3f33becf]:
-  https://github.com/wKovacs64/hibp/commit/3f33becfa23b80abc45fbeaad6c8c9f85113d126
-[dominictarr/event-stream#116]:
-  https://github.com/dominictarr/event-stream/issues/116
-[48d25282]:
-  https://github.com/wKovacs64/hibp/commit/48d25282407d2b1d3cdfac51f311d018a6a16d25
-[52]: https://github.com/wKovacs64/hibp/pull/52
-[53]: https://github.com/wKovacs64/hibp/pull/53
-[56]: https://github.com/wKovacs64/hibp/pull/56
-[be01ad12]:
-  https://github.com/wKovacs64/hibp/commit/be01ad1253b7ceb3c7f844049451a4e8e9e3a858
-[15e02f97]:
-  https://github.com/wKovacs64/hibp/commit/15e02f970286a410a275fe3457f559050632e5bd
-[cd74e40d]:
-  https://github.com/wKovacs64/hibp/commit/cd74e40de95143252ab99f5c070a84e54b1365a6
-[60]: https://github.com/wKovacs64/hibp/issues/60
-[63]: https://github.com/wKovacs64/hibp/pull/63
-[64]: https://github.com/wKovacs64/hibp/pull/64
-[8e5b4de7]:
-  https://github.com/wKovacs64/hibp/commit/8e5b4de79d25d834e14b8917101b4e0209d52f14
+- [#365](https://github.com/wKovacs64/hibp/pull/365) [`ec26254`](https://github.com/wKovacs64/hibp/commit/ec2625486c8500484befa4d4d203bb820a338967) Thanks [@wKovacs64](https://github.com/wKovacs64)! - Add `types` to the `exports` map in `package.json` to fix ESM consumers.

package/README.md

@@ -15,7 +15,6 @@ pwned?][haveibeenpwned] service._
 
 [![npm Version][npm-image]][npm-url] [![Build Status][ci-image]][ci-url]
 [![Code Coverage][coverage-image]][coverage-url]
-[![semantic-release][semantic-release-image]][semantic-release-url]
 [![All Contributors](https://img.shields.io/badge/all_contributors-7-orange.svg?style=flat-square)](#contributors-)
 
 ## Installation
@@ -106,6 +105,15 @@ search('someAccountOrEmail', { apiKey: 'my-api-key' })
   });
 ```
 
+#### Rate Limiting
+
+The haveibeenpwned.com API [rate limits][haveibeenpwned-rate-limiting] requests
+to prevent abuse. In the event you get rate limited, the module will throw a
+custom `RateLimitError` which will include a `retryAfterSeconds` property so you
+know when you can try the call again (as a `number`, unless the remote API did
+not provide one, in which case it will be `undefined` - but that _should_ never
+happen).
+
 #### Using in the browser
 
 **Prerequisite:** This module requires a Promise implementation to exist in the
@@ -190,18 +198,16 @@ This module is distributed under the [MIT License][license].
 [npm-image]: https://img.shields.io/npm/v/hibp.svg?style=flat-square
 [npm-url]: https://www.npmjs.com/package/hibp
 [ci-image]:
-  https://img.shields.io/circleci/project/github/wKovacs64/hibp/master.svg?style=flat-square
-[ci-url]: https://circleci.com/gh/wKovacs64/hibp
+  https://img.shields.io/github/actions/workflow/status/wKovacs64/hibp/ci.yml?logo=github&style=flat-square
+[ci-url]: https://github.com/wKovacs64/hibp/actions?query=workflow%3Aci
 [coverage-image]:
-  https://img.shields.io/codecov/c/github/wKovacs64/hibp/master.svg?style=flat-square
-[coverage-url]: https://codecov.io/gh/wKovacs64/hibp/branch/master
-[semantic-release-image]:
-  https://img.shields.io/badge/%20%20%F0%9F%93%A6%F0%9F%9A%80-semantic--release-e10079.svg?style=flat-square
-[semantic-release-url]: https://github.com/semantic-release/semantic-release
+  https://img.shields.io/codecov/c/github/wKovacs64/hibp/main.svg?style=flat-square
+[coverage-url]: https://codecov.io/gh/wKovacs64/hibp/branch/main
 [deno]: https://deno.land/
 [skypack]: https://www.skypack.dev/
 [troy]: https://www.troyhunt.com
 [haveibeenpwned]: https://haveibeenpwned.com
+[haveibeenpwned-rate-limiting]: https://haveibeenpwned.com/API/v3#RateLimiting
 [search-by-range]:
   https://haveibeenpwned.com/API/v2#SearchingPwnedPasswordsByRange
 [api-key-blog-post]:
@@ -217,7 +223,7 @@ This module is distributed under the [MIT License][license].
 [pwned]: https://github.com/wKovacs64/pwned
 [pulls]: https://github.com/wKovacs64/hibp/pulls
 [pwl]: https://pwl.netlify.com/
-[license]: https://github.com/wKovacs64/hibp/tree/master/LICENSE.txt
+[license]: https://github.com/wKovacs64/hibp/tree/main/LICENSE.txt
 
 ## Contributors ✨
 

package/dist/browser/hibp.module.js

@@ -1,2 +1,2 @@
-function t(t){if(t.__esModule)return t;var e=Object.defineProperty({},"__esModule",{value:!0});return Object.keys(t).forEach((function(n){var r=Object.getOwnPropertyDescriptor(t,n);Object.defineProperty(e,n,r.get?r:{enumerable:!0,get:function(){return t[n]}})})),e}var e=t(Object.freeze({__proto__:null,default:function(t,e){return e=e||{},new Promise((function(n,r){var s=new XMLHttpRequest,o=[],i=[],u={},h=function(){return{ok:2==(s.status/100|0),statusText:s.statusText,status:s.status,url:s.responseURL,text:function(){return Promise.resolve(s.responseText)},json:function(){return Promise.resolve(s.responseText).then(JSON.parse)},blob:function(){return Promise.resolve(new Blob([s.response]))},clone:h,headers:{keys:function(){return o},entries:function(){return i},get:function(t){return u[t.toLowerCase()]},has:function(t){return t.toLowerCase()in u}}}};for(var a in s.open(e.method||"get",t,!0),s.onload=function(){s.getAllResponseHeaders().replace(/^(.*?):[^\S\n]*([\s\S]*?)$/gm,(function(t,e,n){o.push(e=e.toLowerCase()),i.push([e,n]),u[e]=u[e]?u[e]+","+n:n})),n(h())},s.onerror=r,s.withCredentials="include"==e.credentials,e.headers)s.setRequestHeader(a,e.headers[a]);s.send(e.body||null)}))}})),n=self.fetch||(self.fetch=e.default||e);new Map;const r=400,s="Bad request — the account does not comply with an acceptable format.",o=401,i=403,u="Forbidden - access denied.",h=404,a=429;function c(t,{apiKey:e,baseUrl:c="https://haveibeenpwned.com/api/v3",userAgent:f}={}){const l={};e&&(l["HIBP-API-Key"]=e),f&&(l["User-Agent"]=f),f||"undefined"!=typeof navigator||(l["User-Agent"]="hibp 11.0.0");const p={headers:l},d=`${c.replace(/\/$/g,"")}${t}`;return n(d,p).then(t=>{if(t.ok)return t.json();switch(t.status){case r:throw Error(s);case o:return t.json().then(t=>{throw Error(t.message)});case i:{const e=t.headers.get("cf-ray");if(e)throw Error(function(t){return`Request blocked, contact haveibeenpwned.com if this continues (Ray ID: ${t})`}(e));throw Error(u)}case h:return null;case a:return t.json().then(t=>{throw Error(t.message)});default:throw Error(t.statusText)}})}function f(t,e={}){return c("/breach/"+encodeURIComponent(t),e)}function l(t,e={includeUnverified:!0,truncate:!0}){const n=`/breachedaccount/${encodeURIComponent(t)}?`,r=[];return e.domain&&r.push("domain="+encodeURIComponent(e.domain)),!1===e.includeUnverified&&r.push("includeUnverified=false"),!1===e.truncate&&r.push("truncateResponse=false"),c(`${n}${r.join("&")}`,{apiKey:e.apiKey,baseUrl:e.baseUrl,userAgent:e.userAgent})}function p(t={}){const e=[];return t.domain&&e.push("domain="+encodeURIComponent(t.domain)),c("/breaches?"+e.join("&"),{baseUrl:t.baseUrl,userAgent:t.userAgent})}function d(t={}){return c("/dataclasses",t)}function g(t,e={}){return c("/pasteaccount/"+encodeURIComponent(t),{apiKey:e.apiKey,baseUrl:e.baseUrl,userAgent:e.userAgent})}const A="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/";function U(t,e,n,r){let s,o,i;const u=e||[0],h=(n=n||0)>>>3,a=-1===r?3:0;for(s=0;t.length>s;s+=1)i=s+h,o=i>>>2,o>=u.length&&u.push(0),u[o]|=t[s]<<8*(a+r*(i%4));return{value:u,binLen:8*t.length+n}}function m(t,e,n){switch(e){case"UTF8":case"UTF16BE":case"UTF16LE":break;default:throw Error("encoding must be UTF8, UTF16BE, or UTF16LE")}switch(t){case"HEX":return function(t,e,r){return function(t,e,n,r){let s,o,i,u;if(0!=t.length%2)throw Error("String of HEX type must be in byte increments");const h=e||[0],a=(n=n||0)>>>3,c=-1===r?3:0;for(s=0;t.length>s;s+=2){if(o=parseInt(t.substr(s,2),16),isNaN(o))throw Error("String of HEX type contains invalid characters");for(u=(s>>>1)+a,i=u>>>2;i>=h.length;)h.push(0);h[i]|=o<<8*(c+r*(u%4))}return{value:h,binLen:4*t.length+n}}(t,e,r,n)};case"TEXT":return function(t,r,s){return function(t,e,n,r,s){let o,i,u,h,a,c,f,l,p=0;const d=n||[0],g=(r=r||0)>>>3;if("UTF8"===e)for(f=-1===s?3:0,u=0;t.length>u;u+=1)for(o=t.charCodeAt(u),i=[],128>o?i.push(o):2048>o?(i.push(192|o>>>6),i.push(128|63&o)):55296>o||o>=57344?i.push(224|o>>>12,128|o>>>6&63,128|63&o):(u+=1,o=65536+((1023&o)<<10|1023&t.charCodeAt(u)),i.push(240|o>>>18,128|o>>>12&63,128|o>>>6&63,128|63&o)),h=0;i.length>h;h+=1){for(c=p+g,a=c>>>2;a>=d.length;)d.push(0);d[a]|=i[h]<<8*(f+s*(c%4)),p+=1}else for(f=-1===s?2:0,l="UTF16LE"===e&&1!==s||"UTF16LE"!==e&&1===s,u=0;t.length>u;u+=1){for(o=t.charCodeAt(u),!0===l&&(h=255&o,o=h<<8|o>>>8),c=p+g,a=c>>>2;a>=d.length;)d.push(0);d[a]|=o<<8*(f+s*(c%4)),p+=2}return{value:d,binLen:8*p+r}}(t,e,r,s,n)};case"B64":return function(t,e,r){return function(t,e,n,r){let s,o,i,u,h,a,c,f=0;const l=e||[0],p=(n=n||0)>>>3,d=-1===r?3:0,g=t.indexOf("=");if(-1===t.search(/^[a-zA-Z0-9=+/]+$/))throw Error("Invalid character in base-64 string");if(t=t.replace(/=/g,""),-1!==g&&t.length>g)throw Error("Invalid '=' found in base-64 string");for(o=0;t.length>o;o+=4){for(h=t.substr(o,4),u=0,i=0;h.length>i;i+=1)s=A.indexOf(h.charAt(i)),u|=s<<18-6*i;for(i=0;h.length-1>i;i+=1){for(c=f+p,a=c>>>2;a>=l.length;)l.push(0);l[a]|=(u>>>16-8*i&255)<<8*(d+r*(c%4)),f+=1}}return{value:l,binLen:8*f+n}}(t,e,r,n)};case"BYTES":return function(t,e,r){return function(t,e,n,r){let s,o,i,u;const h=e||[0],a=(n=n||0)>>>3,c=-1===r?3:0;for(o=0;t.length>o;o+=1)s=t.charCodeAt(o),u=o+a,i=u>>>2,i>=h.length&&h.push(0),h[i]|=s<<8*(c+r*(u%4));return{value:h,binLen:8*t.length+n}}(t,e,r,n)};case"ARRAYBUFFER":try{new ArrayBuffer(0)}catch(t){throw Error("ARRAYBUFFER not supported by this environment")}return function(t,e,r){return function(t,e,n,r){return U(new Uint8Array(t),e,n,r)}(t,e,r,n)};case"UINT8ARRAY":try{new Uint8Array(0)}catch(t){throw Error("UINT8ARRAY not supported by this environment")}return function(t,e,r){return U(t,e,r,n)};default:throw Error("format must be HEX, TEXT, B64, BYTES, ARRAYBUFFER, or UINT8ARRAY")}}function b(t,e,n,r){switch(t){case"HEX":return function(t){return function(t,e,n,r){let s,o,i="";const u=e/8,h=-1===n?3:0;for(s=0;u>s;s+=1)o=t[s>>>2]>>>8*(h+n*(s%4)),i+="0123456789abcdef".charAt(o>>>4&15)+"0123456789abcdef".charAt(15&o);return r.outputUpper?i.toUpperCase():i}(t,e,n,r)};case"B64":return function(t){return function(t,e,n,r){let s,o,i,u,h,a="";const c=e/8,f=-1===n?3:0;for(s=0;c>s;s+=3)for(u=c>s+1?t[s+1>>>2]:0,h=c>s+2?t[s+2>>>2]:0,i=(t[s>>>2]>>>8*(f+n*(s%4))&255)<<16|(u>>>8*(f+n*((s+1)%4))&255)<<8|h>>>8*(f+n*((s+2)%4))&255,o=0;4>o;o+=1)a+=8*s+6*o>e?r.b64Pad:A.charAt(i>>>6*(3-o)&63);return a}(t,e,n,r)};case"BYTES":return function(t){return function(t,e,n){let r,s,o="";const i=e/8,u=-1===n?3:0;for(r=0;i>r;r+=1)s=t[r>>>2]>>>8*(u+n*(r%4))&255,o+=String.fromCharCode(s);return o}(t,e,n)};case"ARRAYBUFFER":try{new ArrayBuffer(0)}catch(t){throw Error("ARRAYBUFFER not supported by this environment")}return function(t){return function(t,e,n){let r;const s=e/8,o=new ArrayBuffer(s),i=new Uint8Array(o),u=-1===n?3:0;for(r=0;s>r;r+=1)i[r]=t[r>>>2]>>>8*(u+n*(r%4))&255;return o}(t,e,n)};case"UINT8ARRAY":try{new Uint8Array(0)}catch(t){throw Error("UINT8ARRAY not supported by this environment")}return function(t){return function(t,e,n){let r;const s=e/8,o=-1===n?3:0,i=new Uint8Array(s);for(r=0;s>r;r+=1)i[r]=t[r>>>2]>>>8*(o+n*(r%4))&255;return i}(t,e,n)};default:throw Error("format must be HEX, B64, BYTES, ARRAYBUFFER, or UINT8ARRAY")}}function w(t){const e={outputUpper:!1,b64Pad:"=",outputLen:-1},n=t||{},r="Output length must be a multiple of 8";if(e.outputUpper=n.outputUpper||!1,n.b64Pad&&(e.b64Pad=n.b64Pad),n.outputLen){if(n.outputLen%8!=0)throw Error(r);e.outputLen=n.outputLen}else if(n.shakeLen){if(n.shakeLen%8!=0)throw Error(r);e.outputLen=n.shakeLen}if("boolean"!=typeof e.outputUpper)throw Error("Invalid outputUpper formatting option");if("string"!=typeof e.b64Pad)throw Error("Invalid b64Pad formatting option");return e}function E(t,e){return t<<e|t>>>32-e}function R(t,e,n){return t^e^n}function v(t,e,n){return t&e^t&n^e&n}function y(t,e){const n=(65535&t)+(65535&e);return(65535&(t>>>16)+(e>>>16)+(n>>>16))<<16|65535&n}function T(t,e,n,r,s){const o=(65535&t)+(65535&e)+(65535&n)+(65535&r)+(65535&s);return(65535&(t>>>16)+(e>>>16)+(n>>>16)+(r>>>16)+(s>>>16)+(o>>>16))<<16|65535&o}function C(t){return[1732584193,4023233417,2562383102,271733878,3285377520]}function F(t,e){let n,r,s,o,i,u,h;const a=[];for(n=e[0],r=e[1],s=e[2],o=e[3],i=e[4],h=0;80>h;h+=1)a[h]=16>h?t[h]:E(a[h-3]^a[h-8]^a[h-14]^a[h-16],1),u=20>h?T(E(n,5),(c=r)&s^~c&o,i,1518500249,a[h]):40>h?T(E(n,5),R(r,s,o),i,1859775393,a[h]):60>h?T(E(n,5),v(r,s,o),i,2400959708,a[h]):T(E(n,5),R(r,s,o),i,3395469782,a[h]),i=o,o=s,s=E(r,30),r=n,n=u;var c;return e[0]=y(n,e[0]),e[1]=y(r,e[1]),e[2]=y(s,e[2]),e[3]=y(o,e[3]),e[4]=y(i,e[4]),e}function L(t,e,n,r){let s;const o=15+(e+65>>>9<<4),i=e+n;for(;o>=t.length;)t.push(0);for(t[e>>>5]|=128<<24-e%32,t[o]=4294967295&i,t[o-1]=i/4294967296|0,s=0;t.length>s;s+=16)r=F(t.slice(s,s+16),r);return r}class H extends class{constructor(t,e,n){const r=n||{};if(this.t=e,this.i=r.encoding||"UTF8",this.numRounds=r.numRounds||1,isNaN(this.numRounds)||this.numRounds!==parseInt(this.numRounds,10)||1>this.numRounds)throw Error("numRounds must a integer >= 1");this.s=t,this.o=[],this.h=0,this.u=!1,this.l=0,this.A=!1,this.p=[],this.R=[]}update(t){let e,n=0;const r=this.U>>>5,s=this.T(t,this.o,this.h),o=s.binLen,i=s.value,u=o>>>5;for(e=0;u>e;e+=r)o>=n+this.U&&(this.F=this.m(i.slice(e,e+r),this.F),n+=this.U);this.l+=n,this.o=i.slice(n>>>5),this.h=o%this.U,this.u=!0}getHash(t,e){let n,r,s=this.g;const o=w(e);if(this.B){if(-1===o.outputLen)throw Error("Output length must be specified in options");s=o.outputLen}const i=b(t,s,this.v,o);if(this.A&&this.Y)return i(this.Y(o));for(r=this.H(this.o.slice(),this.h,this.l,this.C(this.F),s),n=1;this.numRounds>n;n+=1)this.B&&s%32!=0&&(r[r.length-1]&=16777215>>>24-s%32),r=this.H(r,s,0,this.I(this.s),s);return i(r)}setHMACKey(t,e,n){if(!this.L)throw Error("Variant does not support HMAC");if(this.u)throw Error("Cannot set MAC key after calling update");const r=m(e,(n||{}).encoding||"UTF8",this.v);this.M(r(t))}M(t){const e=this.U>>>3,n=e/4-1;let r;if(1!==this.numRounds)throw Error("Cannot set numRounds with MAC");if(this.A)throw Error("MAC key already set");for(t.binLen/8>e&&(t.value=this.H(t.value,t.binLen,0,this.I(this.s),this.g));n>=t.value.length;)t.value.push(0);for(r=0;n>=r;r+=1)this.p[r]=909522486^t.value[r],this.R[r]=1549556828^t.value[r];this.F=this.m(this.p,this.F),this.l=this.U,this.A=!0}getHMAC(t,e){const n=w(e);return b(t,this.g,this.v,n)(this.N())}N(){let t;if(!this.A)throw Error("Cannot call getHMAC without first setting MAC key");const e=this.H(this.o.slice(),this.h,this.l,this.C(this.F),this.g);return t=this.m(this.R,this.I(this.s)),t=this.H(e,this.g,this.U,t,this.g),t}}{constructor(t,e,n){if("SHA-1"!==t)throw Error("Chosen SHA variant is not supported");super(t,e,n);const r=n||{};this.L=!0,this.Y=this.N,this.v=-1,this.T=m(this.t,this.i,this.v),this.m=F,this.C=function(t){return t.slice()},this.I=C,this.H=L,this.F=[1732584193,4023233417,2562383102,271733878,3285377520],this.U=512,this.g=160,this.B=!1,r.hmacKey&&this.M(function(t,e,n,r){const s="hmacKey must include a value and format";if(!e)throw Error(s);if(void 0===e.value||!e.format)throw Error(s);return m(e.format,e.encoding||"UTF8",n)(e.value)}(0,r.hmacKey,this.v))}}const I=400;function B(t,e={}){return function(t,{baseUrl:e="https://api.pwnedpasswords.com",userAgent:r}={}){const s=Object.assign({},r?{headers:{"User-Agent":r}}:{}),o=`${e.replace(/\/$/g,"")}${t}`;return n(o,s).then(t=>{if(t.ok)return t.text();if(t.status===I)return t.text().then(t=>{throw Error(t)});throw Error(t.statusText)})}("/range/"+encodeURIComponent(t),e).then(t=>t.split("\n")).then(t=>t.reduce((t,e)=>{const[n,r]=e.split(":");return t[n]=parseInt(r,10),t},{}))}function Y(t,e={}){const n=new H("SHA-1","TEXT");n.update(t);const r=n.getHash("HEX",{outputUpper:!0}),s=r.slice(0,5),o=r.slice(5);return B(s,e).then(t=>t[o]||0)}function P(t,e={truncate:!0}){const{apiKey:n,baseUrl:r,userAgent:s}=e;return Promise.all([l(t,e),/^.+@.+$/.test(t)?g(t,{apiKey:n,baseUrl:r,userAgent:s}):null]).then(t=>({breaches:t[0],pastes:t[1]}))}export{f as breach,l as breachedAccount,p as breaches,d as dataClasses,g as pasteAccount,Y as pwnedPassword,B as pwnedPasswordRange,P as search};
+function t(t){if(t.__esModule)return t;var e=t.default;if("function"==typeof e){var n=function t(){if(this instanceof t){var n=[null];n.push.apply(n,arguments);var r=Function.bind.apply(e,n);return new r}return e.apply(this,arguments)};n.prototype=e.prototype}else n={};return Object.defineProperty(n,"__esModule",{value:!0}),Object.keys(t).forEach((function(e){var r=Object.getOwnPropertyDescriptor(t,e);Object.defineProperty(n,e,r.get?r:{enumerable:!0,get:function(){return t[e]}})})),n}var e=Object.freeze({__proto__:null,default:function(t,e){return e=e||{},new Promise((function(n,r){var s=new XMLHttpRequest,o=[],i=[],u={},h=function(){return{ok:2==(s.status/100|0),statusText:s.statusText,status:s.status,url:s.responseURL,text:function(){return Promise.resolve(s.responseText)},json:function(){return Promise.resolve(s.responseText).then(JSON.parse)},blob:function(){return Promise.resolve(new Blob([s.response]))},clone:h,headers:{keys:function(){return o},entries:function(){return i},get:function(t){return u[t.toLowerCase()]},has:function(t){return t.toLowerCase()in u}}}};for(var a in s.open(e.method||"get",t,!0),s.onload=function(){s.getAllResponseHeaders().replace(/^(.*?):[^\S\n]*([\s\S]*?)$/gm,(function(t,e,n){o.push(e=e.toLowerCase()),i.push([e,n]),u[e]=u[e]?u[e]+","+n:n})),n(h())},s.onerror=r,s.withCredentials="include"==e.credentials,e.headers)s.setRequestHeader(a,e.headers[a]);s.send(e.body||null)}))}}),n=t(e),r=self.fetch||(self.fetch=n.default||n);new Map;const s=400,o="Bad request — the account does not comply with an acceptable format.",i=401,u=403,h="Forbidden - access denied.",a=404,c=(new Map([["retry-after","2"]]),429);class f extends Error{retryAfterSeconds;constructor(t,e,n){super(e,n),this.name=this.constructor.name,this.retryAfterSeconds="string"==typeof t?Number.parseInt(t,10):void 0}}function l(t,{apiKey:e,baseUrl:n="https://haveibeenpwned.com/api/v3",userAgent:l}={}){const p={};e&&(p["HIBP-API-Key"]=e),l&&(p["User-Agent"]=l),l||"undefined"!=typeof navigator||(p["User-Agent"]="hibp 11.1.1");const d={headers:p},g=`${n.replace(/\/$/g,"")}${t}`;return r(g,d).then((t=>{if(t.ok)return t.json();switch(t.status){case s:throw Error(o);case i:return t.json().then((t=>{throw Error(t.message)}));case u:{const e=t.headers.get("cf-ray");if(e)throw Error(function(t){return`Request blocked, contact haveibeenpwned.com if this continues (Ray ID: ${t})`}(e));throw Error(h)}case a:return null;case c:return t.json().then((e=>{const n=t.headers.get("retry-after");throw new f(n,e.message)}));default:throw Error(t.statusText)}}))}function p(t,e={}){return l("/breach/"+encodeURIComponent(t),e)}function d(t,e={includeUnverified:!0,truncate:!0}){const n=`/breachedaccount/${encodeURIComponent(t)}?`,r=[];return e.domain&&r.push("domain="+encodeURIComponent(e.domain)),!1===e.includeUnverified&&r.push("includeUnverified=false"),!1===e.truncate&&r.push("truncateResponse=false"),l(`${n}${r.join("&")}`,{apiKey:e.apiKey,baseUrl:e.baseUrl,userAgent:e.userAgent})}function g(t={}){const e=[];return t.domain&&e.push("domain="+encodeURIComponent(t.domain)),l("/breaches?"+e.join("&"),{baseUrl:t.baseUrl,userAgent:t.userAgent})}function A(t={}){return l("/dataclasses",t)}function m(t,e={}){return l("/pasteaccount/"+encodeURIComponent(t),{apiKey:e.apiKey,baseUrl:e.baseUrl,userAgent:e.userAgent})}const b="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/";function w(t,e,n,r){let s,o,i;const u=e||[0],h=(n=n||0)>>>3,a=-1===r?3:0;for(s=0;t.length>s;s+=1)i=s+h,o=i>>>2,o>=u.length&&u.push(0),u[o]|=t[s]<<8*(a+r*(i%4));return{value:u,binLen:8*t.length+n}}function U(t,e,n){switch(e){case"UTF8":case"UTF16BE":case"UTF16LE":break;default:throw Error("encoding must be UTF8, UTF16BE, or UTF16LE")}switch(t){case"HEX":return function(t,e,r){return function(t,e,n,r){let s,o,i,u;if(0!=t.length%2)throw Error("String of HEX type must be in byte increments");const h=e||[0],a=(n=n||0)>>>3,c=-1===r?3:0;for(s=0;t.length>s;s+=2){if(o=parseInt(t.substr(s,2),16),isNaN(o))throw Error("String of HEX type contains invalid characters");for(u=(s>>>1)+a,i=u>>>2;i>=h.length;)h.push(0);h[i]|=o<<8*(c+r*(u%4))}return{value:h,binLen:4*t.length+n}}(t,e,r,n)};case"TEXT":return function(t,r,s){return function(t,e,n,r,s){let o,i,u,h,a,c,f,l,p=0;const d=n||[0],g=(r=r||0)>>>3;if("UTF8"===e)for(f=-1===s?3:0,u=0;t.length>u;u+=1)for(o=t.charCodeAt(u),i=[],128>o?i.push(o):2048>o?(i.push(192|o>>>6),i.push(128|63&o)):55296>o||o>=57344?i.push(224|o>>>12,128|o>>>6&63,128|63&o):(u+=1,o=65536+((1023&o)<<10|1023&t.charCodeAt(u)),i.push(240|o>>>18,128|o>>>12&63,128|o>>>6&63,128|63&o)),h=0;i.length>h;h+=1){for(c=p+g,a=c>>>2;a>=d.length;)d.push(0);d[a]|=i[h]<<8*(f+s*(c%4)),p+=1}else for(f=-1===s?2:0,l="UTF16LE"===e&&1!==s||"UTF16LE"!==e&&1===s,u=0;t.length>u;u+=1){for(o=t.charCodeAt(u),!0===l&&(h=255&o,o=h<<8|o>>>8),c=p+g,a=c>>>2;a>=d.length;)d.push(0);d[a]|=o<<8*(f+s*(c%4)),p+=2}return{value:d,binLen:8*p+r}}(t,e,r,s,n)};case"B64":return function(t,e,r){return function(t,e,n,r){let s,o,i,u,h,a,c,f=0;const l=e||[0],p=(n=n||0)>>>3,d=-1===r?3:0,g=t.indexOf("=");if(-1===t.search(/^[a-zA-Z0-9=+/]+$/))throw Error("Invalid character in base-64 string");if(t=t.replace(/=/g,""),-1!==g&&t.length>g)throw Error("Invalid '=' found in base-64 string");for(o=0;t.length>o;o+=4){for(h=t.substr(o,4),u=0,i=0;h.length>i;i+=1)s=b.indexOf(h.charAt(i)),u|=s<<18-6*i;for(i=0;h.length-1>i;i+=1){for(c=f+p,a=c>>>2;a>=l.length;)l.push(0);l[a]|=(u>>>16-8*i&255)<<8*(d+r*(c%4)),f+=1}}return{value:l,binLen:8*f+n}}(t,e,r,n)};case"BYTES":return function(t,e,r){return function(t,e,n,r){let s,o,i,u;const h=e||[0],a=(n=n||0)>>>3,c=-1===r?3:0;for(o=0;t.length>o;o+=1)s=t.charCodeAt(o),u=o+a,i=u>>>2,i>=h.length&&h.push(0),h[i]|=s<<8*(c+r*(u%4));return{value:h,binLen:8*t.length+n}}(t,e,r,n)};case"ARRAYBUFFER":try{new ArrayBuffer(0)}catch(t){throw Error("ARRAYBUFFER not supported by this environment")}return function(t,e,r){return function(t,e,n,r){return w(new Uint8Array(t),e,n,r)}(t,e,r,n)};case"UINT8ARRAY":try{new Uint8Array(0)}catch(t){throw Error("UINT8ARRAY not supported by this environment")}return function(t,e,r){return w(t,e,r,n)};default:throw Error("format must be HEX, TEXT, B64, BYTES, ARRAYBUFFER, or UINT8ARRAY")}}function E(t,e,n,r){switch(t){case"HEX":return function(t){return function(t,e,n,r){const s="0123456789abcdef";let o,i,u="";const h=e/8,a=-1===n?3:0;for(o=0;h>o;o+=1)i=t[o>>>2]>>>8*(a+n*(o%4)),u+=s.charAt(i>>>4&15)+s.charAt(15&i);return r.outputUpper?u.toUpperCase():u}(t,e,n,r)};case"B64":return function(t){return function(t,e,n,r){let s,o,i,u,h,a="";const c=e/8,f=-1===n?3:0;for(s=0;c>s;s+=3)for(u=c>s+1?t[s+1>>>2]:0,h=c>s+2?t[s+2>>>2]:0,i=(t[s>>>2]>>>8*(f+n*(s%4))&255)<<16|(u>>>8*(f+n*((s+1)%4))&255)<<8|h>>>8*(f+n*((s+2)%4))&255,o=0;4>o;o+=1)a+=8*s+6*o>e?r.b64Pad:b.charAt(i>>>6*(3-o)&63);return a}(t,e,n,r)};case"BYTES":return function(t){return function(t,e,n){let r,s,o="";const i=e/8,u=-1===n?3:0;for(r=0;i>r;r+=1)s=t[r>>>2]>>>8*(u+n*(r%4))&255,o+=String.fromCharCode(s);return o}(t,e,n)};case"ARRAYBUFFER":try{new ArrayBuffer(0)}catch(t){throw Error("ARRAYBUFFER not supported by this environment")}return function(t){return function(t,e,n){let r;const s=e/8,o=new ArrayBuffer(s),i=new Uint8Array(o),u=-1===n?3:0;for(r=0;s>r;r+=1)i[r]=t[r>>>2]>>>8*(u+n*(r%4))&255;return o}(t,e,n)};case"UINT8ARRAY":try{new Uint8Array(0)}catch(t){throw Error("UINT8ARRAY not supported by this environment")}return function(t){return function(t,e,n){let r;const s=e/8,o=-1===n?3:0,i=new Uint8Array(s);for(r=0;s>r;r+=1)i[r]=t[r>>>2]>>>8*(o+n*(r%4))&255;return i}(t,e,n)};default:throw Error("format must be HEX, B64, BYTES, ARRAYBUFFER, or UINT8ARRAY")}}function y(t){const e={outputUpper:!1,b64Pad:"=",outputLen:-1},n=t||{},r="Output length must be a multiple of 8";if(e.outputUpper=n.outputUpper||!1,n.b64Pad&&(e.b64Pad=n.b64Pad),n.outputLen){if(n.outputLen%8!=0)throw Error(r);e.outputLen=n.outputLen}else if(n.shakeLen){if(n.shakeLen%8!=0)throw Error(r);e.outputLen=n.shakeLen}if("boolean"!=typeof e.outputUpper)throw Error("Invalid outputUpper formatting option");if("string"!=typeof e.b64Pad)throw Error("Invalid b64Pad formatting option");return e}function R(t,e){return t<<e|t>>>32-e}function v(t,e,n){return t^e^n}function T(t,e,n){return t&e^t&n^e&n}function C(t,e){const n=(65535&t)+(65535&e);return(65535&(t>>>16)+(e>>>16)+(n>>>16))<<16|65535&n}function L(t,e,n,r,s){const o=(65535&t)+(65535&e)+(65535&n)+(65535&r)+(65535&s);return(65535&(t>>>16)+(e>>>16)+(n>>>16)+(r>>>16)+(s>>>16)+(o>>>16))<<16|65535&o}function B(t){return[1732584193,4023233417,2562383102,271733878,3285377520]}function F(t,e){let n,r,s,o,i,u,h;const a=[];for(n=e[0],r=e[1],s=e[2],o=e[3],i=e[4],h=0;80>h;h+=1)a[h]=16>h?t[h]:R(a[h-3]^a[h-8]^a[h-14]^a[h-16],1),u=20>h?L(R(n,5),(c=r)&s^~c&o,i,1518500249,a[h]):40>h?L(R(n,5),v(r,s,o),i,1859775393,a[h]):60>h?L(R(n,5),T(r,s,o),i,2400959708,a[h]):L(R(n,5),v(r,s,o),i,3395469782,a[h]),i=o,o=s,s=R(r,30),r=n,n=u;var c;return e[0]=C(n,e[0]),e[1]=C(r,e[1]),e[2]=C(s,e[2]),e[3]=C(o,e[3]),e[4]=C(i,e[4]),e}function I(t,e,n,r){let s;const o=15+(e+65>>>9<<4),i=e+n;for(;o>=t.length;)t.push(0);for(t[e>>>5]|=128<<24-e%32,t[o]=4294967295&i,t[o-1]=i/4294967296|0,s=0;t.length>s;s+=16)r=F(t.slice(s,s+16),r);return r}class H extends class{constructor(t,e,n){const r=n||{};if(this.t=e,this.i=r.encoding||"UTF8",this.numRounds=r.numRounds||1,isNaN(this.numRounds)||this.numRounds!==parseInt(this.numRounds,10)||1>this.numRounds)throw Error("numRounds must a integer >= 1");this.o=t,this.h=[],this.u=0,this.l=!1,this.A=0,this.p=!1,this.R=[],this.U=[]}update(t){let e,n=0;const r=this.T>>>5,s=this.F(t,this.h,this.u),o=s.binLen,i=s.value,u=o>>>5;for(e=0;u>e;e+=r)o>=n+this.T&&(this.m=this.g(i.slice(e,e+r),this.m),n+=this.T);return this.A+=n,this.h=i.slice(n>>>5),this.u=o%this.T,this.l=!0,this}getHash(t,e){let n,r,s=this.B;const o=y(e);if(this.v){if(-1===o.outputLen)throw Error("Output length must be specified in options");s=o.outputLen}const i=E(t,s,this.Y,o);if(this.p&&this.H)return i(this.H(o));for(r=this.C(this.h.slice(),this.u,this.A,this.I(this.m),s),n=1;this.numRounds>n;n+=1)this.v&&s%32!=0&&(r[r.length-1]&=16777215>>>24-s%32),r=this.C(r,s,0,this.L(this.o),s);return i(r)}setHMACKey(t,e,n){if(!this.M)throw Error("Variant does not support HMAC");if(this.l)throw Error("Cannot set MAC key after calling update");const r=U(e,(n||{}).encoding||"UTF8",this.Y);this.N(r(t))}N(t){const e=this.T>>>3,n=e/4-1;let r;if(1!==this.numRounds)throw Error("Cannot set numRounds with MAC");if(this.p)throw Error("MAC key already set");for(t.binLen/8>e&&(t.value=this.C(t.value,t.binLen,0,this.L(this.o),this.B));n>=t.value.length;)t.value.push(0);for(r=0;n>=r;r+=1)this.R[r]=909522486^t.value[r],this.U[r]=1549556828^t.value[r];this.m=this.g(this.R,this.m),this.A=this.T,this.p=!0}getHMAC(t,e){const n=y(e);return E(t,this.B,this.Y,n)(this.S())}S(){let t;if(!this.p)throw Error("Cannot call getHMAC without first setting MAC key");const e=this.C(this.h.slice(),this.u,this.A,this.I(this.m),this.B);return t=this.g(this.U,this.L(this.o)),t=this.C(e,this.B,this.T,t,this.B),t}}{constructor(t,e,n){if("SHA-1"!==t)throw Error("Chosen SHA variant is not supported");super(t,e,n);const r=n||{};this.M=!0,this.H=this.S,this.Y=-1,this.F=U(this.t,this.i,this.Y),this.g=F,this.I=function(t){return t.slice()},this.L=B,this.C=I,this.m=[1732584193,4023233417,2562383102,271733878,3285377520],this.T=512,this.B=160,this.v=!1,r.hmacKey&&this.N(function(t,e,n,r){const s="hmacKey must include a value and format";if(!e)throw Error(s);if(void 0===e.value||!e.format)throw Error(s);return U(e.format,e.encoding||"UTF8",n)(e.value)}(0,r.hmacKey,this.Y))}}const Y=400;function S(t,e={}){return function(t,{baseUrl:e="https://api.pwnedpasswords.com",userAgent:n}={}){const s=Object.assign({},n?{headers:{"User-Agent":n}}:{}),o=`${e.replace(/\/$/g,"")}${t}`;return r(o,s).then((t=>{if(t.ok)return t.text();if(t.status===Y)return t.text().then((t=>{throw Error(t)}));throw Error(t.statusText)}))}("/range/"+encodeURIComponent(t),e).then((t=>t.split("\n").filter(Boolean))).then((t=>t.reduce(((t,e)=>{const[n,r]=e.split(":");return t[n]=parseInt(r,10),t}),{})))}function P(t,e={}){const n=new H("SHA-1","TEXT");n.update(t);const r=n.getHash("HEX",{outputUpper:!0}),s=r.slice(0,5),o=r.slice(5);return S(s,e).then((t=>t[o]||0))}function M(t,e={truncate:!0}){const{apiKey:n,baseUrl:r,userAgent:s}=e;return Promise.all([d(t,e),/^.+@.+$/.test(t)?m(t,{apiKey:n,baseUrl:r,userAgent:s}):null]).then((t=>({breaches:t[0],pastes:t[1]})))}export{f as RateLimitError,p as breach,d as breachedAccount,g as breaches,A as dataClasses,m as pasteAccount,P as pwnedPassword,S as pwnedPasswordRange,M as search};
 //# sourceMappingURL=hibp.module.js.map