pompelmi 0.18.0 → 0.19.0

package/dist/types/useFileScanner.d.ts

@@ -0,0 +1,15 @@
+import type { ScanReport } from './types';
+/**
+ * React Hook: handles <input type="file" onChange> with validation + scanning.
+ */
+export declare function useFileScanner(): {
+    results: {
+        file: File;
+        report: ScanReport;
+    }[];
+    errors: {
+        file: File;
+        error: string;
+    }[];
+    onChange: (e: React.ChangeEvent<HTMLInputElement>) => Promise<void>;
+};

package/dist/types/validate.d.ts

@@ -0,0 +1,7 @@
+/**
+ * Validates a File by MIME type and size (max 5 MB).
+ */
+export declare function validateFile(file: File): {
+    valid: boolean;
+    error?: string;
+};

package/dist/types/verdict.d.ts

@@ -0,0 +1,2 @@
+import type { YaraMatch, Verdict } from './types';
+export declare function mapMatchesToVerdict(matches?: YaraMatch[]): Verdict;

package/dist/types/yara/browser.d.ts

@@ -0,0 +1,7 @@
+import type { YaraEngine } from './index';
+/**
+ * Engine YARA lato browser — NO WASM.
+ * È un no-op sicuro: non produce match e non richiede dipendenze native.
+ * Se vuoi YARA in browser senza WASM, userai un adapter remoto (vedi step successivo).
+ */
+export declare function createBrowserEngine(): Promise<YaraEngine>;

package/dist/types/yara/index.d.ts

@@ -0,0 +1,17 @@
+export interface YaraMatch {
+    rule: string;
+    tags?: string[];
+}
+export interface YaraCompiled {
+    scan(data: Uint8Array): Promise<YaraMatch[]>;
+    scanFile?: (filePath: string) => Promise<YaraMatch[]>;
+    scanFileAsync?: (filePath: string) => Promise<YaraMatch[]>;
+}
+export interface YaraEngine {
+    compile(rulesSource: string): Promise<YaraCompiled>;
+    compileFile?: (rulesPath: string) => Promise<YaraCompiled>;
+}
+export declare function createYaraEngine(): Promise<YaraEngine>;
+export declare function createYaraScannerFromRules(rulesSource: string): Promise<YaraCompiled>;
+export declare function createYaraScannerFromFile(rulesPath: string): Promise<YaraCompiled>;
+export { createRemoteEngine } from './remote';

package/dist/types/yara/node.d.ts

@@ -0,0 +1,2 @@
+import type { YaraEngine } from './index';
+export declare function createNodeEngine(): Promise<YaraEngine>;

package/dist/types/yara/remote.d.ts

@@ -0,0 +1,10 @@
+import type { YaraEngine } from './index';
+export interface RemoteEngineOptions {
+    endpoint: string;
+    headers?: Record<string, string>;
+    rulesField?: string;
+    fileField?: string;
+    mode?: 'multipart' | 'json-base64';
+    rulesAsBase64?: boolean;
+}
+export declare function createRemoteEngine(opts: RemoteEngineOptions): Promise<YaraEngine>;

package/dist/types/yara-bridge.d.ts

@@ -0,0 +1,3 @@
+export declare function createScanner(rulesPath?: string): {
+    scan(bytes: Uint8Array): Promise<unknown>;
+};

package/dist/types/zip.d.ts

@@ -0,0 +1,13 @@
+export type ZipBudget = {
+    maxEntries: number;
+    maxDepth: number;
+    maxTotalUncompressed: number;
+    maxPerEntryUncompressed: number;
+    maxCompressionRatio: number;
+};
+export type ZipEntry = {
+    path: string;
+    depth: number;
+    data: Uint8Array;
+};
+export declare function iterateZip(buffer: Uint8Array, budget: ZipBudget, depth?: number): AsyncGenerator<ZipEntry>;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "pompelmi",
-  "version": "0.18.0",
+  "version": "0.19.0",
   "description": "RFI-safe file uploads for Node.js — Express/Koa/Next.js middleware with deep ZIP inspection, MIME/size checks, and optional YARA scanning.",
   "main": "./dist/pompelmi.cjs",
   "module": "./dist/pompelmi.esm.js",