react-native-security-suite 0.9.21 → 1.0.0-rc.1

package/lib/module/native/bridge.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["NativeModules","Platform","LINKING_ERROR","select","ios","default","getNativeModule","module","SecuritySuite","Proxy","get","Error"],"sourceRoot":"../../../src","sources":["native/bridge.ts"],"mappings":";;AAAA,SAASA,aAAa,EAAEC,QAAQ,QAAQ,cAAc;AAEtD,MAAMC,aAAa,GACjB,sFAAsF,GACtFD,QAAQ,CAACE,MAAM,CAAC;EAAEC,GAAG,EAAE,gCAAgC;EAAEC,OAAO,EAAE;AAAG,CAAC,CAAC,GACvE,sDAAsD,GACtD,6CAA6C;AAgB/C,OAAO,SAASC,eAAeA,CAAA,EAA8B;EAC3D,MAAMC,MAAM,GAAGP,aAAa,CAACQ,aAEhB;EAEb,IAAID,MAAM,EAAE;IACV,OAAOA,MAAM;EACf;EAEA,OAAO,IAAIE,KAAK,CAAC,CAAC,CAAC,EAA+B;IAChDC,GAAGA,CAAA,EAAG;MACJ,MAAM,IAAIC,KAAK,CAACT,aAAa,CAAC;IAChC;EACF,CAAC,CAAC;AACJ","ignoreList":[]}

package/lib/module/network/index.js

@@ -0,0 +1,3 @@
+/** Phase 2+ namespace placeholder — fetch remains on legacy export for v0.9 compat. */
+"use strict";
+//# sourceMappingURL=index.js.map

package/lib/module/network/index.js.map

@@ -0,0 +1 @@
+{"version":3,"names":[],"sourceRoot":"../../../src","sources":["network/index.ts"],"mappings":"AAAA;AAAA","ignoreList":[]}

package/lib/module/risk/score.js

@@ -0,0 +1,32 @@
+"use strict";
+
+export function computeRiskScore(input) {
+  let riskScore = 0;
+  if (input.isRooted || input.isJailbroken) {
+    riskScore += 40;
+  }
+  if (input.runtime.fridaDetected) {
+    riskScore += 40;
+  }
+  if (input.runtime.xposedDetected) {
+    riskScore += 40;
+  }
+  if (input.runtime.substrateDetected) {
+    riskScore += 40;
+  }
+  if (input.runtime.debuggerAttached) {
+    riskScore += 20;
+  }
+  if (input.environment.isEmulator || input.environment.isSimulator) {
+    riskScore += 20;
+  }
+  if (input.app.tampered) {
+    riskScore += 50;
+  }
+  const riskLevel = riskScore >= 70 ? 'high' : riskScore >= 30 ? 'medium' : 'low';
+  return {
+    riskScore: Math.min(100, riskScore),
+    riskLevel
+  };
+}
+//# sourceMappingURL=score.js.map

package/lib/module/risk/score.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["computeRiskScore","input","riskScore","isRooted","isJailbroken","runtime","fridaDetected","xposedDetected","substrateDetected","debuggerAttached","environment","isEmulator","isSimulator","app","tampered","riskLevel","Math","min"],"sourceRoot":"../../../src","sources":["risk/score.ts"],"mappings":";;AAOA,OAAO,SAASA,gBAAgBA,CAACC,KAMhC,EAA+C;EAC9C,IAAIC,SAAS,GAAG,CAAC;EAEjB,IAAID,KAAK,CAACE,QAAQ,IAAIF,KAAK,CAACG,YAAY,EAAE;IACxCF,SAAS,IAAI,EAAE;EACjB;EAEA,IAAID,KAAK,CAACI,OAAO,CAACC,aAAa,EAAE;IAC/BJ,SAAS,IAAI,EAAE;EACjB;EAEA,IAAID,KAAK,CAACI,OAAO,CAACE,cAAc,EAAE;IAChCL,SAAS,IAAI,EAAE;EACjB;EAEA,IAAID,KAAK,CAACI,OAAO,CAACG,iBAAiB,EAAE;IACnCN,SAAS,IAAI,EAAE;EACjB;EAEA,IAAID,KAAK,CAACI,OAAO,CAACI,gBAAgB,EAAE;IAClCP,SAAS,IAAI,EAAE;EACjB;EAEA,IAAID,KAAK,CAACS,WAAW,CAACC,UAAU,IAAIV,KAAK,CAACS,WAAW,CAACE,WAAW,EAAE;IACjEV,SAAS,IAAI,EAAE;EACjB;EAEA,IAAID,KAAK,CAACY,GAAG,CAACC,QAAQ,EAAE;IACtBZ,SAAS,IAAI,EAAE;EACjB;EAEA,MAAMa,SAAoB,GACxBb,SAAS,IAAI,EAAE,GAAG,MAAM,GAAGA,SAAS,IAAI,EAAE,GAAG,QAAQ,GAAG,KAAK;EAE/D,OAAO;IAAEA,SAAS,EAAEc,IAAI,CAACC,GAAG,CAAC,GAAG,EAAEf,SAAS,CAAC;IAAEa;EAAU,CAAC;AAC3D","ignoreList":[]}

package/lib/module/runtime/index.js

@@ -0,0 +1,27 @@
+"use strict";
+
+import { getNativeModule } from "../native/bridge.js";
+function parseRuntimeReport(raw) {
+  const report = {
+    debuggerAttached: Boolean(raw.debuggerAttached),
+    fridaDetected: Boolean(raw.fridaDetected),
+    suspiciousLibraries: Array.isArray(raw.suspiciousLibraries) ? raw.suspiciousLibraries.filter(item => typeof item === 'string') : [],
+    suspiciousPorts: Array.isArray(raw.suspiciousPorts) ? raw.suspiciousPorts.filter(item => typeof item === 'number') : []
+  };
+  if (raw.xposedDetected !== undefined) {
+    report.xposedDetected = Boolean(raw.xposedDetected);
+  }
+  if (raw.substrateDetected !== undefined) {
+    report.substrateDetected = Boolean(raw.substrateDetected);
+  }
+  if (raw.magiskDetected !== undefined) {
+    report.magiskDetected = Boolean(raw.magiskDetected);
+  }
+  return report;
+}
+export const RuntimeSecurity = {
+  detect() {
+    return getNativeModule().runtimeDetect().then(result => parseRuntimeReport(result));
+  }
+};
+//# sourceMappingURL=index.js.map

package/lib/module/runtime/index.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["getNativeModule","parseRuntimeReport","raw","report","debuggerAttached","Boolean","fridaDetected","suspiciousLibraries","Array","isArray","filter","item","suspiciousPorts","xposedDetected","undefined","substrateDetected","magiskDetected","RuntimeSecurity","detect","runtimeDetect","then","result"],"sourceRoot":"../../../src","sources":["runtime/index.ts"],"mappings":";;AAAA,SAASA,eAAe,QAAQ,qBAAkB;AAGlD,SAASC,kBAAkBA,CAACC,GAA4B,EAAuB;EAC7E,MAAMC,MAA2B,GAAG;IAClCC,gBAAgB,EAAEC,OAAO,CAACH,GAAG,CAACE,gBAAgB,CAAC;IAC/CE,aAAa,EAAED,OAAO,CAACH,GAAG,CAACI,aAAa,CAAC;IACzCC,mBAAmB,EAAEC,KAAK,CAACC,OAAO,CAACP,GAAG,CAACK,mBAAmB,CAAC,GACvDL,GAAG,CAACK,mBAAmB,CAACG,MAAM,CAC3BC,IAAI,IAAqB,OAAOA,IAAI,KAAK,QAC5C,CAAC,GACD,EAAE;IACNC,eAAe,EAAEJ,KAAK,CAACC,OAAO,CAACP,GAAG,CAACU,eAAe,CAAC,GAC/CV,GAAG,CAACU,eAAe,CAACF,MAAM,CACvBC,IAAI,IAAqB,OAAOA,IAAI,KAAK,QAC5C,CAAC,GACD;EACN,CAAC;EAED,IAAIT,GAAG,CAACW,cAAc,KAAKC,SAAS,EAAE;IACpCX,MAAM,CAACU,cAAc,GAAGR,OAAO,CAACH,GAAG,CAACW,cAAc,CAAC;EACrD;EAEA,IAAIX,GAAG,CAACa,iBAAiB,KAAKD,SAAS,EAAE;IACvCX,MAAM,CAACY,iBAAiB,GAAGV,OAAO,CAACH,GAAG,CAACa,iBAAiB,CAAC;EAC3D;EAEA,IAAIb,GAAG,CAACc,cAAc,KAAKF,SAAS,EAAE;IACpCX,MAAM,CAACa,cAAc,GAAGX,OAAO,CAACH,GAAG,CAACc,cAAc,CAAC;EACrD;EAEA,OAAOb,MAAM;AACf;AAEA,OAAO,MAAMc,eAAe,GAAG;EAC7BC,MAAMA,CAAA,EAAiC;IACrC,OAAOlB,eAAe,CAAC,CAAC,CACrBmB,aAAa,CAAC,CAAC,CACfC,IAAI,CAAEC,MAAM,IAAKpB,kBAAkB,CAACoB,MAAM,CAAC,CAAC;EACjD;AACF,CAAC","ignoreList":[]}

package/lib/module/screen/index.js

@@ -0,0 +1,5 @@
+"use strict";
+
+/** Phase 2+ namespace placeholder — SecureView remains on legacy export for v0.9 compat. */
+export { SecureView } from "../SecureView.js";
+//# sourceMappingURL=index.js.map

package/lib/module/screen/index.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["SecureView"],"sourceRoot":"../../../src","sources":["screen/index.ts"],"mappings":";;AAAA;AACA,SAASA,UAAU,QAAQ,kBAAe","ignoreList":[]}

package/lib/module/securitySuite/index.js

@@ -0,0 +1,38 @@
+"use strict";
+
+import { Platform } from 'react-native';
+import { AppIntegrity } from "../integrity/index.js";
+import { DeviceSecurity } from "../device/index.js";
+import { RuntimeSecurity } from "../runtime/index.js";
+import { computeRiskScore } from "../risk/score.js";
+export const SecuritySuite = {
+  async getSecurityReport() {
+    const [runtime, app, environment, isCompromised] = await Promise.all([RuntimeSecurity.detect(), AppIntegrity.verify(), DeviceSecurity.getEnvironment(), DeviceSecurity.isCompromised()]);
+    const isRooted = Platform.OS === 'android' && isCompromised;
+    const isJailbroken = Platform.OS === 'ios' && isCompromised;
+    const {
+      riskScore,
+      riskLevel
+    } = computeRiskScore({
+      isRooted,
+      isJailbroken,
+      runtime,
+      app,
+      environment
+    });
+    return {
+      device: {
+        isRooted,
+        isJailbroken,
+        isEmulator: environment.isEmulator,
+        isSimulator: environment.isSimulator,
+        environmentIndicators: environment.indicators
+      },
+      runtime,
+      app,
+      riskScore,
+      riskLevel
+    };
+  }
+};
+//# sourceMappingURL=index.js.map

package/lib/module/securitySuite/index.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["Platform","AppIntegrity","DeviceSecurity","RuntimeSecurity","computeRiskScore","SecuritySuite","getSecurityReport","runtime","app","environment","isCompromised","Promise","all","detect","verify","getEnvironment","isRooted","OS","isJailbroken","riskScore","riskLevel","device","isEmulator","isSimulator","environmentIndicators","indicators"],"sourceRoot":"../../../src","sources":["securitySuite/index.ts"],"mappings":";;AAAA,SAASA,QAAQ,QAAQ,cAAc;AAEvC,SAASC,YAAY,QAAQ,uBAAc;AAC3C,SAASC,cAAc,QAAQ,oBAAW;AAC1C,SAASC,eAAe,QAAQ,qBAAY;AAC5C,SAASC,gBAAgB,QAAQ,kBAAe;AAGhD,OAAO,MAAMC,aAAa,GAAG;EAC3B,MAAMC,iBAAiBA,CAAA,EAA4B;IACjD,MAAM,CAACC,OAAO,EAAEC,GAAG,EAAEC,WAAW,EAAEC,aAAa,CAAC,GAAG,MAAMC,OAAO,CAACC,GAAG,CAAC,CACnET,eAAe,CAACU,MAAM,CAAC,CAAC,EACxBZ,YAAY,CAACa,MAAM,CAAC,CAAC,EACrBZ,cAAc,CAACa,cAAc,CAAC,CAAC,EAC/Bb,cAAc,CAACQ,aAAa,CAAC,CAAC,CAC/B,CAAC;IAEF,MAAMM,QAAQ,GAAGhB,QAAQ,CAACiB,EAAE,KAAK,SAAS,IAAIP,aAAa;IAC3D,MAAMQ,YAAY,GAAGlB,QAAQ,CAACiB,EAAE,KAAK,KAAK,IAAIP,aAAa;IAE3D,MAAM;MAAES,SAAS;MAAEC;IAAU,CAAC,GAAGhB,gBAAgB,CAAC;MAChDY,QAAQ;MACRE,YAAY;MACZX,OAAO;MACPC,GAAG;MACHC;IACF,CAAC,CAAC;IAEF,OAAO;MACLY,MAAM,EAAE;QACNL,QAAQ;QACRE,YAAY;QACZI,UAAU,EAAEb,WAAW,CAACa,UAAU;QAClCC,WAAW,EAAEd,WAAW,CAACc,WAAW;QACpCC,qBAAqB,EAAEf,WAAW,CAACgB;MACrC,CAAC;MACDlB,OAAO;MACPC,GAAG;MACHW,SAAS;MACTC;IACF,CAAC;EACH;AACF,CAAC","ignoreList":[]}

package/lib/module/storage/index.js

@@ -0,0 +1,3 @@
+/** Phase 2+ namespace placeholder — SecureStorage remains on the legacy export for v0.9 compat. */
+"use strict";
+//# sourceMappingURL=index.js.map

package/lib/module/storage/index.js.map

@@ -0,0 +1 @@
+{"version":3,"names":[],"sourceRoot":"../../../src","sources":["storage/index.ts"],"mappings":"AAAA;AAAA","ignoreList":[]}

package/lib/module/types/detection.js

@@ -0,0 +1,2 @@
+"use strict";
+//# sourceMappingURL=detection.js.map

package/lib/module/types/detection.js.map

@@ -0,0 +1 @@
+{"version":3,"names":[],"sourceRoot":"../../../src","sources":["types/detection.ts"],"mappings":"","ignoreList":[]}

package/lib/typescript/commonjs/docs/api-v1-proposal.d.ts

@@ -0,0 +1,215 @@
+/**
+ * Proposed v1.0 TypeScript API — reference implementation for integrators.
+ * This file documents the target public surface; not yet wired to native code.
+ */
+export declare enum SecurityErrorCode {
+    ROOT_DETECTED = "ROOT_DETECTED",
+    JAILBREAK_DETECTED = "JAILBREAK_DETECTED",
+    FRIDA_DETECTED = "FRIDA_DETECTED",
+    EMULATOR_DETECTED = "EMULATOR_DETECTED",
+    APP_TAMPERED = "APP_TAMPERED",
+    SSL_PINNING_FAILED = "SSL_PINNING_FAILED",
+    SECURE_STORAGE_UNAVAILABLE = "SECURE_STORAGE_UNAVAILABLE",
+    CRYPTO_KEY_NOT_FOUND = "CRYPTO_KEY_NOT_FOUND",
+    BIOMETRIC_AUTH_FAILED = "BIOMETRIC_AUTH_FAILED",
+    JWS_SIGNING_FAILED = "JWS_SIGNING_FAILED"
+}
+export declare class SecurityError extends Error {
+    readonly code: SecurityErrorCode;
+    readonly details?: Record<string, unknown> | undefined;
+    constructor(code: SecurityErrorCode, message: string, details?: Record<string, unknown> | undefined);
+}
+export interface DeviceEnvironment {
+    isEmulator: boolean;
+    isSimulator: boolean;
+    indicators: string[];
+}
+export interface DeviceSecurityNamespace {
+    /** @deprecated alias — use isCompromised() */
+    hasSecurityRisk(): Promise<boolean>;
+    isCompromised(): Promise<boolean>;
+    isRooted(): Promise<boolean>;
+    isJailbroken(): Promise<boolean>;
+    getEnvironment(): Promise<DeviceEnvironment>;
+}
+export interface RuntimeThreatReport {
+    debuggerAttached: boolean;
+    fridaDetected: boolean;
+    xposedDetected?: boolean;
+    substrateDetected?: boolean;
+    suspiciousLibraries: string[];
+    suspiciousPorts: number[];
+}
+export interface RuntimeSecurityNamespace {
+    detect(): Promise<RuntimeThreatReport>;
+}
+export type BuildType = 'debug' | 'release' | 'testflight';
+export interface AppIntegrityReport {
+    validSignature: boolean;
+    installerTrusted?: boolean;
+    debuggable: boolean;
+    tampered: boolean;
+    buildType: BuildType;
+}
+export interface AppIntegrityNamespace {
+    verify(): Promise<AppIntegrityReport>;
+    requestPlayIntegrity?(options: {
+        nonce: string;
+    }): Promise<{
+        token: string;
+    }>;
+    requestAppAttest?(options: {
+        challenge: string;
+    }): Promise<{
+        keyId: string;
+        attestationObject: string;
+    }>;
+}
+export type KeychainAccessibility = 'whenUnlocked' | 'whenUnlockedThisDeviceOnly' | 'afterFirstUnlock' | 'whenPasscodeSetThisDeviceOnly';
+export interface SecureStorageOptions {
+    service?: string;
+    requireAuthentication?: boolean;
+    accessibility?: KeychainAccessibility;
+    useStrongBox?: boolean;
+    authenticationPrompt?: string;
+}
+export interface SecureStorageNamespace {
+    setItem(key: string, value: string, options?: SecureStorageOptions): Promise<void>;
+    getItem(key: string, options?: SecureStorageOptions): Promise<string | null>;
+    removeItem(key: string, options?: SecureStorageOptions): Promise<void>;
+    getAllKeys(options?: Pick<SecureStorageOptions, 'service'>): Promise<string[]>;
+    clear(options?: Pick<SecureStorageOptions, 'service'>): Promise<void>;
+    multiSet(pairs: Array<[string, string]>, options?: SecureStorageOptions): Promise<void>;
+    multiGet(keys: string[], options?: SecureStorageOptions): Promise<readonly [string, string | null][]>;
+    multiRemove(keys: string[], options?: SecureStorageOptions): Promise<void>;
+}
+export interface CryptoNamespace {
+    randomBytes(length: number): Promise<string>;
+    randomUUID(): Promise<string>;
+    getPublicKey(options?: {
+        alias?: string;
+        algorithm?: 'X25519' | 'P-256';
+    }): Promise<string>;
+    establishSharedKey(serverPublicKey: string, options?: {
+        alias?: string;
+        ephemeral?: boolean;
+        returnSharedKey?: boolean;
+    }): Promise<string | void>;
+    encrypt(plaintext: string, options?: {
+        alias?: string;
+    }): Promise<string>;
+    decrypt(ciphertext: string, options?: {
+        alias?: string;
+    }): Promise<string>;
+    generateKeyPair(options: {
+        alias: string;
+        algorithm: 'X25519' | 'P-256' | 'Ed25519';
+    }): Promise<void>;
+    rotateKey(alias: string): Promise<void>;
+    deleteKey(alias: string): Promise<void>;
+}
+export type JwsAlgorithm = 'HS256' | 'HS384' | 'HS512' | 'ES256' | 'EdDSA';
+export interface ReplayProtectedHeaders {
+    timestamp: number;
+    nonce: string;
+    request_id: string;
+}
+export interface JWSNamespace {
+    createReplayProtectedHeaders(): Promise<ReplayProtectedHeaders>;
+    generate(options: {
+        algorithm?: JwsAlgorithm;
+        secret?: string;
+        keyAlias?: string;
+        payload?: string | Record<string, unknown>;
+        headers?: Record<string, string | number | boolean | null>;
+        detached?: boolean;
+        canonical?: boolean;
+    }): Promise<string>;
+    generateKeyPair(options: {
+        alias: string;
+        algorithm: 'ES256' | 'EdDSA';
+    }): Promise<void>;
+    exportPublicKey(alias: string): Promise<string>;
+}
+export interface SslPinningConfig {
+    validDomains: string[];
+    pins: {
+        primary: string[];
+        backup?: string[];
+    };
+    certificateTransparency?: boolean;
+}
+export interface NetworkLoggerConfig {
+    enabled: boolean;
+    redactHeaders?: string[];
+    redactBodyFields?: string[];
+}
+export interface SecureNetworkNamespace {
+    fetch(url: string, options: {
+        method?: 'GET' | 'POST' | 'PUT' | 'PATCH' | 'DELETE';
+        headers?: Record<string, string>;
+        body?: string | Record<string, unknown>;
+        timeout?: number;
+        sslPinning?: SslPinningConfig;
+        /** @deprecated use sslPinning */
+        certificates?: string[];
+        /** @deprecated use sslPinning */
+        validDomains?: string[];
+        jws?: Parameters<JWSNamespace['generate']>[0] & {
+            headerName?: string;
+        };
+    }): Promise<{
+        status: number;
+        response: string;
+        json(): Promise<unknown>;
+        duration: string;
+    }>;
+}
+export interface ScreenSecurityOptions {
+    screenshots?: boolean;
+    screenRecording?: boolean;
+    appSwitcherBlur?: boolean;
+}
+export interface ScreenSecurityNamespace {
+    enable(options: ScreenSecurityOptions): Promise<void>;
+    disable(): Promise<void>;
+    isScreenRecording(): Promise<boolean>;
+}
+export interface SecureClipboardNamespace {
+    setString(value: string, options?: {
+        expiresInMs?: number;
+    }): Promise<void>;
+    clear(): Promise<void>;
+}
+export type RiskLevel = 'low' | 'medium' | 'high';
+export interface SecurityReport {
+    device: {
+        isRooted: boolean;
+        isJailbroken: boolean;
+        isEmulator: boolean;
+        isSimulator: boolean;
+        environmentIndicators: string[];
+    };
+    runtime: RuntimeThreatReport;
+    app: AppIntegrityReport;
+    riskScore: number;
+    riskLevel: RiskLevel;
+}
+export interface SecuritySuiteConfig {
+    secureNetwork?: {
+        requireHttps?: boolean;
+        logger?: NetworkLoggerConfig;
+    };
+    secureStorage?: {
+        accessibility?: KeychainAccessibility;
+        requireAuthentication?: boolean;
+    };
+    crypto?: {
+        returnSharedKey?: boolean;
+    };
+}
+export interface SecuritySuiteNamespace {
+    configure(config: SecuritySuiteConfig): void;
+    getSecurityReport(): Promise<SecurityReport>;
+}
+//# sourceMappingURL=api-v1-proposal.d.ts.map

package/lib/typescript/commonjs/docs/api-v1-proposal.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-v1-proposal.d.ts","sourceRoot":"","sources":["../../../../docs/api-v1-proposal.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAIH,oBAAY,iBAAiB;IAC3B,aAAa,kBAAkB;IAC/B,kBAAkB,uBAAuB;IACzC,cAAc,mBAAmB;IACjC,iBAAiB,sBAAsB;IACvC,YAAY,iBAAiB;IAC7B,kBAAkB,uBAAuB;IACzC,0BAA0B,+BAA+B;IACzD,oBAAoB,yBAAyB;IAC7C,qBAAqB,0BAA0B;IAC/C,kBAAkB,uBAAuB;CAC1C;AAED,qBAAa,aAAc,SAAQ,KAAK;aAEpB,IAAI,EAAE,iBAAiB;aAEvB,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;gBAFjC,IAAI,EAAE,iBAAiB,EACvC,OAAO,EAAE,MAAM,EACC,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,YAAA;CAKpD;AAID,MAAM,WAAW,iBAAiB;IAChC,UAAU,EAAE,OAAO,CAAC;IACpB,WAAW,EAAE,OAAO,CAAC;IACrB,UAAU,EAAE,MAAM,EAAE,CAAC;CACtB;AAED,MAAM,WAAW,uBAAuB;IACtC,8CAA8C;IAC9C,eAAe,IAAI,OAAO,CAAC,OAAO,CAAC,CAAC;IACpC,aAAa,IAAI,OAAO,CAAC,OAAO,CAAC,CAAC;IAClC,QAAQ,IAAI,OAAO,CAAC,OAAO,CAAC,CAAC;IAC7B,YAAY,IAAI,OAAO,CAAC,OAAO,CAAC,CAAC;IACjC,cAAc,IAAI,OAAO,CAAC,iBAAiB,CAAC,CAAC;CAC9C;AAID,MAAM,WAAW,mBAAmB;IAClC,gBAAgB,EAAE,OAAO,CAAC;IAC1B,aAAa,EAAE,OAAO,CAAC;IACvB,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,iBAAiB,CAAC,EAAE,OAAO,CAAC;IAC5B,mBAAmB,EAAE,MAAM,EAAE,CAAC;IAC9B,eAAe,EAAE,MAAM,EAAE,CAAC;CAC3B;AAED,MAAM,WAAW,wBAAwB;IACvC,MAAM,IAAI,OAAO,CAAC,mBAAmB,CAAC,CAAC;CACxC;AAID,MAAM,MAAM,SAAS,GAAG,OAAO,GAAG,SAAS,GAAG,YAAY,CAAC;AAE3D,MAAM,WAAW,kBAAkB;IACjC,cAAc,EAAE,OAAO,CAAC;IACxB,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,UAAU,EAAE,OAAO,CAAC;IACpB,QAAQ,EAAE,OAAO,CAAC;IAClB,SAAS,EAAE,SAAS,CAAC;CACtB;AAED,MAAM,WAAW,qBAAqB;IACpC,MAAM,IAAI,OAAO,CAAC,kBAAkB,CAAC,CAAC;IACtC,oBAAoB,CAAC,CAAC,OAAO,EAAE;QAAE,KAAK,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC;QAAE,KAAK,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IAC9E,gBAAgB,CAAC,CAAC,OAAO,EAAE;QAAE,SAAS,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC;QACzD,KAAK,EAAE,MAAM,CAAC;QACd,iBAAiB,EAAE,MAAM,CAAC;KAC3B,CAAC,CAAC;CACJ;AAID,MAAM,MAAM,qBAAqB,GAC7B,cAAc,GACd,4BAA4B,GAC5B,kBAAkB,GAClB,+BAA+B,CAAC;AAEpC,MAAM,WAAW,oBAAoB;IACnC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,qBAAqB,CAAC,EAAE,OAAO,CAAC;IAChC,aAAa,CAAC,EAAE,qBAAqB,CAAC;IACtC,YAAY,CAAC,EAAE,OAAO,CAAC;IACvB,oBAAoB,CAAC,EAAE,MAAM,CAAC;CAC/B;AAED,MAAM,WAAW,sBAAsB;IACrC,OAAO,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,oBAAoB,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACnF,OAAO,CAAC,GAAG,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,oBAAoB,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC;IAC7E,UAAU,CAAC,GAAG,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,oBAAoB,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACvE,UAAU,CAAC,OAAO,CAAC,EAAE,IAAI,CAAC,oBAAoB,EAAE,SAAS,CAAC,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;IAC/E,KAAK,CAAC,OAAO,CAAC,EAAE,IAAI,CAAC,oBAAoB,EAAE,SAAS,CAAC,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACtE,QAAQ,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,EAAE,OAAO,CAAC,EAAE,oBAAoB,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACxF,QAAQ,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE,OAAO,CAAC,EAAE,oBAAoB,GAAG,OAAO,CAAC,SAAS,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC,EAAE,CAAC,CAAC;IACtG,WAAW,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE,OAAO,CAAC,EAAE,oBAAoB,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;CAC5E;AAID,MAAM,WAAW,eAAe;IAC9B,WAAW,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAC7C,UAAU,IAAI,OAAO,CAAC,MAAM,CAAC,CAAC;IAC9B,YAAY,CAAC,OAAO,CAAC,EAAE;QAAE,KAAK,CAAC,EAAE,MAAM,CAAC;QAAC,SAAS,CAAC,EAAE,QAAQ,GAAG,OAAO,CAAA;KAAE,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAC5F,kBAAkB,CAChB,eAAe,EAAE,MAAM,EACvB,OAAO,CAAC,EAAE;QAAE,KAAK,CAAC,EAAE,MAAM,CAAC;QAAC,SAAS,CAAC,EAAE,OAAO,CAAC;QAAC,eAAe,CAAC,EAAE,OAAO,CAAA;KAAE,GAC3E,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC;IAC1B,OAAO,CAAC,SAAS,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE;QAAE,KAAK,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAC1E,OAAO,CAAC,UAAU,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE;QAAE,KAAK,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAC3E,eAAe,CAAC,OAAO,EAAE;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,SAAS,EAAE,QAAQ,GAAG,OAAO,GAAG,SAAS,CAAA;KAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACtG,SAAS,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACxC,SAAS,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;CACzC;AAID,MAAM,MAAM,YAAY,GAAG,OAAO,GAAG,OAAO,GAAG,OAAO,GAAG,OAAO,GAAG,OAAO,CAAC;AAE3E,MAAM,WAAW,sBAAsB;IACrC,SAAS,EAAE,MAAM,CAAC;IAClB,KAAK,EAAE,MAAM,CAAC;IACd,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,YAAY;IAC3B,4BAA4B,IAAI,OAAO,CAAC,sBAAsB,CAAC,CAAC;IAChE,QAAQ,CAAC,OAAO,EAAE;QAChB,SAAS,CAAC,EAAE,YAAY,CAAC;QACzB,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,OAAO,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QAC3C,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,OAAO,GAAG,IAAI,CAAC,CAAC;QAC3D,QAAQ,CAAC,EAAE,OAAO,CAAC;QACnB,SAAS,CAAC,EAAE,OAAO,CAAC;KACrB,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IACpB,eAAe,CAAC,OAAO,EAAE;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,SAAS,EAAE,OAAO,GAAG,OAAO,CAAA;KAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACzF,eAAe,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;CACjD;AAID,MAAM,WAAW,gBAAgB;IAC/B,YAAY,EAAE,MAAM,EAAE,CAAC;IACvB,IAAI,EAAE;QACJ,OAAO,EAAE,MAAM,EAAE,CAAC;QAClB,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;KACnB,CAAC;IACF,uBAAuB,CAAC,EAAE,OAAO,CAAC;CACnC;AAED,MAAM,WAAW,mBAAmB;IAClC,OAAO,EAAE,OAAO,CAAC;IACjB,aAAa,CAAC,EAAE,MAAM,EAAE,CAAC;IACzB,gBAAgB,CAAC,EAAE,MAAM,EAAE,CAAC;CAC7B;AAED,MAAM,WAAW,sBAAsB;IACrC,KAAK,CACH,GAAG,EAAE,MAAM,EACX,OAAO,EAAE;QACP,MAAM,CAAC,EAAE,KAAK,GAAG,MAAM,GAAG,KAAK,GAAG,OAAO,GAAG,QAAQ,CAAC;QACrD,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QACjC,IAAI,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QACxC,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,UAAU,CAAC,EAAE,gBAAgB,CAAC;QAC9B,iCAAiC;QACjC,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;QACxB,iCAAiC;QACjC,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;QACxB,GAAG,CAAC,EAAE,UAAU,CAAC,YAAY,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG;YAAE,UAAU,CAAC,EAAE,MAAM,CAAA;SAAE,CAAC;KACzE,GACA,OAAO,CAAC;QACT,MAAM,EAAE,MAAM,CAAC;QACf,QAAQ,EAAE,MAAM,CAAC;QACjB,IAAI,IAAI,OAAO,CAAC,OAAO,CAAC,CAAC;QACzB,QAAQ,EAAE,MAAM,CAAC;KAClB,CAAC,CAAC;CACJ;AAID,MAAM,WAAW,qBAAqB;IACpC,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,eAAe,CAAC,EAAE,OAAO,CAAC;CAC3B;AAED,MAAM,WAAW,uBAAuB;IACtC,MAAM,CAAC,OAAO,EAAE,qBAAqB,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACtD,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IACzB,iBAAiB,IAAI,OAAO,CAAC,OAAO,CAAC,CAAC;CACvC;AAID,MAAM,WAAW,wBAAwB;IACvC,SAAS,CAAC,KAAK,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE;QAAE,WAAW,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAC5E,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;CACxB;AAID,MAAM,MAAM,SAAS,GAAG,KAAK,GAAG,QAAQ,GAAG,MAAM,CAAC;AAElD,MAAM,WAAW,cAAc;IAC7B,MAAM,EAAE;QACN,QAAQ,EAAE,OAAO,CAAC;QAClB,YAAY,EAAE,OAAO,CAAC;QACtB,UAAU,EAAE,OAAO,CAAC;QACpB,WAAW,EAAE,OAAO,CAAC;QACrB,qBAAqB,EAAE,MAAM,EAAE,CAAC;KACjC,CAAC;IACF,OAAO,EAAE,mBAAmB,CAAC;IAC7B,GAAG,EAAE,kBAAkB,CAAC;IACxB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,SAAS,CAAC;CACtB;AAED,MAAM,WAAW,mBAAmB;IAClC,aAAa,CAAC,EAAE;QAAE,YAAY,CAAC,EAAE,OAAO,CAAC;QAAC,MAAM,CAAC,EAAE,mBAAmB,CAAA;KAAE,CAAC;IACzE,aAAa,CAAC,EAAE;QAAE,aAAa,CAAC,EAAE,qBAAqB,CAAC;QAAC,qBAAqB,CAAC,EAAE,OAAO,CAAA;KAAE,CAAC;IAC3F,MAAM,CAAC,EAAE;QAAE,eAAe,CAAC,EAAE,OAAO,CAAA;KAAE,CAAC;CACxC;AAED,MAAM,WAAW,sBAAsB;IACrC,SAAS,CAAC,MAAM,EAAE,mBAAmB,GAAG,IAAI,CAAC;IAC7C,iBAAiB,IAAI,OAAO,CAAC,cAAc,CAAC,CAAC;CAC9C"}

package/lib/typescript/commonjs/src/SecureView.d.ts

@@ -1,2 +1,2 @@
-export declare const SecureView: (props: any) => import("react/jsx-runtime").JSX.Element;
+export declare const SecureView: (props: any) => import("react").JSX.Element;
 //# sourceMappingURL=SecureView.d.ts.map

package/lib/typescript/commonjs/src/SecureView.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"SecureView.d.ts","sourceRoot":"","sources":["../../../../src/SecureView.tsx"],"names":[],"mappings":"AAwBA,eAAO,MAAM,UAAU,UAAW,GAAG,4CASpC,CAAC"}
+{"version":3,"file":"SecureView.d.ts","sourceRoot":"","sources":["../../../../src/SecureView.tsx"],"names":[],"mappings":"AAwBA,eAAO,MAAM,UAAU,GAAI,OAAO,GAAG,gCASpC,CAAC"}

package/lib/typescript/commonjs/src/clipboard/index.d.ts

@@ -0,0 +1,2 @@
+/** Phase 2+ namespace placeholder. */
+//# sourceMappingURL=index.d.ts.map

package/lib/typescript/commonjs/src/clipboard/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../../src/clipboard/index.ts"],"names":[],"mappings":"AAAA,sCAAsC"}

package/lib/typescript/commonjs/src/crypto/index.d.ts

@@ -0,0 +1,15 @@
+import type { CryptoOptions } from '../legacy/cryptoOptions';
+export interface EstablishSharedKeyOptions extends CryptoOptions {
+    /** @deprecated Prefer native-only flow; set true only for legacy compatibility. */
+    returnSharedKey?: boolean;
+}
+export declare const Crypto: {
+    getPublicKey(): Promise<string>;
+    /**
+     * Derives a shared encryption key natively without returning it to JavaScript.
+     * Call `encryptBySharedKey` / `decryptBySharedKey` afterward (legacy bridge methods).
+     */
+    establishSharedKey(serverPublicKey: string, options?: EstablishSharedKeyOptions): Promise<string | void>;
+};
+export type { CryptoOptions } from '../legacy/cryptoOptions';
+//# sourceMappingURL=index.d.ts.map

package/lib/typescript/commonjs/src/crypto/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../../src/crypto/index.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,yBAAyB,CAAC;AAc7D,MAAM,WAAW,yBAA0B,SAAQ,aAAa;IAC9D,mFAAmF;IACnF,eAAe,CAAC,EAAE,OAAO,CAAC;CAC3B;AAED,eAAO,MAAM,MAAM;oBACD,OAAO,CAAC,MAAM,CAAC;IAI/B;;;OAGG;wCAEgB,MAAM,YACb,yBAAyB,GAClC,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;CAc1B,CAAC;AAEF,YAAY,EAAE,aAAa,EAAE,MAAM,yBAAyB,CAAC"}

package/lib/typescript/commonjs/src/device/index.d.ts

@@ -0,0 +1,11 @@
+import type { DeviceEnvironment } from '../types/detection';
+export declare const DeviceSecurity: {
+    /** @deprecated Use `isCompromised()` or `SecuritySuite.getSecurityReport()`. */
+    hasSecurityRisk(): Promise<boolean>;
+    isCompromised(): Promise<boolean>;
+    isRooted(): Promise<boolean>;
+    isJailbroken(): Promise<boolean>;
+    getEnvironment(): Promise<DeviceEnvironment>;
+};
+export type { DeviceEnvironment };
+//# sourceMappingURL=index.d.ts.map

package/lib/typescript/commonjs/src/device/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../../src/device/index.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,oBAAoB,CAAC;AAY5D,eAAO,MAAM,cAAc;IACzB,gFAAgF;uBAC7D,OAAO,CAAC,OAAO,CAAC;qBAIlB,OAAO,CAAC,OAAO,CAAC;gBAIrB,OAAO,CAAC,OAAO,CAAC;oBAOZ,OAAO,CAAC,OAAO,CAAC;sBAOd,OAAO,CAAC,iBAAiB,CAAC;CAK7C,CAAC;AAEF,YAAY,EAAE,iBAAiB,EAAE,CAAC"}

package/lib/typescript/commonjs/src/errors.d.ts

@@ -0,0 +1,17 @@
+export declare enum SecurityErrorCode {
+    ROOT_DETECTED = "ROOT_DETECTED",
+    JAILBREAK_DETECTED = "JAILBREAK_DETECTED",
+    FRIDA_DETECTED = "FRIDA_DETECTED",
+    DEBUGGER_DETECTED = "DEBUGGER_DETECTED",
+    SSL_PINNING_FAILED = "SSL_PINNING_FAILED",
+    SECURE_STORAGE_UNAVAILABLE = "SECURE_STORAGE_UNAVAILABLE",
+    CRYPTO_KEY_NOT_FOUND = "CRYPTO_KEY_NOT_FOUND"
+}
+export declare class SecurityError extends Error {
+    readonly code: SecurityErrorCode;
+    readonly details?: Record<string, unknown>;
+    constructor(code: SecurityErrorCode, message: string, details?: Record<string, unknown>);
+}
+export declare function isSecurityError(error: unknown): error is SecurityError;
+export declare function mapNativeError(error: unknown): SecurityError | Error;
+//# sourceMappingURL=errors.d.ts.map

package/lib/typescript/commonjs/src/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../../../../src/errors.ts"],"names":[],"mappings":"AAAA,oBAAY,iBAAiB;IAC3B,aAAa,kBAAkB;IAC/B,kBAAkB,uBAAuB;IACzC,cAAc,mBAAmB;IACjC,iBAAiB,sBAAsB;IACvC,kBAAkB,uBAAuB;IACzC,0BAA0B,+BAA+B;IACzD,oBAAoB,yBAAyB;CAC9C;AAgBD,qBAAa,aAAc,SAAQ,KAAK;IACtC,QAAQ,CAAC,IAAI,EAAE,iBAAiB,CAAC;IACjC,QAAQ,CAAC,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;gBAGzC,IAAI,EAAE,iBAAiB,EACvB,OAAO,EAAE,MAAM,EACf,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;CAOpC;AAED,wBAAgB,eAAe,CAAC,KAAK,EAAE,OAAO,GAAG,KAAK,IAAI,aAAa,CAEtE;AAED,wBAAgB,cAAc,CAAC,KAAK,EAAE,OAAO,GAAG,aAAa,GAAG,KAAK,CAuCpE"}

package/lib/typescript/commonjs/src/helpers.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"helpers.d.ts","sourceRoot":"","sources":["../../../../src/helpers.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,YAAY,UAAW,MAAM,KAAG,OAO5C,CAAC;AAEF,eAAO,MAAM,SAAS,UAAW,MAAM,QAMtC,CAAC"}
+{"version":3,"file":"helpers.d.ts","sourceRoot":"","sources":["../../../../src/helpers.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,YAAY,GAAI,OAAO,MAAM,KAAG,OAO5C,CAAC;AAEF,eAAO,MAAM,SAAS,GAAI,OAAO,MAAM,QAMtC,CAAC"}

package/lib/typescript/commonjs/src/index.d.ts

@@ -1,4 +1,49 @@
+import { type CryptoOptions } from './legacy/cryptoOptions';
+import { type GenerateJWSOptions, type JwsFetchOptions } from './jws';
 export * from './SecureView';
+export type { GenerateJWSOptions, JwsAlgorithm, JwsFetchOptions, JwsHeaderValue, JwsHeaders, JwsPayload, } from './jws';
+export type { CryptoOptions, KeyAgreementAlgorithm, KeyType, EncryptionKeyAlgorithm, HmacAlgorithm, CipherAlgorithm, } from './legacy/cryptoOptions';
+export { SecurityError, SecurityErrorCode, mapNativeError, isSecurityError } from './errors';
+export { DeviceSecurity } from './device';
+export { RuntimeSecurity } from './runtime';
+export { AppIntegrity } from './integrity';
+export { Crypto } from './crypto';
+export { SecuritySuite } from './securitySuite';
+export type { RuntimeThreatReport, AppIntegrityReport, DeviceEnvironment, DeviceSecurityReport, SecurityReport, RiskLevel, BuildType, } from './types/detection';
+/** @deprecated Use `JwsHeaders` (optional `Record<string, JwsHeaderValue>`) instead. */
+export interface LegacyJwsHeaders {
+    kid: string;
+    request_id: string;
+    [key: string]: string;
+}
+export interface SslPinningOptions {
+    /** Base64-encoded SPKI SHA-256 hashes (with or without `sha256/` prefix). */
+    certificates: string[];
+    /** Allowed hostnames. Request host must match one of these before pinning is evaluated. */
+    validDomains: string[];
+}
+interface Header {
+    [key: string]: string;
+}
+export interface Options {
+    body?: string | object;
+    headers: Header;
+    method?: 'DELETE' | 'GET' | 'POST' | 'PUT' | 'PATCH';
+    timeout?: number;
+    /** SSL pinning configuration. Both certificates and validDomains are required together. */
+    certificates?: string[];
+    validDomains?: string[];
+    /** @deprecated Use `jws` instead. */
+    keyId?: string;
+    /** @deprecated Use `jws` instead. */
+    requestId?: string;
+    /**
+     * @deprecated Legacy signing secret. Use `jws.secret` instead.
+     */
+    secret?: string;
+    /** JWS request-signing configuration. */
+    jws?: JwsFetchOptions;
+}
 interface Response {
     status: number;
     url: string;
@@ -19,17 +64,6 @@ export interface ErrorResponse extends Response {
     message: string;
     code: string;
 }
-interface Header {
-    [key: string]: string;
-}
-export interface Options {
-    body?: string | object;
-    headers: Header;
-    method?: 'DELETE' | 'GET' | 'POST' | 'PUT';
-    certificates?: string[];
-    validDomains?: string[];
-    timeout?: number;
-}
 export interface FetchEventResponse {
     url: string;
     options: Options;
@@ -47,27 +81,46 @@ export interface FetchEventResponse {
         duration: string;
     };
 }
-declare const SecuritySuite: any;
+declare const NativeSecuritySuiteModule: any;
 export declare const getPublicKey: () => Promise<string>;
-export declare const getSharedKey: (serverPublicKey: string) => Promise<string>;
-export declare const encryptBySharedKey: (input: string) => Promise<string>;
-export declare const decryptBySharedKey: (input: string) => any;
+/**
+ * @deprecated Prefer `Crypto.establishSharedKey()` which keeps the derived key in native memory.
+ */
+export declare const getSharedKey: (serverPublicKey: string, options?: CryptoOptions) => Promise<string>;
+export declare const encryptBySharedKey: (input: string, options?: CryptoOptions) => Promise<string>;
+export declare const decryptBySharedKey: (input: string, options?: CryptoOptions) => Promise<string>;
+export declare const generateJWS: (options: GenerateJWSOptions) => Promise<string>;
+/**
+ * Local obfuscation only — NOT secure encryption. Requires an explicit secret.
+ * Never use for credentials, tokens, or PII at rest.
+ */
+export declare const obfuscate: (input: string, secret: string) => Promise<string>;
+export declare const deobfuscate: (input: string, secret: string) => Promise<string>;
 export declare const getDeviceId: () => Promise<string>;
-export declare const encrypt: (input: string, hardEncryption?: boolean, secretKey?: null) => Promise<string>;
-export declare const decrypt: (input: string, hardEncryption?: boolean, secretKey?: null) => Promise<string>;
+/**
+ * @deprecated Use `obfuscate()` with an explicit secret, or `SecureStorage` for at-rest data.
+ */
+export declare const encrypt: (input: string, hardEncryption?: boolean, secretKey?: string | null) => Promise<string>;
+/**
+ * @deprecated Use `deobfuscate()` with an explicit secret, or `SecureStorage` for at-rest data.
+ */
+export declare const decrypt: (input: string, hardEncryption?: boolean, secretKey?: string | null) => Promise<string>;
+/** Hardware-backed encrypted storage (Keychain on iOS, EncryptedSharedPreferences on Android). */
 export declare const SecureStorage: {
     setItem: (key: string, value: string) => Promise<void>;
     getItem: (key: string) => Promise<string | null>;
-    mergeItem: (key: string, value: string) => Promise<void>;
     removeItem: (key: string) => Promise<void>;
-    getAllKeys: () => Promise<readonly string[]>;
-    multiSet: (keyValuePairs: Array<Array<string>>) => Promise<void>;
-    multiGet: (keys: Array<string>) => Promise<readonly [string, string | null][]>;
-    multiMerge: (keyValuePairs: Array<Array<string>>) => Promise<void>;
-    multiRemove: (keys: Array<string>) => Promise<void>;
+    getAllKeys: () => Promise<string[]>;
     clear: () => Promise<void>;
+    multiSet: (keyValuePairs: Array<[string, string]>) => Promise<void>;
+    multiGet: (keys: string[]) => Promise<readonly [string, string | null][]>;
+    multiRemove: (keys: string[]) => Promise<void>;
+    /** @deprecated Use multiSet instead. */
+    mergeItem: (key: string, value: string) => Promise<void>;
+    /** @deprecated Use multiSet instead. */
+    multiMerge: (keyValuePairs: Array<[string, string]>) => Promise<void>;
 };
 export declare function fetch(url: string, options: Options, loggerIsEnabled?: boolean): Promise<SuccessResponse | ErrorResponse>;
 export declare function deviceHasSecurityRisk(): Promise<boolean>;
-export default SecuritySuite;
+export default NativeSecuritySuiteModule;
 //# sourceMappingURL=index.d.ts.map

package/lib/typescript/commonjs/src/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/index.tsx"],"names":[],"mappings":"AAIA,cAAc,cAAc,CAAC;AAK7B,UAAU,QAAQ;IAChB,MAAM,EAAE,MAAM,CAAC;IACf,GAAG,EAAE,MAAM,CAAC;IACZ,IAAI,EAAE,MAAM,OAAO,CAAC;QAAE,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAA;KAAE,CAAC,CAAC;IAC5C,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,eAAgB,SAAQ,QAAQ;IAC/C,QAAQ,EAAE,MAAM,CAAC;IACjB,YAAY,EAAE,OAAO,CAAC;QAAE,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAA;KAAE,CAAC,CAAC;CAC/C;AAED,MAAM,WAAW,aAAc,SAAQ,QAAQ;IAC7C,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,CAAC;CACd;AAED,UAAU,MAAM;IACd,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAAC;CACvB;AAED,MAAM,WAAW,OAAO;IACtB,IAAI,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IACvB,OAAO,EAAE,MAAM,CAAC;IAChB,MAAM,CAAC,EAAE,QAAQ,GAAG,KAAK,GAAG,MAAM,GAAG,KAAK,CAAC;IAC3C,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;IACxB,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;IACxB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,kBAAkB;IACjC,GAAG,EAAE,MAAM,CAAC;IACZ,OAAO,EAAE,OAAO,CAAC;IACjB,QAAQ,EAAE;QACR,QAAQ,EAAE,MAAM,CAAC;QACjB,KAAK,EAAE,MAAM,CAAC;QACd,IAAI,EAAE,MAAM,CAAC;QACb,OAAO,EAAE,MAAM,CAAC;QAChB,IAAI,EAAE,MAAM,CAAC;QACb,MAAM,EAAE,MAAM,CAAC;QACf,GAAG,EAAE,MAAM,CAAC;QACZ,IAAI,EAAE,MAAM,OAAO,CAAC;YAAE,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAA;SAAE,CAAC,CAAC;QAC5C,QAAQ,EAAE,MAAM,CAAC;KAClB,CAAC;CACH;AAQD,QAAA,MAAM,aAAa,KASd,CAAC;AAEN,eAAO,MAAM,YAAY,QAAO,OAAO,CAAC,MAAM,CAAiC,CAAC;AAEhF,eAAO,MAAM,YAAY,oBAAqB,MAAM,KAAG,OAAO,CAAC,MAAM,CACxB,CAAC;AAE9C,eAAO,MAAM,kBAAkB,UAAW,MAAM,KAAG,OAAO,CAAC,MAAM,CACO,CAAC;AAEzE,eAAO,MAAM,kBAAkB,UAAW,MAAM,QACwB,CAAC;AAEzE,eAAO,MAAM,WAAW,QAAO,OAAO,CAAC,MAAM,CAMzC,CAAC;AAEL,eAAO,MAAM,OAAO,UACX,MAAM,iDAGZ,OAAO,CAAC,MAAM,CAab,CAAC;AAEL,eAAO,MAAM,OAAO,UACX,MAAM,iDAGZ,OAAO,CAAC,MAAM,CAab,CAAC;AAEL,eAAO,MAAM,aAAa;mBACH,MAAM,SAAS,MAAM,KAAG,OAAO,CAAC,IAAI,CAAC;mBASrC,MAAM,KAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;qBAU7B,MAAM,SAAS,MAAM,KAAG,OAAO,CAAC,IAAI,CAAC;sBAepC,MAAM,KAAG,OAAO,CAAC,IAAI,CAAC;sBAQxB,OAAO,CAAC,SAAS,MAAM,EAAE,CAAC;8BAchB,KAAK,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,KAAG,OAAO,CAAC,IAAI,CAAC;qBAmB5D,KAAK,CAAC,MAAM,CAAC,KAClB,OAAO,CAAC,SAAS,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC,EAAE,CAAC;gCAuBZ,KAAK,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,KAAG,OAAO,CAAC,IAAI,CAAC;wBAqB5C,KAAK,CAAC,MAAM,CAAC,KAAG,OAAO,CAAC,IAAI,CAAC;iBAatC,OAAO,CAAC,IAAI,CAAC;CAO/B,CAAC;AAEF,wBAAgB,KAAK,CACnB,GAAG,EAAE,MAAM,EACX,OAAO,EAAE,OAAO,EAChB,eAAe,UAAQ,GACtB,OAAO,CAAC,eAAe,GAAG,aAAa,CAAC,CA4B1C;AAED,wBAAgB,qBAAqB,IAAI,OAAO,CAAC,OAAO,CAAC,CAExD;AAED,eAAe,aAAa,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/index.tsx"],"names":[],"mappings":"AAEA,OAAO,EAEL,KAAK,aAAa,EACnB,MAAM,wBAAwB,CAAC;AAChC,OAAO,EAGL,KAAK,kBAAkB,EACvB,KAAK,eAAe,EACrB,MAAM,OAAO,CAAC;AAEf,cAAc,cAAc,CAAC;AAC7B,YAAY,EACV,kBAAkB,EAClB,YAAY,EACZ,eAAe,EACf,cAAc,EACd,UAAU,EACV,UAAU,GACX,MAAM,OAAO,CAAC;AAEf,YAAY,EACV,aAAa,EACb,qBAAqB,EACrB,OAAO,EACP,sBAAsB,EACtB,aAAa,EACb,eAAe,GAChB,MAAM,wBAAwB,CAAC;AAEhC,OAAO,EAAE,aAAa,EAAE,iBAAiB,EAAE,cAAc,EAAE,eAAe,EAAE,MAAM,UAAU,CAAC;AAC7F,OAAO,EAAE,cAAc,EAAE,MAAM,UAAU,CAAC;AAC1C,OAAO,EAAE,eAAe,EAAE,MAAM,WAAW,CAAC;AAC5C,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAC3C,OAAO,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC;AAClC,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAChD,YAAY,EACV,mBAAmB,EACnB,kBAAkB,EAClB,iBAAiB,EACjB,oBAAoB,EACpB,cAAc,EACd,SAAS,EACT,SAAS,GACV,MAAM,mBAAmB,CAAC;AAE3B,wFAAwF;AACxF,MAAM,WAAW,gBAAgB;IAC/B,GAAG,EAAE,MAAM,CAAC;IACZ,UAAU,EAAE,MAAM,CAAC;IACnB,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAAC;CACvB;AAED,MAAM,WAAW,iBAAiB;IAChC,6EAA6E;IAC7E,YAAY,EAAE,MAAM,EAAE,CAAC;IACvB,2FAA2F;IAC3F,YAAY,EAAE,MAAM,EAAE,CAAC;CACxB;AAED,UAAU,MAAM;IACd,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAAC;CACvB;AAED,MAAM,WAAW,OAAO;IACtB,IAAI,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IACvB,OAAO,EAAE,MAAM,CAAC;IAChB,MAAM,CAAC,EAAE,QAAQ,GAAG,KAAK,GAAG,MAAM,GAAG,KAAK,GAAG,OAAO,CAAC;IACrD,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,2FAA2F;IAC3F,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;IACxB,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;IACxB,qCAAqC;IACrC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,qCAAqC;IACrC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB;;OAEG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,yCAAyC;IACzC,GAAG,CAAC,EAAE,eAAe,CAAC;CACvB;AAED,UAAU,QAAQ;IAChB,MAAM,EAAE,MAAM,CAAC;IACf,GAAG,EAAE,MAAM,CAAC;IACZ,IAAI,EAAE,MAAM,OAAO,CAAC;QAAE,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAA;KAAE,CAAC,CAAC;IAC5C,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,eAAgB,SAAQ,QAAQ;IAC/C,QAAQ,EAAE,MAAM,CAAC;IACjB,YAAY,EAAE,OAAO,CAAC;QAAE,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAA;KAAE,CAAC,CAAC;CAC/C;AAED,MAAM,WAAW,aAAc,SAAQ,QAAQ;IAC7C,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,kBAAkB;IACjC,GAAG,EAAE,MAAM,CAAC;IACZ,OAAO,EAAE,OAAO,CAAC;IACjB,QAAQ,EAAE;QACR,QAAQ,EAAE,MAAM,CAAC;QACjB,KAAK,EAAE,MAAM,CAAC;QACd,IAAI,EAAE,MAAM,CAAC;QACb,OAAO,EAAE,MAAM,CAAC;QAChB,IAAI,EAAE,MAAM,CAAC;QACb,MAAM,EAAE,MAAM,CAAC;QACf,GAAG,EAAE,MAAM,CAAC;QACZ,IAAI,EAAE,MAAM,OAAO,CAAC;YAAE,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAA;SAAE,CAAC,CAAC;QAC5C,QAAQ,EAAE,MAAM,CAAC;KAClB,CAAC;CACH;AAQD,QAAA,MAAM,yBAAyB,KAS1B,CAAC;AAEN,eAAO,MAAM,YAAY,QAAO,OAAO,CAAC,MAAM,CACJ,CAAC;AAE3C;;GAEG;AACH,eAAO,MAAM,YAAY,GACvB,iBAAiB,MAAM,EACvB,UAAU,aAAa,KACtB,OAAO,CAAC,MAAM,CACwE,CAAC;AAE1F,eAAO,MAAM,kBAAkB,GAC7B,OAAO,MAAM,EACb,UAAU,aAAa,KACtB,OAAO,CAAC,MAAM,CAKhB,CAAC;AAEF,eAAO,MAAM,kBAAkB,GAC7B,OAAO,MAAM,EACb,UAAU,aAAa,KACtB,OAAO,CAAC,MAAM,CAKhB,CAAC;AAEF,eAAO,MAAM,WAAW,GAAI,SAAS,kBAAkB,KAAG,OAAO,CAAC,MAAM,CAGvE,CAAC;AAuBF;;;GAGG;AACH,eAAO,MAAM,SAAS,GAAI,OAAO,MAAM,EAAE,QAAQ,MAAM,KAAG,OAAO,CAAC,MAAM,CACpB,CAAC;AAErD,eAAO,MAAM,WAAW,GAAI,OAAO,MAAM,EAAE,QAAQ,MAAM,KAAG,OAAO,CAAC,MAAM,CACpB,CAAC;AAEvD,eAAO,MAAM,WAAW,QAAO,OAAO,CAAC,MAAM,CAOzC,CAAC;AAEL;;GAEG;AACH,eAAO,MAAM,OAAO,GAClB,OAAO,MAAM,EACb,wBAAqB,EACrB,YAAW,MAAM,GAAG,IAAW,KAC9B,OAAO,CAAC,MAAM,CAwBb,CAAC;AAEL;;GAEG;AACH,eAAO,MAAM,OAAO,GAClB,OAAO,MAAM,EACb,wBAAqB,EACrB,YAAW,MAAM,GAAG,IAAW,KAC9B,OAAO,CAAC,MAAM,CAwBb,CAAC;AAgBL,kGAAkG;AAClG,eAAO,MAAM,aAAa;mBACT,MAAM,SAAS,MAAM,KAAG,OAAO,CAAC,IAAI,CAAC;mBAMrC,MAAM,KAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;sBAM5B,MAAM,KAAG,OAAO,CAAC,IAAI,CAAC;sBAMxB,OAAO,CAAC,MAAM,EAAE,CAAC;iBAMtB,OAAO,CAAC,IAAI,CAAC;8BAGQ,KAAK,CAAC,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,KAAG,OAAO,CAAC,IAAI,CAAC;qBAO/D,MAAM,EAAE,KACb,OAAO,CAAC,SAAS,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC,EAAE,CAAC;wBAQpB,MAAM,EAAE,KAAG,OAAO,CAAC,IAAI,CAAC;IAIlD,wCAAwC;qBACjB,MAAM,SAAS,MAAM,KAAG,OAAO,CAAC,IAAI,CAAC;IAiB5D,wCAAwC;gCACN,KAAK,CAAC,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,KAAG,OAAO,CAAC,IAAI,CAAC;CAK1E,CAAC;AAEF,wBAAgB,KAAK,CACnB,GAAG,EAAE,MAAM,EACX,OAAO,EAAE,OAAO,EAChB,eAAe,UAAU,GACxB,OAAO,CAAC,eAAe,GAAG,aAAa,CAAC,CA8B1C;AAED,wBAAgB,qBAAqB,IAAI,OAAO,CAAC,OAAO,CAAC,CAExD;AAED,eAAe,yBAAyB,CAAC"}

package/lib/typescript/commonjs/src/integrity/index.d.ts

@@ -0,0 +1,6 @@
+import type { AppIntegrityReport, BuildType } from '../types/detection';
+export declare const AppIntegrity: {
+    verify(): Promise<AppIntegrityReport>;
+};
+export type { AppIntegrityReport, BuildType };
+//# sourceMappingURL=index.d.ts.map

package/lib/typescript/commonjs/src/integrity/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../../src/integrity/index.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,kBAAkB,EAAE,SAAS,EAAE,MAAM,oBAAoB,CAAC;AAoCxE,eAAO,MAAM,YAAY;cACb,OAAO,CAAC,kBAAkB,CAAC;CAKtC,CAAC;AAEF,YAAY,EAAE,kBAAkB,EAAE,SAAS,EAAE,CAAC"}