npm - s3db.js - Versions diffs - 13.6.0 → 14.0.2 - Mend

s3db.js 13.6.0 → 14.0.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (193) hide show

package/README.md +139 -43
package/dist/s3db.cjs +72425 -38970
package/dist/s3db.cjs.map +1 -1
package/dist/s3db.es.js +72177 -38764
package/dist/s3db.es.js.map +1 -1
package/mcp/lib/base-handler.js +157 -0
package/mcp/lib/handlers/connection-handler.js +280 -0
package/mcp/lib/handlers/query-handler.js +533 -0
package/mcp/lib/handlers/resource-handler.js +428 -0
package/mcp/lib/tool-registry.js +336 -0
package/mcp/lib/tools/connection-tools.js +161 -0
package/mcp/lib/tools/query-tools.js +267 -0
package/mcp/lib/tools/resource-tools.js +404 -0
package/package.json +94 -49
package/src/clients/memory-client.class.js +346 -191
package/src/clients/memory-storage.class.js +300 -84
package/src/clients/s3-client.class.js +7 -6
package/src/concerns/geo-encoding.js +19 -2
package/src/concerns/ip.js +59 -9
package/src/concerns/money.js +8 -1
package/src/concerns/password-hashing.js +49 -8
package/src/concerns/plugin-storage.js +186 -18
package/src/concerns/storage-drivers/filesystem-driver.js +284 -0
package/src/database.class.js +139 -29
package/src/errors.js +332 -42
package/src/plugins/api/auth/oidc-auth.js +66 -17
package/src/plugins/api/auth/strategies/base-strategy.class.js +74 -0
package/src/plugins/api/auth/strategies/factory.class.js +63 -0
package/src/plugins/api/auth/strategies/global-strategy.class.js +44 -0
package/src/plugins/api/auth/strategies/path-based-strategy.class.js +83 -0
package/src/plugins/api/auth/strategies/path-rules-strategy.class.js +118 -0
package/src/plugins/api/concerns/failban-manager.js +106 -57
package/src/plugins/api/concerns/opengraph-helper.js +116 -0
package/src/plugins/api/concerns/route-context.js +601 -0
package/src/plugins/api/concerns/state-machine.js +288 -0
package/src/plugins/api/index.js +180 -41
package/src/plugins/api/routes/auth-routes.js +198 -30
package/src/plugins/api/routes/resource-routes.js +19 -4
package/src/plugins/api/server/health-manager.class.js +163 -0
package/src/plugins/api/server/middleware-chain.class.js +310 -0
package/src/plugins/api/server/router.class.js +472 -0
package/src/plugins/api/server.js +280 -1303
package/src/plugins/api/utils/custom-routes.js +17 -5
package/src/plugins/api/utils/guards.js +76 -17
package/src/plugins/api/utils/openapi-generator-cached.class.js +133 -0
package/src/plugins/api/utils/openapi-generator.js +7 -6
package/src/plugins/api/utils/template-engine.js +77 -3
package/src/plugins/audit.plugin.js +30 -8
package/src/plugins/backup.plugin.js +110 -14
package/src/plugins/cache/cache.class.js +22 -5
package/src/plugins/cache/filesystem-cache.class.js +116 -19
package/src/plugins/cache/memory-cache.class.js +211 -57
package/src/plugins/cache/multi-tier-cache.class.js +371 -0
package/src/plugins/cache/partition-aware-filesystem-cache.class.js +168 -47
package/src/plugins/cache/redis-cache.class.js +552 -0
package/src/plugins/cache/s3-cache.class.js +17 -8
package/src/plugins/cache.plugin.js +176 -61
package/src/plugins/cloud-inventory/drivers/alibaba-driver.js +8 -1
package/src/plugins/cloud-inventory/drivers/aws-driver.js +60 -29
package/src/plugins/cloud-inventory/drivers/azure-driver.js +8 -1
package/src/plugins/cloud-inventory/drivers/base-driver.js +16 -2
package/src/plugins/cloud-inventory/drivers/cloudflare-driver.js +8 -1
package/src/plugins/cloud-inventory/drivers/digitalocean-driver.js +8 -1
package/src/plugins/cloud-inventory/drivers/hetzner-driver.js +8 -1
package/src/plugins/cloud-inventory/drivers/linode-driver.js +8 -1
package/src/plugins/cloud-inventory/drivers/mongodb-atlas-driver.js +8 -1
package/src/plugins/cloud-inventory/drivers/vultr-driver.js +8 -1
package/src/plugins/cloud-inventory/index.js +29 -8
package/src/plugins/cloud-inventory/registry.js +64 -42
package/src/plugins/cloud-inventory.plugin.js +240 -138
package/src/plugins/concerns/plugin-dependencies.js +54 -0
package/src/plugins/concerns/resource-names.js +100 -0
package/src/plugins/consumers/index.js +10 -2
package/src/plugins/consumers/sqs-consumer.js +12 -2
package/src/plugins/cookie-farm-suite.plugin.js +278 -0
package/src/plugins/cookie-farm.errors.js +73 -0
package/src/plugins/cookie-farm.plugin.js +869 -0
package/src/plugins/costs.plugin.js +7 -1
package/src/plugins/eventual-consistency/analytics.js +94 -19
package/src/plugins/eventual-consistency/config.js +15 -7
package/src/plugins/eventual-consistency/consolidation.js +29 -11
package/src/plugins/eventual-consistency/garbage-collection.js +3 -1
package/src/plugins/eventual-consistency/helpers.js +39 -14
package/src/plugins/eventual-consistency/install.js +21 -2
package/src/plugins/eventual-consistency/utils.js +32 -10
package/src/plugins/fulltext.plugin.js +38 -11
package/src/plugins/geo.plugin.js +61 -9
package/src/plugins/identity/concerns/config.js +61 -0
package/src/plugins/identity/concerns/mfa-manager.js +15 -2
package/src/plugins/identity/concerns/rate-limit.js +124 -0
package/src/plugins/identity/concerns/resource-schemas.js +9 -1
package/src/plugins/identity/concerns/token-generator.js +29 -4
package/src/plugins/identity/drivers/auth-driver.interface.js +76 -0
package/src/plugins/identity/drivers/client-credentials-driver.js +127 -0
package/src/plugins/identity/drivers/index.js +18 -0
package/src/plugins/identity/drivers/password-driver.js +122 -0
package/src/plugins/identity/email-service.js +17 -2
package/src/plugins/identity/index.js +413 -69
package/src/plugins/identity/oauth2-server.js +413 -30
package/src/plugins/identity/oidc-discovery.js +16 -8
package/src/plugins/identity/rsa-keys.js +115 -35
package/src/plugins/identity/server.js +166 -45
package/src/plugins/identity/session-manager.js +53 -7
package/src/plugins/identity/ui/pages/mfa-verification.js +17 -15
package/src/plugins/identity/ui/routes.js +363 -255
package/src/plugins/importer/index.js +153 -20
package/src/plugins/index.js +9 -2
package/src/plugins/kubernetes-inventory/index.js +6 -0
package/src/plugins/kubernetes-inventory/k8s-driver.js +867 -0
package/src/plugins/kubernetes-inventory/resource-types.js +274 -0
package/src/plugins/kubernetes-inventory.plugin.js +980 -0
package/src/plugins/metrics.plugin.js +64 -16
package/src/plugins/ml/base-model.class.js +25 -15
package/src/plugins/ml/regression-model.class.js +1 -1
package/src/plugins/ml.errors.js +57 -25
package/src/plugins/ml.plugin.js +28 -4
package/src/plugins/namespace.js +210 -0
package/src/plugins/plugin.class.js +180 -8
package/src/plugins/puppeteer/console-monitor.js +729 -0
package/src/plugins/puppeteer/cookie-manager.js +492 -0
package/src/plugins/puppeteer/network-monitor.js +816 -0
package/src/plugins/puppeteer/performance-manager.js +746 -0
package/src/plugins/puppeteer/proxy-manager.js +478 -0
package/src/plugins/puppeteer/stealth-manager.js +556 -0
package/src/plugins/puppeteer.errors.js +81 -0
package/src/plugins/puppeteer.plugin.js +1327 -0
package/src/plugins/queue-consumer.plugin.js +69 -14
package/src/plugins/recon/behaviors/uptime-behavior.js +691 -0
package/src/plugins/recon/concerns/command-runner.js +148 -0
package/src/plugins/recon/concerns/diff-detector.js +372 -0
package/src/plugins/recon/concerns/fingerprint-builder.js +307 -0
package/src/plugins/recon/concerns/process-manager.js +338 -0
package/src/plugins/recon/concerns/report-generator.js +478 -0
package/src/plugins/recon/concerns/security-analyzer.js +571 -0
package/src/plugins/recon/concerns/target-normalizer.js +68 -0
package/src/plugins/recon/config/defaults.js +321 -0
package/src/plugins/recon/config/resources.js +370 -0
package/src/plugins/recon/index.js +778 -0
package/src/plugins/recon/managers/dependency-manager.js +174 -0
package/src/plugins/recon/managers/scheduler-manager.js +179 -0
package/src/plugins/recon/managers/storage-manager.js +745 -0
package/src/plugins/recon/managers/target-manager.js +274 -0
package/src/plugins/recon/stages/asn-stage.js +314 -0
package/src/plugins/recon/stages/certificate-stage.js +84 -0
package/src/plugins/recon/stages/dns-stage.js +107 -0
package/src/plugins/recon/stages/dnsdumpster-stage.js +362 -0
package/src/plugins/recon/stages/fingerprint-stage.js +71 -0
package/src/plugins/recon/stages/google-dorks-stage.js +440 -0
package/src/plugins/recon/stages/http-stage.js +89 -0
package/src/plugins/recon/stages/latency-stage.js +148 -0
package/src/plugins/recon/stages/massdns-stage.js +302 -0
package/src/plugins/recon/stages/osint-stage.js +1373 -0
package/src/plugins/recon/stages/ports-stage.js +169 -0
package/src/plugins/recon/stages/screenshot-stage.js +94 -0
package/src/plugins/recon/stages/secrets-stage.js +514 -0
package/src/plugins/recon/stages/subdomains-stage.js +295 -0
package/src/plugins/recon/stages/tls-audit-stage.js +78 -0
package/src/plugins/recon/stages/vulnerability-stage.js +78 -0
package/src/plugins/recon/stages/web-discovery-stage.js +113 -0
package/src/plugins/recon/stages/whois-stage.js +349 -0
package/src/plugins/recon.plugin.js +75 -0
package/src/plugins/recon.plugin.js.backup +2635 -0
package/src/plugins/relation.errors.js +87 -14
package/src/plugins/replicator.plugin.js +514 -137
package/src/plugins/replicators/base-replicator.class.js +89 -1
package/src/plugins/replicators/bigquery-replicator.class.js +66 -22
package/src/plugins/replicators/dynamodb-replicator.class.js +22 -15
package/src/plugins/replicators/mongodb-replicator.class.js +22 -15
package/src/plugins/replicators/mysql-replicator.class.js +52 -17
package/src/plugins/replicators/planetscale-replicator.class.js +30 -4
package/src/plugins/replicators/postgres-replicator.class.js +62 -27
package/src/plugins/replicators/s3db-replicator.class.js +25 -18
package/src/plugins/replicators/schema-sync.helper.js +3 -3
package/src/plugins/replicators/sqs-replicator.class.js +8 -2
package/src/plugins/replicators/turso-replicator.class.js +23 -3
package/src/plugins/replicators/webhook-replicator.class.js +42 -4
package/src/plugins/s3-queue.plugin.js +464 -65
package/src/plugins/scheduler.plugin.js +20 -6
package/src/plugins/state-machine.plugin.js +40 -9
package/src/plugins/tfstate/README.md +126 -126
package/src/plugins/tfstate/base-driver.js +28 -4
package/src/plugins/tfstate/errors.js +65 -10
package/src/plugins/tfstate/filesystem-driver.js +52 -8
package/src/plugins/tfstate/index.js +163 -90
package/src/plugins/tfstate/s3-driver.js +64 -6
package/src/plugins/ttl.plugin.js +72 -17
package/src/plugins/vector/distances.js +18 -12
package/src/plugins/vector/kmeans.js +26 -4
package/src/resource.class.js +115 -19
package/src/testing/factory.class.js +20 -3
package/src/testing/seeder.class.js +7 -1
package/src/clients/memory-client.md +0 -917
package/src/plugins/cloud-inventory/drivers/mock-drivers.js +0 -449

package/src/plugins/api/concerns/failban-manager.js CHANGED Viewed

@@ -32,9 +32,25 @@
  */
 import { requirePluginDependency } from '../../concerns/plugin-dependencies.js';
+import tryFn from '../../../concerns/try-fn.js';
+import { resolveResourceNames } from '../../concerns/resource-names.js';
 export class FailbanManager {
   constructor(options = {}) {
+    this.namespace = options.namespace || null;
+    const resourceOverrides = options.resourceNames || options.resources || {};
+    this._resourceDescriptors = {
+      bans: {
+        defaultName: 'plg_api_failban_bans',
+        override: resourceOverrides.bans
+      },
+      violations: {
+        defaultName: 'plg_api_failban_violations',
+        override: resourceOverrides.violations
+      }
+    };
+    this.resourceNames = this._resolveResourceNames();
     this.options = {
       enabled: options.enabled !== false,
       database: options.database,
@@ -52,7 +68,8 @@ export class FailbanManager {
         blockedCountries: options.geo?.blockedCountries || [],
         blockUnknown: options.geo?.blockUnknown || false,
         cacheResults: options.geo?.cacheResults !== false
-      }
+      },
+      resources: this.resourceNames
     };
     this.database = options.database;
@@ -64,6 +81,18 @@ export class FailbanManager {
     this.cleanupTimer = null;
   }
+  _resolveResourceNames() {
+    return resolveResourceNames('api_failban', this._resourceDescriptors, {
+      namespace: this.namespace
+    });
+  }
+  setNamespace(namespace) {
+    this.namespace = namespace;
+    this.resourceNames = this._resolveResourceNames();
+    this.options.resources = this.resourceNames;
+  }
   /**
    * Initialize failban manager
    */
@@ -119,52 +148,61 @@ export class FailbanManager {
    * @private
    */
   async _createBansResource() {
-    const resourceName = '_api_failban_bans';
+    const resourceName = this.resourceNames.bans;
     try {
       return await this.database.getResource(resourceName);
     } catch (err) {
-      const resource = await this.database.createResource({
-        name: resourceName,
-        attributes: {
-          ip: 'string|required',
-          reason: 'string',
-          violations: 'number',
-          bannedAt: 'string',
-          expiresAt: 'string|required',
-          metadata: {
-            userAgent: 'string',
-            path: 'string',
-            lastViolation: 'string'
-          }
-        },
-        behavior: 'body-overflow',
-        timestamps: true,
-        partitions: {
-          byExpiry: {
-            fields: { expiresAtCohort: 'string' }
-          }
+      // fall through
+    }
+    const [created, createErr, resource] = await tryFn(() => this.database.createResource({
+      name: resourceName,
+      attributes: {
+        ip: 'string|required',
+        reason: 'string',
+        violations: 'number',
+        bannedAt: 'string',
+        expiresAt: 'string|required',
+        metadata: {
+          userAgent: 'string',
+          path: 'string',
+          lastViolation: 'string'
         }
-      });
-      // Apply TTL plugin to this resource
-      const ttlPlugin = this.database.plugins?.ttl || this.database.plugins?.TTLPlugin;
-      if (ttlPlugin) {
-        ttlPlugin.options.resources = ttlPlugin.options.resources || {};
-        ttlPlugin.options.resources[resourceName] = {
-          enabled: true,
-          field: 'expiresAt'
-        };
-        if (this.options.verbose) {
-          console.log('[Failban] TTL configured for bans resource');
+      },
+      behavior: 'body-overflow',
+      timestamps: true,
+      partitions: {
+        byExpiry: {
+          fields: { expiresAtCohort: 'string' }
         }
-      } else {
-        console.warn('[Failban] TTLPlugin not found - bans will not auto-expire from DB');
       }
+    }));
-      return resource;
+    if (!created) {
+      const existing = this.database.resources?.[resourceName];
+      if (existing) {
+        return existing;
+      }
+      throw createErr;
     }
+    // Apply TTL plugin to this resource
+    const ttlPlugin = this.database.plugins?.ttl || this.database.plugins?.TTLPlugin;
+    if (ttlPlugin) {
+      ttlPlugin.options.resources = ttlPlugin.options.resources || {};
+      ttlPlugin.options.resources[resourceName] = {
+        enabled: true,
+        field: 'expiresAt'
+      };
+      if (this.options.verbose) {
+        console.log(`[Failban] TTL configured for bans resource (${resourceName})`);
+      }
+    } else {
+      console.warn('[Failban] TTLPlugin not found - bans will not auto-expire from DB');
+    }
+    return resource;
   }
   /**
@@ -172,29 +210,40 @@ export class FailbanManager {
    * @private
    */
   async _createViolationsResource() {
-    const resourceName = '_api_failban_violations';
+    const resourceName = this.resourceNames.violations;
     try {
       return await this.database.getResource(resourceName);
     } catch (err) {
-      return await this.database.createResource({
-        name: resourceName,
-        attributes: {
-          ip: 'string|required',
-          timestamp: 'string|required',
-          type: 'string',
-          path: 'string',
-          userAgent: 'string'
-        },
-        behavior: 'body-overflow',
-        timestamps: true,
-        partitions: {
-          byIp: {
-            fields: { ip: 'string' }
-          }
+      // fall through
+    }
+    const [created, createErr, resource] = await tryFn(() => this.database.createResource({
+      name: resourceName,
+      attributes: {
+        ip: 'string|required',
+        timestamp: 'string|required',
+        type: 'string',
+        path: 'string',
+        userAgent: 'string'
+      },
+      behavior: 'body-overflow',
+      timestamps: true,
+      partitions: {
+        byIp: {
+          fields: { ip: 'string' }
         }
-      });
+      }
+    }));
+    if (!created) {
+      const existing = this.database.resources?.[resourceName];
+      if (existing) {
+        return existing;
+      }
+      throw createErr;
     }
+    return resource;
   }
   /**

package/src/plugins/api/concerns/opengraph-helper.js ADDED Viewed

@@ -0,0 +1,116 @@
+/**
+ * OpenGraph Helper
+ *
+ * Generates OpenGraph and Twitter Card meta tags for social media previews.
+ *
+ * @example
+ * const og = new OpenGraphHelper({
+ *   siteName: 'My Site',
+ *   locale: 'en_US',
+ *   twitterSite: '@mysite'
+ * });
+ *
+ * const tags = og.generateTags({
+ *   title: 'Page Title',
+ *   description: 'Page description',
+ *   image: '/og-image.jpg',
+ *   url: 'https://example.com/page'
+ * });
+ */
+export class OpenGraphHelper {
+  constructor(defaults = {}) {
+    this.defaults = {
+      siteName: defaults.siteName || 'My Site',
+      locale: defaults.locale || 'en_US',
+      type: defaults.type || 'website',
+      twitterCard: defaults.twitterCard || 'summary_large_image',
+      twitterSite: defaults.twitterSite || null,
+      defaultImage: defaults.defaultImage || null
+    };
+  }
+  /**
+   * Generate OpenGraph meta tags
+   *
+   * @param {Object} data - OpenGraph data
+   * @param {string} data.title - Page title
+   * @param {string} data.description - Page description
+   * @param {string} data.image - Image URL (absolute or relative)
+   * @param {string} data.url - Canonical URL
+   * @param {string} data.type - Content type (default: 'website')
+   * @param {string} data.locale - Locale (default: from defaults)
+   * @param {string} data.siteName - Site name (default: from defaults)
+   * @param {string} data.imageAlt - Image alt text
+   * @param {number} data.imageWidth - Image width in pixels
+   * @param {number} data.imageHeight - Image height in pixels
+   * @param {string} data.twitterCard - Twitter card type (default: from defaults)
+   * @param {string} data.twitterSite - Twitter @username (default: from defaults)
+   * @param {string} data.twitterCreator - Twitter creator @username
+   * @returns {string} HTML meta tags
+   */
+  generateTags(data = {}) {
+    const og = { ...this.defaults, ...data };
+    // Use default image if none provided
+    const image = og.image || og.defaultImage;
+    const tags = [
+      // Basic OpenGraph
+      og.title && `<meta property="og:title" content="${this._escape(og.title)}">`,
+      og.description && `<meta property="og:description" content="${this._escape(og.description)}">`,
+      image && `<meta property="og:image" content="${this._escape(image)}">`,
+      og.url && `<meta property="og:url" content="${this._escape(og.url)}">`,
+      `<meta property="og:type" content="${this._escape(og.type)}">`,
+      `<meta property="og:site_name" content="${this._escape(og.siteName)}">`,
+      `<meta property="og:locale" content="${this._escape(og.locale)}">`,
+      // Image metadata
+      og.imageAlt && `<meta property="og:image:alt" content="${this._escape(og.imageAlt)}">`,
+      og.imageWidth && `<meta property="og:image:width" content="${og.imageWidth}">`,
+      og.imageHeight && `<meta property="og:image:height" content="${og.imageHeight}">`,
+      // Twitter Cards
+      `<meta name="twitter:card" content="${this._escape(og.twitterCard)}">`,
+      og.twitterSite && `<meta name="twitter:site" content="${this._escape(og.twitterSite)}">`,
+      og.twitterCreator && `<meta name="twitter:creator" content="${this._escape(og.twitterCreator)}">`,
+      og.title && `<meta name="twitter:title" content="${this._escape(og.title)}">`,
+      og.description && `<meta name="twitter:description" content="${this._escape(og.description)}">`,
+      image && `<meta name="twitter:image" content="${this._escape(image)}">`,
+    ];
+    return tags.filter(Boolean).join('\n    ');
+  }
+  /**
+   * Create Hono middleware that injects OG helper into context
+   *
+   * @example
+   * app.use('*', ogHelper.middleware());
+   *
+   * // In route handler:
+   * const ogTags = c.get('og')({ title: 'My Page', ... });
+   */
+  middleware() {
+    return async (c, next) => {
+      c.set('og', (data) => this.generateTags(data));
+      await next();
+    };
+  }
+  /**
+   * Escape HTML entities to prevent XSS
+   * @private
+   */
+  _escape(str) {
+    if (str === null || str === undefined) return '';
+    return String(str)
+      .replace(/&/g, '&amp;')
+      .replace(/</g, '&lt;')
+      .replace(/>/g, '&gt;')
+      .replace(/"/g, '&quot;')
+      .replace(/'/g, '&#039;');
+  }
+}
+export default OpenGraphHelper;