ultraenv 1.0.0 → 1.0.2

package/dist/index.cjs

@@ -470,7 +470,13 @@ var FileSystemError = class extends UltraenvError {
   code;
   constructor(message, options = {}) {
     const fsCode = options.code ?? options.cause?.code ?? "UNKNOWN";
-    const opHint = options.path !== void 0 ? `Could not ${options.operation ?? "access"} "${options.path}".` : "";
+    const opHint = options.path !== void 0 ? (
+      /* v8 ignore start */
+      `Could not ${options.operation ?? "access"} "${options.path}".`
+    ) : (
+      /* v8 ignore stop */
+      ""
+    );
     super(message, {
       code: `FS_${fsCode}`,
       hint: options.hint ?? `${opHint} Ensure the file exists and you have the necessary permissions.`,
@@ -526,14 +532,11 @@ function resolveEscapeSequence(chars, startIndex, filePath, lineNumber) {
         }
         return { resolved: String.fromCodePoint(codePoint), charsConsumed: 4 };
       }
-      throw new ParseError(
-        `Invalid hex escape sequence: ${"\\"}x${hex}`,
-        {
-          line: lineNumber,
-          filePath,
-          hint: "Hex escapes must be exactly 2 hex digits, e.g. \\x0A for newline."
-        }
-      );
+      throw new ParseError(`Invalid hex escape sequence: ${"\\"}x${hex}`, {
+        line: lineNumber,
+        filePath,
+        hint: "Hex escapes must be exactly 2 hex digits, e.g. \\x0A for newline."
+      });
     }
     case "u":
     case "U": {
@@ -548,14 +551,11 @@ function resolveEscapeSequence(chars, startIndex, filePath, lineNumber) {
         }
         return { resolved: String.fromCodePoint(codePoint), charsConsumed: 6 };
       }
-      throw new ParseError(
-        `Invalid unicode escape sequence: ${"\\"}u${hexDigits}`,
-        {
-          line: lineNumber,
-          filePath,
-          hint: 'Unicode escapes must be exactly 4 hex digits, e.g. \\u0041 for "A".'
-        }
-      );
+      throw new ParseError(`Invalid unicode escape sequence: ${"\\"}u${hexDigits}`, {
+        line: lineNumber,
+        filePath,
+        hint: 'Unicode escapes must be exactly 4 hex digits, e.g. \\u0041 for "A".'
+      });
     }
     /* v8 ignore start */
     default: {
@@ -837,11 +837,7 @@ function parseEnvFile(content, filePath) {
         comment = trimmedAfter.slice(1).trim();
       }
     } else if (firstChar === "'") {
-      const result = parseSingleQuotedValue(
-        lines,
-        lineIndex,
-        valueStartIndex + 1
-      );
+      const result = parseSingleQuotedValue(lines, lineIndex, valueStartIndex + 1);
       if (!result.closed) {
         throw new ParseError("Unterminated single-quoted string", {
           line: oneBasedLine,
@@ -862,11 +858,7 @@ function parseEnvFile(content, filePath) {
         comment = trimmedAfter.slice(1).trim();
       }
     } else if (firstChar === "`") {
-      const result = parseBacktickQuotedValue(
-        lines,
-        lineIndex,
-        valueStartIndex + 1
-      );
+      const result = parseBacktickQuotedValue(lines, lineIndex, valueStartIndex + 1);
       if (!result.closed) {
         throw new ParseError("Unterminated backtick-quoted string", {
           line: oneBasedLine,
@@ -1087,12 +1079,9 @@ function expandVariables(vars, env, options) {
   const resolving = /* @__PURE__ */ new Set();
   function expandValue(raw, depth) {
     if (depth > maxDepth) {
-      throw new InterpolationError(
-        `Maximum interpolation depth (${maxDepth}) exceeded`,
-        {
-          hint: "Check for deeply nested variable references. Consider simplifying your variable definitions."
-        }
-      );
+      throw new InterpolationError(`Maximum interpolation depth (${maxDepth}) exceeded`, {
+        hint: "Check for deeply nested variable references. Consider simplifying your variable definitions."
+      });
     }
     const result2 = [];
     let i = 0;
@@ -1128,14 +1117,11 @@ function expandVariables(vars, env, options) {
           const parsed = parseExpression(inner);
           if (resolving.has(parsed.varName)) {
             const chain = Array.from(resolving).concat(parsed.varName).join(" \u2192 ");
-            throw new InterpolationError(
-              `Circular variable reference detected: ${chain}`,
-              {
-                variable: parsed.varName,
-                circular: true,
-                hint: "Break the cycle by removing one of the circular references."
-              }
-            );
+            throw new InterpolationError(`Circular variable reference detected: ${chain}`, {
+              variable: parsed.varName,
+              circular: true,
+              hint: "Break the cycle by removing one of the circular references."
+            });
           }
           resolving.add(parsed.varName);
           if (parsed.varName in vars && !(parsed.varName in resolvedMap)) {
@@ -1166,14 +1152,11 @@ function expandVariables(vars, env, options) {
         const varName = raw.slice(i, nameEnd);
         if (resolving.has(varName)) {
           const chain = Array.from(resolving).concat(varName).join(" \u2192 ");
-          throw new InterpolationError(
-            `Circular variable reference detected: ${chain}`,
-            {
-              variable: varName,
-              circular: true,
-              hint: "Break the cycle by removing one of the circular references."
-            }
-          );
+          throw new InterpolationError(`Circular variable reference detected: ${chain}`, {
+            variable: varName,
+            circular: true,
+            hint: "Break the cycle by removing one of the circular references."
+          });
         }
         resolving.add(varName);
         if (varName in vars && !(varName in resolvedMap)) {
@@ -1949,7 +1932,8 @@ function parseYamlScalar(value) {
   if (cleanValue === "") return "";
   if (cleanValue === "true" || cleanValue === "True" || cleanValue === "TRUE") return true;
   if (cleanValue === "false" || cleanValue === "False" || cleanValue === "FALSE") return false;
-  if (cleanValue === "null" || cleanValue === "Null" || cleanValue === "NULL" || cleanValue === "~") return null;
+  if (cleanValue === "null" || cleanValue === "Null" || cleanValue === "NULL" || cleanValue === "~")
+    return null;
   if (/^-?\d+$/.test(cleanValue)) return parseInt(cleanValue, 10);
   if (/^-?\d+\.\d+$/.test(cleanValue)) return parseFloat(cleanValue);
   if (cleanValue.startsWith('"') && cleanValue.endsWith('"') || cleanValue.startsWith("'") && cleanValue.endsWith("'")) {
@@ -2329,9 +2313,7 @@ function resolveVariables(vars, schema, aliasMap) {
       result[key] = vars[key];
       continue;
     }
-    const caseInsensitiveKey = Object.keys(vars).find(
-      (k) => k.toLowerCase() === key.toLowerCase()
-    );
+    const caseInsensitiveKey = Object.keys(vars).find((k) => k.toLowerCase() === key.toLowerCase());
     if (caseInsensitiveKey !== void 0 && vars[caseInsensitiveKey] !== void 0) {
       result[key] = vars[caseInsensitiveKey];
       continue;
@@ -2344,9 +2326,7 @@ function resolveVariables(vars, schema, aliasMap) {
           foundAlias = true;
           break;
         }
-        const ciAlias = Object.keys(vars).find(
-          (k) => k.toLowerCase() === alias.toLowerCase()
-        );
+        const ciAlias = Object.keys(vars).find((k) => k.toLowerCase() === alias.toLowerCase());
         if (ciAlias !== void 0 && vars[ciAlias] !== void 0) {
           result[key] = vars[ciAlias];
           foundAlias = true;
@@ -3496,7 +3476,10 @@ function parseAndValidateEmail(raw, opts) {
     return { success: false, error: "Email must not be empty" };
   }
   if (trimmed.length > maxLen) {
-    return { success: false, error: `Email must be at most ${maxLen} characters, got ${trimmed.length}` };
+    return {
+      success: false,
+      error: `Email must be at most ${maxLen} characters, got ${trimmed.length}`
+    };
   }
   if (!EMAIL_REGEX2.test(trimmed)) {
     return { success: false, error: `"${trimmed}" is not a valid email address` };
@@ -3505,7 +3488,10 @@ function parseAndValidateEmail(raw, opts) {
   const localPart = trimmed.slice(0, atIndex);
   const domain = trimmed.slice(atIndex + 1);
   if (localPart.length > maxLocal) {
-    return { success: false, error: `Email local part must be at most ${maxLocal} characters, got ${localPart.length}` };
+    return {
+      success: false,
+      error: `Email local part must be at most ${maxLocal} characters, got ${localPart.length}`
+    };
   }
   if (opts.allowPlusAddressing === false && localPart.includes("+")) {
     return { success: false, error: "Plus addressing (+) is not allowed" };
@@ -3514,7 +3500,10 @@ function parseAndValidateEmail(raw, opts) {
     const tld = domain.split(".").pop() ?? "";
     const allowed = opts.allowedTlds.map((t2) => t2.toLowerCase());
     if (!allowed.includes(tld.toLowerCase())) {
-      return { success: false, error: `Email TLD must be one of: ${allowed.join(", ")}. Got ".${tld}"` };
+      return {
+        success: false,
+        error: `Email TLD must be one of: ${allowed.join(", ")}. Got ".${tld}"`
+      };
     }
   }
   if (opts.blockedDomains !== void 0) {
@@ -3549,7 +3538,10 @@ function parseAndValidateIp(raw, opts) {
   }
   if (version === "6" && !isV6) {
     if (opts.allowMappedV4 === false && isMappedV4) {
-      return { success: false, error: `"${trimmed}" is an IPv4-mapped IPv6 address, which is not allowed` };
+      return {
+        success: false,
+        error: `"${trimmed}" is an IPv4-mapped IPv6 address, which is not allowed`
+      };
     }
     return { success: false, error: `"${trimmed}" is not a valid IPv6 address` };
   }
@@ -3557,7 +3549,10 @@ function parseAndValidateIp(raw, opts) {
     return { success: false, error: `"${trimmed}" is not a valid IP address` };
   }
   if (version === "6" && isMappedV4 && opts.allowMappedV4 === false) {
-    return { success: false, error: `"${trimmed}" is an IPv4-mapped IPv6 address, which is not allowed` };
+    return {
+      success: false,
+      error: `"${trimmed}" is an IPv4-mapped IPv6 address, which is not allowed`
+    };
   }
   return { success: true, value: trimmed };
 }
@@ -3906,7 +3901,9 @@ function createBase64Schema(opts) {
 var SEMVER_CORE = "(0|[1-9]\\d*)\\.(0|[1-9]\\d*)\\.(0|[1-9]\\d*)";
 var SEMVER_PRERELEASE = "(?:-((?:0|[1-9]\\d*|\\d*[a-zA-Z-][0-9a-zA-Z-]*)(?:\\.(?:0|[1-9]\\d*|\\d*[a-zA-Z-][0-9a-zA-Z-]*))*))";
 var SEMVER_BUILD = "(?:\\+([0-9a-zA-Z-]+(?:\\.[0-9a-zA-Z-]+)*))";
-var STRICT_SEMVER_REGEX = new RegExp(`^${SEMVER_CORE}(?:${SEMVER_PRERELEASE})?(?:${SEMVER_BUILD})?$`);
+var STRICT_SEMVER_REGEX = new RegExp(
+  `^${SEMVER_CORE}(?:${SEMVER_PRERELEASE})?(?:${SEMVER_BUILD})?$`
+);
 var LOOSE_SEMVER_REGEX = /^v?(0|[1-9]\d*)(?:\.(0|[1-9]\d*))?(?:\.(0|[1-9]\d*))?(?:-((?:0|[1-9]\d*|\d*[a-zA-Z-][0-9a-zA-Z-]*)(?:\.(?:0|[1-9]\d*|\d*[a-zA-Z-][0-9a-zA-Z-]*))*))?(?:\+([0-9a-zA-Z-]+(?:\.[0-9a-zA-Z-]+)*))?$/;
 function parseAndValidateSemver(raw, opts) {
   const trimmed = raw.trim();
@@ -3928,7 +3925,9 @@ function parseAndValidateSemver(raw, opts) {
     };
   }
   if (!loose) {
-    const match = content.match(new RegExp(`^${SEMVER_CORE}(?:${SEMVER_PRERELEASE})?(?:${SEMVER_BUILD})?$`));
+    const match = content.match(
+      new RegExp(`^${SEMVER_CORE}(?:${SEMVER_PRERELEASE})?(?:${SEMVER_BUILD})?$`)
+    );
     if (match) {
       const prerelease = match[4];
       const build = match[5];
@@ -4032,7 +4031,14 @@ function parseAndValidateCron(raw, opts) {
   }
   const fields = trimmed.split(/\s+/);
   if (opts.allowSeconds === true && fields.length === 6) {
-    const ranges = [[0, 59], [0, 59], [0, 23], [1, 31], [1, 12], [0, 6]];
+    const ranges = [
+      [0, 59],
+      [0, 59],
+      [0, 23],
+      [1, 31],
+      [1, 12],
+      [0, 6]
+    ];
     for (let i = 0; i < fields.length; i++) {
       const range = ranges[i] ?? [0, 59];
       const error = validateCronField(fields[i] ?? "", range[0] ?? 0, range[1] ?? 0);
@@ -4041,7 +4047,14 @@ function parseAndValidateCron(raw, opts) {
     return { success: true, value: trimmed };
   }
   if (opts.allowYear === true && fields.length === 6) {
-    const ranges = [[0, 59], [0, 23], [1, 31], [1, 12], [0, 6], [1970, 2099]];
+    const ranges = [
+      [0, 59],
+      [0, 23],
+      [1, 31],
+      [1, 12],
+      [0, 6],
+      [1970, 2099]
+    ];
     for (let i = 0; i < fields.length; i++) {
       const range = ranges[i] ?? [0, 59];
       const error = validateCronField(fields[i] ?? "", range[0] ?? 0, range[1] ?? 0);
@@ -4050,7 +4063,13 @@ function parseAndValidateCron(raw, opts) {
     return { success: true, value: trimmed };
   }
   if (fields.length === 5) {
-    const ranges = [[0, 59], [0, 23], [1, 31], [1, 12], [0, 6]];
+    const ranges = [
+      [0, 59],
+      [0, 23],
+      [1, 31],
+      [1, 12],
+      [0, 6]
+    ];
     for (let i = 0; i < fields.length; i++) {
       const range = ranges[i] ?? [0, 59];
       const error = validateCronField(fields[i] ?? "", range[0] ?? 0, range[1] ?? 0);
@@ -5639,10 +5658,8 @@ function defineEnv(schema, vars, options) {
     const messages = result.errors.map((e) => `  - ${e.field}: ${e.message}`).join("\n");
     const unknownMsg = result.unknown.length > 0 ? `
 Unknown variables: ${result.unknown.join(", ")}` : "";
-    throw new Error(
-      `Environment validation failed:
-${messages}${unknownMsg}`
-    );
+    throw new Error(`Environment validation failed:
+${messages}${unknownMsg}`);
   }
   return result.values;
 }
@@ -5789,11 +5806,15 @@ var EnvFileWatcher = class {
     if (this.state.nativeWatchers.has(filePath)) return;
     if (this.shouldIgnore(filePath)) return;
     try {
-      const nativeWatcher = (0, import_node_fs4.watch)(filePath, {
-        persistent: true
-      }, (eventType, filename) => {
-        this.handleFileEvent(eventType, filePath, filename);
-      });
+      const nativeWatcher = (0, import_node_fs4.watch)(
+        filePath,
+        {
+          persistent: true
+        },
+        (eventType, filename) => {
+          this.handleFileEvent(eventType, filePath, filename);
+        }
+      );
       nativeWatcher.on("error", () => {
         this.emitChangeEvent(filePath);
         this.state.nativeWatchers.delete(filePath);
@@ -5819,27 +5840,31 @@ var EnvFileWatcher = class {
     const dirWatchKey = `__dir__:${dirPath}`;
     if (this.state.nativeWatchers.has(dirWatchKey)) return;
     try {
-      const nativeWatcher = (0, import_node_fs4.watch)(dirPath, {
-        persistent: true
-      }, (eventType, filename) => {
-        if (filename === null) return;
-        const fullPath = (0, import_node_path4.resolve)((0, import_node_path4.join)(dirPath, filename));
-        if (isEnvFileName(filename) && !this.shouldIgnore(fullPath)) {
-          if (eventType === "rename") {
-            if ((0, import_node_fs5.existsSync)(fullPath) && !this.state.nativeWatchers.has(fullPath)) {
-              this.watchFile(fullPath);
-              this.debouncedEmit(fullPath, "add");
-            } else if (!(0, import_node_fs5.existsSync)(fullPath) && this.state.nativeWatchers.has(fullPath)) {
-              const watcher = this.state.nativeWatchers.get(fullPath);
-              if (watcher !== void 0) {
-                watcher.close();
-                this.state.nativeWatchers.delete(fullPath);
+      const nativeWatcher = (0, import_node_fs4.watch)(
+        dirPath,
+        {
+          persistent: true
+        },
+        (eventType, filename) => {
+          if (filename === null) return;
+          const fullPath = (0, import_node_path4.resolve)((0, import_node_path4.join)(dirPath, filename));
+          if (isEnvFileName(filename) && !this.shouldIgnore(fullPath)) {
+            if (eventType === "rename") {
+              if ((0, import_node_fs5.existsSync)(fullPath) && !this.state.nativeWatchers.has(fullPath)) {
+                this.watchFile(fullPath);
+                this.debouncedEmit(fullPath, "add");
+              } else if (!(0, import_node_fs5.existsSync)(fullPath) && this.state.nativeWatchers.has(fullPath)) {
+                const watcher = this.state.nativeWatchers.get(fullPath);
+                if (watcher !== void 0) {
+                  watcher.close();
+                  this.state.nativeWatchers.delete(fullPath);
+                }
+                this.debouncedEmit(fullPath, "unlink");
               }
-              this.debouncedEmit(fullPath, "unlink");
             }
           }
         }
-      });
+      );
       nativeWatcher.on("error", () => {
         this.state.nativeWatchers.delete(dirWatchKey);
         setTimeout(() => {
@@ -5964,11 +5989,7 @@ function manualHkdf(ikm, salt, info, length) {
   const okm = Buffer.alloc(length);
   let previous = Buffer.alloc(0);
   for (let i = 1; i <= n; i++) {
-    const hmacData = Buffer.concat([
-      previous,
-      infoBuffer,
-      Buffer.from([i])
-    ]);
+    const hmacData = Buffer.concat([previous, infoBuffer, Buffer.from([i])]);
     previous = (0, import_node_crypto.createHmac)("sha256", prk).update(hmacData).digest();
     const offset = (i - 1) * hashLen;
     const copyLen = Math.min(hashLen, length - offset);
@@ -5985,10 +6006,7 @@ function encrypt(key, plaintext) {
   const iv = (0, import_node_crypto.randomBytes)(12);
   const algo = `aes-${key.length * 8}-gcm`;
   const cipher = (0, import_node_crypto.createCipheriv)(algo, key, iv);
-  const ciphertext = Buffer.concat([
-    cipher.update(plaintext),
-    cipher.final()
-  ]);
+  const ciphertext = Buffer.concat([cipher.update(plaintext), cipher.final()]);
   const authTag = cipher.getAuthTag();
   return { iv, authTag, ciphertext };
 }
@@ -6002,10 +6020,7 @@ function decrypt(key, iv, authTag, ciphertext) {
   const decipher = (0, import_node_crypto.createDecipheriv)(algo, key, iv);
   decipher.setAuthTag(authTag);
   try {
-    return Buffer.concat([
-      decipher.update(ciphertext),
-      decipher.final()
-    ]);
+    return Buffer.concat([decipher.update(ciphertext), decipher.final()]);
   } catch (error) {
     const message = error instanceof Error ? error.message : String(error);
     throw new Error(
@@ -6037,14 +6052,15 @@ function encryptEnvironment(data, key) {
   if (key.length !== 32) {
     throw new EncryptionError(
       `Invalid key length: expected 32 bytes for AES-256, got ${key.length}`,
-      { hint: "Generate a new key using generateMasterKey() or ensure you are using the correct key file." }
+      {
+        hint: "Generate a new key using generateMasterKey() or ensure you are using the correct key file."
+      }
     );
   }
   if (Object.keys(data).length === 0) {
-    throw new EncryptionError(
-      "Cannot encrypt empty environment data",
-      { hint: "Provide at least one environment variable to encrypt." }
-    );
+    throw new EncryptionError("Cannot encrypt empty environment data", {
+      hint: "Provide at least one environment variable to encrypt."
+    });
   }
   try {
     const serialized = serializeEnvData(data);
@@ -6073,7 +6089,9 @@ function decryptEnvironment(encrypted, key) {
   if (encrypted.algorithm !== ENCRYPTION_ALGORITHM) {
     throw new EncryptionError(
       `Unsupported algorithm: "${encrypted.algorithm}". Expected "${ENCRYPTION_ALGORITHM}".`,
-      { hint: "This vault was encrypted with a different algorithm. You may need to migrate the vault." }
+      {
+        hint: "This vault was encrypted with a different algorithm. You may need to migrate the vault."
+      }
     );
   }
   if (encrypted.iv.length !== IV_LENGTH) {
@@ -6130,12 +6148,9 @@ function decryptValue(encrypted, key) {
     );
   }
   if (!encrypted.startsWith(ENCRYPTED_PREFIX)) {
-    throw new EncryptionError(
-      "Invalid encrypted value format: missing required prefix",
-      {
-        hint: `Expected the value to start with "${ENCRYPTED_PREFIX}". This value may not have been encrypted by ultraenv.`
-      }
-    );
+    throw new EncryptionError("Invalid encrypted value format: missing required prefix", {
+      hint: `Expected the value to start with "${ENCRYPTED_PREFIX}". This value may not have been encrypted by ultraenv.`
+    });
   }
   const payload = encrypted.slice(ENCRYPTED_PREFIX.length);
   const parts = payload.split(":");
@@ -6151,16 +6166,14 @@ function decryptValue(encrypted, key) {
   const authTagB64 = parts[1];
   const ciphertextB64 = parts[2];
   if (ivB64 === void 0 || authTagB64 === void 0 || ciphertextB64 === void 0) {
-    throw new EncryptionError(
-      "Invalid encrypted value: unexpected component structure",
-      { hint: "The encrypted data may be corrupted. Try re-encrypting the value." }
-    );
+    throw new EncryptionError("Invalid encrypted value: unexpected component structure", {
+      hint: "The encrypted data may be corrupted. Try re-encrypting the value."
+    });
   }
   if (ivB64.length === 0 || authTagB64.length === 0 || ciphertextB64.length === 0) {
-    throw new EncryptionError(
-      "Invalid encrypted value: one or more base64 components are empty",
-      { hint: "The encrypted data may be corrupted. Try re-encrypting the value." }
-    );
+    throw new EncryptionError("Invalid encrypted value: one or more base64 components are empty", {
+      hint: "The encrypted data may be corrupted. Try re-encrypting the value."
+    });
   }
   try {
     const iv = base64ToBuffer(ivB64);
@@ -6169,7 +6182,9 @@ function decryptValue(encrypted, key) {
     if (iv.length !== IV_LENGTH) {
       throw new EncryptionError(
         `Invalid IV length: expected ${IV_LENGTH} bytes, got ${iv.length}`,
-        { hint: "The encrypted data may be corrupted or was produced by a different version of ultraenv." }
+        {
+          hint: "The encrypted data may be corrupted or was produced by a different version of ultraenv."
+        }
       );
     }
     if (authTag.length !== AUTH_TAG_LENGTH) {
@@ -6184,10 +6199,9 @@ function decryptValue(encrypted, key) {
     if (error instanceof EncryptionError) throw error;
     const message = error instanceof Error ? error.message : String(error);
     if (message.includes("Invalid") || message.includes("base64")) {
-      throw new EncryptionError(
-        "Invalid base64 encoding in encrypted value",
-        { hint: "The encrypted data may be corrupted. Ensure the value was not modified." }
-      );
+      throw new EncryptionError("Invalid base64 encoding in encrypted value", {
+        hint: "The encrypted data may be corrupted. Ensure the value was not modified."
+      });
     }
     throw new EncryptionError(
       "Failed to decrypt value. The key may be incorrect or the ciphertext was tampered with.",
@@ -6217,10 +6231,9 @@ function deriveEnvironmentKey(masterKey, environment) {
     );
   }
   if (environment.length === 0) {
-    throw new EncryptionError(
-      "Environment name cannot be empty",
-      { hint: 'Provide a valid environment name (e.g., "development", "production").' }
-    );
+    throw new EncryptionError("Environment name cannot be empty", {
+      hint: 'Provide a valid environment name (e.g., "development", "production").'
+    });
   }
   if (HKDF_SALT.length < DEFAULT_SALT_LENGTH) {
     const paddedSalt = Buffer.alloc(DEFAULT_SALT_LENGTH);
@@ -6232,12 +6245,7 @@ function deriveEnvironmentKey(masterKey, environment) {
       DEFAULT_KEY_LENGTH
     );
   }
-  return deriveKey(
-    masterKey,
-    HKDF_SALT,
-    `${HKDF_INFO_PREFIX}${environment}`,
-    DEFAULT_KEY_LENGTH
-  );
+  return deriveKey(masterKey, HKDF_SALT, `${HKDF_INFO_PREFIX}${environment}`, DEFAULT_KEY_LENGTH);
 }
 function formatKey(key) {
   if (key.length === 0) {
@@ -6257,21 +6265,17 @@ function parseKey2(formatted) {
   }
   const base64Part = formatted.slice(KEY_PREFIX.length);
   if (base64Part.length === 0) {
-    throw new EncryptionError(
-      "Invalid key format: base64 payload is empty after prefix",
-      { hint: "The key appears to be truncated. Generate a new key." }
-    );
+    throw new EncryptionError("Invalid key format: base64 payload is empty after prefix", {
+      hint: "The key appears to be truncated. Generate a new key."
+    });
   }
   try {
     return base64ToBuffer(base64Part);
   } catch (error) {
-    throw new EncryptionError(
-      "Failed to decode key: invalid base64 encoding",
-      {
-        cause: error instanceof Error ? error : void 0,
-        hint: 'The key may be corrupted. Generate a new key with "ultraenv key generate".'
-      }
-    );
+    throw new EncryptionError("Failed to decode key: invalid base64 encoding", {
+      cause: error instanceof Error ? error : void 0,
+      hint: 'The key may be corrupted. Generate a new key with "ultraenv key generate".'
+    });
   }
 }
 function isValidKeyFormat(formatted) {
@@ -6333,12 +6337,9 @@ function parseKeysFile(content) {
     if (!eqMatch) {
       const plainMatch = line.match(/^ULTRAENV_KEY_([A-Za-z0-9_]+)=(.*)$/);
       if (!plainMatch) {
-        throw new EncryptionError(
-          `Invalid keys file format at line ${i + 1}: "${line}"`,
-          {
-            hint: 'Each key entry should be in the format: ULTRAENV_KEY_{ENVIRONMENT}="ultraenv_key_v1_..."'
-          }
-        );
+        throw new EncryptionError(`Invalid keys file format at line ${i + 1}: "${line}"`, {
+          hint: 'Each key entry should be in the format: ULTRAENV_KEY_{ENVIRONMENT}="ultraenv_key_v1_..."'
+        });
       }
       const envName2 = plainMatch[1].toLowerCase();
       const keyValue2 = plainMatch[2];
@@ -6379,21 +6380,14 @@ function parseVaultFile(content) {
     if (rawLine === void 0) continue;
     const line = rawLine.trim();
     if (line.length === 0 || line.startsWith("#")) continue;
-    const match = line.match(
-      new RegExp(`^${VAULT_VAR_PREFIX}([A-Za-z0-9_]+)="(.*)"$`)
-    );
+    const match = line.match(new RegExp(`^${VAULT_VAR_PREFIX}([A-Za-z0-9_]+)="(.*)"$`));
     if (!match) {
-      const plainMatch = line.match(
-        new RegExp(`^${VAULT_VAR_PREFIX}([A-Za-z0-9_]+)=(.*)$`)
-      );
+      const plainMatch = line.match(new RegExp(`^${VAULT_VAR_PREFIX}([A-Za-z0-9_]+)=(.*)$`));
       if (!plainMatch) {
-        throw new VaultError(
-          `Invalid vault file format at line ${lineNumber}: "${line}"`,
-          {
-            operation: "parse",
-            hint: `Each environment entry should be in the format: ${VAULT_VAR_PREFIX}{ENVIRONMENT}="encrypted:..."`
-          }
-        );
+        throw new VaultError(`Invalid vault file format at line ${lineNumber}: "${line}"`, {
+          operation: "parse",
+          hint: `Each environment entry should be in the format: ${VAULT_VAR_PREFIX}{ENVIRONMENT}="encrypted:..."`
+        });
       }
       const envName2 = plainMatch[1].toLowerCase();
       const encryptedValue2 = plainMatch[2];
@@ -6446,41 +6440,32 @@ async function readVaultFile(path) {
     return parseVaultFile(content);
   } catch (error) {
     if (error instanceof VaultError) throw error;
-    throw new VaultError(
-      `Failed to read vault file "${path}"`,
-      {
-        operation: "read",
-        /* v8 ignore start */
-        cause: error instanceof Error ? error : void 0
-        /* v8 ignore stop */
-      }
-    );
+    throw new VaultError(`Failed to read vault file "${path}"`, {
+      operation: "read",
+      /* v8 ignore start */
+      cause: error instanceof Error ? error : void 0
+      /* v8 ignore stop */
+    });
   }
 }
 async function writeVaultFile(path, environments) {
   if (environments.size === 0) {
-    throw new VaultError(
-      "Cannot write an empty vault file",
-      {
-        operation: "write",
-        hint: "Add at least one environment to the vault before writing."
-      }
-    );
+    throw new VaultError("Cannot write an empty vault file", {
+      operation: "write",
+      hint: "Add at least one environment to the vault before writing."
+    });
   }
   try {
     const content = serializeVaultFile(environments);
     await writeFile(path, content, "utf-8");
   } catch (error) {
     if (error instanceof VaultError) throw error;
-    throw new VaultError(
-      `Failed to write vault file "${path}"`,
-      {
-        operation: "write",
-        /* v8 ignore start */
-        cause: error instanceof Error ? error : void 0
-        /* v8 ignore stop */
-      }
-    );
+    throw new VaultError(`Failed to write vault file "${path}"`, {
+      operation: "write",
+      /* v8 ignore start */
+      cause: error instanceof Error ? error : void 0
+      /* v8 ignore stop */
+    });
   }
 }
 function getEnvironmentData(vault, env) {
@@ -6513,16 +6498,14 @@ var HMAC_ALGORITHM = "sha256";
 var HMAC_DIGEST_LENGTH = 64;
 function computeIntegrity(data, key) {
   if (key.length === 0) {
-    throw new EncryptionError(
-      "Cannot compute integrity with an empty key",
-      { hint: "Provide a valid encryption key for integrity computation." }
-    );
+    throw new EncryptionError("Cannot compute integrity with an empty key", {
+      hint: "Provide a valid encryption key for integrity computation."
+    });
   }
   if (data.length === 0) {
-    throw new EncryptionError(
-      "Cannot compute integrity for empty data",
-      { hint: "Provide non-empty data for integrity computation." }
-    );
+    throw new EncryptionError("Cannot compute integrity for empty data", {
+      hint: "Provide non-empty data for integrity computation."
+    });
   }
   const hmac = (0, import_node_crypto3.createHmac)(HMAC_ALGORITHM, key);
   hmac.update(data, "utf-8");
@@ -6530,21 +6513,20 @@ function computeIntegrity(data, key) {
 }
 function verifyIntegrity(data, key, expected) {
   if (key.length === 0) {
-    throw new EncryptionError(
-      "Cannot verify integrity with an empty key"
-    );
+    throw new EncryptionError("Cannot verify integrity with an empty key");
   }
   if (expected.length !== HMAC_DIGEST_LENGTH) {
     throw new EncryptionError(
       `Invalid expected digest length: expected ${HMAC_DIGEST_LENGTH} hex characters, got ${expected.length}`,
-      { hint: "The integrity digest should be a 64-character lowercase hex string from computeIntegrity()." }
+      {
+        hint: "The integrity digest should be a 64-character lowercase hex string from computeIntegrity()."
+      }
     );
   }
   if (!/^[0-9a-f]{64}$/.test(expected)) {
-    throw new EncryptionError(
-      "Invalid expected digest format: must be a lowercase hex string",
-      { hint: "Ensure the stored digest is a 64-character lowercase hex string." }
-    );
+    throw new EncryptionError("Invalid expected digest format: must be a lowercase hex string", {
+      hint: "Ensure the stored digest is a 64-character lowercase hex string."
+    });
   }
   try {
     const computed = computeIntegrity(data, key);
@@ -6558,14 +6540,10 @@ function verifyIntegrity(data, key, expected) {
 }
 function computeVaultChecksum(environments, key) {
   if (key.length === 0) {
-    throw new EncryptionError(
-      "Cannot compute vault checksum with an empty key"
-    );
+    throw new EncryptionError("Cannot compute vault checksum with an empty key");
   }
   if (environments.size === 0) {
-    throw new EncryptionError(
-      "Cannot compute vault checksum for empty environment set"
-    );
+    throw new EncryptionError("Cannot compute vault checksum for empty environment set");
   }
   const sortedNames = Array.from(environments.keys()).sort();
   const parts = [];
@@ -6581,9 +6559,7 @@ function computeVaultChecksum(environments, key) {
 }
 function verifyVaultChecksum(environments, key, expected) {
   if (key.length === 0) {
-    throw new EncryptionError(
-      "Cannot verify vault checksum with an empty key"
-    );
+    throw new EncryptionError("Cannot verify vault checksum with an empty key");
   }
   if (expected.length !== HMAC_DIGEST_LENGTH) {
     throw new EncryptionError(
@@ -6644,9 +6620,7 @@ var SecureBuffer = class _SecureBuffer {
    */
   constructor(size) {
     if (size < 1 || !Number.isInteger(size)) {
-      throw new RangeError(
-        `SecureBuffer: size must be a positive integer, got ${size}`
-      );
+      throw new RangeError(`SecureBuffer: size must be a positive integer, got ${size}`);
     }
     this._buffer = Buffer.alloc(size);
     this._length = size;
@@ -6700,9 +6674,7 @@ var SecureBuffer = class _SecureBuffer {
    */
   fill(value) {
     if (value < 0 || value > 255 || !Number.isInteger(value)) {
-      throw new RangeError(
-        `SecureBuffer.fill: value must be an integer 0-255, got ${value}`
-      );
+      throw new RangeError(`SecureBuffer.fill: value must be an integer 0-255, got ${value}`);
     }
     this._buffer.fill(value);
     this._zeroed = value === 0;
@@ -7143,7 +7115,7 @@ var SECRET_PATTERNS = [
   {
     id: "google-oauth-client-secret",
     name: "Google OAuth Client Secret",
-    pattern: /(?:^|["'\s:=,`]GOCSPX-[A-Za-z0-9_-]{28,})(?:["'\s,`;]|$)/gm,
+    pattern: /(?:^|["'\s:=,`])(GOCSPX-[A-Za-z0-9_-]{28,})(?:["'\s,`;]|$)/gm,
     confidence: 0.9,
     severity: "critical",
     description: "Google OAuth Client Secret (new format). Used for OAuth authentication flows.",
@@ -8018,9 +7990,7 @@ function extractCandidates(line) {
     const captured = tokenMatch[1];
     if (captured === void 0) continue;
     const tokenIndex = tokenMatch.index + 1;
-    const existing = candidates.some(
-      (c) => c.value === captured && c.column === tokenIndex
-    );
+    const existing = candidates.some((c) => c.value === captured && c.column === tokenIndex);
     if (!existing) {
       candidates.push({ value: captured, column: tokenMatch.index + 1 });
     }
@@ -8587,15 +8557,9 @@ var DIM = "\x1B[2m";
 function formatTerminal(result) {
   const lines = [];
   const totalCount = result.secrets.length;
-  const criticalCount = result.secrets.filter(
-    (s) => getSeverity(s.pattern) === "critical"
-  ).length;
-  const highCount = result.secrets.filter(
-    (s) => getSeverity(s.pattern) === "high"
-  ).length;
-  const mediumCount = result.secrets.filter(
-    (s) => getSeverity(s.pattern) === "medium"
-  ).length;
+  const criticalCount = result.secrets.filter((s) => getSeverity(s.pattern) === "critical").length;
+  const highCount = result.secrets.filter((s) => getSeverity(s.pattern) === "high").length;
+  const mediumCount = result.secrets.filter((s) => getSeverity(s.pattern) === "medium").length;
   lines.push("");
   lines.push(`${BOLD}=== ultraenv Secret Scan Report ===${RESET}`);
   lines.push("");
@@ -8611,7 +8575,9 @@ function formatTerminal(result) {
   }
   const summaryParts = [];
   if (criticalCount > 0) {
-    summaryParts.push(`${SEVERITY_CONFIG.critical.terminalColor}${BOLD}${criticalCount} critical${RESET}`);
+    summaryParts.push(
+      `${SEVERITY_CONFIG.critical.terminalColor}${BOLD}${criticalCount} critical${RESET}`
+    );
   }
   if (highCount > 0) {
     summaryParts.push(`${SEVERITY_CONFIG.high.terminalColor}${BOLD}${highCount} high${RESET}`);
@@ -9248,16 +9214,12 @@ var SyncWatcher = class {
       timestamp: (/* @__PURE__ */ new Date()).toISOString()
     };
     try {
-      const needs = await needsUpdate(
-        this.options.envPath,
-        this.options.examplePath,
-        {
-          schemaPath: void 0,
-          includeDescriptions: this.options.includeDescriptions,
-          includeTypes: this.options.includeTypes,
-          includeDefaults: this.options.includeDefaults
-        }
-      );
+      const needs = await needsUpdate(this.options.envPath, this.options.examplePath, {
+        schemaPath: void 0,
+        includeDescriptions: this.options.includeDescriptions,
+        includeTypes: this.options.includeTypes,
+        includeDefaults: this.options.includeDefaults
+      });
       if (!needs) {
         result.success = true;
         if (this.options.onSync !== void 0) {
@@ -9265,16 +9227,12 @@ var SyncWatcher = class {
         }
         return;
       }
-      await generateExampleFile(
-        this.options.envPath,
-        this.options.examplePath,
-        {
-          schemaPath: void 0,
-          includeDescriptions: this.options.includeDescriptions,
-          includeTypes: this.options.includeTypes,
-          includeDefaults: this.options.includeDefaults
-        }
-      );
+      await generateExampleFile(this.options.envPath, this.options.examplePath, {
+        schemaPath: void 0,
+        includeDescriptions: this.options.includeDescriptions,
+        includeTypes: this.options.includeTypes,
+        includeDefaults: this.options.includeDefaults
+      });
       result.success = true;
       this.emitEvent({
         type: "change",
@@ -10079,12 +10037,14 @@ async function validateAllEnvironments(schema, cwd) {
       const message = error instanceof Error ? error.message : String(error);
       results.set(envName ?? pattern, {
         valid: false,
-        errors: [{
-          field: "",
-          value: "",
-          message: `Failed to read/parse file: ${message}`,
-          hint: "Check that the file is a valid .env file."
-        }],
+        errors: [
+          {
+            field: "",
+            value: "",
+            message: `Failed to read/parse file: ${message}`,
+            hint: "Check that the file is a valid .env file."
+          }
+        ],
         warnings: []
       });
     }
@@ -10095,14 +10055,11 @@ async function switchEnvironment(envName, cwd) {
   const baseDir = (0, import_node_path7.resolve)(cwd ?? process.cwd());
   const envFile = (0, import_node_path7.join)(baseDir, `.env.${envName}`);
   if (!await exists(envFile)) {
-    throw new FileSystemError(
-      `Environment file ".env.${envName}" not found`,
-      {
-        path: envFile,
-        operation: "read",
-        hint: `Create a ".env.${envName}" file first, or use "ultraenv env create ${envName}".`
-      }
-    );
+    throw new FileSystemError(`Environment file ".env.${envName}" not found`, {
+      path: envFile,
+      operation: "read",
+      hint: `Create a ".env.${envName}" file first, or use "ultraenv env create ${envName}".`
+    });
   }
   const content = await readFile(envFile);
   const header = [
@@ -10276,24 +10233,18 @@ async function compareEnvironments(env1, env2, cwd, _schema) {
   const resolvedEnv1Path = env1.includes("/") || env1.includes("\\") ? (0, import_node_path8.resolve)(env1) : env1Path;
   const resolvedEnv2Path = env2.includes("/") || env2.includes("\\") ? (0, import_node_path8.resolve)(env2) : env2Path;
   if (!await exists(resolvedEnv1Path)) {
-    throw new FileSystemError(
-      `Environment file not found: "${resolvedEnv1Path}"`,
-      {
-        path: resolvedEnv1Path,
-        operation: "read",
-        hint: `Ensure ".env.${env1}" exists in the project directory.`
-      }
-    );
+    throw new FileSystemError(`Environment file not found: "${resolvedEnv1Path}"`, {
+      path: resolvedEnv1Path,
+      operation: "read",
+      hint: `Ensure ".env.${env1}" exists in the project directory.`
+    });
   }
   if (!await exists(resolvedEnv2Path)) {
-    throw new FileSystemError(
-      `Environment file not found: "${resolvedEnv2Path}"`,
-      {
-        path: resolvedEnv2Path,
-        operation: "read",
-        hint: `Ensure ".env.${env2}" exists in the project directory.`
-      }
-    );
+    throw new FileSystemError(`Environment file not found: "${resolvedEnv2Path}"`, {
+      path: resolvedEnv2Path,
+      operation: "read",
+      hint: `Ensure ".env.${env2}" exists in the project directory.`
+    });
   }
   const env1Content = await readFile(resolvedEnv1Path);
   const env2Content = await readFile(resolvedEnv2Path);
@@ -10386,14 +10337,18 @@ function formatComparison(comparison) {
     lines.push("");
     lines.push(`Only in ${comparison.env1Name} (${comparison.onlyInEnv1.length}):`);
     for (const diff of comparison.onlyInEnv1) {
-      lines.push(`  - ${diff.key}${diff.isSecret ? " [SECRET]" : ""} = ${diff.value1 || "(empty)"}`);
+      lines.push(
+        `  - ${diff.key}${diff.isSecret ? " [SECRET]" : ""} = ${diff.value1 || "(empty)"}`
+      );
     }
   }
   if (comparison.onlyInEnv2.length > 0) {
     lines.push("");
     lines.push(`Only in ${comparison.env2Name} (${comparison.onlyInEnv2.length}):`);
     for (const diff of comparison.onlyInEnv2) {
-      lines.push(`  + ${diff.key}${diff.isSecret ? " [SECRET]" : ""} = ${diff.value2 || "(empty)"}`);
+      lines.push(
+        `  + ${diff.key}${diff.isSecret ? " [SECRET]" : ""} = ${diff.value2 || "(empty)"}`
+      );
     }
   }
   if (comparison.different.length > 0) {
@@ -10574,14 +10529,11 @@ function validateEnvironmentName(name) {
     });
   }
   if (name.length > 64) {
-    throw new FileSystemError(
-      `Environment name too long: ${name.length} characters (max 64)`,
-      {
-        path: "",
-        operation: "validate",
-        hint: "Use a shorter environment name."
-      }
-    );
+    throw new FileSystemError(`Environment name too long: ${name.length} characters (max 64)`, {
+      path: "",
+      operation: "validate",
+      hint: "Use a shorter environment name."
+    });
   }
   if (!/^[a-zA-Z0-9_-]+$/.test(name)) {
     throw new FileSystemError(
@@ -10595,14 +10547,11 @@ function validateEnvironmentName(name) {
   }
   const reserved = ["local", "example", "template", "bak", "backup", "old", "tmp", "temp"];
   if (reserved.includes(name.toLowerCase())) {
-    throw new FileSystemError(
-      `Reserved environment name: "${name}"`,
-      {
-        path: "",
-        operation: "validate",
-        hint: `The name "${name}" is reserved. Choose a different name.`
-      }
-    );
+    throw new FileSystemError(`Reserved environment name: "${name}"`, {
+      path: "",
+      operation: "validate",
+      hint: `The name "${name}" is reserved. Choose a different name.`
+    });
   }
 }
 async function createEnvironment(name, options) {
@@ -10610,28 +10559,22 @@ async function createEnvironment(name, options) {
   const baseDir = (0, import_node_path9.resolve)(options?.cwd ?? process.cwd());
   const outputPath = (0, import_node_path9.join)(baseDir, `.env.${name}`);
   if (await exists(outputPath)) {
-    throw new FileSystemError(
-      `Environment file already exists: ".env.${name}"`,
-      {
-        path: outputPath,
-        operation: "create",
-        hint: "Delete the existing file first, or use a different environment name."
-      }
-    );
+    throw new FileSystemError(`Environment file already exists: ".env.${name}"`, {
+      path: outputPath,
+      operation: "create",
+      hint: "Delete the existing file first, or use a different environment name."
+    });
   }
   let content;
   let variables = [];
   if (options?.copyFrom !== void 0) {
     const sourcePath = (0, import_node_path9.join)(baseDir, `.env.${options.copyFrom}`);
     if (!await exists(sourcePath)) {
-      throw new FileSystemError(
-        `Source environment not found: ".env.${options.copyFrom}"`,
-        {
-          path: sourcePath,
-          operation: "read",
-          hint: `Ensure ".env.${options.copyFrom}" exists before copying.`
-        }
-      );
+      throw new FileSystemError(`Source environment not found: ".env.${options.copyFrom}"`, {
+        path: sourcePath,
+        operation: "read",
+        hint: `Ensure ".env.${options.copyFrom}" exists before copying.`
+      });
     }
     content = await readFile(sourcePath);
     variables = extractVariables(content, options?.schema);
@@ -10652,14 +10595,11 @@ async function createEnvironment(name, options) {
     } else if (await exists(templatePath)) {
       content = await readFile(templatePath);
     } else {
-      throw new FileSystemError(
-        `Template not found: "${options.fromTemplate}"`,
-        {
-          path: templatePath,
-          operation: "read",
-          hint: "Use a built-in template name (nodejs, nextjs, docker) or a valid file path."
-        }
-      );
+      throw new FileSystemError(`Template not found: "${options.fromTemplate}"`, {
+        path: templatePath,
+        operation: "read",
+        hint: "Use a built-in template name (nodejs, nextjs, docker) or a valid file path."
+      });
     }
     variables = extractVariables(content, options?.schema);
     const values = collectValues(variables, options?.values);
@@ -10696,14 +10636,11 @@ async function removeEnvironment(name, cwd) {
   const baseDir = (0, import_node_path9.resolve)(cwd ?? process.cwd());
   const filePath = (0, import_node_path9.join)(baseDir, `.env.${name}`);
   if (!await exists(filePath)) {
-    throw new FileSystemError(
-      `Environment file not found: ".env.${name}"`,
-      {
-        path: filePath,
-        operation: "unlink",
-        hint: "The environment does not exist."
-      }
-    );
+    throw new FileSystemError(`Environment file not found: ".env.${name}"`, {
+      path: filePath,
+      operation: "unlink",
+      hint: "The environment does not exist."
+    });
   }
   await removeFile(filePath);
 }
@@ -10855,11 +10792,7 @@ var nextjsPreset = {
 };
 
 // src/presets/vite.ts
-var VITE_MODES = [
-  "development",
-  "production",
-  "test"
-];
+var VITE_MODES = ["development", "production", "test"];
 var viteSchema = {
   // ── Public (client-exposed) Variables ──────────────────────────────
   VITE_API_URL: {
@@ -12081,10 +12014,8 @@ var awsLambdaPreset = {
 var presets = {};
 function registerPreset(name, preset) {
   if (presets[name] !== void 0) {
-    process.stderr.write(
-      `[ultraenv] Warning: overwriting existing preset "${name}"
-`
-    );
+    process.stderr.write(`[ultraenv] Warning: overwriting existing preset "${name}"
+`);
   }
   presets[name] = preset;
 }
@@ -12181,9 +12112,7 @@ function buildFilteredEnv(source, prefixes, allowSet, denySet, exposePublic, exp
 function healthCheckRoute(options = {}) {
   const { source = process.env, metadata = {} } = options;
   return (_req, res) => {
-    const envKeys = Object.keys(source).filter(
-      (k) => source[k] !== void 0 && source[k] !== ""
-    );
+    const envKeys = Object.keys(source).filter((k) => source[k] !== void 0 && source[k] !== "");
     const nodeEnv = source["NODE_ENV"] ?? "unknown";
     const response = {
       status: "ok",
@@ -12218,13 +12147,7 @@ function ultraenvPlugin(fastify, options = {}, done) {
   }
   const allowSet = new Set(allowList.map((k) => k.toUpperCase()));
   const denySet = new Set(denyList.map((k) => k.toUpperCase()));
-  const filteredEnv = buildFastifyEnv(
-    source,
-    allPrefixes,
-    allowSet,
-    denySet,
-    exposeNodeEnv
-  );
+  const filteredEnv = buildFastifyEnv(source, allPrefixes, allowSet, denySet, exposeNodeEnv);
   fastify.decorate("env", filteredEnv);
   done();
 }
@@ -12266,9 +12189,7 @@ function healthCheck(options = {}) {
     validCount,
     metadata = {}
   } = options;
-  const envKeys = Object.entries(source).filter(
-    ([, value]) => value !== void 0 && value !== ""
-  );
+  const envKeys = Object.entries(source).filter(([, value]) => value !== void 0 && value !== "");
   const loaded = envKeys.length;
   const environment = detectEnvironment2(source);
   const valid = validCount ?? loaded;
@@ -12311,13 +12232,7 @@ function readinessCheck(requiredVars, source) {
   };
 }
 function detectEnvironment2(env) {
-  const candidates = [
-    "NODE_ENV",
-    "APP_ENV",
-    "ENVIRONMENT",
-    "ENV",
-    "STAGE"
-  ];
+  const candidates = ["NODE_ENV", "APP_ENV", "ENVIRONMENT", "ENV", "STAGE"];
   for (const candidate of candidates) {
     const value = env[candidate];
     if (value !== void 0 && value !== "") {
@@ -12349,11 +12264,7 @@ function drawTitledBox(title, lines, chars = DOUBLE) {
   if (lines.length === 0) {
     return [hRuleTitled(title, 0, chars), boxLine("", 0, chars), hRuleBottom(0, chars)].join("\n");
   }
-  const innerWidth = Math.max(
-    ...lines.map((line) => stripAnsi(line).length),
-    title.length + 2,
-    0
-  );
+  const innerWidth = Math.max(...lines.map((line) => stripAnsi(line).length), title.length + 2, 0);
   const result = [];
   result.push(hRuleTitled(title, innerWidth, chars));
   for (const line of lines) {
@@ -12408,7 +12319,9 @@ function reportValidation(result, options = {}) {
   const c = color ? ANSI : noColorANSI();
   if (result.valid) {
     const lines = [];
-    lines.push(`${c.green}${c.bold}  \u2713${c.reset}  All ${Object.keys(result.validated).length} variables passed validation`);
+    lines.push(
+      `${c.green}${c.bold}  \u2713${c.reset}  All ${Object.keys(result.validated).length} variables passed validation`
+    );
     if (result.warnings.length > 0) {
       lines.push("");
       for (const warning of result.warnings) {
@@ -12438,13 +12351,17 @@ function reportValidation(result, options = {}) {
     output.push("");
     const warningLines = [];
     for (const warning of result.warnings) {
-      warningLines.push(`${c.yellow}\u26A0${c.reset} ${warning.field}: ${warning.message} ${c.dim}[${warning.code}]${c.reset}`);
+      warningLines.push(
+        `${c.yellow}\u26A0${c.reset} ${warning.field}: ${warning.message} ${c.dim}[${warning.code}]${c.reset}`
+      );
     }
     output.push(warningLines.join("\n"));
   }
   if (result.unknown.length > 0) {
     output.push("");
-    output.push(`${c.gray}?${c.reset}  Unknown variables: ${result.unknown.map((u) => `${c.dim}${u}${c.reset}`).join(", ")}`);
+    output.push(
+      `${c.gray}?${c.reset}  Unknown variables: ${result.unknown.map((u) => `${c.dim}${u}${c.reset}`).join(", ")}`
+    );
   }
   return output.join("\n");
 }
@@ -12452,10 +12369,7 @@ function reportError(error, options = {}) {
   const { color = true, boxStyle = DEFAULT_BOX } = options;
   const c = color ? ANSI : noColorANSI();
   const code = error.code ?? "ULTRAENV_ERROR";
-  const lines = [
-    `${c.red}${c.bold}Error [${code}]${c.reset}`,
-    `  ${error.message}`
-  ];
+  const lines = [`${c.red}${c.bold}Error [${code}]${c.reset}`, `  ${error.message}`];
   if (error.hint !== void 0) {
     lines.push("");
     lines.push(`${c.cyan}  \u{1F4A1} ${error.hint}${c.reset}`);