vesant-sdk 1.6.2 → 1.6.3

package/dist/webhooks/index.d.mts

@@ -1,177 +1,2 @@
-import { U as UUID, T as Timestamp, R as RiskLevel } from '../types-B4Ezqo7V.mjs';
-
-/**
- * Webhook signature verification utilities.
- *
- * Supports both Web Crypto API (browsers, Deno, Cloudflare Workers)
- * and Node.js crypto module with automatic runtime detection.
- * Uses constant-time comparison to prevent timing attacks.
- */
-/**
- * Verify an HMAC-SHA256 webhook signature.
- *
- * @param payload - The raw request body string
- * @param signature - The signature from the webhook header
- * @param secret - The webhook signing secret
- * @returns true if the signature is valid
- */
-declare function verifyWebhookSignature(payload: string, signature: string, secret: string): Promise<boolean>;
-
-/**
- * Webhook event types and payload definitions.
- */
-
-type WebhookEventType = 'risk.score.changed' | 'risk.category.changed' | 'profile.created' | 'profile.updated' | 'geolocation.verified' | 'geolocation.blocked' | 'kyc.status.changed' | 'kyc.approved' | 'kyc.declined' | 'decision.recorded' | 'label.applied' | 'location_request.completed' | 'compliance.check.failed';
-interface BaseWebhookEvent<T extends WebhookEventType = WebhookEventType, P = unknown> {
-    id: UUID;
-    type: T;
-    tenant_id: string;
-    environment: 'production' | 'sandbox';
-    customer_id: string;
-    payload: P;
-    timestamp: Timestamp;
-}
-interface RiskScoreChangedPayload {
-    previous_score: number;
-    new_score: number;
-    risk_level: RiskLevel;
-    factors: string[];
-}
-interface RiskCategoryChangedPayload {
-    previous_category: string;
-    new_category: string;
-    risk_level: RiskLevel;
-}
-interface ProfileCreatedPayload {
-    customer_id: string;
-    entity_type: string;
-    source: string;
-}
-interface ProfileUpdatedPayload {
-    customer_id: string;
-    updated_fields: string[];
-}
-interface GeolocationVerifiedPayload {
-    latitude: number;
-    longitude: number;
-    country: string;
-    region?: string;
-    is_compliant: boolean;
-}
-interface GeolocationBlockedPayload {
-    latitude: number;
-    longitude: number;
-    country: string;
-    region?: string;
-    reasons: string[];
-}
-interface KycStatusChangedPayload {
-    previous_status: string;
-    new_status: string;
-    provider?: string;
-}
-interface DecisionRecordedPayload {
-    decision_id: string;
-    decision_type: string;
-    category: string;
-    source: string;
-    risk_score?: number;
-}
-interface LabelAppliedPayload {
-    label_type: string;
-    reasons?: string[];
-}
-interface LocationRequestCompletedPayload {
-    request_id: string;
-    status: string;
-    latitude?: number;
-    longitude?: number;
-}
-interface ComplianceCheckFailedPayload {
-    check_type: string;
-    reasons: string[];
-    severity: string;
-}
-type WebhookEvent = BaseWebhookEvent<'risk.score.changed', RiskScoreChangedPayload> | BaseWebhookEvent<'risk.category.changed', RiskCategoryChangedPayload> | BaseWebhookEvent<'profile.created', ProfileCreatedPayload> | BaseWebhookEvent<'profile.updated', ProfileUpdatedPayload> | BaseWebhookEvent<'geolocation.verified', GeolocationVerifiedPayload> | BaseWebhookEvent<'geolocation.blocked', GeolocationBlockedPayload> | BaseWebhookEvent<'kyc.status.changed', KycStatusChangedPayload> | BaseWebhookEvent<'kyc.approved', KycStatusChangedPayload> | BaseWebhookEvent<'kyc.declined', KycStatusChangedPayload> | BaseWebhookEvent<'decision.recorded', DecisionRecordedPayload> | BaseWebhookEvent<'label.applied', LabelAppliedPayload> | BaseWebhookEvent<'location_request.completed', LocationRequestCompletedPayload> | BaseWebhookEvent<'compliance.check.failed', ComplianceCheckFailedPayload>;
-interface WebhookHandlerConfig {
-    /** Webhook signing secret for signature verification */
-    secret: string;
-    /** Header name containing the signature (default: 'x-webhook-signature') */
-    signatureHeader?: string;
-    /** Maximum age of webhook event in ms (default: 300000 = 5 minutes) */
-    tolerance?: number;
-}
-type WebhookEventHandler<T extends WebhookEventType = WebhookEventType> = (event: Extract<WebhookEvent, {
-    type: T;
-}>) => void | Promise<void>;
-type WebhookAnyHandler = (event: WebhookEvent) => void | Promise<void>;
-
-/**
- * Webhook event handler with signature verification and typed dispatch.
- */
-
-declare class WebhookHandler {
-    private handlers;
-    private anyHandlers;
-    private readonly secret;
-    private readonly tolerance;
-    constructor(config: WebhookHandlerConfig);
-    /**
-     * Register a handler for a specific event type.
-     */
-    on<T extends WebhookEventType>(eventType: T, handler: WebhookEventHandler<T>): this;
-    /**
-     * Register a catch-all handler for all event types.
-     */
-    onAny(handler: WebhookAnyHandler): this;
-    /**
-     * Verify signature and parse the webhook body.
-     */
-    verifyAndParse(body: string, signature: string): Promise<WebhookEvent>;
-    /**
-     * Verify signature, parse, and dispatch to registered handlers.
-     */
-    handle(body: string, signature: string): Promise<void>;
-    /**
-     * Parse an event without signature verification (for testing).
-     */
-    parseEvent(body: string): WebhookEvent;
-    private parseAndValidate;
-    private dispatch;
-}
-
-/**
- * Framework middleware helpers for webhook handling.
- *
- * Provides pre-built integrations for Express/Connect and Next.js App Router.
- */
-
-interface WebhookMiddlewareOptions extends WebhookHandlerConfig {
-    /** Event handlers to register */
-    handlers?: Partial<Record<WebhookEventType, WebhookEventHandler>>;
-    /** Catch-all handler */
-    onAny?: WebhookAnyHandler;
-}
-/**
- * Create an Express/Connect-compatible middleware for webhook handling.
- *
- * Expects the raw body to be available as `req.body` (string).
- * Use `express.raw({ type: 'application/json' })` or similar middleware upstream.
- */
-declare function createWebhookMiddleware(options: WebhookMiddlewareOptions): (req: {
-    body: string | Buffer;
-    headers: Record<string, string | string[] | undefined>;
-}, res: {
-    status(code: number): {
-        json(body: unknown): void;
-    };
-    json?(body: unknown): void;
-}, next?: (err?: unknown) => void) => Promise<void>;
-/**
- * Create a Next.js App Router-compatible webhook handler.
- *
- * Returns an async function `(request: Request) => Promise<Response>`.
- */
-declare function createNextWebhookHandler(options: WebhookMiddlewareOptions): (request: Request) => Promise<Response>;
-
-export { type BaseWebhookEvent, type ComplianceCheckFailedPayload, type DecisionRecordedPayload, type GeolocationBlockedPayload, type GeolocationVerifiedPayload, type KycStatusChangedPayload, type LabelAppliedPayload, type LocationRequestCompletedPayload, type ProfileCreatedPayload, type ProfileUpdatedPayload, type RiskCategoryChangedPayload, type RiskScoreChangedPayload, type WebhookAnyHandler, type WebhookEvent, type WebhookEventHandler, type WebhookEventType, WebhookHandler, type WebhookHandlerConfig, type WebhookMiddlewareOptions, createNextWebhookHandler, createWebhookMiddleware, verifyWebhookSignature };
+export { B as BaseWebhookEvent, C as ComplianceCheckFailedPayload, D as DecisionRecordedPayload, o as GeolocationBlockedPayload, G as GeolocationVerifiedPayload, K as KycStatusChangedPayload, L as LabelAppliedPayload, p as LocationRequestCompletedPayload, P as ProfileCreatedPayload, n as ProfileUpdatedPayload, m as RiskCategoryChangedPayload, R as RiskScoreChangedPayload, r as TaxFormType, s as TaxReminderSentPayload, q as TaxReminderType, t as TransactionCallbackPayload, y as WebhookAnyHandler, u as WebhookEvent, x as WebhookEventHandler, l as WebhookEventType, W as WebhookHandler, w as WebhookHandlerConfig, i as WebhookMiddlewareOptions, k as createNextWebhookHandler, j as createWebhookMiddleware, v as verifyWebhookSignature } from '../index-B04H4xfJ.mjs';
+import '../types-B4Ezqo7V.mjs';

package/dist/webhooks/index.d.ts

@@ -1,177 +1,2 @@
-import { U as UUID, T as Timestamp, R as RiskLevel } from '../types-B4Ezqo7V.js';
-
-/**
- * Webhook signature verification utilities.
- *
- * Supports both Web Crypto API (browsers, Deno, Cloudflare Workers)
- * and Node.js crypto module with automatic runtime detection.
- * Uses constant-time comparison to prevent timing attacks.
- */
-/**
- * Verify an HMAC-SHA256 webhook signature.
- *
- * @param payload - The raw request body string
- * @param signature - The signature from the webhook header
- * @param secret - The webhook signing secret
- * @returns true if the signature is valid
- */
-declare function verifyWebhookSignature(payload: string, signature: string, secret: string): Promise<boolean>;
-
-/**
- * Webhook event types and payload definitions.
- */
-
-type WebhookEventType = 'risk.score.changed' | 'risk.category.changed' | 'profile.created' | 'profile.updated' | 'geolocation.verified' | 'geolocation.blocked' | 'kyc.status.changed' | 'kyc.approved' | 'kyc.declined' | 'decision.recorded' | 'label.applied' | 'location_request.completed' | 'compliance.check.failed';
-interface BaseWebhookEvent<T extends WebhookEventType = WebhookEventType, P = unknown> {
-    id: UUID;
-    type: T;
-    tenant_id: string;
-    environment: 'production' | 'sandbox';
-    customer_id: string;
-    payload: P;
-    timestamp: Timestamp;
-}
-interface RiskScoreChangedPayload {
-    previous_score: number;
-    new_score: number;
-    risk_level: RiskLevel;
-    factors: string[];
-}
-interface RiskCategoryChangedPayload {
-    previous_category: string;
-    new_category: string;
-    risk_level: RiskLevel;
-}
-interface ProfileCreatedPayload {
-    customer_id: string;
-    entity_type: string;
-    source: string;
-}
-interface ProfileUpdatedPayload {
-    customer_id: string;
-    updated_fields: string[];
-}
-interface GeolocationVerifiedPayload {
-    latitude: number;
-    longitude: number;
-    country: string;
-    region?: string;
-    is_compliant: boolean;
-}
-interface GeolocationBlockedPayload {
-    latitude: number;
-    longitude: number;
-    country: string;
-    region?: string;
-    reasons: string[];
-}
-interface KycStatusChangedPayload {
-    previous_status: string;
-    new_status: string;
-    provider?: string;
-}
-interface DecisionRecordedPayload {
-    decision_id: string;
-    decision_type: string;
-    category: string;
-    source: string;
-    risk_score?: number;
-}
-interface LabelAppliedPayload {
-    label_type: string;
-    reasons?: string[];
-}
-interface LocationRequestCompletedPayload {
-    request_id: string;
-    status: string;
-    latitude?: number;
-    longitude?: number;
-}
-interface ComplianceCheckFailedPayload {
-    check_type: string;
-    reasons: string[];
-    severity: string;
-}
-type WebhookEvent = BaseWebhookEvent<'risk.score.changed', RiskScoreChangedPayload> | BaseWebhookEvent<'risk.category.changed', RiskCategoryChangedPayload> | BaseWebhookEvent<'profile.created', ProfileCreatedPayload> | BaseWebhookEvent<'profile.updated', ProfileUpdatedPayload> | BaseWebhookEvent<'geolocation.verified', GeolocationVerifiedPayload> | BaseWebhookEvent<'geolocation.blocked', GeolocationBlockedPayload> | BaseWebhookEvent<'kyc.status.changed', KycStatusChangedPayload> | BaseWebhookEvent<'kyc.approved', KycStatusChangedPayload> | BaseWebhookEvent<'kyc.declined', KycStatusChangedPayload> | BaseWebhookEvent<'decision.recorded', DecisionRecordedPayload> | BaseWebhookEvent<'label.applied', LabelAppliedPayload> | BaseWebhookEvent<'location_request.completed', LocationRequestCompletedPayload> | BaseWebhookEvent<'compliance.check.failed', ComplianceCheckFailedPayload>;
-interface WebhookHandlerConfig {
-    /** Webhook signing secret for signature verification */
-    secret: string;
-    /** Header name containing the signature (default: 'x-webhook-signature') */
-    signatureHeader?: string;
-    /** Maximum age of webhook event in ms (default: 300000 = 5 minutes) */
-    tolerance?: number;
-}
-type WebhookEventHandler<T extends WebhookEventType = WebhookEventType> = (event: Extract<WebhookEvent, {
-    type: T;
-}>) => void | Promise<void>;
-type WebhookAnyHandler = (event: WebhookEvent) => void | Promise<void>;
-
-/**
- * Webhook event handler with signature verification and typed dispatch.
- */
-
-declare class WebhookHandler {
-    private handlers;
-    private anyHandlers;
-    private readonly secret;
-    private readonly tolerance;
-    constructor(config: WebhookHandlerConfig);
-    /**
-     * Register a handler for a specific event type.
-     */
-    on<T extends WebhookEventType>(eventType: T, handler: WebhookEventHandler<T>): this;
-    /**
-     * Register a catch-all handler for all event types.
-     */
-    onAny(handler: WebhookAnyHandler): this;
-    /**
-     * Verify signature and parse the webhook body.
-     */
-    verifyAndParse(body: string, signature: string): Promise<WebhookEvent>;
-    /**
-     * Verify signature, parse, and dispatch to registered handlers.
-     */
-    handle(body: string, signature: string): Promise<void>;
-    /**
-     * Parse an event without signature verification (for testing).
-     */
-    parseEvent(body: string): WebhookEvent;
-    private parseAndValidate;
-    private dispatch;
-}
-
-/**
- * Framework middleware helpers for webhook handling.
- *
- * Provides pre-built integrations for Express/Connect and Next.js App Router.
- */
-
-interface WebhookMiddlewareOptions extends WebhookHandlerConfig {
-    /** Event handlers to register */
-    handlers?: Partial<Record<WebhookEventType, WebhookEventHandler>>;
-    /** Catch-all handler */
-    onAny?: WebhookAnyHandler;
-}
-/**
- * Create an Express/Connect-compatible middleware for webhook handling.
- *
- * Expects the raw body to be available as `req.body` (string).
- * Use `express.raw({ type: 'application/json' })` or similar middleware upstream.
- */
-declare function createWebhookMiddleware(options: WebhookMiddlewareOptions): (req: {
-    body: string | Buffer;
-    headers: Record<string, string | string[] | undefined>;
-}, res: {
-    status(code: number): {
-        json(body: unknown): void;
-    };
-    json?(body: unknown): void;
-}, next?: (err?: unknown) => void) => Promise<void>;
-/**
- * Create a Next.js App Router-compatible webhook handler.
- *
- * Returns an async function `(request: Request) => Promise<Response>`.
- */
-declare function createNextWebhookHandler(options: WebhookMiddlewareOptions): (request: Request) => Promise<Response>;
-
-export { type BaseWebhookEvent, type ComplianceCheckFailedPayload, type DecisionRecordedPayload, type GeolocationBlockedPayload, type GeolocationVerifiedPayload, type KycStatusChangedPayload, type LabelAppliedPayload, type LocationRequestCompletedPayload, type ProfileCreatedPayload, type ProfileUpdatedPayload, type RiskCategoryChangedPayload, type RiskScoreChangedPayload, type WebhookAnyHandler, type WebhookEvent, type WebhookEventHandler, type WebhookEventType, WebhookHandler, type WebhookHandlerConfig, type WebhookMiddlewareOptions, createNextWebhookHandler, createWebhookMiddleware, verifyWebhookSignature };
+export { B as BaseWebhookEvent, C as ComplianceCheckFailedPayload, D as DecisionRecordedPayload, o as GeolocationBlockedPayload, G as GeolocationVerifiedPayload, K as KycStatusChangedPayload, L as LabelAppliedPayload, p as LocationRequestCompletedPayload, P as ProfileCreatedPayload, n as ProfileUpdatedPayload, m as RiskCategoryChangedPayload, R as RiskScoreChangedPayload, r as TaxFormType, s as TaxReminderSentPayload, q as TaxReminderType, t as TransactionCallbackPayload, y as WebhookAnyHandler, u as WebhookEvent, x as WebhookEventHandler, l as WebhookEventType, W as WebhookHandler, w as WebhookHandlerConfig, i as WebhookMiddlewareOptions, k as createNextWebhookHandler, j as createWebhookMiddleware, v as verifyWebhookSignature } from '../index-CItMPmLL.js';
+import '../types-B4Ezqo7V.js';

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "vesant-sdk",
-  "version": "1.6.2",
+  "version": "1.6.3",
   "description": "TypeScript SDK for Vesant Compliance Platform - Geolocation, KYC, Risk Profiling, CipherText, and Compliance Orchestration",
   "main": "./dist/index.js",
   "module": "./dist/index.mjs",
@@ -60,6 +60,11 @@
       "types": "./dist/tax/index.d.ts",
       "import": "./dist/tax/index.mjs",
       "require": "./dist/tax/index.js"
+    },
+    "./fraud": {
+      "types": "./dist/fraud/index.d.ts",
+      "import": "./dist/fraud/index.mjs",
+      "require": "./dist/fraud/index.js"
     }
   },
   "files": [