npm - what-server - Versions diffs - 0.10.0 → 0.11.0 - Mend

what-server 0.10.0 → 0.11.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (16) hide show

package/README.md +148 -0
package/dist/actions.js +1 -1
package/dist/actions.js.map +1 -1
package/dist/actions.min.js +1 -1
package/dist/actions.min.js.map +2 -2
package/dist/index.js +246 -34
package/dist/index.js.map +3 -3
package/dist/index.min.js +5 -5
package/dist/index.min.js.map +3 -3
package/package.json +3 -3
package/src/action-handler.js +203 -21
package/src/adapter/cloudflare.js +1 -1
package/src/adapter/core.js +102 -11
package/src/adapter/vercel.js +74 -10
package/src/index.js +21 -2
package/src/revalidation-registry.js +2 -2

package/dist/index.min.js CHANGED Viewed

@@ -1,10 +1,10 @@
-import{h as at,runWithServerContext as x,beginHeadCollection as Xt,endHeadCollection as U}from"what-core";var dt=new RegExp("[<>&\\u2028\\u2029]","g"),lt={60:"\\u003c",62:"\\u003e",38:"\\u0026",8232:"\\u2028",8233:"\\u2029"};function k(t){return JSON.stringify(t).replace(dt,e=>lt[e.charCodeAt(0)])}import{mount as ae,signal as ie,batch as ce}from"what-core";var ft=new Map;function X(){let t={};for(let[e,n]of ft)t[e]=n._getSnapshot();return t}import{signal as b,batch as D}from"what-core";var S=null,Y=!(typeof process<"u");function H(t){S=t}function pt(){return S}async function I(t,e){if(S&&S.revalidatePath)return S.revalidatePath(t,e);Y&&console.warn(`[what] revalidatePath('${t}') had no effect: no cache engine is bound. Create a what-cache engine and bind it in your adapter (setRevalidationHandler).`)}async function j(t,e){if(S&&S.revalidateTag)return S.revalidateTag(t,e);Y&&console.warn(`[what] revalidateTag('${t}') had no effect: no cache engine is bound.`)}var M=new Map;function ht(){if(typeof document<"u"){let t=document.querySelector('meta[name="what-csrf-token"]');if(t)return t.getAttribute("content");let e=document.cookie.match(/(?:^|;\s*)what-csrf=([^;]+)/);if(e)return decodeURIComponent(e[1])}return null}function mt(){if(typeof crypto<"u"&&crypto.randomUUID)return crypto.randomUUID();if(typeof crypto<"u"&&crypto.getRandomValues){let t=new Uint8Array(16);return crypto.getRandomValues(t),Array.from(t,e=>e.toString(16).padStart(2,"0")).join("")}throw new Error("[what] No secure random source available for CSRF token generation")}function G(t,e){if(!t||!e||t.length!==e.length)return!1;let n=0;for(let r=0;r<t.length;r++)n|=t.charCodeAt(r)^e.charCodeAt(r);return n===0}function yt(t){return`<meta name="what-csrf-token" content="${String(t).replace(/&/g,"&amp;").replace(/"/g,"&quot;").replace(/</g,"&lt;").replace(/>/g,"&gt;")}">`}var gt=0;function wt(){return`a_${typeof crypto<"u"&&crypto.getRandomValues?Array.from(crypto.getRandomValues(new Uint8Array(6)),e=>e.toString(16).padStart(2,"0")).join(""):`c${(++gt).toString(36)}_${Date.now().toString(36)}`}`}function bt(t,e={}){let n=e.id||wt(),{onError:r,onSuccess:a,revalidate:o}=e;typeof window>"u"&&M.set(n,{fn:t,options:e});async function s(...i){if(typeof window>"u")return t(...i);let c=e.timeout||3e4,u=new AbortController,d=setTimeout(()=>u.abort(),c);try{let l=ht(),f={"Content-Type":"application/json","X-What-Action":n};l&&(f["X-CSRF-Token"]=l);let p=await fetch("/__what_action",{method:"POST",headers:f,credentials:"same-origin",signal:u.signal,body:JSON.stringify({args:i})});if(!p.ok){let g=await p.json().catch(()=>({message:"Action failed"}));throw new Error(g.message||"Action failed")}let m=await p.json();if(a&&a(m),o)for(let g of o)K(g);return m}catch(l){if(l.name==="AbortError"){let f=new Error(`Action "${n}" timed out after ${c}ms`);throw f.code="TIMEOUT",r&&r(f),f}throw r&&r(l),l}finally{clearTimeout(d)}}return s._actionId=n,s._isAction=!0,s}function Q(t,e={}){let{onSuccess:n,onError:r,resetOnSuccess:a=!0}=e;return async o=>{let s,i;o instanceof Event?(o.preventDefault(),i=o.target,s=new FormData(i)):s=o;let c={},u=!1;for(let[d,l]of s.entries())typeof File<"u"&&l instanceof File&&(u=!0),c[d]?Array.isArray(c[d])?c[d].push(l):c[d]=[c[d],l]:c[d]=l;try{let d=u?await t(c,s):await t(c);return n&&n(d,i),a&&i&&i.reset(),d}catch(d){throw r&&r(d,i),d}}}function q(t){let e=b(!1),n=b(null),r=b(null);async function a(...o){e.set(!0),n.set(null);try{let s=await t(...o);return r.set(s),s}catch(s){throw n.set(s),s}finally{e.set(!1)}}return{trigger:a,isPending:()=>e(),error:()=>n(),data:()=>r(),reset:()=>{n.set(null),r.set(null)}}}function St(t,e={}){let{resetOnSuccess:n=!0}=e,r={current:null},a=q(Q(t,{resetOnSuccess:n}));function o(s){s.preventDefault();let i=new FormData(s.target);return r.current=s.target,a.trigger(i)}return{...a,handleSubmit:o,formRef:r}}function At(t,e){let n=b(t),r=b([]),a=b(t);function o(u){let d=e(n.peek(),u);D(()=>{r.set([...r.peek(),u]),n.set(d)})}function s(u,d){D(()=>{if(r.set(r.peek().filter(l=>l!==u)),d!==void 0){a.set(d);let l=d;for(let f of r.peek())l=e(l,f);n.set(l)}})}function i(u,d){D(()=>{let l=r.peek().filter(m=>m!==u);r.set(l);let f=d!==void 0?d:a.peek();a.set(f);let p=f;for(let m of l)p=e(p,m);n.set(p)})}async function c(u,d){o(u);try{let l=await d();return s(u,l),l}catch(l){throw i(u),l}}return{value:()=>n(),isPending:()=>r().length>0,addOptimistic:o,resolve:s,rollback:i,withOptimistic:c,set:u=>{n.set(u),a.set(u)}}}var v=new Map;function Tt(t,e){return v.has(t)||v.set(t,new Set),v.get(t).add(e),()=>{v.get(t)?.delete(e)}}function K(t){let e=v.get(t);if(e)for(let n of e)try{n()}catch(r){console.error("[what] Revalidation error:",r)}}function N(t,e,n,r={}){let{csrfToken:a,skipCsrf:o=!1}=r;if(!o){if(!a)return Promise.resolve({status:500,body:{message:"[what] CSRF token not configured. Pass { csrfToken: sessionToken } to handleActionRequest, or { skipCsrf: true } to explicitly opt out."}});let i=t?.headers?.["x-csrf-token"]||t?.headers?.["X-CSRF-Token"];if(!G(i,a))return Promise.resolve({status:403,body:{message:"Invalid CSRF token"}})}let s=M.get(e);return s?Array.isArray(n)?s.fn(...n).then(async i=>{let c=s.options||{};if(Array.isArray(c.revalidate))for(let u of c.revalidate)await I(u);if(Array.isArray(c.revalidateTags))for(let u of c.revalidateTags)await j(u);return{status:200,body:i}}).catch(i=>(console.error(`[what] Action "${e}" error:`,i),{status:500,body:{message:"Action failed"}})):Promise.resolve({status:400,body:{message:"Invalid action arguments"}}):Promise.resolve({status:404,body:{message:"Action not found"}})}function _t(){return[...M.keys()]}function kt(t,e={}){let{onSuccess:n,onError:r,onSettled:a}=e,o={isPending:b(!1),error:b(null),data:b(null)};async function s(...i){o.isPending.set(!0),o.error.set(null);try{let c=await t(...i);return o.data.set(c),n&&n(c,...i),c}catch(c){throw o.error.set(c),r&&r(c,...i),c}finally{o.isPending.set(!1),a&&a(o.data.peek(),o.error.peek(),...i)}}return{mutate:s,isPending:()=>o.isPending(),error:()=>o.error(),data:()=>o.data(),reset:()=>{o.error.set(null),o.data.set(null)}}}var vt="/__what_action",Et=1024*1024;function Rt(t){if(!t)return{};if(typeof t.forEach=="function"&&typeof t.get=="function"){let n={};return t.forEach((r,a)=>{n[a.toLowerCase()]=r}),n}let e={};for(let n in t)e[n.toLowerCase()]=t[n];return e}function L(t,e){return{status:t,headers:{"content-type":"application/json"},body:JSON.stringify(e)}}function E(t={}){let{getCsrfToken:e,skipCsrf:n=!1}=t;return async function(a){if((a.method||"POST").toUpperCase()!=="POST")return L(405,{message:"Method Not Allowed"});let s=Rt(a.headers),i=s["x-what-action"];if(!i)return L(400,{message:"Missing X-What-Action header"});let u=(a.body||{}).args,d=n?void 0:e?await e(a):void 0,l=await N({headers:s},i,u,{csrfToken:d,skipCsrf:n});return L(l.status,l.body)}}function xt(t={}){let e=t.basePath||vt,n=E(t);return async function(a,o,s){if((a.url||"").split("?")[0]!==e||(a.method||"").toUpperCase()!=="POST")return s?s():void 0;let c;try{c=await Ct(a)}catch(d){o.writeHead(d.code==="BODY_TOO_LARGE"?413:400,{"content-type":"application/json"}),o.end(JSON.stringify({message:d.code==="BODY_TOO_LARGE"?"Payload too large":"Invalid JSON body"}));return}let u=await n({method:a.method,headers:a.headers,body:c});o.writeHead(u.status,u.headers),o.end(u.body)}}function Ct(t){return new Promise((e,n)=>{let r=0,a=[];t.on("data",o=>{if(r+=o.length,r>Et){let s=new Error("Body too large");s.code="BODY_TOO_LARGE",n(s),t.destroy?.();return}a.push(o)}),t.on("end",()=>{if(a.length===0)return e({});try{e(JSON.parse(Buffer.concat(a).toString("utf8")))}catch(o){n(o)}}),t.on("error",n)})}function Pt(t={}){let e=E(t);return async function(n){let r={};try{r=await n.json()}catch{r={}}let a=await e({method:n.method,headers:n.headers,body:r});return new Response(a.body,{status:a.status,headers:a.headers})}}import{matchRoute as $t,parseQuery as Ot}from"what-router/match";var Ht="/__what_action",It="/__what_revalidate";function Z(t){let e={};return t&&typeof t.forEach=="function"&&t.forEach((n,r)=>{e[r.toLowerCase()]=n}),e}async function tt(t){try{return await t.json()}catch{return{}}}function jt(t){return async function(n){let{route:r,params:a,query:o,request:s}=n,i={default:r.component,loader:r.loader};return{html:await P(i,{params:a,query:o,request:s},t),status:200,tags:n.config&&n.config.tags||[],path:n.path}}}function A(t={}){let{routes:e=[],cache:n,render:r,actionHandler:a=E({skipCsrf:!0}),revalidateWebhook:o,document:s={},notFound:i,basePath:c=""}=t,u=r||jt(s);return n&&(n.revalidatePath||n.revalidateTag)&&H({revalidatePath:n.revalidatePath,revalidateTag:n.revalidateTag}),async function(l){let f=new URL(l.url,"http://localhost"),p=f.pathname;if(c&&p.startsWith(c)&&(p=p.slice(c.length)||"/"),l.method==="POST"&&p===Ht){let w=await tt(l),T=await a({method:"POST",headers:Z(l.headers),body:w});return new Response(T.body,{status:T.status,headers:T.headers})}if(l.method==="POST"&&p===It&&o){let w=await tt(l),T=await o({headers:Z(l.headers),body:w});return new Response(JSON.stringify(T.body),{status:T.status,headers:{"content-type":"application/json"}})}let m=$t(p,e);if(!m){let w=i?i():"<!DOCTYPE html><html><body><h1>404 \u2014 Not Found</h1></body></html>";return new Response(w,{status:404,headers:{"content-type":"text/html; charset=utf-8"}})}let{route:g,params:ut}=m,$=g.page||{mode:g.mode||"client"},O={path:p,query:Ot(f.search),config:$,route:g,params:ut,request:l};if(n&&$.mode!=="server"){let w=await n.handle(O,()=>u(O));return new Response(w.html,{status:w.status||200,headers:{"content-type":"text/html; charset=utf-8",...w.headers||{}}})}let B=await u(O),z={"content-type":"text/html; charset=utf-8"};return $.mode==="server"&&(z["Cache-Control"]="private, no-store"),new Response(B.html,{status:B.status||200,headers:z})}}import Dt from"node:http";async function et(t){let n=`http://${t.headers.host||"localhost"}${t.url}`,r=new Headers;for(let[o,s]of Object.entries(t.headers))s!=null&&r.set(o,Array.isArray(s)?s.join(", "):String(s));let a;if(t.method!=="GET"&&t.method!=="HEAD"){let o=[];for await(let s of t)o.push(s);o.length&&(a=Buffer.concat(o))}return new Request(n,{method:t.method,headers:r,body:a})}async function nt(t,e){t.statusCode=e.status,e.headers.forEach((r,a)=>t.setHeader(a,r));let n=await e.text();t.end(n)}function rt(t){return async function(n,r){try{let a=await et(n),o=await t(a);await nt(r,o)}catch(a){r.headersSent||r.writeHead(500,{"content-type":"text/html; charset=utf-8"}),r.end("<!DOCTYPE html><html><body><h1>500 \u2014 Server Error</h1></body></html>"),console.error("[what-server] request error:",a)}}}function Mt(t={}){let e=A(t);return async function(r,a,o){let s=await et(r),i=await e(s);if(i.status===404&&typeof o=="function")return o();await nt(a,i)}}function Nt(t={}){let e=A(t),n=Dt.createServer(rt(e)),{scheduler:r}=t;if(r){r.start();let a=()=>{try{r.stop()}catch{}n.close()};process.once("SIGTERM",a),process.once("SIGINT",a)}return n}import{mkdir as Lt,writeFile as ot}from"node:fs/promises";import{join as F}from"node:path";import{matchRoute as Ft}from"what-router/match";function Ut(t){return t.includes(":")||t.includes("*")||t.includes("[")}function Vt(t,e){return t.replace(/\[\.\.\.(\w+)\]/g,(n,r)=>e[r]??"").replace(/\[(\w+)\]/g,(n,r)=>e[r]??"").replace(/[:*](\w+)/g,(n,r)=>e[r]??"")}async function Jt({routes:t=[],outDir:e,render:n,documentOptions:r={}}={}){let a=[];for(let o of t){let s=o.page&&o.page.mode||o.mode;if(s!=="static"&&s!=="hybrid")continue;let i={default:o.component,loader:o.loader},c=[o.path];if(Ut(o.path)){if(typeof o.getStaticPaths!="function")continue;c=((await o.getStaticPaths()).paths||[]).map(d=>Vt(o.path,d.params||{}))}for(let u of c){let d=Ft(u,[o]),f={params:d?d.params:{},query:{}},p=n?await n(i,f):await P(i,f,r),m=F(e,u==="/"?"":u);if(await Lt(m,{recursive:!0}),await ot(F(m,"index.html"),p),typeof o.loader=="function"){let g=await o.loader(f);await ot(F(m,"__what_data.json"),k({loaderData:g}))}a.push(u)}}return{pages:a}}function Wt(t={}){let e=A(t);return{async fetch(n,r,a){return r&&(n.__env=r),a&&(n.__ctx=a),e(n)}}}function Bt(t={}){return A(t)}async function zt({outDir:t=".vercel/output",functionName:e="render"}={}){let{mkdir:n,writeFile:r}=await import("node:fs/promises"),{join:a}=await import("node:path");await n(t,{recursive:!0});let o={version:3,routes:[{src:"/.*",dest:`/${e}`}]};return await r(a(t,"config.json"),JSON.stringify(o,null,2)),{config:o,outDir:t}}function C(t){return{head:Xt(),loaderData:t,resources:new Map,resourceCounter:0,boundaryCounter:0,suspended:[]}}var st=0;function Yt(){st=0}function Gt(){return"h"+st++}function De(t){return Yt(),_(t)}function _(t){if(t==null||t===!1||t===!0)return"";if(typeof t=="string"||typeof t=="number")return h(String(t));if(typeof t=="function"&&t._signal)return`<!--$-->${_(t())}<!--/$-->`;if(typeof t=="function")try{return`<!--$-->${_(t())}<!--/$-->`}catch{return typeof process<"u","<!--$--><!--/$-->"}if(Array.isArray(t))return`<!--[]-->${t.map(_).join("")}<!--/[]-->`;if(typeof t.tag=="function"){let c=Gt(),u=t.tag({...t.props,children:t.children}),d=_(u);return Qt(d,c)}let{tag:e,props:n,children:r}=t,a=J(n||{}),o=`<${e}${a}>`;if(W.has(e))return o;let s=V(n),i=s!=null?String(s):r.map(_).join("");return`${o}${i}</${e}>`}function Qt(t,e){let n=t.match(/^((?:<!--.*?-->)*)<([a-zA-Z][a-zA-Z0-9-]*)/);if(n){let r=n[1],a=n[2],o=r.length+1+a.length;return t.slice(0,o)+` data-hk="${e}"`+t.slice(o)}return t}function y(t){if(t==null||t===!1||t===!0)return"";if(typeof t=="string"||typeof t=="number")return h(String(t));if(typeof t=="function"&&t._signal)return y(t());if(typeof t=="function")try{return y(t())}catch{return typeof process<"u",""}if(Array.isArray(t))return t.map(y).join("");if(t.tag==="__suspense")try{return(t.children||[]).map(y).join("")}catch(c){if(c&&typeof c.then=="function")return y(t.props&&t.props.fallback);throw c}if(typeof t.tag=="function"){let c=t.tag({...t.props,children:t.children});return y(c)}let{tag:e,props:n,children:r}=t,a=J(n||{}),o=`<${e}${a}>`;if(W.has(e))return o;let s=V(n),i=s!=null?String(s):r.map(y).join("");return`${o}${i}</${e}>`}function Me(t){let e=C(void 0);return{body:x(e,()=>y(t)),head:U(e.head)}}async function Ne(t,e={}){let n=t.default||t,r=typeof t.loader=="function"?await t.loader(e):void 0,a=C(r),o=e.params||{};return{body:x(a,()=>y(at(n,{...o,loaderData:r}))),head:U(a.head),loaderData:r}}var it=12;async function qt(t,e){e||(e=C(void 0));let n="";for(let a=0;a<it;a++){n=x(e,()=>y(t));let o=[...e.resources.values()].filter(s=>s.status==="pending").map(s=>s.promise);if(o.length===0)break;await Promise.all(o)}let r={};for(let[a,o]of e.resources)o.status==="ready"&&(r[a]=o.value);return{body:n,head:U(e.head),loaderData:e.loaderData,resources:r,ctx:e}}async function P(t,e={},n={}){let r=t.default||t,a=typeof t.loader=="function"?await t.loader(e):void 0,o=C(a),s=e.params||{},{body:i,head:c,resources:u}=await qt(at(r,{...s,loaderData:a}),o),d={loaderData:a??null,resources:u,islandStores:X()};return Kt({body:i,head:c,payload:d,options:n})}function Kt({body:t,head:e,payload:n,options:r={}}){let a=r.lang||"en",o=`<script id="__what_data" type="application/json">${k(n)}<\/script>`,s=r.clientEntry?`<script type="module" src="${h(r.clientEntry)}"><\/script>`:"",i=r.head||"",c=r.bodyClass?` class="${h(r.bodyClass)}"`:"";return`<!DOCTYPE html><html lang="${h(a)}"><head><meta charset="utf-8"><meta name="viewport" content="width=device-width, initial-scale=1">${e||""}${i}</head><body${c}>${t}${o}${s}</body></html>`}async function*R(t,e){if(e===void 0&&(e=C(void 0)),t==null||t===!1||t===!0)return;if(typeof t=="string"||typeof t=="number"){yield h(String(t));return}if(typeof t=="function"&&t._signal){yield*R(t(),e);return}if(typeof t=="function"){try{yield*R(t(),e)}catch{typeof process<"u"}return}if(Array.isArray(t)){for(let s of t)yield*R(s,e);return}if(t.tag==="__suspense"){let s=null;for(let i=0;i<it&&s===null;i++){let c=null;try{s=x(e,()=>(t.children||[]).map(y).join(""))}catch(u){if(u&&typeof u.then=="function")c=u;else throw u}if(s===null){let u=[...e.resources.values()].filter(d=>d.status==="pending").map(d=>d.promise);await Promise.all([c,...u].filter(Boolean))}}s===null&&(s=x(e,()=>y(t.props&&t.props.fallback))),yield s;return}if(typeof t.tag=="function"){try{let s=t.tag({...t.props,children:t.children}),i=s instanceof Promise?await s:s;yield*R(i,e)}catch(s){typeof process<"u",yield ct?`<!-- SSR Error: ${h(s.message||"Component error")} -->`:"<!-- SSR Error -->"}return}let{tag:n,props:r,children:a}=t,o=J(r||{});if(yield`<${n}${o}>`,!W.has(n)){let s=V(r);if(s!=null)yield String(s);else for(let i of a)yield*R(i,e);yield`</${n}>`}}function Le(t){return{mode:"static",...t}}function Fe(t,e={}){let n=t.component(e),r=y(n),a=t.islands||[];return Zt({title:t.title||"",meta:t.meta||{},body:r,islands:a,scripts:t.mode==="static"?[]:t.scripts||[],styles:t.styles||[],mode:t.mode})}function Zt({title:t,meta:e,body:n,islands:r,scripts:a,styles:o,mode:s}){let i=Object.entries(e).map(([f,p])=>`<meta name="${h(f)}" content="${h(p)}">`).join(`
-    `),c=o.map(f=>`<link rel="stylesheet" href="${h(f)}">`).join(`
+import{h as bt,runWithServerContext as H,beginHeadCollection as ie,endHeadCollection as q}from"what-core";var kt=new RegExp("[<>&\\u2028\\u2029]","g"),Rt={60:"\\u003c",62:"\\u003e",38:"\\u0026",8232:"\\u2028",8233:"\\u2029"};function x(t){return JSON.stringify(t).replace(kt,e=>Rt[e.charCodeAt(0)])}import{mount as Se,signal as Ae,batch as ke}from"what-core";var _t=new Map;function st(){let t={};for(let[e,n]of _t)t[e]=n._getSnapshot();return t}import{signal as S,batch as W}from"what-core";var k=null,it=!(typeof process<"u");function B(t){k=t}function Ct(){return k}async function V(t,e){if(k&&k.revalidatePath)return k.revalidatePath(t,e);it&&console.warn(`[what] revalidatePath('${t}') had no effect: no cache engine is bound. Create a what-isr engine and bind it in your adapter (setRevalidationHandler).`)}async function J(t,e){if(k&&k.revalidateTag)return k.revalidateTag(t,e);it&&console.warn(`[what] revalidateTag('${t}') had no effect: no cache engine is bound.`)}var z=new Map;function Et(){if(typeof document<"u"){let t=document.querySelector('meta[name="what-csrf-token"]');if(t)return t.getAttribute("content");let e=document.cookie.match(/(?:^|;\s*)what-csrf=([^;]+)/);if(e)return decodeURIComponent(e[1])}return null}function X(){if(typeof crypto<"u"&&crypto.randomUUID)return crypto.randomUUID();if(typeof crypto<"u"&&crypto.getRandomValues){let t=new Uint8Array(16);return crypto.getRandomValues(t),Array.from(t,e=>e.toString(16).padStart(2,"0")).join("")}throw new Error("[what] No secure random source available for CSRF token generation")}function ct(t,e){if(!t||!e||t.length!==e.length)return!1;let n=0;for(let r=0;r<t.length;r++)n|=t.charCodeAt(r)^e.charCodeAt(r);return n===0}function Y(t){return`<meta name="what-csrf-token" content="${String(t).replace(/&/g,"&amp;").replace(/"/g,"&quot;").replace(/</g,"&lt;").replace(/>/g,"&gt;")}">`}var vt=0;function xt(){return`a_${typeof crypto<"u"&&crypto.getRandomValues?Array.from(crypto.getRandomValues(new Uint8Array(6)),e=>e.toString(16).padStart(2,"0")).join(""):`c${(++vt).toString(36)}_${Date.now().toString(36)}`}`}function Pt(t,e={}){let n=e.id||xt(),{onError:r,onSuccess:o,revalidate:a}=e;typeof window>"u"&&z.set(n,{fn:t,options:e});async function s(...i){if(typeof window>"u")return t(...i);let c=e.timeout||3e4,u=new AbortController,d=setTimeout(()=>u.abort(),c);try{let l=Et(),f={"Content-Type":"application/json","X-What-Action":n};l&&(f["X-CSRF-Token"]=l);let p=await fetch("/__what_action",{method:"POST",headers:f,credentials:"same-origin",signal:u.signal,body:JSON.stringify({args:i})});if(!p.ok){let m=await p.json().catch(()=>({message:"Action failed"}));throw new Error(m.message||"Action failed")}let h=await p.json();if(o&&o(h),a)for(let m of a)lt(m);return h}catch(l){if(l.name==="AbortError"){let f=new Error(`Action "${n}" timed out after ${c}ms`);throw f.code="TIMEOUT",r&&r(f),f}throw r&&r(l),l}finally{clearTimeout(d)}}return s._actionId=n,s._isAction=!0,s}function ut(t,e={}){let{onSuccess:n,onError:r,resetOnSuccess:o=!0}=e;return async a=>{let s,i;a instanceof Event?(a.preventDefault(),i=a.target,s=new FormData(i)):s=a;let c={},u=!1;for(let[d,l]of s.entries())typeof File<"u"&&l instanceof File&&(u=!0),c[d]?Array.isArray(c[d])?c[d].push(l):c[d]=[c[d],l]:c[d]=l;try{let d=u?await t(c,s):await t(c);return n&&n(d,i),o&&i&&i.reset(),d}catch(d){throw r&&r(d,i),d}}}function dt(t){let e=S(!1),n=S(null),r=S(null);async function o(...a){e.set(!0),n.set(null);try{let s=await t(...a);return r.set(s),s}catch(s){throw n.set(s),s}finally{e.set(!1)}}return{trigger:o,isPending:()=>e(),error:()=>n(),data:()=>r(),reset:()=>{n.set(null),r.set(null)}}}function Ot(t,e={}){let{resetOnSuccess:n=!0}=e,r={current:null},o=dt(ut(t,{resetOnSuccess:n}));function a(s){s.preventDefault();let i=new FormData(s.target);return r.current=s.target,o.trigger(i)}return{...o,handleSubmit:a,formRef:r}}function $t(t,e){let n=S(t),r=S([]),o=S(t);function a(u){let d=e(n.peek(),u);W(()=>{r.set([...r.peek(),u]),n.set(d)})}function s(u,d){W(()=>{if(r.set(r.peek().filter(l=>l!==u)),d!==void 0){o.set(d);let l=d;for(let f of r.peek())l=e(l,f);n.set(l)}})}function i(u,d){W(()=>{let l=r.peek().filter(h=>h!==u);r.set(l);let f=d!==void 0?d:o.peek();o.set(f);let p=f;for(let h of l)p=e(p,h);n.set(p)})}async function c(u,d){a(u);try{let l=await d();return s(u,l),l}catch(l){throw i(u),l}}return{value:()=>n(),isPending:()=>r().length>0,addOptimistic:a,resolve:s,rollback:i,withOptimistic:c,set:u=>{n.set(u),o.set(u)}}}var P=new Map;function Ht(t,e){return P.has(t)||P.set(t,new Set),P.get(t).add(e),()=>{P.get(t)?.delete(e)}}function lt(t){let e=P.get(t);if(e)for(let n of e)try{n()}catch(r){console.error("[what] Revalidation error:",r)}}function L(t,e,n,r={}){let{csrfToken:o,skipCsrf:a=!1}=r;if(!a){if(!o)return Promise.resolve({status:500,body:{message:"[what] CSRF token not configured. Pass { csrfToken: sessionToken } to handleActionRequest, or { skipCsrf: true } to explicitly opt out."}});let i=t?.headers?.["x-csrf-token"]||t?.headers?.["X-CSRF-Token"];if(!ct(i,o))return Promise.resolve({status:403,body:{message:"Invalid CSRF token"}})}let s=z.get(e);return s?Array.isArray(n)?s.fn(...n).then(async i=>{let c=s.options||{};if(Array.isArray(c.revalidate))for(let u of c.revalidate)await V(u);if(Array.isArray(c.revalidateTags))for(let u of c.revalidateTags)await J(u);return{status:200,body:i}}).catch(i=>(console.error(`[what] Action "${e}" error:`,i),{status:500,body:{message:"Action failed"}})):Promise.resolve({status:400,body:{message:"Invalid action arguments"}}):Promise.resolve({status:404,body:{message:"Action not found"}})}function It(){return[...z.keys()]}function jt(t,e={}){let{onSuccess:n,onError:r,onSettled:o}=e,a={isPending:S(!1),error:S(null),data:S(null)};async function s(...i){a.isPending.set(!0),a.error.set(null);try{let c=await t(...i);return a.data.set(c),n&&n(c,...i),c}catch(c){throw a.error.set(c),r&&r(c,...i),c}finally{a.isPending.set(!1),o&&o(a.data.peek(),a.error.peek(),...i)}}return{mutate:s,isPending:()=>a.isPending(),error:()=>a.error(),data:()=>a.data(),reset:()=>{a.error.set(null),a.data.set(null)}}}var Lt="/__what_action",pt=1024*1024;function Nt(t){if(!t)return{};if(typeof t.forEach=="function"&&typeof t.get=="function"){let n={};return t.forEach((r,o)=>{n[o.toLowerCase()]=r}),n}let e={};for(let n in t)e[n.toLowerCase()]=t[n];return e}function N(t,e){return{status:t,headers:{"content-type":"application/json"},body:JSON.stringify(e)}}function G(t,e){return{status:t,headers:{"content-type":"text/html; charset=utf-8"},body:`<!DOCTYPE html><html><body><h1>${t}</h1><p>${String(e).replace(/&/g,"&amp;").replace(/</g,"&lt;").replace(/>/g,"&gt;")}</p></body></html>`}}function ft(t){if(typeof t!="string"||!t.startsWith("/")||/^[/\\]{2}/.test(t)||t.includes("\\"))return null;try{let e=new URL(t,"http://localhost");return e.origin!=="http://localhost"?null:e.pathname+e.search}catch{return null}}function Dt(t,e){let n=ft(t&&t._redirect);if(n)return n;let r=e.referer||e.referrer;if(r)try{let o=new URL(r,"http://localhost"),a=ft(o.pathname+o.search);if(a)return a}catch{}return"/"}var Mt=new Set(["_action","data-action","_csrf","_redirect"]);function O(t={}){let{getCsrfToken:e,skipCsrf:n=!1}=t;return async function(o){if((o.method||"POST").toUpperCase()!=="POST")return N(405,{message:"Method Not Allowed"});let s=Nt(o.headers),i=s["x-what-action"],c=s["content-type"]||"",u=!i&&c.includes("application/x-www-form-urlencoded"),d=n?void 0:e?await e(o):void 0;if(u){let h=o.body||{},m=h._action||h["data-action"]||o.query&&o.query.action;if(!m)return G(400,'Missing action name (add a hidden "_action" field or ?action= query param)');let w={...s};if(h._csrf&&!w["x-csrf-token"]&&(w["x-csrf-token"]=String(h._csrf)),!n&&e&&!d)return G(403,"Missing CSRF token");let _={};for(let[E,v]of Object.entries(h))Mt.has(E)||(_[E]=v);let T=await L({headers:w},m,[_],{csrfToken:d,skipCsrf:n});return T.status===200?{status:303,headers:{location:Dt(h,s)},body:""}:G(T.status,T.body&&T.body.message||"Action failed")}if(!i)return N(400,{message:"Missing X-What-Action header"});if(!n&&e&&!d)return N(403,{message:"Missing CSRF token"});let f=(o.body||{}).args,p=await L({headers:s},i,f,{csrfToken:d,skipCsrf:n});return N(p.status,p.body)}}function Ft(t={}){let e=t.basePath||Lt,n=O(t);return async function(o,a,s){let[i,c]=(o.url||"").split("?");if(i!==e||(o.method||"").toUpperCase()!=="POST")return s?s():void 0;let u;try{let f=await Ut(o);u=D(f,o.headers["content-type"]||"")}catch(f){a.writeHead(f.code==="BODY_TOO_LARGE"?413:400,{"content-type":"application/json"}),a.end(JSON.stringify({message:f.code==="BODY_TOO_LARGE"?"Payload too large":"Invalid request body"}));return}let d=Object.fromEntries(new URLSearchParams(c||"")),l=await n({method:o.method,headers:o.headers,body:u,query:d});a.writeHead(l.status,l.headers),a.end(l.body)}}function D(t,e){if((e||"").includes("application/x-www-form-urlencoded")){let n={};for(let[r,o]of new URLSearchParams(String(t)))n[r]===void 0?n[r]=o:Array.isArray(n[r])?n[r].push(o):n[r]=[n[r],o];return n}return t==null||t===""?{}:JSON.parse(String(t))}async function Z(t,e=pt){let n=Number(t.headers.get("content-length"));if(Number.isFinite(n)&&n>e)return{tooLarge:!0};let r=t.body;if(!r||typeof r.getReader!="function"){let i=await t.text();return Buffer.byteLength(i,"utf8")>e?{tooLarge:!0}:{raw:i}}let o=r.getReader(),a=[],s=0;for(;;){let{done:i,value:c}=await o.read();if(i)break;if(c){if(s+=c.byteLength,s>e){try{await o.cancel()}catch{}return{tooLarge:!0}}a.push(c)}}return{raw:Buffer.concat(a.map(i=>Buffer.from(i))).toString("utf8")}}function Ut(t){return new Promise((e,n)=>{let r=0,o=[];t.on("data",a=>{if(r+=a.length,r>pt){let s=new Error("Body too large");s.code="BODY_TOO_LARGE",n(s),t.destroy?.();return}o.push(a)}),t.on("end",()=>{if(o.length===0)return e("");e(Buffer.concat(o).toString("utf8"))}),t.on("error",n)})}function Bt(t={}){let e=O(t);return async function(n){let r={};try{let s=await Z(n);if(s.tooLarge)return new Response(JSON.stringify({message:"Payload too large"}),{status:413,headers:{"content-type":"application/json"}});r=D(s.raw,n.headers.get("content-type")||"")}catch{r={}}let o={};try{o=Object.fromEntries(new URL(n.url,"http://localhost").searchParams)}catch{}let a=await e({method:n.method,headers:n.headers,body:r,query:o});return new Response(a.body,{status:a.status,headers:a.headers})}}import{matchRoute as Vt,parseQuery as Jt}from"what-router/match";var Wt="/__what_action",zt="/__what_revalidate",K="what-csrf";function M(t){let e={};return t&&typeof t.forEach=="function"&&t.forEach((n,r)=>{e[r.toLowerCase()]=n}),e}function ht(t,e){if(!t)return null;let n=String(t).match(new RegExp(`(?:^|;\\s*)${e}=([^;]+)`));return n?decodeURIComponent(n[1]):null}async function Xt(t){try{let e=await Z(t);return e.tooLarge?{tooLarge:!0}:D(e.raw,t.headers.get("content-type")||"")}catch{return{}}}async function Yt(t){try{return await t.json()}catch{return{}}}function Gt(t){return async function(n){let{route:r,params:o,query:a,request:s}=n,i={default:r.component,loader:r.loader},c=n.csrfToken?{...t,csrfToken:n.csrfToken}:t;return{html:await F(i,{params:o,query:a,request:s},c),status:200,tags:n.config&&n.config.tags||[],path:n.path}}}function R(t={}){let{routes:e=[],cache:n,render:r,revalidateWebhook:o,document:a={},notFound:s,basePath:i="",csrf:c=!0}=t,u=c!==!1&&!t.actionHandler,d=t.actionHandler||O(u?{getCsrfToken:f=>ht(f.headers&&f.headers.cookie,K)}:{skipCsrf:!0}),l=r||Gt(a);return n&&(n.revalidatePath||n.revalidateTag)&&B({revalidatePath:n.revalidatePath,revalidateTag:n.revalidateTag}),async function(p){let h=new URL(p.url,"http://localhost"),m=h.pathname;if(i&&m.startsWith(i)&&(m=m.slice(i.length)||"/"),p.method==="POST"&&m===Wt){let y=await Xt(p);if(y&&y.tooLarge)return new Response(JSON.stringify({message:"Payload too large"}),{status:413,headers:{"content-type":"application/json"}});let A=await d({method:"POST",headers:M(p.headers),body:y,query:Object.fromEntries(h.searchParams)});return new Response(A.body,{status:A.status,headers:A.headers})}let w=null,_=null;if(u&&(w=ht(M(p.headers).cookie,K),!w)){w=X();let A=M(p.headers)["x-forwarded-proto"]==="https"||h.protocol==="https:"||!0;_=`${K}=${encodeURIComponent(w)}; Path=/; SameSite=Lax`+(A?"; Secure":"")}let T=y=>(_&&(y["set-cookie"]=_),y);if(p.method==="POST"&&m===zt&&o){let y=await Yt(p),A=await o({headers:M(p.headers),body:y});return new Response(JSON.stringify(A.body),{status:A.status,headers:{"content-type":"application/json"}})}let E=Vt(m,e);if(!E){let y=s?s():"<!DOCTYPE html><html><body><h1>404 \u2014 Not Found</h1></body></html>";return new Response(y,{status:404,headers:T({"content-type":"text/html; charset=utf-8"})})}let{route:v,params:At}=E,U=v.page||{mode:v.mode||"client"},j={path:m,query:Jt(h.search),config:U,route:v,params:At,request:p};if(n&&U.mode!=="server"){let y=await n.handle(j,()=>l(j));return new Response(y.html,{status:y.status||200,headers:T({"content-type":"text/html; charset=utf-8",...y.headers||{}})})}w&&(j.csrfToken=w);let ot=await l(j),at=T({"content-type":"text/html; charset=utf-8"});return U.mode==="server"&&(at["Cache-Control"]="private, no-store"),new Response(ot.html,{status:ot.status||200,headers:at})}}import Zt from"node:http";async function mt(t){let n=`http://${t.headers.host||"localhost"}${t.url}`,r=new Headers;for(let[a,s]of Object.entries(t.headers))s!=null&&r.set(a,Array.isArray(s)?s.join(", "):String(s));let o;if(t.method!=="GET"&&t.method!=="HEAD"){let a=[];for await(let s of t)a.push(s);a.length&&(o=Buffer.concat(a))}return new Request(n,{method:t.method,headers:r,body:o})}async function yt(t,e){t.statusCode=e.status,e.headers.forEach((r,o)=>t.setHeader(o,r));let n=await e.text();t.end(n)}function gt(t){return async function(n,r){try{let o=await mt(n),a=await t(o);await yt(r,a)}catch(o){r.headersSent||r.writeHead(500,{"content-type":"text/html; charset=utf-8"}),r.end("<!DOCTYPE html><html><body><h1>500 \u2014 Server Error</h1></body></html>"),console.error("[what-server] request error:",o)}}}function Kt(t={}){let e=R(t);return async function(r,o,a){let s=await mt(r),i=await e(s);if(i.status===404&&typeof a=="function")return a();await yt(o,i)}}function Qt(t={}){let e=R(t),n=Zt.createServer(gt(e)),{scheduler:r}=t;if(r){r.start();let o=()=>{try{r.stop()}catch{}n.close()};process.once("SIGTERM",o),process.once("SIGINT",o)}return n}import{mkdir as qt,writeFile as wt}from"node:fs/promises";import{join as Q}from"node:path";import{matchRoute as te}from"what-router/match";function ee(t){return t.includes(":")||t.includes("*")||t.includes("[")}function ne(t,e){return t.replace(/\[\.\.\.(\w+)\]/g,(n,r)=>e[r]??"").replace(/\[(\w+)\]/g,(n,r)=>e[r]??"").replace(/[:*](\w+)/g,(n,r)=>e[r]??"")}async function re({routes:t=[],outDir:e,render:n,documentOptions:r={}}={}){let o=[];for(let a of t){let s=a.page&&a.page.mode||a.mode;if(s!=="static"&&s!=="hybrid")continue;let i={default:a.component,loader:a.loader},c=[a.path];if(ee(a.path)){if(typeof a.getStaticPaths!="function")continue;c=((await a.getStaticPaths()).paths||[]).map(d=>ne(a.path,d.params||{}))}for(let u of c){let d=te(u,[a]),f={params:d?d.params:{},query:{}},p=n?await n(i,f):await F(i,f,r),h=Q(e,u==="/"?"":u);if(await qt(h,{recursive:!0}),await wt(Q(h,"index.html"),p),typeof a.loader=="function"){let m=await a.loader(f);await wt(Q(h,"__what_data.json"),x({loaderData:m}))}o.push(u)}}return{pages:o}}function oe(t={}){let e=R(t);return{async fetch(n,r,o){return r&&(n.__env=r),o&&(n.__ctx=o),e(n)}}}function ae(t={}){return R(t)}async function se({outDir:t=".vercel/output",functionName:e="render",runtime:n="nodejs22.x",files:r=null,handler:o="index.mjs",staticDir:a=null}={}){let{mkdir:s,writeFile:i,cp:c}=await import("node:fs/promises"),{join:u,dirname:d}=await import("node:path");await s(t,{recursive:!0});let l={version:3,routes:[{handle:"filesystem"},{src:"/.*",dest:`/${e}`}]};await i(u(t,"config.json"),JSON.stringify(l,null,2)),a&&await c(a,u(t,"static"),{recursive:!0});let f=null;if(r&&typeof r=="object"){f=u(t,"functions",`${e}.func`),await s(f,{recursive:!0});let p={runtime:n,handler:o,launcherType:"Nodejs",shouldAddHelpers:!1,supportsResponseStreaming:!0};await i(u(f,".vc-config.json"),JSON.stringify(p,null,2));for(let[h,m]of Object.entries(r)){let w=u(f,h);await s(d(w),{recursive:!0}),await i(w,m)}o in r||console.warn(`[what-server] buildVercelOutput: files does not include the handler entry "${o}" \u2014 the deploy will 500 until your build emits it.`)}return{config:l,outDir:t,functionDir:f}}function I(t){return{head:ie(),loaderData:t,resources:new Map,resourceCounter:0,boundaryCounter:0,suspended:[]}}var St=0;function ce(){St=0}function ue(){return"h"+St++}function qe(t){return ce(),C(t)}function C(t){if(t==null||t===!1||t===!0)return"";if(typeof t=="string"||typeof t=="number")return g(String(t));if(typeof t=="function"&&t._signal)return`<!--$-->${C(t())}<!--/$-->`;if(typeof t=="function")try{return`<!--$-->${C(t())}<!--/$-->`}catch{return typeof process<"u","<!--$--><!--/$-->"}if(Array.isArray(t))return`<!--[]-->${t.map(C).join("")}<!--/[]-->`;if(typeof t.tag=="function"){let c=ue(),u=t.tag({...t.props,children:t.children}),d=C(u);return de(d,c)}let{tag:e,props:n,children:r}=t,o=nt(n||{}),a=`<${e}${o}>`;if(rt.has(e))return a;let s=et(n),i=s!=null?String(s):r.map(C).join("");return`${a}${i}</${e}>`}function de(t,e){let n=t.match(/^((?:<!--.*?-->)*)<([a-zA-Z][a-zA-Z0-9-]*)/);if(n){let r=n[1],o=n[2],a=r.length+1+o.length;return t.slice(0,a)+` data-hk="${e}"`+t.slice(a)}return t}function b(t){if(t==null||t===!1||t===!0)return"";if(typeof t=="string"||typeof t=="number")return g(String(t));if(typeof t=="function"&&t._signal)return b(t());if(typeof t=="function")try{return b(t())}catch{return typeof process<"u",""}if(Array.isArray(t))return t.map(b).join("");if(t.tag==="__suspense")try{return(t.children||[]).map(b).join("")}catch(c){if(c&&typeof c.then=="function")return b(t.props&&t.props.fallback);throw c}if(typeof t.tag=="function"){let c=t.tag({...t.props,children:t.children});return b(c)}let{tag:e,props:n,children:r}=t,o=nt(n||{}),a=`<${e}${o}>`;if(rt.has(e))return a;let s=et(n),i=s!=null?String(s):r.map(b).join("");return`${a}${i}</${e}>`}function tn(t){let e=I(void 0);return{body:H(e,()=>b(t)),head:q(e.head)}}async function en(t,e={}){let n=t.default||t,r=typeof t.loader=="function"?await t.loader(e):void 0,o=I(r),a=e.params||{};return{body:H(o,()=>b(bt(n,{...a,loaderData:r}))),head:q(o.head),loaderData:r}}var Tt=12;async function le(t,e){e||(e=I(void 0));let n="";for(let o=0;o<Tt;o++){n=H(e,()=>b(t));let a=[...e.resources.values()].filter(s=>s.status==="pending").map(s=>s.promise);if(a.length===0)break;await Promise.all(a)}let r={};for(let[o,a]of e.resources)a.status==="ready"&&(r[o]=a.value);return{body:n,head:q(e.head),loaderData:e.loaderData,resources:r,ctx:e}}async function F(t,e={},n={}){let r=t.default||t,o=typeof t.loader=="function"?await t.loader(e):void 0,a=I(o),s=e.params||{},{body:i,head:c,resources:u}=await le(bt(r,{...s,loaderData:o}),a),d={loaderData:o??null,resources:u,islandStores:st()};return fe({body:i,head:c,payload:d,options:n})}function fe({body:t,head:e,payload:n,options:r={}}){let o=r.lang||"en",a=`<script id="__what_data" type="application/json">${x(n)}<\/script>`,s=r.clientEntry?`<script type="module" src="${g(r.clientEntry)}"><\/script>`:"",c=(r.csrfToken?Y(r.csrfToken):"")+(r.head||""),u=r.bodyClass?` class="${g(r.bodyClass)}"`:"";return`<!DOCTYPE html><html lang="${g(o)}"><head><meta charset="utf-8"><meta name="viewport" content="width=device-width, initial-scale=1">${e||""}${c}</head><body${u}>${t}${a}${s}</body></html>`}async function*$(t,e){if(e===void 0&&(e=I(void 0)),t==null||t===!1||t===!0)return;if(typeof t=="string"||typeof t=="number"){yield g(String(t));return}if(typeof t=="function"&&t._signal){yield*$(t(),e);return}if(typeof t=="function"){try{yield*$(t(),e)}catch{typeof process<"u"}return}if(Array.isArray(t)){for(let s of t)yield*$(s,e);return}if(t.tag==="__suspense"){let s=null;for(let i=0;i<Tt&&s===null;i++){let c=null;try{s=H(e,()=>(t.children||[]).map(b).join(""))}catch(u){if(u&&typeof u.then=="function")c=u;else throw u}if(s===null){let u=[...e.resources.values()].filter(d=>d.status==="pending").map(d=>d.promise);await Promise.all([c,...u].filter(Boolean))}}s===null&&(s=H(e,()=>b(t.props&&t.props.fallback))),yield s;return}if(typeof t.tag=="function"){try{let s=t.tag({...t.props,children:t.children}),i=s instanceof Promise?await s:s;yield*$(i,e)}catch(s){typeof process<"u",yield tt?`<!-- SSR Error: ${g(s.message||"Component error")} -->`:"<!-- SSR Error -->"}return}let{tag:n,props:r,children:o}=t,a=nt(r||{});if(yield`<${n}${a}>`,!rt.has(n)){let s=et(r);if(s!=null)yield String(s);else for(let i of o)yield*$(i,e);yield`</${n}>`}}function nn(t){return{mode:"static",...t}}function rn(t,e={}){let n=t.component(e),r=b(n),o=t.islands||[];return pe({title:t.title||"",meta:t.meta||{},body:r,islands:o,scripts:t.mode==="static"?[]:t.scripts||[],styles:t.styles||[],mode:t.mode})}function pe({title:t,meta:e,body:n,islands:r,scripts:o,styles:a,mode:s}){let i=Object.entries(e).map(([f,p])=>`<meta name="${g(f)}" content="${g(p)}">`).join(`
+    `),c=a.map(f=>`<link rel="stylesheet" href="${g(f)}">`).join(`
     `),u=r.length>0?`
     <script type="module">
       import { hydrateIslands } from '/@what/islands.js';
       hydrateIslands();
-    <\/script>`:"",d=a.map(f=>`<script type="module" src="${h(f)}"><\/script>`).join(`
+    <\/script>`:"",d=o.map(f=>`<script type="module" src="${g(f)}"><\/script>`).join(`
     `),l=s==="client"?`
     <script type="module" src="/@what/client.js"><\/script>`:"";return`<!DOCTYPE html>
 <html lang="en">
@@ -12,7 +12,7 @@ import{h as at,runWithServerContext as x,beginHeadCollection as Xt,endHeadCollec
     <meta charset="UTF-8">
     <meta name="viewport" content="width=device-width, initial-scale=1.0">
     ${i}
-    <title>${h(t)}</title>
+    <title>${g(t)}</title>
     ${c}
   </head>
   <body>
@@ -21,5 +21,5 @@ import{h as at,runWithServerContext as x,beginHeadCollection as Xt,endHeadCollec
     ${d}
     ${l}
   </body>
-</html>`}function Ue(t){return t._server=!0,t}var ct=!(typeof process<"u");function V(t){return t?t.dangerouslySetInnerHTML?t.dangerouslySetInnerHTML.__html??null:t.innerHTML&&typeof t.innerHTML=="object"&&"__html"in t.innerHTML?t.innerHTML.__html??null:(t.innerHTML!=null&&typeof t.innerHTML=="string"&&ct&&console.warn("[what-server] innerHTML received a raw string. This is a security risk (XSS). Use innerHTML={{ __html: trustedString }} or dangerouslySetInnerHTML={{ __html: trustedString }} instead."),null):null}function J(t){let e="";for(let[n,r]of Object.entries(t))if(!(n==="key"||n==="ref"||n==="children"||n==="dangerouslySetInnerHTML"||n==="innerHTML")&&!(n.startsWith("on")&&n.length>2)&&!(r===!1||r==null))if(n==="className"||n==="class")e+=` class="${h(String(r))}"`;else if(n==="style"&&typeof r=="object"){let a=Object.entries(r).map(([o,s])=>`${ne(o)}:${s}`).join(";");e+=` style="${h(a)}"`}else if(r===!0)n.startsWith("aria-")||n==="role"?e+=` ${n}="true"`:e+=` ${n}`;else{if(te(n,r))continue;e+=` ${n}="${h(String(r))}"`}return e}function te(t,e){let n=t.toLowerCase();if(!ee.has(n))return!1;let r=String(e).trim().replace(/[\u0000-\u001f\u007f\s]+/g,"").toLowerCase();return r.startsWith("javascript:")||r.startsWith("vbscript:")||r.startsWith("data:")}var ee=new Set(["href","src","action","formaction","xlink:href"]);function h(t){return t.replace(/&/g,"&amp;").replace(/</g,"&lt;").replace(/>/g,"&gt;").replace(/"/g,"&quot;").replace(/'/g,"&#39;")}function ne(t){return t.startsWith("--")?t:t.replace(/([A-Z])/g,"-$1").toLowerCase()}var W=new Set(["area","base","br","col","embed","hr","img","input","link","meta","param","source","track","wbr"]);export{bt as action,zt as buildVercelOutput,E as createActionHandler,Wt as createCloudflareHandler,A as createRequestHandler,Nt as createServer,Bt as createVercelHandler,yt as csrfMetaTag,Le as definePage,Jt as exportStatic,Pt as fetchActionHandler,Q as formAction,mt as generateCsrfToken,Fe as generateStaticPage,_t as getRegisteredActions,pt as getRevalidationHandler,N as handleActionRequest,K as invalidatePath,xt as nodeActionMiddleware,Tt as onRevalidate,P as renderDocument,Ne as renderPage,De as renderToHydratableString,R as renderToStream,y as renderToString,qt as renderToStringAsync,Me as renderToStringWithHead,I as revalidatePath,j as revalidateTag,k as serializeState,Ue as server,H as setRevalidationHandler,rt as toNodeListener,q as useAction,St as useFormAction,kt as useMutation,At as useOptimistic,G as validateCsrfToken,Mt as whatMiddleware};
+</html>`}function on(t){return t._server=!0,t}var tt=!(typeof process<"u");function et(t){return t?t.dangerouslySetInnerHTML?t.dangerouslySetInnerHTML.__html??null:t.innerHTML&&typeof t.innerHTML=="object"&&"__html"in t.innerHTML?t.innerHTML.__html??null:(t.innerHTML!=null&&typeof t.innerHTML=="string"&&tt&&console.warn("[what-server] innerHTML received a raw string. This is a security risk (XSS). Use innerHTML={{ __html: trustedString }} or dangerouslySetInnerHTML={{ __html: trustedString }} instead."),null):null}var he=/^[a-zA-Z_:][a-zA-Z0-9:._-]*$/;function nt(t){let e="";for(let[n,r]of Object.entries(t))if(!(n==="key"||n==="ref"||n==="children"||n==="dangerouslySetInnerHTML"||n==="innerHTML")&&!(n.startsWith("on")&&n.length>2)&&!(r===!1||r==null)){if(!he.test(n)){tt&&console.warn(`[what-server] Skipping invalid attribute name in SSR: ${JSON.stringify(n)}`);continue}if(n==="className"||n==="class")e+=` class="${g(String(r))}"`;else if(n==="style"&&typeof r=="object"){let o=Object.entries(r).map(([a,s])=>`${ge(a)}:${s}`).join(";");e+=` style="${g(o)}"`}else if(r===!0)n.startsWith("aria-")||n==="role"?e+=` ${n}="true"`:e+=` ${n}`;else{if(me(n,r))continue;e+=` ${n}="${g(String(r))}"`}}return e}function me(t,e){let n=t.toLowerCase();if(!ye.has(n))return!1;let r=String(e).trim().replace(/[\u0000-\u001f\u007f\s]+/g,"").toLowerCase();return r.startsWith("javascript:")||r.startsWith("vbscript:")||r.startsWith("data:")}var ye=new Set(["href","src","action","formaction","xlink:href"]);function g(t){return t.replace(/&/g,"&amp;").replace(/</g,"&lt;").replace(/>/g,"&gt;").replace(/"/g,"&quot;").replace(/'/g,"&#39;")}function ge(t){return t.startsWith("--")?t:t.replace(/([A-Z])/g,"-$1").toLowerCase()}var rt=new Set(["area","base","br","col","embed","hr","img","input","link","meta","param","source","track","wbr"]);export{Pt as action,se as buildVercelOutput,O as createActionHandler,oe as createCloudflareHandler,R as createRequestHandler,Qt as createServer,ae as createVercelHandler,Y as csrfMetaTag,nn as definePage,re as exportStatic,Bt as fetchActionHandler,ut as formAction,X as generateCsrfToken,rn as generateStaticPage,It as getRegisteredActions,Ct as getRevalidationHandler,L as handleActionRequest,lt as invalidatePath,Ft as nodeActionMiddleware,Ht as onRevalidate,F as renderDocument,en as renderPage,qe as renderToHydratableString,$ as renderToStream,b as renderToString,le as renderToStringAsync,tn as renderToStringWithHead,V as revalidatePath,J as revalidateTag,x as serializeState,on as server,B as setRevalidationHandler,gt as toNodeListener,dt as useAction,Ot as useFormAction,jt as useMutation,$t as useOptimistic,ct as validateCsrfToken,Kt as whatMiddleware};
 //# sourceMappingURL=index.min.js.map