npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@selvajs/platform

v0.13.0

Published

Pure TypeScript interfaces for Selva platform providers (auth, definitions, compute)

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

thevessenthevessen

Keywords

Readme

@selvajs/platform

Pure TypeScript interfaces that define Selva's contract with its backends. No runtime dependencies on a specific database, storage, or auth service — every concrete adapter (local filesystem, Supabase, Azure, ...) lives in its own package and implements these interfaces.

This README is the contract. Read it before writing an adapter.

Interfaces at a glance

| Interface | Purpose | Scoped by RequestContext? | | -------------------------- | --------------------------------------------------------------------------------- | -------------------------------------------------------------------- | | IAuthProvider | Verify tokens, manage users, issue sessions. Optional passwordAuth? capability. | No — the auth provider produces the identity that fills the context. | | IPlatformPermissionStore | Per-user platform permissions; owns the sole-instance_admin invariant. | Yes — every method. | | IUserProfileStore | Per-user profile (display name, starred definitions, recent runs). | Yes — adapters scope by ctx.userId. | | IOrgStore | Orgs and org memberships. | Yes — every method. | | IProjectStore | Projects and project memberships. | Yes — every method. | | IDefinitionStore | Definition metadata records + version history. | Yes — every method. | | IShareLinkStore | Per-definition anonymous-access tokens. | Yes — every method. | | IInviteStore | Pending org-membership invitations. | Yes — every method. | | IComputeServerStore | Global + per-org compute-server config. | No — not tenant-scoped. | | IStorageProvider | Path-based blob storage. Authorization is the caller's responsibility. | No — callers pass already-authorized paths. |

IDataProvider composes every store: { orgs, projects, definitions, computeServer, invites, shareLinks, userProfile, permissions }. An adapter typically implements one class per store and aggregates them.

RequestContext rules

RequestContext carries the caller's identity and active scope. Built once per HTTP request in hooks.server.ts from the authenticated session.

  1. The query is the security boundary. Adapters MUST filter reads and writes by ctx. An unauthorized caller gets an empty page, null, or a ProviderError — never someone else's data.
  2. Never trust a caller's pre-flight check. canSolve / canEdit / canManage are UI-gating conveniences. A mutating method must remain safe even if the caller skipped them.
  3. Extend RequestContext, not method signatures. Add a field to the interface for new dimensions (e.g. tenantId); don't thread it through every call.
  4. SYSTEM_CONTEXT is for trusted server code only. Bootstrap, scheduled janitors, migrations, test setup. Never derive it from a user session.

Transaction ordering rules

Providers are two-phase: a metadata store (IDataProvider) and a blob store (IStorageProvider). They have no shared transaction. The consumer's orchestration layer (DefinitionService in @selvajs/selva) composes them with fixed ordering so partial failure is recoverable.

Create — metadata-first with pendingready:

  1. Write the record with status: 'pending'.
  2. Upload the blob.
  3. Flip status to 'ready'.

List queries filter 'pending' by default (ListOptions.includePending opts in). If step 2 fails, the record stays 'pending' and is invisible to consumers.

Delete — blob-first:

  1. storage.deletePrefix(prefix).
  2. data.delete(guid).

If step 2 fails, a retry re-deletes blobs (no-op) and succeeds.

Update-file — best-effort, retry-safe:

Archive current → append history → write new → prune history. Not atomic; retrying the same file converges.

A minimal adapter

import type {
	IDefinitionStore,
	DefinitionRecord,
	DefinitionRecordPatch,
	RequestContext,
	ListOptions,
	Page
} from '@selvajs/platform';

export class MyDefinitionStore implements IDefinitionStore {
	async list(ctx: RequestContext, opts?: ListOptions): Promise<Page<DefinitionRecord>> {
		// Filter by ctx.actingOrgId; exclude status='pending' unless opts.includePending.
	}
	// ... etc
}

Wire it into a SelvaConfig via defineConfig({ auth, data, storage }). data is an IDataProvider that composes every store (orgs, projects, definitions, invites, share-links, compute server, user profile, platform permissions).

Testing your adapter

@selvajs/platform/testing ships a conformance suite per store. Adapters import it and run it against their own instance — passing means the adapter behaves the same as the in-memory reference.

import { runDefinitionStoreConformance } from '@selvajs/platform/testing';
import { MyDefinitionStore } from './MyDefinitionStore.js';

runDefinitionStoreConformance({
	name: 'my-adapter',
	createStore: async () => new MyDefinitionStore(/* ... */)
});

The suites cover ctx scoping, pending filtering, includePending opt-in, history pruning, and ProviderError shapes. They do not cover performance or concurrency.

Errors

Throw ProviderError for user-facing failures (new ProviderError('...', 404)). Everything else propagates as a raw Error and becomes a 500.

Data privacy

User identity, credentials, and PII are owned by the auth provider. Selva stores only opaque session tokens, user IDs, and authorization metadata. See the root CLAUDE.md for the full data-privacy posture.

What not to put in this package

  • No runtime dependencies on databases, ORMs, auth SDKs, or HTTP frameworks.
  • No concrete adapters. They live in their own packages.
  • No service orchestration. Multi-step workflows that compose data + storage live in the consuming app.
  • No HTTP-boundary concerns. Zod request schemas and access checks belong in route handlers.