18.0.1

fix(smartproxy): Consolidate duplicate IRouteSecurity interfaces to use standardized property names (ipAllowList and ipBlockList), fix port preservation logic for preserve mode in forward actions, and update dependency versions in package.json.
18.0.0
2025-05-15 09:56:33 +00:00 · 2025-05-15 09:56:32 +00:00 · 2025-05-15 09:34:01 +00:00 · 2025-05-15 09:34:01 +00:00
15 changed files with 495 additions and 312 deletions
--- a/changelog.md
+++ b/changelog.md
@ -1,5 +1,23 @@
 # Changelog

+## 2025-05-15 - 18.0.1 - fix(smartproxy)
+Consolidate duplicate IRouteSecurity interfaces to use standardized property names (ipAllowList and ipBlockList), fix port preservation logic for 'preserve' mode in forward actions, and update dependency versions in package.json.
+
+- Unified the duplicate IRouteSecurity interfaces into a single definition using ipAllowList and ipBlockList.
+- Updated security checks (e.g. isClientIpAllowed) to use the new standardized property names.
+- Fixed the resolvePort function to properly handle 'preserve' mode and function-based port mapping.
+- Bumped dependency versions: @push.rocks/smartacme from 7.3.2 to 7.3.3 and @types/node to 22.15.18, and updated tsbuild from 2.3.2 to 2.4.1.
+- Revised documentation and changelog to reflect the interface consolidation and bug fixes.
+
+## 2025-05-15 - 18.0.0 - BREAKING CHANGE(IRouteSecurity)
+Consolidate duplicated IRouteSecurity interfaces by unifying property names (using 'ipAllowList' and 'ipBlockList' exclusively) and removing legacy definitions, updating security checks throughout the codebase to handle IPv6-mapped IPv4 addresses and cleaning up deprecated forwarding helpers.
+
+- Unified duplicate IRouteSecurity definitions into a single interface with consistent property names.
+- Replaced 'allowedIps' and 'blockedIps' with 'ipAllowList' and 'ipBlockList' respectively.
+- Updated references in security and route managers to use the new properties.
+- Ensured consistent IPv6-mapped IPv4 normalization in IP security checks.
+- Removed deprecated helpers and legacy code affecting port forwarding and route migration.
+
 ## 2025-05-15 - 17.0.0 - BREAKING CHANGE(smartproxy)
 Remove legacy migration utilities and deprecated forwarding helpers; consolidate route utilities, streamline interface definitions, and normalize IPv6-mapped IPv4 addresses

--- a/package.json
+++ b/package.json
@ -1,6 +1,6 @@
 {
  "name": "@push.rocks/smartproxy",
-  "version": "17.0.0",
+  "version": "18.0.1",
  "private": false,
  "description": "A powerful proxy package with unified route-based configuration for high traffic management. Features include SSL/TLS support, flexible routing patterns, WebSocket handling, advanced security options, and automatic ACME certificate management.",
  "main": "dist_ts/index.js",
@ -15,16 +15,16 @@
    "buildDocs": "tsdoc"
  },
  "devDependencies": {
-    "@git.zone/tsbuild": "^2.3.2",
+    "@git.zone/tsbuild": "^2.4.1",
    "@git.zone/tsrun": "^1.2.44",
    "@git.zone/tstest": "^1.0.77",
    "@push.rocks/tapbundle": "^6.0.3",
-    "@types/node": "^22.15.3",
+    "@types/node": "^22.15.18",
    "typescript": "^5.8.3"
  },
  "dependencies": {
    "@push.rocks/lik": "^6.2.2",
-    "@push.rocks/smartacme": "^7.3.2",
+    "@push.rocks/smartacme": "^7.3.3",
    "@push.rocks/smartdelay": "^3.0.5",
    "@push.rocks/smartnetwork": "^4.0.1",
    "@push.rocks/smartpromise": "^4.2.3",
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@ -12,8 +12,8 @@ importers:
        specifier: ^6.2.2
        version: 6.2.2
      '@push.rocks/smartacme':
-        specifier: ^7.3.2
-        version: 7.3.2(@aws-sdk/credential-providers@3.798.0)(socks@2.8.4)
+        specifier: ^7.3.3
+        version: 7.3.3(@aws-sdk/credential-providers@3.798.0)(socks@2.8.4)
      '@push.rocks/smartdelay':
        specifier: ^3.0.5
        version: 3.0.5
@ -52,8 +52,8 @@ importers:
        version: 8.18.2
    devDependencies:
      '@git.zone/tsbuild':
-        specifier: ^2.3.2
-        version: 2.3.2
+        specifier: ^2.4.1
+        version: 2.4.1
      '@git.zone/tsrun':
        specifier: ^1.2.44
        version: 1.3.3
@ -64,8 +64,8 @@ importers:
        specifier: ^6.0.3
        version: 6.0.3(@aws-sdk/credential-providers@3.798.0)(socks@2.8.4)
      '@types/node':
-        specifier: ^22.15.3
-        version: 22.15.3
+        specifier: ^22.15.18
+        version: 22.15.18
      typescript:
        specifier: ^5.8.3
        version: 5.8.3
@ -355,8 +355,8 @@ packages:
  '@cloudflare/workers-types@4.20250303.0':
    resolution: {integrity: sha512-O7F7nRT4bbmwHf3gkRBLfJ7R6vHIJ/oZzWdby6obOiw2yavUfp/AIwS7aO2POu5Cv8+h3TXS3oHs3kKCZLraUA==}

-  '@cloudflare/workers-types@4.20250505.0':
-    resolution: {integrity: sha512-pLQ/UaCupEy3fTTfy7yCR7FuAbawvCohYAdadGHPUfzssksA9MhkqBLlzYWRwIoC34R8grVn4XOCknEg+NMr0Q==}
+  '@cloudflare/workers-types@4.20250515.0':
+    resolution: {integrity: sha512-KoHFMH04gOXp3KEI+wrFIU+3ZfoSXnwqZTpybNQjalHoN3pWjtWBb/030cCRAZ639YX+DAHAxNF7AvEYGz1oaA==}

  '@colors/colors@1.6.0':
    resolution: {integrity: sha512-Ir+AOibqzrIsL6ajt3Rz3LskB7OiMVHqltZmspbW/TJuTVuyOMirVqAkjfY6JISiLHgyNqicAC8AyHHGzNd/dA==}
@ -680,8 +680,8 @@ packages:
  '@esm-bundle/chai@4.3.4-fix.0':
    resolution: {integrity: sha512-26SKdM4uvDWlY8/OOOxSB1AqQWeBosCX3wRYUZO7enTAj03CtVxIiCimYVG2WpULcyV51qapK4qTovwkUr5Mlw==}

-  '@git.zone/tsbuild@2.3.2':
-    resolution: {integrity: sha512-PG7N39/MkpIKGgRvT2MC7eyLHMcoofaQJQgUlJzicp62Wfk2W9qbnI8Xexb52uy7zvmndao/G4xZ391exJAj+A==}
+  '@git.zone/tsbuild@2.4.1':
+    resolution: {integrity: sha512-JfigTr1egTChGU49CZfl6LWtamZIhKDqHQfwa2XWPcMwX1XGT6retTdpbcs+MDX5vadFfkVSSglgxVsZH63QVw==}
    hasBin: true

  '@git.zone/tsbundle@2.2.5':
@ -872,8 +872,8 @@ packages:
  '@push.rocks/qenv@6.1.0':
    resolution: {integrity: sha512-1FUFMlSVwFSFg8LbqfkzJ2LLP4lMGApUtgOpsvrde6+AxBmB4gjoNgCUH7z3xXfDAtYqcrtSELXBNE0xVL1MqQ==}

-  '@push.rocks/smartacme@7.3.2':
-    resolution: {integrity: sha512-pfNd31wqvEn/2Bi9qZGCzvpV6/5V1jB9xOuWlsUTp4RihDVwQq2/se69pUeXDd1smWOM1yF4zq+45VO5DMDsCg==}
+  '@push.rocks/smartacme@7.3.3':
+    resolution: {integrity: sha512-48g9V4EpZI8B/YiPseIuB/balH22IMp/p26+DAE57jxvv1hh+PSV4I/UPWCPWP/z7OTtKF+EfEco9TEb5BF2Lw==}

  '@push.rocks/smartarchive@3.0.8':
    resolution: {integrity: sha512-1jPmR0b7hXmjYQoRiTlRXrIbZcdcFmSdGOfznufjcDpGPe86Km0d8TBnzqghTx4dTihzKC67IxAaz/DM3lvxpA==}
@ -896,6 +896,9 @@ packages:
  '@push.rocks/smartcli@4.0.11':
    resolution: {integrity: sha512-KDWfUqWBoUZsOEtsDx36d6qc8GG7Zo5E+HHamYY68KVDO8BMu6jbBucoUUPDksczLEmbXKLmroBP1mn/xozQOA==}

+  '@push.rocks/smartclickhouse@2.0.17':
+    resolution: {integrity: sha512-IYO8Obor/Ruam2KQ2B/+5uQ+rL0exU5KZoSgOc3jkkrfjn+zZenN2xoV8lVqavAtxZVfG7MfxFrcv6I7I9ZMmA==}
+
  '@push.rocks/smartcrypto@2.0.4':
    resolution: {integrity: sha512-1+/5bsjyataf5uUkUNnnVXGRAt+gHVk1KDzozjTqgqJxHvQk1d9fVDohL6CxUhUucTPtu5VR5xNBiV8YCDuGyw==}

@ -953,6 +956,9 @@ packages:
  '@push.rocks/smartlog@3.0.7':
    resolution: {integrity: sha512-WHOw0iHHjCEbYY4KGX40iFtLI11QJvvWIbC9yFn3Mt+nrdupMnry7Ztc5v/PqO8lu33Q6xDBMXiNQ9yNY0HVGw==}

+  '@push.rocks/smartlog@3.0.9':
+    resolution: {integrity: sha512-B/YIJrwXsbxPkAJly8+55yx3Eqm5bIaCZ/xD2oe6fD8Zp58VLF2P8hpoQZJOiSO+KI7wXVlTEFHsmt8fpRZIVA==}
+
  '@push.rocks/smartmanifest@2.0.2':
    resolution: {integrity: sha512-QGc5C9vunjfUbYsPGz5bynV/mVmPHkrQDkWp8ZO8VJtK1GZe+njgbrNyxn2SUHR0IhSAbSXl1j4JvBqYf5eTVg==}

@ -1742,11 +1748,11 @@ packages:
  '@types/node-forge@1.3.11':
    resolution: {integrity: sha512-FQx220y22OKNTqaByeBGqHWYz4cl94tpcxeFdvBo3wjG6XPBuZ0BNgNZRV5J5TFmmcsJ4IzsLkmGRiQbnYsBEQ==}

-  '@types/node@18.19.87':
-    resolution: {integrity: sha512-OIAAu6ypnVZHmsHCeJ+7CCSub38QNBS9uceMQeg7K5Ur0Jr+wG9wEOEvvMbhp09pxD5czIUy/jND7s7Tb6Nw7A==}
+  '@types/node@18.19.100':
+    resolution: {integrity: sha512-ojmMP8SZBKprc3qGrGk8Ujpo80AXkrP7G2tOT4VWr5jlr5DHjsJF+emXJz+Wm0glmy4Js62oKMdZZ6B9Y+tEcA==}

-  '@types/node@22.15.3':
-    resolution: {integrity: sha512-lX7HFZeHf4QG/J7tBZqrCAXwz9J5RD56Y6MpP0eJkka8p+K0RY/yBTW7CYFJ4VGCclxqOLKmiGP5juQc6MKgcw==}
+  '@types/node@22.15.18':
+    resolution: {integrity: sha512-v1DKRfUdyW+jJhZNEI1PYy29S2YRxMV5AOO/x/SjKmW0acCIOqmbj6Haf9eHAhsPmrhlHSxEhv/1WszcLWV4cg==}

  '@types/parse5@6.0.3':
    resolution: {integrity: sha512-SuT16Q1K51EAVPz1K29DJ/sXjhSQ0zjvsypYJ6tlwVsRV9jwW5Adq2ch8Dq8kDBCkYnELS7N7VNCSB5nC56t/g==}
@ -2118,6 +2124,10 @@ packages:
    resolution: {integrity: sha512-oKnbhFyRIXpUuez8iBMmyEa4nbj4IOQyuhc/wy9kY7/WVPcwIO9VA668Pu8RkO7+0G76SLROeyw9CpQ061i4mA==}
    engines: {node: '>=10'}

+  chalk@5.4.1:
+    resolution: {integrity: sha512-zgVZuo2WcZgfUEmsn6eO3kINexW8RAE4maiQ8QNs8CtpPCSyMiYsULR3HQYkm3w8FIA3SberyMJMSldGsW+U3w==}
+    engines: {node: ^12.17.0 || ^14.13 || >=16.0.0}
+
  character-entities-html4@2.1.0:
    resolution: {integrity: sha512-1v7fgQRj6hnSwFpq1Eu0ynr/CDEw0rXo2B61qXrLNdHZmPKgb7fqS1a2JwF0rISo9q77jDI8VMEHoApn8qDoZA==}

@ -2160,6 +2170,14 @@ packages:
    resolution: {integrity: sha512-I/zHAwsKf9FqGoXM4WWRACob9+SNukZTd94DWF57E4toouRulbCxcUh6RKUEOQlYTHJnzkPMySvPNaaSLNfLZw==}
    engines: {node: '>=8'}

+  cli-cursor@5.0.0:
+    resolution: {integrity: sha512-aCj4O5wKyszjMmDT4tZj93kxyydN/K5zPWSCe6/0AV/AA1pqe5ZBIw0a2ZfPQV7lL5/yb5HsUreJ6UFAF1tEQw==}
+    engines: {node: '>=18'}
+
+  cli-spinners@2.9.2:
+    resolution: {integrity: sha512-ywqV+5MmyL4E7ybXgKys4DugZbX0FC6LnwrhjuykIjnK9k8OQacQ7axGKnjDXWNhns0xot3bZI5h55H8yo9cJg==}
+    engines: {node: '>=6'}
+
  cliui@8.0.1:
    resolution: {integrity: sha512-BSeNnyus75C4//NQ9gQt1/csTXyo/8Sb+afLAkzAptFuMsod9HFokGNudZpi/oQV73hnVK+sR+5PVRMd+Dr7YQ==}
    engines: {node: '>=12'}
@ -2340,6 +2358,15 @@ packages:
      supports-color:
        optional: true

+  debug@4.4.1:
+    resolution: {integrity: sha512-KcKCqiftBJcZr++7ykoDIEwSa3XWowTfNPo92BYxjXiyYEVrUQh2aLyhxBCwww+heortUFxEJYcRzosstTEBYQ==}
+    engines: {node: '>=6.0'}
+    peerDependencies:
+      supports-color: '*'
+    peerDependenciesMeta:
+      supports-color:
+        optional: true
+
  decode-named-character-reference@1.1.0:
    resolution: {integrity: sha512-Wy+JTSbFThEOXQIR2L6mxJvEs+veIzpmqD7ynWxMXGpnk3smkHQOp6forLdHsKpAMW9iJpaBBIxz285t1n1C3w==}

@ -2447,6 +2474,9 @@ packages:
  elliptic@6.6.1:
    resolution: {integrity: sha512-RaddvvMatK2LJHqFJ+YA4WysVN5Ita9E35botqIYspQ4TkRAlCicdzKOjlyv/1Za5RyTNn7di//eEV0uTAfe3g==}

+  emoji-regex@10.4.0:
+    resolution: {integrity: sha512-EC+0oUMY1Rqm4O6LLrgjtYDvcVYTy7chDnM4Q7030tP4Kwj3u/pR6gP9ygnp2CJMK5Gq+9Q2oqmrFJAz01DXjw==}
+
  emoji-regex@8.0.0:
    resolution: {integrity: sha512-MSjYzcWNOA0ewAHpz0MxpYFvwg6yjy1NG3xteoqz644VCo/RPgnr1/GGt+ic3iJTzQ8Eu3TdM14SawnVUmGE6A==}

@ -2762,6 +2792,10 @@ packages:
    resolution: {integrity: sha512-DyFP3BM/3YHTQOCUL/w0OZHR0lpKeGrxotcHWcqNEdnltqFwXVfhEBQ94eIo34AfQpo0rGki4cyIiftY06h2Fg==}
    engines: {node: 6.* || 8.* || >= 10.*}

+  get-east-asian-width@1.3.0:
+    resolution: {integrity: sha512-vpeMIQKxczTD/0s2CdEWHcb0eeJe6TFjxb+J5xgX7hScxqrGuyjmv4c1D4A/gelKfyox0gJJwIHF+fLjeaM8kQ==}
+    engines: {node: '>=18'}
+
  get-intrinsic@1.3.0:
    resolution: {integrity: sha512-9fSjSaos/fRIVIp+xSJlE6lfwhES7LNtKaCBIamHsjr2na1BiABJPo0mOjjz8GJDURarmCPGqaiVg5mfjb98CQ==}
    engines: {node: '>= 0.4'}
@ -3018,6 +3052,10 @@ packages:
    resolution: {integrity: sha1-bKiwe5nHeZgCWQDlVc7Y7YCHmoM=}
    engines: {node: '>=0.10.0'}

+  is-interactive@2.0.0:
+    resolution: {integrity: sha512-qP1vozQRI+BMOPcjFzrjXuQvdak2pHNUMZoeG2eRbiSqyvbEf/wQtEOTOX1guk6E3t36RkaqiSt8A/6YElNxLQ==}
+    engines: {node: '>=12'}
+
  is-ip@3.1.0:
    resolution: {integrity: sha512-35vd5necO7IitFPjd/YBeqwWnyDWbuLH9ZXQdMfDA8TEo7pv5X8yfrvVO3xbJbLUlERCMvf6X0hTUamQxCYJ9Q==}
    engines: {node: '>=8'}
@ -3066,6 +3104,10 @@ packages:
    resolution: {integrity: sha512-Dnz92NInDqYckGEUJv689RbRiTSEHCQ7wOVeALbkOz999YpqT46yMRIGtSNl2iCL1waAZSx40+h59NV/EwzV/A==}
    engines: {node: '>=18'}

+  is-unicode-supported@1.3.0:
+    resolution: {integrity: sha512-43r2mRvz+8JRIKnWJ+3j8JtjRKZ6GmjzfaE/qiBJnikNnYv/6bagRJ1kUhNk8R5EX/GkobD+r+sfxCPJsiKBLQ==}
+    engines: {node: '>=12'}
+
  is-unicode-supported@2.1.0:
    resolution: {integrity: sha512-mE00Gnza5EEB3Ds0HfMyllZzbBrmLOX3vfWoj9A9PEnTfratQ/BcaJOuMhnkhjXvb2+FkY3VuHqtAGpTPmglFQ==}
    engines: {node: '>=18'}
@ -3281,6 +3323,10 @@ packages:
  lodash@4.17.21:
    resolution: {integrity: sha512-v2kDEe57lecTulaDIuNTPy3Ry4gLGJ6Z1O3vE1krgXZNrsQ+LFTGHVxVjcXPs17LhbZVGedAJv8XZ1tvj5FvSg==}

+  log-symbols@6.0.0:
+    resolution: {integrity: sha512-i24m8rpwhmPIS4zscNzK6MSEhk0DUWa/8iYQWxhffV8jkI4Phvs3F+quL5xvS0gdQR0FyTCMMH33Y78dDTzzIw==}
+    engines: {node: '>=18'}
+
  log-update@4.0.0:
    resolution: {integrity: sha512-9fkkDevMefjg0mmzWFBW8YkFP91OrizzkW3diF7CpG+S2EYdy4+TVfGwz1zeF8x7hCx1ovSPTOE9Ngib74qqUg==}
    engines: {node: '>=10'}
@ -3519,6 +3565,10 @@ packages:
    resolution: {integrity: sha512-OqbOk5oEQeAZ8WXWydlu9HJjz9WVdEIvamMCcXmuqUYjTknH/sqsWvhQ3vgwKFRR1HpjvNBKQ37nbJgYzGqGcg==}
    engines: {node: '>=6'}

+  mimic-function@5.0.1:
+    resolution: {integrity: sha512-VP79XUPxV2CigYP3jWwAUFSku2aKqBH7uTAapFWCBqutsbmDo96KY5o8uh6U+/YSIn5OxJnXp73beVkpqMIGhA==}
+    engines: {node: '>=18'}
+
  mimic-response@3.1.0:
    resolution: {integrity: sha512-z0yWI+4FDrrweS8Zmt4Ej5HdJmky15+L2e6Wgn3+iK5fWzb6T3fhNFq2+MeTRb064c6Wr4N/wv0DzQTjNzHNGQ==}
    engines: {node: '>=10'}
@ -3716,6 +3766,10 @@ packages:
    resolution: {integrity: sha512-kbpaSSGJTWdAY5KPVeMOKXSrPtr8C8C7wodJbcsd51jRnmD+GZu8Y0VoU6Dm5Z4vWr0Ig/1NKuWRKf7j5aaYSg==}
    engines: {node: '>=6'}

+  onetime@7.0.0:
+    resolution: {integrity: sha512-VXJjc87FScF88uafS3JllDgvAm+c/Slfz06lorj2uAY34rlUu0Nt+v8wreiImcrgAjjIHp1rXpTDlLOGw29WwQ==}
+    engines: {node: '>=18'}
+
  only@0.0.2:
    resolution: {integrity: sha1-Kv3oTQPlC5qO3EROMGEKcCle37Q=}

@ -3723,6 +3777,10 @@ packages:
    resolution: {integrity: sha512-7x81NCL719oNbsq/3mh+hVrAWmFuEYUqrq/Iw3kUzH8ReypT9QQ0BLoJS7/G9k6N81XjW4qHWtjWwe/9eLy1EQ==}
    engines: {node: '>=12'}

+  ora@8.2.0:
+    resolution: {integrity: sha512-weP+BZ8MVNnlCm8c0Qdc1WSWq4Qn7I+9CJGm7Qali6g44e/PUzbjNqJX5NJ9ljlNMosfJvg1fKEGILklK9cwnw==}
+    engines: {node: '>=18'}
+
  p-cancelable@3.0.0:
    resolution: {integrity: sha512-mlVgR3PGuzlo0MmTdk4cXqXWlwQDLnONTAg6sm62XkMJEiRxN3GL3SffkYvqwonbkJBcrI7Uvv5Zh9yjvn2iUw==}
    engines: {node: '>=12.20'}
@ -4066,6 +4124,10 @@ packages:
    resolution: {integrity: sha512-l+sSefzHpj5qimhFSE5a8nufZYAM3sBSVMAPtYkmC+4EH2anSGaEMXSD0izRQbu9nfyQ9y5JrVmp7E8oZrUjvA==}
    engines: {node: '>=8'}

+  restore-cursor@5.1.0:
+    resolution: {integrity: sha512-oMA2dcrw6u0YfxJQXm342bFKX/E4sG9rbTzO9ptUcR/e8A33cHuvStiYOwH7fszkZlZ1z/ta9AAoPk2F4qIOHA==}
+    engines: {node: '>=18'}
+
  reusify@1.1.0:
    resolution: {integrity: sha512-g6QUff04oZpHs0eG5p83rFLhHeV00ug/Yf9nZM6fLeUrPguBTkTQOdpAWWspMh55TZfVQDPaN3NQJfbVRAxdIw==}
    engines: {iojs: '>=1.0.0', node: '>=0.10.0'}
@ -4117,6 +4179,11 @@ packages:
    engines: {node: '>=10'}
    hasBin: true

+  semver@7.7.2:
+    resolution: {integrity: sha512-RF0Fw+rO5AMf9MAyaRXI4AV0Ulj5lMHqVxxdSgiVbixSCXoEmmX/jk0CuJw4+3SqroYO9VoUh+HcuJivvtJemA==}
+    engines: {node: '>=10'}
+    hasBin: true
+
  send@0.19.0:
    resolution: {integrity: sha512-dW41u5VfLXu8SJh5bwRmyYUbAoSB3c9uQh6L8h/KtsFREPWpbX1lrljJo186Jc4nmci/sGUZ9a0a0J2zgfq2hw==}
    engines: {node: '>= 0.8.0'}
@ -4243,6 +4310,10 @@ packages:
    resolution: {integrity: sha512-RwNA9Z/7PrK06rYLIzFMlaF+l73iwpzsqRIFgbMLbTcLD6cOao82TaWefPXQvB2fOC4AjuYSEndS7N/mTCbkdQ==}
    engines: {node: '>= 0.8'}

+  stdin-discarder@0.2.2:
+    resolution: {integrity: sha512-UhDfHmA92YAlNnCfhmq0VeNL5bDbiZGg7sZ2IvPsXubGkiNa9EC+tUTsjBRsYUAz87btI6/1wf4XoVvQ3uRnmQ==}
+    engines: {node: '>=18'}
+
  stream-shift@1.0.3:
    resolution: {integrity: sha512-76ORR0DO1o1hlKwTbi/DM3EXWGf3ZJYO8cXX5RJwnul2DEg2oyoZyjLNoQM8WsvZiFKCRfC1O0J7iCvie3RZmQ==}

@ -4261,6 +4332,10 @@ packages:
    resolution: {integrity: sha512-HnLOCR3vjcY8beoNLtcjZ5/nxn2afmME6lhrDrebokqMap+XbeW8n9TXpPDOqdGK5qcI3oT0GKTW6wC7EMiVqA==}
    engines: {node: '>=12'}

+  string-width@7.2.0:
+    resolution: {integrity: sha512-tsaTIkKW9b4N+AEj+SVA+WhJzV7/zMhcSu78mLKWSk7cXMOSHsBKFWUs0fWwq8QyK3MgJBQRX6Gbi4kYbdvGkQ==}
+    engines: {node: '>=18'}
+
  string_decoder@1.1.1:
    resolution: {integrity: sha512-n/ShnvDi6FHbbVfviro+WojiFzv+s8MPMHBczVePfUpDJLwoLT0ht1l4YwBCbi8pJAveEEdnkHyPyTP/mzRfwg==}

@ -4434,6 +4509,10 @@ packages:
    resolution: {integrity: sha512-9YvLNnORDpI+vghLU/Nf+zSv0kL47KbVJ1o3sKgoTefl6i+zebxbiDQWoe/oWWqPhIgQdRZRT1KA9sCPL810SA==}
    engines: {node: '>=16'}

+  type-fest@4.41.0:
+    resolution: {integrity: sha512-TeTSQ6H5YHvpqVwBRcnLDCBnDOHWYu7IvGbHT6N8AOymcr9PJGjc1GTtiWZTYg0NCgYwvnYWEkVChQAr9bjfwA==}
+    engines: {node: '>=16'}
+
  type-is@1.6.18:
    resolution: {integrity: sha512-TkRKr9sUTxEH8MdfuCSP7VizJyzRNMjj2J2do2Jr3Kym598JVdEksuzPQCnlFPW4ky9Q+iA+ma9BGm06XQBy8g==}
    engines: {node: '>= 0.6'}
@ -4760,7 +4839,7 @@ snapshots:
      '@api.global/typedrequest': 3.1.10
      '@api.global/typedrequest-interfaces': 3.0.19
      '@api.global/typedsocket': 3.0.1
-      '@cloudflare/workers-types': 4.20250505.0
+      '@cloudflare/workers-types': 4.20250515.0
      '@design.estate/dees-comms': 1.0.27
      '@push.rocks/lik': 6.2.2
      '@push.rocks/smartchok': 1.0.34
@ -4769,7 +4848,7 @@ snapshots:
      '@push.rocks/smartfeed': 1.0.11
      '@push.rocks/smartfile': 11.2.0
      '@push.rocks/smartjson': 5.0.20
-      '@push.rocks/smartlog': 3.0.7
+      '@push.rocks/smartlog': 3.0.9
      '@push.rocks/smartlog-destination-devtools': 1.0.12
      '@push.rocks/smartlog-interfaces': 3.0.2
      '@push.rocks/smartmanifest': 2.0.2
@ -4823,7 +4902,7 @@ snapshots:
  '@apiclient.xyz/cloudflare@6.4.1':
    dependencies:
      '@push.rocks/smartdelay': 3.0.5
-      '@push.rocks/smartlog': 3.0.7
+      '@push.rocks/smartlog': 3.0.9
      '@push.rocks/smartpromise': 4.2.3
      '@push.rocks/smartrequest': 2.1.0
      '@push.rocks/smartstring': 4.0.15
@ -5671,7 +5750,7 @@ snapshots:

  '@cloudflare/workers-types@4.20250303.0': {}

-  '@cloudflare/workers-types@4.20250505.0': {}
+  '@cloudflare/workers-types@4.20250515.0': {}

  '@colors/colors@1.6.0': {}

@ -5884,14 +5963,14 @@ snapshots:
    dependencies:
      '@types/chai': 4.3.20

-  '@git.zone/tsbuild@2.3.2':
+  '@git.zone/tsbuild@2.4.1':
    dependencies:
      '@git.zone/tspublish': 1.9.1
      '@push.rocks/early': 4.0.4
      '@push.rocks/smartcli': 4.0.11
      '@push.rocks/smartdelay': 3.0.5
      '@push.rocks/smartfile': 11.2.0
-      '@push.rocks/smartlog': 3.0.7
+      '@push.rocks/smartlog': 3.0.9
      '@push.rocks/smartpath': 5.0.18
      '@push.rocks/smartpromise': 4.2.3
      typescript: 5.7.3
@ -5921,7 +6000,7 @@ snapshots:
      '@push.rocks/smartcli': 4.0.11
      '@push.rocks/smartdelay': 3.0.5
      '@push.rocks/smartfile': 11.2.0
-      '@push.rocks/smartlog': 3.0.7
+      '@push.rocks/smartlog': 3.0.9
      '@push.rocks/smartnpm': 2.0.4
      '@push.rocks/smartpath': 5.0.18
      '@push.rocks/smartrequest': 2.1.0
@ -5997,7 +6076,7 @@ snapshots:
      '@jest/schemas': 29.6.3
      '@types/istanbul-lib-coverage': 2.0.6
      '@types/istanbul-reports': 3.0.4
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18
      '@types/yargs': 17.0.33
      chalk: 4.1.2

@ -6284,7 +6363,7 @@ snapshots:
      '@push.rocks/smartlog': 3.0.7
      '@push.rocks/smartpath': 5.0.18

-  '@push.rocks/smartacme@7.3.2(@aws-sdk/credential-providers@3.798.0)(socks@2.8.4)':
+  '@push.rocks/smartacme@7.3.3(@aws-sdk/credential-providers@3.798.0)(socks@2.8.4)':
    dependencies:
      '@api.global/typedserver': 3.0.74
      '@apiclient.xyz/cloudflare': 6.4.1
@ -6293,7 +6372,7 @@ snapshots:
      '@push.rocks/smartdelay': 3.0.5
      '@push.rocks/smartdns': 6.2.2
      '@push.rocks/smartfile': 11.2.0
-      '@push.rocks/smartlog': 3.0.7
+      '@push.rocks/smartlog': 3.0.9
      '@push.rocks/smartnetwork': 4.0.1
      '@push.rocks/smartpromise': 4.2.3
      '@push.rocks/smartrequest': 2.1.0
@ -6306,7 +6385,6 @@ snapshots:
      - '@aws-sdk/credential-providers'
      - '@mongodb-js/zstd'
      - '@nuxt/kit'
-      - aws-crt
      - bufferutil
      - encoding
      - gcp-metadata
@ -6389,6 +6467,15 @@ snapshots:
      '@push.rocks/smartrx': 3.0.7
      yargs-parser: 21.1.1

+  '@push.rocks/smartclickhouse@2.0.17':
+    dependencies:
+      '@push.rocks/smartdelay': 3.0.5
+      '@push.rocks/smartobject': 1.0.12
+      '@push.rocks/smartpromise': 4.2.3
+      '@push.rocks/smartrx': 3.0.10
+      '@push.rocks/smarturl': 3.1.0
+      '@push.rocks/webrequest': 3.0.37
+
  '@push.rocks/smartcrypto@2.0.4':
    dependencies:
      '@push.rocks/smartpromise': 4.2.3
@ -6548,6 +6635,20 @@ snapshots:
      '@push.rocks/isounique': 1.0.5
      '@push.rocks/smartlog-interfaces': 3.0.2

+  '@push.rocks/smartlog@3.0.9':
+    dependencies:
+      '@api.global/typedrequest-interfaces': 3.0.19
+      '@push.rocks/consolecolor': 2.0.2
+      '@push.rocks/isounique': 1.0.5
+      '@push.rocks/smartclickhouse': 2.0.17
+      '@push.rocks/smartfile': 11.2.0
+      '@push.rocks/smarthash': 3.0.4
+      '@push.rocks/smartpromise': 4.2.3
+      '@push.rocks/smarttime': 4.1.1
+      '@push.rocks/webrequest': 3.0.37
+      '@tsclass/tsclass': 9.2.0
+      ora: 8.2.0
+
  '@push.rocks/smartmanifest@2.0.2': {}

  '@push.rocks/smartmarkdown@3.0.3':
@ -6843,7 +6944,7 @@ snapshots:
  '@push.rocks/smartversion@3.0.5':
    dependencies:
      '@types/semver': 7.7.0
-      semver: 7.7.1
+      semver: 7.7.2

  '@push.rocks/smartxml@1.1.1':
    dependencies:
@ -7732,7 +7833,7 @@ snapshots:

  '@tsclass/tsclass@5.0.0':
    dependencies:
-      type-fest: 4.40.1
+      type-fest: 4.41.0

  '@tsclass/tsclass@8.2.1':
    dependencies:
@ -7744,18 +7845,18 @@ snapshots:

  '@types/accepts@1.3.7':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/babel__code-frame@7.0.6': {}

  '@types/bn.js@5.1.6':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/body-parser@1.19.5':
    dependencies:
      '@types/connect': 3.4.38
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/buffer-json@2.0.3': {}

@ -7771,17 +7872,17 @@ snapshots:

  '@types/clean-css@4.2.11':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18
      source-map: 0.6.1

  '@types/co-body@6.1.3':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18
      '@types/qs': 6.9.18

  '@types/connect@3.4.38':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/content-disposition@0.5.8': {}

@ -7794,11 +7895,11 @@ snapshots:
      '@types/connect': 3.4.38
      '@types/express': 5.0.0
      '@types/keygrip': 1.0.6
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/cors@2.8.17':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/debounce@1.2.4': {}

@ -7814,7 +7915,7 @@ snapshots:

  '@types/dns-packet@5.6.5':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/elliptic@6.4.18':
    dependencies:
@ -7822,14 +7923,14 @@ snapshots:

  '@types/express-serve-static-core@4.19.6':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18
      '@types/qs': 6.9.18
      '@types/range-parser': 1.2.7
      '@types/send': 0.17.4

  '@types/express-serve-static-core@5.0.6':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18
      '@types/qs': 6.9.18
      '@types/range-parser': 1.2.7
      '@types/send': 0.17.4
@ -7860,30 +7961,30 @@ snapshots:

  '@types/from2@2.3.5':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/fs-extra@11.0.4':
    dependencies:
      '@types/jsonfile': 6.1.4
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/fs-extra@9.0.13':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/glob@7.2.0':
    dependencies:
      '@types/minimatch': 5.1.2
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/glob@8.1.0':
    dependencies:
      '@types/minimatch': 5.1.2
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/gunzip-maybe@1.4.2':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/hast@3.0.4':
    dependencies:
@ -7917,7 +8018,7 @@ snapshots:

  '@types/jsonfile@6.1.4':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/keygrip@1.0.6': {}

@ -7934,7 +8035,7 @@ snapshots:
      '@types/http-errors': 2.0.4
      '@types/keygrip': 1.0.6
      '@types/koa-compose': 3.2.8
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/mdast@4.0.4':
    dependencies:
@ -7952,18 +8053,18 @@ snapshots:

  '@types/node-fetch@2.6.12':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18
      form-data: 4.0.2

  '@types/node-forge@1.3.11':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

-  '@types/node@18.19.87':
+  '@types/node@18.19.100':
    dependencies:
      undici-types: 5.26.5

-  '@types/node@22.15.3':
+  '@types/node@22.15.18':
    dependencies:
      undici-types: 6.21.0

@ -7981,19 +8082,19 @@ snapshots:

  '@types/s3rver@3.7.4':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/semver@7.7.0': {}

  '@types/send@0.17.4':
    dependencies:
      '@types/mime': 1.3.5
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/serve-static@1.15.7':
    dependencies:
      '@types/http-errors': 2.0.4
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18
      '@types/send': 0.17.4

  '@types/sinon-chai@3.2.12':
@ -8013,11 +8114,11 @@ snapshots:

  '@types/tar-stream@2.2.3':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/through2@2.0.41':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/triple-beam@1.3.5': {}

@ -8041,18 +8142,18 @@ snapshots:

  '@types/whatwg-url@8.2.2':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18
      '@types/webidl-conversions': 7.0.3

  '@types/which@3.0.4': {}

  '@types/ws@7.4.7':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/ws@8.18.1':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18

  '@types/yargs-parser@21.0.3': {}

@ -8062,7 +8163,7 @@ snapshots:

  '@types/yauzl@2.10.3':
    dependencies:
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18
    optional: true

  '@ungap/structured-clone@1.3.0': {}
@ -8156,8 +8257,8 @@ snapshots:
    dependencies:
      '@peculiar/x509': 1.12.3
      asn1js: 3.0.6
-      axios: 1.9.0(debug@4.4.0)
-      debug: 4.4.0
+      axios: 1.9.0(debug@4.4.1)
+      debug: 4.4.1
      node-forge: 1.3.1
    transitivePeerDependencies:
      - supports-color
@ -8227,9 +8328,9 @@ snapshots:

  axe-core@4.10.3: {}

-  axios@1.9.0(debug@4.4.0):
+  axios@1.9.0(debug@4.4.1):
    dependencies:
-      follow-redirects: 1.15.9(debug@4.4.0)
+      follow-redirects: 1.15.9(debug@4.4.1)
      form-data: 4.0.2
      proxy-from-env: 1.1.0
    transitivePeerDependencies:
@ -8409,6 +8510,8 @@ snapshots:
      ansi-styles: 4.3.0
      supports-color: 7.2.0

+  chalk@5.4.1: {}
+
  character-entities-html4@2.1.0: {}

  character-entities-legacy@3.0.0: {}
@ -8443,6 +8546,12 @@ snapshots:
    dependencies:
      restore-cursor: 3.1.0

+  cli-cursor@5.0.0:
+    dependencies:
+      restore-cursor: 5.1.0
+
+  cli-spinners@2.9.2: {}
+
  cliui@8.0.1:
    dependencies:
      string-width: 4.2.3
@ -8457,7 +8566,7 @@ snapshots:

  cloudflare@4.2.0:
    dependencies:
-      '@types/node': 18.19.87
+      '@types/node': 18.19.100
      '@types/node-fetch': 2.6.12
      abort-controller: 3.0.0
      agentkeepalive: 4.6.0
@ -8600,6 +8709,10 @@ snapshots:
    dependencies:
      ms: 2.1.3

+  debug@4.4.1:
+    dependencies:
+      ms: 2.1.3
+
  decode-named-character-reference@1.1.0:
    dependencies:
      character-entities: 2.0.2
@ -8703,6 +8816,8 @@ snapshots:
      minimalistic-assert: 1.0.1
      minimalistic-crypto-utils: 1.0.1

+  emoji-regex@10.4.0: {}
+
  emoji-regex@8.0.0: {}

  emoji-regex@9.2.2: {}
@ -8735,7 +8850,7 @@ snapshots:
    dependencies:
      '@types/cookie': 0.4.1
      '@types/cors': 2.8.17
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18
      accepts: 1.3.8
      base64id: 2.0.0
      cookie: 0.4.2
@ -9031,6 +9146,10 @@ snapshots:
    optionalDependencies:
      debug: 4.4.0

+  follow-redirects@1.15.9(debug@4.4.1):
+    optionalDependencies:
+      debug: 4.4.1
+
  foreground-child@2.0.0:
    dependencies:
      cross-spawn: 7.0.6
@ -9101,6 +9220,8 @@ snapshots:

  get-caller-file@2.0.5: {}

+  get-east-asian-width@1.3.0: {}
+
  get-intrinsic@1.3.0:
    dependencies:
      call-bind-apply-helpers: 1.0.2
@ -9428,6 +9549,8 @@ snapshots:

  is-gzip@1.0.0: {}

+  is-interactive@2.0.0: {}
+
  is-ip@3.1.0:
    dependencies:
      ip-regex: 4.3.0
@ -9467,6 +9590,8 @@ snapshots:

  is-stream@4.0.1: {}

+  is-unicode-supported@1.3.0: {}
+
  is-unicode-supported@2.1.0: {}

  is-windows@1.0.2: {}
@ -9539,7 +9664,7 @@ snapshots:
  jest-util@29.7.0:
    dependencies:
      '@jest/types': 29.6.3
-      '@types/node': 22.15.3
+      '@types/node': 22.15.18
      chalk: 4.1.2
      ci-info: 3.9.0
      graceful-fs: 4.2.11
@ -9728,6 +9853,11 @@ snapshots:

  lodash@4.17.21: {}

+  log-symbols@6.0.0:
+    dependencies:
+      chalk: 5.4.1
+      is-unicode-supported: 1.3.0
+
  log-update@4.0.0:
    dependencies:
      ansi-escapes: 4.3.2
@ -10138,6 +10268,8 @@ snapshots:

  mimic-fn@2.1.0: {}

+  mimic-function@5.0.1: {}
+
  mimic-response@3.1.0: {}

  mimic-response@4.0.0: {}
@ -10315,6 +10447,10 @@ snapshots:
    dependencies:
      mimic-fn: 2.1.0

+  onetime@7.0.0:
+    dependencies:
+      mimic-function: 5.0.1
+
  only@0.0.2: {}

  open@8.4.2:
@ -10323,6 +10459,18 @@ snapshots:
      is-docker: 2.2.1
      is-wsl: 2.2.0

+  ora@8.2.0:
+    dependencies:
+      chalk: 5.4.1
+      cli-cursor: 5.0.0
+      cli-spinners: 2.9.2
+      is-interactive: 2.0.0
+      is-unicode-supported: 2.1.0
+      log-symbols: 6.0.0
+      stdin-discarder: 0.2.2
+      string-width: 7.2.0
+      strip-ansi: 7.1.0
+
  p-cancelable@3.0.0: {}

  p-event@4.2.0:
@ -10375,7 +10523,7 @@ snapshots:
      got: 12.6.1
      registry-auth-token: 5.1.0
      registry-url: 6.0.1
-      semver: 7.7.1
+      semver: 7.7.2

  pako@0.2.9: {}

@ -10710,6 +10858,11 @@ snapshots:
      onetime: 5.1.2
      signal-exit: 3.0.7

+  restore-cursor@5.1.0:
+    dependencies:
+      onetime: 7.0.0
+      signal-exit: 4.1.0
+
  reusify@1.1.0: {}

  rimraf@3.0.2:
@ -10765,6 +10918,8 @@ snapshots:

  semver@7.7.1: {}

+  semver@7.7.2: {}
+
  send@0.19.0:
    dependencies:
      debug: 2.6.9
@ -10944,6 +11099,8 @@ snapshots:

  statuses@2.0.1: {}

+  stdin-discarder@0.2.2: {}
+
  stream-shift@1.0.3: {}

  streamsearch@0.1.2: {}
@ -10967,6 +11124,12 @@ snapshots:
      emoji-regex: 9.2.2
      strip-ansi: 7.1.0

+  string-width@7.2.0:
+    dependencies:
+      emoji-regex: 10.4.0
+      get-east-asian-width: 1.3.0
+      strip-ansi: 7.1.0
+
  string_decoder@1.1.1:
    dependencies:
      safe-buffer: 5.1.2
@ -11144,6 +11307,8 @@ snapshots:

  type-fest@4.40.1: {}

+  type-fest@4.41.0: {}
+
  type-is@1.6.18:
    dependencies:
      media-typer: 0.3.0
--- a/readme.plan.md
+++ b/readme.plan.md
@ -1,201 +1,186 @@
-# SmartProxy Codebase Cleanup Plan
+# SmartProxy Interface Consolidation Plan

 ## Overview

-This document outlines a comprehensive plan to clean up the SmartProxy codebase by removing deprecated and unused code, consolidating functionality, and reducing complexity. The goal is to make the codebase more maintainable, easier to understand, and better positioned for future enhancements.
+This document outlines a plan to consolidate duplicate and inconsistent interfaces in the SmartProxy codebase, specifically the `IRouteSecurity` interface which is defined twice with different properties. This inconsistency caused issues with security checks for port forwarding. The goal is to unify these interfaces, use consistent property naming, and improve code maintainability.

-## Phase 1: Remove Deprecated Code
+## Problem Description (RESOLVED)

-### 1.1 Delete Legacy Migration Utilities ✅
+We had two separate `IRouteSecurity` interfaces defined in `ts/proxies/smart-proxy/models/route-types.ts` which have now been consolidated into a single interface:

-The route migration utilities were created to assist in transitioning from the legacy domain-based configuration to the new route-based configuration system. As this migration is now complete, these utilities can be safely removed.
+1. **First definition** (previous lines 116-122) - Used in IRouteAction:
+   ```typescript
+   export interface IRouteSecurity {
+     allowedIps?: string[];
+     blockedIps?: string[];
+     maxConnections?: number;
+     authentication?: IRouteAuthentication;
+   }
+   ```

- **Action:** ✅ Remove `/ts/proxies/smart-proxy/utils/route-migration-utils.ts`
- **Impact:** Low - This file is explicitly marked as temporary and for migration purposes only
- **Dependencies:** ✅ Update any imports of these utilities (check forwarding-types.ts)
+2. **Second definition** (previous lines 253-272) - Used directly in IRouteConfig:
+   ```typescript
+   export interface IRouteSecurity {
+     rateLimit?: IRouteRateLimit;
+     basicAuth?: {...};
+     jwtAuth?: {...};
+     ipAllowList?: string[];
+     ipBlockList?: string[];
+   }
+   ```

-### 1.2 Clean Up References to Deleted Files ✅
+This duplication with inconsistent naming (`allowedIps` vs `ipAllowList` and `blockedIps` vs `ipBlockList`) caused routing issues when IP security checks were used, particularly with port range configurations.

-Several files are marked for deletion in the git status but are still referenced in the codebase.
+## Implementation Plan (COMPLETED)

- **Action:** ✅ Remove references to deleted route-helpers files:
-  - ✅ Update `/ts/proxies/smart-proxy/utils/index.ts` to remove `export * from './route-helpers.js';`
-  - ✅ Update `/ts/forwarding/config/forwarding-types.ts` to remove imports and re-exports of route helper functions
- **Impact:** Medium - May break code that still relies on these helpers
- **Dependencies:** ✅ Ensure route-patterns.js provides equivalent functionality (moved helper functions from route-helpers.js to route-patterns.ts)
+### Phase 1: Interface Consolidation ✅

-### 1.3 Remove Deprecated Forwarding Types and Helpers ✅
+1. **Create a unified interface definition:** ✅
+   - Created one comprehensive `IRouteSecurity` interface that includes all properties
+   - Standardized on `ipAllowList` and `ipBlockList` property names
+   - Added proper documentation for each property
+   - Removed the duplicate interface definition
+   
+2. **Update references to use the unified interface:** ✅
+   - Updated all code that references the old interface properties
+   - Updated all configurations to use the new property names
+   - Ensured implementation in `route-manager.ts` uses the correct property names

-Legacy forwarding types and helper functions in forwarding-types.ts are marked as deprecated.
+### Phase 2: Code and Documentation Updates ✅

- **Action:** ✅ 
-  - ✅ Clean up `/ts/forwarding/config/forwarding-types.ts`
-  - ✅ Remove deprecated helper functions: `httpOnly`, `tlsTerminateToHttp`, `tlsTerminateToHttps`, `httpsPassthrough`
-  - ✅ Remove deprecated interfaces: `IDeprecatedForwardConfig`
- **Impact:** Medium - May break code that still uses these helpers
- **Dependencies:** ✅ Ensure route patterns provide equivalent functionality
+1. **Update type usages and documentation:** ✅
+   - Updated all code that creates or uses security configurations
+   - Updated documentation to reflect the new interface structure
+   - Added examples of the correct property usage
+   - Documented the changes in this plan

-## Phase 2: Consolidate and Simplify Code
+2. **Fix TypeScript errors:** ✅
+   - Fixed TypeScript errors in http-request-handler.ts
+   - Successfully built the project with `pnpm run build`

-### 2.1 Streamline Interface Definitions ✅
+## Implementation Completed ✅

-There are several redundant interfaces that could be simplified.
-
- **Action:** ✅
-  - ✅ Remove legacy type checking functions (`isLegacyOptions`, `isRoutedOptions`) in `/ts/proxies/smart-proxy/models/interfaces.ts`
-  - ✅ Update `ISmartProxyOptions` interface to remove obsolete properties
-  - ✅ Remove backward compatibility aliases like `IRoutedSmartProxyOptions`
- **Impact:** Medium - May break code that relies on these interfaces
- **Dependencies:** ✅ Update any code that references these interfaces
-
-### 2.2 Consolidate Route Utilities
-
-The route utilities are spread across multiple files with some overlapping functionality.
-
- **Action:**
-  - Consolidate route utilities into a single coherent structure
-  - Move common functions from route-utils.ts, route-patterns.ts into a single location
-  - Ensure consistent naming conventions for route utility functions
- **Impact:** Medium - Requires careful refactoring
- **Dependencies:** Update all references to these utilities
-
-### 2.3 Clean Up Legacy Connection Handling ✅
-
-The route-connection-handler.ts file contains legacy code and parameters kept for backward compatibility.
-
- **Action:** ✅
-  - ✅ Remove unused parameters and legacy comments from `setupDirectConnection` method
-  - ✅ Simplify connection handling logic by removing special cases for legacy configurations
- **Impact:** Medium - Requires careful testing to ensure no regressions
- **Dependencies:** ✅ Test with all current route configurations
-
-## Phase 3: Code Modernization
-
-### 3.1 Standardize on 'preserve' Port Handling ✅
-
-Previously implemented changes to use `port: 'preserve'` instead of `preservePort: true` should be consistently applied.
-
- **Action:** ✅
-  - ✅ Ensure all code paths handle the 'preserve' value for port
-  - ✅ Remove any remaining references to preservePort in code and documentation
- **Impact:** Low - Already implemented in most places
- **Dependencies:** None
-
-### 3.2 Normalize IPv6-Mapped IPv4 Addresses ✅
-
-Implement consistent handling of IPv6-mapped IPv4 addresses throughout the codebase.
-
- **Action:** ✅
-  - ✅ Ensure any IP address comparisons consistently handle IPv6-mapped IPv4 addresses
-  - ✅ Standardize on a single approach to IP normalization
- **Impact:** Low - Already partially implemented
- **Dependencies:** None
-
-### 3.3 Improve Type Safety ✅
-
-Enhance type safety throughout the codebase to catch errors at compile time.
-
- **Action:** ✅
-  - ✅ Add stronger types where appropriate
-  - ✅ Remove any `any` types that could be replaced with more specific types
-  - ✅ Add explicit return types to functions
- **Impact:** Medium - May uncover existing issues
- **Dependencies:** None
-
-## Phase 4: Documentation and Tests
-
-### 4.1 Update API Documentation ✅
-
-Ensure documentation is current and accurately reflects the cleaned-up API.
-
- **Action:** ✅
-  - ✅ Update comments and JSDoc throughout the codebase
-  - ✅ Ensure porthandling.md and other documentation reflect current implementation
-  - ✅ Remove references to deprecated functionality
- **Impact:** Low
- **Dependencies:** None
-
-### 4.2 Add or Update Tests ✅
-
-Ensure test coverage for the cleaned-up codebase.
-
- **Action:** ✅
-  - ✅ Update existing tests to remove references to deprecated functionality
-  - ✅ Add tests for edge cases in IP normalization
-  - ✅ Add tests for the updated route utility functions
- **Impact:** Medium
- **Dependencies:** None
-
-## Implementation Sequence ✅
-
-The changes were implemented in this order:
-
-1. ✅ **Phase 1.1**: Remove Legacy Migration Utilities
-2. ✅ **Phase 1.2**: Clean Up References to Deleted Files
-3. ✅ **Phase 1.3**: Remove Deprecated Forwarding Types and Helpers
-4. ✅ **Phase 2.1**: Streamline Interface Definitions
-5. ✅ **Phase 3.1**: Standardize on 'preserve' Port Handling
-6. ✅ **Phase 3.2**: Normalize IPv6-Mapped IPv4 Addresses
-7. ⏸️ **Phase 2.2**: Consolidate Route Utilities (Postponed - Low priority)
-8. ✅ **Phase 2.3**: Clean Up Legacy Connection Handling
-9. ✅ **Phase 3.3**: Improve Type Safety
-10. ✅ **Phase 4.1**: Update API Documentation
-11. ✅ **Phase 4.2**: Add or Update Tests
-
-## Detailed Implementation Steps
-
-### 1. Remove Legacy Migration Utilities
-
-```bash
-# Delete the file
-git rm ts/proxies/smart-proxy/utils/route-migration-utils.ts
-
-# Remove the export from the index file
-# Edit ts/proxies/smart-proxy/utils/index.ts to remove the export line
-```
-
-### 2. Clean Up References to Deleted Files
-
-```bash
-# Update forwarding-types.ts to remove imports from route-helpers.js
-# Edit ts/forwarding/config/forwarding-types.ts
-
-# Remove or update imports in index.ts
-# Edit ts/proxies/smart-proxy/utils/index.ts
-```
-
-### 3. Remove Deprecated Forwarding Types
-
-```bash
-# Edit ts/forwarding/config/forwarding-types.ts to remove deprecated helpers and interfaces
-```
-
-### 4. Streamline Interface Definitions
-
-```bash
-# Edit ts/proxies/smart-proxy/models/interfaces.ts to remove legacy functions and aliases
-```
-
-### 5. Normalize IPv6-Mapped IPv4 Addresses
-
-Ensure all IP matching functions consistently handle IPv6-mapped IPv4 addresses:
+The interface consolidation has been successfully implemented with the following changes:

+1. **Unified interface created:**
 ```typescript
-// In all IP matching functions:
-const normalizeIp = (ip: string): string => {
-  return ip.startsWith('::ffff:') ? ip.substring(7) : ip;
-};
+// Consolidated interface definition
+export interface IRouteSecurity {
+  // Access control lists
+  ipAllowList?: string[];        // IP addresses that are allowed to connect
+  ipBlockList?: string[];        // IP addresses that are blocked from connecting
+  
+  // Connection limits
+  maxConnections?: number;       // Maximum concurrent connections
+  
+  // Authentication
+  authentication?: IRouteAuthentication;
+  
+  // Rate limiting
+  rateLimit?: IRouteRateLimit;
+  
+  // Authentication methods
+  basicAuth?: {
+    enabled: boolean;
+    users: Array<{ username: string; password: string }>;
+    realm?: string;
+    excludePaths?: string[];
+  };
+  
+  jwtAuth?: {
+    enabled: boolean;
+    secret: string;
+    algorithm?: string;
+    issuer?: string;
+    audience?: string;
+    expiresIn?: number;
+    excludePaths?: string[];
+  };
+}
 ```

-## Implementation Results ✅
+2. **Updated isClientIpAllowed method:**
+```typescript
+private isClientIpAllowed(route: IRouteConfig, clientIp: string): boolean {
+  const security = route.action.security;
+  
+  if (!security) {
+    return true; // No security settings means allowed
+  }
+  
+  // Check blocked IPs first
+  if (security.ipBlockList && security.ipBlockList.length > 0) {
+    for (const pattern of security.ipBlockList) {
+      if (this.matchIpPattern(pattern, clientIp)) {
+        return false; // IP is blocked
+      }
+    }
+  }
+  
+  // If there are allowed IPs, check them
+  if (security.ipAllowList && security.ipAllowList.length > 0) {
+    for (const pattern of security.ipAllowList) {
+      if (this.matchIpPattern(pattern, clientIp)) {
+        return true; // IP is allowed
+      }
+    }
+    return false; // IP not in allowed list
+  }
+  
+  // No allowed IPs specified, so IP is allowed
+  return true;
+}
+```

-The cleanup implementation was successful, resulting in:
+3. **Fixed port preservation logic:**
+```typescript
+// In base-handler.ts
+protected resolvePort(
+  port: number | 'preserve' | ((ctx: any) => number), 
+  incomingPort: number = 80
+): number {
+  if (typeof port === 'function') {
+    try {
+      // Create a minimal context for the function that includes the incoming port
+      const ctx = { port: incomingPort };
+      return port(ctx);
+    } catch (err) {
+      console.error('Error resolving port function:', err);
+      return incomingPort; // Fall back to incoming port
+    }
+  } else if (port === 'preserve') {
+    return incomingPort; // Use the actual incoming port for 'preserve'
+  } else {
+    return port;
+  }
+}
+```

- **Reduced Codebase Size**: Successfully removed multiple deprecated files and functions
- **Improved Maintainability**: Cleaner, more focused code without legacy compatibility layers
- **Reduced Complexity**: Eliminated special cases for legacy config formats
- **Better Developer Experience**: Standardized on consistent patterns for port handling
- **Future-Proofing**: Removed deprecated code that would complicate future upgrades
- **Type Safety**: Fixed multiple TypeScript errors and improved type checking
+4. **Fixed TypeScript error in http-request-handler.ts:**
+```typescript
+// Safely check for host property existence 
+if (options.headers && 'host' in options.headers) {
+  // Only apply if host header rewrite is enabled or not explicitly disabled
+  const shouldRewriteHost = route?.action.options?.rewriteHostHeader !== false;
+  if (shouldRewriteHost) {
+    // Safely cast to OutgoingHttpHeaders to access host property
+    (options.headers as plugins.http.OutgoingHttpHeaders).host = `${destination.host}:${destination.port}`;
+  }
+}
+```

-All changes successfully compile and the build process passes with no errors. The codebase is now simpler, more maintainable, and better positioned for future enhancements.
+## Achieved Benefits ✅
+
+- **Improved Consistency**: Single, unified interface with consistent property naming
+- **Better Type Safety**: Eliminated confusing duplicate interface definitions
+- **Reduced Errors**: Prevented misunderstandings about which property names to use
+- **Forward Compatibility**: Clearer path for future security enhancements
+- **Better Developer Experience**: Simplified interface with comprehensive documentation
+- **Fixed Issues**: Port preservation with port ranges now works correctly with security checks
+
+## Verification ✅
+
+- The project builds successfully with `pnpm run build`
+- The unified interface works properly with all type checking
+- The port range forwarding with `port: 'preserve'` now works correctly with IP security rules
+- The security checks consistently use the standardized property names throughout the codebase
--- a/test/test.route-config.ts
+++ b/test/test.route-config.ts
@ -235,7 +235,7 @@ tap.test('SmartProxy: Should create instance with route-based config', async ()
        port: 8080
      },
      security: {
-        allowedIps: ['127.0.0.1', '192.168.0.*'],
+        ipAllowList: ['127.0.0.1', '192.168.0.*'],
        maxConnections: 100
      }
    },
--- a/ts/00_commitinfo_data.ts
+++ b/ts/00_commitinfo_data.ts
@ -3,6 +3,6 @@
 */
 export const commitinfo = {
  name: '@push.rocks/smartproxy',
-  version: '17.0.0',
+  version: '18.0.1',
  description: 'A powerful proxy package with unified route-based configuration for high traffic management. Features include SSL/TLS support, flexible routing patterns, WebSocket handling, advanced security options, and automatic ACME certificate management.'
 }
--- a/ts/core/utils/shared-security-manager.ts
+++ b/ts/core/utils/shared-security-manager.ts
@ -199,8 +199,8 @@ export class SharedSecurityManager {
    }
    
    // Check IP against route security settings
-    const ipAllowList = route.security.ipAllowList || route.security.allowedIps;
-    const ipBlockList = route.security.ipBlockList || route.security.blockedIps;
+    const ipAllowList = route.security.ipAllowList;
+    const ipBlockList = route.security.ipBlockList;
    
    const allowed = this.isIPAuthorized(clientIp, ipAllowList, ipBlockList);
    
--- a/ts/forwarding/handlers/base-handler.ts
+++ b/ts/forwarding/handlers/base-handler.ts
@ -40,9 +40,10 @@ export abstract class ForwardingHandler extends plugins.EventEmitter implements
  
  /**
   * Get a target from the configuration, supporting round-robin selection
+   * @param incomingPort Optional incoming port for 'preserve' mode
   * @returns A resolved target object with host and port
   */
-  protected getTargetFromConfig(): { host: string, port: number } {
+  protected getTargetFromConfig(incomingPort: number = 80): { host: string, port: number } {
    const { target } = this.config;
    
    // Handle round-robin host selection
@ -55,32 +56,37 @@ export abstract class ForwardingHandler extends plugins.EventEmitter implements
      const randomIndex = Math.floor(Math.random() * target.host.length);
      return {
        host: target.host[randomIndex],
-        port: this.resolvePort(target.port)
+        port: this.resolvePort(target.port, incomingPort)
      };
    }
    
    // Single host
    return {
      host: target.host,
-      port: this.resolvePort(target.port)
+      port: this.resolvePort(target.port, incomingPort)
    };
  }
  
  /**
   * Resolves a port value, handling 'preserve' and function ports
+   * @param port The port value to resolve
+   * @param incomingPort Optional incoming port to use for 'preserve' mode
   */
-  protected resolvePort(port: number | 'preserve' | ((ctx: any) => number)): number {
+  protected resolvePort(
+    port: number | 'preserve' | ((ctx: any) => number), 
+    incomingPort: number = 80
+  ): number {
    if (typeof port === 'function') {
      try {
-        // Create a minimal context for the function
-        const ctx = { port: 80 }; // Default port for minimal context
+        // Create a minimal context for the function that includes the incoming port
+        const ctx = { port: incomingPort };
        return port(ctx);
      } catch (err) {
        console.error('Error resolving port function:', err);
-        return 80; // Default fallback port
+        return incomingPort; // Fall back to incoming port
      }
    } else if (port === 'preserve') {
-      return 80; // Default port for 'preserve' in base handler
+      return incomingPort; // Use the actual incoming port for 'preserve'
    } else {
      return port;
    }
--- a/ts/forwarding/handlers/http-handler.ts
+++ b/ts/forwarding/handlers/http-handler.ts
@ -38,6 +38,7 @@ export class HttpForwardingHandler extends ForwardingHandler {
    // For HTTP, we mainly handle parsed requests, but we can still set up
    // some basic connection tracking
    const remoteAddress = socket.remoteAddress || 'unknown';
+    const localPort = socket.localPort || 80;
    
    socket.on('close', (hadError) => {
      this.emit(ForwardingHandlerEvents.DISCONNECTED, {
@ -54,7 +55,8 @@ export class HttpForwardingHandler extends ForwardingHandler {
    });
    
    this.emit(ForwardingHandlerEvents.CONNECTED, {
-      remoteAddress
+      remoteAddress,
+      localPort
    });
  }
  
@ -64,8 +66,11 @@ export class HttpForwardingHandler extends ForwardingHandler {
   * @param res The HTTP response
   */
  public handleHttpRequest(req: plugins.http.IncomingMessage, res: plugins.http.ServerResponse): void {
-    // Get the target from configuration
-    const target = this.getTargetFromConfig();
+    // Get the local port from the request (for 'preserve' port handling)
+    const localPort = req.socket.localPort || 80;
+    
+    // Get the target from configuration, passing the incoming port
+    const target = this.getTargetFromConfig(localPort);
    
    // Create a custom headers object with variables for substitution
    const variables = {
--- a/ts/proxies/network-proxy/http-request-handler.ts
+++ b/ts/proxies/network-proxy/http-request-handler.ts
@ -41,11 +41,12 @@ export class HttpRequestHandler {
      };

      // Optionally rewrite host header to match target
-      if (options.headers && options.headers.host) {
+      if (options.headers && 'host' in options.headers) {
        // Only apply if host header rewrite is enabled or not explicitly disabled
        const shouldRewriteHost = route?.action.options?.rewriteHostHeader !== false;
        if (shouldRewriteHost) {
-          options.headers.host = `${destination.host}:${destination.port}`;
+          // Safely cast to OutgoingHttpHeaders to access host property
+          (options.headers as plugins.http.OutgoingHttpHeaders).host = `${destination.host}:${destination.port}`;
        }
      }

--- a/ts/proxies/smart-proxy/models/interfaces.ts
+++ b/ts/proxies/smart-proxy/models/interfaces.ts
@ -27,8 +27,8 @@ export interface ISmartProxyOptions {
      port: number; // Default port to use when not specified in routes
    };
    security?: {
-      allowedIps?: string[]; // Default allowed IPs
-      blockedIps?: string[]; // Default blocked IPs
+      ipAllowList?: string[]; // Default allowed IPs
+      ipBlockList?: string[]; // Default blocked IPs
      maxConnections?: number; // Default max connections
    };
    preserveSourceIP?: boolean; // Default source IP preservation
--- a/ts/proxies/smart-proxy/models/route-types.ts
+++ b/ts/proxies/smart-proxy/models/route-types.ts
@ -112,13 +112,39 @@ export interface IRouteAuthentication {
 }

 /**
- * Security options for route actions
+ * Security options for routes
 */
 export interface IRouteSecurity {
-  allowedIps?: string[];
-  blockedIps?: string[];
-  maxConnections?: number;
+  // Access control lists
+  ipAllowList?: string[];       // IP addresses that are allowed to connect
+  ipBlockList?: string[];       // IP addresses that are blocked from connecting
+  
+  // Connection limits
+  maxConnections?: number;      // Maximum concurrent connections
+  
+  // Authentication
  authentication?: IRouteAuthentication;
+  
+  // Rate limiting
+  rateLimit?: IRouteRateLimit;
+  
+  // Authentication methods
+  basicAuth?: {
+    enabled: boolean;
+    users: Array<{ username: string; password: string }>;
+    realm?: string;
+    excludePaths?: string[];
+  };
+  
+  jwtAuth?: {
+    enabled: boolean;
+    secret: string;
+    algorithm?: string;
+    issuer?: string;
+    audience?: string;
+    expiresIn?: number;
+    excludePaths?: string[];
+  };
 }

 /**
@ -247,29 +273,7 @@ export interface IRouteRateLimit {
  errorMessage?: string;
 }

-/**
- * Security features for routes
- */
-export interface IRouteSecurity {
-  rateLimit?: IRouteRateLimit;
-  basicAuth?: {
-    enabled: boolean;
-    users: Array<{ username: string; password: string }>;
-    realm?: string;
-    excludePaths?: string[];
-  };
-  jwtAuth?: {
-    enabled: boolean;
-    secret: string;
-    algorithm?: string;
-    issuer?: string;
-    audience?: string;
-    expiresIn?: number;
-    excludePaths?: string[];
-  };
-  ipAllowList?: string[];
-  ipBlockList?: string[];
-}
+// IRouteSecurity is defined above - unified definition is used for all routes

 /**
 * CORS configuration for a route
--- a/ts/proxies/smart-proxy/route-connection-handler.ts
+++ b/ts/proxies/smart-proxy/route-connection-handler.ts
@ -289,11 +289,11 @@ export class RouteConnectionHandler {
      // Check default security settings
      const defaultSecuritySettings = this.settings.defaults?.security;
      if (defaultSecuritySettings) {
-        if (defaultSecuritySettings.allowedIps && defaultSecuritySettings.allowedIps.length > 0) {
+        if (defaultSecuritySettings.ipAllowList && defaultSecuritySettings.ipAllowList.length > 0) {
          const isAllowed = this.securityManager.isIPAuthorized(
            remoteIP,
-            defaultSecuritySettings.allowedIps,
-            defaultSecuritySettings.blockedIps || []
+            defaultSecuritySettings.ipAllowList,
+            defaultSecuritySettings.ipBlockList || []
          );

          if (!isAllowed) {
--- a/ts/proxies/smart-proxy/route-manager.ts
+++ b/ts/proxies/smart-proxy/route-manager.ts
@ -213,8 +213,8 @@ export class RouteManager extends plugins.EventEmitter {
    }
    
    // Check blocked IPs first
-    if (security.blockedIps && security.blockedIps.length > 0) {
-      for (const pattern of security.blockedIps) {
+    if (security.ipBlockList && security.ipBlockList.length > 0) {
+      for (const pattern of security.ipBlockList) {
        if (this.matchIpPattern(pattern, clientIp)) {
          return false; // IP is blocked
        }
@ -222,8 +222,8 @@ export class RouteManager extends plugins.EventEmitter {
    }
    
    // If there are allowed IPs, check them
-    if (security.allowedIps && security.allowedIps.length > 0) {
-      for (const pattern of security.allowedIps) {
+    if (security.ipAllowList && security.ipAllowList.length > 0) {
+      for (const pattern of security.ipAllowList) {
        if (this.matchIpPattern(pattern, clientIp)) {
          return true; // IP is allowed
        }
--- a/ts/proxies/smart-proxy/security-manager.ts
+++ b/ts/proxies/smart-proxy/security-manager.ts
@ -63,16 +63,15 @@ export class SecurityManager {
  }
  
  /**
-   * Check if an IP is authorized using forwarding security rules
+   * Check if an IP is authorized using security rules
   *
   * This method is used to determine if an IP is allowed to connect, based on security
-   * rules configured in the forwarding configuration. The allowed and blocked IPs are
-   * typically derived from domain.forwarding.security.allowedIps and blockedIps through
-   * DomainConfigManager.getEffectiveIPRules().
+   * rules configured in the route configuration. The allowed and blocked IPs are
+   * typically derived from route.security.ipAllowList and ipBlockList.
   *
   * @param ip - The IP address to check
-   * @param allowedIPs - Array of allowed IP patterns from forwarding.security.allowedIps
-   * @param blockedIPs - Array of blocked IP patterns from forwarding.security.blockedIps
+   * @param allowedIPs - Array of allowed IP patterns from security.ipAllowList
+   * @param blockedIPs - Array of blocked IP patterns from security.ipBlockList
   * @returns true if IP is authorized, false if blocked
   */
  public isIPAuthorized(ip: string, allowedIPs: string[], blockedIPs: string[] = []): boolean {
@ -94,10 +93,10 @@ export class SecurityManager {
   * Check if the IP matches any of the glob patterns from security configuration
   *
   * This method checks IP addresses against glob patterns and handles IPv4/IPv6 normalization.
-   * It's used to implement IP filtering based on the forwarding.security configuration.
+   * It's used to implement IP filtering based on the route.security configuration.
   *
   * @param ip - The IP address to check
-   * @param patterns - Array of glob patterns from forwarding.security.allowedIps or blockedIps
+   * @param patterns - Array of glob patterns from security.ipAllowList or ipBlockList
   * @returns true if IP matches any pattern, false otherwise
   */
  private isGlobIPMatch(ip: string, patterns: string[]): boolean {
Author	SHA1	Message	Date
Philipp Kunz	cf96ff8a47	18.0.1 Some checks failed Default (tags) / security (push) Successful in 36s Details Default (tags) / test (push) Failing after 1h10m20s Details Default (tags) / release (push) Has been cancelled Details Default (tags) / metadata (push) Has been cancelled Details	2025-05-15 09:56:33 +00:00
Philipp Kunz	94e9eafa25	fix(smartproxy): Consolidate duplicate IRouteSecurity interfaces to use standardized property names (ipAllowList and ipBlockList), fix port preservation logic for preserve mode in forward actions, and update dependency versions in package.json.	2025-05-15 09:56:32 +00:00
Philipp Kunz	3e411667e6	18.0.0 Some checks failed Default (tags) / security (push) Successful in 43s Details Default (tags) / test (push) Failing after 1h11m0s Details Default (tags) / release (push) Has been cancelled Details Default (tags) / metadata (push) Has been cancelled Details	2025-05-15 09:34:01 +00:00
Philipp Kunz	35d7dfcedf	BREAKING CHANGE(IRouteSecurity): Consolidate duplicated IRouteSecurity interfaces by unifying property names	2025-05-15 09:34:01 +00:00