@agent-native/core 0.7.12 → 0.7.13

package/dist/server/builder-browser.d.ts

@@ -1,4 +1,14 @@
 import type { H3Event } from "h3";
+export declare const BUILDER_CALLBACK_PATH = "/_agent-native/builder/callback";
+/**
+ * Query-param name carrying the signed CSRF state on the connect→callback
+ * round-trip. Prefixed with `_an_` to avoid collisions if Builder ever
+ * adds standard OAuth `state` support to cli-auth. Builder preserves
+ * the path/query of `redirect_url` verbatim when redirecting back, so
+ * we embed `_an_state=…` inside the redirect_url query string at
+ * connect time and read it back on the callback.
+ */
+export declare const BUILDER_STATE_PARAM = "_an_state";
 export interface BuilderBrowserStatus {
     configured: boolean;
     builderEnabled: boolean;
@@ -19,11 +29,59 @@ export interface BrowserConnectionArgs {
     proxyDefaultOrigin?: string;
     proxyDestination?: string;
 }
+/**
+ * Mint a signed CSRF state token bound to the current session's email
+ * and a fresh nonce. Round-trips through Builder's cli-auth flow inside
+ * the redirect_url query string and is verified on the callback before
+ * any keys are written.
+ *
+ * Why bind to email: it's the only stable, universally-available
+ * identity field across all auth modes (Better Auth, BYOA, AUTH_MODE=local).
+ * Binding to the session token instead would put the cookie value in a
+ * URL that may end up in server logs / browser history.
+ */
+export declare function signBuilderCallbackState(sessionEmail: string): string;
+/**
+ * Verify a state token produced by `signBuilderCallbackState`. Returns
+ * false on any malformed, forged, expired, or cross-session token.
+ */
+export declare function verifyBuilderCallbackState(token: string | null | undefined, sessionEmail: string): boolean;
 export declare function getBuilderAppHost(): string;
 export declare function getBuilderApiHost(): string;
+/**
+ * Build the Builder cli-auth URL for the connect popup. When a signed
+ * `state` token is supplied it is embedded inside the `redirect_url`
+ * query string so it survives Builder's redirect verbatim — Builder
+ * preserves the redirect_url's existing query when appending p-key /
+ * api-key / etc., so we don't depend on Builder echoing a top-level
+ * `state` parameter (it doesn't).
+ *
+ * The user-facing connect entry point is `/_agent-native/builder/connect`
+ * (a server-side 302). Status / chat-card responses surface that path
+ * rather than the cli-auth URL directly, so the 302 handler can mint a
+ * fresh state bound to the current session on every click.
+ */
+export declare function buildBuilderCliAuthUrl(origin: string, state?: string | null): string;
+/**
+ * The URL surfaced to clients (chat card, settings panels, status
+ * endpoint) as `connectUrl`. Pointing every entry point at our local 302
+ * means the cli-auth URL — and the CSRF state token bound to the current
+ * session — are minted server-side at click time, instead of being baked
+ * into a status response that may be cached or rendered for a different
+ * session.
+ */
 export declare function getBuilderBrowserConnectUrl(origin: string): string;
 export declare function getBuilderBrowserStatus(origin: string): BuilderBrowserStatus;
 export declare function getBuilderBrowserStatusForEvent(event: H3Event): BuilderBrowserStatus;
+/**
+ * Env vars written by the Builder CLI-auth callback. Single source of truth
+ * for the connect/disconnect key set — `getBuilderCallbackEnvVars` and the
+ * disconnect handler's scrub loop both derive from this list, so drift
+ * (e.g. disconnect silently leaving `BUILDER_USER_ID` behind because
+ * someone added a key to one site but not the other) is impossible.
+ */
+export declare const BUILDER_ENV_KEYS: readonly ["BUILDER_PRIVATE_KEY", "BUILDER_PUBLIC_KEY", "BUILDER_USER_ID", "BUILDER_ORG_NAME", "BUILDER_ORG_KIND"];
+export type BuilderEnvKey = (typeof BUILDER_ENV_KEYS)[number];
 export declare function getBuilderCallbackEnvVars(params: {
     privateKey?: string | null;
     publicKey?: string | null;
@@ -31,7 +89,7 @@ export declare function getBuilderCallbackEnvVars(params: {
     orgName?: string | null;
     orgKind?: string | null;
 }): {
-    key: string;
+    key: "BUILDER_PRIVATE_KEY" | "BUILDER_ORG_NAME" | "BUILDER_PUBLIC_KEY" | "BUILDER_USER_ID" | "BUILDER_ORG_KIND";
     value: string;
 }[];
 export declare function resolveSafePreviewUrl(previewUrl: string | null | undefined, event: H3Event): string;

package/dist/server/builder-browser.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"builder-browser.d.ts","sourceRoot":"","sources":["../../src/server/builder-browser.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,IAAI,CAAC;AAQlC,MAAM,WAAW,oBAAoB;IACnC,UAAU,EAAE,OAAO,CAAC;IACpB,cAAc,EAAE,OAAO,CAAC;IACxB,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,MAAM,CAAC;IACnB,mBAAmB,EAAE,OAAO,CAAC;IAC7B,oBAAoB,EAAE,OAAO,CAAC;IAC9B,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,qBAAqB;IACpC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC3B;AAwBD,wBAAgB,iBAAiB,IAAI,MAAM,CAM1C;AAED,wBAAgB,iBAAiB,IAAI,MAAM,CAO1C;AAED,wBAAgB,2BAA2B,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,CAWlE;AAED,wBAAgB,uBAAuB,CAAC,MAAM,EAAE,MAAM,GAAG,oBAAoB,CAe5E;AAED,wBAAgB,+BAA+B,CAC7C,KAAK,EAAE,OAAO,GACb,oBAAoB,CAEtB;AAED,wBAAgB,yBAAyB,CAAC,MAAM,EAAE;IAChD,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACvB,OAAO,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,OAAO,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CACzB;;;IAQA;AAED,wBAAgB,qBAAqB,CACnC,UAAU,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,EACrC,KAAK,EAAE,OAAO,GACb,MAAM,CAKR;AAED,wBAAgB,gCAAgC,CAAC,UAAU,EAAE,MAAM,GAAG,MAAM,CAwD3E;AAED,MAAM,WAAW,mBAAmB;IAClC,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,qBAAqB;IACpC,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,GAAG,EAAE,MAAM,CAAC;IACZ,MAAM,EAAE,MAAM,CAAC;CAChB;AAED;;;;;;GAMG;AACH,wBAAsB,eAAe,CACnC,IAAI,EAAE,mBAAmB,GACxB,OAAO,CAAC,qBAAqB,CAAC,CAmDhC;AAED,wBAAsB,+BAA+B,CACnD,IAAI,EAAE,qBAAqB,GAC1B,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CA+ClC"}
+{"version":3,"file":"builder-browser.d.ts","sourceRoot":"","sources":["../../src/server/builder-browser.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,IAAI,CAAC;AASlC,eAAO,MAAM,qBAAqB,oCAAoC,CAAC;AAEvE;;;;;;;GAOG;AACH,eAAO,MAAM,mBAAmB,cAAc,CAAC;AAI/C,MAAM,WAAW,oBAAoB;IACnC,UAAU,EAAE,OAAO,CAAC;IACpB,cAAc,EAAE,OAAO,CAAC;IACxB,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,MAAM,CAAC;IACnB,mBAAmB,EAAE,OAAO,CAAC;IAC7B,oBAAoB,EAAE,OAAO,CAAC;IAC9B,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,qBAAqB;IACpC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC3B;AAQD;;;;;;;;;;GAUG;AACH,wBAAgB,wBAAwB,CAAC,YAAY,EAAE,MAAM,GAAG,MAAM,CAMrE;AAED;;;GAGG;AACH,wBAAgB,0BAA0B,CACxC,KAAK,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,EAChC,YAAY,EAAE,MAAM,GACnB,OAAO,CA0BT;AA6BD,wBAAgB,iBAAiB,IAAI,MAAM,CAM1C;AAED,wBAAgB,iBAAiB,IAAI,MAAM,CAO1C;AAED;;;;;;;;;;;;GAYG;AACH,wBAAgB,sBAAsB,CACpC,MAAM,EAAE,MAAM,EACd,KAAK,GAAE,MAAM,GAAG,IAAW,GAC1B,MAAM,CAcR;AAED;;;;;;;GAOG;AACH,wBAAgB,2BAA2B,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,CAElE;AAED,wBAAgB,uBAAuB,CAAC,MAAM,EAAE,MAAM,GAAG,oBAAoB,CAe5E;AAED,wBAAgB,+BAA+B,CAC7C,KAAK,EAAE,OAAO,GACb,oBAAoB,CAEtB;AAED;;;;;;GAMG;AACH,eAAO,MAAM,gBAAgB,mHAMnB,CAAC;AAEX,MAAM,MAAM,aAAa,GAAG,CAAC,OAAO,gBAAgB,CAAC,CAAC,MAAM,CAAC,CAAC;AAE9D,wBAAgB,yBAAyB,CAAC,MAAM,EAAE;IAChD,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACvB,OAAO,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,OAAO,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CACzB;;;IASA;AAED,wBAAgB,qBAAqB,CACnC,UAAU,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,EACrC,KAAK,EAAE,OAAO,GACb,MAAM,CAKR;AAED,wBAAgB,gCAAgC,CAAC,UAAU,EAAE,MAAM,GAAG,MAAM,CAwD3E;AAED,MAAM,WAAW,mBAAmB;IAClC,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,qBAAqB;IACpC,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,GAAG,EAAE,MAAM,CAAC;IACZ,MAAM,EAAE,MAAM,CAAC;CAChB;AAED;;;;;;GAMG;AACH,wBAAsB,eAAe,CACnC,IAAI,EAAE,mBAAmB,GACxB,OAAO,CAAC,qBAAqB,CAAC,CAmDhC;AAED,wBAAsB,+BAA+B,CACnD,IAAI,EAAE,qBAAqB,GAC1B,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CA+ClC"}

package/dist/server/builder-browser.js

@@ -1,8 +1,80 @@
+import { createHmac, randomBytes, timingSafeEqual } from "node:crypto";
+import { getAuthSecret } from "./better-auth-instance.js";
 import { getOrigin } from "./google-oauth.js";
 const DEFAULT_BUILDER_APP_HOST = "https://builder.io";
 const DEFAULT_BUILDER_API_HOST = "https://api.builder.io";
 const BUILDER_BROWSER_HOST = "agent-native-browser";
 const BUILDER_BROWSER_CLIENT_ID = "Agent Native Browser";
+export const BUILDER_CALLBACK_PATH = "/_agent-native/builder/callback";
+/**
+ * Query-param name carrying the signed CSRF state on the connect→callback
+ * round-trip. Prefixed with `_an_` to avoid collisions if Builder ever
+ * adds standard OAuth `state` support to cli-auth. Builder preserves
+ * the path/query of `redirect_url` verbatim when redirecting back, so
+ * we embed `_an_state=…` inside the redirect_url query string at
+ * connect time and read it back on the callback.
+ */
+export const BUILDER_STATE_PARAM = "_an_state";
+const BUILDER_STATE_TTL_MS = 10 * 60 * 1000;
+function macForParts(nonce, emailEncoded, ts) {
+    return createHmac("sha256", `builder-csrf:${getAuthSecret()}`)
+        .update(`${nonce}.${emailEncoded}.${ts}`)
+        .digest("base64url");
+}
+/**
+ * Mint a signed CSRF state token bound to the current session's email
+ * and a fresh nonce. Round-trips through Builder's cli-auth flow inside
+ * the redirect_url query string and is verified on the callback before
+ * any keys are written.
+ *
+ * Why bind to email: it's the only stable, universally-available
+ * identity field across all auth modes (Better Auth, BYOA, AUTH_MODE=local).
+ * Binding to the session token instead would put the cookie value in a
+ * URL that may end up in server logs / browser history.
+ */
+export function signBuilderCallbackState(sessionEmail) {
+    const nonce = randomBytes(16).toString("base64url");
+    const ts = Date.now();
+    const emailEncoded = Buffer.from(sessionEmail, "utf8").toString("base64url");
+    const mac = macForParts(nonce, emailEncoded, ts);
+    return `${nonce}.${emailEncoded}.${ts}.${mac}`;
+}
+/**
+ * Verify a state token produced by `signBuilderCallbackState`. Returns
+ * false on any malformed, forged, expired, or cross-session token.
+ */
+export function verifyBuilderCallbackState(token, sessionEmail) {
+    if (typeof token !== "string" || token.length === 0)
+        return false;
+    const parts = token.split(".");
+    if (parts.length !== 4)
+        return false;
+    const [nonce, emailEncoded, tsStr, mac] = parts;
+    if (!nonce || !emailEncoded || !tsStr || !mac)
+        return false;
+    let boundEmail;
+    try {
+        boundEmail = Buffer.from(emailEncoded, "base64url").toString("utf8");
+    }
+    catch {
+        return false;
+    }
+    if (boundEmail !== sessionEmail)
+        return false;
+    const ts = Number(tsStr);
+    if (!Number.isFinite(ts))
+        return false;
+    // Reject expired AND far-future timestamps — a clock-skew attacker
+    // (or a bug that mints states with `ts` in the future) shouldn't get
+    // an arbitrarily-long-lived token.
+    if (Math.abs(Date.now() - ts) > BUILDER_STATE_TTL_MS)
+        return false;
+    const expected = Buffer.from(macForParts(nonce, emailEncoded, ts));
+    const candidate = Buffer.from(mac);
+    if (expected.length !== candidate.length)
+        return false;
+    return timingSafeEqual(expected, candidate);
+}
 function isAllowedBrowserReturnUrl(urlString) {
     try {
         const parsed = new URL(urlString);
@@ -12,7 +84,9 @@ function isAllowedBrowserReturnUrl(urlString) {
             hostname === "127.0.0.1" ||
             hostname === "[::1]";
         const isBuilderDomain = hostname === "builder.io" || hostname.endsWith(".builder.io");
-        return isAllowedProtocol && (isLocalhost || isBuilderDomain);
+        const isAgentNativeDomain = hostname === "agent-native.com" || hostname.endsWith(".agent-native.com");
+        return (isAllowedProtocol &&
+            (isLocalhost || isBuilderDomain || isAgentNativeDomain));
     }
     catch {
         return false;
@@ -32,18 +106,45 @@ export function getBuilderApiHost() {
         process.env.BUILDER_API_HOST ||
         DEFAULT_BUILDER_API_HOST);
 }
-export function getBuilderBrowserConnectUrl(origin) {
+/**
+ * Build the Builder cli-auth URL for the connect popup. When a signed
+ * `state` token is supplied it is embedded inside the `redirect_url`
+ * query string so it survives Builder's redirect verbatim — Builder
+ * preserves the redirect_url's existing query when appending p-key /
+ * api-key / etc., so we don't depend on Builder echoing a top-level
+ * `state` parameter (it doesn't).
+ *
+ * The user-facing connect entry point is `/_agent-native/builder/connect`
+ * (a server-side 302). Status / chat-card responses surface that path
+ * rather than the cli-auth URL directly, so the 302 handler can mint a
+ * fresh state bound to the current session on every click.
+ */
+export function buildBuilderCliAuthUrl(origin, state = null) {
     const normalizedOrigin = normalizeOrigin(origin);
-    const callbackUrl = `${normalizedOrigin}/_agent-native/builder/callback`;
+    const callbackUrl = new URL(BUILDER_CALLBACK_PATH, normalizedOrigin);
+    if (state) {
+        callbackUrl.searchParams.set(BUILDER_STATE_PARAM, state);
+    }
     const url = new URL("/cli-auth", getBuilderAppHost());
     url.searchParams.set("response_type", "code");
     url.searchParams.set("host", BUILDER_BROWSER_HOST);
     url.searchParams.set("client_id", BUILDER_BROWSER_CLIENT_ID);
-    url.searchParams.set("redirect_url", callbackUrl);
+    url.searchParams.set("redirect_url", callbackUrl.toString());
     url.searchParams.set("preview_url", normalizedOrigin);
     url.searchParams.set("framework", "agent-native");
     return url.toString();
 }
+/**
+ * The URL surfaced to clients (chat card, settings panels, status
+ * endpoint) as `connectUrl`. Pointing every entry point at our local 302
+ * means the cli-auth URL — and the CSRF state token bound to the current
+ * session — are minted server-side at click time, instead of being baked
+ * into a status response that may be cached or rendered for a different
+ * session.
+ */
+export function getBuilderBrowserConnectUrl(origin) {
+    return `${normalizeOrigin(origin)}/_agent-native/builder/connect`;
+}
 export function getBuilderBrowserStatus(origin) {
     return {
         configured: !!(process.env.BUILDER_PRIVATE_KEY && process.env.BUILDER_PUBLIC_KEY),
@@ -61,14 +162,29 @@ export function getBuilderBrowserStatus(origin) {
 export function getBuilderBrowserStatusForEvent(event) {
     return getBuilderBrowserStatus(getOrigin(event));
 }
+/**
+ * Env vars written by the Builder CLI-auth callback. Single source of truth
+ * for the connect/disconnect key set — `getBuilderCallbackEnvVars` and the
+ * disconnect handler's scrub loop both derive from this list, so drift
+ * (e.g. disconnect silently leaving `BUILDER_USER_ID` behind because
+ * someone added a key to one site but not the other) is impossible.
+ */
+export const BUILDER_ENV_KEYS = [
+    "BUILDER_PRIVATE_KEY",
+    "BUILDER_PUBLIC_KEY",
+    "BUILDER_USER_ID",
+    "BUILDER_ORG_NAME",
+    "BUILDER_ORG_KIND",
+];
 export function getBuilderCallbackEnvVars(params) {
-    return [
-        { key: "BUILDER_PRIVATE_KEY", value: params.privateKey?.trim() || "" },
-        { key: "BUILDER_PUBLIC_KEY", value: params.publicKey?.trim() || "" },
-        { key: "BUILDER_USER_ID", value: params.userId?.trim() || "" },
-        { key: "BUILDER_ORG_NAME", value: params.orgName?.trim() || "" },
-        { key: "BUILDER_ORG_KIND", value: params.orgKind?.trim() || "" },
-    ];
+    const values = {
+        BUILDER_PRIVATE_KEY: params.privateKey?.trim() || "",
+        BUILDER_PUBLIC_KEY: params.publicKey?.trim() || "",
+        BUILDER_USER_ID: params.userId?.trim() || "",
+        BUILDER_ORG_NAME: params.orgName?.trim() || "",
+        BUILDER_ORG_KIND: params.orgKind?.trim() || "",
+    };
+    return BUILDER_ENV_KEYS.map((key) => ({ key, value: values[key] }));
 }
 export function resolveSafePreviewUrl(previewUrl, event) {
     if (previewUrl && isAllowedBrowserReturnUrl(previewUrl)) {

package/dist/server/builder-browser.js.map

@@ -1 +1 @@
-{"version":3,"file":"builder-browser.js","sourceRoot":"","sources":["../../src/server/builder-browser.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,SAAS,EAAE,MAAM,mBAAmB,CAAC;AAE9C,MAAM,wBAAwB,GAAG,oBAAoB,CAAC;AACtD,MAAM,wBAAwB,GAAG,wBAAwB,CAAC;AAC1D,MAAM,oBAAoB,GAAG,sBAAsB,CAAC;AACpD,MAAM,yBAAyB,GAAG,sBAAsB,CAAC;AAwBzD,SAAS,yBAAyB,CAAC,SAAiB;IAClD,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,SAAS,CAAC,CAAC;QAClC,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC;QAC/C,MAAM,iBAAiB,GACrB,MAAM,CAAC,QAAQ,KAAK,OAAO,IAAI,MAAM,CAAC,QAAQ,KAAK,QAAQ,CAAC;QAC9D,MAAM,WAAW,GACf,QAAQ,KAAK,WAAW;YACxB,QAAQ,KAAK,WAAW;YACxB,QAAQ,KAAK,OAAO,CAAC;QACvB,MAAM,eAAe,GACnB,QAAQ,KAAK,YAAY,IAAI,QAAQ,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC;QAChE,OAAO,iBAAiB,IAAI,CAAC,WAAW,IAAI,eAAe,CAAC,CAAC;IAC/D,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED,SAAS,eAAe,CAAC,MAAc;IACrC,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;AACpC,CAAC;AAED,MAAM,UAAU,iBAAiB;IAC/B,OAAO,CACL,OAAO,CAAC,GAAG,CAAC,gBAAgB;QAC5B,OAAO,CAAC,GAAG,CAAC,uBAAuB;QACnC,wBAAwB,CACzB,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,iBAAiB;IAC/B,OAAO,CACL,OAAO,CAAC,GAAG,CAAC,QAAQ;QACpB,OAAO,CAAC,GAAG,CAAC,YAAY;QACxB,OAAO,CAAC,GAAG,CAAC,gBAAgB;QAC5B,wBAAwB,CACzB,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,2BAA2B,CAAC,MAAc;IACxD,MAAM,gBAAgB,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC;IACjD,MAAM,WAAW,GAAG,GAAG,gBAAgB,iCAAiC,CAAC;IACzE,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,WAAW,EAAE,iBAAiB,EAAE,CAAC,CAAC;IACtD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,eAAe,EAAE,MAAM,CAAC,CAAC;IAC9C,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,EAAE,oBAAoB,CAAC,CAAC;IACnD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,WAAW,EAAE,yBAAyB,CAAC,CAAC;IAC7D,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,cAAc,EAAE,WAAW,CAAC,CAAC;IAClD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,aAAa,EAAE,gBAAgB,CAAC,CAAC;IACtD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC;IAClD,OAAO,GAAG,CAAC,QAAQ,EAAE,CAAC;AACxB,CAAC;AAED,MAAM,UAAU,uBAAuB,CAAC,MAAc;IACpD,OAAO;QACL,UAAU,EAAE,CAAC,CAAC,CACZ,OAAO,CAAC,GAAG,CAAC,mBAAmB,IAAI,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAClE;QACD,cAAc,EAAE,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc;QAC5C,OAAO,EAAE,iBAAiB,EAAE;QAC5B,OAAO,EAAE,iBAAiB,EAAE;QAC5B,UAAU,EAAE,2BAA2B,CAAC,MAAM,CAAC;QAC/C,mBAAmB,EAAE,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,kBAAkB;QACrD,oBAAoB,EAAE,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,mBAAmB;QACvD,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,SAAS;QAChD,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,gBAAgB,IAAI,SAAS;QAClD,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,gBAAgB,IAAI,SAAS;KACnD,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,+BAA+B,CAC7C,KAAc;IAEd,OAAO,uBAAuB,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,CAAC;AACnD,CAAC;AAED,MAAM,UAAU,yBAAyB,CAAC,MAMzC;IACC,OAAO;QACL,EAAE,GAAG,EAAE,qBAAqB,EAAE,KAAK,EAAE,MAAM,CAAC,UAAU,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE;QACtE,EAAE,GAAG,EAAE,oBAAoB,EAAE,KAAK,EAAE,MAAM,CAAC,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE;QACpE,EAAE,GAAG,EAAE,iBAAiB,EAAE,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE;QAC9D,EAAE,GAAG,EAAE,kBAAkB,EAAE,KAAK,EAAE,MAAM,CAAC,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE;QAChE,EAAE,GAAG,EAAE,kBAAkB,EAAE,KAAK,EAAE,MAAM,CAAC,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE;KACjE,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,qBAAqB,CACnC,UAAqC,EACrC,KAAc;IAEd,IAAI,UAAU,IAAI,yBAAyB,CAAC,UAAU,CAAC,EAAE,CAAC;QACxD,OAAO,UAAU,CAAC;IACpB,CAAC;IACD,OAAO,SAAS,CAAC,KAAK,CAAC,CAAC;AAC1B,CAAC;AAED,MAAM,UAAU,gCAAgC,CAAC,UAAkB;IACjE,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;IAC9C,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;mBAoCU,UAAU;;;;;;;;;;;sCAWS,UAAU;;;;;;QAMxC,CAAC;AACT,CAAC;AAiBD;;;;;;GAMG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,IAAyB;IAEzB,MAAM,UAAU,GAAG,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC;IACnD,MAAM,SAAS,GAAG,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC;IACjD,IAAI,CAAC,UAAU,IAAI,CAAC,SAAS,EAAE,CAAC;QAC9B,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;IACrD,CAAC;IACD,IAAI,CAAC,IAAI,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE,EAAE,CAAC;QACxC,MAAM,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAC;IACxC,CAAC;IACD,IAAI,CAAC,IAAI,CAAC,SAAS,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;QACpC,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;IACrD,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,aAAa,EAAE,iBAAiB,EAAE,CAAC,CAAC;IACxD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;IAE1C,MAAM,IAAI,GAA4B;QACpC,WAAW,EAAE,EAAE,UAAU,EAAE,IAAI,CAAC,MAAM,EAAE;KACzC,CAAC;IACF,IAAI,IAAI,CAAC,SAAS;QAAE,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC;IACpD,IAAI,IAAI,CAAC,UAAU;QAAE,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC,UAAU,CAAC;IACvD,IAAI,IAAI,CAAC,SAAS;QAAE,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC;IACpD,IAAI,IAAI,CAAC,MAAM;QAAE,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC;IAE3C,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;QAChC,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,aAAa,EAAE,UAAU,UAAU,EAAE;YACrC,cAAc,EAAE,kBAAkB;SACnC;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC;KAC3B,CAAC,CAAC;IAEH,MAAM,MAAM,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC,CAGtD,CAAC;IACF,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,GAAG,GACP,OAAO,MAAM,CAAC,KAAK,KAAK,QAAQ;YAC9B,CAAC,CAAC,MAAM,CAAC,KAAK;YACd,CAAC,CAAC,6BAA6B,QAAQ,CAAC,MAAM,GAAG,CAAC;QACtD,MAAM,IAAI,KAAK,CAAC,GAAG,CAAC,CAAC;IACvB,CAAC;IAED,OAAO;QACL,UAAU,EAAE,MAAM,CAAC,MAAM,CAAC,UAAU,IAAI,EAAE,CAAC;QAC3C,SAAS,EAAE,MAAM,CAAC,MAAM,CAAC,SAAS,IAAI,EAAE,CAAC;QACzC,GAAG,EAAE,MAAM,CAAC,MAAM,CAAC,GAAG,IAAI,EAAE,CAAC;QAC7B,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,IAAI,YAAY,CAAC;KAC9C,CAAC;AACJ,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,+BAA+B,CACnD,IAA2B;IAE3B,MAAM,UAAU,GAAG,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC;IACnD,MAAM,SAAS,GAAG,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC;IACjD,IAAI,CAAC,UAAU,IAAI,CAAC,SAAS,EAAE,CAAC;QAC9B,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;IAC9D,CAAC;IAED,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,EAAE,IAAI,EAAE,CAAC;IACzC,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,MAAM,IAAI,KAAK,CAAC,uBAAuB,CAAC,CAAC;IAC3C,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,iCAAiC,EAAE,iBAAiB,EAAE,CAAC,CAAC;IAC5E,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;IAC1C,IAAI,OAAO,CAAC,GAAG,CAAC,eAAe,EAAE,CAAC;QAChC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,QAAQ,EAAE,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC;IAC9D,CAAC;IAED,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;QAChC,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,aAAa,EAAE,UAAU,UAAU,EAAE;YACrC,cAAc,EAAE,kBAAkB;SACnC;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;YACnB,SAAS;YACT,SAAS,EAAE,IAAI,CAAC,SAAS,IAAI,SAAS;YACtC,UAAU,EAAE,IAAI,CAAC,UAAU,IAAI,SAAS;YACxC,WAAW,EAAE,IAAI,CAAC,WAAW,IAAI,SAAS;YAC1C,kBAAkB,EAAE,IAAI,CAAC,kBAAkB,IAAI,SAAS;YACxD,QAAQ,EAAE,IAAI,CAAC,gBAAgB,IAAI,SAAS;SAC7C,CAAC;KACH,CAAC,CAAC;IAEH,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC,CAGpD,CAAC;IACF,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,KAAK,GACT,OAAO,IAAI,CAAC,KAAK,KAAK,QAAQ;YAC5B,CAAC,CAAC,IAAI,CAAC,KAAK;YACZ,CAAC,CAAC,mCAAmC,QAAQ,CAAC,MAAM,GAAG,CAAC;QAC5D,MAAM,IAAI,KAAK,CAAC,KAAK,CAAC,CAAC;IACzB,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC"}
+{"version":3,"file":"builder-browser.js","sourceRoot":"","sources":["../../src/server/builder-browser.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAEvE,OAAO,EAAE,aAAa,EAAE,MAAM,2BAA2B,CAAC;AAC1D,OAAO,EAAE,SAAS,EAAE,MAAM,mBAAmB,CAAC;AAE9C,MAAM,wBAAwB,GAAG,oBAAoB,CAAC;AACtD,MAAM,wBAAwB,GAAG,wBAAwB,CAAC;AAC1D,MAAM,oBAAoB,GAAG,sBAAsB,CAAC;AACpD,MAAM,yBAAyB,GAAG,sBAAsB,CAAC;AAEzD,MAAM,CAAC,MAAM,qBAAqB,GAAG,iCAAiC,CAAC;AAEvE;;;;;;;GAOG;AACH,MAAM,CAAC,MAAM,mBAAmB,GAAG,WAAW,CAAC;AAE/C,MAAM,oBAAoB,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC;AAwB5C,SAAS,WAAW,CAAC,KAAa,EAAE,YAAoB,EAAE,EAAU;IAClE,OAAO,UAAU,CAAC,QAAQ,EAAE,gBAAgB,aAAa,EAAE,EAAE,CAAC;SAC3D,MAAM,CAAC,GAAG,KAAK,IAAI,YAAY,IAAI,EAAE,EAAE,CAAC;SACxC,MAAM,CAAC,WAAW,CAAC,CAAC;AACzB,CAAC;AAED;;;;;;;;;;GAUG;AACH,MAAM,UAAU,wBAAwB,CAAC,YAAoB;IAC3D,MAAM,KAAK,GAAG,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;IACpD,MAAM,EAAE,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IACtB,MAAM,YAAY,GAAG,MAAM,CAAC,IAAI,CAAC,YAAY,EAAE,MAAM,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;IAC7E,MAAM,GAAG,GAAG,WAAW,CAAC,KAAK,EAAE,YAAY,EAAE,EAAE,CAAC,CAAC;IACjD,OAAO,GAAG,KAAK,IAAI,YAAY,IAAI,EAAE,IAAI,GAAG,EAAE,CAAC;AACjD,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,0BAA0B,CACxC,KAAgC,EAChC,YAAoB;IAEpB,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,KAAK,CAAC;IAClE,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAC/B,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,KAAK,CAAC;IACrC,MAAM,CAAC,KAAK,EAAE,YAAY,EAAE,KAAK,EAAE,GAAG,CAAC,GAAG,KAAK,CAAC;IAChD,IAAI,CAAC,KAAK,IAAI,CAAC,YAAY,IAAI,CAAC,KAAK,IAAI,CAAC,GAAG;QAAE,OAAO,KAAK,CAAC;IAE5D,IAAI,UAAkB,CAAC;IACvB,IAAI,CAAC;QACH,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,YAAY,EAAE,WAAW,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;IACvE,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;IACD,IAAI,UAAU,KAAK,YAAY;QAAE,OAAO,KAAK,CAAC;IAE9C,MAAM,EAAE,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC;IACzB,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,EAAE,CAAC;QAAE,OAAO,KAAK,CAAC;IACvC,mEAAmE;IACnE,qEAAqE;IACrE,mCAAmC;IACnC,IAAI,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,CAAC,GAAG,oBAAoB;QAAE,OAAO,KAAK,CAAC;IAEnE,MAAM,QAAQ,GAAG,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,YAAY,EAAE,EAAE,CAAC,CAAC,CAAC;IACnE,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IACnC,IAAI,QAAQ,CAAC,MAAM,KAAK,SAAS,CAAC,MAAM;QAAE,OAAO,KAAK,CAAC;IACvD,OAAO,eAAe,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;AAC9C,CAAC;AAED,SAAS,yBAAyB,CAAC,SAAiB;IAClD,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,SAAS,CAAC,CAAC;QAClC,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC;QAC/C,MAAM,iBAAiB,GACrB,MAAM,CAAC,QAAQ,KAAK,OAAO,IAAI,MAAM,CAAC,QAAQ,KAAK,QAAQ,CAAC;QAC9D,MAAM,WAAW,GACf,QAAQ,KAAK,WAAW;YACxB,QAAQ,KAAK,WAAW;YACxB,QAAQ,KAAK,OAAO,CAAC;QACvB,MAAM,eAAe,GACnB,QAAQ,KAAK,YAAY,IAAI,QAAQ,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC;QAChE,MAAM,mBAAmB,GACvB,QAAQ,KAAK,kBAAkB,IAAI,QAAQ,CAAC,QAAQ,CAAC,mBAAmB,CAAC,CAAC;QAC5E,OAAO,CACL,iBAAiB;YACjB,CAAC,WAAW,IAAI,eAAe,IAAI,mBAAmB,CAAC,CACxD,CAAC;IACJ,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED,SAAS,eAAe,CAAC,MAAc;IACrC,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;AACpC,CAAC;AAED,MAAM,UAAU,iBAAiB;IAC/B,OAAO,CACL,OAAO,CAAC,GAAG,CAAC,gBAAgB;QAC5B,OAAO,CAAC,GAAG,CAAC,uBAAuB;QACnC,wBAAwB,CACzB,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,iBAAiB;IAC/B,OAAO,CACL,OAAO,CAAC,GAAG,CAAC,QAAQ;QACpB,OAAO,CAAC,GAAG,CAAC,YAAY;QACxB,OAAO,CAAC,GAAG,CAAC,gBAAgB;QAC5B,wBAAwB,CACzB,CAAC;AACJ,CAAC;AAED;;;;;;;;;;;;GAYG;AACH,MAAM,UAAU,sBAAsB,CACpC,MAAc,EACd,QAAuB,IAAI;IAE3B,MAAM,gBAAgB,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC;IACjD,MAAM,WAAW,GAAG,IAAI,GAAG,CAAC,qBAAqB,EAAE,gBAAgB,CAAC,CAAC;IACrE,IAAI,KAAK,EAAE,CAAC;QACV,WAAW,CAAC,YAAY,CAAC,GAAG,CAAC,mBAAmB,EAAE,KAAK,CAAC,CAAC;IAC3D,CAAC;IACD,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,WAAW,EAAE,iBAAiB,EAAE,CAAC,CAAC;IACtD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,eAAe,EAAE,MAAM,CAAC,CAAC;IAC9C,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,EAAE,oBAAoB,CAAC,CAAC;IACnD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,WAAW,EAAE,yBAAyB,CAAC,CAAC;IAC7D,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,cAAc,EAAE,WAAW,CAAC,QAAQ,EAAE,CAAC,CAAC;IAC7D,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,aAAa,EAAE,gBAAgB,CAAC,CAAC;IACtD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC;IAClD,OAAO,GAAG,CAAC,QAAQ,EAAE,CAAC;AACxB,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,2BAA2B,CAAC,MAAc;IACxD,OAAO,GAAG,eAAe,CAAC,MAAM,CAAC,gCAAgC,CAAC;AACpE,CAAC;AAED,MAAM,UAAU,uBAAuB,CAAC,MAAc;IACpD,OAAO;QACL,UAAU,EAAE,CAAC,CAAC,CACZ,OAAO,CAAC,GAAG,CAAC,mBAAmB,IAAI,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAClE;QACD,cAAc,EAAE,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc;QAC5C,OAAO,EAAE,iBAAiB,EAAE;QAC5B,OAAO,EAAE,iBAAiB,EAAE;QAC5B,UAAU,EAAE,2BAA2B,CAAC,MAAM,CAAC;QAC/C,mBAAmB,EAAE,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,kBAAkB;QACrD,oBAAoB,EAAE,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,mBAAmB;QACvD,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,SAAS;QAChD,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,gBAAgB,IAAI,SAAS;QAClD,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,gBAAgB,IAAI,SAAS;KACnD,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,+BAA+B,CAC7C,KAAc;IAEd,OAAO,uBAAuB,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,CAAC;AACnD,CAAC;AAED;;;;;;GAMG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG;IAC9B,qBAAqB;IACrB,oBAAoB;IACpB,iBAAiB;IACjB,kBAAkB;IAClB,kBAAkB;CACV,CAAC;AAIX,MAAM,UAAU,yBAAyB,CAAC,MAMzC;IACC,MAAM,MAAM,GAAkC;QAC5C,mBAAmB,EAAE,MAAM,CAAC,UAAU,EAAE,IAAI,EAAE,IAAI,EAAE;QACpD,kBAAkB,EAAE,MAAM,CAAC,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE;QAClD,eAAe,EAAE,MAAM,CAAC,MAAM,EAAE,IAAI,EAAE,IAAI,EAAE;QAC5C,gBAAgB,EAAE,MAAM,CAAC,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE;QAC9C,gBAAgB,EAAE,MAAM,CAAC,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE;KAC/C,CAAC;IACF,OAAO,gBAAgB,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC,EAAE,GAAG,EAAE,KAAK,EAAE,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC;AACtE,CAAC;AAED,MAAM,UAAU,qBAAqB,CACnC,UAAqC,EACrC,KAAc;IAEd,IAAI,UAAU,IAAI,yBAAyB,CAAC,UAAU,CAAC,EAAE,CAAC;QACxD,OAAO,UAAU,CAAC;IACpB,CAAC;IACD,OAAO,SAAS,CAAC,KAAK,CAAC,CAAC;AAC1B,CAAC;AAED,MAAM,UAAU,gCAAgC,CAAC,UAAkB;IACjE,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;IAC9C,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;mBAoCU,UAAU;;;;;;;;;;;sCAWS,UAAU;;;;;;QAMxC,CAAC;AACT,CAAC;AAiBD;;;;;;GAMG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,IAAyB;IAEzB,MAAM,UAAU,GAAG,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC;IACnD,MAAM,SAAS,GAAG,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC;IACjD,IAAI,CAAC,UAAU,IAAI,CAAC,SAAS,EAAE,CAAC;QAC9B,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;IACrD,CAAC;IACD,IAAI,CAAC,IAAI,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE,EAAE,CAAC;QACxC,MAAM,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAC;IACxC,CAAC;IACD,IAAI,CAAC,IAAI,CAAC,SAAS,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;QACpC,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;IACrD,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,aAAa,EAAE,iBAAiB,EAAE,CAAC,CAAC;IACxD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;IAE1C,MAAM,IAAI,GAA4B;QACpC,WAAW,EAAE,EAAE,UAAU,EAAE,IAAI,CAAC,MAAM,EAAE;KACzC,CAAC;IACF,IAAI,IAAI,CAAC,SAAS;QAAE,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC;IACpD,IAAI,IAAI,CAAC,UAAU;QAAE,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC,UAAU,CAAC;IACvD,IAAI,IAAI,CAAC,SAAS;QAAE,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC;IACpD,IAAI,IAAI,CAAC,MAAM;QAAE,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC;IAE3C,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;QAChC,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,aAAa,EAAE,UAAU,UAAU,EAAE;YACrC,cAAc,EAAE,kBAAkB;SACnC;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC;KAC3B,CAAC,CAAC;IAEH,MAAM,MAAM,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC,CAGtD,CAAC;IACF,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,GAAG,GACP,OAAO,MAAM,CAAC,KAAK,KAAK,QAAQ;YAC9B,CAAC,CAAC,MAAM,CAAC,KAAK;YACd,CAAC,CAAC,6BAA6B,QAAQ,CAAC,MAAM,GAAG,CAAC;QACtD,MAAM,IAAI,KAAK,CAAC,GAAG,CAAC,CAAC;IACvB,CAAC;IAED,OAAO;QACL,UAAU,EAAE,MAAM,CAAC,MAAM,CAAC,UAAU,IAAI,EAAE,CAAC;QAC3C,SAAS,EAAE,MAAM,CAAC,MAAM,CAAC,SAAS,IAAI,EAAE,CAAC;QACzC,GAAG,EAAE,MAAM,CAAC,MAAM,CAAC,GAAG,IAAI,EAAE,CAAC;QAC7B,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,IAAI,YAAY,CAAC;KAC9C,CAAC;AACJ,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,+BAA+B,CACnD,IAA2B;IAE3B,MAAM,UAAU,GAAG,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC;IACnD,MAAM,SAAS,GAAG,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC;IACjD,IAAI,CAAC,UAAU,IAAI,CAAC,SAAS,EAAE,CAAC;QAC9B,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;IAC9D,CAAC;IAED,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,EAAE,IAAI,EAAE,CAAC;IACzC,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,MAAM,IAAI,KAAK,CAAC,uBAAuB,CAAC,CAAC;IAC3C,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,iCAAiC,EAAE,iBAAiB,EAAE,CAAC,CAAC;IAC5E,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;IAC1C,IAAI,OAAO,CAAC,GAAG,CAAC,eAAe,EAAE,CAAC;QAChC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,QAAQ,EAAE,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC;IAC9D,CAAC;IAED,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;QAChC,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,aAAa,EAAE,UAAU,UAAU,EAAE;YACrC,cAAc,EAAE,kBAAkB;SACnC;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;YACnB,SAAS;YACT,SAAS,EAAE,IAAI,CAAC,SAAS,IAAI,SAAS;YACtC,UAAU,EAAE,IAAI,CAAC,UAAU,IAAI,SAAS;YACxC,WAAW,EAAE,IAAI,CAAC,WAAW,IAAI,SAAS;YAC1C,kBAAkB,EAAE,IAAI,CAAC,kBAAkB,IAAI,SAAS;YACxD,QAAQ,EAAE,IAAI,CAAC,gBAAgB,IAAI,SAAS;SAC7C,CAAC;KACH,CAAC,CAAC;IAEH,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC,CAGpD,CAAC;IACF,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,KAAK,GACT,OAAO,IAAI,CAAC,KAAK,KAAK,QAAQ;YAC5B,CAAC,CAAC,IAAI,CAAC,KAAK;YACZ,CAAC,CAAC,mCAAmC,QAAQ,CAAC,MAAM,GAAG,CAAC;QAC5D,MAAM,IAAI,KAAK,CAAC,KAAK,CAAC,CAAC;IACzB,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC"}

package/dist/server/core-routes-plugin.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"core-routes-plugin.d.ts","sourceRoot":"","sources":["../../src/server/core-routes-plugin.ts"],"names":[],"mappings":"AAYA,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAkDvD;;;;GAIG;AACH,eAAO,MAAM,sBAAsB,mBAAmB,CAAC;AAEvD,KAAK,cAAc,GAAG,CAAC,QAAQ,EAAE,GAAG,KAAK,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;AAE9D,MAAM,WAAW,uBAAuB;IACtC,wEAAwE;IACxE,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,yCAAyC;IACzC,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,oDAAoD;IACpD,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,2DAA2D;IAC3D,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,qEAAqE;IACrE,OAAO,CAAC,EAAE,YAAY,EAAE,CAAC;CAC1B;AAED;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,wBAAgB,sBAAsB,CACpC,OAAO,GAAE,uBAA4B,GACpC,cAAc,CAkyBhB;AAED;;;;;;;;GAQG;AACH,eAAO,MAAM,uBAAuB,EAAE,cAAyC,CAAC"}
+{"version":3,"file":"core-routes-plugin.d.ts","sourceRoot":"","sources":["../../src/server/core-routes-plugin.ts"],"names":[],"mappings":"AAYA,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAuDvD;;;;GAIG;AACH,eAAO,MAAM,sBAAsB,mBAAmB,CAAC;AAEvD,KAAK,cAAc,GAAG,CAAC,QAAQ,EAAE,GAAG,KAAK,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;AAE9D,MAAM,WAAW,uBAAuB;IACtC,wEAAwE;IACxE,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,yCAAyC;IACzC,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,oDAAoD;IACpD,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,2DAA2D;IAC3D,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,qEAAqE;IACrE,OAAO,CAAC,EAAE,YAAY,EAAE,CAAC;CAC1B;AAED;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,wBAAgB,sBAAsB,CACpC,OAAO,GAAE,uBAA4B,GACpC,cAAc,CA4gChB;AAED;;;;;;;;GAQG;AACH,eAAO,MAAM,uBAAuB,EAAE,cAAyC,CAAC"}

package/dist/server/core-routes-plugin.js

@@ -5,7 +5,7 @@ import { createPollHandler } from "./poll.js";
 import { createSSEHandler } from "./sse.js";
 import { upsertEnvFile } from "./create-server.js";
 import { readBody } from "./h3-helpers.js";
-import { createBuilderBrowserCallbackPage, getBuilderBrowserStatusForEvent, getBuilderCallbackEnvVars, resolveSafePreviewUrl, runBuilderAgent, } from "./builder-browser.js";
+import { BUILDER_ENV_KEYS, BUILDER_STATE_PARAM, buildBuilderCliAuthUrl, createBuilderBrowserCallbackPage, getBuilderBrowserStatusForEvent, getBuilderCallbackEnvVars, resolveSafePreviewUrl, runBuilderAgent, signBuilderCallbackState, verifyBuilderCallbackState, } from "./builder-browser.js";
 import { getState, putState, deleteState, listComposeDrafts, getComposeDraft, putComposeDraft, deleteComposeDraft, deleteAllComposeDrafts, } from "../application-state/handlers.js";
 import { getSetting, putSetting, deleteSetting } from "../settings/store.js";
 import { getSession } from "./auth.js";
@@ -55,12 +55,57 @@ export function createCoreRoutesPlugin(options = {}) {
         // No-op when called from inside the bootstrap (auto-mount path).
         // Otherwise wait so other default plugins finish mounting first.
         await awaitBootstrap(nitroApp);
+        // Restore env vars from the settings table. On serverless, .env
+        // writes don't persist across invocations — the DB is the durable
+        // store. Only set keys that are currently empty so explicit env
+        // vars (Netlify dashboard, process-level) always win.
+        try {
+            const persisted = (await getSetting("persisted-env-vars"));
+            if (persisted) {
+                for (const [k, v] of Object.entries(persisted)) {
+                    if (typeof v === "string" && !process.env[k]) {
+                        process.env[k] = v;
+                    }
+                }
+            }
+        }
+        catch {
+            // DB not ready yet — skip
+        }
+        // Honor Builder disconnect. Nitro's dev env-runner preserves
+        // `process.env` across `.env` file reloads inside the same worker, so
+        // deleting BUILDER_PRIVATE_KEY in the disconnect handler can bleed
+        // back through an env-runner restart. We persist a
+        // `builder-disconnected` flag in SQL and scrub BUILDER_* on every
+        // plugin init while the flag is set. The flag is cleared by the
+        // Builder cli-auth callback when the user re-connects.
+        try {
+            const disconnected = (await getSetting("builder-disconnected"));
+            if (disconnected) {
+                for (const key of BUILDER_ENV_KEYS) {
+                    delete process.env[key];
+                }
+            }
+        }
+        catch {
+            // DB not ready — skip; the disconnect flag will be enforced on the
+            // next plugin boot once the settings table is reachable.
+        }
         // Register framework-level secrets (OPENAI_API_KEY for composer voice
         // transcription, etc.). Each registration is guarded so templates that
         // already registered the same key win.
         registerFrameworkSecrets();
         registerBuiltinProviders();
         registerBuiltinNotificationChannels();
+        try {
+            const { createObservabilityHandler } = await import("../observability/routes.js");
+            const { ensureObservabilityTables } = await import("../observability/store.js");
+            ensureObservabilityTables().catch(() => { });
+            getH3App(nitroApp).use(`${FRAMEWORK_ROUTE_PREFIX}/observability`, createObservabilityHandler());
+        }
+        catch {
+            // Observability module not available — skip
+        }
         const P = FRAMEWORK_ROUTE_PREFIX;
         // CORS for framework routes. Desktop tray apps (Tauri/Electron) run on
         // their own dev origin (e.g. localhost:1420) and make credentialed
@@ -110,15 +155,46 @@ export function createCoreRoutesPlugin(options = {}) {
                 message: process.env.PING_MESSAGE ?? "pong",
             })));
         }
-        getH3App(nitroApp).use(`${P}/builder/status`, defineEventHandler((event) => getBuilderBrowserStatusForEvent(event)));
+        getH3App(nitroApp).use(`${P}/builder/status`, defineEventHandler(async (event) => {
+            const status = getBuilderBrowserStatusForEvent(event);
+            // Honor the SQL disconnect flag even when process.env still has
+            // BUILDER_* (dev env-runner weirdness — see plugin init above).
+            try {
+                const disconnected = await getSetting("builder-disconnected");
+                if (disconnected) {
+                    return {
+                        ...status,
+                        configured: false,
+                        privateKeyConfigured: false,
+                        publicKeyConfigured: false,
+                        userId: undefined,
+                        orgName: undefined,
+                        orgKind: undefined,
+                    };
+                }
+            }
+            catch {
+                // DB not reachable — fall back to env-only status.
+            }
+            return status;
+        }));
         // Lightweight 302 to the Builder CLI-auth URL. Lets clients do
         // `window.open('/_agent-native/builder/connect', '_blank')` synchronously
         // inside a click handler, avoiding the popup-blocker downgrade that
-        // happens when an await sits before window.open.
-        getH3App(nitroApp).use(`${P}/builder/connect`, defineEventHandler((event) => {
-            const status = getBuilderBrowserStatusForEvent(event);
+        // happens when an await sits before window.open. We mint a signed
+        // CSRF state here and embed it in the callback URL we hand to
+        // Builder; the callback handler verifies it before accepting any
+        // keys. See `signBuilderCallbackState` for the threat model.
+        getH3App(nitroApp).use(`${P}/builder/connect`, defineEventHandler(async (event) => {
+            const session = await getSession(event).catch(() => null);
+            if (!session?.email) {
+                setResponseStatus(event, 401);
+                return { error: "Authentication required" };
+            }
+            const state = signBuilderCallbackState(session.email);
+            const cliAuthUrl = buildBuilderCliAuthUrl(getOrigin(event), state);
             setResponseStatus(event, 302);
-            setResponseHeader(event, "Location", status.connectUrl);
+            setResponseHeader(event, "Location", cliAuthUrl);
             return "";
         }));
         // Hardcoded for the early preview — later this will come from workspace/org
@@ -182,7 +258,22 @@ export function createCoreRoutesPlugin(options = {}) {
                 setResponseStatus(event, 405);
                 return { error: "Method not allowed" };
             }
+            // Session blocks anonymous callers; the signed state below blocks
+            // CSRF (session cookies are SameSite=None;Secure for the iframe
+            // editor, so they ride along on attacker-crafted top-level links).
+            const session = await getSession(event).catch(() => null);
+            if (!session?.email) {
+                setResponseStatus(event, 401);
+                return { error: "Authentication required" };
+            }
             const requestUrl = new URL(`${event.url?.pathname || "/"}${event.url?.search || ""}`, getOrigin(event));
+            const state = requestUrl.searchParams.get(BUILDER_STATE_PARAM);
+            if (!verifyBuilderCallbackState(state, session.email)) {
+                setResponseStatus(event, 403);
+                return {
+                    error: "Invalid or expired connect token. Restart the Builder connect flow from Settings.",
+                };
+            }
             const privateKey = requestUrl.searchParams.get("p-key");
             const publicKey = requestUrl.searchParams.get("api-key");
             if (!privateKey || !publicKey) {
@@ -196,6 +287,16 @@ export function createCoreRoutesPlugin(options = {}) {
                 orgName: requestUrl.searchParams.get("org-name"),
                 orgKind: requestUrl.searchParams.get("kind"),
             });
+            // Clear the disconnect flag first — a prior disconnect would
+            // otherwise cause the plugin init to scrub these keys right back
+            // out on the next env-runner reload.
+            try {
+                await deleteSetting("builder-disconnected");
+            }
+            catch {
+                // DB not ready — proceed; the worst case is a stale disconnect
+                // flag that gets cleared on the next reconnect attempt.
+            }
             // Prefer the workspace root .env when in an enterprise workspace so
             // Builder credentials are shared across every app automatically.
             try {
@@ -211,10 +312,96 @@ export function createCoreRoutesPlugin(options = {}) {
             for (const { key, value } of vars) {
                 process.env[key] = value;
             }
+            // Persist to settings table so serverless cold starts can
+            // restore credentials (.env writes don't survive on Netlify).
+            try {
+                const envMap = {};
+                for (const { key, value } of vars)
+                    envMap[key] = value;
+                const existing = (await getSetting("persisted-env-vars")) ?? {};
+                await putSetting("persisted-env-vars", { ...existing, ...envMap });
+            }
+            catch {
+                // DB not ready yet — skip
+            }
             const previewUrl = resolveSafePreviewUrl(requestUrl.searchParams.get("preview-url"), event);
             setResponseHeader(event, "Content-Type", "text/html; charset=utf-8");
             return createBuilderBrowserCallbackPage(previewUrl);
         }));
+        // POST /_agent-native/builder/disconnect — revoke the stored Builder
+        // credentials so the next turn falls back to BYO / env detection. Mirrors
+        // the callback handler's three write locations: the template `.env` file,
+        // the in-process `process.env`, and the `persisted-env-vars` settings row
+        // (rehydrated on serverless cold starts). All three must be cleared to
+        // avoid a "still connected after disconnect" state on restart.
+        getH3App(nitroApp).use(`${P}/builder/disconnect`, defineEventHandler(async (event) => {
+            if (getMethod(event) !== "POST") {
+                setResponseStatus(event, 405);
+                return { error: "Method not allowed" };
+            }
+            const session = await getSession(event).catch(() => null);
+            if (!session?.email) {
+                setResponseStatus(event, 401);
+                return { error: "unauthorized" };
+            }
+            // We intentionally do NOT rewrite the `.env` file on disconnect.
+            // A `.env` write triggers nitro's file watcher → env-runner
+            // restart, which tears down in-flight SSE / HMR connections and
+            // surfaces as `read ECONNRESET` in the vite overlay. The
+            // authoritative disconnect signal is the SQL `builder-disconnected`
+            // flag (checked in plugin init, the status endpoint, and the
+            // Builder engine before any gateway call). `.env` keys, if any
+            // survive, are neutered by the flag-driven scrub in plugin init.
+            // 1. Write the disconnect flag. This is load-bearing — every
+            // subsequent check (plugin init scrub, /builder/status override,
+            // BuilderEngine.stream short-circuit) reads this flag. If the
+            // write fails, we FAIL HARD: clearing process.env without
+            // persisting the flag means the next env-runner reload would
+            // silently restore BUILDER_* from whatever inherited env the
+            // worker was spawned with, and the user would see "Disconnected"
+            // in the UI that flips back to "Connected" moments later.
+            try {
+                await putSetting("builder-disconnected", { at: Date.now() });
+            }
+            catch (err) {
+                setResponseStatus(event, 500);
+                return {
+                    ok: false,
+                    error: "Could not persist disconnect flag — your Builder connection is unchanged. Please retry.",
+                    cause: err instanceof Error ? err.message : String(err),
+                };
+            }
+            // 2. Scrub the persisted-env-vars row so serverless cold starts
+            // don't rehydrate BUILDER_* from SQL. Best-effort: the disconnect
+            // flag above already prevents Builder from being used; this is
+            // cleanup.
+            let warnPersisted;
+            try {
+                const existing = (await getSetting("persisted-env-vars")) ?? {};
+                const cleaned = {};
+                for (const [k, v] of Object.entries(existing)) {
+                    if (!BUILDER_ENV_KEYS.includes(k))
+                        cleaned[k] = v;
+                }
+                await putSetting("persisted-env-vars", cleaned);
+            }
+            catch (err) {
+                warnPersisted = err instanceof Error ? err.message : String(err);
+            }
+            // 3. Clear in-process env vars so the current worker stops routing
+            // through Builder immediately. Nitro's env-runner may re-populate
+            // these across a module reload, but by then the `builder-disconnected`
+            // flag will be enforced at the plugin-init scrub.
+            for (const key of BUILDER_ENV_KEYS) {
+                delete process.env[key];
+            }
+            return {
+                ok: true,
+                ...(warnPersisted
+                    ? { warnings: { persistedEnvVars: warnPersisted } }
+                    : {}),
+            };
+        }));
         // Proxy to Builder's agents-run API for background code changes.
         getH3App(nitroApp).use(`${P}/builder/agents-run`, defineEventHandler(async (event) => {
             if (getMethod(event) !== "POST") {
@@ -266,6 +453,10 @@ export function createCoreRoutesPlugin(options = {}) {
         // Env key management — framework keys are always included
         const frameworkEnvKeys = [
             { key: "ENABLE_BUILDER", label: "Enable Builder.io features" },
+            {
+                key: "AGENT_ENGINE_PREFER_BYO_KEY",
+                label: "Prefer BYO LLM key over Builder gateway (default: false — gateway wins)",
+            },
             ...Object.values(PROVIDER_ENV_META).map(({ envVar, label }) => ({
                 key: envVar,
                 label,
@@ -349,6 +540,17 @@ export function createCoreRoutesPlugin(options = {}) {
                 for (const { key, value } of filtered) {
                     process.env[key] = value;
                 }
+                // Persist to settings table for serverless cold-start recovery.
+                try {
+                    const envMap = {};
+                    for (const { key, value } of filtered)
+                        envMap[key] = value;
+                    const existing = (await getSetting("persisted-env-vars")) ?? {};
+                    await putSetting("persisted-env-vars", { ...existing, ...envMap });
+                }
+                catch {
+                    // DB not ready yet — skip
+                }
                 return { saved: filtered.map((v) => v.key) };
             }));
         }