@alfe.ai/gateway 0.0.42 → 0.0.44

package/dist/health.js

@@ -3415,6 +3415,7 @@ enumValues({
 enumValues({
 	Dev: "dev",
 	Test: "test",
+	Demo: "demo",
 	Live: "live"
 });
 //#endregion
@@ -3686,9 +3687,12 @@ function deriveAgentId(apiKey) {
 * The cloud gateway runs on Fly.io — its URL follows a convention.
 */
 function deriveGatewayWsUrl(apiEndpoint) {
-	if (apiEndpoint.includes("dev.alfe.ai")) return process.env.ALFE_GATEWAY_WS_URL ?? "wss://gateway.dev.alfe.ai/ws";
-	if (apiEndpoint.includes("test.alfe.ai")) return process.env.ALFE_GATEWAY_WS_URL ?? "wss://gateway.test.alfe.ai/ws";
-	return process.env.ALFE_GATEWAY_WS_URL ?? "wss://gateway.alfe.ai/ws";
+	if (process.env.ALFE_GATEWAY_WS_URL) return process.env.ALFE_GATEWAY_WS_URL;
+	try {
+		return `wss://${new URL(apiEndpoint).hostname.replace(/^api\./, "gateway.")}/ws`;
+	} catch {
+		return "wss://gateway.alfe.ai/ws";
+	}
 }
 /**
 * Parse [runtimes.*] sections from config.toml.
@@ -4824,6 +4828,17 @@ var IPCServer = class {
 			this.sendResponse(conn, createIPCError(request.id, "PROTOCOL_MISMATCH", `Unsupported protocol version ${String(protocolVersion)}. Server supports v${String(1)}.`));
 			return;
 		}
+		const staleIds = [];
+		for (const [existingId, existing] of this.connections) if (existingId !== conn.id && existing.info?.name === name) {
+			logger$1.info({
+				staleConnId: existingId,
+				newConnId: conn.id,
+				plugin: name
+			}, "IPC: closing stale duplicate connection");
+			existing.socket.destroy();
+			staleIds.push(existingId);
+		}
+		for (const id of staleIds) this.connections.delete(id);
 		conn.info = {
 			name,
 			version,
@@ -17122,7 +17137,7 @@ var require_src = /* @__PURE__ */ __commonJSMin(((exports, module) => {
 	else module.exports = require_node();
 }));
 //#endregion
-//#region ../../node_modules/.pnpm/follow-redirects@1.15.11/node_modules/follow-redirects/debug.js
+//#region ../../node_modules/.pnpm/follow-redirects@1.16.0/node_modules/follow-redirects/debug.js
 var require_debug = /* @__PURE__ */ __commonJSMin(((exports, module) => {
 	var debug;
 	module.exports = function() {
@@ -17136,7 +17151,7 @@ var require_debug = /* @__PURE__ */ __commonJSMin(((exports, module) => {
 	};
 }));
 //#endregion
-//#region ../../node_modules/.pnpm/follow-redirects@1.15.11/node_modules/follow-redirects/index.js
+//#region ../../node_modules/.pnpm/follow-redirects@1.16.0/node_modules/follow-redirects/index.js
 var require_follow_redirects = /* @__PURE__ */ __commonJSMin(((exports, module) => {
 	var url$1 = __require("url");
 	var URL = url$1.URL;
@@ -17158,6 +17173,11 @@ var require_follow_redirects = /* @__PURE__ */ __commonJSMin(((exports, module)
 	} catch (error) {
 		useNativeURL = error.code === "ERR_INVALID_URL";
 	}
+	var sensitiveHeaders = [
+		"Authorization",
+		"Proxy-Authorization",
+		"Cookie"
+	];
 	var preservedUrlFields = [
 		"auth",
 		"host",
@@ -17211,6 +17231,7 @@ var require_follow_redirects = /* @__PURE__ */ __commonJSMin(((exports, module)
 				self.emit("error", cause instanceof RedirectionError ? cause : new RedirectionError({ cause }));
 			}
 		};
+		this._headerFilter = new RegExp("^(?:" + sensitiveHeaders.concat(options.sensitiveHeaders).map(escapeRegex).join("|") + ")$", "i");
 		this._performRequest();
 	}
 	RedirectableRequest.prototype = Object.create(Writable.prototype);
@@ -17334,6 +17355,7 @@ var require_follow_redirects = /* @__PURE__ */ __commonJSMin(((exports, module)
 	});
 	RedirectableRequest.prototype._sanitizeOptions = function(options) {
 		if (!options.headers) options.headers = {};
+		if (!isArray(options.sensitiveHeaders)) options.sensitiveHeaders = [];
 		if (options.host) {
 			if (!options.hostname) options.hostname = options.host;
 			delete options.host;
@@ -17412,7 +17434,7 @@ var require_follow_redirects = /* @__PURE__ */ __commonJSMin(((exports, module)
 		debug("redirecting to", redirectUrl.href);
 		this._isRedirect = true;
 		spreadUrlObject(redirectUrl, this._options);
-		if (redirectUrl.protocol !== currentUrlParts.protocol && redirectUrl.protocol !== "https:" || redirectUrl.host !== currentHost && !isSubdomain(redirectUrl.host, currentHost)) removeMatchingHeaders(/^(?:(?:proxy-)?authorization|cookie)$/i, this._options.headers);
+		if (redirectUrl.protocol !== currentUrlParts.protocol && redirectUrl.protocol !== "https:" || redirectUrl.host !== currentHost && !isSubdomain(redirectUrl.host, currentHost)) removeMatchingHeaders(this._headerFilter, this._options.headers);
 		if (isFunction(beforeRedirect)) {
 			var responseDetails = {
 				headers: response.headers,
@@ -17549,6 +17571,9 @@ var require_follow_redirects = /* @__PURE__ */ __commonJSMin(((exports, module)
 		var dot = subdomain.length - domain.length - 1;
 		return dot > 0 && subdomain[dot] === "." && subdomain.endsWith(domain);
 	}
+	function isArray(value) {
+		return value instanceof Array;
+	}
 	function isString(value) {
 		return typeof value === "string" || value instanceof String;
 	}
@@ -17561,6 +17586,9 @@ var require_follow_redirects = /* @__PURE__ */ __commonJSMin(((exports, module)
 	function isURL(value) {
 		return URL && value instanceof URL;
 	}
+	function escapeRegex(regex) {
+		return regex.replace(/[\]\\/()*+?.$]/g, "\\$&");
+	}
 	module.exports = wrap({
 		http: http$1,
 		https: https$1

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@alfe.ai/gateway",
-  "version": "0.0.42",
+  "version": "0.0.44",
   "description": "Alfe local gateway daemon — persistent control plane for agent integrations",
   "type": "module",
   "bin": {
@@ -22,8 +22,8 @@
     "pino-roll": "^1.2.0",
     "smol-toml": ">=1.6.1",
     "ws": "^8.18.0",
-    "@alfe.ai/ai-proxy-local": "^0.0.7",
-    "@alfe.ai/config": "^0.0.7",
+    "@alfe.ai/ai-proxy-local": "^0.0.8",
+    "@alfe.ai/config": "^0.0.8",
     "@alfe.ai/integration-manifest": "^0.0.10",
     "@alfe.ai/integrations": "^0.0.28"
   },