npm - @apifuse/provider-sdk - Versions diffs - 2.1.0-beta.0 → 2.1.0-beta.10 - Mend

@apifuse/provider-sdk 2.1.0-beta.0 → 2.1.0-beta.10

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (213) hide show

package/AUTHORING.md +218 -21
package/CHANGELOG.md +54 -0
package/README.md +147 -10
package/SUBMISSION.md +87 -0
package/bin/apifuse-check.ts +86 -4
package/bin/apifuse-dev.ts +87 -13
package/bin/apifuse-pack-check.ts +120 -0
package/bin/apifuse-pack-smoke.ts +423 -0
package/bin/apifuse-perf.ts +142 -49
package/bin/apifuse-record.ts +182 -104
package/bin/apifuse-submit-check.ts +2538 -0
package/bin/apifuse.ts +1 -1
package/dist/ceremonies/index.d.ts +41 -0
package/dist/ceremonies/index.js +490 -0
package/dist/choice-token.d.ts +24 -0
package/dist/choice-token.js +74 -0
package/dist/cli/commands.d.ts +10 -0
package/dist/cli/commands.js +80 -0
package/dist/cli/create.d.ts +47 -0
package/dist/cli/create.js +762 -0
package/dist/cli/templates/provider/.dockerignore.tpl +22 -0
package/dist/cli/templates/provider/.gitignore.tpl +22 -0
package/dist/cli/templates/provider/Dockerfile.tpl +7 -0
package/dist/cli/templates/provider/README.md.tpl +160 -0
package/dist/cli/templates/provider/dev.ts.tpl +5 -0
package/dist/cli/templates/provider/domain/README.md.tpl +3 -0
package/dist/cli/templates/provider/index.test.ts.tpl +13 -0
package/dist/cli/templates/provider/index.ts.tpl +15 -0
package/dist/cli/templates/provider/mappers/README.md.tpl +3 -0
package/dist/cli/templates/provider/meta.ts.tpl +7 -0
package/dist/cli/templates/provider/operations/index.ts.tpl +5 -0
package/dist/cli/templates/provider/operations/ping.ts.tpl +24 -0
package/dist/cli/templates/provider/schemas/ping.ts.tpl +24 -0
package/dist/cli/templates/provider/start.ts.tpl +5 -0
package/dist/cli/templates/provider/upstream/README.md.tpl +3 -0
package/dist/config/loader.d.ts +107 -0
package/dist/config/loader.js +935 -0
package/dist/contract-json.d.ts +9 -0
package/dist/contract-json.js +51 -0
package/dist/contract-serialization.d.ts +4 -0
package/dist/contract-serialization.js +78 -0
package/dist/contract-types.d.ts +49 -0
package/dist/contract-types.js +1 -0
package/dist/contract.d.ts +6 -0
package/dist/contract.js +155 -0
package/dist/define.d.ts +97 -0
package/dist/define.js +1320 -0
package/dist/dev.d.ts +9 -0
package/dist/dev.js +15 -0
package/dist/errors.d.ts +59 -0
package/dist/errors.js +97 -0
package/dist/i18n/catalog.d.ts +29 -0
package/dist/i18n/catalog.js +159 -0
package/dist/i18n/index.d.ts +2 -0
package/dist/i18n/index.js +2 -0
package/dist/i18n/keys.d.ts +10 -0
package/dist/i18n/keys.js +34 -0
package/dist/index.d.ts +41 -0
package/dist/index.js +37 -0
package/dist/lint.d.ts +73 -0
package/dist/lint.js +702 -0
package/dist/observability.d.ts +5 -0
package/dist/observability.js +39 -0
package/dist/provider.d.ts +9 -0
package/dist/provider.js +8 -0
package/dist/public-schema-field-lint.d.ts +2 -0
package/dist/public-schema-field-lint.js +158 -0
package/dist/recipes/gov-api.d.ts +19 -0
package/dist/recipes/gov-api.js +72 -0
package/dist/recipes/rest-api.d.ts +21 -0
package/dist/recipes/rest-api.js +115 -0
package/dist/runtime/auth-flow.d.ts +14 -0
package/dist/runtime/auth-flow.js +44 -0
package/dist/runtime/browser.d.ts +25 -0
package/dist/runtime/browser.js +1034 -0
package/dist/runtime/cache.d.ts +10 -0
package/dist/runtime/cache.js +372 -0
package/dist/runtime/choice.d.ts +15 -0
package/dist/runtime/choice.js +435 -0
package/dist/runtime/credential.d.ts +8 -0
package/dist/runtime/credential.js +61 -0
package/dist/runtime/env.d.ts +2 -0
package/dist/runtime/env.js +10 -0
package/dist/runtime/executor.d.ts +16 -0
package/dist/runtime/executor.js +51 -0
package/dist/runtime/http.d.ts +8 -0
package/dist/runtime/http.js +706 -0
package/dist/runtime/insights.d.ts +9 -0
package/dist/runtime/insights.js +324 -0
package/dist/runtime/instrumentation.d.ts +8 -0
package/dist/runtime/instrumentation.js +269 -0
package/dist/runtime/key-derivation.d.ts +24 -0
package/dist/runtime/key-derivation.js +73 -0
package/dist/runtime/keyring.d.ts +25 -0
package/dist/runtime/keyring.js +93 -0
package/dist/runtime/namespace.d.ts +9 -0
package/dist/runtime/namespace.js +19 -0
package/dist/runtime/otlp.d.ts +39 -0
package/dist/runtime/otlp.js +103 -0
package/dist/runtime/perf.d.ts +12 -0
package/dist/runtime/perf.js +52 -0
package/dist/runtime/prevalidate.d.ts +12 -0
package/dist/runtime/prevalidate.js +173 -0
package/dist/runtime/provider.d.ts +2 -0
package/dist/runtime/provider.js +11 -0
package/dist/runtime/proxy-errors.d.ts +21 -0
package/dist/runtime/proxy-errors.js +83 -0
package/dist/runtime/proxy-telemetry.d.ts +8 -0
package/dist/runtime/proxy-telemetry.js +174 -0
package/dist/runtime/redis.d.ts +17 -0
package/dist/runtime/redis.js +82 -0
package/dist/runtime/request-options.d.ts +3 -0
package/dist/runtime/request-options.js +42 -0
package/dist/runtime/state.d.ts +17 -0
package/dist/runtime/state.js +344 -0
package/dist/runtime/stealth.d.ts +18 -0
package/dist/runtime/stealth.js +834 -0
package/dist/runtime/stt.d.ts +22 -0
package/dist/runtime/stt.js +480 -0
package/dist/runtime/trace.d.ts +26 -0
package/dist/runtime/trace.js +142 -0
package/dist/runtime/waterfall.d.ts +12 -0
package/dist/runtime/waterfall.js +147 -0
package/dist/schema.d.ts +74 -0
package/dist/schema.js +243 -0
package/dist/serve.d.ts +1 -0
package/dist/serve.js +1 -0
package/dist/server/index.d.ts +3 -0
package/dist/server/index.js +2 -0
package/dist/server/serve.d.ts +64 -0
package/dist/server/serve.js +1110 -0
package/dist/server/types.d.ts +136 -0
package/dist/server/types.js +86 -0
package/dist/stealth/profiles.d.ts +4 -0
package/dist/stealth/profiles.js +259 -0
package/dist/stream.d.ts +44 -0
package/dist/stream.js +151 -0
package/dist/testing/helpers.d.ts +23 -0
package/dist/testing/helpers.js +95 -0
package/dist/testing/index.d.ts +2 -0
package/dist/testing/index.js +2 -0
package/dist/testing/run.d.ts +34 -0
package/dist/testing/run.js +303 -0
package/dist/types.d.ts +1326 -0
package/dist/types.js +61 -0
package/dist/utils/date.d.ts +6 -0
package/dist/utils/date.js +101 -0
package/dist/utils/parse.d.ts +16 -0
package/dist/utils/parse.js +51 -0
package/dist/utils/text.d.ts +4 -0
package/dist/utils/text.js +14 -0
package/dist/utils/transform.d.ts +8 -0
package/dist/utils/transform.js +48 -0
package/package.json +57 -29
package/src/ceremonies/index.ts +30 -3
package/src/choice-token.ts +165 -0
package/src/cli/commands.ts +34 -11
package/src/cli/create.ts +214 -52
package/src/cli/templates/provider/.dockerignore.tpl +22 -0
package/src/cli/templates/provider/.gitignore.tpl +22 -0
package/src/cli/templates/provider/README.md.tpl +134 -2
package/src/cli/templates/provider/dev.ts.tpl +1 -1
package/src/cli/templates/provider/domain/README.md.tpl +3 -0
package/src/cli/templates/provider/index.ts.tpl +5 -44
package/src/cli/templates/provider/mappers/README.md.tpl +3 -0
package/src/cli/templates/provider/meta.ts.tpl +7 -0
package/src/cli/templates/provider/operations/index.ts.tpl +5 -0
package/src/cli/templates/provider/operations/ping.ts.tpl +24 -0
package/src/cli/templates/provider/schemas/ping.ts.tpl +24 -0
package/src/cli/templates/provider/start.ts.tpl +1 -1
package/src/cli/templates/provider/upstream/README.md.tpl +3 -0
package/src/config/loader.ts +1282 -7
package/src/contract-json.ts +75 -0
package/src/contract-serialization.ts +89 -0
package/src/contract-types.ts +52 -0
package/src/contract.ts +215 -0
package/src/define.ts +1726 -48
package/src/errors.ts +27 -0
package/src/i18n/catalog.ts +277 -0
package/src/i18n/index.ts +2 -0
package/src/i18n/keys.ts +64 -0
package/src/index.ts +174 -15
package/src/lint.ts +547 -73
package/src/observability.ts +41 -0
package/src/provider.ts +104 -5
package/src/public-schema-field-lint.ts +237 -0
package/src/runtime/auth-flow.ts +7 -0
package/src/runtime/browser.ts +762 -51
package/src/runtime/cache.ts +528 -0
package/src/runtime/choice.ts +760 -0
package/src/runtime/executor.ts +32 -3
package/src/runtime/http.ts +945 -185
package/src/runtime/insights.ts +11 -11
package/src/runtime/instrumentation.ts +12 -4
package/src/runtime/key-derivation.ts +1 -1
package/src/runtime/keyring.ts +4 -3
package/src/runtime/proxy-errors.ts +132 -0
package/src/runtime/proxy-telemetry.ts +253 -0
package/src/runtime/redis.ts +116 -0
package/src/runtime/request-options.ts +66 -0
package/src/runtime/state.ts +563 -0
package/src/runtime/stealth.ts +1159 -0
package/src/runtime/stt.ts +629 -0
package/src/runtime/trace.ts +1 -1
package/src/schema.ts +363 -1
package/src/server/serve.ts +1172 -76
package/src/server/types.ts +37 -0
package/src/stream.ts +210 -0
package/src/testing/run.ts +31 -5
package/src/types.ts +1118 -44
package/src/composite.ts +0 -43
package/src/runtime/tls.ts +0 -425
package/src/types/playwright-stealth.d.ts +0 -9

package/bin/apifuse-check.ts CHANGED Viewed

@@ -1,24 +1,29 @@
 #!/usr/bin/env bun
-import { existsSync, readFileSync, statSync } from "node:fs";
+import { existsSync, readdirSync, readFileSync, statSync } from "node:fs";
 import { dirname, resolve } from "node:path";
 import { pathToFileURL } from "node:url";
 import { z } from "zod";
 import type { ProviderDefinition } from "../src";
+import { lintProvider, type ProviderLintMode } from "../src/lint";
 import { safeParseSchemaSync } from "../src/schema";
 const HELP_TEXT = `Usage: apifuse check [path]
-Example: apifuse check providers/airkorea
+Example: apifuse check providers/korea-air-quality
 Default: apifuse check .`;
-type CheckResult = {
+export type CheckResult = {
 	message: string;
 	passed: boolean;
 	details?: string[];
 };
+export type RunChecksOptions = {
+	lintMode?: ProviderLintMode;
+};
 type SafeParseResult =
 	| { success: true; data: unknown }
 	| { success: false; error: unknown };
@@ -103,7 +108,10 @@ function resolveFromParents(inputPath: string): string {
 	}
 }
-async function runChecks(providerRoot: string): Promise<CheckResult[]> {
+export async function runChecks(
+	providerRoot: string,
+	options: RunChecksOptions = {},
+): Promise<CheckResult[]> {
 	const indexPath = resolve(providerRoot, "index.ts");
 	const dockerfilePath = resolve(providerRoot, "Dockerfile");
 	const packageJsonPath = resolve(providerRoot, "package.json");
@@ -112,18 +120,61 @@ async function runChecks(providerRoot: string): Promise<CheckResult[]> {
 		? await import(pathToFileURL(indexPath).href)
 		: undefined;
 	const provider = assertProviderDefinition(providerModule?.default);
+	const providerSourceFiles = collectProviderSourceFiles(providerRoot);
 	return [
 		checkIndex(indexPath, provider),
 		checkOperations(provider),
 		checkFixtures(provider),
 		checkSchemas(provider),
+		checkAuthoringLint(provider, providerSourceFiles, options.lintMode),
 		checkProviderMetadata(provider),
 		checkDockerfile(dockerfilePath),
 		checkPackageJson(packageJsonPath),
 	];
 }
+function isScannableProviderSourceFile(relativePath: string): boolean {
+	return (
+		/\.(?:ts|tsx|js|jsx|mjs|cjs|sh|bash)$/.test(relativePath) ||
+		/(?:^|\/)Dockerfile(?:\.|$)/.test(relativePath) ||
+		/(?:^|\/)entrypoint(?:\.|$)/.test(relativePath)
+	);
+}
+function collectProviderSourceFiles(
+	providerRoot: string,
+): Record<string, string> {
+	const sources: Record<string, string> = {};
+	const skipDirectories = new Set([
+		".git",
+		"node_modules",
+		"dist",
+		"build",
+		".next",
+	]);
+	const visit = (directory: string) => {
+		for (const entry of readdirSync(directory, { withFileTypes: true })) {
+			const path = resolve(directory, entry.name);
+			if (entry.isDirectory()) {
+				if (!skipDirectories.has(entry.name)) {
+					visit(path);
+				}
+				continue;
+			}
+			if (
+				!entry.isFile() ||
+				!isScannableProviderSourceFile(path.slice(providerRoot.length + 1))
+			) {
+				continue;
+			}
+			sources[path.slice(providerRoot.length + 1)] = readFileSync(path, "utf8");
+		}
+	};
+	visit(providerRoot);
+	return sources;
+}
 function checkIndex(
 	indexPath: string,
 	provider: ProviderDefinition | undefined,
@@ -254,6 +305,37 @@ function checkSchemas(provider: ProviderDefinition | undefined): CheckResult {
 	};
 }
+function checkAuthoringLint(
+	provider: ProviderDefinition | undefined,
+	providerSourceFiles: Record<string, string>,
+	lintMode: ProviderLintMode = "official",
+): CheckResult {
+	if (!provider) {
+		return {
+			message: "Provider authoring lint has no error-level diagnostics",
+			passed: false,
+		};
+	}
+	const diagnostics = lintProvider(
+		{ ...provider, providerSourceFiles },
+		{ mode: lintMode },
+	);
+	const errors = diagnostics.filter(
+		(diagnostic) => diagnostic.level === "error",
+	);
+	const details = diagnostics.map((diagnostic) => {
+		const field = diagnostic.field ? `${diagnostic.field}: ` : "";
+		return `${diagnostic.level.toUpperCase()} ${diagnostic.rule} ${field}${diagnostic.message}`;
+	});
+	return {
+		message: "Provider authoring lint has no error-level diagnostics",
+		passed: errors.length === 0,
+		details,
+	};
+}
 function checkProviderMetadata(
 	provider: ProviderDefinition | undefined,
 ): CheckResult {

package/bin/apifuse-dev.ts CHANGED Viewed

@@ -1,22 +1,26 @@
 #!/usr/bin/env bun
 import { existsSync } from "node:fs";
-import { dirname, resolve } from "node:path";
+import { dirname, relative, resolve } from "node:path";
 import type { ProviderDefinition } from "../src";
 import {
 	createBrowserClient,
 	createCredentialContext,
 	createEnvContext,
 	createHttpClient,
-	createTlsClient,
+	createProviderCache,
+	createProviderChoiceContext,
+	createStealthClient,
+	createSttClientFromEnv,
+	PROVIDER_RUNTIME_CHOICE_TOKEN_MASTER_SECRET_ENV,
 	ProviderError,
 } from "../src";
+import { createMemoryProviderRuntimeState } from "../src/runtime/state";
 import { createTraceContext } from "../src/runtime/trace";
 import type { BrowserClient, ProviderContext } from "../src/types";
 const HELP_TEXT = `Usage: apifuse dev [path]
-Example: apifuse dev providers/airkorea
+Example: apifuse dev providers/korea-air-quality
 Default: apifuse dev .`;
 export async function main() {
@@ -35,7 +39,7 @@ export async function main() {
 	);
 	const { startDevServer } = await import("../src/dev");
-	const port = Number(process.env.PORT) || 3900;
+	const port = Number(process.env.APIFUSE__RUNTIME__PORT) || 3900;
 	startDevServer(provider, { port });
@@ -51,28 +55,58 @@ export async function main() {
 	console.log(`  POST http://localhost:${port}/auth/poll`);
 	console.log(`  POST http://localhost:${port}/auth/disconnect`);
+	const firstOperation = Object.keys(provider.operations)[0];
+	if (firstOperation) {
+		const sampleInput =
+			provider.operations[firstOperation]?.fixtures?.request ?? {};
+		const sampleBody = JSON.stringify({
+			requestId: `req_local_${firstOperation}`,
+			input: sampleInput,
+			headers: {},
+		});
+		console.log("\nSmoke:");
+		console.log(`  curl -s http://localhost:${port}/health`);
+		console.log(
+			`  curl -s -X POST http://localhost:${port}/v1/${firstOperation} -H 'Content-Type: application/json' -d ${shellSingleQuote(sampleBody)}`,
+		);
+	}
 	console.log("\nHot reload:");
-	console.log(
-		`  bun --hot ${resolveImportPath("apifuse-dev.ts")} ${args[0] ?? "."}`,
-	);
+	console.log(`  ${renderHotReloadCommand(providerPath, port)}`);
 }
 export function createProviderContext(provider: ProviderDefinition): {
 	ctx: ProviderContext;
 } {
+	const env = createEnvContext([
+		...(provider.secrets?.map((secret) => secret.name) ?? []),
+		PROVIDER_RUNTIME_CHOICE_TOKEN_MASTER_SECRET_ENV,
+	]);
+	const credential = createCredentialContext();
+	const state = createMemoryProviderRuntimeState();
 	const ctx: ProviderContext = {
-		env: createEnvContext(provider.secrets?.map((secret) => secret.name)),
-		credential: createCredentialContext(),
+		env,
+		credential,
 		auth: createUnsupportedAuthStub(),
 		browser:
 			provider.runtime === "browser"
 				? createBrowserClient({
+						allowedHosts: provider.allowedHosts,
 						engine: provider.browser?.engine ?? "playwright-stealth",
 					})
 				: createUnsupportedBrowserStub(),
 		http: createHttpClient(),
+		cache: createProviderCache({ providerId: provider.id }),
+		state,
 		trace: createTraceContext(),
-		tls: createTlsClient("http://localhost"),
+		stealth: createStealthClient("http://localhost"),
+		stt: createSttClientFromEnv(provider.stt),
+		choice: createProviderChoiceContext({
+			providerId: provider.id,
+			env,
+			credential,
+			state,
+		}),
 	};
 	return { ctx };
@@ -111,13 +145,26 @@ function resolveFromParents(inputPath: string): string {
 	}
 }
-function resolveImportPath(fileName: string): string {
-	return resolve(process.cwd(), "bin", fileName);
+function renderHotReloadCommand(providerPath: string, port: number): string {
+	const devEntry = resolve(providerPath, "dev.ts");
+	if (existsSync(devEntry)) {
+		const relativeDevEntry = relative(process.cwd(), devEntry) || "dev.ts";
+		const portPrefix = process.env.APIFUSE__RUNTIME__PORT
+			? `APIFUSE__RUNTIME__PORT=${port} `
+			: "";
+		return `${portPrefix}bun --hot ${relativeDevEntry}`;
+	}
+	return "rerun `apifuse dev` after edits (no dev.ts entrypoint found)";
+}
+function shellSingleQuote(value: string): string {
+	return `'${value.replaceAll("'", "'\\''")}'`;
 }
 function createUnsupportedBrowserStub(): BrowserClient {
 	return {
 		engine: "playwright-stealth",
+		async close() {},
 		async newPage() {
 			throw new ProviderError(
 				"Browser runtime is not enabled for this provider",
@@ -127,6 +174,33 @@ function createUnsupportedBrowserStub(): BrowserClient {
 				},
 			);
 		},
+		async rawPage() {
+			throw new ProviderError(
+				"Browser runtime is not enabled for this provider",
+				{
+					code: "BROWSER_RUNTIME_UNSUPPORTED",
+					fix: 'Set provider runtime to "browser" and APIFUSE__CDP_POOL__URL to use ctx.browser.rawPage',
+				},
+			);
+		},
+		async withIsolatedContext() {
+			throw new ProviderError(
+				"Browser runtime is not enabled for this provider",
+				{
+					code: "BROWSER_RUNTIME_UNSUPPORTED",
+					fix: 'Set provider runtime to "browser" to use ctx.browser.withIsolatedContext',
+				},
+			);
+		},
+		async solveChallenge() {
+			throw new ProviderError(
+				"Browser runtime is not enabled for this provider",
+				{
+					code: "BROWSER_RUNTIME_UNSUPPORTED",
+					fix: 'Set provider runtime to "browser" to use ctx.browser.solveChallenge',
+				},
+			);
+		},
 	};
 }

package/bin/apifuse-pack-check.ts CHANGED Viewed

@@ -1,6 +1,7 @@
 #!/usr/bin/env bun
 import { execFileSync } from "node:child_process";
+import { readFileSync } from "node:fs";
 import { z } from "zod";
 const PACK_RESULT_SCHEMA = z.array(
@@ -28,12 +29,47 @@ if (!first) {
 }
 const filePaths = (first.files ?? []).map((file) => file.path);
+const requiredPaths = [
+	"bin/apifuse.ts",
+	"bin/apifuse-create.ts",
+	"bin/apifuse-pack-smoke.ts",
+	"bin/apifuse-submit-check.ts",
+	"SUBMISSION.md",
+	"src/cli/create.ts",
+	"src/cli/templates/provider/.dockerignore.tpl",
+	"src/cli/templates/provider/.gitignore.tpl",
+	"src/cli/templates/provider/Dockerfile.tpl",
+	"src/cli/templates/provider/index.ts.tpl",
+	"src/cli/templates/provider/README.md.tpl",
+	"src/cli/templates/provider/meta.ts.tpl",
+	"src/cli/templates/provider/domain/README.md.tpl",
+	"src/cli/templates/provider/mappers/README.md.tpl",
+	"src/cli/templates/provider/operations/index.ts.tpl",
+	"src/cli/templates/provider/operations/ping.ts.tpl",
+	"src/cli/templates/provider/schemas/ping.ts.tpl",
+	"src/cli/templates/provider/upstream/README.md.tpl",
+	"dist/cli/templates/provider/.dockerignore.tpl",
+	"dist/cli/templates/provider/.gitignore.tpl",
+	"dist/cli/templates/provider/Dockerfile.tpl",
+	"dist/cli/templates/provider/index.ts.tpl",
+	"dist/cli/templates/provider/README.md.tpl",
+	"dist/cli/templates/provider/meta.ts.tpl",
+	"dist/cli/templates/provider/domain/README.md.tpl",
+	"dist/cli/templates/provider/mappers/README.md.tpl",
+	"dist/cli/templates/provider/operations/index.ts.tpl",
+	"dist/cli/templates/provider/operations/ping.ts.tpl",
+	"dist/cli/templates/provider/schemas/ping.ts.tpl",
+	"dist/cli/templates/provider/upstream/README.md.tpl",
+];
 const forbiddenMatches = filePaths.filter(
 	(path) =>
 		path.startsWith("src/__tests__/") ||
 		path === "src/index.test.ts" ||
 		path === "bin/apifuse-init.ts",
 );
+const missingRequiredPaths = requiredPaths.filter(
+	(path) => !filePaths.includes(path),
+);
 if (forbiddenMatches.length > 0) {
 	throw new Error(
@@ -41,7 +77,91 @@ if (forbiddenMatches.length > 0) {
 	);
 }
+if (missingRequiredPaths.length > 0) {
+	throw new Error(
+		`Packed artifact is missing required public SDK files:\n${missingRequiredPaths.join("\n")}`,
+	);
+}
+const packageJsonInput: unknown = JSON.parse(
+	readFileSync("package.json", "utf8"),
+);
+const packageJson = z
+	.object({
+		dependencies: z.record(z.string(), z.string()).optional(),
+		devDependencies: z.record(z.string(), z.string()).optional(),
+	})
+	.parse(packageJsonInput);
+if (!packageJson.dependencies?.["@clack/prompts"]) {
+	throw new Error(
+		"@clack/prompts is imported by the public create CLI and must be listed in dependencies.",
+	);
+}
+if (packageJson.devDependencies?.["@clack/prompts"]) {
+	throw new Error(
+		"@clack/prompts must not be devDependency-only because the published create CLI imports it at runtime.",
+	);
+}
+assertPublicSmokeDocs("README.md", readFileSync("README.md", "utf8"));
+assertPublicSmokeDocs(
+	"src/cli/templates/provider/README.md.tpl",
+	readFileSync("src/cli/templates/provider/README.md.tpl", "utf8"),
+);
 console.log(`Packed artifact OK: ${first.filename}`);
 for (const filePath of filePaths) {
 	console.log(`  - ${filePath}`);
 }
+function assertPublicSmokeDocs(label: string, content: string): void {
+	if (!content.includes('"requestId":"req_local_ping"')) {
+		throw new Error(
+			`${label} must document the current provider server request envelope with requestId.`,
+		);
+	}
+	if (content.includes('"connection":null')) {
+		throw new Error(
+			`${label} must not tell public users to send connection:null; omit connection for no-auth operations.`,
+		);
+	}
+	if (!content.includes("bunx playwright install chromium")) {
+		throw new Error(
+			`${label} must include browser runtime troubleshooting for public SDK-only debugging.`,
+		);
+	}
+	if (!content.includes("impit")) {
+		throw new Error(
+			`${label} must include impit stealth runtime guidance for TLS/browser bounties.`,
+		);
+	}
+	if (!content.includes("submit-check")) {
+		throw new Error(
+			`${label} must document the submit-check pre-submission workflow.`,
+		);
+	}
+	if (
+		!content.includes('browser.engine: "playwright-stealth"') ||
+		!content.includes("nodriver")
+	) {
+		throw new Error(
+			`${label} must clarify that TypeScript browser providers use playwright-stealth and nodriver is not the TypeScript happy path.`,
+		);
+	}
+	if (
+		label.includes("templates/provider/README.md.tpl") &&
+		!content.includes("bun run record -- --operation <operation>")
+	) {
+		throw new Error(
+			`${label} must document fixture recording through a generated package script, not a shell-global apifuse command.`,
+		);
+	}
+}