@apitap/core 1.0.0

package/dist/capture/monitor.js

@@ -0,0 +1,183 @@
+// src/capture/monitor.ts
+import { chromium } from 'playwright';
+import { shouldCapture } from './filter.js';
+import { isDomainMatch } from './domain.js';
+import { SkillGenerator } from '../skill/generator.js';
+import { IdleTracker } from './idle.js';
+import { detectCaptcha } from '../auth/refresh.js';
+const DEFAULT_CDP_PORTS = [18792, 18800, 9222];
+async function connectToBrowser(options) {
+    if (!options.launch) {
+        const ports = options.port ? [options.port] : DEFAULT_CDP_PORTS;
+        for (const port of ports) {
+            try {
+                const browser = await chromium.connectOverCDP(`http://localhost:${port}`, { timeout: 3000 });
+                return { browser, launched: false };
+            }
+            catch {
+                continue;
+            }
+        }
+    }
+    if (options.attach) {
+        const ports = options.port ? [options.port] : DEFAULT_CDP_PORTS;
+        throw new Error(`No browser found on CDP ports: ${ports.join(', ')}. Is a Chromium browser running with remote debugging?`);
+    }
+    const browser = await chromium.launch({ headless: options.headless ?? (process.env.DISPLAY ? false : true) });
+    return { browser, launched: true };
+}
+export async function capture(options) {
+    const { browser, launched } = await connectToBrowser(options);
+    const generators = new Map();
+    let totalRequests = 0;
+    let filteredRequests = 0;
+    const captchaDetectedDomains = new Set();
+    // Extract target domain for domain-only filtering
+    const targetUrl = options.url;
+    const generatorOptions = {
+        enablePreview: options.enablePreview ?? false,
+        scrub: options.scrub ?? true,
+    };
+    // Idle tracking: only active during interactive capture (no --duration)
+    const idleTracker = !options.duration ? new IdleTracker() : null;
+    let idleInterval = null;
+    let page;
+    if (launched) {
+        const context = await browser.newContext();
+        page = await context.newPage();
+    }
+    else {
+        const contexts = browser.contexts();
+        if (contexts.length > 0 && contexts[0].pages().length > 0) {
+            page = contexts[0].pages()[0];
+        }
+        else {
+            const context = contexts[0] ?? await browser.newContext();
+            page = await context.newPage();
+        }
+    }
+    page.on('response', async (response) => {
+        totalRequests++;
+        const url = response.url();
+        const status = response.status();
+        const contentType = response.headers()['content-type'] ?? '';
+        // Domain-only filtering (before any other processing)
+        if (!options.allDomains) {
+            const hostname = safeHostname(url);
+            if (hostname && !isDomainMatch(hostname, targetUrl)) {
+                filteredRequests++;
+                options.onFiltered?.();
+                return;
+            }
+        }
+        if (!shouldCapture({ url, status, contentType })) {
+            filteredRequests++;
+            const hostname = safeHostname(url);
+            if (hostname) {
+                const gen = generators.get(hostname);
+                if (gen)
+                    gen.recordFiltered();
+            }
+            // Track network bytes from headers for filtered responses (browser cost measurement)
+            const contentLength = parseInt(response.headers()['content-length'] ?? '0', 10);
+            if (contentLength > 0) {
+                const filteredHostname = safeHostname(url);
+                if (filteredHostname && generators.has(filteredHostname)) {
+                    generators.get(filteredHostname).addNetworkBytes(contentLength);
+                }
+            }
+            options.onFiltered?.();
+            return;
+        }
+        try {
+            const body = await response.text();
+            const hostname = new URL(url).hostname;
+            // Check for captcha in HTML responses (v0.8 captcha risk detection)
+            if (contentType.includes('text/html') && detectCaptcha(body)) {
+                captchaDetectedDomains.add(hostname);
+            }
+            if (!generators.has(hostname)) {
+                generators.set(hostname, new SkillGenerator(generatorOptions));
+            }
+            const gen = generators.get(hostname);
+            const exchange = {
+                request: {
+                    url,
+                    method: response.request().method(),
+                    headers: response.request().headers(),
+                    postData: response.request().postData() ?? undefined,
+                },
+                response: {
+                    status,
+                    headers: response.headers(),
+                    body,
+                    contentType,
+                },
+                timestamp: new Date().toISOString(),
+            };
+            const endpoint = gen.addExchange(exchange);
+            if (endpoint) {
+                options.onEndpoint?.({ id: endpoint.id, method: endpoint.method, path: endpoint.path });
+                // Track for idle detection using parameterized key
+                if (idleTracker) {
+                    const paramKey = `${endpoint.method} ${endpoint.path}`;
+                    idleTracker.recordEndpoint(paramKey);
+                }
+            }
+        }
+        catch {
+            // Response body may not be available (e.g. redirects); skip silently
+        }
+    });
+    await page.goto(options.url, { waitUntil: 'domcontentloaded' });
+    // Start idle check interval (every 5s) for interactive capture
+    if (idleTracker && options.onIdle) {
+        idleInterval = setInterval(() => {
+            if (idleTracker.checkIdle()) {
+                options.onIdle();
+            }
+        }, 5000);
+    }
+    // Wait for duration or until interrupted
+    // SIGINT always resolves gracefully so skill files get written
+    if (options.duration) {
+        await new Promise(resolve => {
+            const timer = setTimeout(resolve, options.duration * 1000);
+            process.once('SIGINT', () => { clearTimeout(timer); resolve(); });
+        });
+    }
+    else {
+        await new Promise(resolve => {
+            process.once('SIGINT', resolve);
+        });
+    }
+    // Clean up idle interval
+    if (idleInterval)
+        clearInterval(idleInterval);
+    // Measure DOM size for browser cost comparison (v1.0)
+    let domBytes;
+    try {
+        const html = await page.content();
+        domBytes = html.length;
+    }
+    catch { /* page may have navigated away */ }
+    if (launched) {
+        await browser.close();
+    }
+    // Mark generators for domains where captcha was detected
+    for (const [hostname, gen] of generators) {
+        if (captchaDetectedDomains.has(hostname)) {
+            gen.setCaptchaRisk(true);
+        }
+    }
+    return { generators, totalRequests, filteredRequests, domBytes };
+}
+function safeHostname(url) {
+    try {
+        return new URL(url).hostname;
+    }
+    catch {
+        return null;
+    }
+}
+//# sourceMappingURL=monitor.js.map

package/dist/capture/monitor.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"monitor.js","sourceRoot":"","sources":["../../src/capture/monitor.ts"],"names":[],"mappings":"AAAA,yBAAyB;AACzB,OAAO,EAAE,QAAQ,EAA2B,MAAM,YAAY,CAAC;AAC/D,OAAO,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAC5C,OAAO,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAC5C,OAAO,EAAE,cAAc,EAAyB,MAAM,uBAAuB,CAAC;AAC9E,OAAO,EAAE,WAAW,EAAE,MAAM,WAAW,CAAC;AACxC,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AAyBnD,MAAM,iBAAiB,GAAG,CAAC,KAAK,EAAE,KAAK,EAAE,IAAI,CAAC,CAAC;AAE/C,KAAK,UAAU,gBAAgB,CAAC,OAAuB;IACrD,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC;QACpB,MAAM,KAAK,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,iBAAiB,CAAC;QAChE,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,IAAI,CAAC;gBACH,MAAM,OAAO,GAAG,MAAM,QAAQ,CAAC,cAAc,CAAC,oBAAoB,IAAI,EAAE,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC;gBAC7F,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC;YACtC,CAAC;YAAC,MAAM,CAAC;gBACP,SAAS;YACX,CAAC;QACH,CAAC;IACH,CAAC;IAED,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;QACnB,MAAM,KAAK,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,iBAAiB,CAAC;QAChE,MAAM,IAAI,KAAK,CAAC,kCAAkC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,wDAAwD,CAAC,CAAC;IAC9H,CAAC;IAED,MAAM,OAAO,GAAG,MAAM,QAAQ,CAAC,MAAM,CAAC,EAAE,QAAQ,EAAE,OAAO,CAAC,QAAQ,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAC9G,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;AACrC,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,OAAO,CAAC,OAAuB;IACnD,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,GAAG,MAAM,gBAAgB,CAAC,OAAO,CAAC,CAAC;IAC9D,MAAM,UAAU,GAAG,IAAI,GAAG,EAA0B,CAAC;IACrD,IAAI,aAAa,GAAG,CAAC,CAAC;IACtB,IAAI,gBAAgB,GAAG,CAAC,CAAC;IACzB,MAAM,sBAAsB,GAAG,IAAI,GAAG,EAAU,CAAC;IAEjD,kDAAkD;IAClD,MAAM,SAAS,GAAG,OAAO,CAAC,GAAG,CAAC;IAE9B,MAAM,gBAAgB,GAAqB;QACzC,aAAa,EAAE,OAAO,CAAC,aAAa,IAAI,KAAK;QAC7C,KAAK,EAAE,OAAO,CAAC,KAAK,IAAI,IAAI;KAC7B,CAAC;IAEF,wEAAwE;IACxE,MAAM,WAAW,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,IAAI,WAAW,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC;IACjE,IAAI,YAAY,GAA0C,IAAI,CAAC;IAE/D,IAAI,IAAU,CAAC;IACf,IAAI,QAAQ,EAAE,CAAC;QACb,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,UAAU,EAAE,CAAC;QAC3C,IAAI,GAAG,MAAM,OAAO,CAAC,OAAO,EAAE,CAAC;IACjC,CAAC;SAAM,CAAC;QACN,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,EAAE,CAAC;QACpC,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,IAAI,QAAQ,CAAC,CAAC,CAAC,CAAC,KAAK,EAAE,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC1D,IAAI,GAAG,QAAQ,CAAC,CAAC,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,CAAC;QAChC,CAAC;aAAM,CAAC;YACN,MAAM,OAAO,GAAG,QAAQ,CAAC,CAAC,CAAC,IAAI,MAAM,OAAO,CAAC,UAAU,EAAE,CAAC;YAC1D,IAAI,GAAG,MAAM,OAAO,CAAC,OAAO,EAAE,CAAC;QACjC,CAAC;IACH,CAAC;IAED,IAAI,CAAC,EAAE,CAAC,UAAU,EAAE,KAAK,EAAE,QAAQ,EAAE,EAAE;QACrC,aAAa,EAAE,CAAC;QAEhB,MAAM,GAAG,GAAG,QAAQ,CAAC,GAAG,EAAE,CAAC;QAC3B,MAAM,MAAM,GAAG,QAAQ,CAAC,MAAM,EAAE,CAAC;QACjC,MAAM,WAAW,GAAG,QAAQ,CAAC,OAAO,EAAE,CAAC,cAAc,CAAC,IAAI,EAAE,CAAC;QAE7D,sDAAsD;QACtD,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,CAAC;YACxB,MAAM,QAAQ,GAAG,YAAY,CAAC,GAAG,CAAC,CAAC;YACnC,IAAI,QAAQ,IAAI,CAAC,aAAa,CAAC,QAAQ,EAAE,SAAS,CAAC,EAAE,CAAC;gBACpD,gBAAgB,EAAE,CAAC;gBACnB,OAAO,CAAC,UAAU,EAAE,EAAE,CAAC;gBACvB,OAAO;YACT,CAAC;QACH,CAAC;QAED,IAAI,CAAC,aAAa,CAAC,EAAE,GAAG,EAAE,MAAM,EAAE,WAAW,EAAE,CAAC,EAAE,CAAC;YACjD,gBAAgB,EAAE,CAAC;YACnB,MAAM,QAAQ,GAAG,YAAY,CAAC,GAAG,CAAC,CAAC;YACnC,IAAI,QAAQ,EAAE,CAAC;gBACb,MAAM,GAAG,GAAG,UAAU,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;gBACrC,IAAI,GAAG;oBAAE,GAAG,CAAC,cAAc,EAAE,CAAC;YAChC,CAAC;YACD,qFAAqF;YACrF,MAAM,aAAa,GAAG,QAAQ,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,gBAAgB,CAAC,IAAI,GAAG,EAAE,EAAE,CAAC,CAAC;YAChF,IAAI,aAAa,GAAG,CAAC,EAAE,CAAC;gBACtB,MAAM,gBAAgB,GAAG,YAAY,CAAC,GAAG,CAAC,CAAC;gBAC3C,IAAI,gBAAgB,IAAI,UAAU,CAAC,GAAG,CAAC,gBAAgB,CAAC,EAAE,CAAC;oBACzD,UAAU,CAAC,GAAG,CAAC,gBAAgB,CAAE,CAAC,eAAe,CAAC,aAAa,CAAC,CAAC;gBACnE,CAAC;YACH,CAAC;YACD,OAAO,CAAC,UAAU,EAAE,EAAE,CAAC;YACvB,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YACnC,MAAM,QAAQ,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC;YAEvC,oEAAoE;YACpE,IAAI,WAAW,CAAC,QAAQ,CAAC,WAAW,CAAC,IAAI,aAAa,CAAC,IAAI,CAAC,EAAE,CAAC;gBAC7D,sBAAsB,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;YACvC,CAAC;YAED,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC9B,UAAU,CAAC,GAAG,CAAC,QAAQ,EAAE,IAAI,cAAc,CAAC,gBAAgB,CAAC,CAAC,CAAC;YACjE,CAAC;YACD,MAAM,GAAG,GAAG,UAAU,CAAC,GAAG,CAAC,QAAQ,CAAE,CAAC;YAEtC,MAAM,QAAQ,GAAqB;gBACjC,OAAO,EAAE;oBACP,GAAG;oBACH,MAAM,EAAE,QAAQ,CAAC,OAAO,EAAE,CAAC,MAAM,EAAE;oBACnC,OAAO,EAAE,QAAQ,CAAC,OAAO,EAAE,CAAC,OAAO,EAAE;oBACrC,QAAQ,EAAE,QAAQ,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE,IAAI,SAAS;iBACrD;gBACD,QAAQ,EAAE;oBACR,MAAM;oBACN,OAAO,EAAE,QAAQ,CAAC,OAAO,EAAE;oBAC3B,IAAI;oBACJ,WAAW;iBACZ;gBACD,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;aACpC,CAAC;YAEF,MAAM,QAAQ,GAAG,GAAG,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC;YAC3C,IAAI,QAAQ,EAAE,CAAC;gBACb,OAAO,CAAC,UAAU,EAAE,CAAC,EAAE,EAAE,EAAE,QAAQ,CAAC,EAAE,EAAE,MAAM,EAAE,QAAQ,CAAC,MAAM,EAAE,IAAI,EAAE,QAAQ,CAAC,IAAI,EAAE,CAAC,CAAC;gBAExF,mDAAmD;gBACnD,IAAI,WAAW,EAAE,CAAC;oBAChB,MAAM,QAAQ,GAAG,GAAG,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,IAAI,EAAE,CAAC;oBACvD,WAAW,CAAC,cAAc,CAAC,QAAQ,CAAC,CAAC;gBACvC,CAAC;YACH,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,qEAAqE;QACvE,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,MAAM,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,kBAAkB,EAAE,CAAC,CAAC;IAEhE,+DAA+D;IAC/D,IAAI,WAAW,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;QAClC,YAAY,GAAG,WAAW,CAAC,GAAG,EAAE;YAC9B,IAAI,WAAW,CAAC,SAAS,EAAE,EAAE,CAAC;gBAC5B,OAAO,CAAC,MAAO,EAAE,CAAC;YACpB,CAAC;QACH,CAAC,EAAE,IAAI,CAAC,CAAC;IACX,CAAC;IAED,yCAAyC;IACzC,+DAA+D;IAC/D,IAAI,OAAO,CAAC,QAAQ,EAAE,CAAC;QACrB,MAAM,IAAI,OAAO,CAAO,OAAO,CAAC,EAAE;YAChC,MAAM,KAAK,GAAG,UAAU,CAAC,OAAO,EAAE,OAAO,CAAC,QAAS,GAAG,IAAI,CAAC,CAAC;YAC5D,OAAO,CAAC,IAAI,CAAC,QAAQ,EAAE,GAAG,EAAE,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;QACpE,CAAC,CAAC,CAAC;IACL,CAAC;SAAM,CAAC;QACN,MAAM,IAAI,OAAO,CAAO,OAAO,CAAC,EAAE;YAChC,OAAO,CAAC,IAAI,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;QAClC,CAAC,CAAC,CAAC;IACL,CAAC;IAED,yBAAyB;IACzB,IAAI,YAAY;QAAE,aAAa,CAAC,YAAY,CAAC,CAAC;IAE9C,sDAAsD;IACtD,IAAI,QAA4B,CAAC;IACjC,IAAI,CAAC;QACH,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,OAAO,EAAE,CAAC;QAClC,QAAQ,GAAG,IAAI,CAAC,MAAM,CAAC;IACzB,CAAC;IAAC,MAAM,CAAC,CAAC,kCAAkC,CAAC,CAAC;IAE9C,IAAI,QAAQ,EAAE,CAAC;QACb,MAAM,OAAO,CAAC,KAAK,EAAE,CAAC;IACxB,CAAC;IAED,yDAAyD;IACzD,KAAK,MAAM,CAAC,QAAQ,EAAE,GAAG,CAAC,IAAI,UAAU,EAAE,CAAC;QACzC,IAAI,sBAAsB,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;YACzC,GAAG,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC;QAC3B,CAAC;IACH,CAAC;IAED,OAAO,EAAE,UAAU,EAAE,aAAa,EAAE,gBAAgB,EAAE,QAAQ,EAAE,CAAC;AACnE,CAAC;AAED,SAAS,YAAY,CAAC,GAAW;IAC/B,IAAI,CAAC;QACH,OAAO,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC;IAC/B,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC"}

package/dist/capture/oauth-detector.d.ts

@@ -0,0 +1,18 @@
+export interface OAuthInfo {
+    tokenEndpoint: string;
+    clientId: string;
+    grantType: 'refresh_token' | 'client_credentials';
+    scope?: string;
+    clientSecret?: string;
+}
+/**
+ * Detect OAuth2 token endpoint requests from captured traffic.
+ * Only recognizes refreshable flows (refresh_token, client_credentials).
+ * Ignores authorization_code (initial auth, not refreshable in isolation).
+ */
+export declare function isOAuthTokenRequest(req: {
+    url: string;
+    method: string;
+    headers: Record<string, string>;
+    postData?: string;
+}): OAuthInfo | null;

package/dist/capture/oauth-detector.js

@@ -0,0 +1,96 @@
+// src/capture/oauth-detector.ts
+/**
+ * Detect OAuth2 token endpoint requests from captured traffic.
+ * Only recognizes refreshable flows (refresh_token, client_credentials).
+ * Ignores authorization_code (initial auth, not refreshable in isolation).
+ */
+export function isOAuthTokenRequest(req) {
+    // Only POST requests
+    if (req.method.toUpperCase() !== 'POST')
+        return null;
+    // URL heuristic: must contain /token or /oauth
+    const urlLower = req.url.toLowerCase();
+    if (!urlLower.includes('/token') && !urlLower.includes('/oauth'))
+        return null;
+    if (!req.postData)
+        return null;
+    // Parse body — support URL-encoded and JSON
+    const params = parseBody(req.postData, req.headers['content-type'] ?? '');
+    if (!params)
+        return null;
+    const grantType = params.get('grant_type');
+    if (!grantType)
+        return null;
+    // Only refreshable flows
+    if (grantType !== 'refresh_token' && grantType !== 'client_credentials')
+        return null;
+    // Extract client_id — may also be in Basic auth header
+    let clientId = params.get('client_id') ?? '';
+    let clientSecret = params.get('client_secret');
+    if (!clientId) {
+        const basic = parseBasicAuth(req.headers['authorization'] ?? '');
+        if (basic) {
+            clientId = basic.username;
+            if (!clientSecret)
+                clientSecret = basic.password;
+        }
+    }
+    if (!clientId)
+        return null;
+    const result = {
+        tokenEndpoint: req.url.split('?')[0], // strip query params
+        clientId,
+        grantType: grantType,
+    };
+    const scope = params.get('scope');
+    if (scope)
+        result.scope = scope;
+    if (clientSecret)
+        result.clientSecret = clientSecret;
+    return result;
+}
+function parseBody(body, contentType) {
+    try {
+        if (contentType.includes('application/json')) {
+            const obj = JSON.parse(body);
+            if (typeof obj !== 'object' || obj === null)
+                return null;
+            const map = new Map();
+            for (const [k, v] of Object.entries(obj)) {
+                if (typeof v === 'string')
+                    map.set(k, v);
+            }
+            return map;
+        }
+        // Default: URL-encoded (+ is space in application/x-www-form-urlencoded)
+        const map = new Map();
+        const pairs = body.split('&');
+        for (const pair of pairs) {
+            const idx = pair.indexOf('=');
+            if (idx === -1)
+                continue;
+            const key = decodeURIComponent(pair.slice(0, idx).replace(/\+/g, ' '));
+            const val = decodeURIComponent(pair.slice(idx + 1).replace(/\+/g, ' '));
+            map.set(key, val);
+        }
+        return map.size > 0 ? map : null;
+    }
+    catch {
+        return null;
+    }
+}
+function parseBasicAuth(header) {
+    if (!header.startsWith('Basic '))
+        return null;
+    try {
+        const decoded = Buffer.from(header.slice(6), 'base64').toString('utf-8');
+        const idx = decoded.indexOf(':');
+        if (idx === -1)
+            return null;
+        return { username: decoded.slice(0, idx), password: decoded.slice(idx + 1) };
+    }
+    catch {
+        return null;
+    }
+}
+//# sourceMappingURL=oauth-detector.js.map

package/dist/capture/oauth-detector.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth-detector.js","sourceRoot":"","sources":["../../src/capture/oauth-detector.ts"],"names":[],"mappings":"AAAA,gCAAgC;AAUhC;;;;GAIG;AACH,MAAM,UAAU,mBAAmB,CAAC,GAKnC;IACC,qBAAqB;IACrB,IAAI,GAAG,CAAC,MAAM,CAAC,WAAW,EAAE,KAAK,MAAM;QAAE,OAAO,IAAI,CAAC;IAErD,+CAA+C;IAC/C,MAAM,QAAQ,GAAG,GAAG,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC;IACvC,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,QAAQ,CAAC;QAAE,OAAO,IAAI,CAAC;IAE9E,IAAI,CAAC,GAAG,CAAC,QAAQ;QAAE,OAAO,IAAI,CAAC;IAE/B,4CAA4C;IAC5C,MAAM,MAAM,GAAG,SAAS,CAAC,GAAG,CAAC,QAAQ,EAAE,GAAG,CAAC,OAAO,CAAC,cAAc,CAAC,IAAI,EAAE,CAAC,CAAC;IAC1E,IAAI,CAAC,MAAM;QAAE,OAAO,IAAI,CAAC;IAEzB,MAAM,SAAS,GAAG,MAAM,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;IAC3C,IAAI,CAAC,SAAS;QAAE,OAAO,IAAI,CAAC;IAE5B,yBAAyB;IACzB,IAAI,SAAS,KAAK,eAAe,IAAI,SAAS,KAAK,oBAAoB;QAAE,OAAO,IAAI,CAAC;IAErF,uDAAuD;IACvD,IAAI,QAAQ,GAAG,MAAM,CAAC,GAAG,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC;IAC7C,IAAI,YAAY,GAAG,MAAM,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC;IAE/C,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,MAAM,KAAK,GAAG,cAAc,CAAC,GAAG,CAAC,OAAO,CAAC,eAAe,CAAC,IAAI,EAAE,CAAC,CAAC;QACjE,IAAI,KAAK,EAAE,CAAC;YACV,QAAQ,GAAG,KAAK,CAAC,QAAQ,CAAC;YAC1B,IAAI,CAAC,YAAY;gBAAE,YAAY,GAAG,KAAK,CAAC,QAAQ,CAAC;QACnD,CAAC;IACH,CAAC;IAED,IAAI,CAAC,QAAQ;QAAE,OAAO,IAAI,CAAC;IAE3B,MAAM,MAAM,GAAc;QACxB,aAAa,EAAE,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAE,EAAE,qBAAqB;QAC5D,QAAQ;QACR,SAAS,EAAE,SAAmD;KAC/D,CAAC;IAEF,MAAM,KAAK,GAAG,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;IAClC,IAAI,KAAK;QAAE,MAAM,CAAC,KAAK,GAAG,KAAK,CAAC;IAChC,IAAI,YAAY;QAAE,MAAM,CAAC,YAAY,GAAG,YAAY,CAAC;IAErD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,SAAS,SAAS,CAAC,IAAY,EAAE,WAAmB;IAClD,IAAI,CAAC;QACH,IAAI,WAAW,CAAC,QAAQ,CAAC,kBAAkB,CAAC,EAAE,CAAC;YAC7C,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YAC7B,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,GAAG,KAAK,IAAI;gBAAE,OAAO,IAAI,CAAC;YACzD,MAAM,GAAG,GAAG,IAAI,GAAG,EAAkB,CAAC;YACtC,KAAK,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;gBACzC,IAAI,OAAO,CAAC,KAAK,QAAQ;oBAAE,GAAG,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;YAC3C,CAAC;YACD,OAAO,GAAG,CAAC;QACb,CAAC;QAED,yEAAyE;QACzE,MAAM,GAAG,GAAG,IAAI,GAAG,EAAkB,CAAC;QACtC,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAC9B,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;YAC9B,IAAI,GAAG,KAAK,CAAC,CAAC;gBAAE,SAAS;YACzB,MAAM,GAAG,GAAG,kBAAkB,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC,CAAC;YACvE,MAAM,GAAG,GAAG,kBAAkB,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC,CAAC;YACxE,GAAG,CAAC,GAAG,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;QACpB,CAAC;QACD,OAAO,GAAG,CAAC,IAAI,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC;IACnC,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED,SAAS,cAAc,CAAC,MAAc;IACpC,IAAI,CAAC,MAAM,CAAC,UAAU,CAAC,QAAQ,CAAC;QAAE,OAAO,IAAI,CAAC;IAC9C,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,QAAQ,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;QACzE,MAAM,GAAG,GAAG,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;QACjC,IAAI,GAAG,KAAK,CAAC,CAAC;YAAE,OAAO,IAAI,CAAC;QAC5B,OAAO,EAAE,QAAQ,EAAE,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,QAAQ,EAAE,OAAO,CAAC,KAAK,CAAC,GAAG,GAAG,CAAC,CAAC,EAAE,CAAC;IAC/E,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC"}

package/dist/capture/pagination.d.ts

@@ -0,0 +1,9 @@
+import type { PaginationInfo } from '../types.js';
+/**
+ * Detect pagination patterns from query parameters.
+ * Returns null if no pagination pattern is detected.
+ */
+export declare function detectPagination(queryParams: Record<string, {
+    type: string;
+    example: string;
+}>): PaginationInfo | null;

package/dist/capture/pagination.js

@@ -0,0 +1,40 @@
+const OFFSET_PARAMS = new Set(['offset', 'skip']);
+const CURSOR_PARAMS = new Set(['cursor', 'after', 'before', 'next_cursor', 'starting_after']);
+const PAGE_PARAMS = new Set(['page', 'p', 'page_number']);
+const LIMIT_PARAMS = new Set(['limit', 'per_page', 'page_size', 'count', 'size']);
+/**
+ * Detect pagination patterns from query parameters.
+ * Returns null if no pagination pattern is detected.
+ */
+export function detectPagination(queryParams) {
+    const paramNames = Object.keys(queryParams);
+    const limitParam = paramNames.find(p => LIMIT_PARAMS.has(p.toLowerCase()));
+    // Check offset-based (offset/skip + optional limit)
+    for (const name of paramNames) {
+        if (OFFSET_PARAMS.has(name.toLowerCase())) {
+            return {
+                type: 'offset',
+                paramName: name,
+                ...(limitParam ? { limitParam } : {}),
+            };
+        }
+    }
+    // Check cursor-based
+    for (const name of paramNames) {
+        if (CURSOR_PARAMS.has(name.toLowerCase())) {
+            return { type: 'cursor', paramName: name };
+        }
+    }
+    // Check page-based
+    for (const name of paramNames) {
+        if (PAGE_PARAMS.has(name.toLowerCase())) {
+            return {
+                type: 'page',
+                paramName: name,
+                ...(limitParam && limitParam !== name ? { limitParam } : {}),
+            };
+        }
+    }
+    return null;
+}
+//# sourceMappingURL=pagination.js.map

package/dist/capture/pagination.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"pagination.js","sourceRoot":"","sources":["../../src/capture/pagination.ts"],"names":[],"mappings":"AAGA,MAAM,aAAa,GAAG,IAAI,GAAG,CAAC,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC,CAAC;AAClD,MAAM,aAAa,GAAG,IAAI,GAAG,CAAC,CAAC,QAAQ,EAAE,OAAO,EAAE,QAAQ,EAAE,aAAa,EAAE,gBAAgB,CAAC,CAAC,CAAC;AAC9F,MAAM,WAAW,GAAG,IAAI,GAAG,CAAC,CAAC,MAAM,EAAE,GAAG,EAAE,aAAa,CAAC,CAAC,CAAC;AAC1D,MAAM,YAAY,GAAG,IAAI,GAAG,CAAC,CAAC,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,OAAO,EAAE,MAAM,CAAC,CAAC,CAAC;AAElF;;;GAGG;AACH,MAAM,UAAU,gBAAgB,CAC9B,WAA8D;IAE9D,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;IAC5C,MAAM,UAAU,GAAG,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC;IAE3E,oDAAoD;IACpD,KAAK,MAAM,IAAI,IAAI,UAAU,EAAE,CAAC;QAC9B,IAAI,aAAa,CAAC,GAAG,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;YAC1C,OAAO;gBACL,IAAI,EAAE,QAAQ;gBACd,SAAS,EAAE,IAAI;gBACf,GAAG,CAAC,UAAU,CAAC,CAAC,CAAC,EAAE,UAAU,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;aACtC,CAAC;QACJ,CAAC;IACH,CAAC;IAED,qBAAqB;IACrB,KAAK,MAAM,IAAI,IAAI,UAAU,EAAE,CAAC;QAC9B,IAAI,aAAa,CAAC,GAAG,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;YAC1C,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;QAC7C,CAAC;IACH,CAAC;IAED,mBAAmB;IACnB,KAAK,MAAM,IAAI,IAAI,UAAU,EAAE,CAAC;QAC9B,IAAI,WAAW,CAAC,GAAG,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;YACxC,OAAO;gBACL,IAAI,EAAE,MAAM;gBACZ,SAAS,EAAE,IAAI;gBACf,GAAG,CAAC,UAAU,IAAI,UAAU,KAAK,IAAI,CAAC,CAAC,CAAC,EAAE,UAAU,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;aAC7D,CAAC;QACJ,CAAC;IACH,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC"}

package/dist/capture/parameterize.d.ts

@@ -0,0 +1,17 @@
+/**
+ * Replace dynamic path segments with :param placeholders.
+ *
+ * Rules:
+ * - Pure numeric → :id
+ * - UUID → :id
+ * - 12+ alphanum with mixed letters+digits → :hash
+ * - Contains 8+ consecutive digits → :slug
+ */
+export declare function parameterizePath(path: string): string;
+/**
+ * Strip framework-specific path noise for clean endpoint IDs.
+ *
+ * - Strips /_next/data/<hash>/ prefix (Next.js data routes)
+ * - Strips .json suffix
+ */
+export declare function cleanFrameworkPath(path: string): string;

package/dist/capture/parameterize.js

@@ -0,0 +1,63 @@
+// src/capture/parameterize.ts
+const UUID_RE = /^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$/i;
+const PURE_NUMERIC_RE = /^\d+$/;
+const LONG_DIGITS_RE = /\d{8,}/;
+const NEXT_DATA_PREFIX_RE = /^\/_next\/data\/[^/]+\//;
+/**
+ * Check if a path segment is a dynamic value that should be parameterized.
+ * Returns the parameter name (:id, :hash, :slug) or null if static.
+ */
+function classifySegment(segment) {
+    // Pure numeric → :id
+    if (PURE_NUMERIC_RE.test(segment))
+        return ':id';
+    // UUID → :id
+    if (UUID_RE.test(segment))
+        return ':id';
+    // Slug with embedded long number (8+ consecutive digits) — check before hash
+    // because slugs like "btc-updown-15m-1770254100" would also match the hash rule
+    if (LONG_DIGITS_RE.test(segment)) {
+        return ':slug';
+    }
+    // Strip hyphens/underscores for character analysis
+    const stripped = segment.replace(/[-_]/g, '');
+    // Hash-like: 12+ alphanumeric chars with both letters and digits
+    if (stripped.length >= 12 && /[a-zA-Z]/.test(stripped) && /\d/.test(stripped)) {
+        return ':hash';
+    }
+    return null;
+}
+/**
+ * Replace dynamic path segments with :param placeholders.
+ *
+ * Rules:
+ * - Pure numeric → :id
+ * - UUID → :id
+ * - 12+ alphanum with mixed letters+digits → :hash
+ * - Contains 8+ consecutive digits → :slug
+ */
+export function parameterizePath(path) {
+    const segments = path.split('/');
+    const result = segments.map(seg => {
+        if (seg === '')
+            return seg;
+        return classifySegment(seg) ?? seg;
+    });
+    return result.join('/');
+}
+/**
+ * Strip framework-specific path noise for clean endpoint IDs.
+ *
+ * - Strips /_next/data/<hash>/ prefix (Next.js data routes)
+ * - Strips .json suffix
+ */
+export function cleanFrameworkPath(path) {
+    let cleaned = path;
+    // Strip _next/data/<hash>/ prefix
+    cleaned = cleaned.replace(NEXT_DATA_PREFIX_RE, '/');
+    // Strip .json suffix
+    cleaned = cleaned.replace(/\.json$/, '');
+    // Ensure we have at least /
+    return cleaned || '/';
+}
+//# sourceMappingURL=parameterize.js.map

package/dist/capture/parameterize.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"parameterize.js","sourceRoot":"","sources":["../../src/capture/parameterize.ts"],"names":[],"mappings":"AAAA,8BAA8B;AAE9B,MAAM,OAAO,GAAG,iEAAiE,CAAC;AAClF,MAAM,eAAe,GAAG,OAAO,CAAC;AAChC,MAAM,cAAc,GAAG,QAAQ,CAAC;AAChC,MAAM,mBAAmB,GAAG,yBAAyB,CAAC;AAEtD;;;GAGG;AACH,SAAS,eAAe,CAAC,OAAe;IACtC,qBAAqB;IACrB,IAAI,eAAe,CAAC,IAAI,CAAC,OAAO,CAAC;QAAE,OAAO,KAAK,CAAC;IAEhD,aAAa;IACb,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC;QAAE,OAAO,KAAK,CAAC;IAExC,6EAA6E;IAC7E,gFAAgF;IAChF,IAAI,cAAc,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;QACjC,OAAO,OAAO,CAAC;IACjB,CAAC;IAED,mDAAmD;IACnD,MAAM,QAAQ,GAAG,OAAO,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;IAE9C,iEAAiE;IACjE,IAAI,QAAQ,CAAC,MAAM,IAAI,EAAE,IAAI,UAAU,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC9E,OAAO,OAAO,CAAC;IACjB,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,gBAAgB,CAAC,IAAY;IAC3C,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IACjC,MAAM,MAAM,GAAG,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE;QAChC,IAAI,GAAG,KAAK,EAAE;YAAE,OAAO,GAAG,CAAC;QAC3B,OAAO,eAAe,CAAC,GAAG,CAAC,IAAI,GAAG,CAAC;IACrC,CAAC,CAAC,CAAC;IACH,OAAO,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAC1B,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,kBAAkB,CAAC,IAAY;IAC7C,IAAI,OAAO,GAAG,IAAI,CAAC;IACnB,kCAAkC;IAClC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,mBAAmB,EAAE,GAAG,CAAC,CAAC;IACpD,qBAAqB;IACrB,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC;IACzC,4BAA4B;IAC5B,OAAO,OAAO,IAAI,GAAG,CAAC;AACxB,CAAC"}

package/dist/capture/scrubber.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Scrub PII from a string. Returns the string with PII replaced by placeholders.
+ * Order matters: SSN before phone (SSN is more specific).
+ */
+export declare function scrubPII(input: string): string;

package/dist/capture/scrubber.js

@@ -0,0 +1,38 @@
+// src/capture/scrubber.ts
+// Email: standard pattern
+const EMAIL_RE = /[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}/g;
+// Phone (international): requires + prefix
+const PHONE_INTL_RE = /\+[1-9]\d{7,14}/g;
+// Phone (US): requires separators — (123) 456-7890 or 123-456-7890 or 123.456.7890
+const PHONE_US_RE = /\(\d{3}\)[-.\s]\d{3}[-.\s]\d{4}|\d{3}[-.\s]\d{3}[-.\s]\d{4}/g;
+// IPv4: four octets, each 0-255, validated programmatically
+const IPV4_RE = /\b(\d{1,3})\.(\d{1,3})\.(\d{1,3})\.(\d{1,3})\b/g;
+// Credit card: 16 digits with optional dashes or spaces every 4
+const CARD_RE = /\b\d{4}[- ]?\d{4}[- ]?\d{4}[- ]?\d{4}\b/g;
+// US SSN: 123-45-6789
+const SSN_RE = /\b\d{3}-\d{2}-\d{4}\b/g;
+/**
+ * Scrub PII from a string. Returns the string with PII replaced by placeholders.
+ * Order matters: SSN before phone (SSN is more specific).
+ */
+export function scrubPII(input) {
+    let result = input;
+    // Email first (most distinctive pattern)
+    result = result.replace(EMAIL_RE, '[email]');
+    // SSN before phone (SSN pattern 123-45-6789 could be confused)
+    result = result.replace(SSN_RE, '[ssn]');
+    // Credit cards
+    result = result.replace(CARD_RE, '[card]');
+    // IPv4 with octet validation
+    result = result.replace(IPV4_RE, (_match, o1, o2, o3, o4) => {
+        const octets = [o1, o2, o3, o4].map(Number);
+        if (octets.every(o => o <= 255))
+            return '[ip]';
+        return _match;
+    });
+    // Phone (international, then US)
+    result = result.replace(PHONE_INTL_RE, '[phone]');
+    result = result.replace(PHONE_US_RE, '[phone]');
+    return result;
+}
+//# sourceMappingURL=scrubber.js.map

package/dist/capture/scrubber.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"scrubber.js","sourceRoot":"","sources":["../../src/capture/scrubber.ts"],"names":[],"mappings":"AAAA,0BAA0B;AAE1B,0BAA0B;AAC1B,MAAM,QAAQ,GAAG,iDAAiD,CAAC;AAEnE,2CAA2C;AAC3C,MAAM,aAAa,GAAG,kBAAkB,CAAC;AAEzC,mFAAmF;AACnF,MAAM,WAAW,GAAG,8DAA8D,CAAC;AAEnF,4DAA4D;AAC5D,MAAM,OAAO,GAAG,iDAAiD,CAAC;AAElE,gEAAgE;AAChE,MAAM,OAAO,GAAG,0CAA0C,CAAC;AAE3D,sBAAsB;AACtB,MAAM,MAAM,GAAG,wBAAwB,CAAC;AAExC;;;GAGG;AACH,MAAM,UAAU,QAAQ,CAAC,KAAa;IACpC,IAAI,MAAM,GAAG,KAAK,CAAC;IAEnB,yCAAyC;IACzC,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;IAE7C,+DAA+D;IAC/D,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAEzC,eAAe;IACf,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;IAE3C,6BAA6B;IAC7B,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC,MAAM,EAAE,EAAE,EAAE,EAAE,EAAE,EAAE,EAAE,EAAE,EAAE,EAAE;QAC1D,MAAM,MAAM,GAAG,CAAC,EAAE,EAAE,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QAC5C,IAAI,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,GAAG,CAAC;YAAE,OAAO,MAAM,CAAC;QAC/C,OAAO,MAAM,CAAC;IAChB,CAAC,CAAC,CAAC;IAEH,iCAAiC;IACjC,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,aAAa,EAAE,SAAS,CAAC,CAAC;IAClD,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC;IAEhD,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/capture/session.d.ts

@@ -0,0 +1,46 @@
+import type { PageSnapshot, InteractionResult, FinishResult } from '../types.js';
+export interface SessionOptions {
+    headless?: boolean;
+    allDomains?: boolean;
+    timeoutMs?: number;
+    skillsDir?: string;
+    authDir?: string;
+}
+export declare class CaptureSession {
+    readonly id: string;
+    private browser;
+    private page;
+    private generators;
+    private totalRequests;
+    private filteredRequests;
+    private targetUrl;
+    private options;
+    private captchaDetectedDomains;
+    private recentEndpoints;
+    private timeoutTimer;
+    private expired;
+    private closed;
+    constructor(options?: SessionOptions);
+    start(url: string): Promise<PageSnapshot>;
+    interact(action: InteractionAction): Promise<InteractionResult>;
+    finish(): Promise<FinishResult>;
+    abort(): Promise<void>;
+    /** Whether session has been terminated (expired, closed, or aborted) */
+    get isActive(): boolean;
+    private setupResponseListener;
+    private takeSnapshot;
+    private extractElements;
+    private resolveRef;
+    private emptySnapshot;
+    private cleanup;
+}
+export interface InteractionAction {
+    action: 'snapshot' | 'click' | 'type' | 'select' | 'navigate' | 'scroll' | 'wait';
+    ref?: string;
+    text?: string;
+    value?: string;
+    url?: string;
+    direction?: 'up' | 'down';
+    seconds?: number;
+    submit?: boolean;
+}