@askalf/dario 3.30.7 → 3.30.9

package/README.md

@@ -443,12 +443,102 @@ const msg = await client.messages.create({
 
 ### OpenAI-compatible tools (Cursor, Continue, Aider, LiteLLM, …)
 
+Any tool that accepts an OpenAI-compatible base URL + API key works with dario. The universal env-var setup:
+
 ```bash
 export OPENAI_BASE_URL=http://localhost:3456/v1
 export OPENAI_API_KEY=dario
 ```
 
-Any tool that accepts an OpenAI base URL works. Use Claude model names (`claude-opus-4-7`, `opus`, `sonnet`, `haiku`) for the Claude backend, or GPT-family names for the configured OpenAI-compat backend.
+Use Claude model names (`claude-opus-4-7`, `claude-sonnet-4-6`, `claude-haiku-4-5`, or shortcuts `opus` / `sonnet` / `haiku`) for the Claude subscription backend, or GPT-family / Llama / any-other-model names for your configured OpenAI-compat backends.
+
+Some tools use env vars (above works as-is); others want settings-UI entries:
+
+#### Cursor
+
+1. **Cmd/Ctrl + ,** to open Settings → **Models**
+2. Under the **OpenAI API Key** section:
+   - Check **Override OpenAI Base URL**: `http://localhost:3456/v1`
+   - API key: `dario`
+3. Under the **Model Names** section (or the Add Model button):
+   - Add `claude-sonnet-4-6`
+   - Add `claude-opus-4-7` (premium)
+   - Add `claude-haiku-4-5` (cheap)
+4. Select one of the new models in the chat input's model picker.
+
+Cursor now routes those model names through dario → your Claude Max / Pro subscription. `gpt-*` and `o*` model names still route through Cursor's default OpenAI path — dario doesn't interfere with non-Claude traffic unless you point Cursor's base URL at it exclusively.
+
+#### Continue.dev
+
+In `~/.continue/config.yaml` (or the Continue settings UI, which edits the same file):
+
+```yaml
+models:
+  - name: Claude Sonnet (dario)
+    provider: anthropic
+    model: claude-sonnet-4-6
+    apiBase: http://localhost:3456
+    apiKey: dario
+  - name: Claude Opus (dario)
+    provider: anthropic
+    model: claude-opus-4-7
+    apiBase: http://localhost:3456
+    apiKey: dario
+```
+
+`provider: anthropic` + `apiBase: http://localhost:3456` points Continue's Anthropic SDK path at dario instead of `api.anthropic.com`. dario runs the full Claude Code wire replay on the outbound path.
+
+#### Aider
+
+```bash
+export ANTHROPIC_BASE_URL=http://localhost:3456
+export ANTHROPIC_API_KEY=dario
+aider --model sonnet
+```
+
+Aider's Anthropic path honors `ANTHROPIC_BASE_URL` directly. `--model opus`, `--model haiku`, or any explicit `claude-*` model name works.
+
+#### Cline / Roo Code / Kilo Code
+
+Cline and its forks use a UI-based "API Provider" dropdown. Pick **Anthropic** as the provider and fill in:
+
+- **API Key**: `dario`
+- **Anthropic Base URL**: `http://localhost:3456`
+- **Model**: `claude-sonnet-4-6` / `claude-opus-4-7` / `claude-haiku-4-5`
+
+Cline's tool-invocation protocol is XML-based (`<execute_command>`, `<write_to_file>`, etc.), not Anthropic's tool-use format. Dario auto-detects Cline-family clients via system-prompt fingerprint and flips into preserve-tools mode automatically — Cline's own tool schema passes through to Anthropic, your commands route back to Cline's parser. No flag required. Override: `--no-auto-detect` if you'd rather force the CC fingerprint and deal with the parser mismatch yourself (see [Agent compatibility](#agent-compatibility)).
+
+#### Zed
+
+Zed's Anthropic provider config (`~/.config/zed/settings.json` or Cmd/Ctrl+,):
+
+```json
+{
+  "language_models": {
+    "anthropic": {
+      "api_url": "http://localhost:3456",
+      "version": "2023-06-01"
+    }
+  }
+}
+```
+
+Set the `ANTHROPIC_API_KEY` env var to `dario` before launching Zed. Model picker then shows Claude models routed through your subscription.
+
+#### OpenHands
+
+```bash
+export LLM_BASE_URL=http://localhost:3456
+export LLM_API_KEY=dario
+export LLM_MODEL=anthropic/claude-sonnet-4-6
+python -m openhands.core.main -t "task description"
+```
+
+Prefix the model with `anthropic/` so LiteLLM (OpenHands' inner routing layer) knows to hit the Anthropic path, which dario is now fronting.
+
+#### Everything else
+
+If your tool isn't listed, check whether it reads `OPENAI_BASE_URL` / `ANTHROPIC_BASE_URL` from the environment. Most do. For tools that don't, look in their settings for "Base URL" / "API URL" / "Endpoint" / "OpenAI-compatible endpoint" — all of those map to dario's `http://localhost:3456` (Anthropic-protocol) or `http://localhost:3456/v1` (OpenAI-protocol). If the tool only accepts `https://`, you'll need a loopback TLS shim (out of scope here — open an issue if you need one for a specific tool).
 
 ### curl
 

package/dist/cli.d.ts

@@ -9,6 +9,20 @@
  *   dario refresh   — Force token refresh
  *   dario logout    — Remove saved credentials
  */
+/**
+ * Parse a positive-integer env var. Returns undefined on unset, empty,
+ * non-numeric, or non-positive values so the caller's default applies.
+ * Sibling of parsePositiveIntFlag; exported for tests + used by the
+ * dario#80 queue env mirrors.
+ */
+export declare function parsePositiveIntEnv(value: string | undefined): number | undefined;
+/**
+ * Parse a boolean env var. Accepts "1", "true", "yes", "on" (case-insensitive)
+ * as truthy; everything else (including unset) is undefined/false. Exported
+ * for tests. Used by dario#77 DARIO_STRICT_TEMPLATE / DARIO_NO_LIVE_CAPTURE
+ * and any future boolean env mirror.
+ */
+export declare function parseBooleanEnv(value: string | undefined): boolean | undefined;
 /**
  * Parse --preserve-orchestration-tags (bare or =value) + env mirror.
  * Exported for tests.

package/dist/cli.js

@@ -236,6 +236,30 @@ async function proxy() {
     //   DARIO_PRESERVE_ORCHESTRATION_TAGS=*           (preserve all)
     //   DARIO_PRESERVE_ORCHESTRATION_TAGS=thinking,env (preserve listed)
     const preserveOrchestrationTags = resolvePreserveOrchestrationTags(args, process.env['DARIO_PRESERVE_ORCHESTRATION_TAGS']);
+    // --no-live-capture / --strict-template — template fail-closed knobs.
+    // Convergent push-back from Grok + GPT in reviews/: drift resilience
+    // should be opt-in-verifiable, not silently best-effort. dario#77.
+    //   --no-live-capture   → skip the background CC capture entirely, use
+    //                         the bundled snapshot; for air-gapped / CI.
+    //   --strict-template   → refuse to start if the loaded template is
+    //                         bundled (no live capture) or drifted from
+    //                         the installed CC; same shape as --strict-tls.
+    const noLiveCapture = args.includes('--no-live-capture')
+        || parseBooleanEnv(process.env['DARIO_NO_LIVE_CAPTURE'])
+        || undefined;
+    const strictTemplate = args.includes('--strict-template')
+        || parseBooleanEnv(process.env['DARIO_STRICT_TEMPLATE'])
+        || undefined;
+    // --max-concurrent=N / --max-queued=N / --queue-timeout=MS — bounded
+    // request queue knobs (dario#80). Defaults preserve v3.30.x-and-earlier
+    // behaviour for typical single-user workloads; tune up for high-fan-out
+    // agent setups that otherwise hit dario-level 429s before upstream.
+    const maxConcurrent = parsePositiveIntFlag('--max-concurrent=')
+        ?? parsePositiveIntEnv(process.env['DARIO_MAX_CONCURRENT']);
+    const maxQueued = parsePositiveIntFlag('--max-queued=')
+        ?? parsePositiveIntEnv(process.env['DARIO_MAX_QUEUED']);
+    const queueTimeoutMs = parsePositiveIntFlag('--queue-timeout=')
+        ?? parsePositiveIntEnv(process.env['DARIO_QUEUE_TIMEOUT_MS']);
     // Non-loopback bind without DARIO_API_KEY turns dario into an open
     // OAuth-subscription relay for anyone on the reachable network. Refuse
     // to start rather than rely on the operator to read the startup banner.
@@ -255,7 +279,35 @@ async function proxy() {
         console.error(`[dario] Override (not recommended): pass --unsafe-no-auth if you have out-of-band network controls and accept the risk.`);
         process.exit(1);
     }
-    await startProxy({ port, host, verbose, verboseBodies, model, passthrough, preserveTools, hybridTools, noAutoDetect, strictTls, pacingMinMs, pacingJitterMs, drainOnClose, sessionIdleRotateMs, sessionRotateJitterMs, sessionMaxAgeMs, sessionPerClient, preserveOrchestrationTags });
+    await startProxy({ port, host, verbose, verboseBodies, model, passthrough, preserveTools, hybridTools, noAutoDetect, strictTls, pacingMinMs, pacingJitterMs, drainOnClose, sessionIdleRotateMs, sessionRotateJitterMs, sessionMaxAgeMs, sessionPerClient, preserveOrchestrationTags, noLiveCapture, strictTemplate, maxConcurrent, maxQueued, queueTimeoutMs });
+}
+/**
+ * Parse a positive-integer env var. Returns undefined on unset, empty,
+ * non-numeric, or non-positive values so the caller's default applies.
+ * Sibling of parsePositiveIntFlag; exported for tests + used by the
+ * dario#80 queue env mirrors.
+ */
+export function parsePositiveIntEnv(value) {
+    if (value === undefined || value === '')
+        return undefined;
+    const n = Number.parseInt(value.trim(), 10);
+    if (!Number.isFinite(n) || n <= 0)
+        return undefined;
+    return n;
+}
+/**
+ * Parse a boolean env var. Accepts "1", "true", "yes", "on" (case-insensitive)
+ * as truthy; everything else (including unset) is undefined/false. Exported
+ * for tests. Used by dario#77 DARIO_STRICT_TEMPLATE / DARIO_NO_LIVE_CAPTURE
+ * and any future boolean env mirror.
+ */
+export function parseBooleanEnv(value) {
+    if (value === undefined)
+        return undefined;
+    const normalized = value.trim().toLowerCase();
+    if (normalized === '1' || normalized === 'true' || normalized === 'yes' || normalized === 'on')
+        return true;
+    return undefined;
 }
 /**
  * Parse --preserve-orchestration-tags (bare or =value) + env mirror.
@@ -605,7 +657,31 @@ async function help() {
                              stripped. Default: strip every tag in
                              ORCHESTRATION_TAG_NAMES. Env mirror:
                              DARIO_PRESERVE_ORCHESTRATION_TAGS=*
-                             or =tag1,tag2. (v3.31, dario#78)
+                             or =tag1,tag2. (v3.30.7, dario#78)
+    --no-live-capture        Skip the background live-fingerprint
+                             refresh entirely. dario uses the bundled
+                             snapshot and will NOT spawn the installed
+                             Claude Code binary. For air-gapped /
+                             reproducible-build / CI-harness runs.
+                             Env: DARIO_NO_LIVE_CAPTURE=1.
+                             (v3.30.8, dario#77)
+    --strict-template        Refuse to start if the loaded template
+                             is the bundled snapshot (no live capture
+                             ever succeeded) or drifts from the
+                             installed CC version. Same philosophy
+                             as --strict-tls: make the unsafe state
+                             require intent. Env: DARIO_STRICT_TEMPLATE=1.
+                             (v3.30.8, dario#77)
+    --max-concurrent=N       Max in-flight requests (default: 10).
+                             Env: DARIO_MAX_CONCURRENT. (dario#80)
+    --max-queued=N           Max requests buffered waiting for a
+                             concurrency slot before dario returns
+                             429 "queue-full" (default: 128).
+                             Env: DARIO_MAX_QUEUED. (dario#80)
+    --queue-timeout=MS       Max ms a queued request waits before
+                             dario returns 504 "queue-timeout"
+                             (default: 60000).
+                             Env: DARIO_QUEUE_TIMEOUT_MS. (dario#80)
     --port=PORT              Port to listen on (default: 3456)
     --host=ADDRESS           Address to bind to (default: 127.0.0.1)
                              Use 0.0.0.0 for LAN; see README for DARIO_API_KEY

package/dist/proxy.d.ts

@@ -50,6 +50,27 @@ interface ProxyOptions {
      * Set(['thinking','env']) = strip everything except those two. dario#78.
      */
     preserveOrchestrationTags?: Set<string>;
+    /**
+     * Skip the background live-fingerprint refresh entirely. Use the bundled
+     * snapshot even when a live capture would have been possible. For
+     * air-gapped / reproducible-build / CI-harness operators who want no
+     * subprocess capture of the installed CC binary. dario#77.
+     */
+    noLiveCapture?: boolean;
+    /**
+     * Fail-closed mode for the template. If the loaded template is the
+     * bundled snapshot (live capture has never been run or failed), or if
+     * it's a live cache that drifts from the installed CC, refuse to start
+     * rather than silently serve the stale shape. Same philosophy as
+     * --strict-tls. dario#77.
+     */
+    strictTemplate?: boolean;
+    /** Max concurrent in-flight requests. Default 10. dario#80. */
+    maxConcurrent?: number;
+    /** Max requests buffered waiting for a concurrency slot. Default 128. dario#80. */
+    maxQueued?: number;
+    /** Max ms a queued request waits before it times out with 504. Default 60000. dario#80. */
+    queueTimeoutMs?: number;
 }
 export declare function sanitizeError(err: unknown): string;
 /**

package/dist/proxy.js

@@ -12,12 +12,12 @@ import { AccountPool, computeStickyKey, parseRateLimits } from './pool.js';
 import { Analytics, billingBucketFromClaim } from './analytics.js';
 import { loadAllAccounts, loadAccount, refreshAccountToken } from './accounts.js';
 import { getOpenAIBackend, isOpenAIModel, forwardToOpenAI } from './openai-backend.js';
+import { RequestQueue, QueueFullError, QueueTimeoutError, DEFAULT_MAX_CONCURRENT, DEFAULT_MAX_QUEUED, DEFAULT_QUEUE_TIMEOUT_MS } from './request-queue.js';
 const ANTHROPIC_API = 'https://api.anthropic.com';
 const DEFAULT_PORT = 3456;
 const MAX_BODY_BYTES = 10 * 1024 * 1024; // 10 MB — generous for large prompts, prevents abuse
 const UPSTREAM_TIMEOUT_MS = 300_000; // 5 min — matches Anthropic SDK default
 const BODY_READ_TIMEOUT_MS = 30_000; // 30s — prevents slow-loris on body reads
-const MAX_CONCURRENT = 10; // Max concurrent upstream requests
 const DEFAULT_HOST = '127.0.0.1';
 // A host is "loopback" if it's one of the well-known localhost literals.
 // Used to decide whether to warn at startup about binding to a reachable
@@ -28,28 +28,8 @@ function isLoopbackHost(host) {
         return true;
     return host.startsWith('127.');
 }
-// Simple semaphore for concurrency control
-class Semaphore {
-    max;
-    queue = [];
-    active = 0;
-    constructor(max) {
-        this.max = max;
-    }
-    async acquire() {
-        if (this.active < this.max) {
-            this.active++;
-            return;
-        }
-        return new Promise(resolve => { this.queue.push(() => { this.active++; resolve(); }); });
-    }
-    release() {
-        this.active--;
-        const next = this.queue.shift();
-        if (next)
-            next();
-    }
-}
+// Concurrency control: see src/request-queue.ts for the bounded queue
+// (replaced the v3.30.x-and-earlier simple unbounded semaphore in dario#80).
 // Billing tag hash seed — matches Claude Code's value
 const BILLING_SEED = '59cf53e54c78';
 // Compute per-request build tag:
@@ -572,7 +552,11 @@ export async function startProxy(opts = {}) {
         }
     }
     let requestCount = 0;
-    const semaphore = new Semaphore(MAX_CONCURRENT);
+    const queue = new RequestQueue({
+        maxConcurrent: opts.maxConcurrent ?? DEFAULT_MAX_CONCURRENT,
+        maxQueued: opts.maxQueued ?? DEFAULT_MAX_QUEUED,
+        queueTimeoutMs: opts.queueTimeoutMs ?? DEFAULT_QUEUE_TIMEOUT_MS,
+    });
     // Cache context-1m beta availability. Set false once per account (or process
     // in single-account mode) after the first "long context" rejection, so we
     // skip sending context-1m on every subsequent request instead of paying the
@@ -771,8 +755,38 @@ export async function startProxy(opts = {}) {
             res.end(ERR_METHOD);
             return;
         }
-        // Proxy to Anthropic (with concurrency control)
-        await semaphore.acquire();
+        // Proxy to Anthropic (with concurrency control). The bounded queue
+        // replaces the v3.30.x-and-earlier unbounded semaphore — dario#80. A
+        // queue-full condition returns an explicit 429 with a `"queue-full"`
+        // marker in the body; a queue-timeout returns 504 with `"queue-timeout"`.
+        try {
+            await queue.acquire();
+        }
+        catch (err) {
+            if (err instanceof QueueFullError) {
+                res.writeHead(429, JSON_HEADERS);
+                res.end(JSON.stringify({
+                    type: 'error',
+                    error: {
+                        type: 'rate_limit_error',
+                        message: `dario queue full — ${queue.maxConcurrent} concurrent + ${queue.maxQueued} queued already in flight. Tune --max-concurrent / --max-queued, or reduce client-side concurrency. (dario#80)`,
+                    },
+                }));
+                return;
+            }
+            if (err instanceof QueueTimeoutError) {
+                res.writeHead(504, JSON_HEADERS);
+                res.end(JSON.stringify({
+                    type: 'error',
+                    error: {
+                        type: 'timeout_error',
+                        message: `dario queue timeout — request waited longer than ${queue.queueTimeoutMs}ms for a concurrency slot. Tune --queue-timeout, or reduce client-side concurrency. (dario#80)`,
+                    },
+                }));
+                return;
+            }
+            throw err;
+        }
         // Hoisted so the finally block can clean up whatever was set.
         let upstreamTimeout = null;
         let onClientClose = null;
@@ -1617,7 +1631,7 @@ export async function startProxy(opts = {}) {
                 clearTimeout(upstreamTimeout);
             if (onClientClose !== null)
                 req.off('close', onClientClose);
-            semaphore.release();
+            queue.release();
         }
     });
     server.on('error', (err) => {
@@ -1640,6 +1654,23 @@ export async function startProxy(opts = {}) {
     if (drift.drifted) {
         console.log(`[dario] ⚠  template drift: ${drift.message}`);
     }
+    // Strict-template fail-closed mode. Template must be from a live capture
+    // (not the bundled snapshot) and must not have drifted from the installed
+    // CC. Operator opts in via --strict-template / DARIO_STRICT_TEMPLATE=1.
+    // Same philosophy as --strict-tls: make the unsafe state require intent.
+    // dario#77.
+    if (opts.strictTemplate) {
+        if (CC_TEMPLATE._source === 'bundled') {
+            console.error(`[dario] Refusing to start proxy in --strict-template mode: template source is 'bundled' (no live capture available).`);
+            console.error(`[dario] Fix: run \`claude --print hello\` once so dario can capture the live template, then retry. Or drop --strict-template if the bundled fingerprint is acceptable for this run.`);
+            process.exit(1);
+        }
+        if (drift.drifted) {
+            console.error(`[dario] Refusing to start proxy in --strict-template mode: template drift detected (${drift.message}).`);
+            console.error(`[dario] Fix: rm ~/.dario/cc-template.live.json and retry (the next capture will be against your current CC), or drop --strict-template if the drift is acceptable.`);
+            process.exit(1);
+        }
+    }
     // Compat check: is the installed CC inside the range this dario
     // release has been tested against? Only log when non-OK so the happy
     // path stays quiet. `unknown` (no CC on PATH) is also quiet — bundled
@@ -1661,7 +1692,16 @@ export async function startProxy(opts = {}) {
     // user's own CC binary request shape and updates ~/.dario/cc-template.live.json
     // for the next startup. No-op if CC isn't installed or the cache is fresh.
     // Never blocks proxy startup; never throws.
-    void import('./live-fingerprint.js').then(({ refreshLiveFingerprintAsync }) => refreshLiveFingerprintAsync({ silent: false, force: drift.drifted }).catch(() => { }));
+    //
+    // Skipped entirely under --no-live-capture / DARIO_NO_LIVE_CAPTURE=1 —
+    // the operator has opted into a bundled-only shape (air-gapped runs,
+    // reproducible-build CI, deliberate pinning). dario#77.
+    if (!opts.noLiveCapture) {
+        void import('./live-fingerprint.js').then(({ refreshLiveFingerprintAsync }) => refreshLiveFingerprintAsync({ silent: false, force: drift.drifted }).catch(() => { }));
+    }
+    else {
+        console.log('[dario] --no-live-capture: background live fingerprint refresh skipped; using bundled template.');
+    }
     server.listen(port, host, () => {
         const modeLine = passthrough
             ? 'Mode: passthrough (OAuth swap only, no injection)'

package/dist/request-queue.d.ts

@@ -0,0 +1,75 @@
+/**
+ * Bounded request queue — replaces the simple in-process semaphore so that
+ * overload conditions are visible and tunable instead of silently queuing
+ * unbounded or rejecting with generic 429s before upstream had a chance.
+ *
+ * Three knobs:
+ *   - maxConcurrent : in-flight requests allowed at once (default 10)
+ *   - maxQueued     : buffered requests waiting for a concurrency slot
+ *                     (default 128); beyond this, the queue is "full" and
+ *                     admission is rejected with a clear 429 body.
+ *   - queueTimeoutMs: how long a queued request waits before it 504s with
+ *                     a "queue-timeout" reason (default 60_000).
+ *
+ * Behaviour:
+ *   - active < maxConcurrent → admit immediately
+ *   - else, queued < maxQueued → enqueue
+ *   - else → reject with `queue-full`
+ *   - queued > queueTimeoutMs → reject with `queue-timeout`
+ *
+ * The decision logic is split out as a pure `decideAdmit(state)` function so
+ * tests can exercise all three branches without side effects or timers.
+ *
+ * dario#80 (Gemini review push-back).
+ */
+export interface QueueState {
+    active: number;
+    queued: number;
+    maxConcurrent: number;
+    maxQueued: number;
+}
+export type AdmitDecision = {
+    action: 'admit';
+} | {
+    action: 'enqueue';
+} | {
+    action: 'reject';
+    reason: 'queue-full';
+};
+/** Pure admission decision — no side effects, no clock dep. */
+export declare function decideAdmit(state: QueueState): AdmitDecision;
+/** Pure timeout check — separated so tests can pass an explicit clock. */
+export declare function isQueueEntryExpired(enqueuedAt: number, now: number, timeoutMs: number): boolean;
+export declare class QueueFullError extends Error {
+    constructor();
+}
+export declare class QueueTimeoutError extends Error {
+    constructor();
+}
+export interface RequestQueueOptions {
+    maxConcurrent?: number;
+    maxQueued?: number;
+    queueTimeoutMs?: number;
+}
+export declare const DEFAULT_MAX_CONCURRENT = 10;
+export declare const DEFAULT_MAX_QUEUED = 128;
+export declare const DEFAULT_QUEUE_TIMEOUT_MS = 60000;
+export declare class RequestQueue {
+    readonly maxConcurrent: number;
+    readonly maxQueued: number;
+    readonly queueTimeoutMs: number;
+    private active;
+    private queue;
+    constructor(opts?: RequestQueueOptions);
+    /**
+     * Acquire a concurrency slot. Resolves when admitted; throws
+     * `QueueFullError` when the queue is at its `maxQueued` cap, throws
+     * `QueueTimeoutError` when a queued request waited longer than
+     * `queueTimeoutMs`.
+     */
+    acquire(): Promise<void>;
+    /** Release a slot. The next queued entry (if any) is admitted in FIFO order. */
+    release(): void;
+    /** Snapshot of queue state — exposed for /analytics + tests. */
+    snapshot(): QueueState;
+}

package/dist/request-queue.js

@@ -0,0 +1,108 @@
+/**
+ * Bounded request queue — replaces the simple in-process semaphore so that
+ * overload conditions are visible and tunable instead of silently queuing
+ * unbounded or rejecting with generic 429s before upstream had a chance.
+ *
+ * Three knobs:
+ *   - maxConcurrent : in-flight requests allowed at once (default 10)
+ *   - maxQueued     : buffered requests waiting for a concurrency slot
+ *                     (default 128); beyond this, the queue is "full" and
+ *                     admission is rejected with a clear 429 body.
+ *   - queueTimeoutMs: how long a queued request waits before it 504s with
+ *                     a "queue-timeout" reason (default 60_000).
+ *
+ * Behaviour:
+ *   - active < maxConcurrent → admit immediately
+ *   - else, queued < maxQueued → enqueue
+ *   - else → reject with `queue-full`
+ *   - queued > queueTimeoutMs → reject with `queue-timeout`
+ *
+ * The decision logic is split out as a pure `decideAdmit(state)` function so
+ * tests can exercise all three branches without side effects or timers.
+ *
+ * dario#80 (Gemini review push-back).
+ */
+/** Pure admission decision — no side effects, no clock dep. */
+export function decideAdmit(state) {
+    if (state.active < state.maxConcurrent)
+        return { action: 'admit' };
+    if (state.queued < state.maxQueued)
+        return { action: 'enqueue' };
+    return { action: 'reject', reason: 'queue-full' };
+}
+/** Pure timeout check — separated so tests can pass an explicit clock. */
+export function isQueueEntryExpired(enqueuedAt, now, timeoutMs) {
+    return (now - enqueuedAt) > timeoutMs;
+}
+export class QueueFullError extends Error {
+    constructor() { super('queue-full'); this.name = 'QueueFullError'; }
+}
+export class QueueTimeoutError extends Error {
+    constructor() { super('queue-timeout'); this.name = 'QueueTimeoutError'; }
+}
+export const DEFAULT_MAX_CONCURRENT = 10;
+export const DEFAULT_MAX_QUEUED = 128;
+export const DEFAULT_QUEUE_TIMEOUT_MS = 60_000;
+export class RequestQueue {
+    maxConcurrent;
+    maxQueued;
+    queueTimeoutMs;
+    active = 0;
+    queue = [];
+    constructor(opts = {}) {
+        this.maxConcurrent = opts.maxConcurrent ?? DEFAULT_MAX_CONCURRENT;
+        this.maxQueued = opts.maxQueued ?? DEFAULT_MAX_QUEUED;
+        this.queueTimeoutMs = opts.queueTimeoutMs ?? DEFAULT_QUEUE_TIMEOUT_MS;
+    }
+    /**
+     * Acquire a concurrency slot. Resolves when admitted; throws
+     * `QueueFullError` when the queue is at its `maxQueued` cap, throws
+     * `QueueTimeoutError` when a queued request waited longer than
+     * `queueTimeoutMs`.
+     */
+    async acquire() {
+        const decision = decideAdmit(this.snapshot());
+        if (decision.action === 'admit') {
+            this.active++;
+            return;
+        }
+        if (decision.action === 'reject') {
+            throw new QueueFullError();
+        }
+        return new Promise((resolve, reject) => {
+            const enqueuedAt = Date.now();
+            const timeoutHandle = setTimeout(() => {
+                const idx = this.queue.indexOf(entry);
+                if (idx >= 0) {
+                    this.queue.splice(idx, 1);
+                    reject(new QueueTimeoutError());
+                }
+            }, this.queueTimeoutMs);
+            // Keep the timer from pinning the event loop open on shutdown. A queued
+            // request waiting for a slot shouldn't by itself keep the process alive.
+            timeoutHandle.unref?.();
+            const entry = { resolve, reject, enqueuedAt, timeoutHandle };
+            this.queue.push(entry);
+        });
+    }
+    /** Release a slot. The next queued entry (if any) is admitted in FIFO order. */
+    release() {
+        if (this.active > 0)
+            this.active--;
+        const next = this.queue.shift();
+        if (next) {
+            clearTimeout(next.timeoutHandle);
+            this.active++;
+            next.resolve();
+        }
+    }
+    /** Snapshot of queue state — exposed for /analytics + tests. */
+    snapshot() {
+        return {
+            active: this.active,
+            queued: this.queue.length,
+            maxConcurrent: this.maxConcurrent,
+            maxQueued: this.maxQueued,
+        };
+    }
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@askalf/dario",
-  "version": "3.30.7",
+  "version": "3.30.9",
   "description": "A local LLM router. One endpoint, every provider — Claude subscriptions, OpenAI, OpenRouter, Groq, local LiteLLM, any OpenAI-compat endpoint — your tools don't need to change.",
   "type": "module",
   "bin": {
@@ -21,7 +21,7 @@
   ],
   "scripts": {
     "build": "tsc && cp src/cc-template-data.json dist/ && node -e \"require('fs').mkdirSync('dist/shim',{recursive:true})\" && cp src/shim/runtime.cjs dist/shim/",
-    "test": "node test/issue-29-tool-translation.mjs && node test/hybrid-tools.mjs && node test/tool-schema-contract.mjs && node test/scrub-paths.mjs && node test/provider-prefix.mjs && node test/analytics-recording.mjs && node test/analytics-billing-bucket.mjs && node test/failover-429.mjs && node test/pool-sticky.mjs && node test/live-fingerprint.mjs && node test/shim-runtime.mjs && node test/shim-e2e.mjs && node test/proxy-header-order.mjs && node test/proxy-body-order.mjs && node test/runtime-fingerprint.mjs && node test/pacing.mjs && node test/stream-drain.mjs && node test/subagent.mjs && node test/mcp-protocol.mjs && node test/mcp-tools.mjs && node test/mcp-e2e.mjs && node test/session-rotation.mjs && node test/drift-detection.mjs && node test/cc-authorize-probe-classifier.mjs && node test/compat-range.mjs && node test/doctor-formatter.mjs && node test/atomic-write.mjs && node test/account-refresh-singleflight.mjs && node test/streaming-edge-cases.mjs && node test/client-detection.mjs && node test/manual-oauth-flow.mjs && node test/scrub-template.mjs && node test/sanitize-messages.mjs && node test/platform-tools.mjs",
+    "test": "node test/issue-29-tool-translation.mjs && node test/hybrid-tools.mjs && node test/tool-schema-contract.mjs && node test/scrub-paths.mjs && node test/provider-prefix.mjs && node test/analytics-recording.mjs && node test/analytics-billing-bucket.mjs && node test/failover-429.mjs && node test/pool-sticky.mjs && node test/live-fingerprint.mjs && node test/shim-runtime.mjs && node test/shim-e2e.mjs && node test/proxy-header-order.mjs && node test/proxy-body-order.mjs && node test/runtime-fingerprint.mjs && node test/pacing.mjs && node test/stream-drain.mjs && node test/subagent.mjs && node test/mcp-protocol.mjs && node test/mcp-tools.mjs && node test/mcp-e2e.mjs && node test/session-rotation.mjs && node test/drift-detection.mjs && node test/cc-authorize-probe-classifier.mjs && node test/compat-range.mjs && node test/doctor-formatter.mjs && node test/atomic-write.mjs && node test/account-refresh-singleflight.mjs && node test/streaming-edge-cases.mjs && node test/client-detection.mjs && node test/manual-oauth-flow.mjs && node test/scrub-template.mjs && node test/sanitize-messages.mjs && node test/platform-tools.mjs && node test/strict-template-flags.mjs && node test/request-queue.mjs",
     "audit": "npm audit --production --audit-level=high",
     "prepublishOnly": "npm run build",
     "start": "node dist/cli.js",