@blaxel/core 0.2.52-dev.9 → 0.2.52-preview.127

package/dist/cjs-browser/common/autoload.js

@@ -6,7 +6,6 @@ const client_gen_js_1 = require("../client/client.gen.js");
 const interceptors_js_1 = require("../client/interceptors.js");
 const responseInterceptor_js_1 = require("../client/responseInterceptor.js");
 const client_gen_js_2 = require("../sandbox/client/client.gen.js");
-const sentry_js_1 = require("./sentry.js");
 const settings_js_1 = require("./settings.js");
 client_gen_js_1.client.setConfig({
     baseUrl: settings_js_1.settings.baseUrl,
@@ -23,8 +22,6 @@ for (const interceptor of responseInterceptor_js_1.responseInterceptors) {
     client_gen_js_1.client.interceptors.response.use(interceptor);
     client_gen_js_2.client.interceptors.response.use(interceptor);
 }
-// Initialize Sentry for SDK error tracking immediately when module loads
-(0, sentry_js_1.initSentry)();
 // Allow to set custom configuration for browser environment
 function initialize(config) {
     settings_js_1.settings.setConfig(config);

package/dist/cjs-browser/common/settings.js

@@ -3,10 +3,26 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.settings = void 0;
 const index_js_1 = require("../authentication/index.js");
 const env_js_1 = require("../common/env.js");
-// Build info - these placeholders are replaced at build time by build:replace-imports
-const BUILD_VERSION = "0.2.52-dev.9";
-const BUILD_COMMIT = "106270f8890bd85e35e0f6b3f9701c0c6ad9b3cf";
-const BUILD_SENTRY_DSN = "https://fd5e60e1c9820e1eef5ccebb84a07127@o4508714045276160.ingest.us.sentry.io/4510465864564736";
+// Function to get package version
+function getPackageVersion() {
+    try {
+        // Check if require is available (CommonJS environment)
+        if (typeof require !== "undefined") {
+            // Try to require package.json (Node.js only, gracefully fails in browser)
+            // eslint-disable-next-line @typescript-eslint/no-require-imports
+            const packageJson = {"version":"0.2.52-preview.127","commit":"4acd7b5efa6c9e04c5131f55e7a87029c4889b1d"};
+            return packageJson.version || "unknown";
+        }
+        else {
+            // ESM environment - return unknown
+            return "unknown";
+        }
+    }
+    catch {
+        // Fallback for browser environments or if require fails
+        return "unknown";
+    }
+}
 // Function to get OS and architecture
 function getOsArch() {
     try {
@@ -39,9 +55,30 @@ function getOsArch() {
     }
     return "browser/unknown";
 }
+// Function to get commit hash
+function getCommitHash() {
+    try {
+        // Check if require is available (CommonJS environment)
+        if (typeof require !== "undefined") {
+            // Try to require package.json and look for commit field (set during build)
+            // eslint-disable-next-line @typescript-eslint/no-require-imports
+            const packageJson = {"version":"0.2.52-preview.127","commit":"4acd7b5efa6c9e04c5131f55e7a87029c4889b1d"};
+            // Check for commit in various possible locations
+            const commit = packageJson.commit || packageJson.buildInfo?.commit;
+            if (commit) {
+                return commit.length > 7 ? commit.substring(0, 7) : commit;
+            }
+        }
+    }
+    catch {
+        // Fallback for browser environments or if require fails
+    }
+    return "unknown";
+}
 class Settings {
     credentials;
     config;
+    _version = null;
     constructor() {
         this.credentials = (0, index_js_1.authentication)();
         this.config = {
@@ -96,21 +133,18 @@ class Settings {
         return this.credentials.token;
     }
     get version() {
-        return BUILD_VERSION || "unknown";
-    }
-    get commit() {
-        const commit = BUILD_COMMIT || "unknown";
-        return commit.length > 7 ? commit.substring(0, 7) : commit;
-    }
-    get sentryDsn() {
-        return BUILD_SENTRY_DSN || "";
+        if (this._version === null) {
+            this._version = getPackageVersion();
+        }
+        return this._version;
     }
     get headers() {
         const osArch = getOsArch();
+        const commitHash = getCommitHash();
         return {
             "x-blaxel-authorization": this.authorization,
             "x-blaxel-workspace": this.workspace || "",
-            "User-Agent": `blaxel/sdk/typescript/${this.version} (${osArch}) blaxel/${this.commit}`,
+            "User-Agent": `blaxel/sdk/typescript/${this.version} (${osArch}) blaxel/${commitHash}`,
         };
     }
     get name() {

package/dist/cjs-browser/common/webhook.js

@@ -0,0 +1,101 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.verifyWebhookSignature = verifyWebhookSignature;
+exports.verifyWebhookFromRequest = verifyWebhookFromRequest;
+const crypto_1 = require("crypto");
+/**
+ * Verify the HMAC-SHA256 signature of a webhook callback from async-sidecar
+ *
+ * @example
+ * ```typescript
+ * import { verifyWebhookSignature } from '@blaxel/core';
+ *
+ * // In your Express endpoint
+ * app.post('/webhook', express.text({ type: 'application/json' }), (req, res) => {
+ *   const isValid = verifyWebhookSignature({
+ *     body: req.body,
+ *     signature: req.headers['x-blaxel-signature'] as string,
+ *     secret: process.env.CALLBACK_SECRET!
+ *   });
+ *
+ *   if (!isValid) {
+ *     return res.status(401).json({ error: 'Invalid signature' });
+ *   }
+ *
+ *   const data = JSON.parse(req.body);
+ *   // Process callback...
+ * });
+ * ```
+ *
+ * @param options - Verification options
+ * @returns true if the signature is valid, false otherwise
+ */
+function verifyWebhookSignature(options) {
+    const { body, signature, secret, timestamp, maxAge = 300 } = options;
+    if (!body || !signature || !secret) {
+        return false;
+    }
+    try {
+        // Verify timestamp if provided (prevents replay attacks)
+        if (timestamp) {
+            const requestTime = parseInt(timestamp, 10);
+            const currentTime = Math.floor(Date.now() / 1000);
+            const age = Math.abs(currentTime - requestTime);
+            if (isNaN(requestTime) || age > maxAge) {
+                return false;
+            }
+        }
+        // Extract hex signature from "sha256=<hex>" format
+        const expectedSignature = signature.replace('sha256=', '');
+        // Compute HMAC-SHA256 signature
+        const hmac = (0, crypto_1.createHmac)('sha256', secret);
+        hmac.update(body);
+        const computedSignature = hmac.digest('hex');
+        // Timing-safe comparison to prevent timing attacks
+        return (0, crypto_1.timingSafeEqual)(Buffer.from(expectedSignature, 'hex'), Buffer.from(computedSignature, 'hex'));
+    }
+    catch {
+        // Invalid signature format or other error
+        return false;
+    }
+}
+/**
+ * Helper to verify webhook from Express request object
+ *
+ * @example
+ * ```typescript
+ * import { verifyWebhookFromRequest } from '@blaxel/core';
+ * import express from 'express';
+ *
+ * app.use(express.text({ type: 'application/json' }));
+ *
+ * app.post('/webhook', (req, res) => {
+ *   if (!verifyWebhookFromRequest(req, process.env.CALLBACK_SECRET!)) {
+ *     return res.status(401).json({ error: 'Invalid signature' });
+ *   }
+ *
+ *   const data = JSON.parse(req.body);
+ *   console.log('Received callback:', data);
+ *   res.json({ received: true });
+ * });
+ * ```
+ *
+ * @param request - Express request object (must use express.text() middleware)
+ * @param secret - The callback secret
+ * @param maxAge - Optional maximum age in seconds (default: 300)
+ * @returns true if the signature is valid, false otherwise
+ */
+function verifyWebhookFromRequest(request, secret, maxAge) {
+    const signature = request.headers['x-blaxel-signature'];
+    const timestamp = request.headers['x-blaxel-timestamp'];
+    if (typeof signature !== 'string') {
+        return false;
+    }
+    return verifyWebhookSignature({
+        body: request.body,
+        signature,
+        secret,
+        timestamp: typeof timestamp === 'string' ? timestamp : undefined,
+        maxAge
+    });
+}

package/dist/cjs-browser/index.js

@@ -24,6 +24,7 @@ __exportStar(require("./common/errors.js"), exports);
 __exportStar(require("./common/internal.js"), exports);
 __exportStar(require("./common/logger.js"), exports);
 __exportStar(require("./common/settings.js"), exports);
+__exportStar(require("./common/webhook.js"), exports);
 __exportStar(require("./jobs/index.js"), exports);
 __exportStar(require("./mcp/index.js"), exports);
 __exportStar(require("./models/index.js"), exports);

package/dist/cjs-browser/sandbox/client/sdk.gen.js

@@ -1,7 +1,7 @@
 "use strict";
 // This file is auto-generated by @hey-api/openapi-ts
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.getWs = exports.getWatchFilesystemByPath = exports.getProcessByIdentifierLogsStream = exports.getProcessByIdentifierLogs = exports.deleteProcessByIdentifierKill = exports.getProcessByIdentifier = exports.deleteProcessByIdentifier = exports.postProcess = exports.getProcess = exports.getNetworkProcessByPidPorts = exports.postNetworkProcessByPidMonitor = exports.deleteNetworkProcessByPidMonitor = exports.putFilesystemTreeByPath = exports.getFilesystemTreeByPath = exports.deleteFilesystemTreeByPath = exports.putFilesystemByPath = exports.getFilesystemByPath = exports.deleteFilesystemByPath = exports.getFilesystemSearchByPath = exports.postFilesystemMultipartInitiateByPath = exports.getFilesystemMultipartByUploadIdParts = exports.putFilesystemMultipartByUploadIdPart = exports.postFilesystemMultipartByUploadIdComplete = exports.deleteFilesystemMultipartByUploadIdAbort = exports.getFilesystemMultipart = exports.getFilesystemFindByPath = exports.getFilesystemContentSearchByPath = exports.getCodegenRerankingByPath = exports.putCodegenFastapplyByPath = exports.put = exports.post = exports.patch = exports.options = exports.get = exports.delete_ = void 0;
+exports.getWatchFilesystemByPath = exports.getProcessByIdentifierLogsStream = exports.getProcessByIdentifierLogs = exports.deleteProcessByIdentifierKill = exports.getProcessByIdentifier = exports.deleteProcessByIdentifier = exports.postProcess = exports.getProcess = exports.getNetworkProcessByPidPorts = exports.postNetworkProcessByPidMonitor = exports.deleteNetworkProcessByPidMonitor = exports.putFilesystemByPath = exports.getFilesystemByPath = exports.deleteFilesystemByPath = exports.postFilesystemMultipartInitiateByPath = exports.getFilesystemMultipartByUploadIdParts = exports.putFilesystemMultipartByUploadIdPart = exports.postFilesystemMultipartByUploadIdComplete = exports.deleteFilesystemMultipartByUploadIdAbort = exports.getFilesystemMultipart = exports.getCodegenRerankingByPath = exports.putCodegenFastapplyByPath = exports.put = exports.post = exports.patch = exports.options = exports.get = exports.delete_ = void 0;
 const client_fetch_1 = require("@hey-api/client-fetch");
 const client_gen_1 = require("./client.gen");
 /**
@@ -175,40 +175,6 @@ const getCodegenRerankingByPath = (options) => {
     });
 };
 exports.getCodegenRerankingByPath = getCodegenRerankingByPath;
-/**
- * Search for text content in files
- * Searches for text content inside files using ripgrep. Returns matching lines with context.
- */
-const getFilesystemContentSearchByPath = (options) => {
-    return (options.client ?? client_gen_1.client).get({
-        security: [
-            {
-                scheme: 'bearer',
-                type: 'http'
-            }
-        ],
-        url: '/filesystem-content-search/{path}',
-        ...options
-    });
-};
-exports.getFilesystemContentSearchByPath = getFilesystemContentSearchByPath;
-/**
- * Find files and directories
- * Finds files and directories using the find command.
- */
-const getFilesystemFindByPath = (options) => {
-    return (options.client ?? client_gen_1.client).get({
-        security: [
-            {
-                scheme: 'bearer',
-                type: 'http'
-            }
-        ],
-        url: '/filesystem-find/{path}',
-        ...options
-    });
-};
-exports.getFilesystemFindByPath = getFilesystemFindByPath;
 /**
  * List multipart uploads
  * List all active multipart uploads
@@ -324,23 +290,6 @@ const postFilesystemMultipartInitiateByPath = (options) => {
     });
 };
 exports.postFilesystemMultipartInitiateByPath = postFilesystemMultipartInitiateByPath;
-/**
- * Fuzzy search for files and directories
- * Performs fuzzy search on filesystem paths using fuzzy matching algorithm. Optimized alternative to find and grep commands.
- */
-const getFilesystemSearchByPath = (options) => {
-    return (options.client ?? client_gen_1.client).get({
-        security: [
-            {
-                scheme: 'bearer',
-                type: 'http'
-            }
-        ],
-        url: '/filesystem-search/{path}',
-        ...options
-    });
-};
-exports.getFilesystemSearchByPath = getFilesystemSearchByPath;
 /**
  * Delete file or directory
  * Delete a file or directory
@@ -396,61 +345,6 @@ const putFilesystemByPath = (options) => {
     });
 };
 exports.putFilesystemByPath = putFilesystemByPath;
-/**
- * Delete directory tree
- * Delete a directory tree recursively
- */
-const deleteFilesystemTreeByPath = (options) => {
-    return (options.client ?? client_gen_1.client).delete({
-        security: [
-            {
-                scheme: 'bearer',
-                type: 'http'
-            }
-        ],
-        url: '/filesystem/tree/{path}',
-        ...options
-    });
-};
-exports.deleteFilesystemTreeByPath = deleteFilesystemTreeByPath;
-/**
- * Get directory tree
- * Get a recursive directory tree structure starting from the specified path
- */
-const getFilesystemTreeByPath = (options) => {
-    return (options.client ?? client_gen_1.client).get({
-        security: [
-            {
-                scheme: 'bearer',
-                type: 'http'
-            }
-        ],
-        url: '/filesystem/tree/{path}',
-        ...options
-    });
-};
-exports.getFilesystemTreeByPath = getFilesystemTreeByPath;
-/**
- * Create or update directory tree
- * Create or update multiple files within a directory tree structure
- */
-const putFilesystemTreeByPath = (options) => {
-    return (options.client ?? client_gen_1.client).put({
-        security: [
-            {
-                scheme: 'bearer',
-                type: 'http'
-            }
-        ],
-        url: '/filesystem/tree/{path}',
-        ...options,
-        headers: {
-            'Content-Type': 'application/json',
-            ...options?.headers
-        }
-    });
-};
-exports.putFilesystemTreeByPath = putFilesystemTreeByPath;
 /**
  * Stop monitoring ports for a process
  * Stop monitoring for new ports opened by a process
@@ -646,20 +540,3 @@ const getWatchFilesystemByPath = (options) => {
     });
 };
 exports.getWatchFilesystemByPath = getWatchFilesystemByPath;
-/**
- * WebSocket endpoint
- * WebSocket endpoint for all sandbox operations
- */
-const getWs = (options) => {
-    return (options?.client ?? client_gen_1.client).get({
-        security: [
-            {
-                scheme: 'bearer',
-                type: 'http'
-            }
-        ],
-        url: '/ws',
-        ...options
-    });
-};
-exports.getWs = getWs;

package/dist/cjs-browser/sandbox/filesystem/filesystem.js

@@ -1,8 +1,8 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.SandboxFileSystem = void 0;
-const node_js_1 = require("../../common/node.js");
 const settings_js_1 = require("../../common/settings.js");
+const node_js_1 = require("../../common/node.js");
 const action_js_1 = require("../action.js");
 const index_js_1 = require("../client/index.js");
 // Multipart upload constants
@@ -199,86 +199,6 @@ class SandboxFileSystem extends action_js_1.SandboxAction {
         }
         return data;
     }
-    async search(query, path = "/", options) {
-        const formattedPath = this.formatPath(path);
-        const queryParams = {};
-        if (options?.maxResults !== undefined) {
-            queryParams.maxResults = options.maxResults;
-        }
-        if (options?.patterns && options.patterns.length > 0) {
-            queryParams.patterns = options.patterns.join(',');
-        }
-        if (options?.excludeDirs && options.excludeDirs.length > 0) {
-            queryParams.excludeDirs = options.excludeDirs.join(',');
-        }
-        if (options?.excludeHidden !== undefined) {
-            queryParams.excludeHidden = options.excludeHidden;
-        }
-        const result = await (0, index_js_1.getFilesystemSearchByPath)({
-            path: { path: formattedPath },
-            query: queryParams,
-            baseUrl: this.url,
-            client: this.client,
-        });
-        this.handleResponseError(result.response, result.data, result.error);
-        return result.data;
-    }
-    async find(path, options) {
-        const formattedPath = this.formatPath(path);
-        const queryParams = {};
-        if (options?.type) {
-            queryParams.type = options.type;
-        }
-        if (options?.patterns && options.patterns.length > 0) {
-            queryParams.patterns = options.patterns.join(',');
-        }
-        if (options?.maxResults !== undefined) {
-            queryParams.maxResults = options.maxResults;
-        }
-        if (options?.excludeDirs && options.excludeDirs.length > 0) {
-            queryParams.excludeDirs = options.excludeDirs.join(',');
-        }
-        if (options?.excludeHidden !== undefined) {
-            queryParams.excludeHidden = options.excludeHidden;
-        }
-        const result = await (0, index_js_1.getFilesystemFindByPath)({
-            path: { path: formattedPath },
-            query: queryParams,
-            baseUrl: this.url,
-            client: this.client,
-        });
-        this.handleResponseError(result.response, result.data, result.error);
-        return result.data;
-    }
-    async grep(query, path = "/", options) {
-        const formattedPath = this.formatPath(path);
-        const queryParams = {
-            query,
-        };
-        if (options?.caseSensitive !== undefined) {
-            queryParams.caseSensitive = options.caseSensitive;
-        }
-        if (options?.contextLines !== undefined) {
-            queryParams.contextLines = options.contextLines;
-        }
-        if (options?.maxResults !== undefined) {
-            queryParams.maxResults = options.maxResults;
-        }
-        if (options?.filePattern) {
-            queryParams.filePattern = options.filePattern;
-        }
-        if (options?.excludeDirs && options.excludeDirs.length > 0) {
-            queryParams.excludeDirs = options.excludeDirs.join(',');
-        }
-        const result = await (0, index_js_1.getFilesystemContentSearchByPath)({
-            path: { path: formattedPath },
-            query: queryParams,
-            baseUrl: this.url,
-            client: this.client,
-        });
-        this.handleResponseError(result.response, result.data, result.error);
-        return result.data;
-    }
     async cp(source, destination, { maxWait = 180000 } = {}) {
         let process = await this.process.exec({
             command: `cp -r ${source} ${destination}`,

package/dist/cjs-browser/types/client/types.gen.d.ts

@@ -2779,6 +2779,14 @@ export type TriggerConfiguration = {
      * The authentication type of the trigger
      */
     authenticationType?: string;
+    /**
+     * The callback secret for async triggers (auto-generated, encrypted)
+     */
+    callbackSecret?: string;
+    /**
+     * The callback URL for async triggers (optional)
+     */
+    callbackUrl?: string;
     /**
      * The path of the trigger
      */
@@ -2795,6 +2803,10 @@ export type TriggerConfiguration = {
      * The tasks configuration of the cronjob
      */
     tasks?: Array<TriggerConfigurationTask>;
+    /**
+     * The timeout in seconds for async triggers (max 900s, MK3 only)
+     */
+    timeout?: number;
 };
 /**
  * The tasks configuration of the cronjob

package/dist/cjs-browser/types/common/settings.d.ts

@@ -7,6 +7,7 @@ export type Config = {
 declare class Settings {
     credentials: Credentials;
     config: Config;
+    private _version;
     constructor();
     setConfig(config: Config): void;
     get env(): string;
@@ -16,8 +17,6 @@ declare class Settings {
     get authorization(): string;
     get token(): string;
     get version(): string;
-    get commit(): string;
-    get sentryDsn(): string;
     get headers(): Record<string, string>;
     get name(): string;
     get type(): string;

package/dist/cjs-browser/types/common/webhook.d.ts

@@ -0,0 +1,89 @@
+/**
+ * Webhook signature verification for async-sidecar callbacks
+ */
+export interface WebhookVerificationOptions {
+    /**
+     * The raw request body as a string
+     */
+    body: string;
+    /**
+     * The X-Blaxel-Signature header value (format: "sha256=<hex_digest>")
+     */
+    signature: string;
+    /**
+     * The secret key used to sign the webhook (same as CALLBACK_SECRET in async-sidecar)
+     */
+    secret: string;
+    /**
+     * Optional: The X-Blaxel-Timestamp header value for replay attack prevention
+     */
+    timestamp?: string;
+    /**
+     * Optional: Maximum age of the webhook in seconds (default: 300 = 5 minutes)
+     */
+    maxAge?: number;
+}
+export interface AsyncSidecarCallback {
+    status_code: number;
+    response_body: string;
+    response_length: number;
+    timestamp: number;
+}
+/**
+ * Verify the HMAC-SHA256 signature of a webhook callback from async-sidecar
+ *
+ * @example
+ * ```typescript
+ * import { verifyWebhookSignature } from '@blaxel/core';
+ *
+ * // In your Express endpoint
+ * app.post('/webhook', express.text({ type: 'application/json' }), (req, res) => {
+ *   const isValid = verifyWebhookSignature({
+ *     body: req.body,
+ *     signature: req.headers['x-blaxel-signature'] as string,
+ *     secret: process.env.CALLBACK_SECRET!
+ *   });
+ *
+ *   if (!isValid) {
+ *     return res.status(401).json({ error: 'Invalid signature' });
+ *   }
+ *
+ *   const data = JSON.parse(req.body);
+ *   // Process callback...
+ * });
+ * ```
+ *
+ * @param options - Verification options
+ * @returns true if the signature is valid, false otherwise
+ */
+export declare function verifyWebhookSignature(options: WebhookVerificationOptions): boolean;
+/**
+ * Helper to verify webhook from Express request object
+ *
+ * @example
+ * ```typescript
+ * import { verifyWebhookFromRequest } from '@blaxel/core';
+ * import express from 'express';
+ *
+ * app.use(express.text({ type: 'application/json' }));
+ *
+ * app.post('/webhook', (req, res) => {
+ *   if (!verifyWebhookFromRequest(req, process.env.CALLBACK_SECRET!)) {
+ *     return res.status(401).json({ error: 'Invalid signature' });
+ *   }
+ *
+ *   const data = JSON.parse(req.body);
+ *   console.log('Received callback:', data);
+ *   res.json({ received: true });
+ * });
+ * ```
+ *
+ * @param request - Express request object (must use express.text() middleware)
+ * @param secret - The callback secret
+ * @param maxAge - Optional maximum age in seconds (default: 300)
+ * @returns true if the signature is valid, false otherwise
+ */
+export declare function verifyWebhookFromRequest(request: {
+    body: string;
+    headers: Record<string, string | string[] | undefined>;
+}, secret: string, maxAge?: number): boolean;

package/dist/cjs-browser/types/index.d.ts

@@ -8,6 +8,7 @@ export * from "./common/errors.js";
 export * from "./common/internal.js";
 export * from "./common/logger.js";
 export * from "./common/settings.js";
+export * from "./common/webhook.js";
 export * from "./jobs/index.js";
 export * from "./mcp/index.js";
 export * from "./models/index.js";