@blaxel/core 0.2.54 → 0.2.55-preview.17

package/dist/esm-browser/common/node.js

@@ -2,6 +2,7 @@
 // Browser-compatible exports for Node.js modules
 // In browser environments, Node.js built-in modules are not available
 // All Node.js modules are null in browser
+export const crypto = null;
 export const fs = null;
 export const os = null;
 export const path = null;

package/dist/esm-browser/common/sentry.js

@@ -1,188 +1,22 @@
-import { settings } from "./settings.js";
-import * as Sentry from "@sentry/node";
-import { makeNodeTransport } from "@sentry/node";
-// Isolated Sentry client for SDK-only error tracking (doesn't interfere with user's Sentry)
-let sentryClient = null;
-const capturedExceptions = new Set();
-let handlersRegistered = false;
-// SDK path patterns to identify errors originating from our SDK
-const SDK_PATTERNS = [
-    "@blaxel/",
-    "blaxel-sdk",
-    "/node_modules/@blaxel/",
-    "/@blaxel/core/",
-    "/@blaxel/telemetry/",
-];
+/* eslint-disable */
+// Browser/Edge-compatible exports for Sentry
+// In browser/edge environments, @sentry/node is not available
+// All functions are no-ops
 /**
- * Check if an error originated from the SDK based on its stack trace.
- * Returns true if the stack trace contains any SDK-related paths.
- */
-function isFromSDK(error) {
-    const stack = error.stack || "";
-    return SDK_PATTERNS.some((pattern) => stack.includes(pattern));
-}
-/**
- * Initialize an isolated Sentry client for SDK error tracking.
- * This creates a separate Sentry instance that won't interfere with any
- * Sentry configuration the user might have in their application.
+ * Initialize Sentry - no-op in browser/edge environments.
  */
 export function initSentry() {
-    try {
-        // Check if tracking is disabled
-        if (!settings.tracking) {
-            return;
-        }
-        const dsn = settings.sentryDsn;
-        if (!dsn) {
-            return;
-        }
-        // Create an isolated Sentry client that doesn't touch the global scope
-        // This allows users to have their own Sentry.init() without conflicts
-        sentryClient = new Sentry.NodeClient({
-            dsn,
-            environment: settings.env,
-            release: `sdk-typescript@${settings.version}`,
-            transport: makeNodeTransport,
-            stackParser: Sentry.defaultStackParser,
-            // No integrations - we handle error capturing manually
-            integrations: [],
-            // Disable traces for the SDK client
-            tracesSampleRate: 0,
-            // Filter errors before sending - only send SDK errors
-            beforeSend(event, hint) {
-                if (event.environment !== 'dev' && event.environment !== 'prod') {
-                    return null;
-                }
-                const error = hint.originalException;
-                if (error instanceof Error) {
-                    if (!isFromSDK(error)) {
-                        // Drop errors that don't originate from SDK
-                        return null;
-                    }
-                }
-                return event;
-            },
-        });
-        sentryClient.init();
-        // Set SDK-specific tags
-        const scope = new Sentry.Scope();
-        scope.setTag("blaxel.workspace", settings.workspace);
-        scope.setTag("blaxel.version", settings.version);
-        scope.setTag("blaxel.commit", settings.commit);
-        scope.setClient(sentryClient);
-        // Register process handlers for uncaught errors (Node.js only)
-        // Only register once to prevent memory leaks
-        if (typeof process !== "undefined" &&
-            typeof process.on === "function" &&
-            !handlersRegistered) {
-            handlersRegistered = true;
-            // For SIGTERM/SIGINT, flush before exit
-            const signalHandler = (signal) => {
-                flushSentry(500)
-                    .catch(() => {
-                    // Silently fail
-                })
-                    .finally(() => {
-                    process.exit(signal === "SIGTERM" ? 143 : 130);
-                });
-            };
-            // Uncaught exception handler - only capture SDK errors
-            const uncaughtExceptionHandler = (error) => {
-                if (isFromSDK(error)) {
-                    captureException(error);
-                }
-                // Let the default Node.js behavior handle the process exit
-            };
-            // Unhandled rejection handler - only capture SDK errors
-            const unhandledRejectionHandler = (reason) => {
-                const error = reason instanceof Error ? reason : new Error(String(reason));
-                if (isFromSDK(error)) {
-                    captureException(error);
-                }
-            };
-            process.on("SIGTERM", () => signalHandler("SIGTERM"));
-            process.on("SIGINT", () => signalHandler("SIGINT"));
-            process.on("uncaughtException", uncaughtExceptionHandler);
-            process.on("unhandledRejection", unhandledRejectionHandler);
-            // Intercept console.error to capture SDK errors that are caught and logged
-            const originalConsoleError = console.error;
-            console.error = function (...args) {
-                // Call the original console.error first
-                originalConsoleError.apply(console, args);
-                // Check if any argument is an Error from SDK and capture it
-                for (const arg of args) {
-                    if (arg instanceof Error && isFromSDK(arg)) {
-                        captureException(arg);
-                        break; // Only capture the first SDK error to avoid duplicates
-                    }
-                }
-            };
-        }
-    }
-    catch (error) {
-        // Silently fail - Sentry initialization should never break the SDK
-        if (settings.env !== "production") {
-            console.error("[Blaxel SDK] Error initializing Sentry:", error);
-        }
-    }
-}
-/**
- * Capture an exception to the SDK's isolated Sentry client.
- * Only errors originating from SDK code will be captured.
- *
- * @param error - The error to capture
- */
-function captureException(error) {
-    if (sentryClient === null) {
-        return;
-    }
-    // Double-check that error is from SDK (defense in depth)
-    if (!isFromSDK(error)) {
-        return;
-    }
-    try {
-        // Create a unique identifier for this exception to avoid duplicates
-        const errorKey = `${error.name}:${error.message}:${error.stack?.slice(0, 200)}`;
-        if (capturedExceptions.has(errorKey)) {
-            return;
-        }
-        capturedExceptions.add(errorKey);
-        // Clean up old exception keys to prevent memory leak
-        if (capturedExceptions.size > 1000) {
-            capturedExceptions.clear();
-        }
-        // Create a scope with SDK tags and capture the exception
-        const scope = new Sentry.Scope();
-        scope.setTag("blaxel.workspace", settings.workspace);
-        scope.setTag("blaxel.version", settings.version);
-        scope.setTag("blaxel.commit", settings.commit);
-        scope.setClient(sentryClient);
-        scope.captureException(error);
-    }
-    catch {
-        // Silently fail - error capturing should never break the SDK
-    }
+    // No-op in browser/edge environments
 }
 /**
- * Flush pending Sentry events.
- * This should be called before the process exits to ensure all events are sent.
- *
- * @param timeout - Maximum time in milliseconds to wait for flush (default: 2000)
+ * Flush pending Sentry events - no-op in browser/edge environments.
  */
-export async function flushSentry(timeout = 2000) {
-    if (sentryClient === null) {
-        return;
-    }
-    try {
-        await sentryClient.flush(timeout);
-    }
-    catch {
-        // Silently fail
-    }
+export async function flushSentry(_timeout = 2000) {
+    // No-op in browser/edge environments
 }
 /**
- * Check if Sentry is initialized and available.
+ * Check if Sentry is initialized - always returns false in browser/edge environments.
  */
 export function isSentryInitialized() {
-    return sentryClient !== null;
+    return false;
 }

package/dist/esm-browser/common/settings.js

@@ -3,8 +3,8 @@ import { authentication } from "../authentication/index.js";
 import { env } from "../common/env.js";
 import { fs, os, path } from "../common/node.js";
 // Build info - these placeholders are replaced at build time by build:replace-imports
-const BUILD_VERSION = "0.2.54";
-const BUILD_COMMIT = "36d148e9b7f9dd2134c772d954c8297b3c958ec3";
+const BUILD_VERSION = "0.2.55-preview.17";
+const BUILD_COMMIT = "1efcf3565af2e54805e7526888bebaf2347c5886";
 const BUILD_SENTRY_DSN = "https://fd5e60e1c9820e1eef5ccebb84a07127@o4508714045276160.ingest.us.sentry.io/4510465864564736";
 // Cache for config.yaml tracking value
 let configTrackingValue = null;
@@ -163,8 +163,9 @@ class Settings {
     }
     get tracking() {
         // Environment variable has highest priority
-        if (env.BL_TRACKING !== undefined) {
-            return env.BL_TRACKING === "true";
+        if (env.DO_NOT_TRACK !== undefined) {
+            // DO_NOT_TRACK has inverted semantics: true means tracking disabled
+            return env.DO_NOT_TRACK !== "true" && env.DO_NOT_TRACK !== "1";
         }
         // Then check config.yaml
         const configValue = getConfigTracking();

package/dist/esm-browser/common/webhook.js

@@ -1,4 +1,4 @@
-import { createHmac, timingSafeEqual } from 'crypto';
+import { crypto } from './node.js';
 /**
  * Verify the HMAC-SHA256 signature of a webhook callback from async-sidecar
  *
@@ -31,6 +31,10 @@ export function verifyWebhookSignature(options) {
     if (!body || !signature || !secret) {
         return false;
     }
+    // crypto is only available in Node.js environments
+    if (!crypto) {
+        throw new Error('verifyWebhookSignature is only available in Node.js environments');
+    }
     try {
         // Verify timestamp if provided (prevents replay attacks)
         if (timestamp) {
@@ -44,11 +48,11 @@ export function verifyWebhookSignature(options) {
         // Extract hex signature from "sha256=<hex>" format
         const expectedSignature = signature.replace('sha256=', '');
         // Compute HMAC-SHA256 signature
-        const hmac = createHmac('sha256', secret);
+        const hmac = crypto.createHmac('sha256', secret);
         hmac.update(body);
         const computedSignature = hmac.digest('hex');
         // Timing-safe comparison to prevent timing attacks
-        return timingSafeEqual(Buffer.from(expectedSignature, 'hex'), Buffer.from(computedSignature, 'hex'));
+        return crypto.timingSafeEqual(Buffer.from(expectedSignature, 'hex'), Buffer.from(computedSignature, 'hex'));
     }
     catch {
         // Invalid signature format or other error

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@blaxel/core",
-  "version": "0.2.54",
+  "version": "0.2.55-preview.17",
   "description": "Blaxel Core SDK for TypeScript",
   "license": "MIT",
   "author": "Blaxel, INC (https://blaxel.ai)",
@@ -53,7 +53,6 @@
   "dependencies": {
     "@hey-api/client-fetch": "^0.10.0",
     "@modelcontextprotocol/sdk": "^1.20.0",
-    "@sentry/node": "^10.27.0",
     "axios": "^1.9.0",
     "dotenv": "^16.5.0",
     "form-data": "^4.0.2",
@@ -64,6 +63,9 @@
     "yaml": "^2.7.1",
     "zod": "^3.24.3"
   },
+  "optionalDependencies": {
+    "@sentry/node": "^10.27.0"
+  },
   "devDependencies": {
     "@eslint/js": "^9.26.0",
     "@testing-library/dom": "^9.3.0",