@blaxel/core 0.2.90-preview.182 → 0.2.90-preview.183

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (11) hide show
  1. package/dist/cjs/.tsbuildinfo +1 -1
  2. package/dist/cjs/common/settings.js +2 -2
  3. package/dist/cjs/types/client/types.gen.d.ts +25 -3
  4. package/dist/cjs-browser/.tsbuildinfo +1 -1
  5. package/dist/cjs-browser/common/settings.js +2 -2
  6. package/dist/cjs-browser/types/client/types.gen.d.ts +25 -3
  7. package/dist/esm/.tsbuildinfo +1 -1
  8. package/dist/esm/common/settings.js +2 -2
  9. package/dist/esm-browser/.tsbuildinfo +1 -1
  10. package/dist/esm-browser/common/settings.js +2 -2
  11. package/package.json +1 -1
package/dist/cjs-browser/common/settings.js CHANGED
@@ -28,8 +28,8 @@ function missingCredentialsMessage() {
28
28
  return "No Blaxel credentials found. Set the BL_API_KEY and BL_WORKSPACE environment variables, or run `bl login`.";
29
29
  }
30
30
  // Build info - these placeholders are replaced at build time by build:replace-imports
31
- const BUILD_VERSION = "0.2.90-preview.182";
32
- const BUILD_COMMIT = "78dad6b3e2d47dcf5d8464b9688b0829ddc3369c";
31
+ const BUILD_VERSION = "0.2.90-preview.183";
32
+ const BUILD_COMMIT = "e47f7913315215d00a881153cf552d424046a303";
33
33
  const BUILD_SENTRY_DSN = "https://fd5e60e1c9820e1eef5ccebb84a07127@o4508714045276160.ingest.us.sentry.io/4510465864564736";
34
34
  const BLAXEL_API_VERSION = "2026-04-16";
35
35
  // Cache for config.yaml tracking value
package/dist/cjs-browser/types/client/types.gen.d.ts CHANGED
@@ -736,6 +736,15 @@ export type ExpirationPolicy = {
736
736
  */
737
737
  value?: string;
738
738
  };
739
+ /**
740
+ * Firewall configuration specifying which network lockdown rulesets to apply. Valid rulesets are "default" (no-op), "proxy" (restrict egress to proxy), and "dedicated-ip" (restrict egress to dedicated IP gateway).
741
+ */
742
+ export type FirewallConfig = {
743
+ /**
744
+ * List of firewall rulesets to apply. Valid values: "default" (no-op), "proxy" (restrict egress to proxy), "dedicated-ip" (restrict egress to dedicated IP gateway).
745
+ */
746
+ rulesets?: Array<string>;
747
+ };
739
748
  /**
740
749
  * A type of hardware available for deployments
741
750
  */
@@ -2597,10 +2606,18 @@ export type PrivateLocation = {
2597
2606
  * Proxy configuration for routing sandbox HTTP traffic through the platform proxy with MITM inspection and per-destination header/body injection
2598
2607
  */
2599
2608
  export type ProxyConfig = {
2609
+ /**
2610
+ * List of allowed external domains (allowlist). When set, only these domains are reachable. Supports wildcards (e.g. *.s3.amazonaws.com).
2611
+ */
2612
+ allowedDomains?: Array<string>;
2600
2613
  /**
2601
2614
  * Domains that bypass the proxy entirely via the NO_PROXY directive. Traffic to these destinations goes direct, not through the CONNECT tunnel. Supports wildcards. Note that localhost, private ranges (10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16), 169.254.169.254, .local and .internal are always bypassed by default.
2602
2615
  */
2603
2616
  bypass?: Array<string>;
2617
+ /**
2618
+ * List of forbidden external domains (denylist). When set, all domains except these are reachable. Supports wildcards (e.g. *.malware.com). If both allowedDomains and forbiddenDomains are set, allowedDomains takes precedence.
2619
+ */
2620
+ forbiddenDomains?: Array<string>;
2604
2621
  /**
2605
2622
  * Per-destination routing rules with header/body injection and secrets. Use destinations ["*"] for global rules that apply to all destinations.
2606
2623
  */
@@ -3052,19 +3069,24 @@ export type SandboxLifecycle = {
3052
3069
  terminatedRetention?: string;
3053
3070
  };
3054
3071
  /**
3055
- * Network configuration for a sandbox including domain filtering, egress IP binding, and proxy settings
3072
+ * Network configuration for a sandbox including subnet, firewall rulesets, domain filtering, egress IP binding, and proxy settings
3056
3073
  */
3057
3074
  export type SandboxNetwork = {
3058
3075
  /**
3059
- * List of allowed external domains (allowlist). When set, only these domains are reachable. Supports wildcards (e.g. *.s3.amazonaws.com).
3076
+ * Deprecated: use proxy.allowedDomains instead. List of allowed external domains (allowlist). Kept for backward compatibility.
3060
3077
  */
3061
3078
  allowedDomains?: Array<string>;
3062
3079
  egress?: EgressConfig;
3080
+ firewall?: FirewallConfig;
3063
3081
  /**
3064
- * List of forbidden external domains (denylist). When set, all domains except these are reachable. Supports wildcards (e.g. *.malware.com). If both allowedDomains and forbiddenDomains are set, allowedDomains takes precedence.
3082
+ * Deprecated: use proxy.forbiddenDomains instead. List of forbidden external domains (denylist). Kept for backward compatibility.
3065
3083
  */
3066
3084
  forbiddenDomains?: Array<string>;
3067
3085
  proxy?: ProxyConfig;
3086
+ /**
3087
+ * Subnet name for the sandbox. Takes priority over any subnet derived from egress config. Defaults to "default" when absent.
3088
+ */
3089
+ subnet?: string;
3068
3090
  };
3069
3091
  /**
3070
3092
  * Runtime configuration defining how the sandbox VM is provisioned and its resource limits