@brizz/sdk 0.1.28 → 0.1.29

package/README.md

@@ -331,6 +331,20 @@ await startSession('session-456', async (session) => {
 });
 ```
 
+**External link example:**
+
+```typescript
+import { addExternalLink, startSession } from '@brizz/sdk';
+
+startSession('session-123', (session) => {
+  // Top-level function — resolves the active session from context.
+  addExternalLink('https://app.datadoghq.com/trace/abc', { title: 'Datadog trace' });
+});
+
+// Outside a session — pass the id explicitly.
+addExternalLink('https://sentry.io/issues/456', { sessionId: 'session-123', linkType: 'sentry' });
+```
+
 ### Session Title Generation
 
 If you use an LLM call to generate session titles, wrap it so those spans don't appear as part of

package/dist/index.cjs

@@ -798,7 +798,7 @@ var init_protocol = __esm({
 
 // src/internal/version.ts
 function getSDKVersion() {
-  return "0.1.28";
+  return "0.1.29";
 }
 var init_version = __esm({
   "src/internal/version.ts"() {
@@ -1910,10 +1910,6 @@ var DEFAULT_PII_PATTERNS = [
     name: "pgp_private_keys",
     pattern: "-----BEGIN PGP PRIVATE KEY BLOCK-----"
   },
-  {
-    name: "certificates",
-    pattern: "-----BEGIN CERTIFICATE-----"
-  },
   // Additional API Keys and Tokens
   {
     name: "google_oauth",
@@ -1962,7 +1958,7 @@ var DEFAULT_PII_PATTERNS = [
   },
   {
     name: "ssl_certificates",
-    pattern: String.raw`-----BEGIN CERTIFICATE-----(?:.|\n)+?\s-----END CERTIFICATE-----`
+    pattern: String.raw`-----BEGIN CERTIFICATE-----(?:.|\n)+?\s*-----END CERTIFICATE-----`
   },
   {
     name: "ssh_dss_public",
@@ -2021,8 +2017,9 @@ function isLikelyReDoSPattern(pattern) {
   const dangerousPatterns = [
     // Nested quantifiers like (a+)+, (a*)+, (a+)*
     /\([^)]*[+*]\)[+*]/,
-    // Alternation with overlapping groups like (a|a)*
-    /\([^)]*\|[^)]*\)[+*]/,
+    // Overlapping alternation under an outer quantifier like (a|a)+, (\w|\d)+. Scoped to
+    // capturing groups so the lazy (?:…)+? built-ins aren't false-flagged.
+    /\((?!\?)[^)]*\|[^)]*\)[+*]/,
     // Complex backtracking patterns - but more specific
     /\([^)]*[+*][^)]*[+*][^)]*\)[+*]/
   ];
@@ -2091,6 +2088,16 @@ function compilePatternEntries(patternEntries) {
     return null;
   }
 }
+var compiledPatternCache = /* @__PURE__ */ new WeakMap();
+function getCompiledPatternsForRule(rule) {
+  const key = rule.patterns;
+  if (compiledPatternCache.has(key)) {
+    return compiledPatternCache.get(key) ?? null;
+  }
+  const compiled = compilePatternEntries(convertPatternsToPatternEntries(rule.patterns));
+  compiledPatternCache.set(key, compiled);
+  return compiled;
+}
 function getCompiledAttributeNamePattern(rule) {
   if (!rule.attributePattern) {
     logger.debug("No attribute pattern provided, using default .*");
@@ -2184,7 +2191,7 @@ function maskStringByPatternBasedRule(value, rule) {
   if (!patternEntries || patternEntries.length === 0) {
     return mode === "partial" && value ? value[0] + "*****" : "*****";
   }
-  const compiledPatterns = compilePatternEntries(patternEntries);
+  const compiledPatterns = getCompiledPatternsForRule(rule);
   if (!compiledPatterns) {
     return value;
   }

package/dist/index.js

@@ -780,7 +780,7 @@ var init_protocol = __esm({
 
 // src/internal/version.ts
 function getSDKVersion() {
-  return "0.1.28";
+  return "0.1.29";
 }
 var init_version = __esm({
   "src/internal/version.ts"() {
@@ -1858,10 +1858,6 @@ var DEFAULT_PII_PATTERNS = [
     name: "pgp_private_keys",
     pattern: "-----BEGIN PGP PRIVATE KEY BLOCK-----"
   },
-  {
-    name: "certificates",
-    pattern: "-----BEGIN CERTIFICATE-----"
-  },
   // Additional API Keys and Tokens
   {
     name: "google_oauth",
@@ -1910,7 +1906,7 @@ var DEFAULT_PII_PATTERNS = [
   },
   {
     name: "ssl_certificates",
-    pattern: String.raw`-----BEGIN CERTIFICATE-----(?:.|\n)+?\s-----END CERTIFICATE-----`
+    pattern: String.raw`-----BEGIN CERTIFICATE-----(?:.|\n)+?\s*-----END CERTIFICATE-----`
   },
   {
     name: "ssh_dss_public",
@@ -1969,8 +1965,9 @@ function isLikelyReDoSPattern(pattern) {
   const dangerousPatterns = [
     // Nested quantifiers like (a+)+, (a*)+, (a+)*
     /\([^)]*[+*]\)[+*]/,
-    // Alternation with overlapping groups like (a|a)*
-    /\([^)]*\|[^)]*\)[+*]/,
+    // Overlapping alternation under an outer quantifier like (a|a)+, (\w|\d)+. Scoped to
+    // capturing groups so the lazy (?:…)+? built-ins aren't false-flagged.
+    /\((?!\?)[^)]*\|[^)]*\)[+*]/,
     // Complex backtracking patterns - but more specific
     /\([^)]*[+*][^)]*[+*][^)]*\)[+*]/
   ];
@@ -2039,6 +2036,16 @@ function compilePatternEntries(patternEntries) {
     return null;
   }
 }
+var compiledPatternCache = /* @__PURE__ */ new WeakMap();
+function getCompiledPatternsForRule(rule) {
+  const key = rule.patterns;
+  if (compiledPatternCache.has(key)) {
+    return compiledPatternCache.get(key) ?? null;
+  }
+  const compiled = compilePatternEntries(convertPatternsToPatternEntries(rule.patterns));
+  compiledPatternCache.set(key, compiled);
+  return compiled;
+}
 function getCompiledAttributeNamePattern(rule) {
   if (!rule.attributePattern) {
     logger.debug("No attribute pattern provided, using default .*");
@@ -2132,7 +2139,7 @@ function maskStringByPatternBasedRule(value, rule) {
   if (!patternEntries || patternEntries.length === 0) {
     return mode === "partial" && value ? value[0] + "*****" : "*****";
   }
-  const compiledPatterns = compilePatternEntries(patternEntries);
+  const compiledPatterns = getCompiledPatternsForRule(rule);
   if (!compiledPatterns) {
     return value;
   }

package/dist/preload.cjs

@@ -910,7 +910,7 @@ function safeEnd(span) {
 
 // src/internal/version.ts
 function getSDKVersion() {
-  return "0.1.28";
+  return "0.1.29";
 }
 
 // src/internal/instrumentation/mcp/version.ts
@@ -1308,10 +1308,6 @@ var DEFAULT_PII_PATTERNS = [
     name: "pgp_private_keys",
     pattern: "-----BEGIN PGP PRIVATE KEY BLOCK-----"
   },
-  {
-    name: "certificates",
-    pattern: "-----BEGIN CERTIFICATE-----"
-  },
   // Additional API Keys and Tokens
   {
     name: "google_oauth",
@@ -1360,7 +1356,7 @@ var DEFAULT_PII_PATTERNS = [
   },
   {
     name: "ssl_certificates",
-    pattern: String.raw`-----BEGIN CERTIFICATE-----(?:.|\n)+?\s-----END CERTIFICATE-----`
+    pattern: String.raw`-----BEGIN CERTIFICATE-----(?:.|\n)+?\s*-----END CERTIFICATE-----`
   },
   {
     name: "ssh_dss_public",
@@ -1418,8 +1414,9 @@ function isLikelyReDoSPattern(pattern) {
   const dangerousPatterns = [
     // Nested quantifiers like (a+)+, (a*)+, (a+)*
     /\([^)]*[+*]\)[+*]/,
-    // Alternation with overlapping groups like (a|a)*
-    /\([^)]*\|[^)]*\)[+*]/,
+    // Overlapping alternation under an outer quantifier like (a|a)+, (\w|\d)+. Scoped to
+    // capturing groups so the lazy (?:…)+? built-ins aren't false-flagged.
+    /\((?!\?)[^)]*\|[^)]*\)[+*]/,
     // Complex backtracking patterns - but more specific
     /\([^)]*[+*][^)]*[+*][^)]*\)[+*]/
   ];
@@ -1488,6 +1485,16 @@ function compilePatternEntries(patternEntries) {
     return null;
   }
 }
+var compiledPatternCache = /* @__PURE__ */ new WeakMap();
+function getCompiledPatternsForRule(rule) {
+  const key = rule.patterns;
+  if (compiledPatternCache.has(key)) {
+    return compiledPatternCache.get(key) ?? null;
+  }
+  const compiled = compilePatternEntries(convertPatternsToPatternEntries(rule.patterns));
+  compiledPatternCache.set(key, compiled);
+  return compiled;
+}
 function getCompiledAttributeNamePattern(rule) {
   if (!rule.attributePattern) {
     logger.debug("No attribute pattern provided, using default .*");
@@ -1581,7 +1588,7 @@ function maskStringByPatternBasedRule(value, rule) {
   if (!patternEntries || patternEntries.length === 0) {
     return mode === "partial" && value ? value[0] + "*****" : "*****";
   }
-  const compiledPatterns = compilePatternEntries(patternEntries);
+  const compiledPatterns = getCompiledPatternsForRule(rule);
   if (!compiledPatterns) {
     return value;
   }

package/dist/preload.js

@@ -893,7 +893,7 @@ function safeEnd(span) {
 
 // src/internal/version.ts
 function getSDKVersion() {
-  return "0.1.28";
+  return "0.1.29";
 }
 
 // src/internal/instrumentation/mcp/version.ts
@@ -1293,10 +1293,6 @@ var DEFAULT_PII_PATTERNS = [
     name: "pgp_private_keys",
     pattern: "-----BEGIN PGP PRIVATE KEY BLOCK-----"
   },
-  {
-    name: "certificates",
-    pattern: "-----BEGIN CERTIFICATE-----"
-  },
   // Additional API Keys and Tokens
   {
     name: "google_oauth",
@@ -1345,7 +1341,7 @@ var DEFAULT_PII_PATTERNS = [
   },
   {
     name: "ssl_certificates",
-    pattern: String.raw`-----BEGIN CERTIFICATE-----(?:.|\n)+?\s-----END CERTIFICATE-----`
+    pattern: String.raw`-----BEGIN CERTIFICATE-----(?:.|\n)+?\s*-----END CERTIFICATE-----`
   },
   {
     name: "ssh_dss_public",
@@ -1403,8 +1399,9 @@ function isLikelyReDoSPattern(pattern) {
   const dangerousPatterns = [
     // Nested quantifiers like (a+)+, (a*)+, (a+)*
     /\([^)]*[+*]\)[+*]/,
-    // Alternation with overlapping groups like (a|a)*
-    /\([^)]*\|[^)]*\)[+*]/,
+    // Overlapping alternation under an outer quantifier like (a|a)+, (\w|\d)+. Scoped to
+    // capturing groups so the lazy (?:…)+? built-ins aren't false-flagged.
+    /\((?!\?)[^)]*\|[^)]*\)[+*]/,
     // Complex backtracking patterns - but more specific
     /\([^)]*[+*][^)]*[+*][^)]*\)[+*]/
   ];
@@ -1473,6 +1470,16 @@ function compilePatternEntries(patternEntries) {
     return null;
   }
 }
+var compiledPatternCache = /* @__PURE__ */ new WeakMap();
+function getCompiledPatternsForRule(rule) {
+  const key = rule.patterns;
+  if (compiledPatternCache.has(key)) {
+    return compiledPatternCache.get(key) ?? null;
+  }
+  const compiled = compilePatternEntries(convertPatternsToPatternEntries(rule.patterns));
+  compiledPatternCache.set(key, compiled);
+  return compiled;
+}
 function getCompiledAttributeNamePattern(rule) {
   if (!rule.attributePattern) {
     logger.debug("No attribute pattern provided, using default .*");
@@ -1566,7 +1573,7 @@ function maskStringByPatternBasedRule(value, rule) {
   if (!patternEntries || patternEntries.length === 0) {
     return mode === "partial" && value ? value[0] + "*****" : "*****";
   }
-  const compiledPatterns = compilePatternEntries(patternEntries);
+  const compiledPatterns = getCompiledPatternsForRule(rule);
   if (!compiledPatterns) {
     return value;
   }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@brizz/sdk",
-  "version": "0.1.28",
+  "version": "0.1.29",
   "type": "module",
   "description": "OpenTelemetry-based observability SDK for AI applications",
   "keywords": [
@@ -94,14 +94,14 @@
     "@modelcontextprotocol/sdk": "^1.29.0",
     "@types/jest": "^30.0.0",
     "@types/node": "^25.9.2",
-    "@typescript-eslint/eslint-plugin": "^8.60.1",
-    "@typescript-eslint/parser": "^8.60.1",
-    "ai": "^6.0.197",
+    "@typescript-eslint/eslint-plugin": "^8.61.0",
+    "@typescript-eslint/parser": "^8.61.0",
+    "ai": "^6.0.198",
     "eslint": "^10.4.1",
     "eslint-config-prettier": "^10.1.8",
     "eslint-plugin-import": "^2.32.0",
     "eslint-plugin-promise": "^7.3.0",
-    "eslint-plugin-unicorn": "^65.0.0",
+    "eslint-plugin-unicorn": "^65.0.1",
     "jest": "^30.4.2",
     "jest-environment-jsdom": "^30.4.1",
     "openai": "^6.42.0",
@@ -159,7 +159,7 @@
     "@traceloop/instrumentation-qdrant": "^0.27.0",
     "@traceloop/instrumentation-together": "^0.27.0",
     "@traceloop/instrumentation-vertexai": "^0.27.0",
-    "import-in-the-middle": "^3.0.0",
+    "import-in-the-middle": "^3.0.2",
     "pino": "^10.3.1",
     "pino-pretty": "^13.1.3",
     "tslib": "^2.8.1"