@bugwatch/express 0.1.0

package/dist/index.d.mts

@@ -0,0 +1,220 @@
+import { Request, Response, NextFunction, Express, Application, RequestHandler, ErrorRequestHandler } from 'express';
+import { UserContext, BugwatchOptions } from '@bugwatch/core';
+export { addBreadcrumb, captureException, captureMessage, close, flush, getClient, init, setExtra, setTag, setUser } from '@bugwatch/core';
+
+/**
+ * Options for the Bugwatch Express middleware
+ */
+interface BugwatchExpressOptions {
+    /**
+     * Extract user context from the request.
+     * Return null to skip user context extraction.
+     */
+    extractUser?: (req: Request) => UserContext | null;
+    /**
+     * Filter headers before sending to Bugwatch.
+     * Return true to include the header, false to exclude.
+     * By default, sensitive headers are excluded.
+     */
+    filterHeaders?: (name: string, value: string) => boolean;
+    /**
+     * Filter body fields before sending to Bugwatch.
+     * Return true to include the field, false to exclude.
+     */
+    filterBody?: (key: string, value: unknown) => boolean;
+    /**
+     * Whether to include request body in error context.
+     * @default false
+     */
+    includeBody?: boolean;
+    /**
+     * Whether to add breadcrumbs for requests.
+     * @default true
+     */
+    addBreadcrumbs?: boolean;
+    /**
+     * Whether to flush events before sending error response.
+     * Useful for serverless environments.
+     * @default false
+     */
+    flushOnError?: boolean;
+}
+/**
+ * Extended Express Request with Bugwatch context
+ */
+interface BugwatchRequest extends Request {
+    bugwatch?: {
+        eventId?: string;
+        startTime: number;
+    };
+}
+/**
+ * Async request handler type
+ */
+type AsyncRequestHandler = (req: Request, res: Response, next: NextFunction) => Promise<void>;
+
+/**
+ * One-liner setup for Bugwatch Express integration.
+ *
+ * This module provides a simplified setup function that handles all
+ * initialization and middleware registration in a single call.
+ */
+
+/**
+ * Combined options for Express setup.
+ * Includes both core SDK options and Express-specific middleware options.
+ */
+interface BugwatchExpressSetupOptions extends BugwatchExpressOptions, Partial<BugwatchOptions> {
+}
+/**
+ * Result object returned by setup() for advanced use cases.
+ */
+interface BugwatchSetupResult {
+    /**
+     * Manually add the error handler middleware.
+     * Call this if you're not using app.listen() directly (e.g., http.createServer).
+     *
+     * @example
+     * ```typescript
+     * const { addErrorHandler } = setup(app);
+     *
+     * // Define your routes...
+     *
+     * // If not using app.listen(), manually add error handler after routes:
+     * addErrorHandler();
+     *
+     * http.createServer(app).listen(3000);
+     * ```
+     */
+    addErrorHandler: () => void;
+}
+/**
+ * Set up Bugwatch for an Express application with a single call.
+ *
+ * This function:
+ * 1. Initializes the Bugwatch SDK (using env vars if no apiKey provided)
+ * 2. Adds the request handler middleware immediately
+ * 3. Hooks into app.listen() to add the error handler before the server starts
+ *
+ * **Important**: Call `setup()` early, before defining your routes, so the
+ * request handler can capture context for all requests.
+ *
+ * @param app - The Express application instance
+ * @param options - Configuration options (optional if BUGWATCH_API_KEY env var is set)
+ * @returns Object with `addErrorHandler()` for manual error handler registration
+ *
+ * @example Basic usage (recommended)
+ * ```typescript
+ * import express from "express";
+ * import { setup } from "@bugwatch/express";
+ *
+ * const app = express();
+ *
+ * // Call setup BEFORE defining routes
+ * setup(app);
+ *
+ * app.get("/", (req, res) => res.send("Hello!"));
+ *
+ * // Error handler is automatically added when listen() is called
+ * app.listen(3000);
+ * ```
+ *
+ * @example With explicit options
+ * ```typescript
+ * setup(app, {
+ *   apiKey: "bw_live_xxxxx",
+ *   environment: "production",
+ *   extractUser: (req) => ({ id: req.user?.id }),
+ * });
+ * ```
+ *
+ * @example With http.createServer (manual error handler)
+ * ```typescript
+ * import http from "http";
+ * import express from "express";
+ * import { setup } from "@bugwatch/express";
+ *
+ * const app = express();
+ * const { addErrorHandler } = setup(app);
+ *
+ * app.get("/", (req, res) => res.send("Hello!"));
+ *
+ * // Manually add error handler AFTER routes
+ * addErrorHandler();
+ *
+ * http.createServer(app).listen(3000);
+ * ```
+ */
+declare function setup(app: Express | Application, options?: BugwatchExpressSetupOptions): BugwatchSetupResult;
+
+/**
+ * Request handler middleware that adds request context and breadcrumbs.
+ *
+ * This middleware should be added early in your middleware chain.
+ * Uses AsyncLocalStorage for request-scoped context isolation to prevent
+ * user context leakage between concurrent requests.
+ *
+ * @example
+ * ```typescript
+ * import express from "express";
+ * import { requestHandler } from "@bugwatch/express";
+ *
+ * const app = express();
+ * app.use(requestHandler());
+ * ```
+ */
+declare function requestHandler(options?: BugwatchExpressOptions): RequestHandler;
+/**
+ * Error handler middleware that captures errors to Bugwatch.
+ *
+ * This middleware should be added after all your routes.
+ *
+ * @example
+ * ```typescript
+ * import express from "express";
+ * import { requestHandler, errorHandler } from "@bugwatch/express";
+ *
+ * const app = express();
+ * app.use(requestHandler());
+ *
+ * // ... your routes ...
+ *
+ * app.use(errorHandler());
+ * ```
+ */
+declare function errorHandler(options?: BugwatchExpressOptions): ErrorRequestHandler;
+/**
+ * Wrap an async request handler to automatically capture errors.
+ *
+ * @example
+ * ```typescript
+ * import { wrapHandler } from "@bugwatch/express";
+ *
+ * app.get("/users/:id", wrapHandler(async (req, res) => {
+ *   const user = await getUserById(req.params.id);
+ *   res.json(user);
+ * }));
+ * ```
+ */
+declare function wrapHandler(handler: AsyncRequestHandler): RequestHandler;
+/**
+ * Manually capture an error with Express request context.
+ *
+ * @example
+ * ```typescript
+ * import { captureError } from "@bugwatch/express";
+ *
+ * app.get("/users/:id", (req, res) => {
+ *   try {
+ *     const user = getUserById(req.params.id);
+ *     res.json(user);
+ *   } catch (err) {
+ *     captureError(req, err);
+ *     res.status(500).json({ error: "Internal server error" });
+ *   }
+ * });
+ * ```
+ */
+declare function captureError(req: Request, error: Error, options?: BugwatchExpressOptions): string;
+
+export { type AsyncRequestHandler, type BugwatchExpressOptions, type BugwatchExpressSetupOptions, type BugwatchRequest, type BugwatchSetupResult, captureError, errorHandler, requestHandler, setup, wrapHandler };

package/dist/index.d.ts

@@ -0,0 +1,220 @@
+import { Request, Response, NextFunction, Express, Application, RequestHandler, ErrorRequestHandler } from 'express';
+import { UserContext, BugwatchOptions } from '@bugwatch/core';
+export { addBreadcrumb, captureException, captureMessage, close, flush, getClient, init, setExtra, setTag, setUser } from '@bugwatch/core';
+
+/**
+ * Options for the Bugwatch Express middleware
+ */
+interface BugwatchExpressOptions {
+    /**
+     * Extract user context from the request.
+     * Return null to skip user context extraction.
+     */
+    extractUser?: (req: Request) => UserContext | null;
+    /**
+     * Filter headers before sending to Bugwatch.
+     * Return true to include the header, false to exclude.
+     * By default, sensitive headers are excluded.
+     */
+    filterHeaders?: (name: string, value: string) => boolean;
+    /**
+     * Filter body fields before sending to Bugwatch.
+     * Return true to include the field, false to exclude.
+     */
+    filterBody?: (key: string, value: unknown) => boolean;
+    /**
+     * Whether to include request body in error context.
+     * @default false
+     */
+    includeBody?: boolean;
+    /**
+     * Whether to add breadcrumbs for requests.
+     * @default true
+     */
+    addBreadcrumbs?: boolean;
+    /**
+     * Whether to flush events before sending error response.
+     * Useful for serverless environments.
+     * @default false
+     */
+    flushOnError?: boolean;
+}
+/**
+ * Extended Express Request with Bugwatch context
+ */
+interface BugwatchRequest extends Request {
+    bugwatch?: {
+        eventId?: string;
+        startTime: number;
+    };
+}
+/**
+ * Async request handler type
+ */
+type AsyncRequestHandler = (req: Request, res: Response, next: NextFunction) => Promise<void>;
+
+/**
+ * One-liner setup for Bugwatch Express integration.
+ *
+ * This module provides a simplified setup function that handles all
+ * initialization and middleware registration in a single call.
+ */
+
+/**
+ * Combined options for Express setup.
+ * Includes both core SDK options and Express-specific middleware options.
+ */
+interface BugwatchExpressSetupOptions extends BugwatchExpressOptions, Partial<BugwatchOptions> {
+}
+/**
+ * Result object returned by setup() for advanced use cases.
+ */
+interface BugwatchSetupResult {
+    /**
+     * Manually add the error handler middleware.
+     * Call this if you're not using app.listen() directly (e.g., http.createServer).
+     *
+     * @example
+     * ```typescript
+     * const { addErrorHandler } = setup(app);
+     *
+     * // Define your routes...
+     *
+     * // If not using app.listen(), manually add error handler after routes:
+     * addErrorHandler();
+     *
+     * http.createServer(app).listen(3000);
+     * ```
+     */
+    addErrorHandler: () => void;
+}
+/**
+ * Set up Bugwatch for an Express application with a single call.
+ *
+ * This function:
+ * 1. Initializes the Bugwatch SDK (using env vars if no apiKey provided)
+ * 2. Adds the request handler middleware immediately
+ * 3. Hooks into app.listen() to add the error handler before the server starts
+ *
+ * **Important**: Call `setup()` early, before defining your routes, so the
+ * request handler can capture context for all requests.
+ *
+ * @param app - The Express application instance
+ * @param options - Configuration options (optional if BUGWATCH_API_KEY env var is set)
+ * @returns Object with `addErrorHandler()` for manual error handler registration
+ *
+ * @example Basic usage (recommended)
+ * ```typescript
+ * import express from "express";
+ * import { setup } from "@bugwatch/express";
+ *
+ * const app = express();
+ *
+ * // Call setup BEFORE defining routes
+ * setup(app);
+ *
+ * app.get("/", (req, res) => res.send("Hello!"));
+ *
+ * // Error handler is automatically added when listen() is called
+ * app.listen(3000);
+ * ```
+ *
+ * @example With explicit options
+ * ```typescript
+ * setup(app, {
+ *   apiKey: "bw_live_xxxxx",
+ *   environment: "production",
+ *   extractUser: (req) => ({ id: req.user?.id }),
+ * });
+ * ```
+ *
+ * @example With http.createServer (manual error handler)
+ * ```typescript
+ * import http from "http";
+ * import express from "express";
+ * import { setup } from "@bugwatch/express";
+ *
+ * const app = express();
+ * const { addErrorHandler } = setup(app);
+ *
+ * app.get("/", (req, res) => res.send("Hello!"));
+ *
+ * // Manually add error handler AFTER routes
+ * addErrorHandler();
+ *
+ * http.createServer(app).listen(3000);
+ * ```
+ */
+declare function setup(app: Express | Application, options?: BugwatchExpressSetupOptions): BugwatchSetupResult;
+
+/**
+ * Request handler middleware that adds request context and breadcrumbs.
+ *
+ * This middleware should be added early in your middleware chain.
+ * Uses AsyncLocalStorage for request-scoped context isolation to prevent
+ * user context leakage between concurrent requests.
+ *
+ * @example
+ * ```typescript
+ * import express from "express";
+ * import { requestHandler } from "@bugwatch/express";
+ *
+ * const app = express();
+ * app.use(requestHandler());
+ * ```
+ */
+declare function requestHandler(options?: BugwatchExpressOptions): RequestHandler;
+/**
+ * Error handler middleware that captures errors to Bugwatch.
+ *
+ * This middleware should be added after all your routes.
+ *
+ * @example
+ * ```typescript
+ * import express from "express";
+ * import { requestHandler, errorHandler } from "@bugwatch/express";
+ *
+ * const app = express();
+ * app.use(requestHandler());
+ *
+ * // ... your routes ...
+ *
+ * app.use(errorHandler());
+ * ```
+ */
+declare function errorHandler(options?: BugwatchExpressOptions): ErrorRequestHandler;
+/**
+ * Wrap an async request handler to automatically capture errors.
+ *
+ * @example
+ * ```typescript
+ * import { wrapHandler } from "@bugwatch/express";
+ *
+ * app.get("/users/:id", wrapHandler(async (req, res) => {
+ *   const user = await getUserById(req.params.id);
+ *   res.json(user);
+ * }));
+ * ```
+ */
+declare function wrapHandler(handler: AsyncRequestHandler): RequestHandler;
+/**
+ * Manually capture an error with Express request context.
+ *
+ * @example
+ * ```typescript
+ * import { captureError } from "@bugwatch/express";
+ *
+ * app.get("/users/:id", (req, res) => {
+ *   try {
+ *     const user = getUserById(req.params.id);
+ *     res.json(user);
+ *   } catch (err) {
+ *     captureError(req, err);
+ *     res.status(500).json({ error: "Internal server error" });
+ *   }
+ * });
+ * ```
+ */
+declare function captureError(req: Request, error: Error, options?: BugwatchExpressOptions): string;
+
+export { type AsyncRequestHandler, type BugwatchExpressOptions, type BugwatchExpressSetupOptions, type BugwatchRequest, type BugwatchSetupResult, captureError, errorHandler, requestHandler, setup, wrapHandler };

package/dist/index.js

@@ -0,0 +1,319 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/index.ts
+var index_exports = {};
+__export(index_exports, {
+  addBreadcrumb: () => import_core3.addBreadcrumb,
+  captureError: () => captureError,
+  captureException: () => import_core3.captureException,
+  captureMessage: () => import_core3.captureMessage,
+  close: () => import_core3.close,
+  errorHandler: () => errorHandler,
+  flush: () => import_core3.flush,
+  getClient: () => import_core3.getClient,
+  init: () => import_core3.init,
+  requestHandler: () => requestHandler,
+  setExtra: () => import_core3.setExtra,
+  setTag: () => import_core3.setTag,
+  setUser: () => import_core3.setUser,
+  setup: () => setup,
+  wrapHandler: () => wrapHandler
+});
+module.exports = __toCommonJS(index_exports);
+
+// src/setup.ts
+var import_core2 = require("@bugwatch/core");
+
+// src/middleware.ts
+var import_core = require("@bugwatch/core");
+var SENSITIVE_HEADERS = /* @__PURE__ */ new Set([
+  "authorization",
+  "cookie",
+  "set-cookie",
+  "x-api-key",
+  "x-auth-token",
+  "x-csrf-token",
+  "x-xsrf-token",
+  "proxy-authorization"
+]);
+var SENSITIVE_BODY_FIELDS = /* @__PURE__ */ new Set([
+  "password",
+  "secret",
+  "token",
+  "api_key",
+  "apiKey",
+  "credit_card",
+  "creditCard",
+  "ssn",
+  "social_security"
+]);
+function defaultHeaderFilter(name) {
+  return !SENSITIVE_HEADERS.has(name.toLowerCase());
+}
+function defaultBodyFilter(key) {
+  return !SENSITIVE_BODY_FIELDS.has(key.toLowerCase());
+}
+function filterObject(obj, filter) {
+  const result = {};
+  for (const [key, value] of Object.entries(obj)) {
+    if (filter(key, value)) {
+      result[key] = value;
+    }
+  }
+  return result;
+}
+function extractRequestContext(req, options) {
+  const headerFilter = options.filterHeaders || defaultHeaderFilter;
+  const bodyFilter = options.filterBody || defaultBodyFilter;
+  const headers = {};
+  for (const [name, value] of Object.entries(req.headers)) {
+    if (typeof value === "string" && headerFilter(name, value)) {
+      headers[name] = value;
+    } else if (Array.isArray(value)) {
+      const filtered = value.filter((v) => headerFilter(name, v));
+      if (filtered.length > 0) {
+        headers[name] = filtered.join(", ");
+      }
+    }
+  }
+  const context = {
+    url: `${req.protocol}://${req.get("host")}${req.originalUrl}`,
+    method: req.method,
+    headers,
+    query_string: req.url.includes("?") ? req.url.split("?")[1] : void 0
+  };
+  if (options.includeBody && req.body && typeof req.body === "object") {
+    context.data = filterObject(req.body, bodyFilter);
+  }
+  return context;
+}
+function extractClientIp(req) {
+  const forwarded = req.get("x-forwarded-for");
+  if (forwarded) {
+    const firstIp = forwarded.split(",")[0]?.trim();
+    if (firstIp) return firstIp;
+  }
+  const realIp = req.get("x-real-ip");
+  if (realIp) return realIp;
+  const cfIp = req.get("cf-connecting-ip");
+  if (cfIp) return cfIp;
+  return req.socket.remoteAddress;
+}
+function requestHandler(options = {}) {
+  return (req, res, next) => {
+    const client = (0, import_core.getClient)();
+    if (!client) {
+      return next();
+    }
+    const scopedContext = (0, import_core.createScopedContext)();
+    req.bugwatch = { startTime: Date.now() };
+    if (options.extractUser) {
+      const user = options.extractUser(req);
+      if (user) {
+        scopedContext.user = user;
+      }
+    }
+    (0, import_core.runWithContext)(scopedContext, () => {
+      if (options.addBreadcrumbs !== false) {
+        (0, import_core.addBreadcrumb)({
+          category: "http",
+          message: `${req.method} ${req.path}`,
+          level: "info",
+          data: {
+            method: req.method,
+            url: req.originalUrl
+          }
+        });
+      }
+      const originalEnd = res.end.bind(res);
+      res.end = function(...args) {
+        if (options.addBreadcrumbs !== false) {
+          const duration = Date.now() - (req.bugwatch?.startTime || Date.now());
+          (0, import_core.addBreadcrumb)({
+            category: "http",
+            message: `${req.method} ${req.path} -> ${res.statusCode}`,
+            level: res.statusCode >= 500 ? "error" : res.statusCode >= 400 ? "warning" : "info",
+            data: {
+              method: req.method,
+              url: req.originalUrl,
+              status_code: res.statusCode,
+              duration_ms: duration
+            }
+          });
+        }
+        return originalEnd(...args);
+      };
+      next();
+    });
+  };
+}
+function errorHandler(options = {}) {
+  return async (err, req, res, next) => {
+    const client = (0, import_core.getClient)();
+    if (!client) {
+      return next(err);
+    }
+    const requestContext = extractRequestContext(req, options);
+    const extra = {
+      request: requestContext
+    };
+    const clientIp = extractClientIp(req);
+    if (clientIp) {
+      extra.client_ip = clientIp;
+    }
+    const eventId = (0, import_core.captureException)(err, {
+      request: requestContext,
+      extra,
+      tags: {
+        "http.method": req.method,
+        "http.url": req.originalUrl
+      }
+    });
+    if (req.bugwatch) {
+      req.bugwatch.eventId = eventId;
+    }
+    if (options.flushOnError) {
+      await (0, import_core.flush)();
+    }
+    next(err);
+  };
+}
+function wrapHandler(handler) {
+  return (req, res, next) => {
+    Promise.resolve(handler(req, res, next)).catch(next);
+  };
+}
+function captureError(req, error, options = {}) {
+  const client = (0, import_core.getClient)();
+  if (!client) {
+    return "";
+  }
+  const requestContext = extractRequestContext(req, options);
+  const clientIp = extractClientIp(req);
+  return (0, import_core.captureException)(error, {
+    request: requestContext,
+    extra: {
+      request: requestContext,
+      ...clientIp && { client_ip: clientIp }
+    },
+    tags: {
+      "http.method": req.method,
+      "http.url": req.originalUrl
+    }
+  });
+}
+
+// src/setup.ts
+var setupApps = /* @__PURE__ */ new WeakSet();
+var initializationInProgress = false;
+var initializationPromise = null;
+async function ensureInitialized(options) {
+  if ((0, import_core2.getClient)()) {
+    return;
+  }
+  if (initializationInProgress && initializationPromise) {
+    await initializationPromise;
+    return;
+  }
+  initializationInProgress = true;
+  initializationPromise = (async () => {
+    try {
+      if ((0, import_core2.getClient)()) {
+        return;
+      }
+      const coreOptions = {};
+      if (options?.apiKey) coreOptions.apiKey = options.apiKey;
+      if (options?.endpoint) coreOptions.endpoint = options.endpoint;
+      if (options?.environment) coreOptions.environment = options.environment;
+      if (options?.release) coreOptions.release = options.release;
+      if (options?.debug !== void 0) coreOptions.debug = options.debug;
+      if (options?.sampleRate !== void 0) coreOptions.sampleRate = options.sampleRate;
+      if (options?.maxBreadcrumbs !== void 0) coreOptions.maxBreadcrumbs = options.maxBreadcrumbs;
+      if (options?.tags) coreOptions.tags = options.tags;
+      if (options?.user) coreOptions.user = options.user;
+      if (options?.beforeSend) coreOptions.beforeSend = options.beforeSend;
+      if (options?.ignoreErrors) coreOptions.ignoreErrors = options.ignoreErrors;
+      (0, import_core2.init)(coreOptions);
+    } finally {
+      initializationInProgress = false;
+    }
+  })();
+  await initializationPromise;
+}
+function setup(app, options) {
+  if (setupApps.has(app)) {
+    console.warn("[Bugwatch] setup() already called for this app. Skipping.");
+    return {
+      addErrorHandler: () => {
+      }
+    };
+  }
+  setupApps.add(app);
+  ensureInitialized(options).catch((err) => {
+    if (options?.debug) {
+      console.error("[Bugwatch] Initialization failed:", err);
+    }
+  });
+  const middlewareOptions = {};
+  if (options?.extractUser) middlewareOptions.extractUser = options.extractUser;
+  if (options?.filterHeaders) middlewareOptions.filterHeaders = options.filterHeaders;
+  if (options?.filterBody) middlewareOptions.filterBody = options.filterBody;
+  if (options?.includeBody !== void 0) middlewareOptions.includeBody = options.includeBody;
+  if (options?.addBreadcrumbs !== void 0) middlewareOptions.addBreadcrumbs = options.addBreadcrumbs;
+  if (options?.flushOnError !== void 0) middlewareOptions.flushOnError = options.flushOnError;
+  app.use(requestHandler(middlewareOptions));
+  let errorHandlerAdded = false;
+  const addErrorHandler = () => {
+    if (errorHandlerAdded) {
+      return;
+    }
+    errorHandlerAdded = true;
+    app.use(errorHandler(middlewareOptions));
+  };
+  const originalListen = app.listen.bind(app);
+  app.listen = function(...args) {
+    addErrorHandler();
+    app.listen = originalListen;
+    return originalListen(...args);
+  };
+  return { addErrorHandler };
+}
+
+// src/index.ts
+var import_core3 = require("@bugwatch/core");
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  addBreadcrumb,
+  captureError,
+  captureException,
+  captureMessage,
+  close,
+  errorHandler,
+  flush,
+  getClient,
+  init,
+  requestHandler,
+  setExtra,
+  setTag,
+  setUser,
+  setup,
+  wrapHandler
+});
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/index.ts","../src/setup.ts","../src/middleware.ts"],"sourcesContent":["/**\n * @bugwatch/express - Express.js integration for Bugwatch\n *\n * This package provides middleware for automatically capturing errors\n * and request context in Express.js applications.\n *\n * @example One-liner setup (recommended)\n * ```typescript\n * import express from \"express\";\n * import { setup } from \"@bugwatch/express\";\n *\n * const app = express();\n *\n * // Single call handles everything (uses BUGWATCH_API_KEY env var)\n * setup(app);\n *\n * // Or with explicit options\n * setup(app, {\n *   apiKey: \"bw_live_xxxxx\",\n *   extractUser: (req) => ({ id: req.user?.id }),\n * });\n *\n * app.get(\"/\", (req, res) => res.send(\"Hello World!\"));\n *\n * app.listen(3000);\n * ```\n *\n * @example Manual setup (for more control)\n * ```typescript\n * import express from \"express\";\n * import { init } from \"@bugwatch/core\";\n * import { requestHandler, errorHandler } from \"@bugwatch/express\";\n *\n * init({ apiKey: \"your-api-key\" });\n *\n * const app = express();\n * app.use(requestHandler());\n *\n * // Your routes...\n *\n * app.use(errorHandler());\n * app.listen(3000);\n * ```\n */\n\n// Export one-liner setup\nexport { setup } from \"./setup\";\nexport type { BugwatchExpressSetupOptions, BugwatchSetupResult } from \"./setup\";\n\n// Export middleware functions\nexport {\n  requestHandler,\n  errorHandler,\n  wrapHandler,\n  captureError,\n} from \"./middleware\";\n\n// Export types\nexport type {\n  BugwatchExpressOptions,\n  BugwatchRequest,\n  AsyncRequestHandler,\n} from \"./types\";\n\n// Re-export core functions for convenience\nexport {\n  init,\n  getClient,\n  captureException,\n  captureMessage,\n  addBreadcrumb,\n  setUser,\n  setTag,\n  setExtra,\n  flush,\n  close,\n} from \"@bugwatch/core\";\n","/**\n * One-liner setup for Bugwatch Express integration.\n *\n * This module provides a simplified setup function that handles all\n * initialization and middleware registration in a single call.\n */\n\nimport type { Express, Application } from \"express\";\nimport { init, getClient, type BugwatchOptions } from \"@bugwatch/core\";\nimport { requestHandler, errorHandler } from \"./middleware\";\nimport type { BugwatchExpressOptions } from \"./types\";\n\n/**\n * Combined options for Express setup.\n * Includes both core SDK options and Express-specific middleware options.\n */\nexport interface BugwatchExpressSetupOptions\n  extends BugwatchExpressOptions,\n    Partial<BugwatchOptions> {}\n\n/**\n * Result object returned by setup() for advanced use cases.\n */\nexport interface BugwatchSetupResult {\n  /**\n   * Manually add the error handler middleware.\n   * Call this if you're not using app.listen() directly (e.g., http.createServer).\n   *\n   * @example\n   * ```typescript\n   * const { addErrorHandler } = setup(app);\n   *\n   * // Define your routes...\n   *\n   * // If not using app.listen(), manually add error handler after routes:\n   * addErrorHandler();\n   *\n   * http.createServer(app).listen(3000);\n   * ```\n   */\n  addErrorHandler: () => void;\n}\n\n// Track which apps have been set up to prevent double-setup\nconst setupApps = new WeakSet<Express | Application>();\n\n// Mutex for thread-safe initialization\nlet initializationInProgress = false;\nlet initializationPromise: Promise<void> | null = null;\n\n/**\n * Thread-safe SDK initialization\n */\nasync function ensureInitialized(options?: Partial<BugwatchOptions>): Promise<void> {\n  // Fast path: already initialized\n  if (getClient()) {\n    return;\n  }\n\n  // If initialization is in progress, wait for it\n  if (initializationInProgress && initializationPromise) {\n    await initializationPromise;\n    return;\n  }\n\n  // Start initialization\n  initializationInProgress = true;\n  initializationPromise = (async () => {\n    try {\n      // Double-check after acquiring \"lock\"\n      if (getClient()) {\n        return;\n      }\n\n      // Extract core options\n      const coreOptions: Partial<BugwatchOptions> = {};\n      if (options?.apiKey) coreOptions.apiKey = options.apiKey;\n      if (options?.endpoint) coreOptions.endpoint = options.endpoint;\n      if (options?.environment) coreOptions.environment = options.environment;\n      if (options?.release) coreOptions.release = options.release;\n      if (options?.debug !== undefined) coreOptions.debug = options.debug;\n      if (options?.sampleRate !== undefined) coreOptions.sampleRate = options.sampleRate;\n      if (options?.maxBreadcrumbs !== undefined) coreOptions.maxBreadcrumbs = options.maxBreadcrumbs;\n      if (options?.tags) coreOptions.tags = options.tags;\n      if (options?.user) coreOptions.user = options.user;\n      if (options?.beforeSend) coreOptions.beforeSend = options.beforeSend;\n      if (options?.ignoreErrors) coreOptions.ignoreErrors = options.ignoreErrors;\n\n      init(coreOptions);\n    } finally {\n      initializationInProgress = false;\n    }\n  })();\n\n  await initializationPromise;\n}\n\n/**\n * Set up Bugwatch for an Express application with a single call.\n *\n * This function:\n * 1. Initializes the Bugwatch SDK (using env vars if no apiKey provided)\n * 2. Adds the request handler middleware immediately\n * 3. Hooks into app.listen() to add the error handler before the server starts\n *\n * **Important**: Call `setup()` early, before defining your routes, so the\n * request handler can capture context for all requests.\n *\n * @param app - The Express application instance\n * @param options - Configuration options (optional if BUGWATCH_API_KEY env var is set)\n * @returns Object with `addErrorHandler()` for manual error handler registration\n *\n * @example Basic usage (recommended)\n * ```typescript\n * import express from \"express\";\n * import { setup } from \"@bugwatch/express\";\n *\n * const app = express();\n *\n * // Call setup BEFORE defining routes\n * setup(app);\n *\n * app.get(\"/\", (req, res) => res.send(\"Hello!\"));\n *\n * // Error handler is automatically added when listen() is called\n * app.listen(3000);\n * ```\n *\n * @example With explicit options\n * ```typescript\n * setup(app, {\n *   apiKey: \"bw_live_xxxxx\",\n *   environment: \"production\",\n *   extractUser: (req) => ({ id: req.user?.id }),\n * });\n * ```\n *\n * @example With http.createServer (manual error handler)\n * ```typescript\n * import http from \"http\";\n * import express from \"express\";\n * import { setup } from \"@bugwatch/express\";\n *\n * const app = express();\n * const { addErrorHandler } = setup(app);\n *\n * app.get(\"/\", (req, res) => res.send(\"Hello!\"));\n *\n * // Manually add error handler AFTER routes\n * addErrorHandler();\n *\n * http.createServer(app).listen(3000);\n * ```\n */\nexport function setup(\n  app: Express | Application,\n  options?: BugwatchExpressSetupOptions\n): BugwatchSetupResult {\n  // Prevent double-setup\n  if (setupApps.has(app)) {\n    console.warn(\"[Bugwatch] setup() already called for this app. Skipping.\");\n    return {\n      addErrorHandler: () => {\n        // No-op for already-setup apps\n      },\n    };\n  }\n  setupApps.add(app);\n\n  // Initialize core SDK with race condition protection\n  // Note: This is async but we don't await it here to avoid breaking the sync API\n  // The initialization will complete before any requests are handled\n  ensureInitialized(options).catch((err) => {\n    if (options?.debug) {\n      console.error(\"[Bugwatch] Initialization failed:\", err);\n    }\n  });\n\n  // Extract middleware-specific options\n  const middlewareOptions: BugwatchExpressOptions = {};\n  if (options?.extractUser) middlewareOptions.extractUser = options.extractUser;\n  if (options?.filterHeaders) middlewareOptions.filterHeaders = options.filterHeaders;\n  if (options?.filterBody) middlewareOptions.filterBody = options.filterBody;\n  if (options?.includeBody !== undefined) middlewareOptions.includeBody = options.includeBody;\n  if (options?.addBreadcrumbs !== undefined) middlewareOptions.addBreadcrumbs = options.addBreadcrumbs;\n  if (options?.flushOnError !== undefined) middlewareOptions.flushOnError = options.flushOnError;\n\n  // Add request handler middleware early\n  app.use(requestHandler(middlewareOptions));\n\n  // Track whether error handler has been added\n  let errorHandlerAdded = false;\n\n  /**\n   * Add the error handler middleware.\n   * This should be called AFTER all routes are defined.\n   */\n  const addErrorHandler = (): void => {\n    if (errorHandlerAdded) {\n      return; // Already added, skip\n    }\n    errorHandlerAdded = true;\n    app.use(errorHandler(middlewareOptions));\n  };\n\n  // Hook into app.listen to add error handler automatically\n  const originalListen = app.listen.bind(app);\n\n  (app as any).listen = function (\n    ...args: Parameters<typeof originalListen>\n  ): ReturnType<typeof originalListen> {\n    // Add error handler before calling original listen\n    addErrorHandler();\n\n    // Restore original listen for any future calls\n    (app as any).listen = originalListen;\n\n    return originalListen(...args);\n  };\n\n  return { addErrorHandler };\n}\n","import type { Request, Response, NextFunction, RequestHandler, ErrorRequestHandler } from \"express\";\nimport {\n  getClient,\n  captureException,\n  addBreadcrumb,\n  setUser,\n  flush,\n  runWithContext,\n  createScopedContext,\n  type RequestContext,\n  type ErrorEvent,\n  type ScopedContext,\n} from \"@bugwatch/core\";\nimport type { BugwatchExpressOptions, BugwatchRequest, AsyncRequestHandler } from \"./types\";\n\n/**\n * Headers that should be filtered out by default for security.\n */\nconst SENSITIVE_HEADERS = new Set([\n  \"authorization\",\n  \"cookie\",\n  \"set-cookie\",\n  \"x-api-key\",\n  \"x-auth-token\",\n  \"x-csrf-token\",\n  \"x-xsrf-token\",\n  \"proxy-authorization\",\n]);\n\n/**\n * Body fields that should be filtered out by default for security.\n */\nconst SENSITIVE_BODY_FIELDS = new Set([\n  \"password\",\n  \"secret\",\n  \"token\",\n  \"api_key\",\n  \"apiKey\",\n  \"credit_card\",\n  \"creditCard\",\n  \"ssn\",\n  \"social_security\",\n]);\n\n/**\n * Default header filter function.\n */\nfunction defaultHeaderFilter(name: string): boolean {\n  return !SENSITIVE_HEADERS.has(name.toLowerCase());\n}\n\n/**\n * Default body field filter function.\n */\nfunction defaultBodyFilter(key: string): boolean {\n  return !SENSITIVE_BODY_FIELDS.has(key.toLowerCase());\n}\n\n/**\n * Filter an object's keys based on a filter function.\n */\nfunction filterObject<T extends Record<string, unknown>>(\n  obj: T,\n  filter: (key: string, value: unknown) => boolean\n): Partial<T> {\n  const result: Partial<T> = {};\n  for (const [key, value] of Object.entries(obj)) {\n    if (filter(key, value)) {\n      (result as Record<string, unknown>)[key] = value;\n    }\n  }\n  return result;\n}\n\n/**\n * Extract request context from an Express request.\n */\nfunction extractRequestContext(\n  req: Request,\n  options: BugwatchExpressOptions\n): RequestContext {\n  const headerFilter = options.filterHeaders || defaultHeaderFilter;\n  const bodyFilter = options.filterBody || defaultBodyFilter;\n\n  // Filter headers\n  const headers: Record<string, string> = {};\n  for (const [name, value] of Object.entries(req.headers)) {\n    if (typeof value === \"string\" && headerFilter(name, value)) {\n      headers[name] = value;\n    } else if (Array.isArray(value)) {\n      const filtered = value.filter((v) => headerFilter(name, v));\n      if (filtered.length > 0) {\n        headers[name] = filtered.join(\", \");\n      }\n    }\n  }\n\n  const context: RequestContext = {\n    url: `${req.protocol}://${req.get(\"host\")}${req.originalUrl}`,\n    method: req.method,\n    headers,\n    query_string: req.url.includes(\"?\") ? req.url.split(\"?\")[1] : undefined,\n  };\n\n  // Include body if requested and available\n  if (options.includeBody && req.body && typeof req.body === \"object\") {\n    context.data = filterObject(req.body, bodyFilter);\n  }\n\n  return context;\n}\n\n/**\n * Extract client IP from request.\n */\nfunction extractClientIp(req: Request): string | undefined {\n  // Check common proxy headers\n  const forwarded = req.get(\"x-forwarded-for\");\n  if (forwarded) {\n    const firstIp = forwarded.split(\",\")[0]?.trim();\n    if (firstIp) return firstIp;\n  }\n\n  const realIp = req.get(\"x-real-ip\");\n  if (realIp) return realIp;\n\n  const cfIp = req.get(\"cf-connecting-ip\");\n  if (cfIp) return cfIp;\n\n  // Fall back to socket address\n  return req.socket.remoteAddress;\n}\n\n/**\n * Request handler middleware that adds request context and breadcrumbs.\n *\n * This middleware should be added early in your middleware chain.\n * Uses AsyncLocalStorage for request-scoped context isolation to prevent\n * user context leakage between concurrent requests.\n *\n * @example\n * ```typescript\n * import express from \"express\";\n * import { requestHandler } from \"@bugwatch/express\";\n *\n * const app = express();\n * app.use(requestHandler());\n * ```\n */\nexport function requestHandler(\n  options: BugwatchExpressOptions = {}\n): RequestHandler {\n  return (req: BugwatchRequest, res: Response, next: NextFunction) => {\n    const client = getClient();\n    if (!client) {\n      return next();\n    }\n\n    // Create a request-scoped context for isolation\n    const scopedContext: ScopedContext = createScopedContext();\n\n    // Store start time for breadcrumb\n    req.bugwatch = { startTime: Date.now() };\n\n    // Extract and set user context in the scoped context\n    if (options.extractUser) {\n      const user = options.extractUser(req);\n      if (user) {\n        scopedContext.user = user;\n      }\n    }\n\n    // Run the rest of the request handling within the isolated context\n    runWithContext(scopedContext, () => {\n      // Add request start breadcrumb\n      if (options.addBreadcrumbs !== false) {\n        addBreadcrumb({\n          category: \"http\",\n          message: `${req.method} ${req.path}`,\n          level: \"info\",\n          data: {\n            method: req.method,\n            url: req.originalUrl,\n          },\n        });\n      }\n\n      // Track response for completion breadcrumb\n      const originalEnd = res.end.bind(res);\n      res.end = function (...args: Parameters<Response[\"end\"]>) {\n        if (options.addBreadcrumbs !== false) {\n          const duration = Date.now() - (req.bugwatch?.startTime || Date.now());\n          addBreadcrumb({\n            category: \"http\",\n            message: `${req.method} ${req.path} -> ${res.statusCode}`,\n            level: res.statusCode >= 500 ? \"error\" : res.statusCode >= 400 ? \"warning\" : \"info\",\n            data: {\n              method: req.method,\n              url: req.originalUrl,\n              status_code: res.statusCode,\n              duration_ms: duration,\n            },\n          });\n        }\n        return originalEnd(...args);\n      } as Response[\"end\"];\n\n      next();\n    });\n  };\n}\n\n/**\n * Error handler middleware that captures errors to Bugwatch.\n *\n * This middleware should be added after all your routes.\n *\n * @example\n * ```typescript\n * import express from \"express\";\n * import { requestHandler, errorHandler } from \"@bugwatch/express\";\n *\n * const app = express();\n * app.use(requestHandler());\n *\n * // ... your routes ...\n *\n * app.use(errorHandler());\n * ```\n */\nexport function errorHandler(\n  options: BugwatchExpressOptions = {}\n): ErrorRequestHandler {\n  return async (\n    err: Error,\n    req: BugwatchRequest,\n    res: Response,\n    next: NextFunction\n  ) => {\n    const client = getClient();\n    if (!client) {\n      return next(err);\n    }\n\n    // Build request context\n    const requestContext = extractRequestContext(req, options);\n\n    // Build extra context\n    const extra: Record<string, unknown> = {\n      request: requestContext,\n    };\n\n    const clientIp = extractClientIp(req);\n    if (clientIp) {\n      extra.client_ip = clientIp;\n    }\n\n    // Capture the error\n    const eventId = captureException(err, {\n      request: requestContext,\n      extra,\n      tags: {\n        \"http.method\": req.method,\n        \"http.url\": req.originalUrl,\n      },\n    });\n\n    // Store event ID for reference\n    if (req.bugwatch) {\n      req.bugwatch.eventId = eventId;\n    }\n\n    // Flush if requested (useful for serverless)\n    if (options.flushOnError) {\n      await flush();\n    }\n\n    // Pass to next error handler\n    next(err);\n  };\n}\n\n/**\n * Wrap an async request handler to automatically capture errors.\n *\n * @example\n * ```typescript\n * import { wrapHandler } from \"@bugwatch/express\";\n *\n * app.get(\"/users/:id\", wrapHandler(async (req, res) => {\n *   const user = await getUserById(req.params.id);\n *   res.json(user);\n * }));\n * ```\n */\nexport function wrapHandler(handler: AsyncRequestHandler): RequestHandler {\n  return (req: Request, res: Response, next: NextFunction) => {\n    Promise.resolve(handler(req, res, next)).catch(next);\n  };\n}\n\n/**\n * Manually capture an error with Express request context.\n *\n * @example\n * ```typescript\n * import { captureError } from \"@bugwatch/express\";\n *\n * app.get(\"/users/:id\", (req, res) => {\n *   try {\n *     const user = getUserById(req.params.id);\n *     res.json(user);\n *   } catch (err) {\n *     captureError(req, err);\n *     res.status(500).json({ error: \"Internal server error\" });\n *   }\n * });\n * ```\n */\nexport function captureError(\n  req: Request,\n  error: Error,\n  options: BugwatchExpressOptions = {}\n): string {\n  const client = getClient();\n  if (!client) {\n    return \"\";\n  }\n\n  const requestContext = extractRequestContext(req, options);\n  const clientIp = extractClientIp(req);\n\n  return captureException(error, {\n    request: requestContext,\n    extra: {\n      request: requestContext,\n      ...(clientIp && { client_ip: clientIp }),\n    },\n    tags: {\n      \"http.method\": req.method,\n      \"http.url\": req.originalUrl,\n    },\n  });\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACQA,IAAAA,eAAsD;;;ACPtD,kBAWO;AAMP,IAAM,oBAAoB,oBAAI,IAAI;AAAA,EAChC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF,CAAC;AAKD,IAAM,wBAAwB,oBAAI,IAAI;AAAA,EACpC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF,CAAC;AAKD,SAAS,oBAAoB,MAAuB;AAClD,SAAO,CAAC,kBAAkB,IAAI,KAAK,YAAY,CAAC;AAClD;AAKA,SAAS,kBAAkB,KAAsB;AAC/C,SAAO,CAAC,sBAAsB,IAAI,IAAI,YAAY,CAAC;AACrD;AAKA,SAAS,aACP,KACA,QACY;AACZ,QAAM,SAAqB,CAAC;AAC5B,aAAW,CAAC,KAAK,KAAK,KAAK,OAAO,QAAQ,GAAG,GAAG;AAC9C,QAAI,OAAO,KAAK,KAAK,GAAG;AACtB,MAAC,OAAmC,GAAG,IAAI;AAAA,IAC7C;AAAA,EACF;AACA,SAAO;AACT;AAKA,SAAS,sBACP,KACA,SACgB;AAChB,QAAM,eAAe,QAAQ,iBAAiB;AAC9C,QAAM,aAAa,QAAQ,cAAc;AAGzC,QAAM,UAAkC,CAAC;AACzC,aAAW,CAAC,MAAM,KAAK,KAAK,OAAO,QAAQ,IAAI,OAAO,GAAG;AACvD,QAAI,OAAO,UAAU,YAAY,aAAa,MAAM,KAAK,GAAG;AAC1D,cAAQ,IAAI,IAAI;AAAA,IAClB,WAAW,MAAM,QAAQ,KAAK,GAAG;AAC/B,YAAM,WAAW,MAAM,OAAO,CAAC,MAAM,aAAa,MAAM,CAAC,CAAC;AAC1D,UAAI,SAAS,SAAS,GAAG;AACvB,gBAAQ,IAAI,IAAI,SAAS,KAAK,IAAI;AAAA,MACpC;AAAA,IACF;AAAA,EACF;AAEA,QAAM,UAA0B;AAAA,IAC9B,KAAK,GAAG,IAAI,QAAQ,MAAM,IAAI,IAAI,MAAM,CAAC,GAAG,IAAI,WAAW;AAAA,IAC3D,QAAQ,IAAI;AAAA,IACZ;AAAA,IACA,cAAc,IAAI,IAAI,SAAS,GAAG,IAAI,IAAI,IAAI,MAAM,GAAG,EAAE,CAAC,IAAI;AAAA,EAChE;AAGA,MAAI,QAAQ,eAAe,IAAI,QAAQ,OAAO,IAAI,SAAS,UAAU;AACnE,YAAQ,OAAO,aAAa,IAAI,MAAM,UAAU;AAAA,EAClD;AAEA,SAAO;AACT;AAKA,SAAS,gBAAgB,KAAkC;AAEzD,QAAM,YAAY,IAAI,IAAI,iBAAiB;AAC3C,MAAI,WAAW;AACb,UAAM,UAAU,UAAU,MAAM,GAAG,EAAE,CAAC,GAAG,KAAK;AAC9C,QAAI,QAAS,QAAO;AAAA,EACtB;AAEA,QAAM,SAAS,IAAI,IAAI,WAAW;AAClC,MAAI,OAAQ,QAAO;AAEnB,QAAM,OAAO,IAAI,IAAI,kBAAkB;AACvC,MAAI,KAAM,QAAO;AAGjB,SAAO,IAAI,OAAO;AACpB;AAkBO,SAAS,eACd,UAAkC,CAAC,GACnB;AAChB,SAAO,CAAC,KAAsB,KAAe,SAAuB;AAClE,UAAM,aAAS,uBAAU;AACzB,QAAI,CAAC,QAAQ;AACX,aAAO,KAAK;AAAA,IACd;AAGA,UAAM,oBAA+B,iCAAoB;AAGzD,QAAI,WAAW,EAAE,WAAW,KAAK,IAAI,EAAE;AAGvC,QAAI,QAAQ,aAAa;AACvB,YAAM,OAAO,QAAQ,YAAY,GAAG;AACpC,UAAI,MAAM;AACR,sBAAc,OAAO;AAAA,MACvB;AAAA,IACF;AAGA,oCAAe,eAAe,MAAM;AAElC,UAAI,QAAQ,mBAAmB,OAAO;AACpC,uCAAc;AAAA,UACZ,UAAU;AAAA,UACV,SAAS,GAAG,IAAI,MAAM,IAAI,IAAI,IAAI;AAAA,UAClC,OAAO;AAAA,UACP,MAAM;AAAA,YACJ,QAAQ,IAAI;AAAA,YACZ,KAAK,IAAI;AAAA,UACX;AAAA,QACF,CAAC;AAAA,MACH;AAGA,YAAM,cAAc,IAAI,IAAI,KAAK,GAAG;AACpC,UAAI,MAAM,YAAa,MAAmC;AACxD,YAAI,QAAQ,mBAAmB,OAAO;AACpC,gBAAM,WAAW,KAAK,IAAI,KAAK,IAAI,UAAU,aAAa,KAAK,IAAI;AACnE,yCAAc;AAAA,YACZ,UAAU;AAAA,YACV,SAAS,GAAG,IAAI,MAAM,IAAI,IAAI,IAAI,OAAO,IAAI,UAAU;AAAA,YACvD,OAAO,IAAI,cAAc,MAAM,UAAU,IAAI,cAAc,MAAM,YAAY;AAAA,YAC7E,MAAM;AAAA,cACJ,QAAQ,IAAI;AAAA,cACZ,KAAK,IAAI;AAAA,cACT,aAAa,IAAI;AAAA,cACjB,aAAa;AAAA,YACf;AAAA,UACF,CAAC;AAAA,QACH;AACA,eAAO,YAAY,GAAG,IAAI;AAAA,MAC5B;AAEA,WAAK;AAAA,IACP,CAAC;AAAA,EACH;AACF;AAoBO,SAAS,aACd,UAAkC,CAAC,GACd;AACrB,SAAO,OACL,KACA,KACA,KACA,SACG;AACH,UAAM,aAAS,uBAAU;AACzB,QAAI,CAAC,QAAQ;AACX,aAAO,KAAK,GAAG;AAAA,IACjB;AAGA,UAAM,iBAAiB,sBAAsB,KAAK,OAAO;AAGzD,UAAM,QAAiC;AAAA,MACrC,SAAS;AAAA,IACX;AAEA,UAAM,WAAW,gBAAgB,GAAG;AACpC,QAAI,UAAU;AACZ,YAAM,YAAY;AAAA,IACpB;AAGA,UAAM,cAAU,8BAAiB,KAAK;AAAA,MACpC,SAAS;AAAA,MACT;AAAA,MACA,MAAM;AAAA,QACJ,eAAe,IAAI;AAAA,QACnB,YAAY,IAAI;AAAA,MAClB;AAAA,IACF,CAAC;AAGD,QAAI,IAAI,UAAU;AAChB,UAAI,SAAS,UAAU;AAAA,IACzB;AAGA,QAAI,QAAQ,cAAc;AACxB,gBAAM,mBAAM;AAAA,IACd;AAGA,SAAK,GAAG;AAAA,EACV;AACF;AAeO,SAAS,YAAY,SAA8C;AACxE,SAAO,CAAC,KAAc,KAAe,SAAuB;AAC1D,YAAQ,QAAQ,QAAQ,KAAK,KAAK,IAAI,CAAC,EAAE,MAAM,IAAI;AAAA,EACrD;AACF;AAoBO,SAAS,aACd,KACA,OACA,UAAkC,CAAC,GAC3B;AACR,QAAM,aAAS,uBAAU;AACzB,MAAI,CAAC,QAAQ;AACX,WAAO;AAAA,EACT;AAEA,QAAM,iBAAiB,sBAAsB,KAAK,OAAO;AACzD,QAAM,WAAW,gBAAgB,GAAG;AAEpC,aAAO,8BAAiB,OAAO;AAAA,IAC7B,SAAS;AAAA,IACT,OAAO;AAAA,MACL,SAAS;AAAA,MACT,GAAI,YAAY,EAAE,WAAW,SAAS;AAAA,IACxC;AAAA,IACA,MAAM;AAAA,MACJ,eAAe,IAAI;AAAA,MACnB,YAAY,IAAI;AAAA,IAClB;AAAA,EACF,CAAC;AACH;;;AD3SA,IAAM,YAAY,oBAAI,QAA+B;AAGrD,IAAI,2BAA2B;AAC/B,IAAI,wBAA8C;AAKlD,eAAe,kBAAkB,SAAmD;AAElF,UAAI,wBAAU,GAAG;AACf;AAAA,EACF;AAGA,MAAI,4BAA4B,uBAAuB;AACrD,UAAM;AACN;AAAA,EACF;AAGA,6BAA2B;AAC3B,2BAAyB,YAAY;AACnC,QAAI;AAEF,cAAI,wBAAU,GAAG;AACf;AAAA,MACF;AAGA,YAAM,cAAwC,CAAC;AAC/C,UAAI,SAAS,OAAQ,aAAY,SAAS,QAAQ;AAClD,UAAI,SAAS,SAAU,aAAY,WAAW,QAAQ;AACtD,UAAI,SAAS,YAAa,aAAY,cAAc,QAAQ;AAC5D,UAAI,SAAS,QAAS,aAAY,UAAU,QAAQ;AACpD,UAAI,SAAS,UAAU,OAAW,aAAY,QAAQ,QAAQ;AAC9D,UAAI,SAAS,eAAe,OAAW,aAAY,aAAa,QAAQ;AACxE,UAAI,SAAS,mBAAmB,OAAW,aAAY,iBAAiB,QAAQ;AAChF,UAAI,SAAS,KAAM,aAAY,OAAO,QAAQ;AAC9C,UAAI,SAAS,KAAM,aAAY,OAAO,QAAQ;AAC9C,UAAI,SAAS,WAAY,aAAY,aAAa,QAAQ;AAC1D,UAAI,SAAS,aAAc,aAAY,eAAe,QAAQ;AAE9D,6BAAK,WAAW;AAAA,IAClB,UAAE;AACA,iCAA2B;AAAA,IAC7B;AAAA,EACF,GAAG;AAEH,QAAM;AACR;AA2DO,SAAS,MACd,KACA,SACqB;AAErB,MAAI,UAAU,IAAI,GAAG,GAAG;AACtB,YAAQ,KAAK,2DAA2D;AACxE,WAAO;AAAA,MACL,iBAAiB,MAAM;AAAA,MAEvB;AAAA,IACF;AAAA,EACF;AACA,YAAU,IAAI,GAAG;AAKjB,oBAAkB,OAAO,EAAE,MAAM,CAAC,QAAQ;AACxC,QAAI,SAAS,OAAO;AAClB,cAAQ,MAAM,qCAAqC,GAAG;AAAA,IACxD;AAAA,EACF,CAAC;AAGD,QAAM,oBAA4C,CAAC;AACnD,MAAI,SAAS,YAAa,mBAAkB,cAAc,QAAQ;AAClE,MAAI,SAAS,cAAe,mBAAkB,gBAAgB,QAAQ;AACtE,MAAI,SAAS,WAAY,mBAAkB,aAAa,QAAQ;AAChE,MAAI,SAAS,gBAAgB,OAAW,mBAAkB,cAAc,QAAQ;AAChF,MAAI,SAAS,mBAAmB,OAAW,mBAAkB,iBAAiB,QAAQ;AACtF,MAAI,SAAS,iBAAiB,OAAW,mBAAkB,eAAe,QAAQ;AAGlF,MAAI,IAAI,eAAe,iBAAiB,CAAC;AAGzC,MAAI,oBAAoB;AAMxB,QAAM,kBAAkB,MAAY;AAClC,QAAI,mBAAmB;AACrB;AAAA,IACF;AACA,wBAAoB;AACpB,QAAI,IAAI,aAAa,iBAAiB,CAAC;AAAA,EACzC;AAGA,QAAM,iBAAiB,IAAI,OAAO,KAAK,GAAG;AAE1C,EAAC,IAAY,SAAS,YACjB,MACgC;AAEnC,oBAAgB;AAGhB,IAAC,IAAY,SAAS;AAEtB,WAAO,eAAe,GAAG,IAAI;AAAA,EAC/B;AAEA,SAAO,EAAE,gBAAgB;AAC3B;;;AD5JA,IAAAC,eAWO;","names":["import_core","import_core"]}

package/dist/index.mjs

@@ -0,0 +1,296 @@
+// src/setup.ts
+import { init, getClient as getClient2 } from "@bugwatch/core";
+
+// src/middleware.ts
+import {
+  getClient,
+  captureException,
+  addBreadcrumb,
+  flush,
+  runWithContext,
+  createScopedContext
+} from "@bugwatch/core";
+var SENSITIVE_HEADERS = /* @__PURE__ */ new Set([
+  "authorization",
+  "cookie",
+  "set-cookie",
+  "x-api-key",
+  "x-auth-token",
+  "x-csrf-token",
+  "x-xsrf-token",
+  "proxy-authorization"
+]);
+var SENSITIVE_BODY_FIELDS = /* @__PURE__ */ new Set([
+  "password",
+  "secret",
+  "token",
+  "api_key",
+  "apiKey",
+  "credit_card",
+  "creditCard",
+  "ssn",
+  "social_security"
+]);
+function defaultHeaderFilter(name) {
+  return !SENSITIVE_HEADERS.has(name.toLowerCase());
+}
+function defaultBodyFilter(key) {
+  return !SENSITIVE_BODY_FIELDS.has(key.toLowerCase());
+}
+function filterObject(obj, filter) {
+  const result = {};
+  for (const [key, value] of Object.entries(obj)) {
+    if (filter(key, value)) {
+      result[key] = value;
+    }
+  }
+  return result;
+}
+function extractRequestContext(req, options) {
+  const headerFilter = options.filterHeaders || defaultHeaderFilter;
+  const bodyFilter = options.filterBody || defaultBodyFilter;
+  const headers = {};
+  for (const [name, value] of Object.entries(req.headers)) {
+    if (typeof value === "string" && headerFilter(name, value)) {
+      headers[name] = value;
+    } else if (Array.isArray(value)) {
+      const filtered = value.filter((v) => headerFilter(name, v));
+      if (filtered.length > 0) {
+        headers[name] = filtered.join(", ");
+      }
+    }
+  }
+  const context = {
+    url: `${req.protocol}://${req.get("host")}${req.originalUrl}`,
+    method: req.method,
+    headers,
+    query_string: req.url.includes("?") ? req.url.split("?")[1] : void 0
+  };
+  if (options.includeBody && req.body && typeof req.body === "object") {
+    context.data = filterObject(req.body, bodyFilter);
+  }
+  return context;
+}
+function extractClientIp(req) {
+  const forwarded = req.get("x-forwarded-for");
+  if (forwarded) {
+    const firstIp = forwarded.split(",")[0]?.trim();
+    if (firstIp) return firstIp;
+  }
+  const realIp = req.get("x-real-ip");
+  if (realIp) return realIp;
+  const cfIp = req.get("cf-connecting-ip");
+  if (cfIp) return cfIp;
+  return req.socket.remoteAddress;
+}
+function requestHandler(options = {}) {
+  return (req, res, next) => {
+    const client = getClient();
+    if (!client) {
+      return next();
+    }
+    const scopedContext = createScopedContext();
+    req.bugwatch = { startTime: Date.now() };
+    if (options.extractUser) {
+      const user = options.extractUser(req);
+      if (user) {
+        scopedContext.user = user;
+      }
+    }
+    runWithContext(scopedContext, () => {
+      if (options.addBreadcrumbs !== false) {
+        addBreadcrumb({
+          category: "http",
+          message: `${req.method} ${req.path}`,
+          level: "info",
+          data: {
+            method: req.method,
+            url: req.originalUrl
+          }
+        });
+      }
+      const originalEnd = res.end.bind(res);
+      res.end = function(...args) {
+        if (options.addBreadcrumbs !== false) {
+          const duration = Date.now() - (req.bugwatch?.startTime || Date.now());
+          addBreadcrumb({
+            category: "http",
+            message: `${req.method} ${req.path} -> ${res.statusCode}`,
+            level: res.statusCode >= 500 ? "error" : res.statusCode >= 400 ? "warning" : "info",
+            data: {
+              method: req.method,
+              url: req.originalUrl,
+              status_code: res.statusCode,
+              duration_ms: duration
+            }
+          });
+        }
+        return originalEnd(...args);
+      };
+      next();
+    });
+  };
+}
+function errorHandler(options = {}) {
+  return async (err, req, res, next) => {
+    const client = getClient();
+    if (!client) {
+      return next(err);
+    }
+    const requestContext = extractRequestContext(req, options);
+    const extra = {
+      request: requestContext
+    };
+    const clientIp = extractClientIp(req);
+    if (clientIp) {
+      extra.client_ip = clientIp;
+    }
+    const eventId = captureException(err, {
+      request: requestContext,
+      extra,
+      tags: {
+        "http.method": req.method,
+        "http.url": req.originalUrl
+      }
+    });
+    if (req.bugwatch) {
+      req.bugwatch.eventId = eventId;
+    }
+    if (options.flushOnError) {
+      await flush();
+    }
+    next(err);
+  };
+}
+function wrapHandler(handler) {
+  return (req, res, next) => {
+    Promise.resolve(handler(req, res, next)).catch(next);
+  };
+}
+function captureError(req, error, options = {}) {
+  const client = getClient();
+  if (!client) {
+    return "";
+  }
+  const requestContext = extractRequestContext(req, options);
+  const clientIp = extractClientIp(req);
+  return captureException(error, {
+    request: requestContext,
+    extra: {
+      request: requestContext,
+      ...clientIp && { client_ip: clientIp }
+    },
+    tags: {
+      "http.method": req.method,
+      "http.url": req.originalUrl
+    }
+  });
+}
+
+// src/setup.ts
+var setupApps = /* @__PURE__ */ new WeakSet();
+var initializationInProgress = false;
+var initializationPromise = null;
+async function ensureInitialized(options) {
+  if (getClient2()) {
+    return;
+  }
+  if (initializationInProgress && initializationPromise) {
+    await initializationPromise;
+    return;
+  }
+  initializationInProgress = true;
+  initializationPromise = (async () => {
+    try {
+      if (getClient2()) {
+        return;
+      }
+      const coreOptions = {};
+      if (options?.apiKey) coreOptions.apiKey = options.apiKey;
+      if (options?.endpoint) coreOptions.endpoint = options.endpoint;
+      if (options?.environment) coreOptions.environment = options.environment;
+      if (options?.release) coreOptions.release = options.release;
+      if (options?.debug !== void 0) coreOptions.debug = options.debug;
+      if (options?.sampleRate !== void 0) coreOptions.sampleRate = options.sampleRate;
+      if (options?.maxBreadcrumbs !== void 0) coreOptions.maxBreadcrumbs = options.maxBreadcrumbs;
+      if (options?.tags) coreOptions.tags = options.tags;
+      if (options?.user) coreOptions.user = options.user;
+      if (options?.beforeSend) coreOptions.beforeSend = options.beforeSend;
+      if (options?.ignoreErrors) coreOptions.ignoreErrors = options.ignoreErrors;
+      init(coreOptions);
+    } finally {
+      initializationInProgress = false;
+    }
+  })();
+  await initializationPromise;
+}
+function setup(app, options) {
+  if (setupApps.has(app)) {
+    console.warn("[Bugwatch] setup() already called for this app. Skipping.");
+    return {
+      addErrorHandler: () => {
+      }
+    };
+  }
+  setupApps.add(app);
+  ensureInitialized(options).catch((err) => {
+    if (options?.debug) {
+      console.error("[Bugwatch] Initialization failed:", err);
+    }
+  });
+  const middlewareOptions = {};
+  if (options?.extractUser) middlewareOptions.extractUser = options.extractUser;
+  if (options?.filterHeaders) middlewareOptions.filterHeaders = options.filterHeaders;
+  if (options?.filterBody) middlewareOptions.filterBody = options.filterBody;
+  if (options?.includeBody !== void 0) middlewareOptions.includeBody = options.includeBody;
+  if (options?.addBreadcrumbs !== void 0) middlewareOptions.addBreadcrumbs = options.addBreadcrumbs;
+  if (options?.flushOnError !== void 0) middlewareOptions.flushOnError = options.flushOnError;
+  app.use(requestHandler(middlewareOptions));
+  let errorHandlerAdded = false;
+  const addErrorHandler = () => {
+    if (errorHandlerAdded) {
+      return;
+    }
+    errorHandlerAdded = true;
+    app.use(errorHandler(middlewareOptions));
+  };
+  const originalListen = app.listen.bind(app);
+  app.listen = function(...args) {
+    addErrorHandler();
+    app.listen = originalListen;
+    return originalListen(...args);
+  };
+  return { addErrorHandler };
+}
+
+// src/index.ts
+import {
+  init as init2,
+  getClient as getClient3,
+  captureException as captureException2,
+  captureMessage,
+  addBreadcrumb as addBreadcrumb2,
+  setUser as setUser2,
+  setTag,
+  setExtra,
+  flush as flush2,
+  close
+} from "@bugwatch/core";
+export {
+  addBreadcrumb2 as addBreadcrumb,
+  captureError,
+  captureException2 as captureException,
+  captureMessage,
+  close,
+  errorHandler,
+  flush2 as flush,
+  getClient3 as getClient,
+  init2 as init,
+  requestHandler,
+  setExtra,
+  setTag,
+  setUser2 as setUser,
+  setup,
+  wrapHandler
+};
+//# sourceMappingURL=index.mjs.map

package/dist/index.mjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/setup.ts","../src/middleware.ts","../src/index.ts"],"sourcesContent":["/**\n * One-liner setup for Bugwatch Express integration.\n *\n * This module provides a simplified setup function that handles all\n * initialization and middleware registration in a single call.\n */\n\nimport type { Express, Application } from \"express\";\nimport { init, getClient, type BugwatchOptions } from \"@bugwatch/core\";\nimport { requestHandler, errorHandler } from \"./middleware\";\nimport type { BugwatchExpressOptions } from \"./types\";\n\n/**\n * Combined options for Express setup.\n * Includes both core SDK options and Express-specific middleware options.\n */\nexport interface BugwatchExpressSetupOptions\n  extends BugwatchExpressOptions,\n    Partial<BugwatchOptions> {}\n\n/**\n * Result object returned by setup() for advanced use cases.\n */\nexport interface BugwatchSetupResult {\n  /**\n   * Manually add the error handler middleware.\n   * Call this if you're not using app.listen() directly (e.g., http.createServer).\n   *\n   * @example\n   * ```typescript\n   * const { addErrorHandler } = setup(app);\n   *\n   * // Define your routes...\n   *\n   * // If not using app.listen(), manually add error handler after routes:\n   * addErrorHandler();\n   *\n   * http.createServer(app).listen(3000);\n   * ```\n   */\n  addErrorHandler: () => void;\n}\n\n// Track which apps have been set up to prevent double-setup\nconst setupApps = new WeakSet<Express | Application>();\n\n// Mutex for thread-safe initialization\nlet initializationInProgress = false;\nlet initializationPromise: Promise<void> | null = null;\n\n/**\n * Thread-safe SDK initialization\n */\nasync function ensureInitialized(options?: Partial<BugwatchOptions>): Promise<void> {\n  // Fast path: already initialized\n  if (getClient()) {\n    return;\n  }\n\n  // If initialization is in progress, wait for it\n  if (initializationInProgress && initializationPromise) {\n    await initializationPromise;\n    return;\n  }\n\n  // Start initialization\n  initializationInProgress = true;\n  initializationPromise = (async () => {\n    try {\n      // Double-check after acquiring \"lock\"\n      if (getClient()) {\n        return;\n      }\n\n      // Extract core options\n      const coreOptions: Partial<BugwatchOptions> = {};\n      if (options?.apiKey) coreOptions.apiKey = options.apiKey;\n      if (options?.endpoint) coreOptions.endpoint = options.endpoint;\n      if (options?.environment) coreOptions.environment = options.environment;\n      if (options?.release) coreOptions.release = options.release;\n      if (options?.debug !== undefined) coreOptions.debug = options.debug;\n      if (options?.sampleRate !== undefined) coreOptions.sampleRate = options.sampleRate;\n      if (options?.maxBreadcrumbs !== undefined) coreOptions.maxBreadcrumbs = options.maxBreadcrumbs;\n      if (options?.tags) coreOptions.tags = options.tags;\n      if (options?.user) coreOptions.user = options.user;\n      if (options?.beforeSend) coreOptions.beforeSend = options.beforeSend;\n      if (options?.ignoreErrors) coreOptions.ignoreErrors = options.ignoreErrors;\n\n      init(coreOptions);\n    } finally {\n      initializationInProgress = false;\n    }\n  })();\n\n  await initializationPromise;\n}\n\n/**\n * Set up Bugwatch for an Express application with a single call.\n *\n * This function:\n * 1. Initializes the Bugwatch SDK (using env vars if no apiKey provided)\n * 2. Adds the request handler middleware immediately\n * 3. Hooks into app.listen() to add the error handler before the server starts\n *\n * **Important**: Call `setup()` early, before defining your routes, so the\n * request handler can capture context for all requests.\n *\n * @param app - The Express application instance\n * @param options - Configuration options (optional if BUGWATCH_API_KEY env var is set)\n * @returns Object with `addErrorHandler()` for manual error handler registration\n *\n * @example Basic usage (recommended)\n * ```typescript\n * import express from \"express\";\n * import { setup } from \"@bugwatch/express\";\n *\n * const app = express();\n *\n * // Call setup BEFORE defining routes\n * setup(app);\n *\n * app.get(\"/\", (req, res) => res.send(\"Hello!\"));\n *\n * // Error handler is automatically added when listen() is called\n * app.listen(3000);\n * ```\n *\n * @example With explicit options\n * ```typescript\n * setup(app, {\n *   apiKey: \"bw_live_xxxxx\",\n *   environment: \"production\",\n *   extractUser: (req) => ({ id: req.user?.id }),\n * });\n * ```\n *\n * @example With http.createServer (manual error handler)\n * ```typescript\n * import http from \"http\";\n * import express from \"express\";\n * import { setup } from \"@bugwatch/express\";\n *\n * const app = express();\n * const { addErrorHandler } = setup(app);\n *\n * app.get(\"/\", (req, res) => res.send(\"Hello!\"));\n *\n * // Manually add error handler AFTER routes\n * addErrorHandler();\n *\n * http.createServer(app).listen(3000);\n * ```\n */\nexport function setup(\n  app: Express | Application,\n  options?: BugwatchExpressSetupOptions\n): BugwatchSetupResult {\n  // Prevent double-setup\n  if (setupApps.has(app)) {\n    console.warn(\"[Bugwatch] setup() already called for this app. Skipping.\");\n    return {\n      addErrorHandler: () => {\n        // No-op for already-setup apps\n      },\n    };\n  }\n  setupApps.add(app);\n\n  // Initialize core SDK with race condition protection\n  // Note: This is async but we don't await it here to avoid breaking the sync API\n  // The initialization will complete before any requests are handled\n  ensureInitialized(options).catch((err) => {\n    if (options?.debug) {\n      console.error(\"[Bugwatch] Initialization failed:\", err);\n    }\n  });\n\n  // Extract middleware-specific options\n  const middlewareOptions: BugwatchExpressOptions = {};\n  if (options?.extractUser) middlewareOptions.extractUser = options.extractUser;\n  if (options?.filterHeaders) middlewareOptions.filterHeaders = options.filterHeaders;\n  if (options?.filterBody) middlewareOptions.filterBody = options.filterBody;\n  if (options?.includeBody !== undefined) middlewareOptions.includeBody = options.includeBody;\n  if (options?.addBreadcrumbs !== undefined) middlewareOptions.addBreadcrumbs = options.addBreadcrumbs;\n  if (options?.flushOnError !== undefined) middlewareOptions.flushOnError = options.flushOnError;\n\n  // Add request handler middleware early\n  app.use(requestHandler(middlewareOptions));\n\n  // Track whether error handler has been added\n  let errorHandlerAdded = false;\n\n  /**\n   * Add the error handler middleware.\n   * This should be called AFTER all routes are defined.\n   */\n  const addErrorHandler = (): void => {\n    if (errorHandlerAdded) {\n      return; // Already added, skip\n    }\n    errorHandlerAdded = true;\n    app.use(errorHandler(middlewareOptions));\n  };\n\n  // Hook into app.listen to add error handler automatically\n  const originalListen = app.listen.bind(app);\n\n  (app as any).listen = function (\n    ...args: Parameters<typeof originalListen>\n  ): ReturnType<typeof originalListen> {\n    // Add error handler before calling original listen\n    addErrorHandler();\n\n    // Restore original listen for any future calls\n    (app as any).listen = originalListen;\n\n    return originalListen(...args);\n  };\n\n  return { addErrorHandler };\n}\n","import type { Request, Response, NextFunction, RequestHandler, ErrorRequestHandler } from \"express\";\nimport {\n  getClient,\n  captureException,\n  addBreadcrumb,\n  setUser,\n  flush,\n  runWithContext,\n  createScopedContext,\n  type RequestContext,\n  type ErrorEvent,\n  type ScopedContext,\n} from \"@bugwatch/core\";\nimport type { BugwatchExpressOptions, BugwatchRequest, AsyncRequestHandler } from \"./types\";\n\n/**\n * Headers that should be filtered out by default for security.\n */\nconst SENSITIVE_HEADERS = new Set([\n  \"authorization\",\n  \"cookie\",\n  \"set-cookie\",\n  \"x-api-key\",\n  \"x-auth-token\",\n  \"x-csrf-token\",\n  \"x-xsrf-token\",\n  \"proxy-authorization\",\n]);\n\n/**\n * Body fields that should be filtered out by default for security.\n */\nconst SENSITIVE_BODY_FIELDS = new Set([\n  \"password\",\n  \"secret\",\n  \"token\",\n  \"api_key\",\n  \"apiKey\",\n  \"credit_card\",\n  \"creditCard\",\n  \"ssn\",\n  \"social_security\",\n]);\n\n/**\n * Default header filter function.\n */\nfunction defaultHeaderFilter(name: string): boolean {\n  return !SENSITIVE_HEADERS.has(name.toLowerCase());\n}\n\n/**\n * Default body field filter function.\n */\nfunction defaultBodyFilter(key: string): boolean {\n  return !SENSITIVE_BODY_FIELDS.has(key.toLowerCase());\n}\n\n/**\n * Filter an object's keys based on a filter function.\n */\nfunction filterObject<T extends Record<string, unknown>>(\n  obj: T,\n  filter: (key: string, value: unknown) => boolean\n): Partial<T> {\n  const result: Partial<T> = {};\n  for (const [key, value] of Object.entries(obj)) {\n    if (filter(key, value)) {\n      (result as Record<string, unknown>)[key] = value;\n    }\n  }\n  return result;\n}\n\n/**\n * Extract request context from an Express request.\n */\nfunction extractRequestContext(\n  req: Request,\n  options: BugwatchExpressOptions\n): RequestContext {\n  const headerFilter = options.filterHeaders || defaultHeaderFilter;\n  const bodyFilter = options.filterBody || defaultBodyFilter;\n\n  // Filter headers\n  const headers: Record<string, string> = {};\n  for (const [name, value] of Object.entries(req.headers)) {\n    if (typeof value === \"string\" && headerFilter(name, value)) {\n      headers[name] = value;\n    } else if (Array.isArray(value)) {\n      const filtered = value.filter((v) => headerFilter(name, v));\n      if (filtered.length > 0) {\n        headers[name] = filtered.join(\", \");\n      }\n    }\n  }\n\n  const context: RequestContext = {\n    url: `${req.protocol}://${req.get(\"host\")}${req.originalUrl}`,\n    method: req.method,\n    headers,\n    query_string: req.url.includes(\"?\") ? req.url.split(\"?\")[1] : undefined,\n  };\n\n  // Include body if requested and available\n  if (options.includeBody && req.body && typeof req.body === \"object\") {\n    context.data = filterObject(req.body, bodyFilter);\n  }\n\n  return context;\n}\n\n/**\n * Extract client IP from request.\n */\nfunction extractClientIp(req: Request): string | undefined {\n  // Check common proxy headers\n  const forwarded = req.get(\"x-forwarded-for\");\n  if (forwarded) {\n    const firstIp = forwarded.split(\",\")[0]?.trim();\n    if (firstIp) return firstIp;\n  }\n\n  const realIp = req.get(\"x-real-ip\");\n  if (realIp) return realIp;\n\n  const cfIp = req.get(\"cf-connecting-ip\");\n  if (cfIp) return cfIp;\n\n  // Fall back to socket address\n  return req.socket.remoteAddress;\n}\n\n/**\n * Request handler middleware that adds request context and breadcrumbs.\n *\n * This middleware should be added early in your middleware chain.\n * Uses AsyncLocalStorage for request-scoped context isolation to prevent\n * user context leakage between concurrent requests.\n *\n * @example\n * ```typescript\n * import express from \"express\";\n * import { requestHandler } from \"@bugwatch/express\";\n *\n * const app = express();\n * app.use(requestHandler());\n * ```\n */\nexport function requestHandler(\n  options: BugwatchExpressOptions = {}\n): RequestHandler {\n  return (req: BugwatchRequest, res: Response, next: NextFunction) => {\n    const client = getClient();\n    if (!client) {\n      return next();\n    }\n\n    // Create a request-scoped context for isolation\n    const scopedContext: ScopedContext = createScopedContext();\n\n    // Store start time for breadcrumb\n    req.bugwatch = { startTime: Date.now() };\n\n    // Extract and set user context in the scoped context\n    if (options.extractUser) {\n      const user = options.extractUser(req);\n      if (user) {\n        scopedContext.user = user;\n      }\n    }\n\n    // Run the rest of the request handling within the isolated context\n    runWithContext(scopedContext, () => {\n      // Add request start breadcrumb\n      if (options.addBreadcrumbs !== false) {\n        addBreadcrumb({\n          category: \"http\",\n          message: `${req.method} ${req.path}`,\n          level: \"info\",\n          data: {\n            method: req.method,\n            url: req.originalUrl,\n          },\n        });\n      }\n\n      // Track response for completion breadcrumb\n      const originalEnd = res.end.bind(res);\n      res.end = function (...args: Parameters<Response[\"end\"]>) {\n        if (options.addBreadcrumbs !== false) {\n          const duration = Date.now() - (req.bugwatch?.startTime || Date.now());\n          addBreadcrumb({\n            category: \"http\",\n            message: `${req.method} ${req.path} -> ${res.statusCode}`,\n            level: res.statusCode >= 500 ? \"error\" : res.statusCode >= 400 ? \"warning\" : \"info\",\n            data: {\n              method: req.method,\n              url: req.originalUrl,\n              status_code: res.statusCode,\n              duration_ms: duration,\n            },\n          });\n        }\n        return originalEnd(...args);\n      } as Response[\"end\"];\n\n      next();\n    });\n  };\n}\n\n/**\n * Error handler middleware that captures errors to Bugwatch.\n *\n * This middleware should be added after all your routes.\n *\n * @example\n * ```typescript\n * import express from \"express\";\n * import { requestHandler, errorHandler } from \"@bugwatch/express\";\n *\n * const app = express();\n * app.use(requestHandler());\n *\n * // ... your routes ...\n *\n * app.use(errorHandler());\n * ```\n */\nexport function errorHandler(\n  options: BugwatchExpressOptions = {}\n): ErrorRequestHandler {\n  return async (\n    err: Error,\n    req: BugwatchRequest,\n    res: Response,\n    next: NextFunction\n  ) => {\n    const client = getClient();\n    if (!client) {\n      return next(err);\n    }\n\n    // Build request context\n    const requestContext = extractRequestContext(req, options);\n\n    // Build extra context\n    const extra: Record<string, unknown> = {\n      request: requestContext,\n    };\n\n    const clientIp = extractClientIp(req);\n    if (clientIp) {\n      extra.client_ip = clientIp;\n    }\n\n    // Capture the error\n    const eventId = captureException(err, {\n      request: requestContext,\n      extra,\n      tags: {\n        \"http.method\": req.method,\n        \"http.url\": req.originalUrl,\n      },\n    });\n\n    // Store event ID for reference\n    if (req.bugwatch) {\n      req.bugwatch.eventId = eventId;\n    }\n\n    // Flush if requested (useful for serverless)\n    if (options.flushOnError) {\n      await flush();\n    }\n\n    // Pass to next error handler\n    next(err);\n  };\n}\n\n/**\n * Wrap an async request handler to automatically capture errors.\n *\n * @example\n * ```typescript\n * import { wrapHandler } from \"@bugwatch/express\";\n *\n * app.get(\"/users/:id\", wrapHandler(async (req, res) => {\n *   const user = await getUserById(req.params.id);\n *   res.json(user);\n * }));\n * ```\n */\nexport function wrapHandler(handler: AsyncRequestHandler): RequestHandler {\n  return (req: Request, res: Response, next: NextFunction) => {\n    Promise.resolve(handler(req, res, next)).catch(next);\n  };\n}\n\n/**\n * Manually capture an error with Express request context.\n *\n * @example\n * ```typescript\n * import { captureError } from \"@bugwatch/express\";\n *\n * app.get(\"/users/:id\", (req, res) => {\n *   try {\n *     const user = getUserById(req.params.id);\n *     res.json(user);\n *   } catch (err) {\n *     captureError(req, err);\n *     res.status(500).json({ error: \"Internal server error\" });\n *   }\n * });\n * ```\n */\nexport function captureError(\n  req: Request,\n  error: Error,\n  options: BugwatchExpressOptions = {}\n): string {\n  const client = getClient();\n  if (!client) {\n    return \"\";\n  }\n\n  const requestContext = extractRequestContext(req, options);\n  const clientIp = extractClientIp(req);\n\n  return captureException(error, {\n    request: requestContext,\n    extra: {\n      request: requestContext,\n      ...(clientIp && { client_ip: clientIp }),\n    },\n    tags: {\n      \"http.method\": req.method,\n      \"http.url\": req.originalUrl,\n    },\n  });\n}\n","/**\n * @bugwatch/express - Express.js integration for Bugwatch\n *\n * This package provides middleware for automatically capturing errors\n * and request context in Express.js applications.\n *\n * @example One-liner setup (recommended)\n * ```typescript\n * import express from \"express\";\n * import { setup } from \"@bugwatch/express\";\n *\n * const app = express();\n *\n * // Single call handles everything (uses BUGWATCH_API_KEY env var)\n * setup(app);\n *\n * // Or with explicit options\n * setup(app, {\n *   apiKey: \"bw_live_xxxxx\",\n *   extractUser: (req) => ({ id: req.user?.id }),\n * });\n *\n * app.get(\"/\", (req, res) => res.send(\"Hello World!\"));\n *\n * app.listen(3000);\n * ```\n *\n * @example Manual setup (for more control)\n * ```typescript\n * import express from \"express\";\n * import { init } from \"@bugwatch/core\";\n * import { requestHandler, errorHandler } from \"@bugwatch/express\";\n *\n * init({ apiKey: \"your-api-key\" });\n *\n * const app = express();\n * app.use(requestHandler());\n *\n * // Your routes...\n *\n * app.use(errorHandler());\n * app.listen(3000);\n * ```\n */\n\n// Export one-liner setup\nexport { setup } from \"./setup\";\nexport type { BugwatchExpressSetupOptions, BugwatchSetupResult } from \"./setup\";\n\n// Export middleware functions\nexport {\n  requestHandler,\n  errorHandler,\n  wrapHandler,\n  captureError,\n} from \"./middleware\";\n\n// Export types\nexport type {\n  BugwatchExpressOptions,\n  BugwatchRequest,\n  AsyncRequestHandler,\n} from \"./types\";\n\n// Re-export core functions for convenience\nexport {\n  init,\n  getClient,\n  captureException,\n  captureMessage,\n  addBreadcrumb,\n  setUser,\n  setTag,\n  setExtra,\n  flush,\n  close,\n} from \"@bugwatch/core\";\n"],"mappings":";AAQA,SAAS,MAAM,aAAAA,kBAAuC;;;ACPtD;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EAEA;AAAA,EACA;AAAA,EACA;AAAA,OAIK;AAMP,IAAM,oBAAoB,oBAAI,IAAI;AAAA,EAChC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF,CAAC;AAKD,IAAM,wBAAwB,oBAAI,IAAI;AAAA,EACpC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF,CAAC;AAKD,SAAS,oBAAoB,MAAuB;AAClD,SAAO,CAAC,kBAAkB,IAAI,KAAK,YAAY,CAAC;AAClD;AAKA,SAAS,kBAAkB,KAAsB;AAC/C,SAAO,CAAC,sBAAsB,IAAI,IAAI,YAAY,CAAC;AACrD;AAKA,SAAS,aACP,KACA,QACY;AACZ,QAAM,SAAqB,CAAC;AAC5B,aAAW,CAAC,KAAK,KAAK,KAAK,OAAO,QAAQ,GAAG,GAAG;AAC9C,QAAI,OAAO,KAAK,KAAK,GAAG;AACtB,MAAC,OAAmC,GAAG,IAAI;AAAA,IAC7C;AAAA,EACF;AACA,SAAO;AACT;AAKA,SAAS,sBACP,KACA,SACgB;AAChB,QAAM,eAAe,QAAQ,iBAAiB;AAC9C,QAAM,aAAa,QAAQ,cAAc;AAGzC,QAAM,UAAkC,CAAC;AACzC,aAAW,CAAC,MAAM,KAAK,KAAK,OAAO,QAAQ,IAAI,OAAO,GAAG;AACvD,QAAI,OAAO,UAAU,YAAY,aAAa,MAAM,KAAK,GAAG;AAC1D,cAAQ,IAAI,IAAI;AAAA,IAClB,WAAW,MAAM,QAAQ,KAAK,GAAG;AAC/B,YAAM,WAAW,MAAM,OAAO,CAAC,MAAM,aAAa,MAAM,CAAC,CAAC;AAC1D,UAAI,SAAS,SAAS,GAAG;AACvB,gBAAQ,IAAI,IAAI,SAAS,KAAK,IAAI;AAAA,MACpC;AAAA,IACF;AAAA,EACF;AAEA,QAAM,UAA0B;AAAA,IAC9B,KAAK,GAAG,IAAI,QAAQ,MAAM,IAAI,IAAI,MAAM,CAAC,GAAG,IAAI,WAAW;AAAA,IAC3D,QAAQ,IAAI;AAAA,IACZ;AAAA,IACA,cAAc,IAAI,IAAI,SAAS,GAAG,IAAI,IAAI,IAAI,MAAM,GAAG,EAAE,CAAC,IAAI;AAAA,EAChE;AAGA,MAAI,QAAQ,eAAe,IAAI,QAAQ,OAAO,IAAI,SAAS,UAAU;AACnE,YAAQ,OAAO,aAAa,IAAI,MAAM,UAAU;AAAA,EAClD;AAEA,SAAO;AACT;AAKA,SAAS,gBAAgB,KAAkC;AAEzD,QAAM,YAAY,IAAI,IAAI,iBAAiB;AAC3C,MAAI,WAAW;AACb,UAAM,UAAU,UAAU,MAAM,GAAG,EAAE,CAAC,GAAG,KAAK;AAC9C,QAAI,QAAS,QAAO;AAAA,EACtB;AAEA,QAAM,SAAS,IAAI,IAAI,WAAW;AAClC,MAAI,OAAQ,QAAO;AAEnB,QAAM,OAAO,IAAI,IAAI,kBAAkB;AACvC,MAAI,KAAM,QAAO;AAGjB,SAAO,IAAI,OAAO;AACpB;AAkBO,SAAS,eACd,UAAkC,CAAC,GACnB;AAChB,SAAO,CAAC,KAAsB,KAAe,SAAuB;AAClE,UAAM,SAAS,UAAU;AACzB,QAAI,CAAC,QAAQ;AACX,aAAO,KAAK;AAAA,IACd;AAGA,UAAM,gBAA+B,oBAAoB;AAGzD,QAAI,WAAW,EAAE,WAAW,KAAK,IAAI,EAAE;AAGvC,QAAI,QAAQ,aAAa;AACvB,YAAM,OAAO,QAAQ,YAAY,GAAG;AACpC,UAAI,MAAM;AACR,sBAAc,OAAO;AAAA,MACvB;AAAA,IACF;AAGA,mBAAe,eAAe,MAAM;AAElC,UAAI,QAAQ,mBAAmB,OAAO;AACpC,sBAAc;AAAA,UACZ,UAAU;AAAA,UACV,SAAS,GAAG,IAAI,MAAM,IAAI,IAAI,IAAI;AAAA,UAClC,OAAO;AAAA,UACP,MAAM;AAAA,YACJ,QAAQ,IAAI;AAAA,YACZ,KAAK,IAAI;AAAA,UACX;AAAA,QACF,CAAC;AAAA,MACH;AAGA,YAAM,cAAc,IAAI,IAAI,KAAK,GAAG;AACpC,UAAI,MAAM,YAAa,MAAmC;AACxD,YAAI,QAAQ,mBAAmB,OAAO;AACpC,gBAAM,WAAW,KAAK,IAAI,KAAK,IAAI,UAAU,aAAa,KAAK,IAAI;AACnE,wBAAc;AAAA,YACZ,UAAU;AAAA,YACV,SAAS,GAAG,IAAI,MAAM,IAAI,IAAI,IAAI,OAAO,IAAI,UAAU;AAAA,YACvD,OAAO,IAAI,cAAc,MAAM,UAAU,IAAI,cAAc,MAAM,YAAY;AAAA,YAC7E,MAAM;AAAA,cACJ,QAAQ,IAAI;AAAA,cACZ,KAAK,IAAI;AAAA,cACT,aAAa,IAAI;AAAA,cACjB,aAAa;AAAA,YACf;AAAA,UACF,CAAC;AAAA,QACH;AACA,eAAO,YAAY,GAAG,IAAI;AAAA,MAC5B;AAEA,WAAK;AAAA,IACP,CAAC;AAAA,EACH;AACF;AAoBO,SAAS,aACd,UAAkC,CAAC,GACd;AACrB,SAAO,OACL,KACA,KACA,KACA,SACG;AACH,UAAM,SAAS,UAAU;AACzB,QAAI,CAAC,QAAQ;AACX,aAAO,KAAK,GAAG;AAAA,IACjB;AAGA,UAAM,iBAAiB,sBAAsB,KAAK,OAAO;AAGzD,UAAM,QAAiC;AAAA,MACrC,SAAS;AAAA,IACX;AAEA,UAAM,WAAW,gBAAgB,GAAG;AACpC,QAAI,UAAU;AACZ,YAAM,YAAY;AAAA,IACpB;AAGA,UAAM,UAAU,iBAAiB,KAAK;AAAA,MACpC,SAAS;AAAA,MACT;AAAA,MACA,MAAM;AAAA,QACJ,eAAe,IAAI;AAAA,QACnB,YAAY,IAAI;AAAA,MAClB;AAAA,IACF,CAAC;AAGD,QAAI,IAAI,UAAU;AAChB,UAAI,SAAS,UAAU;AAAA,IACzB;AAGA,QAAI,QAAQ,cAAc;AACxB,YAAM,MAAM;AAAA,IACd;AAGA,SAAK,GAAG;AAAA,EACV;AACF;AAeO,SAAS,YAAY,SAA8C;AACxE,SAAO,CAAC,KAAc,KAAe,SAAuB;AAC1D,YAAQ,QAAQ,QAAQ,KAAK,KAAK,IAAI,CAAC,EAAE,MAAM,IAAI;AAAA,EACrD;AACF;AAoBO,SAAS,aACd,KACA,OACA,UAAkC,CAAC,GAC3B;AACR,QAAM,SAAS,UAAU;AACzB,MAAI,CAAC,QAAQ;AACX,WAAO;AAAA,EACT;AAEA,QAAM,iBAAiB,sBAAsB,KAAK,OAAO;AACzD,QAAM,WAAW,gBAAgB,GAAG;AAEpC,SAAO,iBAAiB,OAAO;AAAA,IAC7B,SAAS;AAAA,IACT,OAAO;AAAA,MACL,SAAS;AAAA,MACT,GAAI,YAAY,EAAE,WAAW,SAAS;AAAA,IACxC;AAAA,IACA,MAAM;AAAA,MACJ,eAAe,IAAI;AAAA,MACnB,YAAY,IAAI;AAAA,IAClB;AAAA,EACF,CAAC;AACH;;;AD3SA,IAAM,YAAY,oBAAI,QAA+B;AAGrD,IAAI,2BAA2B;AAC/B,IAAI,wBAA8C;AAKlD,eAAe,kBAAkB,SAAmD;AAElF,MAAIC,WAAU,GAAG;AACf;AAAA,EACF;AAGA,MAAI,4BAA4B,uBAAuB;AACrD,UAAM;AACN;AAAA,EACF;AAGA,6BAA2B;AAC3B,2BAAyB,YAAY;AACnC,QAAI;AAEF,UAAIA,WAAU,GAAG;AACf;AAAA,MACF;AAGA,YAAM,cAAwC,CAAC;AAC/C,UAAI,SAAS,OAAQ,aAAY,SAAS,QAAQ;AAClD,UAAI,SAAS,SAAU,aAAY,WAAW,QAAQ;AACtD,UAAI,SAAS,YAAa,aAAY,cAAc,QAAQ;AAC5D,UAAI,SAAS,QAAS,aAAY,UAAU,QAAQ;AACpD,UAAI,SAAS,UAAU,OAAW,aAAY,QAAQ,QAAQ;AAC9D,UAAI,SAAS,eAAe,OAAW,aAAY,aAAa,QAAQ;AACxE,UAAI,SAAS,mBAAmB,OAAW,aAAY,iBAAiB,QAAQ;AAChF,UAAI,SAAS,KAAM,aAAY,OAAO,QAAQ;AAC9C,UAAI,SAAS,KAAM,aAAY,OAAO,QAAQ;AAC9C,UAAI,SAAS,WAAY,aAAY,aAAa,QAAQ;AAC1D,UAAI,SAAS,aAAc,aAAY,eAAe,QAAQ;AAE9D,WAAK,WAAW;AAAA,IAClB,UAAE;AACA,iCAA2B;AAAA,IAC7B;AAAA,EACF,GAAG;AAEH,QAAM;AACR;AA2DO,SAAS,MACd,KACA,SACqB;AAErB,MAAI,UAAU,IAAI,GAAG,GAAG;AACtB,YAAQ,KAAK,2DAA2D;AACxE,WAAO;AAAA,MACL,iBAAiB,MAAM;AAAA,MAEvB;AAAA,IACF;AAAA,EACF;AACA,YAAU,IAAI,GAAG;AAKjB,oBAAkB,OAAO,EAAE,MAAM,CAAC,QAAQ;AACxC,QAAI,SAAS,OAAO;AAClB,cAAQ,MAAM,qCAAqC,GAAG;AAAA,IACxD;AAAA,EACF,CAAC;AAGD,QAAM,oBAA4C,CAAC;AACnD,MAAI,SAAS,YAAa,mBAAkB,cAAc,QAAQ;AAClE,MAAI,SAAS,cAAe,mBAAkB,gBAAgB,QAAQ;AACtE,MAAI,SAAS,WAAY,mBAAkB,aAAa,QAAQ;AAChE,MAAI,SAAS,gBAAgB,OAAW,mBAAkB,cAAc,QAAQ;AAChF,MAAI,SAAS,mBAAmB,OAAW,mBAAkB,iBAAiB,QAAQ;AACtF,MAAI,SAAS,iBAAiB,OAAW,mBAAkB,eAAe,QAAQ;AAGlF,MAAI,IAAI,eAAe,iBAAiB,CAAC;AAGzC,MAAI,oBAAoB;AAMxB,QAAM,kBAAkB,MAAY;AAClC,QAAI,mBAAmB;AACrB;AAAA,IACF;AACA,wBAAoB;AACpB,QAAI,IAAI,aAAa,iBAAiB,CAAC;AAAA,EACzC;AAGA,QAAM,iBAAiB,IAAI,OAAO,KAAK,GAAG;AAE1C,EAAC,IAAY,SAAS,YACjB,MACgC;AAEnC,oBAAgB;AAGhB,IAAC,IAAY,SAAS;AAEtB,WAAO,eAAe,GAAG,IAAI;AAAA,EAC/B;AAEA,SAAO,EAAE,gBAAgB;AAC3B;;;AE5JA;AAAA,EACE,QAAAC;AAAA,EACA,aAAAC;AAAA,EACA,oBAAAC;AAAA,EACA;AAAA,EACA,iBAAAC;AAAA,EACA,WAAAC;AAAA,EACA;AAAA,EACA;AAAA,EACA,SAAAC;AAAA,EACA;AAAA,OACK;","names":["getClient","getClient","init","getClient","captureException","addBreadcrumb","setUser","flush"]}

package/package.json

@@ -0,0 +1,54 @@
+{
+  "name": "@bugwatch/express",
+  "version": "0.1.0",
+  "description": "Bugwatch SDK integration for Express.js",
+  "main": "./dist/index.js",
+  "module": "./dist/index.mjs",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "import": "./dist/index.mjs",
+      "require": "./dist/index.js",
+      "types": "./dist/index.d.ts"
+    }
+  },
+  "files": [
+    "dist"
+  ],
+  "scripts": {
+    "build": "tsup",
+    "dev": "tsup --watch",
+    "typecheck": "tsc --noEmit",
+    "clean": "rm -rf dist",
+    "test": "vitest run",
+    "test:watch": "vitest"
+  },
+  "dependencies": {
+    "@bugwatch/core": "*"
+  },
+  "peerDependencies": {
+    "express": "^4.0.0 || ^5.0.0"
+  },
+  "devDependencies": {
+    "@types/express": "^4.17.21",
+    "express": "^4.18.2",
+    "tsup": "^8.0.0",
+    "typescript": "^5.3.0"
+  },
+  "publishConfig": {
+    "access": "public"
+  },
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/bugwatch/bugwatch.git",
+    "directory": "packages/sdk/express"
+  },
+  "license": "MIT",
+  "keywords": [
+    "bugwatch",
+    "error-tracking",
+    "express",
+    "middleware",
+    "monitoring"
+  ]
+}