npm - @chainlesschain/personal-data-hub - Versions diffs - 0.4.29 → 0.4.31 - Mend

@chainlesschain/personal-data-hub 0.4.29 → 0.4.31

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (199) hide show

package/lib/forensics/qq-nt-collect.js +190 -0
package/lib/prompt-builder.js +15 -1
package/package.json +8 -3
package/__tests__/adapter-guide.test.js +0 -47
package/__tests__/adapter-spec.test.js +0 -78
package/__tests__/adapters/ai-chat-cookie-capture-spec.test.js +0 -211
package/__tests__/adapters/ai-chat-health-checker.test.js +0 -262
package/__tests__/adapters/ai-chat-history.test.js +0 -396
package/__tests__/adapters/ai-chat-http-client.test.js +0 -242
package/__tests__/adapters/ai-chat-vendors.test.js +0 -874
package/__tests__/adapters/alipay-bill-adapter.test.js +0 -538
package/__tests__/adapters/apple-health.test.js +0 -95
package/__tests__/adapters/bank-family.test.js +0 -125
package/__tests__/adapters/biz-tianyancha.test.js +0 -159
package/__tests__/adapters/browser-history-chrome.test.js +0 -377
package/__tests__/adapters/browser-history-edge.test.js +0 -159
package/__tests__/adapters/car-mercedesme.test.js +0 -74
package/__tests__/adapters/doc-baidu-netdisk.test.js +0 -102
package/__tests__/adapters/doc-camscanner.test.js +0 -147
package/__tests__/adapters/doc-platforms.test.js +0 -177
package/__tests__/adapters/edu-huawei-learning-live.test.js +0 -198
package/__tests__/adapters/edu-zuoyebang-live.test.js +0 -226
package/__tests__/adapters/email-adapter-snapshot.test.js +0 -237
package/__tests__/adapters/email-adapter.test.js +0 -742
package/__tests__/adapters/email-classifier.test.js +0 -347
package/__tests__/adapters/email-imap-session.test.js +0 -334
package/__tests__/adapters/email-parser.test.js +0 -244
package/__tests__/adapters/email-pdf-extractor.test.js +0 -529
package/__tests__/adapters/email-providers.test.js +0 -84
package/__tests__/adapters/email-retry-progress.test.js +0 -294
package/__tests__/adapters/email-templates.test.js +0 -822
package/__tests__/adapters/family-23-collectors-scaffold.test.js +0 -182
package/__tests__/adapters/finance-alipay-live.test.js +0 -258
package/__tests__/adapters/finance-dcep.test.js +0 -74
package/__tests__/adapters/fitness-joyrun.test.js +0 -82
package/__tests__/adapters/game-genshin-live.test.js +0 -238
package/__tests__/adapters/game-genshin-scaffold.test.js +0 -108
package/__tests__/adapters/game-honor-of-kings-live.test.js +0 -230
package/__tests__/adapters/git-activity.test.js +0 -222
package/__tests__/adapters/gov-12123.test.js +0 -103
package/__tests__/adapters/gov-ixiamen.test.js +0 -150
package/__tests__/adapters/gov-tax.test.js +0 -135
package/__tests__/adapters/health-meiyou.test.js +0 -125
package/__tests__/adapters/local-files.test.js +0 -264
package/__tests__/adapters/local-im-pc.test.js +0 -154
package/__tests__/adapters/messaging-whatsapp.test.js +0 -289
package/__tests__/adapters/music-kugou.test.js +0 -187
package/__tests__/adapters/music-qq.test.js +0 -112
package/__tests__/adapters/netease-music-live.test.js +0 -244
package/__tests__/adapters/netease-music.test.js +0 -74
package/__tests__/adapters/pc-local-discovery.test.js +0 -141
package/__tests__/adapters/qq-pc-direct-read.test.js +0 -227
package/__tests__/adapters/reading-family.test.js +0 -108
package/__tests__/adapters/recruit-boss.test.js +0 -180
package/__tests__/adapters/shell-history.test.js +0 -180
package/__tests__/adapters/shopping-base.test.js +0 -179
package/__tests__/adapters/shopping-dianping.test.js +0 -239
package/__tests__/adapters/social-bilibili-adb-api-client.test.js +0 -721
package/__tests__/adapters/social-bilibili-adb-chromium-cookies-reader.test.js +0 -346
package/__tests__/adapters/social-bilibili-adb-collector.test.js +0 -284
package/__tests__/adapters/social-bilibili-adb-cookies-extension.test.js +0 -343
package/__tests__/adapters/social-bilibili-adb-snapshot-builder.test.js +0 -296
package/__tests__/adapters/social-csdn.test.js +0 -175
package/__tests__/adapters/social-dongchedi.test.js +0 -165
package/__tests__/adapters/social-douyin-adb-aweme-detail.test.js +0 -165
package/__tests__/adapters/social-douyin-adb-collector.test.js +0 -254
package/__tests__/adapters/social-douyin-adb-db-extension.test.js +0 -114
package/__tests__/adapters/social-douyin-adb-im-db-parser.test.js +0 -304
package/__tests__/adapters/social-douyin-adb-snapshot-builder.test.js +0 -216
package/__tests__/adapters/social-douyin-adb-usage-profile.test.js +0 -229
package/__tests__/adapters/social-douyin-adb-watch-history.test.js +0 -269
package/__tests__/adapters/social-kuaishou-adb-api-client.test.js +0 -496
package/__tests__/adapters/social-kuaishou-adb-collector.test.js +0 -276
package/__tests__/adapters/social-kuaishou-adb-cookies-extension.test.js +0 -152
package/__tests__/adapters/social-kuaishou-adb-snapshot-builder.test.js +0 -178
package/__tests__/adapters/social-toutiao-adb-account-reader.test.js +0 -135
package/__tests__/adapters/social-toutiao-adb-api-client.test.js +0 -626
package/__tests__/adapters/social-toutiao-adb-article.test.js +0 -155
package/__tests__/adapters/social-toutiao-adb-collector.test.js +0 -378
package/__tests__/adapters/social-toutiao-adb-cookies-extension.test.js +0 -193
package/__tests__/adapters/social-toutiao-adb-snapshot-builder.test.js +0 -196
package/__tests__/adapters/social-toutiao-kuaishou-scaffold.test.js +0 -311
package/__tests__/adapters/social-weibo-adb-api-client.test.js +0 -362
package/__tests__/adapters/social-weibo-adb-collector.test.js +0 -201
package/__tests__/adapters/social-weibo-adb-cookies-extension.test.js +0 -167
package/__tests__/adapters/social-weibo-adb-snapshot-builder.test.js +0 -189
package/__tests__/adapters/social-xiaohongshu-adb-api-client.test.js +0 -431
package/__tests__/adapters/social-xiaohongshu-adb-collector.test.js +0 -207
package/__tests__/adapters/social-xiaohongshu-adb-cookies-extension.test.js +0 -0
package/__tests__/adapters/social-xiaohongshu-adb-sign-provider-injection.test.js +0 -351
package/__tests__/adapters/social-xiaohongshu-adb-sign.test.js +0 -130
package/__tests__/adapters/social-xiaohongshu-adb-snapshot-builder.test.js +0 -200
package/__tests__/adapters/social-zhihu.test.js +0 -246
package/__tests__/adapters/system-data-adapter.test.js +0 -443
package/__tests__/adapters/system-data-android-ingest.test.js +0 -144
package/__tests__/adapters/system-data-android.test.js +0 -519
package/__tests__/adapters/system-data-disclosure.test.js +0 -153
package/__tests__/adapters/travel-12306.test.js +0 -512
package/__tests__/adapters/travel-amap.test.js +0 -219
package/__tests__/adapters/travel-baidu-map.test.js +0 -305
package/__tests__/adapters/travel-base.test.js +0 -205
package/__tests__/adapters/travel-ctrip.test.js +0 -377
package/__tests__/adapters/travel-didi-consumer.test.js +0 -66
package/__tests__/adapters/travel-didi.test.js +0 -204
package/__tests__/adapters/travel-tencent-map.test.js +0 -207
package/__tests__/adapters/travel-tongcheng.test.js +0 -289
package/__tests__/adapters/video-platforms.test.js +0 -152
package/__tests__/adapters/video-xigua.test.js +0 -106
package/__tests__/adapters/vscode.test.js +0 -299
package/__tests__/adapters/wechat-bootstrap.test.js +0 -240
package/__tests__/adapters/wechat-env-probe.test.js +0 -162
package/__tests__/adapters/wechat-frida-agent.test.js +0 -322
package/__tests__/adapters/wechat-frida-integration.test.js +0 -149
package/__tests__/adapters/wechat-frida-key-provider.test.js +0 -188
package/__tests__/adapters/wechat-md5-key-provider.test.js +0 -101
package/__tests__/adapters/wechat-pc-direct-read.test.js +0 -365
package/__tests__/adapters/wechat-pc-group-topic.test.js +0 -63
package/__tests__/adapters/wechat-pc-v4-sidecar.test.js +0 -72
package/__tests__/adapters/weread.test.js +0 -123
package/__tests__/adapters/wework-pc.test.js +0 -124
package/__tests__/adapters/win-recent.test.js +0 -192
package/__tests__/analysis-skills.test.js +0 -754
package/__tests__/analysis.test.js +0 -1845
package/__tests__/audio-ximalaya-snapshot.test.js +0 -279
package/__tests__/batch.test.js +0 -133
package/__tests__/bridges-cc-kg.test.js +0 -231
package/__tests__/bridges-cc-llm.test.js +0 -191
package/__tests__/bridges-cc-rag.test.js +0 -162
package/__tests__/categories.test.js +0 -92
package/__tests__/e2e/ai-chat-cross-source-journey.test.js +0 -213
package/__tests__/e2e/full-user-journey.test.js +0 -188
package/__tests__/e2e/local-data-adapters-cli.e2e.test.js +0 -146
package/__tests__/entity-resolver-ingest-hook.test.js +0 -177
package/__tests__/entity-resolver-stages.test.js +0 -411
package/__tests__/entity-resolver-vault.test.js +0 -249
package/__tests__/entity-resolver.test.js +0 -526
package/__tests__/fitness-keep-snapshot.test.js +0 -224
package/__tests__/fixtures/entity-resolver-200-mock.json +0 -96
package/__tests__/ids.test.js +0 -45
package/__tests__/integration/ai-chat-history-registry.test.js +0 -228
package/__tests__/integration/aichat-wizard-end-to-end.test.js +0 -282
package/__tests__/integration/cross-adapter-pipelines.test.js +0 -396
package/__tests__/integration/local-data-adapters-pipeline.test.js +0 -373
package/__tests__/integration/social-bilibili-pipeline.test.js +0 -261
package/__tests__/integration/wechat-bootstrap-end-to-end.test.js +0 -390
package/__tests__/key-providers.test.js +0 -126
package/__tests__/kg-derive.test.js +0 -219
package/__tests__/llm-client.test.js +0 -122
package/__tests__/longtail-adapters.test.js +0 -281
package/__tests__/messaging-qq-snapshot.test.js +0 -294
package/__tests__/mobile-extractor-encrypted.test.js +0 -460
package/__tests__/mobile-extractor.test.js +0 -288
package/__tests__/mock-adapter.test.js +0 -93
package/__tests__/prompt-builder.test.js +0 -249
package/__tests__/query-parser.test.js +0 -365
package/__tests__/rag-derive.test.js +0 -169
package/__tests__/registry-readiness.test.js +0 -292
package/__tests__/registry.test.js +0 -420
package/__tests__/salvage-ingest.test.js +0 -97
package/__tests__/schemas.test.js +0 -331
package/__tests__/shopping-adapters.test.js +0 -392
package/__tests__/shopping-eleme-snapshot.test.js +0 -454
package/__tests__/shopping-pinduoduo-snapshot.test.js +0 -484
package/__tests__/shopping-snapshot.test.js +0 -438
package/__tests__/shopping-vipshop-snapshot.test.js +0 -425
package/__tests__/shopping-xianyu-snapshot.test.js +0 -451
package/__tests__/sidecar-contacts-cross-validate.test.js +0 -186
package/__tests__/sidecar-supervisor.test.js +0 -128
package/__tests__/sign-providers.test.js +0 -62
package/__tests__/social-adapters.test.js +0 -280
package/__tests__/social-bilibili-snapshot.test.js +0 -278
package/__tests__/social-douban-snapshot.test.js +0 -351
package/__tests__/social-douyin-im-direct-read.test.js +0 -377
package/__tests__/social-douyin-salvage-collector.test.js +0 -98
package/__tests__/social-douyin-salvage-mapper.test.js +0 -90
package/__tests__/social-douyin-snapshot.test.js +0 -256
package/__tests__/social-kuaishou-snapshot.test.js +0 -362
package/__tests__/social-toutiao-snapshot.test.js +0 -366
package/__tests__/social-weibo-snapshot.test.js +0 -234
package/__tests__/social-weibo-sqlite-device.test.js +0 -174
package/__tests__/social-xiaohongshu-snapshot.test.js +0 -232
package/__tests__/sqlite-leaf-salvage.test.js +0 -97
package/__tests__/travel-adapters.test.js +0 -483
package/__tests__/travel-maps-snapshot.test.js +0 -426
package/__tests__/vault-driver-error.test.js +0 -74
package/__tests__/vault-search-helpers.test.js +0 -104
package/__tests__/vault-search.test.js +0 -423
package/__tests__/vault.test.js +0 -767
package/__tests__/wechat-adapter.test.js +0 -594
package/__tests__/whatsapp-adapter.test.js +0 -138
package/scripts/_make-fixture-all.js +0 -126
package/scripts/_make-fixture-contacts.js +0 -84
package/scripts/evaluate-entity-resolver.js +0 -213
package/scripts/run-native-tests-sandbox.sh +0 -55
package/scripts/smoke-phase-5-5.js +0 -196
package/scripts/smoke-phase-5-7.js +0 -181
package/scripts/smoke-system-data-contacts.js +0 -309
package/scripts/smoke-system-data.js +0 -312
package/vitest.config.js +0 -88

package/__tests__/adapters/social-toutiao-adb-api-client.test.js DELETED Viewed

@@ -1,626 +0,0 @@
-"use strict";
-import { describe, it, expect, vi } from "vitest";
-const {
-  ToutiaoApiClient,
-  _internals,
-} = require("../../lib/adapters/social-toutiao-adb/api-client");
-const { NULL_SIGN_PROVIDER } = require("../../lib/sign-providers");
-function makeFakeFetch(responses) {
-  const calls = [];
-  const fakeFetch = async (urlStr, opts) => {
-    calls.push({ url: urlStr, opts });
-    for (const [pattern, payload] of responses) {
-      if (urlStr.includes(pattern)) {
-        const resolved =
-          typeof payload === "function" ? await payload(urlStr, opts) : payload;
-        return {
-          ok: resolved.status == null || resolved.status === 200,
-          status: resolved.status || 200,
-          text: async () => resolved.body,
-        };
-      }
-    }
-    throw new Error("fake fetch: no response for " + urlStr);
-  };
-  return { fakeFetch, calls };
-}
-describe("ToutiaoApiClient — extractUid", () => {
-  it("prefers passport_uid", () => {
-    const c = new ToutiaoApiClient({ fetch: () => {} });
-    expect(c.extractUid("passport_uid=12345; sessionid=abc")).toBe("12345");
-    expect(c.lastErrorCode).toBe(0);
-  });
-  it("falls back to multi_sids first segment", () => {
-    const c = new ToutiaoApiClient({ fetch: () => {} });
-    expect(c.extractUid("multi_sids=67890:abcd;11111:efgh")).toBe("67890");
-  });
-  it("falls back to __ac_uid", () => {
-    const c = new ToutiaoApiClient({ fetch: () => {} });
-    expect(c.extractUid("__ac_uid=555")).toBe("555");
-  });
-  it("falls back to tt_uid legacy", () => {
-    const c = new ToutiaoApiClient({ fetch: () => {} });
-    expect(c.extractUid("tt_uid=777")).toBe("777");
-  });
-  it("returns null on empty cookie", () => {
-    const c = new ToutiaoApiClient({ fetch: () => {} });
-    expect(c.extractUid("")).toBe(null);
-    expect(c.lastErrorCode).toBe(-1);
-  });
-  it("returns null on '0' sentinels (anonymous)", () => {
-    const c = new ToutiaoApiClient({ fetch: () => {} });
-    expect(c.extractUid("passport_uid=0; __ac_uid=0")).toBe(null);
-    expect(c.lastErrorCode).toBe(-7);
-  });
-  it("returns null when no uid candidate present", () => {
-    const c = new ToutiaoApiClient({ fetch: () => {} });
-    expect(c.extractUid("sessionid=abc; ttwid=def")).toBe(null);
-    expect(c.lastErrorCode).toBe(-7);
-  });
-});
-describe("ToutiaoApiClient — signProvider injection", () => {
-  it("defaults to NULL_SIGN_PROVIDER", () => {
-    const c = new ToutiaoApiClient({ fetch: () => {} });
-    expect(c.signProvider).toBe(NULL_SIGN_PROVIDER);
-  });
-  it("uses opts.signProvider verbatim", () => {
-    const fake = { signUrl: vi.fn(async () => null) };
-    const c = new ToutiaoApiClient({ fetch: () => {}, signProvider: fake });
-    expect(c.signProvider).toBe(fake);
-  });
-  it("fetchProfile does NOT call signUrl (no _sig required)", async () => {
-    const { fakeFetch } = makeFakeFetch([
-      [
-        "passport/account/info/v2",
-        {
-          body: JSON.stringify({
-            status_code: 0,
-            data: { user_id: "12345", screen_name: "Alice" },
-          }),
-        },
-      ],
-    ]);
-    const sign = { signUrl: vi.fn(async () => null) };
-    const c = new ToutiaoApiClient({
-      fetch: fakeFetch,
-      signProvider: sign,
-    });
-    await c.fetchProfile("sessionid=abc");
-    expect(sign.signUrl).not.toHaveBeenCalled();
-  });
-  it("3 signed endpoints SHORT-CIRCUIT (-99) when NullSignProvider", async () => {
-    const { fakeFetch, calls } = makeFakeFetch([]);
-    const c = new ToutiaoApiClient({ fetch: fakeFetch });
-    const f = await c.fetchFeed("sessionid=abc");
-    const co = await c.fetchCollection("sessionid=abc");
-    const s = await c.fetchSearchHistory("sessionid=abc");
-    expect(f).toEqual([]);
-    expect(co).toEqual([]);
-    expect(s).toEqual([]);
-    expect(c.lastErrorCode).toBe(-99);
-    expect(c._fallbackHits).toBe(3);
-    expect(c._bridgeHits).toBe(0);
-    // Critical: NO HTTP requests went out (signed endpoints short-
-    // circuit BEFORE calling fetch — saves bandwidth on cold bridge).
-    expect(calls).toHaveLength(0);
-  });
-  it("signed endpoint sends mutated URL when signProvider returns one", async () => {
-    const { fakeFetch, calls } = makeFakeFetch([
-      [
-        "api/news/feed/v90",
-        {
-          body: JSON.stringify({
-            data: [
-              {
-                group_id: "G1",
-                title: "T",
-                behot_time: 1700000000,
-                category: "tech",
-              },
-            ],
-          }),
-        },
-      ],
-    ]);
-    const sign = {
-      signUrl: vi.fn(async (url) => {
-        const u = new URL(String(url));
-        u.searchParams.set("_signature", "BRIDGE_SIG_123");
-        return u;
-      }),
-    };
-    const c = new ToutiaoApiClient({ fetch: fakeFetch, signProvider: sign });
-    const items = await c.fetchFeed("sessionid=abc", { limit: 5 });
-    expect(items).toHaveLength(1);
-    expect(items[0].itemId).toBe("G1");
-    expect(sign.signUrl).toHaveBeenCalledOnce();
-    expect(calls[0].url).toContain("_signature=BRIDGE_SIG_123");
-    expect(c._bridgeHits).toBe(1);
-    expect(c._fallbackHits).toBe(0);
-  });
-  it("forwards purpose string to signUrl", async () => {
-    const { fakeFetch } = makeFakeFetch([
-      ["api/news/feed/v90", { body: JSON.stringify({ data: [] }) }],
-      ["article/v2/tab_comments", { body: JSON.stringify({ data: [] }) }],
-      ["api/search/content", { body: JSON.stringify({ data: {} }) }],
-    ]);
-    const sign = {
-      signUrl: vi.fn(async (url) => {
-        const u = new URL(String(url));
-        u.searchParams.set("_signature", "X");
-        return u;
-      }),
-    };
-    const c = new ToutiaoApiClient({ fetch: fakeFetch, signProvider: sign });
-    await c.fetchFeed("sessionid=abc");
-    await c.fetchCollection("sessionid=abc");
-    await c.fetchSearchHistory("sessionid=abc");
-    expect(sign.signUrl.mock.calls[0][1]).toBe("feed");
-    expect(sign.signUrl.mock.calls[1][1]).toBe("comments");
-    expect(sign.signUrl.mock.calls[2][1]).toBe("search");
-  });
-});
-describe("ToutiaoApiClient — fetchProfile", () => {
-  it("parses status_code=0 + data.user_id (string)", async () => {
-    const { fakeFetch, calls } = makeFakeFetch([
-      [
-        "passport/account/info/v2",
-        {
-          body: JSON.stringify({
-            status_code: 0,
-            data: {
-              user_id: "12345",
-              screen_name: "Alice",
-              avatar_url: "https://a/x.jpg",
-              mobile: "138****",
-              description: "bio",
-              following_count: 10,
-              followers_count: 99,
-              media_id: "5678",
-            },
-          }),
-        },
-      ],
-    ]);
-    const c = new ToutiaoApiClient({ fetch: fakeFetch });
-    const p = await c.fetchProfile("sessionid=abc");
-    expect(p).toMatchObject({
-      uid: "12345",
-      nickname: "Alice",
-      avatarUrl: "https://a/x.jpg",
-      mobile: "138****",
-      description: "bio",
-      followingCount: 10,
-      followerCount: 99,
-      mediaId: "5678",
-    });
-    // aid=24 is in the URL
-    expect(calls[0].url).toContain("aid=24");
-  });
-  it("returns null on status_code != 0", async () => {
-    const { fakeFetch } = makeFakeFetch([
-      [
-        "passport/account/info/v2",
-        {
-          body: JSON.stringify({
-            status_code: 1,
-            status_msg: "token expired",
-          }),
-        },
-      ],
-    ]);
-    const c = new ToutiaoApiClient({ fetch: fakeFetch });
-    const p = await c.fetchProfile("sessionid=abc");
-    expect(p).toBe(null);
-    expect(c.lastErrorCode).toBe(1);
-    expect(c.lastErrorMessage).toBe("token expired");
-  });
-  it("returns null on missing data object", async () => {
-    const { fakeFetch } = makeFakeFetch([
-      [
-        "passport/account/info/v2",
-        { body: JSON.stringify({ status_code: 0 }) },
-      ],
-    ]);
-    const c = new ToutiaoApiClient({ fetch: fakeFetch });
-    expect(await c.fetchProfile("sessionid=abc")).toBe(null);
-    expect(c.lastErrorCode).toBe(-6);
-  });
-  it("returns null on missing user_id in data", async () => {
-    const { fakeFetch } = makeFakeFetch([
-      [
-        "passport/account/info/v2",
-        {
-          body: JSON.stringify({
-            status_code: 0,
-            data: { screen_name: "noUidShown" },
-          }),
-        },
-      ],
-    ]);
-    const c = new ToutiaoApiClient({ fetch: fakeFetch });
-    expect(await c.fetchProfile("sessionid=abc")).toBe(null);
-    expect(c.lastErrorCode).toBe(-7);
-  });
-  it("HTTP 412 anti-bot returns null with status code", async () => {
-    const { fakeFetch } = makeFakeFetch([
-      ["passport/account/info/v2", { status: 412, body: "<html>blocked" }],
-    ]);
-    const c = new ToutiaoApiClient({ fetch: fakeFetch });
-    expect(await c.fetchProfile("sessionid=abc")).toBe(null);
-    expect(c.lastErrorCode).toBe(412);
-  });
-  it("non-JSON response returns null with -4", async () => {
-    const { fakeFetch } = makeFakeFetch([
-      ["passport/account/info/v2", { body: "<html>login redirect" }],
-    ]);
-    const c = new ToutiaoApiClient({ fetch: fakeFetch });
-    expect(await c.fetchProfile("sessionid=abc")).toBe(null);
-    expect(c.lastErrorCode).toBe(-4);
-  });
-  // ── passport v2 envelope (real-device 2026-06-11, no status_code) ──
-  it("parses passport-v2 success envelope { message:'success', data } (no status_code)", async () => {
-    const { fakeFetch } = makeFakeFetch([
-      [
-        "passport/account/info/v2",
-        {
-          body: JSON.stringify({
-            message: "success",
-            data: { user_id: "555", screen_name: "v2user" },
-          }),
-        },
-      ],
-    ]);
-    const c = new ToutiaoApiClient({ fetch: fakeFetch });
-    const p = await c.fetchProfile("sessionid=abc");
-    expect(p).not.toBe(null);
-    expect(p.uid).toBe("555");
-    expect(p.nickname).toBe("v2user");
-  });
-  it("surfaces passport-v2 error envelope error_code + 中文 description (error_code 16 该应用无权限)", async () => {
-    // Verified on device 5lhyaqu8lbwstc6x with a fully logged-in Toutiao:
-    // the endpoint now returns this even with valid sessionid cookies. The
-    // old code mis-reported it as "missing status_code".
-    const { fakeFetch } = makeFakeFetch([
-      [
-        "passport/account/info/v2",
-        {
-          body: JSON.stringify({
-            message: "error",
-            data: { error_code: 16, description: "该应用无权限", captcha: "" },
-          }),
-        },
-      ],
-    ]);
-    const c = new ToutiaoApiClient({ fetch: fakeFetch });
-    expect(await c.fetchProfile("sessionid=abc")).toBe(null);
-    expect(c.lastErrorCode).toBe(16);
-    expect(c.lastErrorMessage).toBe("该应用无权限");
-  });
-  it("unrecognized envelope (no status_code, no message) → -5 with key list", async () => {
-    const { fakeFetch } = makeFakeFetch([
-      ["passport/account/info/v2", { body: JSON.stringify({ foo: "bar" }) }],
-    ]);
-    const c = new ToutiaoApiClient({ fetch: fakeFetch });
-    expect(await c.fetchProfile("sessionid=abc")).toBe(null);
-    expect(c.lastErrorCode).toBe(-5);
-  });
-});
-describe("ToutiaoApiClient — fetchFeed", () => {
-  it("parses items + top-level raw fields", async () => {
-    const { fakeFetch } = makeFakeFetch([
-      [
-        "api/news/feed/v90",
-        {
-          body: JSON.stringify({
-            data: [
-              {
-                group_id: "G1",
-                title: "Title 1",
-                category: "tech",
-                source: "WeRead",
-                behot_time: 1700000000, // seconds → ms via normalizeMs
-                read_duration: 30,
-              },
-            ],
-          }),
-        },
-      ],
-    ]);
-    const sign = {
-      signUrl: vi.fn(async (url) => {
-        const u = new URL(String(url));
-        u.searchParams.set("_signature", "X");
-        return u;
-      }),
-    };
-    const c = new ToutiaoApiClient({ fetch: fakeFetch, signProvider: sign });
-    const items = await c.fetchFeed("sessionid=abc");
-    expect(items).toHaveLength(1);
-    expect(items[0]).toMatchObject({
-      itemId: "G1",
-      title: "Title 1",
-      category: "tech",
-      readDuration: 30,
-    });
-    expect(items[0].publishedAt).toBe(1700000000 * 1000);
-  });
-  it("decodes nested raw_data JSON string", async () => {
-    const { fakeFetch } = makeFakeFetch([
-      [
-        "api/news/feed/v90",
-        {
-          body: JSON.stringify({
-            data: [
-              {
-                category: "outer-cat",
-                raw_data: JSON.stringify({
-                  group_id: "INNER1",
-                  title: "From nested",
-                  behot_time: 1700000000,
-                }),
-              },
-            ],
-          }),
-        },
-      ],
-    ]);
-    const sign = {
-      signUrl: vi.fn(async (url) => {
-        const u = new URL(String(url));
-        u.searchParams.set("_signature", "X");
-        return u;
-      }),
-    };
-    const c = new ToutiaoApiClient({ fetch: fakeFetch, signProvider: sign });
-    const items = await c.fetchFeed("sessionid=abc");
-    expect(items[0].itemId).toBe("INNER1");
-    expect(items[0].title).toBe("From nested");
-  });
-  it("falls back to outer category when nested item lacks one", async () => {
-    const { fakeFetch } = makeFakeFetch([
-      [
-        "api/news/feed/v90",
-        {
-          body: JSON.stringify({
-            data: [
-              {
-                category: "outer-cat",
-                raw_data: JSON.stringify({ group_id: "G", title: "T" }),
-              },
-            ],
-          }),
-        },
-      ],
-    ]);
-    const sign = {
-      signUrl: vi.fn(async (url) => {
-        const u = new URL(String(url));
-        u.searchParams.set("_signature", "X");
-        return u;
-      }),
-    };
-    const c = new ToutiaoApiClient({ fetch: fakeFetch, signProvider: sign });
-    const items = await c.fetchFeed("sessionid=abc");
-    expect(items[0].category).toBe("outer-cat");
-  });
-  it("returns [] on empty data array", async () => {
-    const { fakeFetch } = makeFakeFetch([
-      ["api/news/feed/v90", { body: JSON.stringify({ data: [] }) }],
-    ]);
-    const sign = {
-      signUrl: vi.fn(async (url) => {
-        const u = new URL(String(url));
-        u.searchParams.set("_signature", "X");
-        return u;
-      }),
-    };
-    const c = new ToutiaoApiClient({ fetch: fakeFetch, signProvider: sign });
-    expect(await c.fetchFeed("sessionid=abc")).toEqual([]);
-  });
-});
-describe("ToutiaoApiClient — fetchCollection", () => {
-  it("parses saved articles", async () => {
-    const { fakeFetch } = makeFakeFetch([
-      [
-        "article/v2/tab_comments",
-        {
-          body: JSON.stringify({
-            data: [
-              {
-                group_id: "C1",
-                title: "Saved 1",
-                category: "news",
-                behot_time: 1700000000,
-              },
-            ],
-          }),
-        },
-      ],
-    ]);
-    const sign = {
-      signUrl: vi.fn(async (url) => {
-        const u = new URL(String(url));
-        u.searchParams.set("_signature", "X");
-        return u;
-      }),
-    };
-    const c = new ToutiaoApiClient({ fetch: fakeFetch, signProvider: sign });
-    const items = await c.fetchCollection("sessionid=abc");
-    expect(items[0]).toMatchObject({
-      itemId: "C1",
-      title: "Saved 1",
-      category: "news",
-    });
-    expect(items[0].savedAt).toBe(1700000000 * 1000);
-  });
-});
-describe("ToutiaoApiClient — fetchSearchHistory", () => {
-  it("parses object-shape history with timestamps", async () => {
-    const { fakeFetch } = makeFakeFetch([
-      [
-        "api/search/content",
-        {
-          body: JSON.stringify({
-            data: {
-              user_search_history: [
-                { keyword: "AI", time: 1700000000 },
-                { keyword: "rust", time: 1700001000 },
-              ],
-            },
-          }),
-        },
-      ],
-    ]);
-    const sign = {
-      signUrl: vi.fn(async (url) => {
-        const u = new URL(String(url));
-        u.searchParams.set("_signature", "X");
-        return u;
-      }),
-    };
-    const c = new ToutiaoApiClient({ fetch: fakeFetch, signProvider: sign });
-    const items = await c.fetchSearchHistory("sessionid=abc");
-    expect(items).toHaveLength(2);
-    expect(items[0]).toEqual({ keyword: "AI", searchedAt: 1700000000 * 1000 });
-  });
-  it("parses bare-string legacy history (no timestamps)", async () => {
-    const { fakeFetch } = makeFakeFetch([
-      [
-        "api/search/content",
-        {
-          body: JSON.stringify({
-            data: { user_search_history: ["AI", "rust", "kotlin"] },
-          }),
-        },
-      ],
-    ]);
-    const sign = {
-      signUrl: vi.fn(async (url) => {
-        const u = new URL(String(url));
-        u.searchParams.set("_signature", "X");
-        return u;
-      }),
-    };
-    const fixedNow = () => 1716383021000;
-    const c = new ToutiaoApiClient({
-      fetch: fakeFetch,
-      signProvider: sign,
-      now: fixedNow,
-    });
-    const items = await c.fetchSearchHistory("sessionid=abc");
-    expect(items).toHaveLength(3);
-    // Latest first ordering — index 0 gets fixedNow
-    expect(items[0]).toEqual({ keyword: "AI", searchedAt: 1716383021000 });
-  });
-  it("falls back to data.search_history shape", async () => {
-    const { fakeFetch } = makeFakeFetch([
-      [
-        "api/search/content",
-        {
-          body: JSON.stringify({
-            data: { search_history: [{ keyword: "fallback", time: 1 }] },
-          }),
-        },
-      ],
-    ]);
-    const sign = {
-      signUrl: vi.fn(async (url) => {
-        const u = new URL(String(url));
-        u.searchParams.set("_signature", "X");
-        return u;
-      }),
-    };
-    const c = new ToutiaoApiClient({ fetch: fakeFetch, signProvider: sign });
-    const items = await c.fetchSearchHistory("sessionid=abc");
-    expect(items[0].keyword).toBe("fallback");
-  });
-});
-describe("normalizeMs", () => {
-  it("passes through ms (>1e12)", () => {
-    expect(_internals.normalizeMs(1700000000000)).toBe(1700000000000);
-  });
-  it("multiplies seconds (<1e12) by 1000", () => {
-    expect(_internals.normalizeMs(1700000000)).toBe(1700000000 * 1000);
-  });
-  it("returns 0 for invalid / negative", () => {
-    expect(_internals.normalizeMs(0)).toBe(0);
-    expect(_internals.normalizeMs(-1)).toBe(0);
-    expect(_internals.normalizeMs(NaN)).toBe(0);
-  });
-});
-describe("err_no surfacing (HTTP 200 + err_no!=0 must NOT mask as empty)", () => {
-  it("fetchCollection: {err_no:1,'params illegal',data:[]} → [] + lastErrorCode 1", async () => {
-    // Real-device 2026-06-11: tab_comments returned this; the old code saw
-    // data:[] and reported 0 results with errCode 0, hiding the real failure.
-    const { fakeFetch } = makeFakeFetch([
-      [
-        "article/v2/tab_comments",
-        { body: JSON.stringify({ message: "params illegal", err_no: 1, data: [] }) },
-      ],
-    ]);
-    const sign = {
-      signUrl: vi.fn(async (url) => {
-        const u = new URL(String(url));
-        u.searchParams.set("_signature", "X");
-        return u;
-      }),
-    };
-    const c = new ToutiaoApiClient({ fetch: fakeFetch, signProvider: sign });
-    const items = await c.fetchCollection("sessionid=abc");
-    expect(items).toEqual([]);
-    expect(c.lastErrorCode).toBe(1);
-    expect(c.lastErrorMessage).toBe("params illegal");
-  });
-  it("err_no:0 is treated as success (not masked)", async () => {
-    const { fakeFetch } = makeFakeFetch([
-      [
-        "article/v2/tab_comments",
-        { body: JSON.stringify({ err_no: 0, data: [{ group_id: "C1", title: "Saved", behot_time: 1700000000 }] }) },
-      ],
-    ]);
-    const sign = { signUrl: vi.fn(async (url) => { const u = new URL(String(url)); u.searchParams.set("_signature", "X"); return u; }) };
-    const c = new ToutiaoApiClient({ fetch: fakeFetch, signProvider: sign });
-    const items = await c.fetchCollection("sessionid=abc");
-    expect(items).toHaveLength(1);
-    expect(items[0].itemId).toBe("C1");
-  });
-});