npm - @cloudflare/sandbox - Versions diffs - 0.3.6 → 0.4.1 - Mend

@cloudflare/sandbox 0.3.6 → 0.4.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (120) hide show

package/.turbo/turbo-build.log +44 -0
package/CHANGELOG.md +6 -8
package/Dockerfile +88 -18
package/README.md +89 -824
package/dist/{chunk-JTKON2SH.js → chunk-BCJ7SF3Q.js} +9 -5
package/dist/chunk-BCJ7SF3Q.js.map +1 -0
package/dist/chunk-BFVUNTP4.js +104 -0
package/dist/chunk-BFVUNTP4.js.map +1 -0
package/dist/{chunk-NNGBXDMY.js → chunk-EKSWCBCA.js} +3 -6
package/dist/chunk-EKSWCBCA.js.map +1 -0
package/dist/chunk-HGF554LH.js +2236 -0
package/dist/chunk-HGF554LH.js.map +1 -0
package/dist/{chunk-6UAWTJ5S.js → chunk-Z532A7QC.js} +13 -20
package/dist/{chunk-6UAWTJ5S.js.map → chunk-Z532A7QC.js.map} +1 -1
package/dist/file-stream.d.ts +16 -38
package/dist/file-stream.js +1 -2
package/dist/index.d.ts +6 -5
package/dist/index.js +35 -39
package/dist/index.js.map +1 -1
package/dist/interpreter.d.ts +3 -3
package/dist/interpreter.js +2 -2
package/dist/request-handler.d.ts +4 -3
package/dist/request-handler.js +4 -7
package/dist/sandbox-D9K2ypln.d.ts +583 -0
package/dist/sandbox.d.ts +3 -3
package/dist/sandbox.js +4 -7
package/dist/security.d.ts +4 -3
package/dist/security.js +3 -3
package/dist/sse-parser.js +1 -1
package/package.json +11 -5
package/src/clients/base-client.ts +280 -0
package/src/clients/command-client.ts +115 -0
package/src/clients/file-client.ts +269 -0
package/src/clients/git-client.ts +92 -0
package/src/clients/index.ts +63 -0
package/src/{interpreter-client.ts → clients/interpreter-client.ts} +148 -171
package/src/clients/port-client.ts +105 -0
package/src/clients/process-client.ts +177 -0
package/src/clients/sandbox-client.ts +41 -0
package/src/clients/types.ts +84 -0
package/src/clients/utility-client.ts +94 -0
package/src/errors/adapter.ts +180 -0
package/src/errors/classes.ts +469 -0
package/src/errors/index.ts +105 -0
package/src/file-stream.ts +119 -117
package/src/index.ts +81 -69
package/src/interpreter.ts +17 -8
package/src/request-handler.ts +69 -43
package/src/sandbox.ts +694 -533
package/src/security.ts +14 -23
package/src/sse-parser.ts +4 -8
package/startup.sh +3 -0
package/tests/base-client.test.ts +328 -0
package/tests/command-client.test.ts +407 -0
package/tests/file-client.test.ts +643 -0
package/tests/file-stream.test.ts +306 -0
package/tests/git-client.test.ts +328 -0
package/tests/port-client.test.ts +301 -0
package/tests/process-client.test.ts +658 -0
package/tests/sandbox.test.ts +465 -0
package/tests/sse-parser.test.ts +290 -0
package/tests/utility-client.test.ts +266 -0
package/tests/wrangler.jsonc +35 -0
package/tsconfig.json +9 -1
package/vitest.config.ts +31 -0
package/container_src/bun.lock +0 -76
package/container_src/circuit-breaker.ts +0 -121
package/container_src/control-process.ts +0 -784
package/container_src/handler/exec.ts +0 -185
package/container_src/handler/file.ts +0 -457
package/container_src/handler/git.ts +0 -130
package/container_src/handler/ports.ts +0 -314
package/container_src/handler/process.ts +0 -568
package/container_src/handler/session.ts +0 -92
package/container_src/index.ts +0 -601
package/container_src/interpreter-service.ts +0 -276
package/container_src/isolation.ts +0 -1213
package/container_src/mime-processor.ts +0 -255
package/container_src/package.json +0 -18
package/container_src/runtime/executors/javascript/node_executor.ts +0 -123
package/container_src/runtime/executors/python/ipython_executor.py +0 -338
package/container_src/runtime/executors/typescript/ts_executor.ts +0 -138
package/container_src/runtime/process-pool.ts +0 -464
package/container_src/shell-escape.ts +0 -42
package/container_src/startup.sh +0 -11
package/container_src/types.ts +0 -131
package/dist/chunk-32UDXUPC.js +0 -671
package/dist/chunk-32UDXUPC.js.map +0 -1
package/dist/chunk-5DILEXGY.js +0 -85
package/dist/chunk-5DILEXGY.js.map +0 -1
package/dist/chunk-D3U63BZP.js +0 -240
package/dist/chunk-D3U63BZP.js.map +0 -1
package/dist/chunk-FXYPFGOZ.js +0 -129
package/dist/chunk-FXYPFGOZ.js.map +0 -1
package/dist/chunk-JTKON2SH.js.map +0 -1
package/dist/chunk-NNGBXDMY.js.map +0 -1
package/dist/chunk-SQLJNZ3K.js +0 -674
package/dist/chunk-SQLJNZ3K.js.map +0 -1
package/dist/chunk-W7TVRPBG.js +0 -108
package/dist/chunk-W7TVRPBG.js.map +0 -1
package/dist/client-B3RUab0s.d.ts +0 -225
package/dist/client.d.ts +0 -4
package/dist/client.js +0 -7
package/dist/client.js.map +0 -1
package/dist/errors.d.ts +0 -95
package/dist/errors.js +0 -27
package/dist/errors.js.map +0 -1
package/dist/interpreter-client.d.ts +0 -4
package/dist/interpreter-client.js +0 -9
package/dist/interpreter-client.js.map +0 -1
package/dist/interpreter-types.d.ts +0 -259
package/dist/interpreter-types.js +0 -9
package/dist/interpreter-types.js.map +0 -1
package/dist/types.d.ts +0 -453
package/dist/types.js +0 -45
package/dist/types.js.map +0 -1
package/src/client.ts +0 -1048
package/src/errors.ts +0 -219
package/src/interpreter-types.ts +0 -390
package/src/types.ts +0 -571

package/container_src/handler/git.ts DELETED Viewed

@@ -1,130 +0,0 @@
-import { randomBytes } from "node:crypto";
-import type { Session, SessionManager } from "../isolation";
-import type { GitCheckoutRequest } from "../types";
-async function executeGitCheckout(
-  sessionManager: SessionManager,
-  sessionId: string | undefined,
-  repoUrl: string,
-  branch: string,
-  targetDir: string
-): Promise<{
-  success: boolean;
-  stdout: string;
-  stderr: string;
-  exitCode: number;
-}> {
-  // Execute git clone through the session to respect working directory
-  const command = `git clone -b ${branch} ${repoUrl} ${targetDir}`;
-  // Use specific session if provided, otherwise use default session
-  let session: Session | undefined;
-  if (sessionId) {
-    session = sessionManager.getSession(sessionId);
-    if (!session) {
-      throw new Error(`Session '${sessionId}' not found`);
-    }
-  } else {
-    // Use the centralized method to get or create default session
-    session = await sessionManager.getOrCreateDefaultSession();
-  }
-  return session.exec(command);
-}
-export async function handleGitCheckoutRequest(
-  req: Request,
-  corsHeaders: Record<string, string>,
-  sessionManager: SessionManager
-): Promise<Response> {
-  try {
-    const body = (await req.json()) as GitCheckoutRequest;
-    const { repoUrl, branch = "main", targetDir, sessionId } = body;
-    if (!repoUrl || typeof repoUrl !== "string") {
-      return new Response(
-        JSON.stringify({
-          error: "Repository URL is required and must be a string",
-        }),
-        {
-          headers: {
-            "Content-Type": "application/json",
-            ...corsHeaders,
-          },
-          status: 400,
-        }
-      );
-    }
-    // Validate repository URL format
-    const urlPattern =
-      /^(https?:\/\/|git@|ssh:\/\/).*\.git$|^https?:\/\/.*\/.*$/;
-    if (!urlPattern.test(repoUrl)) {
-      return new Response(
-        JSON.stringify({
-          error: "Invalid repository URL format",
-        }),
-        {
-          headers: {
-            "Content-Type": "application/json",
-            ...corsHeaders,
-          },
-          status: 400,
-        }
-      );
-    }
-    // Generate target directory if not provided using cryptographically secure randomness
-    const checkoutDir =
-      targetDir ||
-      `repo_${Date.now()}_${randomBytes(6).toString('hex')}`;
-    console.log(
-      `[Server] Checking out repository: ${repoUrl} to ${checkoutDir}${sessionId ? ` in session: ${sessionId}` : ''}`
-    );
-    const result = await executeGitCheckout(
-      sessionManager,
-      sessionId,
-      repoUrl,
-      branch,
-      checkoutDir
-    );
-    return new Response(
-      JSON.stringify({
-        branch,
-        exitCode: result.exitCode,
-        repoUrl,
-        stderr: result.stderr,
-        stdout: result.stdout,
-        success: result.success,
-        targetDir: checkoutDir,
-        timestamp: new Date().toISOString(),
-      }),
-      {
-        headers: {
-          "Content-Type": "application/json",
-          ...corsHeaders,
-        },
-      }
-    );
-  } catch (error) {
-    console.error("[Server] Error in handleGitCheckoutRequest:", error);
-    return new Response(
-      JSON.stringify({
-        error: "Failed to checkout repository",
-        message: error instanceof Error ? error.message : "Unknown error",
-      }),
-      {
-        headers: {
-          "Content-Type": "application/json",
-          ...corsHeaders,
-        },
-        status: 500,
-      }
-    );
-  }
-}

package/container_src/handler/ports.ts DELETED Viewed

@@ -1,314 +0,0 @@
-import type { ExposePortRequest, UnexposePortRequest } from "../types";
-export async function handleExposePortRequest(
-  exposedPorts: Map<number, { name?: string; exposedAt: Date }>,
-  req: Request,
-  corsHeaders: Record<string, string>
-): Promise<Response> {
-  try {
-    const body = (await req.json()) as ExposePortRequest;
-    const { port, name } = body;
-    if (!port || typeof port !== "number") {
-      return new Response(
-        JSON.stringify({
-          error: "Port is required and must be a number",
-        }),
-        {
-          headers: {
-            "Content-Type": "application/json",
-            ...corsHeaders,
-          },
-          status: 400,
-        }
-      );
-    }
-    // Validate port range
-    if (port < 1 || port > 65535) {
-      return new Response(
-        JSON.stringify({
-          error: "Port must be between 1 and 65535",
-        }),
-        {
-          headers: {
-            "Content-Type": "application/json",
-            ...corsHeaders,
-          },
-          status: 400,
-        }
-      );
-    }
-    // Store the exposed port
-    exposedPorts.set(port, { name, exposedAt: new Date() });
-    console.log(`[Server] Exposed port: ${port}${name ? ` (${name})` : ""}`);
-    return new Response(
-      JSON.stringify({
-        port,
-        name,
-        exposedAt: new Date().toISOString(),
-        success: true,
-        timestamp: new Date().toISOString(),
-      }),
-      {
-        headers: {
-          "Content-Type": "application/json",
-          ...corsHeaders,
-        },
-      }
-    );
-  } catch (error) {
-    console.error("[Server] Error in handleExposePortRequest:", error);
-    return new Response(
-      JSON.stringify({
-        error: "Failed to expose port",
-        message: error instanceof Error ? error.message : "Unknown error",
-      }),
-      {
-        headers: {
-          "Content-Type": "application/json",
-          ...corsHeaders,
-        },
-        status: 500,
-      }
-    );
-  }
-}
-export async function handleUnexposePortRequest(
-  exposedPorts: Map<number, { name?: string; exposedAt: Date }>,
-  req: Request,
-  corsHeaders: Record<string, string>
-): Promise<Response> {
-  try {
-    const body = (await req.json()) as UnexposePortRequest;
-    const { port } = body;
-    if (!port || typeof port !== "number") {
-      return new Response(
-        JSON.stringify({
-          error: "Port is required and must be a number",
-        }),
-        {
-          headers: {
-            "Content-Type": "application/json",
-            ...corsHeaders,
-          },
-          status: 400,
-        }
-      );
-    }
-    // Check if port is exposed
-    if (!exposedPorts.has(port)) {
-      return new Response(
-        JSON.stringify({
-          error: "Port is not exposed",
-        }),
-        {
-          headers: {
-            "Content-Type": "application/json",
-            ...corsHeaders,
-          },
-          status: 404,
-        }
-      );
-    }
-    // Remove the exposed port
-    exposedPorts.delete(port);
-    console.log(`[Server] Unexposed port: ${port}`);
-    return new Response(
-      JSON.stringify({
-        port,
-        success: true,
-        timestamp: new Date().toISOString(),
-      }),
-      {
-        headers: {
-          "Content-Type": "application/json",
-          ...corsHeaders,
-        },
-      }
-    );
-  } catch (error) {
-    console.error("[Server] Error in handleUnexposePortRequest:", error);
-    return new Response(
-      JSON.stringify({
-        error: "Failed to unexpose port",
-        message: error instanceof Error ? error.message : "Unknown error",
-      }),
-      {
-        headers: {
-          "Content-Type": "application/json",
-          ...corsHeaders,
-        },
-        status: 500,
-      }
-    );
-  }
-}
-export async function handleGetExposedPortsRequest(
-  exposedPorts: Map<number, { name?: string; exposedAt: Date }>,
-  req: Request,
-  corsHeaders: Record<string, string>
-): Promise<Response> {
-  try {
-    const ports = Array.from(exposedPorts.entries()).map(([port, info]) => ({
-      port,
-      name: info.name,
-      exposedAt: info.exposedAt.toISOString(),
-    }));
-    return new Response(
-      JSON.stringify({
-        ports,
-        count: ports.length,
-        timestamp: new Date().toISOString(),
-      }),
-      {
-        headers: {
-          "Content-Type": "application/json",
-          ...corsHeaders,
-        },
-      }
-    );
-  } catch (error) {
-    console.error("[Server] Error in handleGetExposedPortsRequest:", error);
-    return new Response(
-      JSON.stringify({
-        error: "Failed to get exposed ports",
-        message: error instanceof Error ? error.message : "Unknown error",
-      }),
-      {
-        headers: {
-          "Content-Type": "application/json",
-          ...corsHeaders,
-        },
-        status: 500,
-      }
-    );
-  }
-}
-export async function handleProxyRequest(
-  exposedPorts: Map<number, { name?: string; exposedAt: Date }>,
-  req: Request,
-  corsHeaders: Record<string, string>
-): Promise<Response> {
-  try {
-    const url = new URL(req.url);
-    const pathParts = url.pathname.split("/");
-    // Extract port from path like /proxy/3000/...
-    if (pathParts.length < 3) {
-      return new Response(
-        JSON.stringify({
-          error: "Invalid proxy path",
-        }),
-        {
-          headers: {
-            "Content-Type": "application/json",
-            ...corsHeaders,
-          },
-          status: 400,
-        }
-      );
-    }
-    const port = parseInt(pathParts[2]);
-    if (!port || Number.isNaN(port)) {
-      return new Response(
-        JSON.stringify({
-          error: "Invalid port in proxy path",
-        }),
-        {
-          headers: {
-            "Content-Type": "application/json",
-            ...corsHeaders,
-          },
-          status: 400,
-        }
-      );
-    }
-    // Check if port is exposed
-    if (!exposedPorts.has(port)) {
-      return new Response(
-        JSON.stringify({
-          error: `Port ${port} is not exposed`,
-        }),
-        {
-          headers: {
-            "Content-Type": "application/json",
-            ...corsHeaders,
-          },
-          status: 404,
-        }
-      );
-    }
-    // Construct the target URL
-    const targetPath = `/${pathParts.slice(3).join("/")}`;
-    // Use 127.0.0.1 instead of localhost for more reliable container networking
-    const targetUrl = `http://127.0.0.1:${port}${targetPath}${url.search}`;
-    console.log(`[Server] Proxying request to: ${targetUrl}`);
-    console.log(`[Server] Method: ${req.method}, Port: ${port}, Path: ${targetPath}`);
-    try {
-      // Forward the request to the target port
-      const targetResponse = await fetch(targetUrl, {
-        method: req.method,
-        headers: req.headers,
-        body: req.body,
-      });
-      // Return the response from the target
-      return new Response(targetResponse.body, {
-        status: targetResponse.status,
-        statusText: targetResponse.statusText,
-        headers: {
-          ...Object.fromEntries(targetResponse.headers.entries()),
-          ...corsHeaders,
-        },
-      });
-    } catch (fetchError) {
-      console.error(`[Server] Error proxying to port ${port}:`, fetchError);
-      return new Response(
-        JSON.stringify({
-          error: `Service on port ${port} is not responding`,
-          message: fetchError instanceof Error ? fetchError.message : "Unknown error",
-        }),
-        {
-          headers: {
-            "Content-Type": "application/json",
-            ...corsHeaders,
-          },
-          status: 502,
-        }
-      );
-    }
-  } catch (error) {
-    console.error("[Server] Error in handleProxyRequest:", error);
-    return new Response(
-      JSON.stringify({
-        error: "Failed to proxy request",
-        message: error instanceof Error ? error.message : "Unknown error",
-      }),
-      {
-        headers: {
-          "Content-Type": "application/json",
-          ...corsHeaders,
-        },
-        status: 500,
-      }
-    );
-  }
-}