@copilotkitnext/runtime 1.51.2-next.1 → 1.51.3-next.0

package/dist/index.d.mts

@@ -1,21 +1,46 @@
-import { C as CopilotRuntime, A as AgentRunner, a as AgentRunnerRunRequest, b as AgentRunnerConnectRequest, c as AgentRunnerIsRunningRequest, d as AgentRunnerStopRequest } from './runtime-BEcxV64L.mjs';
-export { e as CopilotRuntimeOptions, V as VERSION } from './runtime-BEcxV64L.mjs';
+import { C as CopilotRuntime, A as AgentRunner, a as AgentRunnerRunRequest, b as AgentRunnerConnectRequest, c as AgentRunnerIsRunningRequest, d as AgentRunnerStopRequest } from './runtime-biMoHc-z.mjs';
+export { e as CopilotRuntimeOptions, T as TranscribeFileOptions, f as TranscriptionService, V as VERSION } from './runtime-biMoHc-z.mjs';
 import * as hono_hono_base from 'hono/hono-base';
 import * as hono_utils_http_status from 'hono/utils/http-status';
 import { Observable } from 'rxjs';
 import { BaseEvent } from '@ag-ui/client';
 export { finalizeRunEvents } from '@copilotkitnext/shared';
 
+/**
+ * CORS configuration for CopilotKit endpoints.
+ * When using credentials (e.g., HTTP-only cookies), you must specify an explicit origin.
+ */
+interface CopilotEndpointCorsConfig {
+    /**
+     * Allowed origin(s) for CORS. Can be:
+     * - A string: exact origin (e.g., "https://myapp.com")
+     * - An array: list of allowed origins
+     * - A function: dynamic origin resolution
+     *
+     * Note: When credentials is true, origin cannot be "*"
+     */
+    origin: string | string[] | ((origin: string, c: any) => string | undefined | null);
+    /**
+     * Whether to allow credentials (cookies, HTTP authentication).
+     * When true, origin must be explicitly specified (not "*").
+     */
+    credentials?: boolean;
+}
 interface CopilotEndpointParams {
     runtime: CopilotRuntime;
     basePath: string;
+    /**
+     * Optional CORS configuration. When not provided, defaults to allowing all origins without credentials.
+     * To support HTTP-only cookies, provide cors config with credentials: true and explicit origin.
+     */
+    cors?: CopilotEndpointCorsConfig;
 }
 type CopilotEndpointContext$1 = {
     Variables: {
         modifiedRequest?: Request;
     };
 };
-declare function createCopilotEndpoint({ runtime, basePath }: CopilotEndpointParams): hono_hono_base.HonoBase<CopilotEndpointContext$1, {
+declare function createCopilotEndpoint({ runtime, basePath, cors: corsConfig }: CopilotEndpointParams): hono_hono_base.HonoBase<CopilotEndpointContext$1, {
     [x: `${string}/agent/:agentId/run`]: {
         $post: {
             input: {
@@ -82,13 +107,18 @@ interface CopilotSingleEndpointParams {
      * Absolute path at which to mount the single-route endpoint (e.g. "/api/copilotkit").
      */
     basePath: string;
+    /**
+     * Optional CORS configuration. When not provided, defaults to allowing all origins without credentials.
+     * To support HTTP-only cookies, provide cors config with credentials: true and explicit origin.
+     */
+    cors?: CopilotEndpointCorsConfig;
 }
 type CopilotEndpointContext = {
     Variables: {
         modifiedRequest?: Request;
     };
 };
-declare function createCopilotEndpointSingleRoute({ runtime, basePath }: CopilotSingleEndpointParams): hono_hono_base.HonoBase<CopilotEndpointContext, {
+declare function createCopilotEndpointSingleRoute({ runtime, basePath, cors: corsConfig }: CopilotSingleEndpointParams): hono_hono_base.HonoBase<CopilotEndpointContext, {
     [x: string]: {
         $post: {
             input: {};
@@ -106,4 +136,4 @@ declare class InMemoryAgentRunner extends AgentRunner {
     stop(request: AgentRunnerStopRequest): Promise<boolean | undefined>;
 }
 
-export { AgentRunner, AgentRunnerConnectRequest, AgentRunnerIsRunningRequest, AgentRunnerRunRequest, AgentRunnerStopRequest, CopilotRuntime, InMemoryAgentRunner, createCopilotEndpoint, createCopilotEndpointSingleRoute };
+export { AgentRunner, AgentRunnerConnectRequest, AgentRunnerIsRunningRequest, AgentRunnerRunRequest, AgentRunnerStopRequest, type CopilotEndpointCorsConfig, CopilotRuntime, InMemoryAgentRunner, createCopilotEndpoint, createCopilotEndpointSingleRoute };

package/dist/index.d.ts

@@ -1,21 +1,46 @@
-import { C as CopilotRuntime, A as AgentRunner, a as AgentRunnerRunRequest, b as AgentRunnerConnectRequest, c as AgentRunnerIsRunningRequest, d as AgentRunnerStopRequest } from './runtime-BEcxV64L.js';
-export { e as CopilotRuntimeOptions, V as VERSION } from './runtime-BEcxV64L.js';
+import { C as CopilotRuntime, A as AgentRunner, a as AgentRunnerRunRequest, b as AgentRunnerConnectRequest, c as AgentRunnerIsRunningRequest, d as AgentRunnerStopRequest } from './runtime-biMoHc-z.js';
+export { e as CopilotRuntimeOptions, T as TranscribeFileOptions, f as TranscriptionService, V as VERSION } from './runtime-biMoHc-z.js';
 import * as hono_hono_base from 'hono/hono-base';
 import * as hono_utils_http_status from 'hono/utils/http-status';
 import { Observable } from 'rxjs';
 import { BaseEvent } from '@ag-ui/client';
 export { finalizeRunEvents } from '@copilotkitnext/shared';
 
+/**
+ * CORS configuration for CopilotKit endpoints.
+ * When using credentials (e.g., HTTP-only cookies), you must specify an explicit origin.
+ */
+interface CopilotEndpointCorsConfig {
+    /**
+     * Allowed origin(s) for CORS. Can be:
+     * - A string: exact origin (e.g., "https://myapp.com")
+     * - An array: list of allowed origins
+     * - A function: dynamic origin resolution
+     *
+     * Note: When credentials is true, origin cannot be "*"
+     */
+    origin: string | string[] | ((origin: string, c: any) => string | undefined | null);
+    /**
+     * Whether to allow credentials (cookies, HTTP authentication).
+     * When true, origin must be explicitly specified (not "*").
+     */
+    credentials?: boolean;
+}
 interface CopilotEndpointParams {
     runtime: CopilotRuntime;
     basePath: string;
+    /**
+     * Optional CORS configuration. When not provided, defaults to allowing all origins without credentials.
+     * To support HTTP-only cookies, provide cors config with credentials: true and explicit origin.
+     */
+    cors?: CopilotEndpointCorsConfig;
 }
 type CopilotEndpointContext$1 = {
     Variables: {
         modifiedRequest?: Request;
     };
 };
-declare function createCopilotEndpoint({ runtime, basePath }: CopilotEndpointParams): hono_hono_base.HonoBase<CopilotEndpointContext$1, {
+declare function createCopilotEndpoint({ runtime, basePath, cors: corsConfig }: CopilotEndpointParams): hono_hono_base.HonoBase<CopilotEndpointContext$1, {
     [x: `${string}/agent/:agentId/run`]: {
         $post: {
             input: {
@@ -82,13 +107,18 @@ interface CopilotSingleEndpointParams {
      * Absolute path at which to mount the single-route endpoint (e.g. "/api/copilotkit").
      */
     basePath: string;
+    /**
+     * Optional CORS configuration. When not provided, defaults to allowing all origins without credentials.
+     * To support HTTP-only cookies, provide cors config with credentials: true and explicit origin.
+     */
+    cors?: CopilotEndpointCorsConfig;
 }
 type CopilotEndpointContext = {
     Variables: {
         modifiedRequest?: Request;
     };
 };
-declare function createCopilotEndpointSingleRoute({ runtime, basePath }: CopilotSingleEndpointParams): hono_hono_base.HonoBase<CopilotEndpointContext, {
+declare function createCopilotEndpointSingleRoute({ runtime, basePath, cors: corsConfig }: CopilotSingleEndpointParams): hono_hono_base.HonoBase<CopilotEndpointContext, {
     [x: string]: {
         $post: {
             input: {};
@@ -106,4 +136,4 @@ declare class InMemoryAgentRunner extends AgentRunner {
     stop(request: AgentRunnerStopRequest): Promise<boolean | undefined>;
 }
 
-export { AgentRunner, AgentRunnerConnectRequest, AgentRunnerIsRunningRequest, AgentRunnerRunRequest, AgentRunnerStopRequest, CopilotRuntime, InMemoryAgentRunner, createCopilotEndpoint, createCopilotEndpointSingleRoute };
+export { AgentRunner, AgentRunnerConnectRequest, AgentRunnerIsRunningRequest, AgentRunnerRunRequest, AgentRunnerStopRequest, type CopilotEndpointCorsConfig, CopilotRuntime, InMemoryAgentRunner, createCopilotEndpoint, createCopilotEndpointSingleRoute };

package/dist/index.js

@@ -23,17 +23,18 @@ __export(index_exports, {
   AgentRunner: () => AgentRunner,
   CopilotRuntime: () => CopilotRuntime,
   InMemoryAgentRunner: () => InMemoryAgentRunner,
+  TranscriptionService: () => TranscriptionService,
   VERSION: () => VERSION,
   createCopilotEndpoint: () => createCopilotEndpoint,
   createCopilotEndpointSingleRoute: () => createCopilotEndpointSingleRoute,
-  finalizeRunEvents: () => import_shared5.finalizeRunEvents
+  finalizeRunEvents: () => import_shared6.finalizeRunEvents
 });
 module.exports = __toCommonJS(index_exports);
 
 // package.json
 var package_default = {
   name: "@copilotkitnext/runtime",
-  version: "1.51.2-next.1",
+  version: "1.51.3-next.0",
   description: "Server-side runtime package for CopilotKit2",
   main: "dist/index.js",
   types: "dist/index.d.ts",
@@ -69,7 +70,6 @@ var package_default = {
     "@types/express": "^4.17.21",
     "@types/node": "^22.15.3",
     eslint: "^9.30.0",
-    openai: "^5.9.0",
     supertest: "^7.1.1",
     tsup: "^8.5.0",
     typescript: "5.8.2",
@@ -82,11 +82,14 @@ var package_default = {
     "@copilotkitnext/shared": "workspace:*",
     cors: "^2.8.5",
     express: "^4.21.2",
-    hono: "^4.6.13",
+    hono: "^4.11.4",
     rxjs: "7.8.1"
   },
   peerDependencies: {
-    openai: "^5.9.0"
+    "@ag-ui/client": "0.0.42",
+    "@ag-ui/core": "0.0.42",
+    "@ag-ui/encoder": "0.0.42",
+    "@copilotkitnext/shared": "workspace:*"
   },
   peerDependenciesMeta: {},
   engines: {
@@ -577,73 +580,135 @@ async function handleGetRuntimeInfo({
 }
 
 // src/handlers/handle-transcribe.ts
+var import_shared2 = require("@copilotkitnext/shared");
+var ERROR_STATUS_CODES = {
+  [import_shared2.TranscriptionErrorCode.SERVICE_NOT_CONFIGURED]: 503,
+  [import_shared2.TranscriptionErrorCode.INVALID_AUDIO_FORMAT]: 400,
+  [import_shared2.TranscriptionErrorCode.AUDIO_TOO_LONG]: 400,
+  [import_shared2.TranscriptionErrorCode.AUDIO_TOO_SHORT]: 400,
+  [import_shared2.TranscriptionErrorCode.RATE_LIMITED]: 429,
+  [import_shared2.TranscriptionErrorCode.AUTH_FAILED]: 401,
+  [import_shared2.TranscriptionErrorCode.PROVIDER_ERROR]: 500,
+  [import_shared2.TranscriptionErrorCode.NETWORK_ERROR]: 502,
+  [import_shared2.TranscriptionErrorCode.INVALID_REQUEST]: 400
+};
+var VALID_AUDIO_TYPES = [
+  "audio/mpeg",
+  "audio/mp3",
+  "audio/mp4",
+  "audio/wav",
+  "audio/webm",
+  "audio/ogg",
+  "audio/flac",
+  "audio/aac"
+];
+function isValidAudioType(type) {
+  const baseType = type.split(";")[0]?.trim() ?? "";
+  return VALID_AUDIO_TYPES.includes(baseType) || baseType === "" || baseType === "application/octet-stream";
+}
+function createErrorResponse(errorResponse) {
+  const status = ERROR_STATUS_CODES[errorResponse.error] ?? 500;
+  return new Response(JSON.stringify(errorResponse), {
+    status,
+    headers: { "Content-Type": "application/json" }
+  });
+}
+function base64ToFile(base64, mimeType, filename) {
+  const base64Data = base64.includes(",") ? base64.split(",")[1] ?? base64 : base64;
+  const binaryString = atob(base64Data);
+  const bytes = new Uint8Array(binaryString.length);
+  for (let i = 0; i < binaryString.length; i++) {
+    bytes[i] = binaryString.charCodeAt(i);
+  }
+  return new File([bytes], filename, { type: mimeType });
+}
+async function extractAudioFromFormData(request) {
+  const formData = await request.formData();
+  const audioFile = formData.get("audio");
+  if (!audioFile || !(audioFile instanceof File)) {
+    const err = import_shared2.TranscriptionErrors.invalidRequest(
+      "No audio file found in form data. Please include an 'audio' field."
+    );
+    return { error: createErrorResponse(err) };
+  }
+  if (!isValidAudioType(audioFile.type)) {
+    const err = import_shared2.TranscriptionErrors.invalidAudioFormat(audioFile.type, VALID_AUDIO_TYPES);
+    return { error: createErrorResponse(err) };
+  }
+  return { file: audioFile };
+}
+async function extractAudioFromJson(request) {
+  let body;
+  try {
+    body = await request.json();
+  } catch {
+    const err = import_shared2.TranscriptionErrors.invalidRequest("Request body must be valid JSON");
+    return { error: createErrorResponse(err) };
+  }
+  if (!body.audio || typeof body.audio !== "string") {
+    const err = import_shared2.TranscriptionErrors.invalidRequest(
+      "Request must include 'audio' field with base64-encoded audio data"
+    );
+    return { error: createErrorResponse(err) };
+  }
+  if (!body.mimeType || typeof body.mimeType !== "string") {
+    const err = import_shared2.TranscriptionErrors.invalidRequest(
+      "Request must include 'mimeType' field (e.g., 'audio/webm')"
+    );
+    return { error: createErrorResponse(err) };
+  }
+  if (!isValidAudioType(body.mimeType)) {
+    const err = import_shared2.TranscriptionErrors.invalidAudioFormat(body.mimeType, VALID_AUDIO_TYPES);
+    return { error: createErrorResponse(err) };
+  }
+  try {
+    const filename = body.filename || "recording.webm";
+    const file = base64ToFile(body.audio, body.mimeType, filename);
+    return { file };
+  } catch {
+    const err = import_shared2.TranscriptionErrors.invalidRequest("Failed to decode base64 audio data");
+    return { error: createErrorResponse(err) };
+  }
+}
+function categorizeProviderError(error) {
+  const message = error instanceof Error ? error.message : "Unknown error occurred";
+  const errorStr = String(error).toLowerCase();
+  if (errorStr.includes("rate") || errorStr.includes("429") || errorStr.includes("too many")) {
+    return import_shared2.TranscriptionErrors.rateLimited();
+  }
+  if (errorStr.includes("auth") || errorStr.includes("401") || errorStr.includes("api key") || errorStr.includes("unauthorized")) {
+    return import_shared2.TranscriptionErrors.authFailed();
+  }
+  if (errorStr.includes("too long") || errorStr.includes("duration") || errorStr.includes("length")) {
+    return import_shared2.TranscriptionErrors.audioTooLong();
+  }
+  return import_shared2.TranscriptionErrors.providerError(message);
+}
 async function handleTranscribe({
   runtime,
   request
 }) {
   try {
     if (!runtime.transcriptionService) {
-      return new Response(
-        JSON.stringify({
-          error: "Transcription service not configured",
-          message: "No transcription service has been configured in the runtime"
-        }),
-        {
-          status: 503,
-          headers: { "Content-Type": "application/json" }
-        }
-      );
-    }
-    const contentType = request.headers.get("content-type");
-    if (!contentType || !contentType.includes("multipart/form-data")) {
-      return new Response(
-        JSON.stringify({
-          error: "Invalid content type",
-          message: "Request must contain multipart/form-data with an audio file"
-        }),
-        {
-          status: 400,
-          headers: { "Content-Type": "application/json" }
-        }
-      );
+      const err = import_shared2.TranscriptionErrors.serviceNotConfigured();
+      return createErrorResponse(err);
     }
-    const formData = await request.formData();
-    const audioFile = formData.get("audio");
-    if (!audioFile || !(audioFile instanceof File)) {
-      return new Response(
-        JSON.stringify({
-          error: "Missing audio file",
-          message: "No audio file found in form data. Please include an 'audio' field."
-        }),
-        {
-          status: 400,
-          headers: { "Content-Type": "application/json" }
-        }
+    const contentType = request.headers.get("content-type") || "";
+    let extractResult;
+    if (contentType.includes("multipart/form-data")) {
+      extractResult = await extractAudioFromFormData(request);
+    } else if (contentType.includes("application/json")) {
+      extractResult = await extractAudioFromJson(request);
+    } else {
+      const err = import_shared2.TranscriptionErrors.invalidRequest(
+        "Request must be multipart/form-data or application/json with base64 audio"
       );
+      return createErrorResponse(err);
     }
-    const validAudioTypes = [
-      "audio/mpeg",
-      "audio/mp3",
-      "audio/mp4",
-      "audio/wav",
-      "audio/webm",
-      "audio/ogg",
-      "audio/flac",
-      "audio/aac"
-    ];
-    const isValidType = validAudioTypes.includes(audioFile.type) || audioFile.type === "" || audioFile.type === "application/octet-stream";
-    if (!isValidType) {
-      return new Response(
-        JSON.stringify({
-          error: "Invalid file type",
-          message: `Unsupported audio file type: ${audioFile.type}. Supported types: ${validAudioTypes.join(", ")}, or files with unknown/empty types`
-        }),
-        {
-          status: 400,
-          headers: { "Content-Type": "application/json" }
-        }
-      );
+    if ("error" in extractResult) {
+      return extractResult.error;
     }
+    const audioFile = extractResult.file;
     const transcription = await runtime.transcriptionService.transcribeFile({
       audioFile,
       mimeType: audioFile.type,
@@ -661,24 +726,15 @@ async function handleTranscribe({
       }
     );
   } catch (error) {
-    return new Response(
-      JSON.stringify({
-        error: "Transcription failed",
-        message: error instanceof Error ? error.message : "Unknown error occurred during transcription"
-      }),
-      {
-        status: 500,
-        headers: { "Content-Type": "application/json" }
-      }
-    );
+    return createErrorResponse(categorizeProviderError(error));
   }
 }
 
 // src/endpoints/hono.ts
-var import_shared3 = require("@copilotkitnext/shared");
+var import_shared4 = require("@copilotkitnext/shared");
 
 // src/middleware.ts
-var import_shared2 = require("@copilotkitnext/shared");
+var import_shared3 = require("@copilotkitnext/shared");
 async function callBeforeRequestMiddleware({
   runtime,
   request,
@@ -689,7 +745,7 @@ async function callBeforeRequestMiddleware({
   if (typeof mw === "function") {
     return mw({ runtime, request, path });
   }
-  import_shared2.logger.warn({ mw }, "Unsupported beforeRequestMiddleware value \u2013 skipped");
+  import_shared3.logger.warn({ mw }, "Unsupported beforeRequestMiddleware value \u2013 skipped");
   return;
 }
 async function callAfterRequestMiddleware({
@@ -702,7 +758,7 @@ async function callAfterRequestMiddleware({
   if (typeof mw === "function") {
     return mw({ runtime, response, path });
   }
-  import_shared2.logger.warn({ mw }, "Unsupported afterRequestMiddleware value \u2013 skipped");
+  import_shared3.logger.warn({ mw }, "Unsupported afterRequestMiddleware value \u2013 skipped");
 }
 
 // src/handlers/handle-connect.ts
@@ -894,14 +950,15 @@ async function handleStopAgent({
 }
 
 // src/endpoints/hono.ts
-function createCopilotEndpoint({ runtime, basePath }) {
+function createCopilotEndpoint({ runtime, basePath, cors: corsConfig }) {
   const app = new import_hono.Hono();
   return app.basePath(basePath).use(
     "*",
     (0, import_cors.cors)({
-      origin: "*",
+      origin: corsConfig?.origin ?? "*",
       allowMethods: ["GET", "HEAD", "PUT", "POST", "DELETE", "PATCH", "OPTIONS"],
-      allowHeaders: ["*"]
+      allowHeaders: ["*"],
+      credentials: corsConfig?.credentials ?? false
     })
   ).use("*", async (c, next) => {
     const request = c.req.raw;
@@ -916,7 +973,7 @@ function createCopilotEndpoint({ runtime, basePath }) {
         c.set("modifiedRequest", maybeModifiedRequest);
       }
     } catch (error) {
-      import_shared3.logger.error({ err: error, url: request.url, path }, "Error running before request middleware");
+      import_shared4.logger.error({ err: error, url: request.url, path }, "Error running before request middleware");
       if (error instanceof Response) {
         return error;
       }
@@ -932,7 +989,7 @@ function createCopilotEndpoint({ runtime, basePath }) {
       response,
       path
     }).catch((error) => {
-      import_shared3.logger.error({ err: error, url: c.req.url, path }, "Error running after request middleware");
+      import_shared4.logger.error({ err: error, url: c.req.url, path }, "Error running after request middleware");
     });
   }).post("/agent/:agentId/run", async (c) => {
     const agentId = c.req.param("agentId");
@@ -944,7 +1001,7 @@ function createCopilotEndpoint({ runtime, basePath }) {
         agentId
       });
     } catch (error) {
-      import_shared3.logger.error({ err: error, url: request.url, path: c.req.path }, "Error running request handler");
+      import_shared4.logger.error({ err: error, url: request.url, path: c.req.path }, "Error running request handler");
       throw error;
     }
   }).post("/agent/:agentId/connect", async (c) => {
@@ -957,7 +1014,7 @@ function createCopilotEndpoint({ runtime, basePath }) {
         agentId
       });
     } catch (error) {
-      import_shared3.logger.error({ err: error, url: request.url, path: c.req.path }, "Error running request handler");
+      import_shared4.logger.error({ err: error, url: request.url, path: c.req.path }, "Error running request handler");
       throw error;
     }
   }).post("/agent/:agentId/stop/:threadId", async (c) => {
@@ -972,7 +1029,7 @@ function createCopilotEndpoint({ runtime, basePath }) {
         threadId
       });
     } catch (error) {
-      import_shared3.logger.error({ err: error, url: request.url, path: c.req.path }, "Error running request handler");
+      import_shared4.logger.error({ err: error, url: request.url, path: c.req.path }, "Error running request handler");
       throw error;
     }
   }).get("/info", async (c) => {
@@ -983,7 +1040,7 @@ function createCopilotEndpoint({ runtime, basePath }) {
         request
       });
     } catch (error) {
-      import_shared3.logger.error({ err: error, url: request.url, path: c.req.path }, "Error running request handler");
+      import_shared4.logger.error({ err: error, url: request.url, path: c.req.path }, "Error running request handler");
       throw error;
     }
   }).post("/transcribe", async (c) => {
@@ -994,7 +1051,7 @@ function createCopilotEndpoint({ runtime, basePath }) {
         request
       });
     } catch (error) {
-      import_shared3.logger.error({ err: error, url: request.url, path: c.req.path }, "Error running request handler");
+      import_shared4.logger.error({ err: error, url: request.url, path: c.req.path }, "Error running request handler");
       throw error;
     }
   }).notFound((c) => {
@@ -1005,7 +1062,7 @@ function createCopilotEndpoint({ runtime, basePath }) {
 // src/endpoints/hono-single.ts
 var import_hono2 = require("hono");
 var import_cors2 = require("hono/cors");
-var import_shared4 = require("@copilotkitnext/shared");
+var import_shared5 = require("@copilotkitnext/shared");
 
 // src/endpoints/single-route-helpers.ts
 var METHOD_NAMES = [
@@ -1092,15 +1149,16 @@ function serializeJsonBody(body) {
 }
 
 // src/endpoints/hono-single.ts
-function createCopilotEndpointSingleRoute({ runtime, basePath }) {
+function createCopilotEndpointSingleRoute({ runtime, basePath, cors: corsConfig }) {
   const app = new import_hono2.Hono();
   const routePath = normalizePath(basePath);
   return app.basePath(routePath).use(
     "*",
     (0, import_cors2.cors)({
-      origin: "*",
+      origin: corsConfig?.origin ?? "*",
       allowMethods: ["GET", "HEAD", "PUT", "POST", "DELETE", "PATCH", "OPTIONS"],
-      allowHeaders: ["*"]
+      allowHeaders: ["*"],
+      credentials: corsConfig?.credentials ?? false
     })
   ).use("*", async (c, next) => {
     const request = c.req.raw;
@@ -1115,7 +1173,7 @@ function createCopilotEndpointSingleRoute({ runtime, basePath }) {
         c.set("modifiedRequest", maybeModifiedRequest);
       }
     } catch (error) {
-      import_shared4.logger.error({ err: error, url: request.url, path }, "Error running before request middleware");
+      import_shared5.logger.error({ err: error, url: request.url, path }, "Error running before request middleware");
       if (error instanceof Response) {
         return error;
       }
@@ -1131,7 +1189,7 @@ function createCopilotEndpointSingleRoute({ runtime, basePath }) {
       response,
       path
     }).catch((error) => {
-      import_shared4.logger.error({ err: error, url: c.req.url, path }, "Error running after request middleware");
+      import_shared5.logger.error({ err: error, url: c.req.url, path }, "Error running after request middleware");
     });
   }).post("/", async (c) => {
     const request = c.get("modifiedRequest") || c.req.raw;
@@ -1140,10 +1198,10 @@ function createCopilotEndpointSingleRoute({ runtime, basePath }) {
       methodCall = await parseMethodCall(request);
     } catch (error) {
       if (error instanceof Response) {
-        import_shared4.logger.warn({ url: request.url }, "Invalid single-route payload");
+        import_shared5.logger.warn({ url: request.url }, "Invalid single-route payload");
         return error;
       }
-      import_shared4.logger.warn({ err: error, url: request.url }, "Invalid single-route payload");
+      import_shared5.logger.warn({ err: error, url: request.url }, "Invalid single-route payload");
       return c.json(
         {
           error: "invalid_request",
@@ -1173,7 +1231,8 @@ function createCopilotEndpointSingleRoute({ runtime, basePath }) {
           return await handleGetRuntimeInfo({ runtime, request });
         }
         case "transcribe": {
-          return await handleTranscribe({ runtime, request });
+          const handlerRequest = createJsonRequest(request, methodCall.body);
+          return await handleTranscribe({ runtime, request: handlerRequest });
         }
         default: {
           const exhaustiveCheck = methodCall.method;
@@ -1184,7 +1243,7 @@ function createCopilotEndpointSingleRoute({ runtime, basePath }) {
       if (error instanceof Response) {
         return error;
       }
-      import_shared4.logger.error({ err: error, url: request.url, method: methodCall.method }, "Error running single-route handler");
+      import_shared5.logger.error({ err: error, url: request.url, method: methodCall.method }, "Error running single-route handler");
       throw error;
     }
   }).notFound((c) => {
@@ -1205,12 +1264,17 @@ function normalizePath(path) {
 }
 
 // src/runner/index.ts
-var import_shared5 = require("@copilotkitnext/shared");
+var import_shared6 = require("@copilotkitnext/shared");
+
+// src/transcription-service/transcription-service.ts
+var TranscriptionService = class {
+};
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
   AgentRunner,
   CopilotRuntime,
   InMemoryAgentRunner,
+  TranscriptionService,
   VERSION,
   createCopilotEndpoint,
   createCopilotEndpointSingleRoute,