npm - @corbat-tech/coco - Versions diffs - 2.25.2 → 2.25.4 - Mend

@corbat-tech/coco 2.25.2 → 2.25.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/cli/index.js CHANGED Viewed

@@ -5948,10 +5948,9 @@ var init_gemini = __esm({
                   });
                 }
               }
+              history.push({ role: "function", parts: functionResponses });
               if (isLastMessage) {
-                lastUserMessage = functionResponses;
-              } else {
-                history.push({ role: "user", parts: functionResponses });
+                lastUserMessage = "";
               }
             } else {
               const parts = this.convertContent(msg.content);
@@ -21296,12 +21295,29 @@ var init_http = __esm({
         });
         let response = await doFetch();
         if (response.status !== 401 || !this.shouldAttemptOAuth()) {
+          if (this.shouldAttemptOAuth() && !this.oauthToken && response.headers.get("www-authenticate")) {
+            await this.ensureOAuthToken(response.headers.get("www-authenticate"));
+            response = await doFetch();
+          }
           return response;
         }
         await this.ensureOAuthToken(response.headers.get("www-authenticate"));
         response = await doFetch();
         return response;
       }
+      looksLikeAuthErrorMessage(message) {
+        if (!message) return false;
+        const msg = message.toLowerCase();
+        const hasStrongAuthSignal = msg.includes("unauthorized") || msg.includes("unauthorised") || msg.includes("authentication") || msg.includes("oauth") || msg.includes("access token") || msg.includes("bearer") || msg.includes("not authenticated") || msg.includes("not logged") || msg.includes("login") || msg.includes("generate") && msg.includes("token");
+        const hasVendorHint = msg.includes("gemini cli") || msg.includes("jira") || msg.includes("confluence") || msg.includes("atlassian");
+        const hasWeakAuthSignal = msg.includes("authenticate") || msg.includes("token") || msg.includes("authorization");
+        return hasStrongAuthSignal || // Vendor-specific hints alone are not enough; require an auth-related token too.
+        hasVendorHint && hasWeakAuthSignal;
+      }
+      isJsonRpcAuthError(payload) {
+        if (!payload.error) return false;
+        return this.looksLikeAuthErrorMessage(payload.error.message);
+      }
       /**
        * Connect to the HTTP transport
        */
@@ -21365,6 +21381,22 @@ var init_http = __esm({
               throw new MCPTransportError(`HTTP error ${response.status}: ${response.statusText}`);
             }
             const data = await response.json();
+            if (this.shouldAttemptOAuth() && this.isJsonRpcAuthError(data)) {
+              await this.ensureOAuthToken(response.headers.get("www-authenticate"));
+              const retryResponse = await this.sendRequestWithOAuthRetry(
+                "POST",
+                JSON.stringify(message),
+                abortController.signal
+              );
+              if (!retryResponse.ok) {
+                throw new MCPTransportError(
+                  `HTTP error ${retryResponse.status}: ${retryResponse.statusText}`
+                );
+              }
+              const retryData = await retryResponse.json();
+              this.messageCallback?.(retryData);
+              return;
+            }
             this.messageCallback?.(data);
             return;
           } catch (error) {
@@ -38212,9 +38244,6 @@ async function savePermissionPreference(key, value) {
 }
 async function shouldShowPermissionSuggestion() {
   const prefs = await loadPermissionPreferences();
-  if (prefs.recommendedAllowlistPrompted) {
-    return false;
-  }
   if (prefs.recommendedAllowlistDismissed) {
     return false;
   }
@@ -38230,7 +38259,6 @@ async function applyRecommendedPermissions() {
   await savePermissionPreference("recommendedAllowlistApplied", true);
 }
 async function showPermissionSuggestion() {
-  await savePermissionPreference("recommendedAllowlistPrompted", true);
   console.log();
   console.log(chalk.magenta.bold("  \u{1F4CB} Recommended Permissions"));
   console.log();
@@ -38257,6 +38285,7 @@ async function showPermissionSuggestion() {
     return;
   }
   if (action === "dismiss") {
+    await savePermissionPreference("recommendedAllowlistPrompted", true);
     await savePermissionPreference("recommendedAllowlistDismissed", true);
     console.log(chalk.dim("  Won't show again. Use /permissions to apply later."));
     return;
@@ -38272,6 +38301,7 @@ async function showPermissionSuggestion() {
     }
   }
   await applyRecommendedPermissions();
+  await savePermissionPreference("recommendedAllowlistPrompted", true);
   console.log(chalk.green("  \u2713 Recommended permissions applied"));
   console.log(chalk.dim("  Use /permissions to review or modify anytime."));
 }
@@ -52831,6 +52861,13 @@ async function startRepl(options = {}) {
       if (activeCount > 0) {
         logger2.info(`[MCP] ${activeCount} MCP server(s) active`);
       }
+      const failedServers = enabledServers.map((s) => s.name).filter((name) => !connections.has(name));
+      if (failedServers.length > 0) {
+        p26.log.warn(
+          `MCP startup check: ${failedServers.length} server(s) failed to connect: ${failedServers.join(", ")}`
+        );
+        p26.log.message(chalk.dim("Run /mcp health <name> to inspect details."));
+      }
     }
   } catch (mcpError) {
     logger2.warn(