npm - @cryptiklemur/lattice - Versions diffs - 5.10.0 → 5.11.0 - Mend

@cryptiklemur/lattice 5.10.0 → 5.11.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (142) hide show

package/dist/server/assets.js CHANGED Viewed

@@ -1,8 +1,8 @@
 import { join, dirname } from "node:path";
 import { fileURLToPath } from "node:url";
 import { existsSync } from "node:fs";
-var __dirname_local = dirname(fileURLToPath(import.meta.url));
-var CONTENT_TYPES = {
+const __dirname_local = dirname(fileURLToPath(import.meta.url));
+const CONTENT_TYPES = {
     ".html": "text/html; charset=utf-8",
     ".js": "application/javascript",
     ".css": "text/css",
@@ -28,12 +28,12 @@ export function hasEmbeddedAssets() {
     return false;
 }
 export function getClientDir() {
-    var distPath = join(__dirname_local, "../../dist/client");
+    const distPath = join(__dirname_local, "../../dist/client");
     if (existsSync(distPath))
         return distPath;
     return join(__dirname_local, "../../dist/client");
 }
 export function guessContentType(path) {
-    var ext = path.slice(path.lastIndexOf("."));
+    const ext = path.slice(path.lastIndexOf("."));
     return CONTENT_TYPES[ext] || "application/octet-stream";
 }

package/dist/server/auth/passphrase.js CHANGED Viewed

@@ -9,24 +9,24 @@ function scryptAsync(password, salt, keylen) {
         });
     });
 }
-var TOKEN_TTL = 86400000;
-var CLEANUP_INTERVAL = 600000;
-var activeSessions = new Map();
+const TOKEN_TTL = 86400000;
+const CLEANUP_INTERVAL = 600000;
+const activeSessions = new Map();
 export async function hashPassphrase(passphrase) {
-    var salt = randomBytes(16).toString("hex");
-    var hash = (await scryptAsync(passphrase, salt, 64)).toString("hex");
+    const salt = randomBytes(16).toString("hex");
+    const hash = (await scryptAsync(passphrase, salt, 64)).toString("hex");
     return salt + ":" + hash;
 }
 export async function verifyPassphrase(passphrase, storedHash) {
-    var parts = storedHash.split(":");
+    const parts = storedHash.split(":");
     if (parts.length !== 2) {
         return false;
     }
-    var salt = parts[0];
-    var hash = parts[1];
+    const salt = parts[0];
+    const hash = parts[1];
     try {
-        var derived = await scryptAsync(passphrase, salt, 64);
-        var expected = Buffer.from(hash, "hex");
+        const derived = await scryptAsync(passphrase, salt, 64);
+        const expected = Buffer.from(hash, "hex");
         if (derived.length !== expected.length) {
             return false;
         }
@@ -46,7 +46,7 @@ export function removeSession(token) {
     activeSessions.delete(token);
 }
 export function isValidSession(token) {
-    var createdAt = activeSessions.get(token);
+    const createdAt = activeSessions.get(token);
     if (createdAt === undefined) {
         return false;
     }
@@ -59,8 +59,8 @@ export function isValidSession(token) {
 export function clearSessions() {
     activeSessions.clear();
 }
-var cleanupInterval = setInterval(function () {
-    var now = Date.now();
+const cleanupInterval = setInterval(function () {
+    const now = Date.now();
     activeSessions.forEach(function (createdAt, token) {
         if (now - createdAt > TOKEN_TTL) {
             activeSessions.delete(token);

package/dist/server/config.js CHANGED Viewed

@@ -2,8 +2,8 @@ import { existsSync, mkdirSync, readFileSync, writeFileSync } from "node:fs";
 import { homedir, hostname } from "node:os";
 import { join } from "node:path";
 import { DEFAULT_PORT, LATTICE_HOME_DIR } from "#shared";
-var home = process.env.LATTICE_HOME || join(homedir(), LATTICE_HOME_DIR);
-var cachedConfig = null;
+const home = process.env.LATTICE_HOME || join(homedir(), LATTICE_HOME_DIR);
+let cachedConfig = null;
 export function getLatticeHome() {
     if (!existsSync(home)) {
         mkdirSync(home, { recursive: true });
@@ -17,12 +17,12 @@ export function loadConfig() {
     if (cachedConfig) {
         return cachedConfig;
     }
-    var configPath = getConfigPath();
+    const configPath = getConfigPath();
     if (!existsSync(configPath)) {
         return createDefaultConfig();
     }
-    var raw = readFileSync(configPath, "utf-8");
-    var parsed = JSON.parse(raw);
+    const raw = readFileSync(configPath, "utf-8");
+    const parsed = JSON.parse(raw);
     cachedConfig = {
         port: parsed.port ?? DEFAULT_PORT,
         name: parsed.name ?? hostname(),
@@ -35,7 +35,7 @@ export function loadConfig() {
     return cachedConfig;
 }
 export function saveConfig(config) {
-    var configPath = getConfigPath();
+    const configPath = getConfigPath();
     writeFileSync(configPath, JSON.stringify(config, null, 2), "utf-8");
     cachedConfig = config;
 }
@@ -43,7 +43,7 @@ export function invalidateConfigCache() {
     cachedConfig = null;
 }
 function createDefaultConfig() {
-    var config = {
+    const config = {
         port: DEFAULT_PORT,
         name: hostname(),
         tls: false,

package/dist/server/daemon.js CHANGED Viewed

@@ -58,21 +58,21 @@ import { initSuperpowers } from "./features/superpowers.js";
 import { cleanupClientTerminals } from "./handlers/terminal.js";
 import { cleanupClient as cleanupClientAttachments } from "./handlers/attachment.js";
 import { initPush, getVapidPublicKey, addPushSubscription } from "./push.js";
-var RATE_LIMIT_WINDOW = 10000;
-var RATE_LIMIT_MAX = 100;
-var clientRateLimits = new Map();
-var wsClientIds = new WeakMap();
+const RATE_LIMIT_WINDOW = 10000;
+const RATE_LIMIT_MAX = 100;
+const clientRateLimits = new Map();
+const wsClientIds = new WeakMap();
 function parseCookies(cookieHeader) {
-    var map = new Map();
-    var parts = cookieHeader.split(";");
-    for (var i = 0; i < parts.length; i++) {
-        var part = parts[i].trim();
-        var eqIdx = part.indexOf("=");
+    const map = new Map();
+    const parts = cookieHeader.split(";");
+    for (let i = 0; i < parts.length; i++) {
+        const part = parts[i].trim();
+        const eqIdx = part.indexOf("=");
         if (eqIdx === -1) {
             continue;
         }
-        var key = part.slice(0, eqIdx).trim();
-        var value = part.slice(eqIdx + 1).trim();
+        const key = part.slice(0, eqIdx).trim();
+        const value = part.slice(eqIdx + 1).trim();
         map.set(key, value);
     }
     return map;
@@ -81,9 +81,9 @@ function isAuthenticatedReq(req, passphraseHash) {
     if (!passphraseHash) {
         return true;
     }
-    var cookieHeader = req.headers.cookie || "";
-    var cookies = parseCookies(cookieHeader);
-    var token = cookies.get("lattice_auth");
+    const cookieHeader = req.headers.cookie || "";
+    const cookies = parseCookies(cookieHeader);
+    const token = cookies.get("lattice_auth");
     if (!token) {
         return false;
     }
@@ -182,9 +182,9 @@ function buildLoginPage() {
   <script>
     document.getElementById('form').addEventListener('submit', async function(e) {
       e.preventDefault();
-      var passphrase = document.getElementById('passphrase').value;
+      const passphrase = document.getElementById('passphrase').value;
       try {
-        var res = await fetch('/auth', {
+        const res = await fetch('/auth', {
           method: 'POST',
           headers: { 'Content-Type': 'application/json' },
           body: JSON.stringify({ passphrase: passphrase })
@@ -203,8 +203,8 @@ function buildLoginPage() {
 </html>`;
 }
 function getMimeType(filePath) {
-    var ext = filePath.split(".").pop() || "";
-    var mimeTypes = {
+    const ext = filePath.split(".").pop() || "";
+    const mimeTypes = {
         html: "text/html; charset=utf-8",
         js: "application/javascript",
         css: "text/css",
@@ -226,19 +226,19 @@ function handleWsOpen(ws, clientId) {
     addClient(clientId, ws);
     log.ws("Client connected: %s", clientId);
     sendTo(clientId, { type: "mesh:nodes", nodes: buildNodesMessage() });
-    var connectConfig = loadConfig();
-    var connectIdentity = loadOrCreateIdentity();
-    var localProjects = connectConfig.projects.map(function (p) {
+    const connectConfig = loadConfig();
+    const connectIdentity = loadOrCreateIdentity();
+    const localProjects = connectConfig.projects.map(function (p) {
         return { slug: p.slug, path: p.path, title: p.title, nodeId: connectIdentity.id, nodeName: connectConfig.name, isRemote: false, ideProjectName: detectIdeProjectName(p.path), activeSessions: getActiveStreamCountForProject(p.slug) };
     });
-    var connectRemoteProjects = getAllRemoteProjects(connectIdentity.id);
+    const connectRemoteProjects = getAllRemoteProjects(connectIdentity.id);
     sendTo(clientId, {
         type: "projects:list",
         projects: localProjects.concat(connectRemoteProjects),
     });
     if (isWarmupComplete()) {
         sendTo(clientId, { type: "warmup:models", models: getWarmupModels() });
-        var accountInfo = getWarmupAccountInfo();
+        const accountInfo = getWarmupAccountInfo();
         if (accountInfo) {
             sendTo(clientId, {
                 type: "warmup:account",
@@ -249,9 +249,9 @@ function handleWsOpen(ws, clientId) {
                 apiProvider: accountInfo.apiProvider,
             });
         }
-        var cachedRateLimits = getWarmupRateLimits();
-        for (var rli = 0; rli < cachedRateLimits.length; rli++) {
-            var rl = cachedRateLimits[rli];
+        const cachedRateLimits = getWarmupRateLimits();
+        for (let rli = 0; rli < cachedRateLimits.length; rli++) {
+            const rl = cachedRateLimits[rli];
             sendTo(clientId, {
                 type: "chat:rate_limit",
                 status: rl.status,
@@ -264,8 +264,8 @@ function handleWsOpen(ws, clientId) {
             });
         }
     }
-    for (var pi = 0; pi < connectConfig.projects.length; pi++) {
-        var proj = connectConfig.projects[pi];
+    for (let pi = 0; pi < connectConfig.projects.length; pi++) {
+        const proj = connectConfig.projects[pi];
         subscribeClientToProject(clientId, proj.slug);
         void listSessions(proj.slug, { limit: 40 }).then(function (result) {
             sendTo(clientId, {
@@ -281,11 +281,11 @@ function handleWsOpen(ws, clientId) {
     }
 }
 function handleWsMessage(ws, data) {
-    var clientId = wsClientIds.get(ws);
+    const clientId = wsClientIds.get(ws);
     if (!clientId)
         return;
-    var now = Date.now();
-    var limit = clientRateLimits.get(clientId);
+    const now = Date.now();
+    let limit = clientRateLimits.get(clientId);
     if (!limit || now - limit.windowStart > RATE_LIMIT_WINDOW) {
         limit = { count: 0, windowStart: now };
         clientRateLimits.set(clientId, limit);
@@ -295,9 +295,9 @@ function handleWsMessage(ws, data) {
         sendTo(clientId, { type: "chat:error", message: "Rate limit exceeded, please slow down" });
         return;
     }
-    var text = typeof data === "string" ? data : Buffer.isBuffer(data) ? data.toString() : Buffer.from(data).toString();
+    const text = typeof data === "string" ? data : Buffer.isBuffer(data) ? data.toString() : Buffer.from(data).toString();
     try {
-        var msg = JSON.parse(text);
+        const msg = JSON.parse(text);
         routeMessage(clientId, msg);
     }
     catch (err) {
@@ -305,7 +305,7 @@ function handleWsMessage(ws, data) {
     }
 }
 function handleWsClose(ws) {
-    var clientId = wsClientIds.get(ws);
+    const clientId = wsClientIds.get(ws);
     if (!clientId)
         return;
     clearActiveSession(clientId);
@@ -321,24 +321,24 @@ function handleWsClose(ws) {
     log.ws("Client disconnected: %s", clientId);
 }
 export async function startDaemon(portOverride, tlsOverride) {
-    var config = loadConfig();
-    var effectivePort = (portOverride && !isNaN(portOverride)) ? portOverride : config.port;
+    const config = loadConfig();
+    const effectivePort = (portOverride && !isNaN(portOverride)) ? portOverride : config.port;
     if (tlsOverride !== null && tlsOverride !== undefined) {
         config.tls = tlsOverride;
     }
-    var identity = loadOrCreateIdentity();
+    const identity = loadOrCreateIdentity();
     log.server("Node: %s (%s)", config.name, identity.id);
     log.server("Home: %s", getLatticeHome());
-    var clientDir = getClientDir();
-    var app = express();
+    const clientDir = getClientDir();
+    const app = express();
     app.use(express.json());
-    var authAttempts = new Map();
-    var AUTH_RATE_LIMIT = 5;
-    var AUTH_RATE_WINDOW = 60000;
+    const authAttempts = new Map();
+    const AUTH_RATE_LIMIT = 5;
+    const AUTH_RATE_WINDOW = 60000;
     app.post("/auth", async function (req, res) {
-        var ip = req.ip || req.socket.remoteAddress || "unknown";
-        var now = Date.now();
-        var attempts = authAttempts.get(ip) || [];
+        const ip = req.ip || req.socket.remoteAddress || "unknown";
+        const now = Date.now();
+        let attempts = authAttempts.get(ip) || [];
         attempts = attempts.filter(function (t) { return now - t < AUTH_RATE_WINDOW; });
         if (attempts.length >= AUTH_RATE_LIMIT) {
             res.status(429).json({ ok: false, error: "Too many attempts. Try again later." });
@@ -346,9 +346,9 @@ export async function startDaemon(portOverride, tlsOverride) {
         }
         attempts.push(now);
         authAttempts.set(ip, attempts);
-        var passphrase = req.body.passphrase || "";
-        if (!config.passphraseHash || await verifyPassphrase(passphrase, config.passphraseHash)) {
-            var token = generateSessionToken();
+        const passphrase = req.body.passphrase || "";
+        if (!config.passphraseHash || (await verifyPassphrase(passphrase, config.passphraseHash))) {
+            const token = generateSessionToken();
             addSession(token);
             res.setHeader("Set-Cookie", "lattice_auth=" + token + "; HttpOnly; Path=/; SameSite=Strict");
             res.json({ ok: true });
@@ -374,7 +374,7 @@ export async function startDaemon(portOverride, tlsOverride) {
     });
     app.post("/api/push-subscribe", function (req, res) {
         try {
-            var pushBody = req.body;
+            const pushBody = req.body;
             addPushSubscription(pushBody);
             res.json({ ok: true });
         }
@@ -407,15 +407,15 @@ export async function startDaemon(portOverride, tlsOverride) {
         res.json(session);
     });
     app.get("/api/file", async function (req, res) {
-        var reqFilePath = req.query.path;
+        const reqFilePath = req.query.path;
         if (!reqFilePath) {
             res.status(400).send("Missing path parameter");
             return;
         }
-        var resolved = null;
-        for (var pi = 0; pi < config.projects.length; pi++) {
-            var projectPath = resolve(config.projects[pi].path);
-            var candidate = resolve(projectPath, reqFilePath);
+        let resolved = null;
+        for (let pi = 0; pi < config.projects.length; pi++) {
+            const projectPath = resolve(config.projects[pi].path);
+            const candidate = resolve(projectPath, reqFilePath);
             if (candidate.startsWith(projectPath + "/") && existsSync(candidate)) {
                 resolved = candidate;
                 break;
@@ -425,16 +425,16 @@ export async function startDaemon(portOverride, tlsOverride) {
             res.status(404).send("File not found");
             return;
         }
-        var fileStat = await fsStat(resolved);
+        const fileStat = await fsStat(resolved);
         res.setHeader("Content-Type", getMimeType(resolved));
         res.setHeader("Content-Length", fileStat.size);
         createReadStream(resolved).pipe(res);
     });
-    var tlsOptions;
+    let tlsOptions;
     if (config.tls) {
-        var certsDir = join(getLatticeHome(), "certs");
-        var certPath = join(certsDir, "cert.pem");
-        var keyPath = join(certsDir, "key.pem");
+        const certsDir = join(getLatticeHome(), "certs");
+        const certPath = join(certsDir, "cert.pem");
+        const keyPath = join(certsDir, "key.pem");
         if (existsSync(certPath) && existsSync(keyPath)) {
             try {
                 tlsOptions = {
@@ -456,15 +456,15 @@ export async function startDaemon(portOverride, tlsOverride) {
             console.error("[lattice] TLS enabled but no certs found. Run 'lattice setup-tls' to generate them.");
         }
     }
-    var protocol = tlsOptions ? "https" : "http";
-    var httpServer = tlsOptions
+    const protocol = tlsOptions ? "https" : "http";
+    const httpServer = tlsOptions
         ? createHttpsServer(tlsOptions, app)
         : createHttpServer(app);
-    var isDev = process.env.NODE_ENV === "development";
-    var { loadAllThemes } = await import("./handlers/themes.js");
+    const isDev = process.env.NODE_ENV === "development";
+    const { loadAllThemes } = await import("./handlers/themes.js");
     async function getThemeInjectionScript() {
         try {
-            var customThemes = await loadAllThemes();
+            const customThemes = await loadAllThemes();
             if (customThemes.length === 0)
                 return "";
             return "<script>window.__LATTICE_CUSTOM_THEMES__=" + JSON.stringify(customThemes) + "</script>";
@@ -474,8 +474,8 @@ export async function startDaemon(portOverride, tlsOverride) {
         }
     }
     if (isDev) {
-        var { createServer: createViteServer } = await import("vite");
-        var vite = await createViteServer({
+        const { createServer: createViteServer } = await import("vite");
+        const vite = await createViteServer({
             server: {
                 middlewareMode: true,
                 hmr: { server: httpServer },
@@ -486,7 +486,7 @@ export async function startDaemon(portOverride, tlsOverride) {
                     transformIndexHtml: {
                         order: "post",
                         handler: async function () {
-                            var script = await getThemeInjectionScript();
+                            const script = await getThemeInjectionScript();
                             if (!script)
                                 return [];
                             return [{ tag: "script", attrs: {}, children: "window.__LATTICE_CUSTOM_THEMES__=" + JSON.stringify(await loadAllThemes()), injectTo: "head" }];
@@ -500,10 +500,10 @@ export async function startDaemon(portOverride, tlsOverride) {
     else if (clientDir && existsSync(clientDir)) {
         app.use(express.static(clientDir, { dotfiles: "allow" }));
         app.get("/{*path}", async function (_req, res) {
-            var indexPath = join(clientDir, "index.html");
+            const indexPath = join(clientDir, "index.html");
             if (existsSync(indexPath)) {
-                var html = readFileSync(indexPath, "utf-8");
-                var injection = await getThemeInjectionScript();
+                let html = readFileSync(indexPath, "utf-8");
+                const injection = await getThemeInjectionScript();
                 if (injection) {
                     html = html.replace("</head>", injection + "</head>");
                 }
@@ -515,7 +515,7 @@ export async function startDaemon(portOverride, tlsOverride) {
             }
         });
     }
-    var wss = new WebSocketServer({
+    const wss = new WebSocketServer({
         noServer: true,
         perMessageDeflate: {
             zlibDeflateOptions: { level: 1 },
@@ -523,7 +523,7 @@ export async function startDaemon(portOverride, tlsOverride) {
         },
     });
     httpServer.on("upgrade", function (req, socket, head) {
-        var url = new URL(req.url || "/", "http://localhost");
+        const url = new URL(req.url || "/", "http://localhost");
         if (url.pathname !== "/ws") {
             return;
         }
@@ -532,15 +532,15 @@ export async function startDaemon(portOverride, tlsOverride) {
             return;
         }
         wss.handleUpgrade(req, socket, head, function (ws) {
-            var clientId = crypto.randomUUID();
+            const clientId = crypto.randomUUID();
             handleWsOpen(ws, clientId);
             ws.on("pong", function () { markClientAlive(clientId); });
             ws.on("message", function (data) { handleWsMessage(ws, data); });
             ws.on("close", function () { handleWsClose(ws); });
         });
     });
-    var maxRetries = 10;
-    for (var attempt = 0; attempt < maxRetries; attempt++) {
+    const maxRetries = 10;
+    for (let attempt = 0; attempt < maxRetries; attempt++) {
         try {
             await new Promise(function (resolveP, reject) {
                 httpServer.once("error", function (err) {
@@ -585,9 +585,9 @@ export async function startDaemon(portOverride, tlsOverride) {
     loadSessionHistory();
     loadSpecs();
     onSpecsReloaded(function () {
-        var allSpecs = listSpecs();
-        var slugs = new Set(allSpecs.map(function (s) { return s.projectSlug; }));
-        for (var slug of slugs) {
+        const allSpecs = listSpecs();
+        const slugs = new Set(allSpecs.map(function (s) { return s.projectSlug; }));
+        for (const slug of slugs) {
             broadcastToProject(slug, { type: "specs:list_result", specs: listSpecs(slug) });
         }
     });
@@ -595,7 +595,7 @@ export async function startDaemon(portOverride, tlsOverride) {
     startBrainstormWatchers();
     initSuperpowers();
     startPeriodicUpdateCheck();
-    var hookResult = installHooks();
+    const hookResult = installHooks();
     if (hookResult.success) {
         log.server("Claude Code hooks installed/updated");
     }
@@ -604,14 +604,14 @@ export async function startDaemon(portOverride, tlsOverride) {
     }
     loadInterruptedSessions();
     initPush();
-    var firstProject = config.projects[0];
+    const firstProject = config.projects[0];
     if (firstProject) {
         void runWarmup(firstProject.path);
     }
-    var meshDirty = true;
-    var lastNodesJson = "";
-    var lastProjectsJson = "";
-    var broadcastTick = 0;
+    let meshDirty = true;
+    let lastNodesJson = "";
+    let lastProjectsJson = "";
+    let broadcastTick = 0;
     onPeerConnected(function (nodeId) {
         meshDirty = true;
         broadcast({ type: "mesh:node_online", nodeId: nodeId });
@@ -633,28 +633,28 @@ export async function startDaemon(portOverride, tlsOverride) {
     setInterval(function () {
         broadcastTick++;
         if (meshDirty) {
-            var nodesPayload = buildNodesMessage();
-            var nodesJson = JSON.stringify(nodesPayload);
+            const nodesPayload = buildNodesMessage();
+            const nodesJson = JSON.stringify(nodesPayload);
             if (nodesJson !== lastNodesJson) {
                 lastNodesJson = nodesJson;
                 broadcast({ type: "mesh:nodes", nodes: nodesPayload });
             }
             meshDirty = false;
         }
-        var currentConfig = loadConfig();
-        var currentIdentity = loadOrCreateIdentity();
-        var localProjects = currentConfig.projects.map(function (p) {
+        const currentConfig = loadConfig();
+        const currentIdentity = loadOrCreateIdentity();
+        const localProjects = currentConfig.projects.map(function (p) {
             return { slug: p.slug, path: p.path, title: p.title, nodeId: currentIdentity.id, nodeName: currentConfig.name, isRemote: false, ideProjectName: detectIdeProjectName(p.path), activeSessions: getActiveStreamCountForProject(p.slug) };
         });
-        var remoteProjects = getAllRemoteProjects(currentIdentity.id);
-        var allProjects = localProjects.concat(remoteProjects);
-        var projectsJson = JSON.stringify(allProjects);
+        const remoteProjects = getAllRemoteProjects(currentIdentity.id);
+        const allProjects = localProjects.concat(remoteProjects);
+        const projectsJson = JSON.stringify(allProjects);
         if (projectsJson !== lastProjectsJson) {
             lastProjectsJson = projectsJson;
             broadcast({ type: "projects:list", projects: allProjects });
         }
         if (broadcastTick % 3 === 0) {
-            var updateInfo = getCachedUpdateInfo();
+            const updateInfo = getCachedUpdateInfo();
             if (updateInfo && updateInfo.updateAvailable) {
                 broadcast({
                     type: "update:status",