@cursorpool-dev/cli 0.5.8 → 0.5.9

package/node_modules/@cursor-pool/patcher/test/patchCursorWorkbench.test.ts

@@ -9,6 +9,7 @@ import {
   CURSOR_POOL_WORKBENCH_AUTH_GATE_MARKER,
   CURSOR_POOL_WORKBENCH_AUTH_GATE_SIGNATURE,
   CURSOR_POOL_WORKBENCH_AGENT_LOOP_SIGNATURE,
+  CURSOR_POOL_WORKBENCH_AGENT_EDITOR_CURSOR_AI_LOGIN_SIGNATURE,
   CURSOR_POOL_WORKBENCH_NATIVE_LOCAL_AGENT_SIGNATURE,
   CURSOR_POOL_WORKBENCH_SUBMIT_GATE_SIGNATURE,
   containsCursorWorkbenchAuthGateMarker,
@@ -30,28 +31,38 @@ const agentEditorSendButtonAuthGateAnchor =
   'get when(){return t()},get fallback(){return(()=>{var D=avx();return Pe(D,he(sl,{keybinding:" \\u23CE",onClick:T,hintText:"Log in to use Cloud Agents",variant:"secondary",children:"Log in"})),D})()},get children(){return';
 const agentEditorSendButtonLoginAnchor =
   'if(!t()){e.cursorAuthenticationService.login();return}';
-const agentLoopRunAnchor = 'await this.agentClientService.run(te,H,$e,Ne,Ce,T,ze,me,we,[],ct)';
-const buildFlagsLocalModeAnchor = 'localMode:!1';
-const localProviderConfigAnchor =
-  'async getLocalAgentProviderConfig(e){const t="[AgentClientService][getLocalAgentProviderConfig]",i=L0.localMode?await this.shellEnvironmentService.getShellEnv():{},r=e?.credentials,s=r?.case==="apiKeyCredentials"?r.value:void 0,o=this.reactiveStorageService.applicationUserPersistentStorage,a=o.useOpenAIKey===!0?this.cursorAuthenticationService.openAIKey()??void 0:void 0,u=xgS({apiKeyCandidates:[{value:s?.apiKey,source:"modelDetails.apiKeyCredentials.apiKey"},{value:a,source:"storage.openAIKey"}],baseUrlCandidates:[{value:s?.baseUrl,source:"modelDetails.apiKeyCredentials.baseUrl"},{value:o.openAIBaseUrl,source:"storage.openAIBaseUrl"}]});return{baseUrl:u.baseUrl,apiKey:u.apiKey}}createDefaultLocalModel(e){return "default"}';
-const agentClientRunLocalModeAnchor =
-  'if(L0.localMode){try{g.onNetworkPhaseStart?.()}catch(b){this.logService.warn("[AgentClientService] onNetworkPhaseStart callback failed in local mode",b)}return this.runLocalAgentInExtensionHost(e,t,i,r,s,a,d,h,g)}return this.client.run(e,t,i,r,s,o,a,u,d,h,g)';
+const agentEditorCursorAiLoginButtonAnchorLinux36 =
+  'return ie(lo,{get keybinding(){return e()},onClick:()=>{n.cursorAuthenticationService.login()},hintText:"Log in to use Cursor AI features",variant:"secondary",style:{"margin-left":"auto"},children:"Log in"})';
+const agentEditorBottomBarAuthGateAnchorLinux36 =
+  'get when(){return h()&&!Xk1},get fallback(){return ie(X_1,{})},get children(){return ie(i01,';
+const agentEditorBottomBarAuthGateAnchorMac37 =
+  'get when(){return h()&&!rYT},get fallback(){return ie(CzT,{})},get children(){return ie(AVT,';
+const agentEditorBottomBarAuthGateAnchorMac34 =
+  'get when(){return v()&&!HG1},get fallback(){return re(s71,{})},get children(){return re(u$1,';
 const composerSendButtonAuthGateAnchorMac37 =
   'get when(){return t()},get fallback(){return(()=>{var R=Swx();return ge(R,ie(go,{keybinding:" \\u23CE",onClick:E,hintText:"Log in to use Cloud Agents",variant:"secondary",children:"Log in"})),R})()},get children(){return';
 const composerSubmitAuthGateAnchorMac37 =
   'if(!h()){e.cursorAuthenticationService.login(),e.commandService.executeCommand(a6,"general");return}';
-const localProviderConfigAnchorMac37 =
-  'async getLocalAgentProviderConfig(n){const e="[AgentClientService][getLocalAgentProviderConfig]",t=wv.localMode?await this.shellEnvironmentService.getShellEnv():{},i=n?.credentials,r=i?.case==="apiKeyCredentials"?i.value:void 0,s=this.reactiveStorageService.applicationUserPersistentStorage,o=s.useOpenAIKey===!0?this.cursorAuthenticationService.openAIKey()??void 0:void 0,c=xgS({apiKeyCandidates:[{value:r?.apiKey,source:"modelDetails.apiKeyCredentials.apiKey"},{value:o,source:"storage.openAIKey"}],baseUrlCandidates:[{value:r?.baseUrl,source:"modelDetails.apiKeyCredentials.baseUrl"},{value:s.openAIBaseUrl,source:"storage.openAIBaseUrl"}]});return{baseUrl:c.baseUrl,apiKey:c.apiKey}}createDefaultLocalModel(n){return "default"}';
-const agentClientRunLocalModeAnchorMac37 =
-  'if(wv.localMode){try{h.onNetworkPhaseStart?.()}catch(f){this.logService.warn("[AgentClientService] onNetworkPhaseStart callback failed in local mode",f)}return this.runLocalAgentInExtensionHost(n,e,t,i,r,o,c,d,h)}return this.client.run(n,e,t,i,r,s,o,a,c,d,h)';
 const composerSendButtonAuthGateAnchorMac34 =
   'get when(){return t()},get fallback(){return(()=>{var R=npC();return ke(R,re(ea,{keybinding:" \\u23CE",onClick:E,hintText:"Log in to use Cloud Agents",variant:"secondary",children:"Log in"})),R})()},get children(){return';
 const composerSubmitAuthGateAnchorMac34 =
   'if(!t()){e.cursorAuthenticationService.login();return}';
+const mainSubmitAuthGateAnchorMac34 =
+  'if(!v()){e.cursorAuthenticationService.login(),e.commandService.executeCommand($6,"general");return}';
+const localProviderConfigAnchorMac37 =
+  'async getLocalAgentProviderConfig(n){const e="[AgentClientService][getLocalAgentProviderConfig]",t=wv.localMode?await this.shellEnvironmentService.getShellEnv():{},i=n?.credentials,r=i?.case==="apiKeyCredentials"?i.value:void 0,s=this.reactiveStorageService.applicationUserPersistentStorage,o=s.useOpenAIKey===!0?this.cursorAuthenticationService.openAIKey()??void 0:void 0,c=xgS({apiKeyCandidates:[{value:r?.apiKey,source:"modelDetails.apiKeyCredentials.apiKey"},{value:o,source:"storage.openAIKey"}],baseUrlCandidates:[{value:r?.baseUrl,source:"modelDetails.apiKeyCredentials.baseUrl"},{value:s.openAIBaseUrl,source:"storage.openAIBaseUrl"}]});return{baseUrl:c.baseUrl,apiKey:c.apiKey}}createDefaultLocalModel(n){return "default"}';
 const localProviderConfigAnchorMac34 =
-  'async getLocalAgentProviderConfig(e){const t="[AgentClientService][getLocalAgentProviderConfig]",i=U0.localMode?await this.shellEnvironmentService.getShellEnv():{},r=e?.credentials,s=r?.case==="apiKeyCredentials"?r.value:void 0,o=this.reactiveStorageService.applicationUserPersistentStorage,a=o.useOpenAIKey===!0?this.cursorAuthenticationService.openAIKey()??void 0:void 0;return{baseUrl:"https://api2.cursor.sh",apiKey:a}}createDefaultLocalModel(e){return "default"}';
+  'async getLocalAgentProviderConfig(e){const t="[AgentClientService][getLocalAgentProviderConfig]",i=U0.localMode?await this.shellEnvironmentService.getShellEnv():{},r=e?.credentials,s=r?.case==="apiKeyCredentials"?r.value:void 0,o=this.reactiveStorageService.applicationUserPersistentStorage,a=o.useOpenAIKey===!0?this.cursorAuthenticationService.openAIKey()??void 0:void 0;return{baseUrl:"http://example.invalid",apiKey:a}}createDefaultLocalModel(e){return "default"}';
+const agentClientRunLocalModeAnchorMac37 =
+  'if(wv.localMode){try{h.onNetworkPhaseStart?.()}catch(f){this.logService.warn("[AgentClientService] onNetworkPhaseStart callback failed in local mode",f)}return this.runLocalAgentInExtensionHost(n,e,t,i,r,o,c,d,h)}return this.client.run(n,e,t,i,r,s,o,a,c,d,h)';
 const agentClientRunLocalModeAnchorMac34 =
   'if(U0.localMode){try{f.onNetworkPhaseStart?.()}catch(v){this.logService.warn("[AgentClientService] onNetworkPhaseStart callback failed in local mode",v)}return this.runLocalAgentInExtensionHost(e,t,i,r,s,a,u,d,f)}return this.client.run(e,t,i,r,s,o,a,l,u,d,f)';
+const agentLoopRunAnchor = 'await this.agentClientService.run(te,H,$e,Ne,Ce,T,ze,me,we,[],ct)';
+const buildFlagsLocalModeAnchor = 'localMode:!1';
+const localProviderConfigAnchor =
+  'async getLocalAgentProviderConfig(e){const t="[AgentClientService][getLocalAgentProviderConfig]",i=L0.localMode?await this.shellEnvironmentService.getShellEnv():{},r=e?.credentials,s=r?.case==="apiKeyCredentials"?r.value:void 0,o=this.reactiveStorageService.applicationUserPersistentStorage,a=o.useOpenAIKey===!0?this.cursorAuthenticationService.openAIKey()??void 0:void 0,u=xgS({apiKeyCandidates:[{value:s?.apiKey,source:"modelDetails.apiKeyCredentials.apiKey"},{value:a,source:"storage.openAIKey"}],baseUrlCandidates:[{value:s?.baseUrl,source:"modelDetails.apiKeyCredentials.baseUrl"},{value:o.openAIBaseUrl,source:"storage.openAIBaseUrl"}]});return{baseUrl:u.baseUrl,apiKey:u.apiKey}}createDefaultLocalModel(e){return "default"}';
+const agentClientRunLocalModeAnchor =
+  'if(L0.localMode){try{g.onNetworkPhaseStart?.()}catch(b){this.logService.warn("[AgentClientService] onNetworkPhaseStart callback failed in local mode",b)}return this.runLocalAgentInExtensionHost(e,t,i,r,s,a,d,h,g)}return this.client.run(e,t,i,r,s,o,a,u,d,h,g)';
 
 function workbenchFixture(extra = '') {
   return [
@@ -66,24 +77,28 @@ function workbenchFixture(extra = '') {
   ].join(';');
 }
 
-function workbenchFixtureMac37() {
+function workbenchFixtureMac37(extra = '') {
   return [
     `function composer(){return ge(Mt,{${composerSendButtonAuthGateAnchorMac37}"controls"}})}`,
     `async function submit(){${composerSubmitAuthGateAnchorMac37};return "submitted";}`,
-    `function agentEditorControls(){const E=()=>{${agentEditorSendButtonLoginAnchor};return n.handleSubmit()};return "controls"}`,
+    `function bottomBar(){return ie(ct,{${agentEditorBottomBarAuthGateAnchorMac37}{})}}`,
     `const flags={${buildFlagsLocalModeAnchor}}`,
     localProviderConfigAnchorMac37,
     `async function agentClientRun(){const h={...m,isRunningInTest:m.isRunningInTest??this.environmentService.enableSmokeTestDriver===!0,clientSupportsInlineImages:!0};${agentClientRunLocalModeAnchorMac37}}`,
+    extra,
   ].join(';');
 }
 
-function workbenchFixtureMac34() {
+function workbenchFixtureMac34(extra = '') {
   return [
-    `function composer(){const E=()=>{${composerSubmitAuthGateAnchorMac34};return n.handleSubmit()};return ke(Mt,{${composerSendButtonAuthGateAnchorMac34}"controls"}})}`,
-    `function agentEditorControls(){return "controls"}`,
+    `function composer(){return ke(I,re(Ct,{${composerSendButtonAuthGateAnchorMac34}"controls"}})}`,
+    `async function submit(){${composerSubmitAuthGateAnchorMac34};return "submitted";}`,
+    `async function mainSubmit(){${mainSubmitAuthGateAnchorMac34};return "main-submitted";}`,
+    `function bottomBar(){return re(Ct,{${agentEditorBottomBarAuthGateAnchorMac34}{})}}`,
     `const flags={${buildFlagsLocalModeAnchor}}`,
     localProviderConfigAnchorMac34,
     `async function agentClientRun(){const f={...h,isRunningInTest:h.isRunningInTest??this.environmentService.enableSmokeTestDriver===!0,clientSupportsInlineImages:!0};${agentClientRunLocalModeAnchorMac34}}`,
+    extra,
   ].join(';');
 }
 
@@ -147,6 +162,102 @@ test('workbench auth gate patch lets the Agent Editor send controls render in pl
   );
 });
 
+test('workbench auth gate patch lets the Cursor 3.6 Agent Editor login button render controls in platform mode', () => {
+  const patched = injectCursorWorkbenchAuthGatePatch(workbenchFixture(
+    `function X_1(){const n=Jr(),e=De(()=>" \\u23CE");${agentEditorCursorAiLoginButtonAnchorLinux36}}function bottomBar(){return ie(ct,{${agentEditorBottomBarAuthGateAnchorLinux36}{})}}`,
+  ));
+
+  assert.equal(patched.includes(agentEditorBottomBarAuthGateAnchorLinux36), false);
+  assert.equal(patched.includes(CURSOR_POOL_WORKBENCH_AGENT_EDITOR_CURSOR_AI_LOGIN_SIGNATURE), true);
+  assert.equal(
+    patched.includes(
+      'get when(){return (h()||((globalThis.__cursorPoolEnsurePlatformModeGuard||(globalThis.__cursorPoolEnsurePlatformModeGuard=()=>{',
+    ),
+    true,
+  );
+  assert.equal(
+    patched.includes(
+      ')&&!Xk1},get fallback(){return ie(X_1,{})},get children(){return ie(i01,',
+    ),
+    true,
+  );
+});
+
+test('workbench auth gate patch supports Cursor 3.7 macOS composer and local agent anchors', () => {
+  const patched = injectCursorWorkbenchAuthGatePatch(workbenchFixtureMac37());
+
+  assert.equal(containsCursorWorkbenchAuthGateMarker(patched), true);
+  assert.equal(patched.includes(composerSendButtonAuthGateAnchorMac37), false);
+  assert.equal(patched.includes(composerSubmitAuthGateAnchorMac37), false);
+  assert.equal(patched.includes(agentEditorBottomBarAuthGateAnchorMac37), false);
+  assert.equal(patched.includes(localProviderConfigAnchorMac37), false);
+  assert.equal(patched.includes(agentClientRunLocalModeAnchorMac37), false);
+  assert.equal(
+    patched.includes('get when(){return t()||((globalThis.__cursorPoolEnsurePlatformModeGuard||(globalThis.__cursorPoolEnsurePlatformModeGuard=()=>{'),
+    true,
+  );
+  assert.equal(
+    patched.includes(
+      'if(!h()&&!globalThis.__cursorPoolIsPlatformModeActive?.()){e.cursorAuthenticationService.login(),e.commandService.executeCommand(a6,"general");return}',
+    ),
+    true,
+  );
+  assert.equal(
+    patched.includes('get when(){return (h()||((globalThis.__cursorPoolEnsurePlatformModeGuard||(globalThis.__cursorPoolEnsurePlatformModeGuard=()=>{'),
+    true,
+  );
+  assert.equal(
+    patched.includes(
+      ')&&!rYT},get fallback(){return ie(CzT,{})},get children(){return ie(AVT,',
+    ),
+    true,
+  );
+  assert.equal(patched.includes('||wv.localMode)'), true);
+  assert.equal(patched.includes('return this.runLocalAgentInExtensionHost(n,e,t,i,r,o,c,d,h)'), true);
+  assert.equal(patched.includes('return this.client.run(n,e,t,i,r,s,o,a,c,d,h)'), true);
+});
+
+test('workbench auth gate patch supports Cursor 3.4 macOS composer and local agent anchors', () => {
+  const patched = injectCursorWorkbenchAuthGatePatch(workbenchFixtureMac34());
+
+  assert.equal(containsCursorWorkbenchAuthGateMarker(patched), true);
+  assert.equal(patched.includes(composerSendButtonAuthGateAnchorMac34), false);
+  assert.equal(patched.includes(composerSubmitAuthGateAnchorMac34), false);
+  assert.equal(patched.includes(mainSubmitAuthGateAnchorMac34), false);
+  assert.equal(patched.includes(agentEditorBottomBarAuthGateAnchorMac34), false);
+  assert.equal(patched.includes(localProviderConfigAnchorMac34), false);
+  assert.equal(patched.includes(agentClientRunLocalModeAnchorMac34), false);
+  assert.equal(
+    patched.includes('get when(){return t()||((globalThis.__cursorPoolEnsurePlatformModeGuard||(globalThis.__cursorPoolEnsurePlatformModeGuard=()=>{'),
+    true,
+  );
+  assert.equal(
+    patched.includes(
+      'if(!t()&&!((globalThis.__cursorPoolEnsurePlatformModeGuard||(globalThis.__cursorPoolEnsurePlatformModeGuard=()=>{',
+    ),
+    true,
+  );
+  assert.equal(
+    patched.includes(
+      'if(!v()&&!globalThis.__cursorPoolIsPlatformModeActive?.()){e.cursorAuthenticationService.login(),e.commandService.executeCommand($6,"general");return}',
+    ),
+    true,
+  );
+  assert.equal(
+    patched.includes('get when(){return (v()||((globalThis.__cursorPoolEnsurePlatformModeGuard||(globalThis.__cursorPoolEnsurePlatformModeGuard=()=>{'),
+    true,
+  );
+  assert.equal(
+    patched.includes(
+      ')&&!HG1},get fallback(){return re(s71,{})},get children(){return re(u$1,',
+    ),
+    true,
+  );
+  assert.equal(patched.includes('||U0.localMode)'), true);
+  assert.equal(patched.includes('return this.runLocalAgentInExtensionHost(e,t,i,r,s,a,u,d,f)'), true);
+  assert.equal(patched.includes('return this.client.run(e,t,i,r,s,o,a,l,u,d,f)'), true);
+});
+
 test('workbench auth gate patch treats old V6 markers as legacy and reapplies Agent Editor gates', () => {
   const oldV6Patched = injectCursorWorkbenchAuthGatePatch(workbenchFixture()).replaceAll(
     'CURSOR_POOL_MVP1_WORKBENCH_AUTH_GATE_PATCH_V9_ALWAYS_NATIVE_LOCAL',
@@ -210,48 +321,6 @@ test('patchCursorWorkbenchAuthGate upgrades old V9 always-active guard from clea
   }
 });
 
-test('patchCursorWorkbenchAuthGate upgrades old V17 active-only preflight from clean backup', async () => {
-  const backupDir = join(tmpdir(), `cursor-pool-workbench-v17-upgrade-${Date.now()}-${Math.random()}`);
-  const fixture = await createFixture();
-
-  try {
-    const originalContent = await readFile(fixture.targetPath, 'utf8');
-    const backupPath = await backupPathForCursorWorkbenchAuthGate(
-      fixture.appPath,
-      fixture.targetPath,
-      backupDir,
-    );
-    await mkdir(dirname(backupPath), { recursive: true });
-    await writeFile(backupPath, originalContent, 'utf8');
-    const oldV17Patched = injectCursorWorkbenchAuthGatePatch(originalContent)
-      .replaceAll(
-        CURSOR_POOL_WORKBENCH_AUTH_GATE_MARKER,
-        'CURSOR_POOL_MVP1_WORKBENCH_AUTH_GATE_PATCH_V17_PLATFORM_PREFLIGHT',
-      )
-      .replaceAll(
-        'e?.mode?.state==="active"&&e?.mode?.route?.state==="ready"',
-        'e?.mode?.state==="active"',
-      )
-      .replaceAll(
-        't?.mode?.state==="active"&&t?.mode?.route?.state==="ready"',
-        't?.mode?.state==="active"',
-      );
-    await writeFile(fixture.targetPath, oldV17Patched, 'utf8');
-
-    const result = await patchCursorWorkbenchAuthGate(fixture.appPath, { backupDir });
-    const upgraded = await readFile(fixture.targetPath, 'utf8');
-
-    assert.notEqual(result.afterHash, result.beforeHash);
-    assert.equal(containsCursorWorkbenchAuthGateMarker(upgraded), true);
-    assert.equal(upgraded.includes('CURSOR_POOL_MVP1_WORKBENCH_AUTH_GATE_PATCH_V17_PLATFORM_PREFLIGHT'), false);
-    assert.equal(upgraded.includes('mode?.state==="active"&&e?.mode?.route?.state==="ready'), true);
-    assert.equal(upgraded.includes('t?.mode?.state==="active"&&t?.mode?.route?.state==="ready"'), true);
-  } finally {
-    await rm(fixture.appPath, { recursive: true, force: true });
-    await rm(backupDir, { recursive: true, force: true });
-  }
-});
-
 test('workbench auth gate patch keeps the native agent loop instead of appending fake AI bubbles', () => {
   const patched = injectCursorWorkbenchAuthGatePatch(workbenchFixture());
 
@@ -286,50 +355,6 @@ test('workbench auth gate patch delegates agent turns to the local service only
   assert.equal(patched.includes('return this.client.run(e,t,i,r,s,o,a,u,d,h,g)'), true);
 });
 
-test('workbench auth gate patch supports Cursor 3.7 macOS workbench anchors', () => {
-  const patched = injectCursorWorkbenchAuthGatePatch(workbenchFixtureMac37());
-
-  assert.equal(containsCursorWorkbenchAuthGateMarker(patched), true);
-  assert.equal(patched.includes(composerSendButtonAuthGateAnchorMac37), false);
-  assert.equal(patched.includes(composerSubmitAuthGateAnchorMac37), false);
-  assert.equal(patched.includes(agentClientRunLocalModeAnchorMac37), false);
-  assert.equal(
-    patched.includes(
-      'if(!h()&&!globalThis.__cursorPoolIsPlatformModeActive?.()){e.cursorAuthenticationService.login(),e.commandService.executeCommand(a6,"general");return}',
-    ),
-    true,
-  );
-  assert.equal(
-    patched.includes('if(((globalThis.__cursorPoolEnsurePlatformModeGuard||(globalThis.__cursorPoolEnsurePlatformModeGuard=()=>{'),
-    true,
-  );
-  assert.equal(patched.includes('||wv.localMode'), true);
-  assert.equal(patched.includes('return this.runLocalAgentInExtensionHost(n,e,t,i,r,o,c,d,h)'), true);
-  assert.equal(patched.includes('return this.client.run(n,e,t,i,r,s,o,a,c,d,h)'), true);
-});
-
-test('workbench auth gate patch supports Cursor 3.4 macOS workbench anchors', () => {
-  const patched = injectCursorWorkbenchAuthGatePatch(workbenchFixtureMac34());
-
-  assert.equal(containsCursorWorkbenchAuthGateMarker(patched), true);
-  assert.equal(patched.includes(composerSendButtonAuthGateAnchorMac34), false);
-  assert.equal(patched.includes(composerSubmitAuthGateAnchorMac34), false);
-  assert.equal(patched.includes(agentClientRunLocalModeAnchorMac34), false);
-  assert.equal(
-    patched.includes(
-      'if(!t()&&!globalThis.__cursorPoolIsPlatformModeActive?.()){e.cursorAuthenticationService.login();return}',
-    ),
-    true,
-  );
-  assert.equal(
-    patched.includes('if(((globalThis.__cursorPoolEnsurePlatformModeGuard||(globalThis.__cursorPoolEnsurePlatformModeGuard=()=>{'),
-    true,
-  );
-  assert.equal(patched.includes('||U0.localMode'), true);
-  assert.equal(patched.includes('return this.runLocalAgentInExtensionHost(e,t,i,r,s,a,u,d,f)'), true);
-  assert.equal(patched.includes('return this.client.run(e,t,i,r,s,o,a,l,u,d,f)'), true);
-});
-
 test('workbench auth gate patch reads the local service port from runtime json', () => {
   const patched = injectCursorWorkbenchAuthGatePatch(workbenchFixture());
   const markerStart = patched.indexOf(CURSOR_POOL_WORKBENCH_NATIVE_LOCAL_AGENT_SIGNATURE);
@@ -407,10 +432,6 @@ test('workbench platform-mode guard self-bootstraps from the real session file s
     platformMode: 'active',
     activeProductId: 'prod_basic',
     platformModeStartedAt: '2026-06-04T03:10:06.880Z',
-    routeToken: {
-      token: 'rt_secret_value',
-      expiresAt: '2999-06-04T03:25:06.880Z',
-    },
   };
   const fakeRequire = (moduleName: string) => {
     if (moduleName === 'node:fs') {
@@ -610,15 +631,7 @@ test('workbench platform-mode runtime guard stores fetched active state and relo
     },
     fetch: async (url: string) => {
       fetchedUrl = url;
-      return {
-        ok: true,
-        json: async () => ({
-          mode: {
-            state: 'active',
-            route: { state: 'ready', expiresAt: '2999-06-01T00:10:00.000Z' },
-          },
-        }),
-      };
+      return { ok: true, json: async () => ({ mode: { state: 'active' } }) };
     },
     setInterval(callback: () => unknown) {
       timers.push(callback);
@@ -668,13 +681,15 @@ test('workbench platform-mode runtime guard stores fetched active state and relo
   assert.equal(reloads, 1);
 });
 
-test('workbench platform-mode runtime guard does not accept active mode with expired route', async () => {
+test('workbench platform-mode runtime guard falls back to the default local port without node require', async () => {
   const patched = injectCursorWorkbenchAuthGatePatch(workbenchFixture());
   const markerStart = patched.indexOf(CURSOR_POOL_WORKBENCH_NATIVE_LOCAL_AGENT_SIGNATURE);
   const objectStart = patched.lastIndexOf('get when()', markerStart);
   const objectEnd = patched.indexOf('get fallback()', markerStart) + 'get fallback(){return he(DGC,{})}'.length;
   const objectLiteral = patched.slice(objectStart, objectEnd);
   const values = new Map([['cursorPoolPlatformModeActive', '0']]);
+  let fetchedUrl = '';
+  let reloads = 0;
   const sandboxGlobal = {
     localStorage: {
       getItem(key: string) {
@@ -684,15 +699,10 @@ test('workbench platform-mode runtime guard does not accept active mode with exp
         values.set(key, value);
       },
     },
-    fetch: async () => ({
-      ok: true,
-      json: async () => ({
-        mode: {
-          state: 'active',
-          route: { state: 'expired', expiresAt: '2026-06-01T00:10:00.000Z' },
-        },
-      }),
-    }),
+    fetch: async (url: string) => {
+      fetchedUrl = url;
+      return { ok: true, json: async () => ({ mode: { state: 'active' } }) };
+    },
     setInterval() {
       return 1;
     },
@@ -701,7 +711,9 @@ test('workbench platform-mode runtime guard does not accept active mode with exp
       return 1;
     },
     location: {
-      reload() {},
+      reload() {
+        reloads += 1;
+      },
     },
   } as { __cursorPoolIsPlatformModeActive?: () => boolean };
 
@@ -712,11 +724,13 @@ test('workbench platform-mode runtime guard does not accept active mode with exp
   })({ he: () => undefined, DGC: {}, globalThis: sandboxGlobal });
   await new Promise((resolve) => setTimeout(resolve, 0));
 
-  assert.equal(values.get('cursorPoolPlatformModeActive'), '0');
-  assert.equal(sandboxGlobal.__cursorPoolIsPlatformModeActive?.(), false);
+  assert.equal(fetchedUrl, 'http://127.0.0.1:56393/platform/status');
+  assert.equal(values.get('cursorPoolPlatformModeActive'), '1');
+  assert.equal(sandboxGlobal.__cursorPoolIsPlatformModeActive?.(), true);
+  assert.equal(reloads, 1);
 });
 
-test('workbench platform-mode runtime guard falls back to the default local port without node require', async () => {
+test('workbench platform-mode runtime guard reads explicit runtime base URL without node require', async () => {
   const patched = injectCursorWorkbenchAuthGatePatch(workbenchFixture());
   const markerStart = patched.indexOf(CURSOR_POOL_WORKBENCH_NATIVE_LOCAL_AGENT_SIGNATURE);
   const objectStart = patched.lastIndexOf('get when()', markerStart);
@@ -724,7 +738,6 @@ test('workbench platform-mode runtime guard falls back to the default local port
   const objectLiteral = patched.slice(objectStart, objectEnd);
   const values = new Map([['cursorPoolPlatformModeActive', '0']]);
   let fetchedUrl = '';
-  let reloads = 0;
   const sandboxGlobal = {
     localStorage: {
       getItem(key: string) {
@@ -736,15 +749,7 @@ test('workbench platform-mode runtime guard falls back to the default local port
     },
     fetch: async (url: string) => {
       fetchedUrl = url;
-      return {
-        ok: true,
-        json: async () => ({
-          mode: {
-            state: 'active',
-            route: { state: 'ready', expiresAt: '2999-06-01T00:10:00.000Z' },
-          },
-        }),
-      };
+      return { ok: true, json: async () => ({ mode: { state: 'active' } }) };
     },
     setInterval() {
       return 1;
@@ -754,23 +759,20 @@ test('workbench platform-mode runtime guard falls back to the default local port
       return 1;
     },
     location: {
-      reload() {
-        reloads += 1;
-      },
+      reload() {},
     },
-  } as { __cursorPoolIsPlatformModeActive?: () => boolean };
+  } as { __cursorPoolRuntimeBaseUrl?: () => string | null };
 
-  new Script(`(({he,DGC,globalThis})=>({${objectLiteral}}))`).runInNewContext({
+  new Script(`(({he,DGC,globalThis,process})=>({${objectLiteral}}))`).runInNewContext({
     he: () => undefined,
     DGC: {},
     globalThis: sandboxGlobal,
-  })({ he: () => undefined, DGC: {}, globalThis: sandboxGlobal });
+    process: { env: { CURSOR_POOL_RUNTIME_BASE_URL: 'http://127.0.0.1:61373' } },
+  })({ he: () => undefined, DGC: {}, globalThis: sandboxGlobal, process: { env: { CURSOR_POOL_RUNTIME_BASE_URL: 'http://127.0.0.1:61373' } } });
   await new Promise((resolve) => setTimeout(resolve, 0));
 
-  assert.equal(fetchedUrl, 'http://127.0.0.1:56393/platform/status');
-  assert.equal(values.get('cursorPoolPlatformModeActive'), '1');
-  assert.equal(sandboxGlobal.__cursorPoolIsPlatformModeActive?.(), true);
-  assert.equal(reloads, 1);
+  assert.equal(sandboxGlobal.__cursorPoolRuntimeBaseUrl?.(), 'http://127.0.0.1:61373');
+  assert.equal(fetchedUrl, 'http://127.0.0.1:61373/platform/status');
 });
 
 test('workbench platform-mode runtime guard is renderer-safe without node require', () => {

package/node_modules/@cursor-pool/service/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@cursor-pool/service",
-  "version": "0.5.8",
+  "version": "0.5.9",
   "type": "module",
   "main": "./src/index.ts",
   "exports": {
@@ -9,7 +9,7 @@
     "./platformSession": "./src/platformSession.ts"
   },
   "dependencies": {
-    "@cursor-pool/shared": "0.5.8"
+    "@cursor-pool/shared": "0.5.9"
   },
   "scripts": {
     "test": "tsx --test test/*.test.ts"

package/node_modules/@cursor-pool/service/src/platformSession.ts

@@ -61,7 +61,7 @@ export type PlatformModeReleaseReason =
 
 export type PlatformModeSnapshot =
   | { state: 'inactive'; releaseReason?: PlatformModeReleaseReason; releasedAt?: string }
-  | { state: 'active'; productId: string; startedAt: string; route?: SafeRouteState };
+  | { state: 'active'; productId: string; startedAt: string };
 
 export type PlatformModeResult =
   | PlatformModeSnapshot
@@ -346,7 +346,7 @@ function asStatus(session: PlatformSession): PlatformStatus {
     state: 'logged-in',
     user: session.user,
     device: session.device,
-    mode: statusModeFromSession(session),
+    mode: platformModeFromSession(session),
   };
 }
 
@@ -391,29 +391,6 @@ function platformModeFromSession(session: PlatformSession | null): PlatformModeS
   return inactiveModeFromSession(session);
 }
 
-function routeStateFromSession(session: PlatformSession | null): SafeRouteState {
-  const routeToken = session?.routeToken;
-  if (!routeToken) {
-    return { state: 'missing' };
-  }
-
-  const expiresAt = Date.parse(routeToken.expiresAt);
-  if (Number.isNaN(expiresAt)) {
-    return { state: 'missing' };
-  }
-
-  if (expiresAt <= Date.now()) {
-    return { state: 'expired', expiresAt: routeToken.expiresAt };
-  }
-
-  return { state: 'ready', expiresAt: routeToken.expiresAt };
-}
-
-function statusModeFromSession(session: PlatformSession | null): PlatformModeSnapshot {
-  const mode = platformModeFromSession(session);
-  return mode.state === 'active' ? { ...mode, route: routeStateFromSession(session) } : mode;
-}
-
 function clearPlatformMode(session: PlatformSession): PlatformSession {
   const {
     platformMode: _platformMode,
@@ -837,11 +814,11 @@ async function statusFromRequestError(
     const currentSession = await readPlatformSession(options) ?? session;
     const { mode } = options.releaseActiveModeOnUnauthorized
       ? await releaseActivePlatformMode(currentSession, 'invalid-token', options)
-      : { mode: statusModeFromSession(currentSession) };
+      : { mode: platformModeFromSession(currentSession) };
     return { state: 'invalid-token', user: currentSession.user, device: currentSession.device, mode };
   }
 
-  return { state: 'offline', user: session.user, device: session.device, mode: statusModeFromSession(session) };
+  return { state: 'offline', user: session.user, device: session.device, mode: platformModeFromSession(session) };
 }
 
 export async function loginWithCode(options: LoginWithCodeOptions): Promise<PlatformStatus> {
@@ -909,7 +886,7 @@ export async function platformStatus(options: PlatformSessionOptions = {}): Prom
     state: 'logged-in',
     user: released.session.user,
     device: released.session.device,
-    mode: released.mode.state === 'active' ? statusModeFromSession(released.session) : released.mode,
+    mode: released.mode,
   };
 }
 
@@ -975,7 +952,7 @@ export async function platformCatalog(options: PlatformSessionOptions = {}): Pro
   return {
     state: 'logged-in',
     account: { credits: account.value.credits },
-    mode: mode.state === 'active' ? statusModeFromSession(updatedSession) : mode,
+    mode,
     ...(selectedProductId ? { selectedProductId } : {}),
     products: catalogProducts,
   };
@@ -1182,7 +1159,7 @@ export async function sendHeartbeat(options: SendHeartbeatOptions = {}): Promise
     state: 'logged-in',
     user: released.session.user,
     device: released.session.device,
-    mode: released.mode.state === 'active' ? statusModeFromSession(released.session) : released.mode,
+    mode: released.mode,
   };
 }
 

package/node_modules/@cursor-pool/service/src/server.ts

@@ -50,7 +50,6 @@ const LOOPBACK_HOST = '127.0.0.1' as const;
 const DEFAULT_PORT = 56393;
 const TRUSTED_RENDERER_ORIGINS = new Set([
   'vscode-file://vscode-app',
-  'null',
 ]);
 
 export type StartServerOptions = {
@@ -155,6 +154,7 @@ function applyCorsHeaders(request: IncomingMessage, response: ServerResponse) {
   response.setHeader('access-control-allow-origin', origin);
   response.setHeader('access-control-allow-methods', 'GET,POST,OPTIONS');
   response.setHeader('access-control-allow-headers', 'content-type,authorization');
+  response.setHeader('access-control-allow-private-network', 'true');
   return true;
 }
 

package/node_modules/@cursor-pool/service/test/platformSession.test.ts

@@ -337,7 +337,7 @@ const poolSession = {
   status: 'active' as const,
   startedAt: '2026-05-31T00:00:00.000Z',
   expiresAt: '2026-05-31T01:00:00.000Z',
-  routeTokenExpiresAt: '2999-05-31T00:10:00.000Z',
+  routeTokenExpiresAt: '2026-05-31T00:10:00.000Z',
   routeStrategy: 'platform-gateway' as const,
   bannedModels: [],
   capabilities: {
@@ -1654,7 +1654,6 @@ test('platform mode starts after selected available product and stops while pres
       state: 'active',
       productId: 'prod_basic',
       startedAt: started.startedAt,
-      route: { state: 'ready', expiresAt: '2999-05-31T00:10:00.000Z' },
     });
 
     const stopped = await stopPlatformMode({ sessionFile });
@@ -1722,7 +1721,7 @@ test('startPlatformMode creates a pool session and stores route token', async ()
     assert.deepEqual(saved.poolSession, poolSession);
     assert.deepEqual(saved.routeToken, {
       token: 'rt_secret_value',
-      expiresAt: '2999-05-31T00:10:00.000Z',
+      expiresAt: '2026-05-31T00:10:00.000Z',
     });
   } finally {
     await api.close();
@@ -1777,7 +1776,7 @@ test('startPlatformMode calls default pool session endpoint without body device
     assert.deepEqual(saved.poolSession, poolSession);
     assert.deepEqual(saved.routeToken, {
       token: 'rt_secret_value',
-      expiresAt: '2999-05-31T00:10:00.000Z',
+      expiresAt: '2026-05-31T00:10:00.000Z',
     });
   } finally {
     await api.close();
@@ -1892,7 +1891,7 @@ test('startPlatformMode sanitizes pool session response before saving', async ()
     });
     assert.deepEqual(saved.routeToken, {
       token: 'rt_secret_value',
-      expiresAt: '2999-05-31T00:10:00.000Z',
+      expiresAt: '2026-05-31T00:10:00.000Z',
     });
     assert.doesNotMatch(savedText, /discard-me|Bearer secret|rt_nested_secret|sk-secret-token|apiKey=secret/);
   } finally {