npm - @cuylabs/agent-core - Versions diffs - 4.1.0 → 4.3.0 - Mend

@cuylabs/agent-core 4.1.0 → 4.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/dist/{chunk-US7S4FYW.js → chunk-UMIVJDEJ.js} +120 -3
package/dist/index.d.ts +1 -1
package/dist/index.js +4 -2
package/dist/mcp/index.d.ts +48 -4
package/dist/mcp/index.js +3 -1
package/package.json +1 -1

package/dist/{chunk-US7S4FYW.js → chunk-UMIVJDEJ.js} RENAMED Viewed

@@ -464,13 +464,115 @@ var DefaultMCPManager = class {
   }
 };
+// src/mcp/diagnostics.ts
+function createDiagnosticFetch(options = {}) {
+  const baseFetch = options.fetch ?? globalThis.fetch;
+  return async (input, init) => {
+    let timedOut = false;
+    let timeoutId;
+    let timeoutController;
+    let requestInit = init;
+    if (options.timeoutMs !== void 0 && options.timeoutMs > 0) {
+      timeoutController = new AbortController();
+      timeoutId = setTimeout(() => {
+        timedOut = true;
+        timeoutController?.abort();
+      }, options.timeoutMs);
+      requestInit = {
+        ...init,
+        signal: init?.signal ? AbortSignal.any([init.signal, timeoutController.signal]) : timeoutController.signal
+      };
+    }
+    try {
+      return await baseFetch(input, requestInit);
+    } catch (error) {
+      const reason = timedOut && options.timeoutMs ? `; timed out after ${options.timeoutMs}ms` : "";
+      throw enrichMcpFetchError(
+        `${options.label ?? "MCP HTTP fetch failed"} (${describeFetchTarget(
+          input,
+          init
+        )}${reason})`,
+        error,
+        options.redactValues
+      );
+    } finally {
+      if (timeoutId) {
+        clearTimeout(timeoutId);
+      }
+    }
+  };
+}
+function enrichMcpFetchError(message, error, redactValues = []) {
+  const errorMessage = error instanceof Error ? `${error.name}: ${error.message}` : String(error);
+  const causeSummary = summarizeCause(error);
+  const redactedMessage = redactSensitiveText(
+    `${message}: ${errorMessage}${causeSummary ? `; ${causeSummary}` : ""}`,
+    redactValues
+  );
+  return new Error(redactedMessage, { cause: error });
+}
+function redactSensitiveText(text, values) {
+  return values.reduce((redacted, value) => {
+    if (!value) {
+      return redacted;
+    }
+    return redacted.split(value).join("[redacted]");
+  }, text);
+}
+async function readDiagnosticBody(response, maxChars = 500) {
+  const body = await response.text().catch(() => "");
+  return body.length > maxChars ? `${body.slice(0, maxChars)}...` : body;
+}
+function summarizeCause(error) {
+  const cause = error instanceof Error ? error.cause : void 0;
+  if (!cause) {
+    return void 0;
+  }
+  if (cause instanceof Error) {
+    const details = cause;
+    return [
+      `cause=${cause.name}: ${cause.message}`,
+      typeof details.code === "string" ? `code=${details.code}` : void 0,
+      typeof details.syscall === "string" ? `syscall=${details.syscall}` : void 0,
+      typeof details.hostname === "string" ? `hostname=${details.hostname}` : void 0
+    ].filter(Boolean).join(" ");
+  }
+  return `cause=${String(cause)}`;
+}
+function describeFetchTarget(input, init) {
+  const method = init?.method ?? (input instanceof Request && input.method ? input.method : void 0) ?? "GET";
+  const rawUrl = typeof input === "string" ? input : input instanceof URL ? input.href : input instanceof Request ? input.url : void 0;
+  if (!rawUrl) {
+    return `method=${method} url=unknown`;
+  }
+  try {
+    const url = new URL(rawUrl);
+    return `method=${method} host=${url.host} path=${url.pathname}`;
+  } catch {
+    return `method=${method} url=unparseable`;
+  }
+}
 // src/mcp/auth.ts
 var ClientCredentialsProvider = class {
   _tokens;
   _expiresAt;
   _options;
+  _tokenFetch;
+  _redactValues;
   constructor(options) {
     this._options = options;
+    this._redactValues = [
+      options.clientId,
+      options.clientSecret,
+      ...options.redactValues ?? []
+    ];
+    this._tokenFetch = createDiagnosticFetch({
+      fetch: options.fetch,
+      timeoutMs: options.timeoutMs,
+      label: `${options.diagnosticsLabel ?? "ClientCredentialsProvider"} token fetch failed`,
+      redactValues: this._redactValues
+    });
   }
   // ── OAuthClientProvider: required ─────────────────────────────────────────
   get redirectUrl() {
@@ -541,13 +643,16 @@ var ClientCredentialsProvider = class {
       "Content-Type": "application/x-www-form-urlencoded"
     });
     this.addClientAuthentication(headers);
-    const response = await fetch(tokenUrl, {
+    const response = await this._tokenFetch(tokenUrl, {
       method: "POST",
       headers,
       body: params.toString()
     });
     if (!response.ok) {
-      const body = await response.text().catch(() => "");
+      const body = redactSensitiveText(
+        await readDiagnosticBody(response),
+        this._redactValues
+      );
       throw new Error(
         `ClientCredentialsProvider: token fetch failed (HTTP ${response.status}): ${body}`
       );
@@ -592,15 +697,27 @@ function sseServer(url, options) {
   };
 }
 function serviceAccountServer(url, credentials, options) {
+  const redactValues = [
+    credentials.clientId,
+    credentials.clientSecret,
+    ...credentials.redactValues ?? []
+  ];
   return {
     transport: "http",
     url,
     authProvider: new ClientCredentialsProvider(credentials),
-    ...options
+    ...options,
+    fetch: createDiagnosticFetch({
+      fetch: options?.fetch,
+      timeoutMs: options?.timeout,
+      label: `${credentials.diagnosticsLabel ?? "serviceAccountServer"} HTTP fetch failed`,
+      redactValues
+    })
   };
 }
 export {
+  createDiagnosticFetch,
   ClientCredentialsProvider,
   createMCPManager,
   stdioServer,

package/dist/index.d.ts CHANGED Viewed

@@ -12,7 +12,7 @@ export { ToolHostProvider, ToolHostProviderSummary, ToolHostRegistry, defaultToo
 export { AdapterSettings, CacheCapabilitySource, CapabilityCache, CapabilityOverrides, Directory, EngineSpec, ModelCapabilityResolver, ModelSpec, NetworkStatus, PatternCapabilitySource, RemoteCapabilityFetcher, RemoteCapabilitySource, ResolutionResult, Resolver, applyCapabilityOverride, configureResolver, createResolver, extractModelId, extractProvider, findCapabilityOverride, getDefaultResolver, getModelId, getNetworkStatus, getProviderCompatibility, getProviderId, inferContextWindow, inferProvider, likelySupportsReasoning } from './models/index.js';
 export { C as CapabilitySource, D as DEFAULT_RESOLVER_OPTIONS, I as InputModality, M as ModelCapabilities, a as ModelEntry, O as OutputModality, P as ProviderCompatibility, R as ResolverOptions, S as SourcePriority, b as SourceResult, c as buildAnthropicOptions, d as buildBedrockOptions, e as buildGoogleOptions, f as buildGroqOptions, g as buildOpenAIOptions, h as buildOpenRouterOptions, i as buildReasoningOptions, j as buildReasoningOptionsSync, k as buildXAIOptions, l as getProviderOptionsKey, m as getReasoningConfig, n as getReasoningConfigSync, s as supportsReasoning, o as supportsReasoningSync } from './index-BCqEGzBj.js';
 export { H as HttpTransportConfig, M as MCPConfig, a as MCPManager, b as MCPPromptInfo, c as MCPResourceInfo, d as MCPResourceTemplateInfo, e as MCPServerConfig, f as MCPServerStatus, R as RemoteTransportConfig, S as SseTransportConfig, g as StdioTransportConfig } from './types-DMjoFKKv.js';
-export { ClientCredentialsOptions, ClientCredentialsProvider, createMCPManager, httpServer, serviceAccountServer, sseServer, stdioServer } from './mcp/index.js';
+export { ClientCredentialsOptions, ClientCredentialsProvider, DiagnosticFetchOptions, ServiceAccountServerConfig, ServiceAccountServerOptions, createDiagnosticFetch, createMCPManager, httpServer, serviceAccountServer, sseServer, stdioServer } from './mcp/index.js';
 export { AgentTaskChatAdapter, AgentTaskCheckpointReason, AgentTaskCheckpointStrategy, AgentTaskCheckpointStrategyInput, AgentTaskExecutionCheckpoint, AgentTaskExecutionContext, AgentTaskExecutionRun, AgentTaskExecutionSnapshot, AgentTaskObserver, AgentTaskPayload, AgentTaskResult, AgentTaskResumeSnapshot, AgentTaskRunner, AgentTaskRunnerOptions, AgentWorkflowAssistantMessageSnapshot, AgentWorkflowCommitResult, AgentWorkflowInputCommitPlan, AgentWorkflowInterventionSnapshot, AgentWorkflowMessageSnapshot, AgentWorkflowModelStepPlan, AgentWorkflowModelStepResult, AgentWorkflowOperationPlan, AgentWorkflowOutputCommitPlan, AgentWorkflowReplayDecision, AgentWorkflowStepCommitPlan, AgentWorkflowSystemMessageSnapshot, AgentWorkflowToolBatchPlan, AgentWorkflowToolBatchResult, AgentWorkflowToolCallPlan, AgentWorkflowToolCallResult, AgentWorkflowToolCallSnapshot, AgentWorkflowToolMessageSnapshot, AgentWorkflowTurnPhase, AgentWorkflowTurnState, AgentWorkflowUserMessageSnapshot, ContextOverflowError, CreateAgentWorkflowTurnStateOptions, DoomLoopError, applyAgentWorkflowCommitResult, applyAgentWorkflowModelStepResult, applyAgentWorkflowToolBatchResult, applyAgentWorkflowToolCallResult, applyWorkflowInterventions, cloneAgentWorkflowTurnState, commitOutput, commitStep, createAgentTaskRunner, createAgentTurnStepCommitBatch, createAgentWorkflowTurnState, defaultAgentTaskCheckpointStrategy, drainWorkflowInterventions, failAgentWorkflowTurnState, planNextAgentWorkflowOperation, prepareModelStep, processStepStream, queueWorkflowFollowUps, recordAgentWorkflowReplayDecision, restoreAgentWorkflowMessage, restoreAgentWorkflowMessages, runModelStep, runToolBatch, snapshotAgentWorkflowMessage, snapshotAgentWorkflowMessages } from './execution/index.js';
 export { c as convertAgentMessagesToModelMessages } from './model-messages-COIqIS5e.js';
 export { CacheTTL, PromptCacheConfig, createTelemetryConfig, otelMiddleware, promptCacheMiddleware } from './middleware/index.js';

package/dist/index.js CHANGED Viewed

@@ -310,15 +310,16 @@ import {
   supportsReasoning,
   supportsReasoningSync
 } from "./chunk-GJFP5L2V.js";
+import "./chunk-SPBFQXOT.js";
 import {
   ClientCredentialsProvider,
+  createDiagnosticFetch,
   createMCPManager,
   httpServer,
   serviceAccountServer,
   sseServer,
   stdioServer
-} from "./chunk-US7S4FYW.js";
-import "./chunk-SPBFQXOT.js";
+} from "./chunk-UMIVJDEJ.js";
 import {
   MiddlewareRunner,
   approvalMiddleware,
@@ -3488,6 +3489,7 @@ export {
   createConditionalApprovalRule,
   createConsoleLogger,
   createDangerouslyAllowAllApprovalPolicy,
+  createDiagnosticFetch,
   createDispatchExternalTaskControl,
   createDispatchTaskExecutor,
   createDispatchTools,

package/dist/mcp/index.d.ts CHANGED Viewed

@@ -1,5 +1,5 @@
-import { M as MCPConfig, a as MCPManager, R as RemoteTransportConfig, g as StdioTransportConfig } from '../types-DMjoFKKv.js';
-export { H as HttpTransportConfig, b as MCPPromptInfo, c as MCPResourceInfo, d as MCPResourceTemplateInfo, e as MCPServerConfig, f as MCPServerStatus, S as SseTransportConfig } from '../types-DMjoFKKv.js';
+import { R as RemoteTransportConfig, e as MCPServerConfig, M as MCPConfig, a as MCPManager, g as StdioTransportConfig } from '../types-DMjoFKKv.js';
+export { H as HttpTransportConfig, b as MCPPromptInfo, c as MCPResourceInfo, d as MCPResourceTemplateInfo, f as MCPServerStatus, S as SseTransportConfig } from '../types-DMjoFKKv.js';
 import { OAuthClientProvider } from '@modelcontextprotocol/sdk/client/auth.js';
 import { OAuthClientMetadata, OAuthClientInformation, OAuthTokens } from '@modelcontextprotocol/sdk/shared/auth.js';
 import '@modelcontextprotocol/sdk/types.js';
@@ -35,6 +35,26 @@ interface ClientCredentialsOptions {
      * @default 60
      */
     expiryBufferSeconds?: number;
+    /**
+     * Fetch implementation for the token endpoint.
+     * Defaults to `globalThis.fetch`.
+     */
+    fetch?: typeof fetch;
+    /**
+     * Abort the token fetch if no response is received before this many
+     * milliseconds.
+     */
+    timeoutMs?: number;
+    /**
+     * Human-readable operation label used in token-fetch diagnostics.
+     * @default "ClientCredentialsProvider"
+     */
+    diagnosticsLabel?: string;
+    /**
+     * Extra values to redact from diagnostic text. `clientId` and `clientSecret`
+     * are always redacted automatically.
+     */
+    redactValues?: string[];
 }
 /**
  * OAuth `client_credentials` provider for machine-to-machine MCP authentication.
@@ -74,6 +94,8 @@ declare class ClientCredentialsProvider implements OAuthClientProvider {
     private _tokens?;
     private _expiresAt?;
     private readonly _options;
+    private readonly _tokenFetch;
+    private readonly _redactValues;
     constructor(options: ClientCredentialsOptions);
     get redirectUrl(): undefined;
     get clientMetadata(): OAuthClientMetadata;
@@ -90,6 +112,8 @@ declare class ClientCredentialsProvider implements OAuthClientProvider {
     private _fetchTokens;
 }
+type ServiceAccountServerOptions = Omit<RemoteTransportConfig, "transport" | "url" | "authProvider"> & Pick<MCPServerConfig, "capabilities" | "enabled" | "name" | "onUncaughtError" | "timeout">;
+type ServiceAccountServerConfig = RemoteTransportConfig & Pick<MCPServerConfig, "capabilities" | "enabled" | "name" | "onUncaughtError" | "timeout">;
 /**
  * Create an MCP manager for connecting to multiple MCP servers.
  */
@@ -130,6 +154,26 @@ declare function sseServer(url: string, options?: Omit<RemoteTransportConfig, "t
  * });
  * ```
  */
-declare function serviceAccountServer(url: string, credentials: ClientCredentialsOptions, options?: Omit<RemoteTransportConfig, "transport" | "url" | "authProvider">): RemoteTransportConfig;
+declare function serviceAccountServer(url: string, credentials: ClientCredentialsOptions, options?: ServiceAccountServerOptions): ServiceAccountServerConfig;
+interface DiagnosticFetchOptions {
+    /**
+     * Base fetch implementation. Defaults to `globalThis.fetch`.
+     */
+    fetch?: typeof fetch;
+    /**
+     * Human-readable operation label used in wrapped network errors.
+     */
+    label?: string;
+    /**
+     * Abort the fetch if no response is received before this many milliseconds.
+     */
+    timeoutMs?: number;
+    /**
+     * Values to redact from diagnostic text.
+     */
+    redactValues?: string[];
+}
+declare function createDiagnosticFetch(options?: DiagnosticFetchOptions): typeof fetch;
-export { type ClientCredentialsOptions, ClientCredentialsProvider, MCPConfig, MCPManager, RemoteTransportConfig, StdioTransportConfig, createMCPManager, httpServer, serviceAccountServer, sseServer, stdioServer };
+export { type ClientCredentialsOptions, ClientCredentialsProvider, type DiagnosticFetchOptions, MCPConfig, MCPManager, MCPServerConfig, RemoteTransportConfig, type ServiceAccountServerConfig, type ServiceAccountServerOptions, StdioTransportConfig, createDiagnosticFetch, createMCPManager, httpServer, serviceAccountServer, sseServer, stdioServer };

package/dist/mcp/index.js CHANGED Viewed

@@ -1,14 +1,16 @@
 import {
   ClientCredentialsProvider,
+  createDiagnosticFetch,
   createMCPManager,
   httpServer,
   serviceAccountServer,
   sseServer,
   stdioServer
-} from "../chunk-US7S4FYW.js";
+} from "../chunk-UMIVJDEJ.js";
 import "../chunk-S6AKEPAX.js";
 export {
   ClientCredentialsProvider,
+  createDiagnosticFetch,
   createMCPManager,
   httpServer,
   serviceAccountServer,

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@cuylabs/agent-core",
-  "version": "4.1.0",
+  "version": "4.3.0",
   "description": "Embeddable AI agent infrastructure — execution, sessions, tools, skills, dispatch, tracing",
   "type": "module",
   "main": "./dist/index.js",