@expressots/studio-agent 4.0.0-preview.1

package/dist/types/index.d.ts

@@ -0,0 +1,587 @@
+/**
+ * Core types for ExpressoTS Studio Agent
+ */
+/** HTTP methods supported */
+export type HttpMethod = 'GET' | 'POST' | 'PUT' | 'PATCH' | 'DELETE' | 'HEAD' | 'OPTIONS';
+/** Route information discovered from the application */
+export interface RouteInfo {
+    path: string;
+    method: HttpMethod;
+    controller: string;
+    controllerMethod: string;
+    filePath?: string;
+    lineNumber?: number;
+    middleware?: string[];
+    parameters?: ParameterInfo[];
+}
+/** Parameter information for a route */
+export interface ParameterInfo {
+    name: string;
+    type: 'path' | 'query' | 'body' | 'header';
+    required: boolean;
+    dataType?: string;
+}
+/** Span information from OpenTelemetry */
+export interface SpanInfo {
+    traceId: string;
+    spanId: string;
+    parentSpanId?: string;
+    name: string;
+    kind: 'SERVER' | 'CLIENT' | 'INTERNAL' | 'PRODUCER' | 'CONSUMER';
+    startTime: number;
+    endTime: number;
+    duration: number;
+    status: 'OK' | 'ERROR' | 'UNSET';
+    attributes: Record<string, string | number | boolean>;
+    events: SpanEvent[];
+}
+/** Event within a span */
+export interface SpanEvent {
+    name: string;
+    timestamp: number;
+    attributes?: Record<string, string | number | boolean>;
+}
+/** Complete trace containing multiple spans */
+export interface TraceInfo {
+    traceId: string;
+    rootSpan: SpanInfo;
+    spans: SpanInfo[];
+    startTime: number;
+    endTime: number;
+    duration: number;
+}
+/** Recorded HTTP request */
+export interface RecordedRequest {
+    id: string;
+    traceId: string;
+    timestamp: number;
+    method: HttpMethod;
+    path: string;
+    url: string;
+    headers: Record<string, string>;
+    query: Record<string, string>;
+    body?: unknown;
+    cookies?: Record<string, string>;
+}
+/** Recorded HTTP response */
+export interface RecordedResponse {
+    id: string;
+    requestId: string;
+    traceId: string;
+    timestamp: number;
+    statusCode: number;
+    statusMessage: string;
+    headers: Record<string, string>;
+    body?: unknown;
+    duration: number;
+}
+/** Complete request/response pair for replay */
+export interface RecordedExchange {
+    id: string;
+    request: RecordedRequest;
+    response: RecordedResponse;
+    trace?: TraceInfo;
+}
+/** Agent configuration options */
+export interface AgentConfig {
+    /** Port for the agent WebSocket server */
+    port: number;
+    /** Path to store SQLite database */
+    dbPath: string;
+    /** Enable request/response recording */
+    enableRecording: boolean;
+    /** Maximum number of recorded exchanges to keep */
+    maxRecordedExchanges: number;
+    /** Enable performance profiling */
+    enableProfiling: boolean;
+    /** Sample rate for tracing (0-1) */
+    traceSampleRate: number;
+    /** Custom service name */
+    serviceName: string;
+    /** Express app instance (if available) */
+    expressApp?: unknown;
+    /**
+     * ExpressoTS AppContainer instance (if available). When provided the agent
+     * will capture a DI snapshot (bindings + dependency graph) and track which
+     * bindings are resolved during each request.
+     */
+    appContainer?: unknown;
+    /**
+     * HTTP port the host application is listening on. Used by the Studio
+     * Status page to display the app URL. Optional — when omitted the
+     * Status page falls back to "—".
+     */
+    appPort?: number;
+    /**
+     * Global URL prefix of the host application (e.g. "/" or "/api/v1").
+     * Used for display purposes only.
+     */
+    globalPrefix?: string;
+    /**
+     * How long the host application took to start (ms). Reported by
+     * `@expressots/adapter-express` after `app.listen()` resolves.
+     */
+    startupMs?: number;
+    /**
+     * Number of registered interceptors (middleware applied via the adapter
+     * configuration). Reported by the adapter; falls back to scanned
+     * `@middleware` decorators when unavailable.
+     */
+    interceptorCount?: number;
+    /**
+     * Number of providers registered with the DI container at runtime.
+     * Includes framework-registered providers (e.g. lifecycle hooks),
+     * which static file scanning misses. Reported by the adapter via
+     * `MetricsCollector` so the Status page agrees with the CLI banner.
+     */
+    providerCount?: number;
+    /**
+     * Number of HTTP middleware registered in the adapter's pipeline
+     * (distinct from `interceptorCount`). Reported by the adapter for
+     * the Status page.
+     */
+    middlewareCount?: number;
+    /**
+     * Itemised runtime lists for the Status page drill-down. Class names
+     * harvested from DI metadata at boot, including framework items the
+     * static scanner can't see.
+     */
+    runtimeItems?: RuntimeItems;
+}
+/**
+ * Itemised runtime view used by the Studio Status page drill-down.
+ *
+ * Each entry is just a display name (typically `Class.name`). The UI
+ * cross-references against the static `AppStructure` to enrich entries
+ * with file paths / "Open in editor" links when a name matches.
+ */
+export interface RuntimeItems {
+    /** Provider class names registered via `@provide` family decorators. */
+    providers?: RuntimeItem[];
+    /** Interceptor class names registered via `@Interceptor()`. */
+    interceptors?: RuntimeItem[];
+}
+/** A single runtime-discovered item (provider, interceptor, etc.). */
+export interface RuntimeItem {
+    /** Display name (typically the class constructor name). */
+    name: string;
+    /**
+     * Optional priority — surfaced for interceptors so the dashboard can
+     * mirror the execution order shown in the CLI.
+     */
+    priority?: number;
+    /** Optional source — purely informational ("metadata", "registry", …). */
+    source?: string;
+}
+/** Default agent configuration */
+export declare const defaultAgentConfig: AgentConfig;
+/** WebSocket message types */
+export type WSMessageType = 'routes' | 'trace' | 'request' | 'response' | 'metrics' | 'error' | 'replay_result' | 'health' | 'structure' | 'exchanges' | 'exchange' | 'stats' | 'endpoint_stats' | 'cleared' | 'runtime' | 'security' | 'security_scan_state' | 'fix_progress' | 'fix_result';
+/** WebSocket message structure */
+export interface WSMessage<T = unknown> {
+    type: WSMessageType;
+    timestamp: number;
+    data: T;
+}
+/** Application metrics */
+export interface AppMetrics {
+    uptime: number;
+    requestCount: number;
+    errorCount: number;
+    avgResponseTime: number;
+    p50ResponseTime: number;
+    p95ResponseTime: number;
+    p99ResponseTime: number;
+    memoryUsage: NodeJS.MemoryUsage;
+    activeConnections: number;
+}
+/** Endpoint statistics */
+export interface EndpointStats {
+    path: string;
+    method: HttpMethod;
+    requestCount: number;
+    errorCount: number;
+    avgDuration: number;
+    minDuration: number;
+    maxDuration: number;
+    p50Duration: number;
+    p95Duration: number;
+    p99Duration: number;
+    lastRequestTime: number;
+    /** Internal: durations array for percentile calculation (not sent to UI) */
+    durations?: number[];
+}
+/** Dependency information for architecture map */
+export interface DependencyInfo {
+    source: string;
+    target: string;
+    type: 'controller' | 'service' | 'provider' | 'middleware' | 'repository';
+}
+/** Controller metadata */
+export interface ControllerInfo {
+    name: string;
+    filePath: string;
+    routes: RouteInfo[];
+    dependencies: string[];
+}
+/** Service metadata */
+export interface ServiceInfo {
+    name: string;
+    filePath: string;
+    dependencies: string[];
+    methods: string[];
+}
+/** Application structure for architecture visualization */
+export interface AppStructure {
+    controllers: ControllerInfo[];
+    services: ServiceInfo[];
+    providers: ServiceInfo[];
+    middleware: string[];
+    dependencies: DependencyInfo[];
+}
+/**
+ * Runtime information about the host application + the agent itself.
+ *
+ * Surfaced on the Studio "Status" page so users get a browser-side view
+ * of the same information the CLI prints in its boot banner — but live
+ * and refreshable, instead of frozen at startup.
+ */
+export interface RuntimeInfo {
+    /** Service name passed to the agent (e.g. "expressots-app"). */
+    serviceName: string;
+    /** Process id of the host app (the agent runs in-process). */
+    pid: number;
+    /** Node.js version, e.g. "v22.15.1". */
+    nodeVersion: string;
+    /** Platform string, e.g. "win32" / "linux" / "darwin". */
+    platform: NodeJS.Platform;
+    /** CPU architecture, e.g. "x64" / "arm64". */
+    arch: string;
+    /** NODE_ENV, defaulting to "development" if unset. */
+    env: string;
+    /** Port the WebSocket agent itself is listening on. */
+    agentPort: number;
+    /**
+     * Application HTTP port (best-effort). The agent doesn't bind the user's
+     * server, so this is provided via config and may be undefined.
+     */
+    appPort?: number;
+    /** App base URL, e.g. "http://localhost:3000" — also best-effort. */
+    appUrl?: string;
+    /**
+     * Global path prefix for the app, e.g. "/" or "/api/v1". Best-effort
+     * because we can only know it when the host passes it via config.
+     */
+    globalPrefix?: string;
+    /** Wall-clock timestamp of when the agent started (ms since epoch). */
+    startedAt: number;
+    /** How long the host has been up (ms). */
+    uptimeMs: number;
+    /** How long the host took to boot (ms), if the user app reports it. */
+    startupMs?: number;
+    /** Versions of the framework and adapter, when discoverable. */
+    versions: {
+        agent: string;
+        core?: string;
+        adapterExpress?: string;
+    };
+    /** Counts derived from the latest scan, for the dashboard. */
+    counts: {
+        controllers: number;
+        services: number;
+        providers: number;
+        routes: number;
+        middleware: number;
+        interceptors?: number;
+    };
+    /**
+     * Itemised runtime lists. Powers the Status page drill-down for items
+     * the static file scanner can't see (framework providers, container-
+     * resolved interceptors). When omitted, the UI falls back to the
+     * static `AppStructure` lists.
+     */
+    runtimeItems?: RuntimeItems;
+    /** Whether request/response recording is currently enabled. */
+    recordingEnabled: boolean;
+}
+/**
+ * Severity classes used across both supply-chain (CVE) and runtime
+ * posture findings. Mirrors the npm-audit / OSV / CVSS vocabulary, plus
+ * an `INFO` bucket for advisory-grade hints (e.g. heuristic secret
+ * detections) that aren't strictly vulnerabilities.
+ */
+export type Severity = 'CRITICAL' | 'HIGH' | 'MEDIUM' | 'LOW' | 'INFO';
+/**
+ * How likely is it that the vulnerable code is actually executed in the
+ * running app? Computed from imports in `src/`, the DI/route graph, and
+ * recorded HTTP exchanges. Drives risk-weighted prioritisation: a
+ * `confirmed` MEDIUM finding usually deserves attention before an
+ * `unreachable` CRITICAL one.
+ */
+export type Reachability = 'confirmed' | 'likely' | 'unreachable' | 'unknown';
+/** Why a finding got the reachability label it did, plus the evidence trail. */
+export interface ReachabilityInfo {
+    level: Reachability;
+    /** Files under `src/` that import (or `require`) the vulnerable package. */
+    importedBy: string[];
+    /**
+     * Routes whose controller (or transitively a service it depends on)
+     * imports the vulnerable package. Drives the "exercised X times in
+     * the last Y exchanges" chip in the UI.
+     */
+    routes: {
+        method: string;
+        path: string;
+    }[];
+    /** How many recorded exchanges hit one of `routes`. */
+    runtimeHits: number;
+    /** Short human reason — feeds the tooltip on the reachability chip. */
+    reason: string;
+}
+/**
+ * Concrete, runnable remediation for a finding. The agent computes this
+ * server-side so the UI never has to assemble shell commands. Two flavours:
+ *
+ *   - `install`  → `npm install <pkg>@<ver>` (direct dep, exact target).
+ *   - `audit-fix` → `npm audit fix` (npm can resolve a non-major upgrade).
+ *   - `audit-fix-force` → `npm audit fix --force` (semver-major; warn).
+ *   - `override` → user has to edit `package.json` `overrides` themselves.
+ *   - `none` → no upstream fix exists yet; advisory-only.
+ */
+export interface FixSpec {
+    kind: 'install' | 'audit-fix' | 'audit-fix-force' | 'override' | 'none';
+    /** Verbatim command the agent will run if "Apply fix" is clicked. */
+    command: string;
+    /** True when the upgrade crosses a semver-major boundary on the root. */
+    breaking: boolean;
+    /** Short button label, e.g. "Upgrade lodash 4.17.10 → 4.17.21". */
+    label: string;
+    /** Optional human note (e.g. "requires `npm audit fix --force`"). */
+    note?: string;
+}
+/**
+ * For transitive vulnerabilities, the *real* package the user needs to
+ * upgrade to fix the issue. npm audit's stock output buries this — we
+ * reconstruct it from the lockfile so the UI can show
+ * "Vulnerable lodash@4.17.10 reached via express-session → fix by
+ *  upgrading express-session 1.17.0 → 1.17.3".
+ */
+export interface RootCause {
+    /** Top-level package (direct dep) the user actually owns. */
+    rootPackage: string;
+    /** Version currently installed for the root. */
+    rootInstalledVersion: string;
+    /** Shortest path through node_modules from root → vulnerable pkg. */
+    chain: string[];
+    /** True when the vulnerable package *is* the root (direct dep). */
+    isDirect: boolean;
+    /**
+     * Optional version of the root that ships a fixed transitive. Set when
+     * npm audit / OSV can tell us; absent means user has to bump manually
+     * or wait for upstream.
+     */
+    rootFixedVersion?: string;
+}
+/**
+ * A single supply-chain vulnerability finding. Produced by reconciling
+ * `npm audit --json` output with the OSV.dev advisory database — the
+ * agent dedupes by `id` (CVE / GHSA) across both sources, then enriches
+ * each finding with a concrete `fix`, the transitive `rootCause`, and a
+ * runtime `reachability` assessment.
+ */
+export interface DependencyFinding {
+    /** Canonical advisory id (CVE-… or GHSA-…). Stable across rescans. */
+    id: string;
+    /** npm package name. */
+    package: string;
+    /** Version currently installed in the host's lockfile. */
+    installedVersion: string;
+    /** Minimum version that includes the fix, when known. */
+    fixedVersion?: string;
+    severity: Severity;
+    /** CVSS v3.x base score, when published. */
+    cvss?: number;
+    title: string;
+    summary: string;
+    /** External links (advisory pages, blog posts, commits). */
+    references: string[];
+    /**
+     * Transitive resolution chain from a root dependency to the vulnerable
+     * package. First entry is the root, last entry is the vulnerable
+     * package itself. Empty when the agent can't resolve a path.
+     */
+    path: string[];
+    /**
+     * Concrete remediation. Always populated, even if `kind: 'none'` — UI
+     * can branch on `kind` instead of doing existence checks.
+     */
+    fix?: FixSpec;
+    /**
+     * Root-cause analysis for transitive vulnerabilities. Absent when the
+     * finding *is* a direct dependency (in which case `fix` already targets
+     * the right package).
+     */
+    rootCause?: RootCause;
+    /** Runtime reachability assessment. Studio's unique contribution. */
+    reachability?: ReachabilityInfo;
+}
+/**
+ * A grouping of findings that all share a single fix command.
+ *
+ * Most real-world `npm audit` reports list one upgrade resolving many
+ * advisories (a single lodash bump kills four CVEs). Grouping flips the
+ * UI from "look at every advisory" to "make this one change to fix N
+ * issues" — same data, dramatically less noise.
+ */
+export interface FixGroup {
+    /** Stable id (hash of package@version + finding ids). */
+    id: string;
+    /** Package being upgraded (typically a direct dep / root cause). */
+    package: string;
+    /** Current installed version of that package. */
+    fromVersion: string;
+    /** Target version that fixes every finding in this group. */
+    toVersion: string;
+    /** True when this is a semver-major upgrade. */
+    breaking: boolean;
+    /** Top severity across the findings in the group. */
+    severity: Severity;
+    /** IDs of every finding this group resolves (look up in `dependencies`). */
+    findingIds: string[];
+    /** The actual fix command — same shape as `DependencyFinding.fix`. */
+    fix: FixSpec;
+    /** "confirmed" if any member finding is confirmed-reachable. */
+    reachability?: Reachability;
+}
+/**
+ * Where a posture finding came from. Each kind gives the UI just enough
+ * context to deep-link the user to the offending route / exchange / log
+ * / file so they can fix the issue without leaving Studio.
+ */
+export type PostureEvidence = {
+    kind: 'exchange';
+    exchangeId: string;
+} | {
+    kind: 'route';
+    method: string;
+    path: string;
+} | {
+    kind: 'log';
+    logIndex: number;
+} | {
+    kind: 'file';
+    filePath: string;
+    lineNumber?: number;
+};
+/**
+ * A runtime posture finding — a check that the posture analyzer
+ * performed over the agent's in-memory exchanges/routes/structure/logs
+ * and flagged as risky.
+ *
+ * Distinct from `DependencyFinding` (which is supply-chain only). The
+ * runtime posture is Studio's unique contribution: Snyk-style scanners
+ * never see the running app.
+ */
+export interface PostureFinding {
+    /** Stable hash so the UI can dedupe across re-runs of the analyzer. */
+    id: string;
+    /**
+     * Slug identifying the check that produced this finding
+     * (e.g. `missing-csp`, `permissive-cors`, `verbose-error`).
+     */
+    rule: string;
+    /** OWASP API Security Top 10 category (e.g. `API1:2023`), when applicable. */
+    owasp?: string;
+    severity: Severity;
+    /** Short, user-facing one-liner. */
+    title: string;
+    /** Longer explanation — used as the body of the finding card. */
+    description: string;
+    /** Where to look to verify the finding (deep-link target). */
+    evidence: PostureEvidence;
+    /** Suggested remediation, when we can be concrete. */
+    fixHint?: string;
+}
+/**
+ * The whole security view, debounced and broadcast as one envelope so
+ * the UI can render with a single state transition. Includes both
+ * supply-chain CVEs and runtime posture findings, plus an aggregate
+ * letter grade and a `scanState` describing the current scan lifecycle.
+ */
+export interface SecurityReport {
+    /** When the agent finished assembling this report (ms epoch). */
+    generatedAt: number;
+    /** Aggregate posture score. F = critical issues; A = no findings. */
+    score: 'A' | 'B' | 'C' | 'D' | 'F';
+    /** Counts by severity across both dependencies and posture. */
+    counts: Record<Severity, number>;
+    dependencies: DependencyFinding[];
+    posture: PostureFinding[];
+    /**
+     * Findings grouped by their shared fix command. A single upgrade can
+     * resolve many advisories — surfacing those groups lets users act on
+     * the *change*, not on every individual CVE.
+     */
+    fixGroups: FixGroup[];
+    /**
+     * Lifecycle of the on-demand scan. Use this to drive UI affordances
+     * (spinner, error banner) instead of inferring from finding counts.
+     */
+    scanState: {
+        audit: 'idle' | 'running' | 'error';
+        /** When the posture analyzer last produced findings. 0 = never. */
+        postureLastRunAt: number;
+        /** Short reason when `audit === 'error'`. Surfaced to the user. */
+        auditError?: string;
+        /**
+         * True when the host project has no `package-lock.json`, so `npm
+         * audit` is skipped entirely. The UI should show an empty state
+         * with instructions, not "no vulnerabilities".
+         */
+        missingLockfile?: boolean;
+        /**
+         * Lifecycle of the currently-running "Apply fix" job, if any. The
+         * agent streams `fix_progress` messages while this is `running`.
+         */
+        fix?: {
+            state: 'running' | 'success' | 'error';
+            /** The `FixGroup.id` or `DependencyFinding.id` being applied. */
+            targetId: string;
+            /** Concrete command being executed. */
+            command: string;
+            /** Short error reason when `state === 'error'`. */
+            error?: string;
+        };
+    };
+}
+/**
+ * Streaming line from an in-flight `apply_security_fix` job. The UI
+ * appends these to a terminal-style transcript so users can watch
+ * `npm install` progress live without leaving Studio.
+ */
+export interface FixProgressMessage {
+    /** Matches the `FixGroup.id` / `DependencyFinding.id` that was clicked. */
+    targetId: string;
+    stream: 'stdout' | 'stderr';
+    line: string;
+    /** Wall-clock at which the agent observed this line. */
+    timestamp: number;
+}
+/**
+ * Final outcome of an `apply_security_fix` job. After this fires the
+ * agent always re-runs `npm audit` + OSV; the resulting `security`
+ * frame is the user's "did it actually work?" confirmation.
+ */
+export interface FixResultMessage {
+    targetId: string;
+    success: boolean;
+    exitCode: number | null;
+    durationMs: number;
+    /** Final command that ran (echoed for the transcript footer). */
+    command: string;
+    /** Short message for the toast — "Upgrade succeeded" / "npm install failed". */
+    summary: string;
+    /** Captured stderr tail when `success === false` (truncated to 4 KB). */
+    errorTail?: string;
+}
+//# sourceMappingURL=index.d.ts.map

package/dist/types/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/types/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,6BAA6B;AAC7B,MAAM,MAAM,UAAU,GAAG,KAAK,GAAG,MAAM,GAAG,KAAK,GAAG,OAAO,GAAG,QAAQ,GAAG,MAAM,GAAG,SAAS,CAAC;AAE1F,wDAAwD;AACxD,MAAM,WAAW,SAAS;IACxB,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,UAAU,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;IACnB,gBAAgB,EAAE,MAAM,CAAC;IACzB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;IACtB,UAAU,CAAC,EAAE,aAAa,EAAE,CAAC;CAC9B;AAED,wCAAwC;AACxC,MAAM,WAAW,aAAa;IAC5B,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,GAAG,OAAO,GAAG,MAAM,GAAG,QAAQ,CAAC;IAC3C,QAAQ,EAAE,OAAO,CAAC;IAClB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED,0CAA0C;AAC1C,MAAM,WAAW,QAAQ;IACvB,OAAO,EAAE,MAAM,CAAC;IAChB,MAAM,EAAE,MAAM,CAAC;IACf,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,QAAQ,GAAG,QAAQ,GAAG,UAAU,GAAG,UAAU,GAAG,UAAU,CAAC;IACjE,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,IAAI,GAAG,OAAO,GAAG,OAAO,CAAC;IACjC,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,OAAO,CAAC,CAAC;IACtD,MAAM,EAAE,SAAS,EAAE,CAAC;CACrB;AAED,0BAA0B;AAC1B,MAAM,WAAW,SAAS;IACxB,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,OAAO,CAAC,CAAC;CACxD;AAED,+CAA+C;AAC/C,MAAM,WAAW,SAAS;IACxB,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,QAAQ,CAAC;IACnB,KAAK,EAAE,QAAQ,EAAE,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,4BAA4B;AAC5B,MAAM,WAAW,eAAe;IAC9B,EAAE,EAAE,MAAM,CAAC;IACX,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,UAAU,CAAC;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,GAAG,EAAE,MAAM,CAAC;IACZ,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAChC,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC9B,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAClC;AAED,6BAA6B;AAC7B,MAAM,WAAW,gBAAgB;IAC/B,EAAE,EAAE,MAAM,CAAC;IACX,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;IACnB,aAAa,EAAE,MAAM,CAAC;IACtB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAChC,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,gDAAgD;AAChD,MAAM,WAAW,gBAAgB;IAC/B,EAAE,EAAE,MAAM,CAAC;IACX,OAAO,EAAE,eAAe,CAAC;IACzB,QAAQ,EAAE,gBAAgB,CAAC;IAC3B,KAAK,CAAC,EAAE,SAAS,CAAC;CACnB;AAED,kCAAkC;AAClC,MAAM,WAAW,WAAW;IAC1B,0CAA0C;IAC1C,IAAI,EAAE,MAAM,CAAC;IACb,oCAAoC;IACpC,MAAM,EAAE,MAAM,CAAC;IACf,wCAAwC;IACxC,eAAe,EAAE,OAAO,CAAC;IACzB,mDAAmD;IACnD,oBAAoB,EAAE,MAAM,CAAC;IAC7B,mCAAmC;IACnC,eAAe,EAAE,OAAO,CAAC;IACzB,oCAAoC;IACpC,eAAe,EAAE,MAAM,CAAC;IACxB,0BAA0B;IAC1B,WAAW,EAAE,MAAM,CAAC;IACpB,0CAA0C;IAC1C,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB;;;;OAIG;IACH,YAAY,CAAC,EAAE,OAAO,CAAC;IACvB;;;;OAIG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB;;;OAGG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB;;;OAGG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB;;;;OAIG;IACH,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B;;;;;OAKG;IACH,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB;;;;OAIG;IACH,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB;;;;OAIG;IACH,YAAY,CAAC,EAAE,YAAY,CAAC;CAC7B;AAED;;;;;;GAMG;AACH,MAAM,WAAW,YAAY;IAC3B,wEAAwE;IACxE,SAAS,CAAC,EAAE,WAAW,EAAE,CAAC;IAC1B,+DAA+D;IAC/D,YAAY,CAAC,EAAE,WAAW,EAAE,CAAC;CAC9B;AAED,sEAAsE;AACtE,MAAM,WAAW,WAAW;IAC1B,2DAA2D;IAC3D,IAAI,EAAE,MAAM,CAAC;IACb;;;OAGG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,0EAA0E;IAC1E,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,kCAAkC;AAClC,eAAO,MAAM,kBAAkB,EAAE,WAQhC,CAAC;AAEF,8BAA8B;AAC9B,MAAM,MAAM,aAAa,GACrB,QAAQ,GACR,OAAO,GACP,SAAS,GACT,UAAU,GACV,SAAS,GACT,OAAO,GACP,eAAe,GACf,QAAQ,GACR,WAAW,GACX,WAAW,GACX,UAAU,GACV,OAAO,GACP,gBAAgB,GAChB,SAAS,GACT,SAAS,GACT,UAAU,GACV,qBAAqB,GACrB,cAAc,GACd,YAAY,CAAC;AAEjB,kCAAkC;AAClC,MAAM,WAAW,SAAS,CAAC,CAAC,GAAG,OAAO;IACpC,IAAI,EAAE,aAAa,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,CAAC,CAAC;CACT;AAED,0BAA0B;AAC1B,MAAM,WAAW,UAAU;IACzB,MAAM,EAAE,MAAM,CAAC;IACf,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,MAAM,CAAC;IACnB,eAAe,EAAE,MAAM,CAAC;IACxB,eAAe,EAAE,MAAM,CAAC;IACxB,eAAe,EAAE,MAAM,CAAC;IACxB,eAAe,EAAE,MAAM,CAAC;IACxB,WAAW,EAAE,MAAM,CAAC,WAAW,CAAC;IAChC,iBAAiB,EAAE,MAAM,CAAC;CAC3B;AAED,0BAA0B;AAC1B,MAAM,WAAW,aAAa;IAC5B,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,UAAU,CAAC;IACnB,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,MAAM,CAAC;IACnB,WAAW,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE,MAAM,CAAC;IACpB,eAAe,EAAE,MAAM,CAAC;IACxB,4EAA4E;IAC5E,SAAS,CAAC,EAAE,MAAM,EAAE,CAAC;CACtB;AAED,kDAAkD;AAClD,MAAM,WAAW,cAAc;IAC7B,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,YAAY,GAAG,SAAS,GAAG,UAAU,GAAG,YAAY,GAAG,YAAY,CAAC;CAC3E;AAED,0BAA0B;AAC1B,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,SAAS,EAAE,CAAC;IACpB,YAAY,EAAE,MAAM,EAAE,CAAC;CACxB;AAED,uBAAuB;AACvB,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,YAAY,EAAE,MAAM,EAAE,CAAC;IACvB,OAAO,EAAE,MAAM,EAAE,CAAC;CACnB;AAED,2DAA2D;AAC3D,MAAM,WAAW,YAAY;IAC3B,WAAW,EAAE,cAAc,EAAE,CAAC;IAC9B,QAAQ,EAAE,WAAW,EAAE,CAAC;IACxB,SAAS,EAAE,WAAW,EAAE,CAAC;IACzB,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB,YAAY,EAAE,cAAc,EAAE,CAAC;CAChC;AAED;;;;;;GAMG;AACH,MAAM,WAAW,WAAW;IAC1B,gEAAgE;IAChE,WAAW,EAAE,MAAM,CAAC;IACpB,8DAA8D;IAC9D,GAAG,EAAE,MAAM,CAAC;IACZ,wCAAwC;IACxC,WAAW,EAAE,MAAM,CAAC;IACpB,0DAA0D;IAC1D,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC;IAC1B,8CAA8C;IAC9C,IAAI,EAAE,MAAM,CAAC;IACb,sDAAsD;IACtD,GAAG,EAAE,MAAM,CAAC;IACZ,uDAAuD;IACvD,SAAS,EAAE,MAAM,CAAC;IAClB;;;OAGG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,qEAAqE;IACrE,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB;;;OAGG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,uEAAuE;IACvE,SAAS,EAAE,MAAM,CAAC;IAClB,0CAA0C;IAC1C,QAAQ,EAAE,MAAM,CAAC;IACjB,uEAAuE;IACvE,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,gEAAgE;IAChE,QAAQ,EAAE;QACR,KAAK,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,cAAc,CAAC,EAAE,MAAM,CAAC;KACzB,CAAC;IACF,8DAA8D;IAC9D,MAAM,EAAE;QACN,WAAW,EAAE,MAAM,CAAC;QACpB,QAAQ,EAAE,MAAM,CAAC;QACjB,SAAS,EAAE,MAAM,CAAC;QAClB,MAAM,EAAE,MAAM,CAAC;QACf,UAAU,EAAE,MAAM,CAAC;QACnB,YAAY,CAAC,EAAE,MAAM,CAAC;KACvB,CAAC;IACF;;;;;OAKG;IACH,YAAY,CAAC,EAAE,YAAY,CAAC;IAC5B,+DAA+D;IAC/D,gBAAgB,EAAE,OAAO,CAAC;CAC3B;AAMD;;;;;GAKG;AACH,MAAM,MAAM,QAAQ,GAAG,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,GAAG,MAAM,CAAC;AAEvE;;;;;;GAMG;AACH,MAAM,MAAM,YAAY,GAAG,WAAW,GAAG,QAAQ,GAAG,aAAa,GAAG,SAAS,CAAC;AAE9E,gFAAgF;AAChF,MAAM,WAAW,gBAAgB;IAC/B,KAAK,EAAE,YAAY,CAAC;IACpB,4EAA4E;IAC5E,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB;;;;OAIG;IACH,MAAM,EAAE;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,CAAA;KAAE,EAAE,CAAC;IAC3C,uDAAuD;IACvD,WAAW,EAAE,MAAM,CAAC;IACpB,uEAAuE;IACvE,MAAM,EAAE,MAAM,CAAC;CAChB;AAED;;;;;;;;;GASG;AACH,MAAM,WAAW,OAAO;IACtB,IAAI,EAAE,SAAS,GAAG,WAAW,GAAG,iBAAiB,GAAG,UAAU,GAAG,MAAM,CAAC;IACxE,qEAAqE;IACrE,OAAO,EAAE,MAAM,CAAC;IAChB,yEAAyE;IACzE,QAAQ,EAAE,OAAO,CAAC;IAClB,mEAAmE;IACnE,KAAK,EAAE,MAAM,CAAC;IACd,qEAAqE;IACrE,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED;;;;;;GAMG;AACH,MAAM,WAAW,SAAS;IACxB,6DAA6D;IAC7D,WAAW,EAAE,MAAM,CAAC;IACpB,gDAAgD;IAChD,oBAAoB,EAAE,MAAM,CAAC;IAC7B,qEAAqE;IACrE,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,mEAAmE;IACnE,QAAQ,EAAE,OAAO,CAAC;IAClB;;;;OAIG;IACH,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC3B;AAED;;;;;;GAMG;AACH,MAAM,WAAW,iBAAiB;IAChC,sEAAsE;IACtE,EAAE,EAAE,MAAM,CAAC;IACX,wBAAwB;IACxB,OAAO,EAAE,MAAM,CAAC;IAChB,0DAA0D;IAC1D,gBAAgB,EAAE,MAAM,CAAC;IACzB,yDAAyD;IACzD,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,QAAQ,EAAE,QAAQ,CAAC;IACnB,4CAA4C;IAC5C,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,CAAC;IACd,OAAO,EAAE,MAAM,CAAC;IAChB,4DAA4D;IAC5D,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB;;;;OAIG;IACH,IAAI,EAAE,MAAM,EAAE,CAAC;IACf;;;OAGG;IACH,GAAG,CAAC,EAAE,OAAO,CAAC;IACd;;;;OAIG;IACH,SAAS,CAAC,EAAE,SAAS,CAAC;IACtB,qEAAqE;IACrE,YAAY,CAAC,EAAE,gBAAgB,CAAC;CACjC;AAED;;;;;;;GAOG;AACH,MAAM,WAAW,QAAQ;IACvB,yDAAyD;IACzD,EAAE,EAAE,MAAM,CAAC;IACX,oEAAoE;IACpE,OAAO,EAAE,MAAM,CAAC;IAChB,iDAAiD;IACjD,WAAW,EAAE,MAAM,CAAC;IACpB,6DAA6D;IAC7D,SAAS,EAAE,MAAM,CAAC;IAClB,gDAAgD;IAChD,QAAQ,EAAE,OAAO,CAAC;IAClB,qDAAqD;IACrD,QAAQ,EAAE,QAAQ,CAAC;IACnB,4EAA4E;IAC5E,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB,sEAAsE;IACtE,GAAG,EAAE,OAAO,CAAC;IACb,gEAAgE;IAChE,YAAY,CAAC,EAAE,YAAY,CAAC;CAC7B;AAED;;;;GAIG;AACH,MAAM,MAAM,eAAe,GACvB;IAAE,IAAI,EAAE,UAAU,CAAC;IAAC,UAAU,EAAE,MAAM,CAAA;CAAE,GACxC;IAAE,IAAI,EAAE,OAAO,CAAC;IAAC,MAAM,EAAE,MAAM,CAAC;IAAC,IAAI,EAAE,MAAM,CAAA;CAAE,GAC/C;IAAE,IAAI,EAAE,KAAK,CAAC;IAAC,QAAQ,EAAE,MAAM,CAAA;CAAE,GACjC;IAAE,IAAI,EAAE,MAAM,CAAC;IAAC,QAAQ,EAAE,MAAM,CAAC;IAAC,UAAU,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC;AAE5D;;;;;;;;GAQG;AACH,MAAM,WAAW,cAAc;IAC7B,uEAAuE;IACvE,EAAE,EAAE,MAAM,CAAC;IACX;;;OAGG;IACH,IAAI,EAAE,MAAM,CAAC;IACb,8EAA8E;IAC9E,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,QAAQ,CAAC;IACnB,oCAAoC;IACpC,KAAK,EAAE,MAAM,CAAC;IACd,iEAAiE;IACjE,WAAW,EAAE,MAAM,CAAC;IACpB,8DAA8D;IAC9D,QAAQ,EAAE,eAAe,CAAC;IAC1B,sDAAsD;IACtD,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED;;;;;GAKG;AACH,MAAM,WAAW,cAAc;IAC7B,iEAAiE;IACjE,WAAW,EAAE,MAAM,CAAC;IACpB,qEAAqE;IACrE,KAAK,EAAE,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,CAAC;IACnC,+DAA+D;IAC/D,MAAM,EAAE,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IACjC,YAAY,EAAE,iBAAiB,EAAE,CAAC;IAClC,OAAO,EAAE,cAAc,EAAE,CAAC;IAC1B;;;;OAIG;IACH,SAAS,EAAE,QAAQ,EAAE,CAAC;IACtB;;;OAGG;IACH,SAAS,EAAE;QACT,KAAK,EAAE,MAAM,GAAG,SAAS,GAAG,OAAO,CAAC;QACpC,mEAAmE;QACnE,gBAAgB,EAAE,MAAM,CAAC;QACzB,mEAAmE;QACnE,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB;;;;WAIG;QACH,eAAe,CAAC,EAAE,OAAO,CAAC;QAC1B;;;WAGG;QACH,GAAG,CAAC,EAAE;YACJ,KAAK,EAAE,SAAS,GAAG,SAAS,GAAG,OAAO,CAAC;YACvC,iEAAiE;YACjE,QAAQ,EAAE,MAAM,CAAC;YACjB,uCAAuC;YACvC,OAAO,EAAE,MAAM,CAAC;YAChB,mDAAmD;YACnD,KAAK,CAAC,EAAE,MAAM,CAAC;SAChB,CAAC;KACH,CAAC;CACH;AAMD;;;;GAIG;AACH,MAAM,WAAW,kBAAkB;IACjC,2EAA2E;IAC3E,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,QAAQ,GAAG,QAAQ,CAAC;IAC5B,IAAI,EAAE,MAAM,CAAC;IACb,wDAAwD;IACxD,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;;;GAIG;AACH,MAAM,WAAW,gBAAgB;IAC/B,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,OAAO,CAAC;IACjB,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,UAAU,EAAE,MAAM,CAAC;IACnB,iEAAiE;IACjE,OAAO,EAAE,MAAM,CAAC;IAChB,gFAAgF;IAChF,OAAO,EAAE,MAAM,CAAC;IAChB,yEAAyE;IACzE,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB"}

package/dist/types/index.js

@@ -0,0 +1,14 @@
+/**
+ * Core types for ExpressoTS Studio Agent
+ */
+/** Default agent configuration */
+export const defaultAgentConfig = {
+    port: 3334,
+    dbPath: '.studio/studio.db',
+    enableRecording: true,
+    maxRecordedExchanges: 1000,
+    enableProfiling: true,
+    traceSampleRate: 1.0,
+    serviceName: 'expressots-app',
+};
+//# sourceMappingURL=index.js.map

package/dist/types/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/types/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AA0LH,kCAAkC;AAClC,MAAM,CAAC,MAAM,kBAAkB,GAAgB;IAC7C,IAAI,EAAE,IAAI;IACV,MAAM,EAAE,mBAAmB;IAC3B,eAAe,EAAE,IAAI;IACrB,oBAAoB,EAAE,IAAI;IAC1B,eAAe,EAAE,IAAI;IACrB,eAAe,EAAE,GAAG;IACpB,WAAW,EAAE,gBAAgB;CAC9B,CAAC"}