@frontmcp/plugins 0.4.1 → 0.5.1

package/src/codecall/codecall.types.js

@@ -0,0 +1,258 @@
+"use strict";
+// file: libs/plugins/src/codecall/codecall.types.ts
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.codeCallPluginOptionsSchema = exports.codeCallSidecarOptionsSchema = exports.codeCallEmbeddingOptionsSchema = exports.synonymExpansionConfigSchema = exports.embeddingStrategySchema = exports.codeCallDirectCallsOptionsSchema = exports.codeCallVmOptionsSchema = exports.codeCallVmPresetSchema = exports.codeCallModeSchema = void 0;
+const zod_1 = require("zod");
+// Helper schemas for filter functions with runtime validation
+const directCallsFilterSchema = zod_1.z.custom((val) => typeof val === 'function', {
+    message: 'filter must be a function with signature (tool: DirectCallsFilterToolInfo) => boolean',
+});
+const includeToolsFilterSchema = zod_1.z.custom((val) => typeof val === 'function', {
+    message: 'includeTools must be a function with signature (tool: IncludeToolsFilterToolInfo) => boolean',
+});
+// ===== Zod Schemas with Defaults =====
+exports.codeCallModeSchema = zod_1.z
+    .enum(['codecall_only', 'codecall_opt_in', 'metadata_driven'])
+    .default('codecall_only');
+exports.codeCallVmPresetSchema = zod_1.z.enum(['locked_down', 'secure', 'balanced', 'experimental']).default('secure');
+// Default values for VM options
+const DEFAULT_VM_OPTIONS = {
+    preset: 'secure',
+};
+exports.codeCallVmOptionsSchema = zod_1.z
+    .object({
+    /**
+     * CSP-like preset; see README.
+     * @default 'secure'
+     */
+    preset: exports.codeCallVmPresetSchema,
+    /**
+     * Timeout for script execution in milliseconds
+     * Defaults vary by preset
+     */
+    timeoutMs: zod_1.z.number().positive().optional(),
+    /**
+     * Allow loop constructs (for, while, do-while)
+     * Defaults vary by preset
+     */
+    allowLoops: zod_1.z.boolean().optional(),
+    /**
+     * Maximum number of steps (if applicable)
+     * Defaults vary by preset
+     */
+    maxSteps: zod_1.z.number().positive().optional(),
+    /**
+     * List of disabled builtin functions
+     * Defaults vary by preset
+     */
+    disabledBuiltins: zod_1.z.array(zod_1.z.string()).optional(),
+    /**
+     * List of disabled global variables
+     * Defaults vary by preset
+     */
+    disabledGlobals: zod_1.z.array(zod_1.z.string()).optional(),
+    /**
+     * Allow console.log/warn/error
+     * Defaults vary by preset
+     */
+    allowConsole: zod_1.z.boolean().optional(),
+})
+    .default(() => DEFAULT_VM_OPTIONS);
+exports.codeCallDirectCallsOptionsSchema = zod_1.z.object({
+    /**
+     * Enable/disable the `codecall.invoke` meta-tool.
+     */
+    enabled: zod_1.z.boolean(),
+    /**
+     * Optional allowlist of tool names.
+     */
+    allowedTools: zod_1.z.array(zod_1.z.string()).optional(),
+    /**
+     * Optional advanced filter function.
+     * Signature: (tool: DirectCallsFilterToolInfo) => boolean
+     */
+    filter: directCallsFilterSchema.optional(),
+});
+exports.embeddingStrategySchema = zod_1.z.enum(['tfidf', 'ml']).default('tfidf');
+// Synonym expansion configuration schema
+exports.synonymExpansionConfigSchema = zod_1.z
+    .object({
+    /**
+     * Enable/disable synonym expansion for TF-IDF search.
+     * When enabled, queries are expanded with synonyms to improve relevance.
+     * For example, "add user" will also match tools containing "create user".
+     * @default true
+     */
+    enabled: zod_1.z.boolean().default(true),
+    /**
+     * Additional synonym groups beyond the defaults.
+     * Each group is an array of related terms that should be treated as equivalent.
+     * @example [['customer', 'client', 'buyer'], ['order', 'purchase', 'transaction']]
+     */
+    additionalSynonyms: zod_1.z.array(zod_1.z.array(zod_1.z.string())).optional(),
+    /**
+     * Replace default synonyms entirely with additionalSynonyms.
+     * @default false
+     */
+    replaceDefaults: zod_1.z.boolean().default(false),
+    /**
+     * Maximum number of synonym expansions per term.
+     * Prevents query explosion for terms with many synonyms.
+     * @default 5
+     */
+    maxExpansionsPerTerm: zod_1.z.number().positive().default(5),
+})
+    .default({ enabled: true, replaceDefaults: false, maxExpansionsPerTerm: 5 });
+// Default values for embedding options
+const DEFAULT_EMBEDDING_OPTIONS = {
+    strategy: 'tfidf',
+    modelName: 'Xenova/all-MiniLM-L6-v2',
+    cacheDir: './.cache/transformers',
+    useHNSW: false,
+    synonymExpansion: { enabled: true, replaceDefaults: false, maxExpansionsPerTerm: 5 },
+};
+exports.codeCallEmbeddingOptionsSchema = zod_1.z
+    .object({
+    /**
+     * Embedding strategy to use for tool search
+     * - 'tfidf': Lightweight, synchronous TF-IDF based search (no ML models required)
+     * - 'ml': ML-based semantic search using transformers.js (better quality, requires model download)
+     * @default 'tfidf'
+     */
+    strategy: exports.embeddingStrategySchema,
+    /**
+     * Model name for ML-based embeddings (only used when strategy='ml')
+     * @default 'Xenova/all-MiniLM-L6-v2'
+     */
+    modelName: zod_1.z.string().default('Xenova/all-MiniLM-L6-v2'),
+    /**
+     * Cache directory for ML models (only used when strategy='ml')
+     * @default './.cache/transformers'
+     */
+    cacheDir: zod_1.z.string().default('./.cache/transformers'),
+    /**
+     * Enable HNSW index for faster search (only used when strategy='ml')
+     * When enabled, provides O(log n) search instead of O(n) brute-force
+     * @default false
+     */
+    useHNSW: zod_1.z.boolean().default(false),
+    /**
+     * Synonym expansion configuration for TF-IDF search.
+     * When enabled, queries like "add user" will match tools for "create user".
+     * Only applies when strategy is 'tfidf' (ML already handles semantic similarity).
+     * Set to false to disable, or provide a config object to customize.
+     * @default { enabled: true }
+     */
+    synonymExpansion: zod_1.z
+        .union([zod_1.z.literal(false), exports.synonymExpansionConfigSchema])
+        .optional()
+        .default({ enabled: true, replaceDefaults: false, maxExpansionsPerTerm: 5 }),
+})
+    .default(DEFAULT_EMBEDDING_OPTIONS);
+exports.codeCallSidecarOptionsSchema = zod_1.z
+    .object({
+    /**
+     * Enable pass-by-reference support via sidecar
+     * When enabled, large strings are automatically lifted to a sidecar
+     * and resolved at the callTool boundary
+     * @default false
+     */
+    enabled: zod_1.z.boolean().default(false),
+    /**
+     * Maximum total size of all stored references in bytes
+     * @default 16MB (from security level)
+     */
+    maxTotalSize: zod_1.z.number().positive().optional(),
+    /**
+     * Maximum size of a single reference in bytes
+     * @default 4MB (from security level)
+     */
+    maxReferenceSize: zod_1.z.number().positive().optional(),
+    /**
+     * Threshold in bytes to trigger extraction from source code
+     * Strings larger than this are lifted to the sidecar
+     * @default 64KB (from security level)
+     */
+    extractionThreshold: zod_1.z.number().positive().optional(),
+    /**
+     * Maximum expanded size when resolving references for tool calls
+     * @default 8MB (from security level)
+     */
+    maxResolvedSize: zod_1.z.number().positive().optional(),
+    /**
+     * Whether to allow composite handles from string concatenation
+     * If false, concatenating references throws an error
+     * @default false (strict mode)
+     */
+    allowComposites: zod_1.z.boolean().optional(),
+    /**
+     * Maximum script length (in characters) when sidecar is disabled
+     * Prevents large inline data from being embedded in script
+     * If null, no limit is enforced
+     * @default 64KB
+     */
+    maxScriptLengthWhenDisabled: zod_1.z
+        .number()
+        .positive()
+        .nullable()
+        .default(64 * 1024),
+})
+    .default(() => ({
+    enabled: false,
+    maxScriptLengthWhenDisabled: 64 * 1024,
+}));
+// Inner schema without the outer .default() - used for extracting input type
+const codeCallPluginOptionsObjectSchema = zod_1.z.object({
+    /**
+     * CodeCall mode
+     * @default 'codecall_only'
+     */
+    mode: exports.codeCallModeSchema,
+    /**
+     * Default number of tools to return in search results
+     * @default 8
+     */
+    topK: zod_1.z.number().positive().default(8),
+    /**
+     * Maximum number of tool definitions to include
+     * @default 8
+     */
+    maxDefinitions: zod_1.z.number().positive().default(8),
+    /**
+     * Optional filter function for including tools.
+     * Signature: (tool: IncludeToolsFilterToolInfo) => boolean
+     */
+    includeTools: includeToolsFilterSchema.optional(),
+    /**
+     * Direct calls configuration
+     */
+    directCalls: exports.codeCallDirectCallsOptionsSchema.optional(),
+    /**
+     * VM execution options
+     */
+    vm: exports.codeCallVmOptionsSchema,
+    /**
+     * Embedding configuration for tool search
+     */
+    embedding: exports.codeCallEmbeddingOptionsSchema,
+    /**
+     * Sidecar (pass-by-reference) configuration
+     * When enabled, large data is stored outside the sandbox and resolved at callTool boundary
+     */
+    sidecar: exports.codeCallSidecarOptionsSchema,
+});
+// Default values for plugin options
+const DEFAULT_PLUGIN_OPTIONS = {
+    mode: 'codecall_only',
+    topK: 8,
+    maxDefinitions: 8,
+    vm: DEFAULT_VM_OPTIONS,
+    embedding: DEFAULT_EMBEDDING_OPTIONS,
+    sidecar: {
+        enabled: false,
+        maxScriptLengthWhenDisabled: 64 * 1024,
+    },
+};
+// Full schema with default - used for parsing
+exports.codeCallPluginOptionsSchema = codeCallPluginOptionsObjectSchema.prefault(DEFAULT_PLUGIN_OPTIONS);
+//# sourceMappingURL=codecall.types.js.map

package/src/codecall/codecall.types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"codecall.types.js","sourceRoot":"","sources":["../../../src/codecall/codecall.types.ts"],"names":[],"mappings":";AAAA,oDAAoD;;;AAEpD,6BAAwB;AAmCxB,8DAA8D;AAC9D,MAAM,uBAAuB,GAAG,OAAC,CAAC,MAAM,CAAsB,CAAC,GAAG,EAAE,EAAE,CAAC,OAAO,GAAG,KAAK,UAAU,EAAE;IAChG,OAAO,EAAE,uFAAuF;CACjG,CAAC,CAAC;AAEH,MAAM,wBAAwB,GAAG,OAAC,CAAC,MAAM,CAAuB,CAAC,GAAG,EAAE,EAAE,CAAC,OAAO,GAAG,KAAK,UAAU,EAAE;IAClG,OAAO,EAAE,8FAA8F;CACxG,CAAC,CAAC;AAEH,wCAAwC;AAE3B,QAAA,kBAAkB,GAAG,OAAC;KAChC,IAAI,CAAC,CAAC,eAAe,EAAE,iBAAiB,EAAE,iBAAiB,CAAC,CAAC;KAC7D,OAAO,CAAC,eAAe,CAAC,CAAC;AAEf,QAAA,sBAAsB,GAAG,OAAC,CAAC,IAAI,CAAC,CAAC,aAAa,EAAE,QAAQ,EAAE,UAAU,EAAE,cAAc,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;AAEtH,gCAAgC;AAChC,MAAM,kBAAkB,GAAG;IACzB,MAAM,EAAE,QAAiB;CAC1B,CAAC;AAEW,QAAA,uBAAuB,GAAG,OAAC;KACrC,MAAM,CAAC;IACN;;;OAGG;IACH,MAAM,EAAE,8BAAsB;IAE9B;;;OAGG;IACH,SAAS,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,EAAE;IAE3C;;;OAGG;IACH,UAAU,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IAElC;;;OAGG;IACH,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,EAAE;IAE1C;;;OAGG;IACH,gBAAgB,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IAEhD;;;OAGG;IACH,eAAe,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IAE/C;;;OAGG;IACH,YAAY,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;CACrC,CAAC;KACD,OAAO,CAAC,GAAG,EAAE,CAAC,kBAAkB,CAAC,CAAC;AAExB,QAAA,gCAAgC,GAAG,OAAC,CAAC,MAAM,CAAC;IACvD;;OAEG;IACH,OAAO,EAAE,OAAC,CAAC,OAAO,EAAE;IAEpB;;OAEG;IACH,YAAY,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IAE5C;;;OAGG;IACH,MAAM,EAAE,uBAAuB,CAAC,QAAQ,EAAE;CAC3C,CAAC,CAAC;AAEU,QAAA,uBAAuB,GAAG,OAAC,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;AAEhF,yCAAyC;AAC5B,QAAA,4BAA4B,GAAG,OAAC;KAC1C,MAAM,CAAC;IACN;;;;;OAKG;IACH,OAAO,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC;IAElC;;;;OAIG;IACH,kBAAkB,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC,QAAQ,EAAE;IAE3D;;;OAGG;IACH,eAAe,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,KAAK,CAAC;IAE3C;;;;OAIG;IACH,oBAAoB,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,OAAO,CAAC,CAAC,CAAC;CACvD,CAAC;KACD,OAAO,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,eAAe,EAAE,KAAK,EAAE,oBAAoB,EAAE,CAAC,EAAE,CAAC,CAAC;AAE/E,uCAAuC;AACvC,MAAM,yBAAyB,GAAG;IAChC,QAAQ,EAAE,OAAgB;IAC1B,SAAS,EAAE,yBAAyB;IACpC,QAAQ,EAAE,uBAAuB;IACjC,OAAO,EAAE,KAAK;IACd,gBAAgB,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,eAAe,EAAE,KAAK,EAAE,oBAAoB,EAAE,CAAC,EAAE;CACrF,CAAC;AAEW,QAAA,8BAA8B,GAAG,OAAC;KAC5C,MAAM,CAAC;IACN;;;;;OAKG;IACH,QAAQ,EAAE,+BAAuB;IAEjC;;;OAGG;IACH,SAAS,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,OAAO,CAAC,yBAAyB,CAAC;IAExD;;;OAGG;IACH,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,OAAO,CAAC,uBAAuB,CAAC;IAErD;;;;OAIG;IACH,OAAO,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,KAAK,CAAC;IAEnC;;;;;;OAMG;IACH,gBAAgB,EAAE,OAAC;SAChB,KAAK,CAAC,CAAC,OAAC,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,oCAA4B,CAAC,CAAC;SACvD,QAAQ,EAAE;SACV,OAAO,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,eAAe,EAAE,KAAK,EAAE,oBAAoB,EAAE,CAAC,EAAE,CAAC;CAC/E,CAAC;KACD,OAAO,CAAC,yBAAyB,CAAC,CAAC;AAEzB,QAAA,4BAA4B,GAAG,OAAC;KAC1C,MAAM,CAAC;IACN;;;;;OAKG;IACH,OAAO,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,KAAK,CAAC;IAEnC;;;OAGG;IACH,YAAY,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,EAAE;IAE9C;;;OAGG;IACH,gBAAgB,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,EAAE;IAElD;;;;OAIG;IACH,mBAAmB,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,EAAE;IAErD;;;OAGG;IACH,eAAe,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,EAAE;IAEjD;;;;OAIG;IACH,eAAe,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IAEvC;;;;;OAKG;IACH,2BAA2B,EAAE,OAAC;SAC3B,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,EAAE;SACV,OAAO,CAAC,EAAE,GAAG,IAAI,CAAC;CACtB,CAAC;KACD,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC;IACd,OAAO,EAAE,KAAK;IACd,2BAA2B,EAAE,EAAE,GAAG,IAAI;CACvC,CAAC,CAAC,CAAC;AAEN,6EAA6E;AAC7E,MAAM,iCAAiC,GAAG,OAAC,CAAC,MAAM,CAAC;IACjD;;;OAGG;IACH,IAAI,EAAE,0BAAkB;IAExB;;;OAGG;IACH,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,OAAO,CAAC,CAAC,CAAC;IAEtC;;;OAGG;IACH,cAAc,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,OAAO,CAAC,CAAC,CAAC;IAEhD;;;OAGG;IACH,YAAY,EAAE,wBAAwB,CAAC,QAAQ,EAAE;IAEjD;;OAEG;IACH,WAAW,EAAE,wCAAgC,CAAC,QAAQ,EAAE;IAExD;;OAEG;IACH,EAAE,EAAE,+BAAuB;IAE3B;;OAEG;IACH,SAAS,EAAE,sCAA8B;IAEzC;;;OAGG;IACH,OAAO,EAAE,oCAA4B;CACtC,CAAC,CAAC;AAEH,oCAAoC;AACpC,MAAM,sBAAsB,GAAG;IAC7B,IAAI,EAAE,eAAwB;IAC9B,IAAI,EAAE,CAAC;IACP,cAAc,EAAE,CAAC;IACjB,EAAE,EAAE,kBAAkB;IACtB,SAAS,EAAE,yBAAyB;IACpC,OAAO,EAAE;QACP,OAAO,EAAE,KAAK;QACd,2BAA2B,EAAE,EAAE,GAAG,IAAI;KACvC;CACF,CAAC;AAEF,8CAA8C;AACjC,QAAA,2BAA2B,GAAG,iCAAiC,CAAC,QAAQ,CAAC,sBAAsB,CAAC,CAAC","sourcesContent":["// file: libs/plugins/src/codecall/codecall.types.ts\n\nimport { z } from 'zod';\n\n// ===== Filter Function Types =====\n\n/**\n * Tool info passed to the directCalls filter function\n */\nexport interface DirectCallsFilterToolInfo {\n  name: string;\n  appId?: string;\n  source?: string;\n  tags?: string[];\n}\n\n/**\n * Tool info passed to the includeTools filter function\n */\nexport interface IncludeToolsFilterToolInfo {\n  name: string;\n  appId?: string;\n  source?: string;\n  description?: string;\n  tags?: string[];\n}\n\n/**\n * Function type for directCalls filter\n */\nexport type DirectCallsFilterFn = (tool: DirectCallsFilterToolInfo) => boolean;\n\n/**\n * Function type for includeTools filter\n */\nexport type IncludeToolsFilterFn = (tool: IncludeToolsFilterToolInfo) => boolean;\n\n// Helper schemas for filter functions with runtime validation\nconst directCallsFilterSchema = z.custom<DirectCallsFilterFn>((val) => typeof val === 'function', {\n  message: 'filter must be a function with signature (tool: DirectCallsFilterToolInfo) => boolean',\n});\n\nconst includeToolsFilterSchema = z.custom<IncludeToolsFilterFn>((val) => typeof val === 'function', {\n  message: 'includeTools must be a function with signature (tool: IncludeToolsFilterToolInfo) => boolean',\n});\n\n// ===== Zod Schemas with Defaults =====\n\nexport const codeCallModeSchema = z\n  .enum(['codecall_only', 'codecall_opt_in', 'metadata_driven'])\n  .default('codecall_only');\n\nexport const codeCallVmPresetSchema = z.enum(['locked_down', 'secure', 'balanced', 'experimental']).default('secure');\n\n// Default values for VM options\nconst DEFAULT_VM_OPTIONS = {\n  preset: 'secure' as const,\n};\n\nexport const codeCallVmOptionsSchema = z\n  .object({\n    /**\n     * CSP-like preset; see README.\n     * @default 'secure'\n     */\n    preset: codeCallVmPresetSchema,\n\n    /**\n     * Timeout for script execution in milliseconds\n     * Defaults vary by preset\n     */\n    timeoutMs: z.number().positive().optional(),\n\n    /**\n     * Allow loop constructs (for, while, do-while)\n     * Defaults vary by preset\n     */\n    allowLoops: z.boolean().optional(),\n\n    /**\n     * Maximum number of steps (if applicable)\n     * Defaults vary by preset\n     */\n    maxSteps: z.number().positive().optional(),\n\n    /**\n     * List of disabled builtin functions\n     * Defaults vary by preset\n     */\n    disabledBuiltins: z.array(z.string()).optional(),\n\n    /**\n     * List of disabled global variables\n     * Defaults vary by preset\n     */\n    disabledGlobals: z.array(z.string()).optional(),\n\n    /**\n     * Allow console.log/warn/error\n     * Defaults vary by preset\n     */\n    allowConsole: z.boolean().optional(),\n  })\n  .default(() => DEFAULT_VM_OPTIONS);\n\nexport const codeCallDirectCallsOptionsSchema = z.object({\n  /**\n   * Enable/disable the `codecall.invoke` meta-tool.\n   */\n  enabled: z.boolean(),\n\n  /**\n   * Optional allowlist of tool names.\n   */\n  allowedTools: z.array(z.string()).optional(),\n\n  /**\n   * Optional advanced filter function.\n   * Signature: (tool: DirectCallsFilterToolInfo) => boolean\n   */\n  filter: directCallsFilterSchema.optional(),\n});\n\nexport const embeddingStrategySchema = z.enum(['tfidf', 'ml']).default('tfidf');\n\n// Synonym expansion configuration schema\nexport const synonymExpansionConfigSchema = z\n  .object({\n    /**\n     * Enable/disable synonym expansion for TF-IDF search.\n     * When enabled, queries are expanded with synonyms to improve relevance.\n     * For example, \"add user\" will also match tools containing \"create user\".\n     * @default true\n     */\n    enabled: z.boolean().default(true),\n\n    /**\n     * Additional synonym groups beyond the defaults.\n     * Each group is an array of related terms that should be treated as equivalent.\n     * @example [['customer', 'client', 'buyer'], ['order', 'purchase', 'transaction']]\n     */\n    additionalSynonyms: z.array(z.array(z.string())).optional(),\n\n    /**\n     * Replace default synonyms entirely with additionalSynonyms.\n     * @default false\n     */\n    replaceDefaults: z.boolean().default(false),\n\n    /**\n     * Maximum number of synonym expansions per term.\n     * Prevents query explosion for terms with many synonyms.\n     * @default 5\n     */\n    maxExpansionsPerTerm: z.number().positive().default(5),\n  })\n  .default({ enabled: true, replaceDefaults: false, maxExpansionsPerTerm: 5 });\n\n// Default values for embedding options\nconst DEFAULT_EMBEDDING_OPTIONS = {\n  strategy: 'tfidf' as const,\n  modelName: 'Xenova/all-MiniLM-L6-v2',\n  cacheDir: './.cache/transformers',\n  useHNSW: false,\n  synonymExpansion: { enabled: true, replaceDefaults: false, maxExpansionsPerTerm: 5 },\n};\n\nexport const codeCallEmbeddingOptionsSchema = z\n  .object({\n    /**\n     * Embedding strategy to use for tool search\n     * - 'tfidf': Lightweight, synchronous TF-IDF based search (no ML models required)\n     * - 'ml': ML-based semantic search using transformers.js (better quality, requires model download)\n     * @default 'tfidf'\n     */\n    strategy: embeddingStrategySchema,\n\n    /**\n     * Model name for ML-based embeddings (only used when strategy='ml')\n     * @default 'Xenova/all-MiniLM-L6-v2'\n     */\n    modelName: z.string().default('Xenova/all-MiniLM-L6-v2'),\n\n    /**\n     * Cache directory for ML models (only used when strategy='ml')\n     * @default './.cache/transformers'\n     */\n    cacheDir: z.string().default('./.cache/transformers'),\n\n    /**\n     * Enable HNSW index for faster search (only used when strategy='ml')\n     * When enabled, provides O(log n) search instead of O(n) brute-force\n     * @default false\n     */\n    useHNSW: z.boolean().default(false),\n\n    /**\n     * Synonym expansion configuration for TF-IDF search.\n     * When enabled, queries like \"add user\" will match tools for \"create user\".\n     * Only applies when strategy is 'tfidf' (ML already handles semantic similarity).\n     * Set to false to disable, or provide a config object to customize.\n     * @default { enabled: true }\n     */\n    synonymExpansion: z\n      .union([z.literal(false), synonymExpansionConfigSchema])\n      .optional()\n      .default({ enabled: true, replaceDefaults: false, maxExpansionsPerTerm: 5 }),\n  })\n  .default(DEFAULT_EMBEDDING_OPTIONS);\n\nexport const codeCallSidecarOptionsSchema = z\n  .object({\n    /**\n     * Enable pass-by-reference support via sidecar\n     * When enabled, large strings are automatically lifted to a sidecar\n     * and resolved at the callTool boundary\n     * @default false\n     */\n    enabled: z.boolean().default(false),\n\n    /**\n     * Maximum total size of all stored references in bytes\n     * @default 16MB (from security level)\n     */\n    maxTotalSize: z.number().positive().optional(),\n\n    /**\n     * Maximum size of a single reference in bytes\n     * @default 4MB (from security level)\n     */\n    maxReferenceSize: z.number().positive().optional(),\n\n    /**\n     * Threshold in bytes to trigger extraction from source code\n     * Strings larger than this are lifted to the sidecar\n     * @default 64KB (from security level)\n     */\n    extractionThreshold: z.number().positive().optional(),\n\n    /**\n     * Maximum expanded size when resolving references for tool calls\n     * @default 8MB (from security level)\n     */\n    maxResolvedSize: z.number().positive().optional(),\n\n    /**\n     * Whether to allow composite handles from string concatenation\n     * If false, concatenating references throws an error\n     * @default false (strict mode)\n     */\n    allowComposites: z.boolean().optional(),\n\n    /**\n     * Maximum script length (in characters) when sidecar is disabled\n     * Prevents large inline data from being embedded in script\n     * If null, no limit is enforced\n     * @default 64KB\n     */\n    maxScriptLengthWhenDisabled: z\n      .number()\n      .positive()\n      .nullable()\n      .default(64 * 1024),\n  })\n  .default(() => ({\n    enabled: false,\n    maxScriptLengthWhenDisabled: 64 * 1024,\n  }));\n\n// Inner schema without the outer .default() - used for extracting input type\nconst codeCallPluginOptionsObjectSchema = z.object({\n  /**\n   * CodeCall mode\n   * @default 'codecall_only'\n   */\n  mode: codeCallModeSchema,\n\n  /**\n   * Default number of tools to return in search results\n   * @default 8\n   */\n  topK: z.number().positive().default(8),\n\n  /**\n   * Maximum number of tool definitions to include\n   * @default 8\n   */\n  maxDefinitions: z.number().positive().default(8),\n\n  /**\n   * Optional filter function for including tools.\n   * Signature: (tool: IncludeToolsFilterToolInfo) => boolean\n   */\n  includeTools: includeToolsFilterSchema.optional(),\n\n  /**\n   * Direct calls configuration\n   */\n  directCalls: codeCallDirectCallsOptionsSchema.optional(),\n\n  /**\n   * VM execution options\n   */\n  vm: codeCallVmOptionsSchema,\n\n  /**\n   * Embedding configuration for tool search\n   */\n  embedding: codeCallEmbeddingOptionsSchema,\n\n  /**\n   * Sidecar (pass-by-reference) configuration\n   * When enabled, large data is stored outside the sandbox and resolved at callTool boundary\n   */\n  sidecar: codeCallSidecarOptionsSchema,\n});\n\n// Default values for plugin options\nconst DEFAULT_PLUGIN_OPTIONS = {\n  mode: 'codecall_only' as const,\n  topK: 8,\n  maxDefinitions: 8,\n  vm: DEFAULT_VM_OPTIONS,\n  embedding: DEFAULT_EMBEDDING_OPTIONS,\n  sidecar: {\n    enabled: false,\n    maxScriptLengthWhenDisabled: 64 * 1024,\n  },\n};\n\n// Full schema with default - used for parsing\nexport const codeCallPluginOptionsSchema = codeCallPluginOptionsObjectSchema.prefault(DEFAULT_PLUGIN_OPTIONS);\n\n// ===== TypeScript Types =====\n\n// Output types (after parsing, with defaults applied) - use for internal plugin logic\nexport type CodeCallMode = z.infer<typeof codeCallModeSchema>;\nexport type CodeCallVmPreset = z.infer<typeof codeCallVmPresetSchema>;\nexport type CodeCallVmOptions = z.infer<typeof codeCallVmOptionsSchema>;\nexport type CodeCallDirectCallsOptions = z.infer<typeof codeCallDirectCallsOptionsSchema>;\nexport type EmbeddingStrategy = z.infer<typeof embeddingStrategySchema>;\nexport type SynonymExpansionConfig = z.infer<typeof synonymExpansionConfigSchema>;\nexport type CodeCallSidecarOptions = z.infer<typeof codeCallSidecarOptionsSchema>;\n\nexport type CodeCallEmbeddingOptions = z.infer<typeof codeCallEmbeddingOptionsSchema>;\nexport type CodeCallEmbeddingOptionsInput = z.input<typeof codeCallEmbeddingOptionsSchema>;\n\n/**\n * Resolved options type (after parsing with defaults applied).\n * Use this for internal plugin logic where all defaults are guaranteed.\n */\nexport type CodeCallPluginOptions = z.infer<typeof codeCallPluginOptionsSchema>;\n\n/**\n * Input options type (what users provide to init()).\n * All fields with defaults are optional.\n */\nexport type CodeCallPluginOptionsInput = z.input<typeof codeCallPluginOptionsObjectSchema>;\n\n/**\n * Per-tool metadata used by CodeCall.\n * This maps to `metadata.codecall` on tools.\n */\nexport interface CodeCallToolMetadata {\n  /**\n   * If true, this tool stays visible in `list_tools`\n   * even when CodeCall is hiding most tools.\n   */\n  visibleInListTools?: boolean;\n\n  /**\n   * Whether this tool can be used via CodeCall.\n   * Semantics depend on CodeCallMode (see README).\n   */\n  enabledInCodeCall?: boolean;\n\n  /** Optional extra indexing hints */\n  appId?: string;\n  source?: string;\n  tags?: string[];\n}\n\n// ----- meta-tool contracts -----\n\nexport type CodeCallSearchInput = {\n  query: string;\n  topK?: number;\n  filter?: {\n    appIds?: string[];\n    tags?: string[];\n    includeOpenApi?: boolean;\n    includeInline?: boolean;\n  };\n};\n\nexport type CodeCallSearchResult = {\n  tools: {\n    name: string;\n    description: string;\n    appId?: string;\n    source?: string;\n    score: number;\n  }[];\n};\n\nexport type CodeCallDescribeInput = {\n  tools: string[];\n  max?: number;\n};\n\nexport type CodeCallDescribeResult = {\n  tools: {\n    name: string;\n    description: string;\n    inputSchema: unknown;\n    outputSchema?: unknown | null;\n    examples?: {\n      input: unknown;\n      output?: unknown;\n    }[];\n  }[];\n};\n\nexport type CodeCallExecuteInput = {\n  script: string;\n  /**\n   * Arbitrary, readonly context exposed as `codecallContext`.\n   */\n  context?: Record<string, unknown>;\n};\n\n// ---- global FrontMCP metadata extension ----\n\ndeclare global {\n  interface ExtendFrontMcpToolMetadata {\n    /**\n     * CodeCall-specific metadata, attached via `@Tool({ metadata: { codecall: ... } })`\n     * or whatever your decorator mapping is.\n     */\n    codecall?: CodeCallToolMetadata;\n  }\n}\n"]}

package/src/codecall/errors/index.d.ts

@@ -0,0 +1 @@
+export * from './tool-call.errors';

package/src/codecall/errors/index.js

@@ -0,0 +1,6 @@
+"use strict";
+// file: libs/plugins/src/codecall/errors/index.ts
+Object.defineProperty(exports, "__esModule", { value: true });
+const tslib_1 = require("tslib");
+tslib_1.__exportStar(require("./tool-call.errors"), exports);
+//# sourceMappingURL=index.js.map

package/src/codecall/errors/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/codecall/errors/index.ts"],"names":[],"mappings":";AAAA,kDAAkD;;;AAElD,6DAAmC","sourcesContent":["// file: libs/plugins/src/codecall/errors/index.ts\n\nexport * from './tool-call.errors';\n"]}

package/src/codecall/errors/tool-call.errors.d.ts

@@ -0,0 +1,79 @@
+/**
+ * Error codes exposed to AgentScript via result-based error handling.
+ * These are the ONLY error codes scripts can see - no internal details.
+ */
+export declare const TOOL_CALL_ERROR_CODES: {
+    readonly NOT_FOUND: "NOT_FOUND";
+    readonly VALIDATION: "VALIDATION";
+    readonly EXECUTION: "EXECUTION";
+    readonly TIMEOUT: "TIMEOUT";
+    readonly ACCESS_DENIED: "ACCESS_DENIED";
+    readonly SELF_REFERENCE: "SELF_REFERENCE";
+};
+export type ToolCallErrorCode = (typeof TOOL_CALL_ERROR_CODES)[keyof typeof TOOL_CALL_ERROR_CODES];
+/**
+ * Sanitized error structure exposed to AgentScript.
+ * Contains NO stack traces, NO internal details, NO sensitive information.
+ */
+export interface ToolCallError {
+    readonly code: ToolCallErrorCode;
+    readonly message: string;
+    readonly toolName: string;
+}
+/**
+ * Result type for callTool when throwOnError is false.
+ */
+export type ToolCallResult<T> = {
+    success: true;
+    data: T;
+} | {
+    success: false;
+    error: ToolCallError;
+};
+/**
+ * Options for callTool behavior.
+ */
+export interface CallToolOptions {
+    /**
+     * When true (default), errors are thrown and can be caught.
+     * When false, errors are returned as { success: false, error: ToolCallError }.
+     *
+     * SECURITY: Even when throwOnError is true, only sanitized errors are thrown.
+     * Internal security guard errors are NEVER exposed to scripts.
+     */
+    throwOnError?: boolean;
+}
+/**
+ * Creates a sanitized ToolCallError for script consumption.
+ * This function ensures no internal details leak to AgentScript.
+ */
+export declare function createToolCallError(code: ToolCallErrorCode, toolName: string, rawMessage?: string): ToolCallError;
+/**
+ * FATAL: Self-reference attack detected.
+ * This error is thrown internally and causes immediate execution termination.
+ * The script NEVER sees this error - it only sees the sanitized version.
+ */
+export declare class SelfReferenceError extends Error {
+    readonly code: "SELF_REFERENCE";
+    readonly toolName: string;
+    constructor(toolName: string);
+}
+/**
+ * Internal error for tool access denial.
+ * Only the sanitized version is exposed to scripts.
+ */
+export declare class ToolAccessDeniedError extends Error {
+    readonly code: "ACCESS_DENIED";
+    readonly toolName: string;
+    readonly reason: string;
+    constructor(toolName: string, reason: string);
+}
+/**
+ * Internal error for tool not found.
+ * Only the sanitized version is exposed to scripts.
+ */
+export declare class ToolNotFoundError extends Error {
+    readonly code: "NOT_FOUND";
+    readonly toolName: string;
+    constructor(toolName: string);
+}

package/src/codecall/errors/tool-call.errors.js

@@ -0,0 +1,119 @@
+"use strict";
+// file: libs/plugins/src/codecall/errors/tool-call.errors.ts
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ToolNotFoundError = exports.ToolAccessDeniedError = exports.SelfReferenceError = exports.TOOL_CALL_ERROR_CODES = void 0;
+exports.createToolCallError = createToolCallError;
+/**
+ * Error codes exposed to AgentScript via result-based error handling.
+ * These are the ONLY error codes scripts can see - no internal details.
+ */
+exports.TOOL_CALL_ERROR_CODES = {
+    NOT_FOUND: 'NOT_FOUND',
+    VALIDATION: 'VALIDATION',
+    EXECUTION: 'EXECUTION',
+    TIMEOUT: 'TIMEOUT',
+    ACCESS_DENIED: 'ACCESS_DENIED',
+    SELF_REFERENCE: 'SELF_REFERENCE',
+};
+/**
+ * Creates a sanitized ToolCallError for script consumption.
+ * This function ensures no internal details leak to AgentScript.
+ */
+function createToolCallError(code, toolName, rawMessage) {
+    // Sanitize message - remove any potentially sensitive information
+    const sanitizedMessage = getSanitizedMessage(code, toolName, rawMessage);
+    return Object.freeze({
+        code,
+        message: sanitizedMessage,
+        toolName,
+    });
+}
+/**
+ * Get a safe, generic message for each error code.
+ * Internal details are NEVER included.
+ */
+function getSanitizedMessage(code, toolName, rawMessage) {
+    switch (code) {
+        case exports.TOOL_CALL_ERROR_CODES.NOT_FOUND:
+            return `Tool "${toolName}" was not found`;
+        case exports.TOOL_CALL_ERROR_CODES.VALIDATION:
+            // For validation, we can include a sanitized version of the message
+            // but strip any internal paths or stack traces
+            return rawMessage ? sanitizeValidationMessage(rawMessage) : `Input validation failed for tool "${toolName}"`;
+        case exports.TOOL_CALL_ERROR_CODES.EXECUTION:
+            return `Tool "${toolName}" execution failed`;
+        case exports.TOOL_CALL_ERROR_CODES.TIMEOUT:
+            return `Tool "${toolName}" execution timed out`;
+        case exports.TOOL_CALL_ERROR_CODES.ACCESS_DENIED:
+            return `Access denied for tool "${toolName}"`;
+        case exports.TOOL_CALL_ERROR_CODES.SELF_REFERENCE:
+            return `Cannot call CodeCall tools from within AgentScript`;
+        default:
+            return `An error occurred while calling "${toolName}"`;
+    }
+}
+/**
+ * Sanitize validation error messages to remove internal details.
+ */
+function sanitizeValidationMessage(message) {
+    // Remove file paths (Unix and Windows)
+    let sanitized = message.replace(/(?:\/[\w.-]+)+|(?:[A-Za-z]:\\[\w\\.-]+)+/g, '[path]');
+    // Remove line numbers and stack traces
+    sanitized = sanitized.replace(/\bat line \d+/gi, '');
+    sanitized = sanitized.replace(/\bline \d+/gi, '');
+    sanitized = sanitized.replace(/:\d+:\d+/g, '');
+    // Remove "at" stack trace lines
+    sanitized = sanitized.replace(/\n\s*at .*/g, '');
+    // Truncate if too long (prevent information disclosure via long messages)
+    if (sanitized.length > 200) {
+        sanitized = sanitized.substring(0, 200) + '...';
+    }
+    return sanitized.trim();
+}
+/**
+ * FATAL: Self-reference attack detected.
+ * This error is thrown internally and causes immediate execution termination.
+ * The script NEVER sees this error - it only sees the sanitized version.
+ */
+class SelfReferenceError extends Error {
+    code = exports.TOOL_CALL_ERROR_CODES.SELF_REFERENCE;
+    toolName;
+    constructor(toolName) {
+        super(`Self-reference attack: Attempted to call CodeCall tool "${toolName}" from within AgentScript`);
+        this.name = 'SelfReferenceError';
+        this.toolName = toolName;
+        Object.freeze(this);
+    }
+}
+exports.SelfReferenceError = SelfReferenceError;
+/**
+ * Internal error for tool access denial.
+ * Only the sanitized version is exposed to scripts.
+ */
+class ToolAccessDeniedError extends Error {
+    code = exports.TOOL_CALL_ERROR_CODES.ACCESS_DENIED;
+    toolName;
+    reason;
+    constructor(toolName, reason) {
+        super(`Access denied for tool "${toolName}": ${reason}`);
+        this.name = 'ToolAccessDeniedError';
+        this.toolName = toolName;
+        this.reason = reason;
+    }
+}
+exports.ToolAccessDeniedError = ToolAccessDeniedError;
+/**
+ * Internal error for tool not found.
+ * Only the sanitized version is exposed to scripts.
+ */
+class ToolNotFoundError extends Error {
+    code = exports.TOOL_CALL_ERROR_CODES.NOT_FOUND;
+    toolName;
+    constructor(toolName) {
+        super(`Tool "${toolName}" not found`);
+        this.name = 'ToolNotFoundError';
+        this.toolName = toolName;
+    }
+}
+exports.ToolNotFoundError = ToolNotFoundError;
+//# sourceMappingURL=tool-call.errors.js.map

package/src/codecall/errors/tool-call.errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"tool-call.errors.js","sourceRoot":"","sources":["../../../../src/codecall/errors/tool-call.errors.ts"],"names":[],"mappings":";AAAA,6DAA6D;;;AAkD7D,kDASC;AAzDD;;;GAGG;AACU,QAAA,qBAAqB,GAAG;IACnC,SAAS,EAAE,WAAW;IACtB,UAAU,EAAE,YAAY;IACxB,SAAS,EAAE,WAAW;IACtB,OAAO,EAAE,SAAS;IAClB,aAAa,EAAE,eAAe;IAC9B,cAAc,EAAE,gBAAgB;CACxB,CAAC;AAiCX;;;GAGG;AACH,SAAgB,mBAAmB,CAAC,IAAuB,EAAE,QAAgB,EAAE,UAAmB;IAChG,kEAAkE;IAClE,MAAM,gBAAgB,GAAG,mBAAmB,CAAC,IAAI,EAAE,QAAQ,EAAE,UAAU,CAAC,CAAC;IAEzE,OAAO,MAAM,CAAC,MAAM,CAAC;QACnB,IAAI;QACJ,OAAO,EAAE,gBAAgB;QACzB,QAAQ;KACT,CAAC,CAAC;AACL,CAAC;AAED;;;GAGG;AACH,SAAS,mBAAmB,CAAC,IAAuB,EAAE,QAAgB,EAAE,UAAmB;IACzF,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,6BAAqB,CAAC,SAAS;YAClC,OAAO,SAAS,QAAQ,iBAAiB,CAAC;QAE5C,KAAK,6BAAqB,CAAC,UAAU;YACnC,oEAAoE;YACpE,+CAA+C;YAC/C,OAAO,UAAU,CAAC,CAAC,CAAC,yBAAyB,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,qCAAqC,QAAQ,GAAG,CAAC;QAE/G,KAAK,6BAAqB,CAAC,SAAS;YAClC,OAAO,SAAS,QAAQ,oBAAoB,CAAC;QAE/C,KAAK,6BAAqB,CAAC,OAAO;YAChC,OAAO,SAAS,QAAQ,uBAAuB,CAAC;QAElD,KAAK,6BAAqB,CAAC,aAAa;YACtC,OAAO,2BAA2B,QAAQ,GAAG,CAAC;QAEhD,KAAK,6BAAqB,CAAC,cAAc;YACvC,OAAO,oDAAoD,CAAC;QAE9D;YACE,OAAO,oCAAoC,QAAQ,GAAG,CAAC;IAC3D,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,yBAAyB,CAAC,OAAe;IAChD,uCAAuC;IACvC,IAAI,SAAS,GAAG,OAAO,CAAC,OAAO,CAAC,2CAA2C,EAAE,QAAQ,CAAC,CAAC;IAEvF,uCAAuC;IACvC,SAAS,GAAG,SAAS,CAAC,OAAO,CAAC,iBAAiB,EAAE,EAAE,CAAC,CAAC;IACrD,SAAS,GAAG,SAAS,CAAC,OAAO,CAAC,cAAc,EAAE,EAAE,CAAC,CAAC;IAClD,SAAS,GAAG,SAAS,CAAC,OAAO,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC;IAE/C,gCAAgC;IAChC,SAAS,GAAG,SAAS,CAAC,OAAO,CAAC,aAAa,EAAE,EAAE,CAAC,CAAC;IAEjD,0EAA0E;IAC1E,IAAI,SAAS,CAAC,MAAM,GAAG,GAAG,EAAE,CAAC;QAC3B,SAAS,GAAG,SAAS,CAAC,SAAS,CAAC,CAAC,EAAE,GAAG,CAAC,GAAG,KAAK,CAAC;IAClD,CAAC;IAED,OAAO,SAAS,CAAC,IAAI,EAAE,CAAC;AAC1B,CAAC;AAED;;;;GAIG;AACH,MAAa,kBAAmB,SAAQ,KAAK;IAClC,IAAI,GAAG,6BAAqB,CAAC,cAAc,CAAC;IAC5C,QAAQ,CAAS;IAE1B,YAAY,QAAgB;QAC1B,KAAK,CAAC,2DAA2D,QAAQ,2BAA2B,CAAC,CAAC;QACtG,IAAI,CAAC,IAAI,GAAG,oBAAoB,CAAC;QACjC,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;IACtB,CAAC;CACF;AAVD,gDAUC;AAED;;;GAGG;AACH,MAAa,qBAAsB,SAAQ,KAAK;IACrC,IAAI,GAAG,6BAAqB,CAAC,aAAa,CAAC;IAC3C,QAAQ,CAAS;IACjB,MAAM,CAAS;IAExB,YAAY,QAAgB,EAAE,MAAc;QAC1C,KAAK,CAAC,2BAA2B,QAAQ,MAAM,MAAM,EAAE,CAAC,CAAC;QACzD,IAAI,CAAC,IAAI,GAAG,uBAAuB,CAAC;QACpC,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACvB,CAAC;CACF;AAXD,sDAWC;AAED;;;GAGG;AACH,MAAa,iBAAkB,SAAQ,KAAK;IACjC,IAAI,GAAG,6BAAqB,CAAC,SAAS,CAAC;IACvC,QAAQ,CAAS;IAE1B,YAAY,QAAgB;QAC1B,KAAK,CAAC,SAAS,QAAQ,aAAa,CAAC,CAAC;QACtC,IAAI,CAAC,IAAI,GAAG,mBAAmB,CAAC;QAChC,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;IAC3B,CAAC;CACF;AATD,8CASC","sourcesContent":["// file: libs/plugins/src/codecall/errors/tool-call.errors.ts\n\n/**\n * Error codes exposed to AgentScript via result-based error handling.\n * These are the ONLY error codes scripts can see - no internal details.\n */\nexport const TOOL_CALL_ERROR_CODES = {\n  NOT_FOUND: 'NOT_FOUND',\n  VALIDATION: 'VALIDATION',\n  EXECUTION: 'EXECUTION',\n  TIMEOUT: 'TIMEOUT',\n  ACCESS_DENIED: 'ACCESS_DENIED',\n  SELF_REFERENCE: 'SELF_REFERENCE',\n} as const;\n\nexport type ToolCallErrorCode = (typeof TOOL_CALL_ERROR_CODES)[keyof typeof TOOL_CALL_ERROR_CODES];\n\n/**\n * Sanitized error structure exposed to AgentScript.\n * Contains NO stack traces, NO internal details, NO sensitive information.\n */\nexport interface ToolCallError {\n  readonly code: ToolCallErrorCode;\n  readonly message: string;\n  readonly toolName: string;\n}\n\n/**\n * Result type for callTool when throwOnError is false.\n */\nexport type ToolCallResult<T> = { success: true; data: T } | { success: false; error: ToolCallError };\n\n/**\n * Options for callTool behavior.\n */\nexport interface CallToolOptions {\n  /**\n   * When true (default), errors are thrown and can be caught.\n   * When false, errors are returned as { success: false, error: ToolCallError }.\n   *\n   * SECURITY: Even when throwOnError is true, only sanitized errors are thrown.\n   * Internal security guard errors are NEVER exposed to scripts.\n   */\n  throwOnError?: boolean;\n}\n\n/**\n * Creates a sanitized ToolCallError for script consumption.\n * This function ensures no internal details leak to AgentScript.\n */\nexport function createToolCallError(code: ToolCallErrorCode, toolName: string, rawMessage?: string): ToolCallError {\n  // Sanitize message - remove any potentially sensitive information\n  const sanitizedMessage = getSanitizedMessage(code, toolName, rawMessage);\n\n  return Object.freeze({\n    code,\n    message: sanitizedMessage,\n    toolName,\n  });\n}\n\n/**\n * Get a safe, generic message for each error code.\n * Internal details are NEVER included.\n */\nfunction getSanitizedMessage(code: ToolCallErrorCode, toolName: string, rawMessage?: string): string {\n  switch (code) {\n    case TOOL_CALL_ERROR_CODES.NOT_FOUND:\n      return `Tool \"${toolName}\" was not found`;\n\n    case TOOL_CALL_ERROR_CODES.VALIDATION:\n      // For validation, we can include a sanitized version of the message\n      // but strip any internal paths or stack traces\n      return rawMessage ? sanitizeValidationMessage(rawMessage) : `Input validation failed for tool \"${toolName}\"`;\n\n    case TOOL_CALL_ERROR_CODES.EXECUTION:\n      return `Tool \"${toolName}\" execution failed`;\n\n    case TOOL_CALL_ERROR_CODES.TIMEOUT:\n      return `Tool \"${toolName}\" execution timed out`;\n\n    case TOOL_CALL_ERROR_CODES.ACCESS_DENIED:\n      return `Access denied for tool \"${toolName}\"`;\n\n    case TOOL_CALL_ERROR_CODES.SELF_REFERENCE:\n      return `Cannot call CodeCall tools from within AgentScript`;\n\n    default:\n      return `An error occurred while calling \"${toolName}\"`;\n  }\n}\n\n/**\n * Sanitize validation error messages to remove internal details.\n */\nfunction sanitizeValidationMessage(message: string): string {\n  // Remove file paths (Unix and Windows)\n  let sanitized = message.replace(/(?:\\/[\\w.-]+)+|(?:[A-Za-z]:\\\\[\\w\\\\.-]+)+/g, '[path]');\n\n  // Remove line numbers and stack traces\n  sanitized = sanitized.replace(/\\bat line \\d+/gi, '');\n  sanitized = sanitized.replace(/\\bline \\d+/gi, '');\n  sanitized = sanitized.replace(/:\\d+:\\d+/g, '');\n\n  // Remove \"at\" stack trace lines\n  sanitized = sanitized.replace(/\\n\\s*at .*/g, '');\n\n  // Truncate if too long (prevent information disclosure via long messages)\n  if (sanitized.length > 200) {\n    sanitized = sanitized.substring(0, 200) + '...';\n  }\n\n  return sanitized.trim();\n}\n\n/**\n * FATAL: Self-reference attack detected.\n * This error is thrown internally and causes immediate execution termination.\n * The script NEVER sees this error - it only sees the sanitized version.\n */\nexport class SelfReferenceError extends Error {\n  readonly code = TOOL_CALL_ERROR_CODES.SELF_REFERENCE;\n  readonly toolName: string;\n\n  constructor(toolName: string) {\n    super(`Self-reference attack: Attempted to call CodeCall tool \"${toolName}\" from within AgentScript`);\n    this.name = 'SelfReferenceError';\n    this.toolName = toolName;\n    Object.freeze(this);\n  }\n}\n\n/**\n * Internal error for tool access denial.\n * Only the sanitized version is exposed to scripts.\n */\nexport class ToolAccessDeniedError extends Error {\n  readonly code = TOOL_CALL_ERROR_CODES.ACCESS_DENIED;\n  readonly toolName: string;\n  readonly reason: string;\n\n  constructor(toolName: string, reason: string) {\n    super(`Access denied for tool \"${toolName}\": ${reason}`);\n    this.name = 'ToolAccessDeniedError';\n    this.toolName = toolName;\n    this.reason = reason;\n  }\n}\n\n/**\n * Internal error for tool not found.\n * Only the sanitized version is exposed to scripts.\n */\nexport class ToolNotFoundError extends Error {\n  readonly code = TOOL_CALL_ERROR_CODES.NOT_FOUND;\n  readonly toolName: string;\n\n  constructor(toolName: string) {\n    super(`Tool \"${toolName}\" not found`);\n    this.name = 'ToolNotFoundError';\n    this.toolName = toolName;\n  }\n}\n"]}

package/src/codecall/index.d.ts

@@ -0,0 +1,2 @@
+export { default } from './codecall.plugin';
+export * from './codecall.types';

package/src/codecall/index.js

@@ -0,0 +1,8 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.default = void 0;
+const tslib_1 = require("tslib");
+var codecall_plugin_1 = require("./codecall.plugin");
+Object.defineProperty(exports, "default", { enumerable: true, get: function () { return tslib_1.__importDefault(codecall_plugin_1).default; } });
+tslib_1.__exportStar(require("./codecall.types"), exports);
+//# sourceMappingURL=index.js.map

package/src/codecall/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/codecall/index.ts"],"names":[],"mappings":";;;;AAAA,qDAA4C;AAAnC,mIAAA,OAAO,OAAA;AAChB,2DAAiC","sourcesContent":["export { default } from './codecall.plugin';\nexport * from './codecall.types';\n"]}

package/src/codecall/providers/code-call.config.d.ts

@@ -0,0 +1,29 @@
+import { BaseConfig } from '@frontmcp/sdk';
+import { CodeCallPluginOptions } from '../codecall.types';
+import { ResolvedCodeCallVmOptions } from '../codecall.symbol';
+/**
+ * CodeCall configuration provider with convict-like API
+ * Extends BaseConfig to provide type-safe dotted path access
+ *
+ * @example
+ * // Get values with dotted path notation
+ * config.get('vm.preset') // returns 'secure'
+ * config.get('embedding.strategy') // returns 'tfidf'
+ * config.get('directCalls.enabled') // returns true
+ *
+ * // Get with default value
+ * config.get('vm.timeoutMs', 5000) // returns value or 5000
+ *
+ * // Get entire sections
+ * config.getSection('vm') // returns entire vm config
+ * config.getAll() // returns complete config
+ *
+ * // Require values (throws if undefined)
+ * config.getOrThrow('mode') // throws if undefined
+ * config.getRequired('topK') // same as getOrThrow
+ */
+export default class CodeCallConfig extends BaseConfig<CodeCallPluginOptions & {
+    resolvedVm: ResolvedCodeCallVmOptions;
+}> {
+    constructor(options?: Partial<CodeCallPluginOptions>);
+}