npm - @gajae-code/coding-agent - Versions diffs - 0.4.5 → 0.5.1 - Mend

@gajae-code/coding-agent 0.4.5 → 0.5.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (185) hide show

package/CHANGELOG.md +62 -0
package/dist/types/async/job-manager.d.ts +26 -0
package/dist/types/cli/args.d.ts +1 -0
package/dist/types/cli/list-models.d.ts +6 -0
package/dist/types/commands/gc.d.ts +26 -0
package/dist/types/commands/harness.d.ts +3 -0
package/dist/types/config/file-lock-gc.d.ts +5 -0
package/dist/types/config/file-lock.d.ts +7 -0
package/dist/types/config/model-profile-activation.d.ts +11 -2
package/dist/types/config/model-profiles.d.ts +7 -0
package/dist/types/config/model-registry.d.ts +3 -0
package/dist/types/config/model-resolver.d.ts +2 -0
package/dist/types/config/models-config-schema.d.ts +30 -0
package/dist/types/config/settings-schema.d.ts +4 -3
package/dist/types/coordinator/contract.d.ts +1 -1
package/dist/types/defaults/gjc/extensions/grok-build/index.d.ts +1 -0
package/dist/types/defaults/gjc/extensions/grok-cli-vendor/src/index.d.ts +1 -0
package/dist/types/defaults/gjc/extensions/grok-cli-vendor/src/models/catalog.d.ts +25 -0
package/dist/types/defaults/gjc/extensions/grok-cli-vendor/src/payload/sanitize.d.ts +27 -0
package/dist/types/defaults/gjc/extensions/grok-cli-vendor/src/provider/billing.d.ts +8 -0
package/dist/types/defaults/gjc/extensions/grok-cli-vendor/src/provider/register.d.ts +5 -0
package/dist/types/defaults/gjc/extensions/grok-cli-vendor/src/provider/stream.d.ts +10 -0
package/dist/types/defaults/gjc/extensions/grok-cli-vendor/src/provider/usage.d.ts +2 -0
package/dist/types/defaults/gjc/extensions/grok-cli-vendor/src/shared/base-url.d.ts +2 -0
package/dist/types/defaults/gjc/extensions/grok-cli-vendor/src/shared/errors.d.ts +38 -0
package/dist/types/defaults/gjc-grok-cli.d.ts +5 -0
package/dist/types/extensibility/extensions/index.d.ts +1 -0
package/dist/types/extensibility/extensions/prefix-command-bridge.d.ts +35 -0
package/dist/types/gjc-runtime/deep-interview-recorder.d.ts +103 -0
package/dist/types/gjc-runtime/deep-interview-runtime.d.ts +2 -0
package/dist/types/gjc-runtime/deep-interview-state.d.ts +112 -0
package/dist/types/gjc-runtime/gc-render.d.ts +6 -0
package/dist/types/gjc-runtime/gc-runtime.d.ts +134 -0
package/dist/types/gjc-runtime/ledger-event-renderer.d.ts +68 -0
package/dist/types/gjc-runtime/team-gc.d.ts +7 -0
package/dist/types/gjc-runtime/team-runtime.d.ts +5 -1
package/dist/types/gjc-runtime/tmux-common.d.ts +14 -0
package/dist/types/gjc-runtime/tmux-gc.d.ts +7 -0
package/dist/types/gjc-runtime/tmux-sessions.d.ts +13 -0
package/dist/types/harness-control-plane/gc-adapter.d.ts +3 -0
package/dist/types/harness-control-plane/owner.d.ts +8 -1
package/dist/types/harness-control-plane/receipt-spool.d.ts +19 -0
package/dist/types/harness-control-plane/state-machine.d.ts +6 -1
package/dist/types/harness-control-plane/storage.d.ts +20 -0
package/dist/types/harness-control-plane/types.d.ts +4 -0
package/dist/types/hindsight/mental-models.d.ts +5 -5
package/dist/types/modes/components/hook-selector.d.ts +7 -1
package/dist/types/modes/components/model-selector.d.ts +1 -12
package/dist/types/modes/controllers/command-controller.d.ts +1 -0
package/dist/types/modes/rpc/rpc-client.d.ts +2 -2
package/dist/types/modes/rpc/rpc-mode.d.ts +16 -1
package/dist/types/modes/rpc/rpc-types.d.ts +4 -1
package/dist/types/modes/shared/agent-wire/deep-interview-gate.d.ts +13 -0
package/dist/types/modes/shared/agent-wire/session-registry.d.ts +25 -0
package/dist/types/modes/shared/agent-wire/unattended-action-policy.d.ts +2 -0
package/dist/types/sdk.d.ts +5 -0
package/dist/types/session/agent-session.d.ts +3 -1
package/dist/types/session/blob-store.d.ts +59 -4
package/dist/types/session/session-manager.d.ts +24 -6
package/dist/types/session/streaming-output.d.ts +3 -2
package/dist/types/session/tool-choice-queue.d.ts +6 -0
package/dist/types/skill-state/workflow-hud.d.ts +14 -0
package/dist/types/task/receipt.d.ts +1 -0
package/dist/types/task/types.d.ts +7 -0
package/dist/types/thinking-metadata.d.ts +16 -0
package/dist/types/thinking.d.ts +3 -12
package/dist/types/tools/ask.d.ts +15 -1
package/dist/types/tools/index.d.ts +2 -0
package/dist/types/tools/resolve.d.ts +0 -10
package/dist/types/tools/subagent.d.ts +6 -0
package/dist/types/utils/tool-choice.d.ts +14 -1
package/package.json +7 -7
package/src/async/job-manager.ts +52 -0
package/src/cli/args.ts +3 -0
package/src/cli/auth-broker-cli.ts +1 -0
package/src/cli/list-models.ts +13 -1
package/src/cli.ts +9 -4
package/src/commands/gc.ts +22 -0
package/src/commands/harness.ts +43 -5
package/src/commands/launch.ts +2 -2
package/src/commands/session.ts +3 -1
package/src/config/file-lock-gc.ts +181 -0
package/src/config/file-lock.ts +14 -0
package/src/config/model-profile-activation.ts +15 -3
package/src/config/model-profiles.ts +264 -56
package/src/config/model-resolver.ts +9 -6
package/src/config/models-config-schema.ts +1 -0
package/src/config/settings-schema.ts +6 -3
package/src/coordinator/contract.ts +1 -0
package/src/coordinator-mcp/server.ts +513 -26
package/src/cursor.ts +16 -2
package/src/defaults/gjc/agent.models.grok-cli.yml +36 -0
package/src/defaults/gjc/extensions/grok-build/index.ts +1 -0
package/src/defaults/gjc/extensions/grok-build/package.json +7 -0
package/src/defaults/gjc/extensions/grok-cli-vendor/biome.json +39 -0
package/src/defaults/gjc/extensions/grok-cli-vendor/package.json +8 -0
package/src/defaults/gjc/extensions/grok-cli-vendor/src/index.ts +1 -0
package/src/defaults/gjc/extensions/grok-cli-vendor/src/models/catalog.ts +155 -0
package/src/defaults/gjc/extensions/grok-cli-vendor/src/payload/sanitize.ts +361 -0
package/src/defaults/gjc/extensions/grok-cli-vendor/src/provider/billing.ts +57 -0
package/src/defaults/gjc/extensions/grok-cli-vendor/src/provider/register.ts +99 -0
package/src/defaults/gjc/extensions/grok-cli-vendor/src/provider/stream.ts +50 -0
package/src/defaults/gjc/extensions/grok-cli-vendor/src/provider/usage.ts +56 -0
package/src/defaults/gjc/extensions/grok-cli-vendor/src/shared/base-url.ts +36 -0
package/src/defaults/gjc/extensions/grok-cli-vendor/src/shared/errors.ts +44 -0
package/src/defaults/gjc/skills/deep-interview/SKILL.md +131 -113
package/src/defaults/gjc/skills/deep-interview/lateral-review-panel.md +49 -0
package/src/defaults/gjc/skills/team/SKILL.md +3 -2
package/src/defaults/gjc/skills/ultragoal/SKILL.md +8 -2
package/src/defaults/gjc-defaults.ts +7 -0
package/src/defaults/gjc-grok-cli.ts +22 -0
package/src/export/html/index.ts +13 -9
package/src/extensibility/extensions/index.ts +1 -0
package/src/extensibility/extensions/prefix-command-bridge.ts +128 -0
package/src/gjc-runtime/deep-interview-recorder.ts +417 -0
package/src/gjc-runtime/deep-interview-runtime.ts +18 -26
package/src/gjc-runtime/deep-interview-state.ts +324 -0
package/src/gjc-runtime/gc-render.ts +70 -0
package/src/gjc-runtime/gc-runtime.ts +403 -0
package/src/gjc-runtime/ledger-event-renderer.ts +164 -0
package/src/gjc-runtime/ralplan-runtime.ts +58 -7
package/src/gjc-runtime/state-renderer.ts +12 -3
package/src/gjc-runtime/state-runtime.ts +46 -29
package/src/gjc-runtime/team-gc.ts +49 -0
package/src/gjc-runtime/team-runtime.ts +211 -8
package/src/gjc-runtime/tmux-common.ts +29 -0
package/src/gjc-runtime/tmux-gc.ts +176 -0
package/src/gjc-runtime/tmux-sessions.ts +68 -12
package/src/gjc-runtime/ultragoal-runtime.ts +517 -41
package/src/gjc-runtime/workflow-manifest.generated.json +27 -1
package/src/gjc-runtime/workflow-manifest.ts +16 -1
package/src/harness-control-plane/gc-adapter.ts +184 -0
package/src/harness-control-plane/owner.ts +89 -27
package/src/harness-control-plane/receipt-spool.ts +128 -0
package/src/harness-control-plane/state-machine.ts +27 -6
package/src/harness-control-plane/storage.ts +93 -0
package/src/harness-control-plane/types.ts +4 -0
package/src/hindsight/mental-models.ts +17 -16
package/src/internal-urls/docs-index.generated.ts +14 -8
package/src/main.ts +7 -2
package/src/modes/components/assistant-message.ts +26 -14
package/src/modes/components/diff.ts +97 -0
package/src/modes/components/hook-selector.ts +19 -0
package/src/modes/components/model-selector.ts +370 -181
package/src/modes/components/status-line/segments.ts +1 -1
package/src/modes/components/tool-execution.ts +30 -13
package/src/modes/controllers/command-controller.ts +25 -6
package/src/modes/controllers/extension-ui-controller.ts +3 -0
package/src/modes/controllers/selector-controller.ts +34 -42
package/src/modes/rpc/rpc-client.ts +3 -2
package/src/modes/rpc/rpc-mode.ts +187 -39
package/src/modes/rpc/rpc-types.ts +5 -2
package/src/modes/shared/agent-wire/command-dispatch.ts +279 -257
package/src/modes/shared/agent-wire/command-validation.ts +11 -0
package/src/modes/shared/agent-wire/deep-interview-gate.ts +30 -1
package/src/modes/shared/agent-wire/session-registry.ts +109 -0
package/src/modes/shared/agent-wire/unattended-action-policy.ts +24 -0
package/src/modes/shared/agent-wire/unattended-run-controller.ts +23 -3
package/src/modes/shared/agent-wire/unattended-session.ts +16 -1
package/src/sdk.ts +46 -5
package/src/secrets/obfuscator.ts +102 -27
package/src/session/agent-session.ts +179 -25
package/src/session/blob-store.ts +148 -6
package/src/session/session-manager.ts +311 -60
package/src/session/streaming-output.ts +185 -122
package/src/session/tool-choice-queue.ts +23 -0
package/src/setup/hermes/templates/operator-instructions.v1.md +7 -1
package/src/skill-state/workflow-hud.ts +106 -10
package/src/slash-commands/builtin-registry.ts +3 -2
package/src/task/executor.ts +78 -6
package/src/task/receipt.ts +5 -0
package/src/task/render.ts +21 -1
package/src/task/types.ts +8 -0
package/src/thinking-metadata.ts +51 -0
package/src/thinking.ts +26 -46
package/src/tools/ask.ts +56 -1
package/src/tools/bash.ts +1 -1
package/src/tools/index.ts +2 -0
package/src/tools/job.ts +3 -2
package/src/tools/monitor.ts +36 -1
package/src/tools/resolve.ts +93 -18
package/src/tools/subagent-render.ts +9 -0
package/src/tools/subagent.ts +26 -2
package/src/utils/edit-mode.ts +1 -1
package/src/utils/tool-choice.ts +45 -16

package/src/defaults/gjc/extensions/grok-cli-vendor/src/provider/billing.ts ADDED Viewed

@@ -0,0 +1,57 @@
+import { getBaseUrl } from '../shared/base-url.js';
+interface BillingUsage {
+  monthlyLimit: number;
+  used: number;
+  billingPeriodEnd: string;
+}
+function parseBillingUsage(payload: unknown): BillingUsage {
+  if (!payload || typeof payload !== 'object') throw new Error('invalid billing payload');
+  const config = (payload as Record<string, unknown>).config;
+  if (!config || typeof config !== 'object') throw new Error('invalid billing payload');
+  const monthlyLimit = ((config as Record<string, unknown>).monthlyLimit as Record<string, unknown>)
+    ?.val;
+  const used = ((config as Record<string, unknown>).used as Record<string, unknown>)?.val;
+  const billingPeriodEnd = (config as Record<string, unknown>).billingPeriodEnd;
+  if (
+    typeof monthlyLimit !== 'number' ||
+    !Number.isFinite(monthlyLimit) ||
+    typeof used !== 'number' ||
+    !Number.isFinite(used) ||
+    typeof billingPeriodEnd !== 'string' ||
+    !Number.isFinite(new Date(billingPeriodEnd).getTime())
+  ) {
+    throw new Error('invalid billing payload');
+  }
+  return { monthlyLimit, used, billingPeriodEnd };
+}
+export async function fetchBillingUsage(token: string): Promise<BillingUsage> {
+  const response = await fetch(`${getBaseUrl()}/billing`, {
+    headers: {
+      authorization: `Bearer ${token}`,
+      'x-xai-token-auth': 'xai-grok-cli',
+      accept: 'application/json',
+    },
+  });
+  if (!response.ok) throw new Error(`billing endpoint returned ${response.status}`);
+  return parseBillingUsage(await response.json());
+}
+export function formatQuota(usage: BillingUsage | undefined) {
+  if (!usage) {
+    return [
+      '  Usage:',
+      '    no billing data available — run /login grok-build or set GROK_CLI_OAUTH_TOKEN',
+    ];
+  }
+  const resetDate = new Date(new Date(usage.billingPeriodEnd).getTime() - 8 * 60 * 60 * 1000);
+  return [
+    '  Usage:',
+    `    ${usage.used.toLocaleString()} / ${usage.monthlyLimit.toLocaleString()} credits used (${Math.round((usage.used / usage.monthlyLimit) * 100)}%)`,
+    `    ${(usage.monthlyLimit - usage.used).toLocaleString()} credits remaining`,
+    `    Resets at ${['Jan', 'Feb', 'Mar', 'Apr', 'May', 'Jun', 'Jul', 'Aug', 'Sep', 'Oct', 'Nov', 'Dec'][resetDate.getUTCMonth()]} ${resetDate.getUTCDate()} ${resetDate.getUTCHours().toString().padStart(2, '0')}:${resetDate.getUTCMinutes().toString().padStart(2, '0')} PT`,
+  ];
+}

package/src/defaults/gjc/extensions/grok-cli-vendor/src/provider/register.ts ADDED Viewed

@@ -0,0 +1,99 @@
+/**
+ * GJC Grok Build provider — SuperGrok OAuth + cli-chat-proxy models.
+ */
+import type { Api, Model } from '@gajae-code/ai';
+import { Effort } from '@gajae-code/ai/model-thinking';
+import type { OAuthCredentials, OAuthLoginCallbacks } from '@gajae-code/ai/utils/oauth/types';
+import { loginXai, refreshXaiToken, XAI_OAUTH_SCOPE } from '@gajae-code/ai/utils/oauth/xai';
+import type { ExtensionAPI, ProviderConfig } from '@gajae-code/coding-agent';
+import { type GrokCliModelConfig, resolveModels } from '../models/catalog.js';
+import { sanitizePayload } from '../payload/sanitize.js';
+import { getBaseUrl, isGrokBuildBaseUrlOverrideIgnored } from '../shared/base-url.js';
+import { streamGrokCli } from './stream.js';
+import { registerUsageCommand } from './usage.js';
+const GROK_BUILD_XAI_AUTHORIZE_PARAMS = {
+  plan: 'generic',
+  referrer: 'gjc-grok-cli',
+} satisfies Readonly<Record<string, string>>;
+const GROK_BUILD_XAI_REFRESH_PARAMS = {
+  scope: XAI_OAUTH_SCOPE,
+  ...GROK_BUILD_XAI_AUTHORIZE_PARAMS,
+} satisfies Readonly<Record<string, string>>;
+export default function registerGrokCli(api: ExtensionAPI) {
+  const baseUrl = getBaseUrl();
+  const models = resolveModels();
+  api.registerProvider('grok-build', {
+    baseUrl,
+    apiKey: process.env.GROK_CLI_OAUTH_TOKEN ? 'GROK_CLI_OAUTH_TOKEN' : undefined,
+    api: 'grok-cli-responses',
+    models: models.map((m: GrokCliModelConfig) => ({
+      id: m.id,
+      name: m.name,
+      reasoning: m.reasoning,
+      thinking: m.reasoning
+        ? { minLevel: Effort.Low, maxLevel: Effort.XHigh, mode: 'effort' }
+        : undefined,
+      input: m.input,
+      cost: m.cost,
+      contextWindow: m.contextWindow,
+      maxTokens: m.maxTokens,
+    })),
+    oauth: {
+      name: 'Grok Build',
+      async login(callbacks: OAuthLoginCallbacks): Promise<OAuthCredentials> {
+        return loginXai(callbacks, { extraAuthorizeParams: GROK_BUILD_XAI_AUTHORIZE_PARAMS });
+      },
+      async refreshToken(credentials: OAuthCredentials): Promise<OAuthCredentials> {
+        return refreshXaiToken(credentials.refresh, {
+          extraTokenParams: GROK_BUILD_XAI_REFRESH_PARAMS,
+        });
+      },
+      getApiKey(credentials: OAuthCredentials): string {
+        return credentials.access;
+      },
+      modifyModels(models: Model<Api>[], _credentials: OAuthCredentials) {
+        const effectiveBaseUrl = getBaseUrl().replace(/\/+$/, '');
+        return models.map((m) =>
+          m.provider === 'grok-build' ? { ...m, baseUrl: effectiveBaseUrl } : m,
+        );
+      },
+    } satisfies ProviderConfig['oauth'],
+    streamSimple: streamGrokCli,
+  });
+  api.on('session_start', (_event, ctx) => {
+    if (process.env.GROK_CLI_OAUTH_TOKEN) {
+      ctx.ui.notify(
+        '[Grok Build] Using GROK_CLI_OAUTH_TOKEN env bypass — no auto-refresh, no model discovery. Login with /login grok-build for persisted refreshable auth.',
+        'warning',
+      );
+    }
+    if (isGrokBuildBaseUrlOverrideIgnored()) {
+      ctx.ui.notify(
+        '[Grok Build] Ignoring unsafe Grok base URL override for OAuth credential safety. Set GJC_GROK_CLI_ALLOW_UNSAFE_BASE_URL=1 only for trusted local testing.',
+        'warning',
+      );
+    }
+  });
+  api.on('before_provider_request', (event, ctx) => {
+    if (ctx.model?.provider !== 'grok-build') return;
+    const modelId = ctx.model?.id ?? '';
+    const sessionId = ctx.sessionManager?.getSessionId();
+    return sanitizePayload(event.payload as Record<string, unknown>, modelId, sessionId, ctx.cwd);
+  });
+  registerUsageCommand(api);
+}

package/src/defaults/gjc/extensions/grok-cli-vendor/src/provider/stream.ts ADDED Viewed

@@ -0,0 +1,50 @@
+import type {
+  Api,
+  AssistantMessageEventStream,
+  Context,
+  Model,
+  SimpleStreamOptions,
+} from '@gajae-code/ai';
+import { streamOpenAIResponses } from '@gajae-code/ai/providers/openai-responses';
+const GROK_CLI_VERSION = '0.2.33';
+/**
+ * Stream function that adds Grok CLI-specific headers to requests.
+ *
+ * GJC Grok Build extension sends cli-chat-proxy headers (see agent.models.grok-cli.yml):
+ *   - x-grok-conv-id: <session/conversation ID>
+ *   - x-grok-model-override: <model ID>
+ *   - x-xai-token-auth: xai-grok-cli
+ */
+export function streamGrokCli(
+  model: Model<Api>,
+  context: Context,
+  options?: SimpleStreamOptions,
+): AssistantMessageEventStream {
+  const sessionId = options?.sessionId;
+  const headers: Record<string, string> = {
+    ...options?.headers,
+    'x-grok-client-identifier': 'gjc-grok-cli',
+    'x-grok-client-version': GROK_CLI_VERSION,
+    'x-xai-token-auth': 'xai-grok-cli',
+    'x-grok-model-override': model.id,
+  };
+  if (sessionId) {
+    headers['x-grok-conv-id'] = sessionId;
+  }
+  const responsesModel = {
+    ...model,
+    api: 'openai-responses',
+  } as Model<'openai-responses'>;
+  return streamOpenAIResponses(responsesModel, context, {
+    ...options,
+    headers,
+    onResponse(response) {
+      options?.onResponse?.(response, model);
+    },
+  });
+}

package/src/defaults/gjc/extensions/grok-cli-vendor/src/provider/usage.ts ADDED Viewed

@@ -0,0 +1,56 @@
+import type { Api, Model } from '@gajae-code/ai';
+import type { ExtensionAPI } from '@gajae-code/coding-agent';
+import { XaiOAuthError } from '../shared/errors.js';
+import { fetchBillingUsage, formatQuota } from './billing.js';
+export function registerUsageCommand(api: Pick<ExtensionAPI, 'registerCommand'>) {
+  api.registerCommand('grok-build-usage', {
+    description: 'Show Grok Build provider status, quota, and token health',
+    handler: async (_args, ctx) => {
+      const token = process.env.GROK_CLI_OAUTH_TOKEN;
+      if (token) {
+        ctx.ui.notify(
+          '⚠️  Grok Build: using GROK_CLI_OAUTH_TOKEN env bypass — no auto-refresh available',
+          'warning',
+        );
+      }
+      try {
+        const registry = ctx.modelRegistry;
+        const grokModels = registry.getAll().filter((m: Model<Api>) => m.provider === 'grok-build');
+        if (grokModels.length === 0) {
+          ctx.ui.notify(
+            'Grok Build: no models registered. Run /login grok-build first.',
+            'warning',
+          );
+          return;
+        }
+        const apiKey = token ?? (await registry.getApiKeyForProvider?.('grok-build'));
+        if (!apiKey) {
+          ctx.ui.notify(formatQuota(undefined).join('\n'), 'info');
+          return;
+        }
+        try {
+          ctx.ui.notify('Fetching grok build usage…', 'info');
+          ctx.ui.notify(formatQuota(await fetchBillingUsage(apiKey)).join('\n'), 'info');
+        } catch (err) {
+          ctx.ui.notify(
+            `Grok Build billing refresh failed: ${err instanceof Error ? err.message : String(err)}`,
+            'warning',
+          );
+          ctx.ui.notify(formatQuota(undefined).join('\n'), 'info');
+        }
+      } catch (err) {
+        const msg =
+          err instanceof XaiOAuthError
+            ? `${err.message} (code: ${err.code})`
+            : err instanceof Error
+              ? err.message
+              : String(err);
+        ctx.ui.notify(`Grok Build: ${msg}`, 'warning');
+      }
+    },
+  });
+}

package/src/defaults/gjc/extensions/grok-cli-vendor/src/shared/base-url.ts ADDED Viewed

@@ -0,0 +1,36 @@
+const DEFAULT_GROK_BUILD_BASE_URL = 'https://cli-chat-proxy.grok.com/v1';
+const ALLOWED_GROK_BUILD_HOSTS = new Set(['cli-chat-proxy.grok.com']);
+function normalizeBaseUrl(baseUrl: string): string {
+  return baseUrl.trim().replace(/\/+$/, '');
+}
+function isAllowedCredentialHost(baseUrl: string): boolean {
+  try {
+    const url = new URL(baseUrl);
+    return url.protocol === 'https:' && ALLOWED_GROK_BUILD_HOSTS.has(url.hostname.toLowerCase());
+  } catch {
+    return false;
+  }
+}
+export function getBaseUrl(): string {
+  const configured = process.env.GJC_GROK_CLI_BASE_URL || process.env.GROK_CLI_BASE_URL;
+  if (!configured) return DEFAULT_GROK_BUILD_BASE_URL;
+  const normalized = normalizeBaseUrl(configured);
+  if (isAllowedCredentialHost(normalized)) return normalized;
+  if (process.env.GJC_GROK_CLI_ALLOW_UNSAFE_BASE_URL === '1') return normalized;
+  return DEFAULT_GROK_BUILD_BASE_URL;
+}
+export function isGrokBuildBaseUrlOverrideIgnored(): boolean {
+  const configured = process.env.GJC_GROK_CLI_BASE_URL || process.env.GROK_CLI_BASE_URL;
+  if (!configured) return false;
+  const normalized = normalizeBaseUrl(configured);
+  return (
+    !isAllowedCredentialHost(normalized) && process.env.GJC_GROK_CLI_ALLOW_UNSAFE_BASE_URL !== '1'
+  );
+}

package/src/defaults/gjc/extensions/grok-cli-vendor/src/shared/errors.ts ADDED Viewed

@@ -0,0 +1,44 @@
+/**
+ * Typed error for xAI OAuth failures.
+ *
+ * Codes allow the login flow and stream handlers to distinguish
+ * retryable failures (network) from fatal ones (revoked refresh token).
+ */
+export class XaiOAuthError extends Error {
+  constructor(
+    message: string,
+    public readonly code: string,
+    public readonly reloginRequired = false,
+  ) {
+    super(message);
+    this.name = 'XaiOAuthError';
+  }
+}
+/** Well-known error codes. */
+export const XaiErrorCode = {
+  /** OIDC discovery failed (network, invalid response). */
+  DISCOVERY_FAILED: 'discovery_failed',
+  /** Discovery endpoint returned a non-xAI origin. */
+  DISCOVERY_INVALID_ORIGIN: 'discovery_invalid_origin',
+  /** Authorization was denied or errored in the browser. */
+  AUTHORIZATION_FAILED: 'authorization_failed',
+  /** CSRF state mismatch between request and callback. */
+  STATE_MISMATCH: 'state_mismatch',
+  /** Callback did not include an authorization code. */
+  CODE_MISSING: 'code_missing',
+  /** Token exchange failed (network, invalid response). */
+  TOKEN_EXCHANGE_FAILED: 'token_exchange_failed',
+  /** Token exchange returned an invalid payload. */
+  TOKEN_EXCHANGE_INVALID: 'token_exchange_invalid',
+  /** Refresh token is missing or empty. */
+  REFRESH_MISSING: 'refresh_missing',
+  /** Token refresh failed (expired, revoked). */
+  REFRESH_FAILED: 'refresh_failed',
+  /** No credentials stored. */
+  AUTH_MISSING: 'auth_missing',
+  /** Loopback callback server could not bind. */
+  CALLBACK_BIND_FAILED: 'callback_bind_failed',
+  /** Loopback callback timed out. */
+  CALLBACK_TIMEOUT: 'callback_timeout',
+} as const;