@interfere/next 9.0.2 → 10.0.0

package/dist/internal/route/handle-get.mjs

@@ -1,22 +1,43 @@
-import { extractSubPath, forwardToCollector, notConfiguredResponse, resolveAuthenticatedEnv } from "./proxy.mjs";
-import { SW_SCRIPT } from "./sw-script.mjs";
-import { API_PATHS } from "@interfere/constants/api";
+import { log } from "../logger.mjs";
+import { extractSubPath, formatProxyError, forwardToCollector, notConfiguredResponse, resolveAuthenticatedEnv } from "./proxy.mjs";
+import { SW_SCRIPT } from "@interfere/react/sw";
 //#region src/internal/route/handle-get.ts
-function handleGet(request) {
+const SW_HEADERS = {
+	"content-type": "application/javascript; charset=utf-8",
+	"service-worker-allowed": "/",
+	"cache-control": "public, max-age=3600"
+};
+/**
+* Generic GET proxy. SDK 10.x routes `GET /v2/config` (and any future
+* GET-based endpoints) through here; SDK 9.x clients still hit
+* `GET /v1/config` and get the same delegated response on the collector
+* side.
+*
+* `/sw` is special-cased to serve the SDK's bundled service-worker
+* script directly out of the customer's Next.js process. `SW_SCRIPT`
+* is a string export emitted at @interfere/react build time
+* (`scripts/build-sw.ts`); on Node runtime the customer resolves it
+* via `node_modules`, on Edge runtime the customer's Next.js bundler
+* inlines it into the Edge worker. Either way, no `fs.readFileSync`.
+*/
+async function handleGet(request) {
 	const subPath = extractSubPath(request);
-	if (subPath.endsWith("/sw")) return new Response(SW_SCRIPT, {
+	if (subPath === "/sw") return new Response(SW_SCRIPT, {
 		status: 200,
-		headers: {
-			"content-type": "application/javascript",
-			"cache-control": "public, max-age=3600"
-		}
+		headers: SW_HEADERS
 	});
-	if (subPath === API_PATHS.CONFIG) {
-		const env = resolveAuthenticatedEnv();
-		if (!env) return notConfiguredResponse();
-		return forwardToCollector(request, env, subPath);
+	const env = resolveAuthenticatedEnv();
+	if (!env) return notConfiguredResponse();
+	try {
+		return await forwardToCollector(request, env, subPath);
+	} catch (error) {
+		const detail = formatProxyError(error);
+		log.error(`Proxy ${request.method} ${subPath} failed`, detail.lines);
+		return Response.json({
+			code: "INTERFERE_PROXY_ERROR",
+			message: detail.message
+		}, { status: 502 });
 	}
-	return new Response("Not Found", { status: 404 });
 }
 //#endregion
 export { handleGet };

package/dist/internal/route/handle-get.mjs.map

@@ -1 +1 @@
-{"version":3,"file":"handle-get.mjs","names":[],"sources":["../../../src/internal/route/handle-get.ts"],"sourcesContent":["import { API_PATHS } from \"@interfere/constants/api\";\n\nimport {\n  extractSubPath,\n  forwardToCollector,\n  notConfiguredResponse,\n  resolveAuthenticatedEnv,\n} from \"./proxy.js\";\nimport { SW_SCRIPT } from \"./sw-script.js\";\n\nexport function handleGet(request: Request): Response | Promise<Response> {\n  const subPath = extractSubPath(request);\n\n  if (subPath.endsWith(\"/sw\")) {\n    return new Response(SW_SCRIPT, {\n      status: 200,\n      headers: {\n        \"content-type\": \"application/javascript\",\n        \"cache-control\": \"public, max-age=3600\",\n      },\n    });\n  }\n\n  if (subPath === API_PATHS.CONFIG) {\n    const env = resolveAuthenticatedEnv();\n    if (!env) {\n      return notConfiguredResponse();\n    }\n    return forwardToCollector(request, env, subPath);\n  }\n\n  return new Response(\"Not Found\", { status: 404 });\n}\n"],"mappings":";;;;AAUA,SAAgB,UAAU,SAAgD;CACxE,MAAM,UAAU,eAAe,QAAQ;AAEvC,KAAI,QAAQ,SAAS,MAAM,CACzB,QAAO,IAAI,SAAS,WAAW;EAC7B,QAAQ;EACR,SAAS;GACP,gBAAgB;GAChB,iBAAiB;GAClB;EACF,CAAC;AAGJ,KAAI,YAAY,UAAU,QAAQ;EAChC,MAAM,MAAM,yBAAyB;AACrC,MAAI,CAAC,IACH,QAAO,uBAAuB;AAEhC,SAAO,mBAAmB,SAAS,KAAK,QAAQ;;AAGlD,QAAO,IAAI,SAAS,aAAa,EAAE,QAAQ,KAAK,CAAC"}
+{"version":3,"file":"handle-get.mjs","names":[],"sources":["../../../src/internal/route/handle-get.ts"],"sourcesContent":["import { SW_SCRIPT } from \"@interfere/react/sw\";\n\nimport { log } from \"../logger.js\";\nimport {\n  extractSubPath,\n  formatProxyError,\n  forwardToCollector,\n  notConfiguredResponse,\n  resolveAuthenticatedEnv,\n} from \"./proxy.js\";\n\nconst SW_HEADERS: Record<string, string> = {\n  \"content-type\": \"application/javascript; charset=utf-8\",\n  // Allow the SW to control the whole origin, not just `/api/interfere/`.\n  // The SDK still scopes its `register()` call narrowly; this header just\n  // unlocks the option without re-issuing a new SW URL.\n  \"service-worker-allowed\": \"/\",\n  // Customers' edges (Vercel, Cloudflare) cache aggressively by default;\n  // a 1-hour TTL balances \"pick up SW updates within a deploy cycle\"\n  // against \"don't refetch on every navigation\".\n  \"cache-control\": \"public, max-age=3600\",\n};\n\n/**\n * Generic GET proxy. SDK 10.x routes `GET /v2/config` (and any future\n * GET-based endpoints) through here; SDK 9.x clients still hit\n * `GET /v1/config` and get the same delegated response on the collector\n * side.\n *\n * `/sw` is special-cased to serve the SDK's bundled service-worker\n * script directly out of the customer's Next.js process. `SW_SCRIPT`\n * is a string export emitted at @interfere/react build time\n * (`scripts/build-sw.ts`); on Node runtime the customer resolves it\n * via `node_modules`, on Edge runtime the customer's Next.js bundler\n * inlines it into the Edge worker. Either way, no `fs.readFileSync`.\n */\nexport async function handleGet(request: Request): Promise<Response> {\n  const subPath = extractSubPath(request);\n\n  if (subPath === \"/sw\") {\n    return new Response(SW_SCRIPT, { status: 200, headers: SW_HEADERS });\n  }\n\n  const env = resolveAuthenticatedEnv();\n  if (!env) {\n    return notConfiguredResponse();\n  }\n  try {\n    return await forwardToCollector(request, env, subPath);\n  } catch (error) {\n    const detail = formatProxyError(error);\n    log.error(`Proxy ${request.method} ${subPath} failed`, detail.lines);\n    return Response.json(\n      { code: \"INTERFERE_PROXY_ERROR\", message: detail.message },\n      { status: 502 }\n    );\n  }\n}\n"],"mappings":";;;;AAWA,MAAM,aAAqC;CACzC,gBAAgB;CAIhB,0BAA0B;CAI1B,iBAAiB;CAClB;;;;;;;;;;;;;;AAeD,eAAsB,UAAU,SAAqC;CACnE,MAAM,UAAU,eAAe,QAAQ;CAEvC,IAAI,YAAY,OACd,OAAO,IAAI,SAAS,WAAW;EAAE,QAAQ;EAAK,SAAS;EAAY,CAAC;CAGtE,MAAM,MAAM,yBAAyB;CACrC,IAAI,CAAC,KACH,OAAO,uBAAuB;CAEhC,IAAI;EACF,OAAO,MAAM,mBAAmB,SAAS,KAAK,QAAQ;UAC/C,OAAO;EACd,MAAM,SAAS,iBAAiB,MAAM;EACtC,IAAI,MAAM,SAAS,QAAQ,OAAO,GAAG,QAAQ,UAAU,OAAO,MAAM;EACpE,OAAO,SAAS,KACd;GAAE,MAAM;GAAyB,SAAS,OAAO;GAAS,EAC1D,EAAE,QAAQ,KAAK,CAChB"}

package/dist/internal/route/handle-post.d.mts

@@ -1,4 +1,15 @@
 //#region src/internal/route/handle-post.d.ts
+/**
+ * Generic POST proxy. SDK 10.x routes everything through here:
+ *
+ *   - `/v2/sink` (OTLP traces / metrics / logs)
+ *   - `/v2/replay/upload/:sessionId`
+ *   - `/v1/session*` (session sync + identify)
+ *
+ * No envelope-aware special-casing — that endpoint (`/v1/ingest`) was
+ * 9.x-only and is not produced by 10.x. Customers on 9.x post directly
+ * to the collector through the same proxy without touching this file.
+ */
 declare function handlePost(request: Request): Promise<Response>;
 //#endregion
 export { handlePost };

package/dist/internal/route/handle-post.d.mts.map

@@ -1 +1 @@
-{"version":3,"file":"handle-post.d.mts","names":[],"sources":["../../../src/internal/route/handle-post.ts"],"mappings":";iBAqCsB,UAAA,CAAW,OAAA,EAAS,OAAA,GAAU,OAAA,CAAQ,QAAA"}
+{"version":3,"file":"handle-post.d.mts","names":[],"sources":["../../../src/internal/route/handle-post.ts"],"mappings":";;AAoBA;;;;;;;;;;iBAAsB,UAAA,CAAW,OAAA,EAAS,OAAA,GAAU,OAAA,CAAQ,QAAA"}

package/dist/internal/route/handle-post.mjs

@@ -1,26 +1,22 @@
 import { log } from "../logger.mjs";
 import { extractSubPath, formatProxyError, forwardToCollector, notConfiguredResponse, resolveAuthenticatedEnv } from "./proxy.mjs";
-import { API_PATHS } from "@interfere/constants/api";
-import { extractCountryHeader } from "@interfere/types/sdk/geo";
 //#region src/internal/route/handle-post.ts
-function parseEnvelopes(value) {
-	if (!Array.isArray(value)) return null;
-	return value;
-}
-function injectReleaseMetadata(envelopes, metadata) {
-	if (metadata.sourceId === null && metadata.destinationId === null) return envelopes;
-	return envelopes.map((envelope) => ({
-		...envelope,
-		buildId: metadata.sourceId ?? envelope.buildId,
-		releaseId: metadata.destinationId ?? envelope.releaseId
-	}));
-}
+/**
+* Generic POST proxy. SDK 10.x routes everything through here:
+*
+*   - `/v2/sink` (OTLP traces / metrics / logs)
+*   - `/v2/replay/upload/:sessionId`
+*   - `/v1/session*` (session sync + identify)
+*
+* No envelope-aware special-casing — that endpoint (`/v1/ingest`) was
+* 9.x-only and is not produced by 10.x. Customers on 9.x post directly
+* to the collector through the same proxy without touching this file.
+*/
 async function handlePost(request) {
 	const env = resolveAuthenticatedEnv();
 	if (!env) return notConfiguredResponse();
 	const subPath = extractSubPath(request);
 	try {
-		if (subPath === API_PATHS.INGEST) return await handleIngest(request, env);
 		return await forwardToCollector(request, env, subPath);
 	} catch (error) {
 		const detail = formatProxyError(error);
@@ -31,40 +27,5 @@ async function handlePost(request) {
 		}, { status: 502 });
 	}
 }
-async function handleIngest(request, env) {
-	let payload;
-	try {
-		payload = await request.json();
-	} catch {
-		return Response.json({
-			code: "INTERFERE_INVALID_JSON",
-			message: "Request body must be valid JSON."
-		}, { status: 400 });
-	}
-	const envelopes = parseEnvelopes(payload);
-	if (envelopes === null) return Response.json({
-		code: "INTERFERE_INVALID_ENVELOPES",
-		message: "Request body must be an array of envelopes."
-	}, { status: 400 });
-	const traceparent = request.headers.get("traceparent");
-	const upstream = await fetch(`${env.apiUrl}${API_PATHS.INGEST}`, {
-		method: "POST",
-		headers: {
-			"content-type": "application/json",
-			"x-api-key": env.apiKey,
-			...traceparent ? { traceparent } : {},
-			...(() => {
-				const country = extractCountryHeader(request);
-				return country ? { "x-country-code": country } : {};
-			})()
-		},
-		body: JSON.stringify(injectReleaseMetadata(envelopes, env.release)),
-		signal: AbortSignal.timeout(1e4)
-	});
-	return new Response(upstream.body, {
-		status: upstream.status,
-		headers: { "content-type": upstream.headers.get("content-type") ?? "application/json" }
-	});
-}
 //#endregion
 export { handlePost };

package/dist/internal/route/handle-post.mjs.map

@@ -1 +1 @@
-{"version":3,"file":"handle-post.mjs","names":[],"sources":["../../../src/internal/route/handle-post.ts"],"sourcesContent":["import { API_PATHS } from \"@interfere/constants/api\";\nimport type { Envelope } from \"@interfere/types/sdk/envelope\";\nimport { extractCountryHeader } from \"@interfere/types/sdk/geo\";\n\nimport { log } from \"../logger.js\";\nimport {\n  type AuthenticatedEnv,\n  extractSubPath,\n  formatProxyError,\n  forwardToCollector,\n  notConfiguredResponse,\n  resolveAuthenticatedEnv,\n} from \"./proxy.js\";\n\nfunction parseEnvelopes(value: unknown): Envelope[] | null {\n  if (!Array.isArray(value)) {\n    return null;\n  }\n\n  return value as Envelope[];\n}\n\nfunction injectReleaseMetadata(\n  envelopes: Envelope[],\n  metadata: { sourceId: string | null; destinationId: string | null }\n): Envelope[] {\n  if (metadata.sourceId === null && metadata.destinationId === null) {\n    return envelopes;\n  }\n\n  return envelopes.map((envelope) => ({\n    ...envelope,\n    buildId: metadata.sourceId ?? envelope.buildId,\n    releaseId: metadata.destinationId ?? envelope.releaseId,\n  }));\n}\n\nexport async function handlePost(request: Request): Promise<Response> {\n  const env = resolveAuthenticatedEnv();\n  if (!env) {\n    return notConfiguredResponse();\n  }\n\n  const subPath = extractSubPath(request);\n\n  try {\n    if (subPath === API_PATHS.INGEST) {\n      return await handleIngest(request, env);\n    }\n\n    return await forwardToCollector(request, env, subPath);\n  } catch (error) {\n    const detail = formatProxyError(error);\n    log.error(`Proxy ${request.method} ${subPath} failed`, detail.lines);\n    return Response.json(\n      { code: \"INTERFERE_PROXY_ERROR\", message: detail.message },\n      { status: 502 }\n    );\n  }\n}\n\nasync function handleIngest(\n  request: Request,\n  env: AuthenticatedEnv\n): Promise<Response> {\n  let payload: unknown;\n  try {\n    payload = await request.json();\n  } catch {\n    return Response.json(\n      {\n        code: \"INTERFERE_INVALID_JSON\",\n        message: \"Request body must be valid JSON.\",\n      },\n      { status: 400 }\n    );\n  }\n\n  const envelopes = parseEnvelopes(payload);\n  if (envelopes === null) {\n    return Response.json(\n      {\n        code: \"INTERFERE_INVALID_ENVELOPES\",\n        message: \"Request body must be an array of envelopes.\",\n      },\n      { status: 400 }\n    );\n  }\n\n  const traceparent = request.headers.get(\"traceparent\");\n  const upstream = await fetch(`${env.apiUrl}${API_PATHS.INGEST}`, {\n    method: \"POST\",\n    headers: {\n      \"content-type\": \"application/json\",\n      \"x-api-key\": env.apiKey,\n      ...(traceparent ? { traceparent } : {}),\n      ...(() => {\n        const country = extractCountryHeader(request);\n        return country ? { \"x-country-code\": country } : {};\n      })(),\n    },\n    body: JSON.stringify(injectReleaseMetadata(envelopes, env.release)),\n    signal: AbortSignal.timeout(10_000),\n  });\n\n  return new Response(upstream.body, {\n    status: upstream.status,\n    headers: {\n      \"content-type\":\n        upstream.headers.get(\"content-type\") ?? \"application/json\",\n    },\n  });\n}\n"],"mappings":";;;;;AAcA,SAAS,eAAe,OAAmC;AACzD,KAAI,CAAC,MAAM,QAAQ,MAAM,CACvB,QAAO;AAGT,QAAO;;AAGT,SAAS,sBACP,WACA,UACY;AACZ,KAAI,SAAS,aAAa,QAAQ,SAAS,kBAAkB,KAC3D,QAAO;AAGT,QAAO,UAAU,KAAK,cAAc;EAClC,GAAG;EACH,SAAS,SAAS,YAAY,SAAS;EACvC,WAAW,SAAS,iBAAiB,SAAS;EAC/C,EAAE;;AAGL,eAAsB,WAAW,SAAqC;CACpE,MAAM,MAAM,yBAAyB;AACrC,KAAI,CAAC,IACH,QAAO,uBAAuB;CAGhC,MAAM,UAAU,eAAe,QAAQ;AAEvC,KAAI;AACF,MAAI,YAAY,UAAU,OACxB,QAAO,MAAM,aAAa,SAAS,IAAI;AAGzC,SAAO,MAAM,mBAAmB,SAAS,KAAK,QAAQ;UAC/C,OAAO;EACd,MAAM,SAAS,iBAAiB,MAAM;AACtC,MAAI,MAAM,SAAS,QAAQ,OAAO,GAAG,QAAQ,UAAU,OAAO,MAAM;AACpE,SAAO,SAAS,KACd;GAAE,MAAM;GAAyB,SAAS,OAAO;GAAS,EAC1D,EAAE,QAAQ,KAAK,CAChB;;;AAIL,eAAe,aACb,SACA,KACmB;CACnB,IAAI;AACJ,KAAI;AACF,YAAU,MAAM,QAAQ,MAAM;SACxB;AACN,SAAO,SAAS,KACd;GACE,MAAM;GACN,SAAS;GACV,EACD,EAAE,QAAQ,KAAK,CAChB;;CAGH,MAAM,YAAY,eAAe,QAAQ;AACzC,KAAI,cAAc,KAChB,QAAO,SAAS,KACd;EACE,MAAM;EACN,SAAS;EACV,EACD,EAAE,QAAQ,KAAK,CAChB;CAGH,MAAM,cAAc,QAAQ,QAAQ,IAAI,cAAc;CACtD,MAAM,WAAW,MAAM,MAAM,GAAG,IAAI,SAAS,UAAU,UAAU;EAC/D,QAAQ;EACR,SAAS;GACP,gBAAgB;GAChB,aAAa,IAAI;GACjB,GAAI,cAAc,EAAE,aAAa,GAAG,EAAE;GACtC,UAAU;IACR,MAAM,UAAU,qBAAqB,QAAQ;AAC7C,WAAO,UAAU,EAAE,kBAAkB,SAAS,GAAG,EAAE;OACjD;GACL;EACD,MAAM,KAAK,UAAU,sBAAsB,WAAW,IAAI,QAAQ,CAAC;EACnE,QAAQ,YAAY,QAAQ,IAAO;EACpC,CAAC;AAEF,QAAO,IAAI,SAAS,SAAS,MAAM;EACjC,QAAQ,SAAS;EACjB,SAAS,EACP,gBACE,SAAS,QAAQ,IAAI,eAAe,IAAI,oBAC3C;EACF,CAAC"}
+{"version":3,"file":"handle-post.mjs","names":[],"sources":["../../../src/internal/route/handle-post.ts"],"sourcesContent":["import { log } from \"../logger.js\";\nimport {\n  extractSubPath,\n  formatProxyError,\n  forwardToCollector,\n  notConfiguredResponse,\n  resolveAuthenticatedEnv,\n} from \"./proxy.js\";\n\n/**\n * Generic POST proxy. SDK 10.x routes everything through here:\n *\n *   - `/v2/sink` (OTLP traces / metrics / logs)\n *   - `/v2/replay/upload/:sessionId`\n *   - `/v1/session*` (session sync + identify)\n *\n * No envelope-aware special-casing — that endpoint (`/v1/ingest`) was\n * 9.x-only and is not produced by 10.x. Customers on 9.x post directly\n * to the collector through the same proxy without touching this file.\n */\nexport async function handlePost(request: Request): Promise<Response> {\n  const env = resolveAuthenticatedEnv();\n  if (!env) {\n    return notConfiguredResponse();\n  }\n  const subPath = extractSubPath(request);\n  try {\n    return await forwardToCollector(request, env, subPath);\n  } catch (error) {\n    const detail = formatProxyError(error);\n    log.error(`Proxy ${request.method} ${subPath} failed`, detail.lines);\n    return Response.json(\n      { code: \"INTERFERE_PROXY_ERROR\", message: detail.message },\n      { status: 502 }\n    );\n  }\n}\n"],"mappings":";;;;;;;;;;;;;;AAoBA,eAAsB,WAAW,SAAqC;CACpE,MAAM,MAAM,yBAAyB;CACrC,IAAI,CAAC,KACH,OAAO,uBAAuB;CAEhC,MAAM,UAAU,eAAe,QAAQ;CACvC,IAAI;EACF,OAAO,MAAM,mBAAmB,SAAS,KAAK,QAAQ;UAC/C,OAAO;EACd,MAAM,SAAS,iBAAiB,MAAM;EACtC,IAAI,MAAM,SAAS,QAAQ,OAAO,GAAG,QAAQ,UAAU,OAAO,MAAM;EACpE,OAAO,SAAS,KACd;GAAE,MAAM;GAAyB,SAAS,OAAO;GAAS,EAC1D,EAAE,QAAQ,KAAK,CAChB"}

package/dist/internal/route/proxy.d.mts

@@ -1,6 +1,14 @@
 import { InterfereEnv } from "../env.mjs";
 
 //#region src/internal/route/proxy.d.ts
+/**
+ * Clone the inbound request's headers, removing entries that should never
+ * cross the proxy boundary. Returns a mutable `Headers` so callers can
+ * `.set()`/`.delete()` upstream-specific values without having to merge
+ * record literals (which lose case-insensitivity and create the precedence
+ * footguns that masked the 2026-05-01 incident in code review).
+ */
+declare function forwardedHeaders(request: Request): Headers;
 interface AuthenticatedEnv {
   apiKey: string;
   apiUrl: string;
@@ -8,6 +16,18 @@ interface AuthenticatedEnv {
 }
 declare function resolveAuthenticatedEnv(): AuthenticatedEnv | null;
 declare function extractSubPath(request: Request): string;
+/**
+ * Preserve any query string verbatim when forwarding upstream.
+ *
+ * The browser SDK uses `?_pv=…` (and `?_pt=…` in direct-ingestion
+ * mode) as a `navigator.sendBeacon` fallback when `visibilitychange→
+ * hidden` aborts the keepalive fetch path. The collector's
+ * `otlpProducerGuard` and `surfaceAuth` accept those values verbatim
+ * — but only if the proxy actually forwards them. Passing
+ * `request.url`'s `search` through (`""` when absent, leading `?`
+ * when present) keeps the rewrite transparent.
+ */
+declare function extractSearch(request: Request): string;
 declare function notConfiguredResponse(): Response;
 declare function formatProxyError(error: unknown): {
   message: string;
@@ -15,4 +35,4 @@ declare function formatProxyError(error: unknown): {
 };
 declare function forwardToCollector(request: Request, env: AuthenticatedEnv, subPath: string): Promise<Response>;
 //#endregion
-export { AuthenticatedEnv, extractSubPath, formatProxyError, forwardToCollector, notConfiguredResponse, resolveAuthenticatedEnv };
+export { AuthenticatedEnv, extractSearch, extractSubPath, formatProxyError, forwardToCollector, forwardedHeaders, notConfiguredResponse, resolveAuthenticatedEnv };

package/dist/internal/route/proxy.d.mts.map

@@ -1 +1 @@
-{"version":3,"file":"proxy.d.mts","names":[],"sources":["../../../src/internal/route/proxy.ts"],"mappings":";;;UAaiB,gBAAA;EACf,MAAA;EACA,MAAA;EACA,OAAA,EAAS,YAAA;AAAA;AAAA,iBAGK,uBAAA,CAAA,GAA2B,gBAAA;AAAA,iBAQ3B,cAAA,CAAe,OAAA,EAAS,OAAA;AAAA,iBAMxB,qBAAA,CAAA,GAAyB,QAAA;AAAA,iBAazB,gBAAA,CAAiB,KAAA;EAC/B,OAAA;EACA,KAAA;AAAA;AAAA,iBAwBoB,kBAAA,CACpB,OAAA,EAAS,OAAA,EACT,GAAA,EAAK,gBAAA,EACL,OAAA,WACC,OAAA,CAAQ,QAAA"}
+{"version":3,"file":"proxy.d.mts","names":[],"sources":["../../../src/internal/route/proxy.ts"],"mappings":";;;;;AAuDA;;;;;iBAAgB,gBAAA,CAAiB,OAAA,EAAS,OAAA,GAAU,OAAA;AAAA,UAWnC,gBAAA;EACf,MAAA;EACA,MAAA;EACA,OAAA,EAAS,YAAA;AAAA;AAAA,iBAGK,uBAAA,CAAA,GAA2B,gBAAA;AAAA,iBAQ3B,cAAA,CAAe,OAAA,EAAS,OAAA;;;;;;;AARxC;;;;;iBAiCgB,aAAA,CAAc,OAAA,EAAS,OAAA;AAAA,iBAMvB,qBAAA,CAAA,GAAyB,QAAA;AAAA,iBAgBzB,gBAAA,CAAiB,KAAA;EAC/B,OAAA;EACA,KAAA;AAAA;AAAA,iBAwBoB,kBAAA,CACpB,OAAA,EAAS,OAAA,EACT,GAAA,EAAK,gBAAA,EACL,OAAA,WACC,OAAA,CAAQ,QAAA"}

package/dist/internal/route/proxy.mjs

@@ -1,12 +1,34 @@
-import { log } from "../logger.mjs";
 import { readInterfereEnv } from "../env.mjs";
+import { log } from "../logger.mjs";
 import { omitUndefined } from "@interfere/helpers/omit-undefined";
+import { resolveRoutePrefix } from "@interfere/constants/route-prefix";
 import { extractCountryHeader } from "@interfere/types/sdk/geo";
 //#region src/internal/route/proxy.ts
-const PROXY_PATH_PATTERN = /\/api\/interfere(\/.*)/;
-function geoHeaders(request) {
-	const country = extractCountryHeader(request);
-	return country ? { "x-country-code": country } : {};
+const STRIPPED_AUTH_HEADERS = ["x-interfere-pub-token", "x-api-key"];
+const STRIPPED_TRANSPORT_HEADERS = [
+	"host",
+	"content-length",
+	"connection",
+	"keep-alive",
+	"transfer-encoding",
+	"te",
+	"trailer",
+	"upgrade",
+	"proxy-authenticate",
+	"proxy-authorization"
+];
+/**
+* Clone the inbound request's headers, removing entries that should never
+* cross the proxy boundary. Returns a mutable `Headers` so callers can
+* `.set()`/`.delete()` upstream-specific values without having to merge
+* record literals (which lose case-insensitivity and create the precedence
+* footguns that masked the 2026-05-01 incident in code review).
+*/
+function forwardedHeaders(request) {
+	const headers = new Headers(request.headers);
+	for (const name of STRIPPED_AUTH_HEADERS) headers.delete(name);
+	for (const name of STRIPPED_TRANSPORT_HEADERS) headers.delete(name);
+	return headers;
 }
 function resolveAuthenticatedEnv() {
 	const env = readInterfereEnv();
@@ -18,10 +40,34 @@ function resolveAuthenticatedEnv() {
 	};
 }
 function extractSubPath(request) {
-	return new URL(request.url).pathname.match(PROXY_PATH_PATTERN)?.[1] ?? "/";
+	const prefix = resolveRoutePrefix();
+	const url = new URL(request.url);
+	const idx = url.pathname.indexOf(prefix);
+	if (idx === -1) return "/";
+	const remainder = url.pathname.slice(idx + prefix.length);
+	if (remainder === "") return "/";
+	return remainder.startsWith("/") ? remainder : `/${remainder}`;
 }
+/**
+* Preserve any query string verbatim when forwarding upstream.
+*
+* The browser SDK uses `?_pv=…` (and `?_pt=…` in direct-ingestion
+* mode) as a `navigator.sendBeacon` fallback when `visibilitychange→
+* hidden` aborts the keepalive fetch path. The collector's
+* `otlpProducerGuard` and `surfaceAuth` accept those values verbatim
+* — but only if the proxy actually forwards them. Passing
+* `request.url`'s `search` through (`""` when absent, leading `?`
+* when present) keeps the rewrite transparent.
+*/
+function extractSearch(request) {
+	return new URL(request.url).search;
+}
+let notConfiguredWarned = false;
 function notConfiguredResponse() {
-	log.warn("Not configured", ["INTERFERE_API_KEY is not set. The proxy route will return 503."]);
+	if (!notConfiguredWarned) {
+		notConfiguredWarned = true;
+		log.warn("Not configured", ["INTERFERE_API_KEY is not set. The proxy route will return 503."]);
+	}
 	return Response.json({
 		code: "INTERFERE_NOT_CONFIGURED",
 		message: "INTERFERE_API_KEY is required."
@@ -44,18 +90,17 @@ function formatProxyError(error) {
 	};
 }
 async function forwardToCollector(request, env, subPath) {
-	const url = `${env.apiUrl}${subPath}`;
-	const traceparent = request.headers.get("traceparent");
+	const url = `${env.apiUrl}${subPath}${extractSearch(request)}`;
 	const body = request.method !== "GET" && request.method !== "HEAD" ? await request.text() : void 0;
+	const headers = forwardedHeaders(request);
+	if (!headers.has("content-type")) headers.set("content-type", "application/json");
+	headers.set("x-api-key", env.apiKey);
+	const country = extractCountryHeader(request);
+	if (country !== null) headers.set("x-country-code", country);
 	const upstream = await fetch(url, {
 		...omitUndefined({ body }),
 		method: request.method,
-		headers: {
-			"content-type": request.headers.get("content-type") ?? "application/json",
-			"x-api-key": env.apiKey,
-			...traceparent ? { traceparent } : {},
-			...geoHeaders(request)
-		},
+		headers,
 		signal: AbortSignal.timeout(1e4)
 	});
 	if (!upstream.ok) {
@@ -86,4 +131,4 @@ async function forwardToCollector(request, env, subPath) {
 	});
 }
 //#endregion
-export { extractSubPath, formatProxyError, forwardToCollector, notConfiguredResponse, resolveAuthenticatedEnv };
+export { extractSearch, extractSubPath, formatProxyError, forwardToCollector, forwardedHeaders, notConfiguredResponse, resolveAuthenticatedEnv };

package/dist/internal/route/proxy.mjs.map

@@ -1 +1 @@
-{"version":3,"file":"proxy.mjs","names":[],"sources":["../../../src/internal/route/proxy.ts"],"sourcesContent":["import { omitUndefined } from \"@interfere/helpers/omit-undefined\";\nimport { extractCountryHeader } from \"@interfere/types/sdk/geo\";\n\nimport { type InterfereEnv, readInterfereEnv } from \"../env.js\";\nimport { log } from \"../logger.js\";\n\nconst PROXY_PATH_PATTERN = /\\/api\\/interfere(\\/.*)/;\n\nfunction geoHeaders(request: Request): Record<string, string> {\n  const country = extractCountryHeader(request);\n  return country ? { \"x-country-code\": country } : {};\n}\n\nexport interface AuthenticatedEnv {\n  apiKey: string;\n  apiUrl: string;\n  release: InterfereEnv[\"release\"];\n}\n\nexport function resolveAuthenticatedEnv(): AuthenticatedEnv | null {\n  const env = readInterfereEnv();\n  if (env.apiKey === null) {\n    return null;\n  }\n  return { apiKey: env.apiKey, apiUrl: env.apiUrl, release: env.release };\n}\n\nexport function extractSubPath(request: Request): string {\n  const url = new URL(request.url);\n  const match = url.pathname.match(PROXY_PATH_PATTERN);\n  return match?.[1] ?? \"/\";\n}\n\nexport function notConfiguredResponse(): Response {\n  log.warn(\"Not configured\", [\n    \"INTERFERE_API_KEY is not set. The proxy route will return 503.\",\n  ]);\n  return Response.json(\n    {\n      code: \"INTERFERE_NOT_CONFIGURED\",\n      message: \"INTERFERE_API_KEY is required.\",\n    },\n    { status: 503 }\n  );\n}\n\nexport function formatProxyError(error: unknown): {\n  message: string;\n  lines: string[];\n} {\n  if (!(error instanceof Error)) {\n    return { message: String(error), lines: [String(error)] };\n  }\n\n  const lines = [`${error.name}: ${error.message}`];\n\n  if (\"cause\" in error && error.cause) {\n    const cause =\n      error.cause instanceof Error ? error.cause.message : String(error.cause);\n    lines.push(`cause: ${cause}`);\n  }\n\n  if (\n    \"code\" in error &&\n    typeof (error as NodeJS.ErrnoException).code === \"string\"\n  ) {\n    lines.push(`code: ${(error as NodeJS.ErrnoException).code}`);\n  }\n\n  return { message: `${error.name}: ${error.message}`, lines };\n}\n\nexport async function forwardToCollector(\n  request: Request,\n  env: AuthenticatedEnv,\n  subPath: string\n): Promise<Response> {\n  const url = `${env.apiUrl}${subPath}`;\n  const traceparent = request.headers.get(\"traceparent\");\n  const hasBody = request.method !== \"GET\" && request.method !== \"HEAD\";\n  const body = hasBody ? await request.text() : undefined;\n\n  const upstream = await fetch(url, {\n    ...omitUndefined({ body }),\n    method: request.method,\n    headers: {\n      \"content-type\": request.headers.get(\"content-type\") ?? \"application/json\",\n      \"x-api-key\": env.apiKey,\n      ...(traceparent ? { traceparent } : {}),\n      ...geoHeaders(request),\n    },\n    signal: AbortSignal.timeout(10_000),\n  });\n\n  if (!upstream.ok) {\n    const text = await upstream.text().catch(() => \"\");\n\n    if (upstream.status >= 500) {\n      log.error(\n        `Upstream ${upstream.status} for ${request.method} ${subPath}`,\n        [text]\n      );\n      return Response.json(\n        { code: \"INTERFERE_UPSTREAM_ERROR\", message: text },\n        { status: upstream.status }\n      );\n    }\n    if (upstream.status >= 400) {\n      log.warn(`Upstream ${upstream.status} for ${request.method} ${subPath}`, [\n        text,\n      ]);\n      return Response.json(\n        { code: \"INTERFERE_UPSTREAM_WARNING\", message: text },\n        { status: upstream.status }\n      );\n    }\n\n    log.error(`Upstream ${upstream.status} for ${request.method} ${subPath}`, [\n      text,\n    ]);\n    return Response.json(\n      { code: \"INTERFERE_UPSTREAM_ERROR\", message: text },\n      { status: upstream.status }\n    );\n  }\n\n  return new Response(upstream.body, {\n    status: upstream.status,\n    headers: {\n      \"content-type\":\n        upstream.headers.get(\"content-type\") ?? \"application/json\",\n    },\n  });\n}\n"],"mappings":";;;;;AAMA,MAAM,qBAAqB;AAE3B,SAAS,WAAW,SAA0C;CAC5D,MAAM,UAAU,qBAAqB,QAAQ;AAC7C,QAAO,UAAU,EAAE,kBAAkB,SAAS,GAAG,EAAE;;AASrD,SAAgB,0BAAmD;CACjE,MAAM,MAAM,kBAAkB;AAC9B,KAAI,IAAI,WAAW,KACjB,QAAO;AAET,QAAO;EAAE,QAAQ,IAAI;EAAQ,QAAQ,IAAI;EAAQ,SAAS,IAAI;EAAS;;AAGzE,SAAgB,eAAe,SAA0B;AAGvD,QADc,IADE,IAAI,QAAQ,IACX,CAAC,SAAS,MAAM,mBACrB,GAAG,MAAM;;AAGvB,SAAgB,wBAAkC;AAChD,KAAI,KAAK,kBAAkB,CACzB,iEACD,CAAC;AACF,QAAO,SAAS,KACd;EACE,MAAM;EACN,SAAS;EACV,EACD,EAAE,QAAQ,KAAK,CAChB;;AAGH,SAAgB,iBAAiB,OAG/B;AACA,KAAI,EAAE,iBAAiB,OACrB,QAAO;EAAE,SAAS,OAAO,MAAM;EAAE,OAAO,CAAC,OAAO,MAAM,CAAC;EAAE;CAG3D,MAAM,QAAQ,CAAC,GAAG,MAAM,KAAK,IAAI,MAAM,UAAU;AAEjD,KAAI,WAAW,SAAS,MAAM,OAAO;EACnC,MAAM,QACJ,MAAM,iBAAiB,QAAQ,MAAM,MAAM,UAAU,OAAO,MAAM,MAAM;AAC1E,QAAM,KAAK,UAAU,QAAQ;;AAG/B,KACE,UAAU,SACV,OAAQ,MAAgC,SAAS,SAEjD,OAAM,KAAK,SAAU,MAAgC,OAAO;AAG9D,QAAO;EAAE,SAAS,GAAG,MAAM,KAAK,IAAI,MAAM;EAAW;EAAO;;AAG9D,eAAsB,mBACpB,SACA,KACA,SACmB;CACnB,MAAM,MAAM,GAAG,IAAI,SAAS;CAC5B,MAAM,cAAc,QAAQ,QAAQ,IAAI,cAAc;CAEtD,MAAM,OADU,QAAQ,WAAW,SAAS,QAAQ,WAAW,SACxC,MAAM,QAAQ,MAAM,GAAG,KAAA;CAE9C,MAAM,WAAW,MAAM,MAAM,KAAK;EAChC,GAAG,cAAc,EAAE,MAAM,CAAC;EAC1B,QAAQ,QAAQ;EAChB,SAAS;GACP,gBAAgB,QAAQ,QAAQ,IAAI,eAAe,IAAI;GACvD,aAAa,IAAI;GACjB,GAAI,cAAc,EAAE,aAAa,GAAG,EAAE;GACtC,GAAG,WAAW,QAAQ;GACvB;EACD,QAAQ,YAAY,QAAQ,IAAO;EACpC,CAAC;AAEF,KAAI,CAAC,SAAS,IAAI;EAChB,MAAM,OAAO,MAAM,SAAS,MAAM,CAAC,YAAY,GAAG;AAElD,MAAI,SAAS,UAAU,KAAK;AAC1B,OAAI,MACF,YAAY,SAAS,OAAO,OAAO,QAAQ,OAAO,GAAG,WACrD,CAAC,KAAK,CACP;AACD,UAAO,SAAS,KACd;IAAE,MAAM;IAA4B,SAAS;IAAM,EACnD,EAAE,QAAQ,SAAS,QAAQ,CAC5B;;AAEH,MAAI,SAAS,UAAU,KAAK;AAC1B,OAAI,KAAK,YAAY,SAAS,OAAO,OAAO,QAAQ,OAAO,GAAG,WAAW,CACvE,KACD,CAAC;AACF,UAAO,SAAS,KACd;IAAE,MAAM;IAA8B,SAAS;IAAM,EACrD,EAAE,QAAQ,SAAS,QAAQ,CAC5B;;AAGH,MAAI,MAAM,YAAY,SAAS,OAAO,OAAO,QAAQ,OAAO,GAAG,WAAW,CACxE,KACD,CAAC;AACF,SAAO,SAAS,KACd;GAAE,MAAM;GAA4B,SAAS;GAAM,EACnD,EAAE,QAAQ,SAAS,QAAQ,CAC5B;;AAGH,QAAO,IAAI,SAAS,SAAS,MAAM;EACjC,QAAQ,SAAS;EACjB,SAAS,EACP,gBACE,SAAS,QAAQ,IAAI,eAAe,IAAI,oBAC3C;EACF,CAAC"}
+{"version":3,"file":"proxy.mjs","names":[],"sources":["../../../src/internal/route/proxy.ts"],"sourcesContent":["import { resolveRoutePrefix } from \"@interfere/constants/route-prefix\";\nimport { omitUndefined } from \"@interfere/helpers/omit-undefined\";\nimport { extractCountryHeader } from \"@interfere/types/sdk/geo\";\n\nimport { type InterfereEnv, readInterfereEnv } from \"../env.js\";\nimport { log } from \"../logger.js\";\n\n// Auth headers we strip on principle:\n// - `x-interfere-pub-token` is browser-side SDK auth that the proxy replaces\n//   with `x-api-key`.\n// - `x-api-key` is always supplied from server env; we don't trust whatever\n//   the caller might have sent.\nconst STRIPPED_AUTH_HEADERS = [\"x-interfere-pub-token\", \"x-api-key\"] as const;\n\n// Headers tied to the *inbound* HTTP transaction. These must not leak onto\n// the *outbound* `fetch` because the runtime computes them fresh for the new\n// body / connection, and forwarding them stale either silently corrupts the\n// request or hangs it until a timeout fires.\n//\n// Specifically `content-length`: `handleIngest` parses the incoming JSON,\n// injects build/release metadata, then re-`JSON.stringify`s the result. The\n// new body almost always has a different byte length to the original, so\n// forwarding the inbound `content-length` makes undici stall writing the\n// body until our 10s `AbortSignal.timeout` fires with\n// `Request body length does not match content-length header`. This was the\n// 2026-05-01 prod symptom (Vercel proxy 502s on `POST /v1/ingest` from\n// dashboard + homepage).\n//\n// `host` would route the upstream fetch back at the proxy hostname. fetch\n// sets it correctly from the URL automatically.\n//\n// The remainder are RFC 7230 §6.1 hop-by-hop headers — meaningful only on\n// the connection that received them. There's no canonical stdlib list for\n// any of this; every proxy in the Node ecosystem hand-rolls the same set\n// (`http-proxy`, Cloudflare Workers docs, Hono, undici's ProxyAgent, …).\nconst STRIPPED_TRANSPORT_HEADERS = [\n  \"host\",\n  \"content-length\",\n  \"connection\",\n  \"keep-alive\",\n  \"transfer-encoding\",\n  \"te\",\n  \"trailer\",\n  \"upgrade\",\n  \"proxy-authenticate\",\n  \"proxy-authorization\",\n] as const;\n\n/**\n * Clone the inbound request's headers, removing entries that should never\n * cross the proxy boundary. Returns a mutable `Headers` so callers can\n * `.set()`/`.delete()` upstream-specific values without having to merge\n * record literals (which lose case-insensitivity and create the precedence\n * footguns that masked the 2026-05-01 incident in code review).\n */\nexport function forwardedHeaders(request: Request): Headers {\n  const headers = new Headers(request.headers);\n  for (const name of STRIPPED_AUTH_HEADERS) {\n    headers.delete(name);\n  }\n  for (const name of STRIPPED_TRANSPORT_HEADERS) {\n    headers.delete(name);\n  }\n  return headers;\n}\n\nexport interface AuthenticatedEnv {\n  apiKey: string;\n  apiUrl: string;\n  release: InterfereEnv[\"release\"];\n}\n\nexport function resolveAuthenticatedEnv(): AuthenticatedEnv | null {\n  const env = readInterfereEnv();\n  if (env.apiKey === null) {\n    return null;\n  }\n  return { apiKey: env.apiKey, apiUrl: env.apiUrl, release: env.release };\n}\n\nexport function extractSubPath(request: Request): string {\n  const prefix = resolveRoutePrefix();\n  const url = new URL(request.url);\n  const idx = url.pathname.indexOf(prefix);\n  if (idx === -1) {\n    return \"/\";\n  }\n  const remainder = url.pathname.slice(idx + prefix.length);\n  if (remainder === \"\") {\n    return \"/\";\n  }\n  return remainder.startsWith(\"/\") ? remainder : `/${remainder}`;\n}\n\n/**\n * Preserve any query string verbatim when forwarding upstream.\n *\n * The browser SDK uses `?_pv=…` (and `?_pt=…` in direct-ingestion\n * mode) as a `navigator.sendBeacon` fallback when `visibilitychange→\n * hidden` aborts the keepalive fetch path. The collector's\n * `otlpProducerGuard` and `surfaceAuth` accept those values verbatim\n * — but only if the proxy actually forwards them. Passing\n * `request.url`'s `search` through (`\"\"` when absent, leading `?`\n * when present) keeps the rewrite transparent.\n */\nexport function extractSearch(request: Request): string {\n  return new URL(request.url).search;\n}\n\nlet notConfiguredWarned = false;\n\nexport function notConfiguredResponse(): Response {\n  if (!notConfiguredWarned) {\n    notConfiguredWarned = true;\n    log.warn(\"Not configured\", [\n      \"INTERFERE_API_KEY is not set. The proxy route will return 503.\",\n    ]);\n  }\n  return Response.json(\n    {\n      code: \"INTERFERE_NOT_CONFIGURED\",\n      message: \"INTERFERE_API_KEY is required.\",\n    },\n    { status: 503 }\n  );\n}\n\nexport function formatProxyError(error: unknown): {\n  message: string;\n  lines: string[];\n} {\n  if (!(error instanceof Error)) {\n    return { message: String(error), lines: [String(error)] };\n  }\n\n  const lines = [`${error.name}: ${error.message}`];\n\n  if (\"cause\" in error && error.cause) {\n    const cause =\n      error.cause instanceof Error ? error.cause.message : String(error.cause);\n    lines.push(`cause: ${cause}`);\n  }\n\n  if (\n    \"code\" in error &&\n    typeof (error as NodeJS.ErrnoException).code === \"string\"\n  ) {\n    lines.push(`code: ${(error as NodeJS.ErrnoException).code}`);\n  }\n\n  return { message: `${error.name}: ${error.message}`, lines };\n}\n\nexport async function forwardToCollector(\n  request: Request,\n  env: AuthenticatedEnv,\n  subPath: string\n): Promise<Response> {\n  const url = `${env.apiUrl}${subPath}${extractSearch(request)}`;\n  const hasBody = request.method !== \"GET\" && request.method !== \"HEAD\";\n  const body = hasBody ? await request.text() : undefined;\n\n  const headers = forwardedHeaders(request);\n  // Default to JSON only when the inbound request didn't pin a content-type\n  // — non-`/v1/ingest` paths relay the body bytes verbatim, so honour\n  // whatever the caller said it was sending.\n  if (!headers.has(\"content-type\")) {\n    headers.set(\"content-type\", \"application/json\");\n  }\n  headers.set(\"x-api-key\", env.apiKey);\n  const country = extractCountryHeader(request);\n  if (country !== null) {\n    headers.set(\"x-country-code\", country);\n  }\n\n  const upstream = await fetch(url, {\n    ...omitUndefined({ body }),\n    method: request.method,\n    headers,\n    signal: AbortSignal.timeout(10_000),\n  });\n\n  if (!upstream.ok) {\n    const text = await upstream.text().catch(() => \"\");\n\n    if (upstream.status >= 500) {\n      log.error(\n        `Upstream ${upstream.status} for ${request.method} ${subPath}`,\n        [text]\n      );\n      return Response.json(\n        { code: \"INTERFERE_UPSTREAM_ERROR\", message: text },\n        { status: upstream.status }\n      );\n    }\n    if (upstream.status >= 400) {\n      log.warn(`Upstream ${upstream.status} for ${request.method} ${subPath}`, [\n        text,\n      ]);\n      return Response.json(\n        { code: \"INTERFERE_UPSTREAM_WARNING\", message: text },\n        { status: upstream.status }\n      );\n    }\n\n    log.error(`Upstream ${upstream.status} for ${request.method} ${subPath}`, [\n      text,\n    ]);\n    return Response.json(\n      { code: \"INTERFERE_UPSTREAM_ERROR\", message: text },\n      { status: upstream.status }\n    );\n  }\n\n  return new Response(upstream.body, {\n    status: upstream.status,\n    headers: {\n      \"content-type\":\n        upstream.headers.get(\"content-type\") ?? \"application/json\",\n    },\n  });\n}\n"],"mappings":";;;;;;AAYA,MAAM,wBAAwB,CAAC,yBAAyB,YAAY;AAuBpE,MAAM,6BAA6B;CACjC;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACD;;;;;;;;AASD,SAAgB,iBAAiB,SAA2B;CAC1D,MAAM,UAAU,IAAI,QAAQ,QAAQ,QAAQ;CAC5C,KAAK,MAAM,QAAQ,uBACjB,QAAQ,OAAO,KAAK;CAEtB,KAAK,MAAM,QAAQ,4BACjB,QAAQ,OAAO,KAAK;CAEtB,OAAO;;AAST,SAAgB,0BAAmD;CACjE,MAAM,MAAM,kBAAkB;CAC9B,IAAI,IAAI,WAAW,MACjB,OAAO;CAET,OAAO;EAAE,QAAQ,IAAI;EAAQ,QAAQ,IAAI;EAAQ,SAAS,IAAI;EAAS;;AAGzE,SAAgB,eAAe,SAA0B;CACvD,MAAM,SAAS,oBAAoB;CACnC,MAAM,MAAM,IAAI,IAAI,QAAQ,IAAI;CAChC,MAAM,MAAM,IAAI,SAAS,QAAQ,OAAO;CACxC,IAAI,QAAQ,IACV,OAAO;CAET,MAAM,YAAY,IAAI,SAAS,MAAM,MAAM,OAAO,OAAO;CACzD,IAAI,cAAc,IAChB,OAAO;CAET,OAAO,UAAU,WAAW,IAAI,GAAG,YAAY,IAAI;;;;;;;;;;;;;AAcrD,SAAgB,cAAc,SAA0B;CACtD,OAAO,IAAI,IAAI,QAAQ,IAAI,CAAC;;AAG9B,IAAI,sBAAsB;AAE1B,SAAgB,wBAAkC;CAChD,IAAI,CAAC,qBAAqB;EACxB,sBAAsB;EACtB,IAAI,KAAK,kBAAkB,CACzB,iEACD,CAAC;;CAEJ,OAAO,SAAS,KACd;EACE,MAAM;EACN,SAAS;EACV,EACD,EAAE,QAAQ,KAAK,CAChB;;AAGH,SAAgB,iBAAiB,OAG/B;CACA,IAAI,EAAE,iBAAiB,QACrB,OAAO;EAAE,SAAS,OAAO,MAAM;EAAE,OAAO,CAAC,OAAO,MAAM,CAAC;EAAE;CAG3D,MAAM,QAAQ,CAAC,GAAG,MAAM,KAAK,IAAI,MAAM,UAAU;CAEjD,IAAI,WAAW,SAAS,MAAM,OAAO;EACnC,MAAM,QACJ,MAAM,iBAAiB,QAAQ,MAAM,MAAM,UAAU,OAAO,MAAM,MAAM;EAC1E,MAAM,KAAK,UAAU,QAAQ;;CAG/B,IACE,UAAU,SACV,OAAQ,MAAgC,SAAS,UAEjD,MAAM,KAAK,SAAU,MAAgC,OAAO;CAG9D,OAAO;EAAE,SAAS,GAAG,MAAM,KAAK,IAAI,MAAM;EAAW;EAAO;;AAG9D,eAAsB,mBACpB,SACA,KACA,SACmB;CACnB,MAAM,MAAM,GAAG,IAAI,SAAS,UAAU,cAAc,QAAQ;CAE5D,MAAM,OADU,QAAQ,WAAW,SAAS,QAAQ,WAAW,SACxC,MAAM,QAAQ,MAAM,GAAG,KAAA;CAE9C,MAAM,UAAU,iBAAiB,QAAQ;CAIzC,IAAI,CAAC,QAAQ,IAAI,eAAe,EAC9B,QAAQ,IAAI,gBAAgB,mBAAmB;CAEjD,QAAQ,IAAI,aAAa,IAAI,OAAO;CACpC,MAAM,UAAU,qBAAqB,QAAQ;CAC7C,IAAI,YAAY,MACd,QAAQ,IAAI,kBAAkB,QAAQ;CAGxC,MAAM,WAAW,MAAM,MAAM,KAAK;EAChC,GAAG,cAAc,EAAE,MAAM,CAAC;EAC1B,QAAQ,QAAQ;EAChB;EACA,QAAQ,YAAY,QAAQ,IAAO;EACpC,CAAC;CAEF,IAAI,CAAC,SAAS,IAAI;EAChB,MAAM,OAAO,MAAM,SAAS,MAAM,CAAC,YAAY,GAAG;EAElD,IAAI,SAAS,UAAU,KAAK;GAC1B,IAAI,MACF,YAAY,SAAS,OAAO,OAAO,QAAQ,OAAO,GAAG,WACrD,CAAC,KAAK,CACP;GACD,OAAO,SAAS,KACd;IAAE,MAAM;IAA4B,SAAS;IAAM,EACnD,EAAE,QAAQ,SAAS,QAAQ,CAC5B;;EAEH,IAAI,SAAS,UAAU,KAAK;GAC1B,IAAI,KAAK,YAAY,SAAS,OAAO,OAAO,QAAQ,OAAO,GAAG,WAAW,CACvE,KACD,CAAC;GACF,OAAO,SAAS,KACd;IAAE,MAAM;IAA8B,SAAS;IAAM,EACrD,EAAE,QAAQ,SAAS,QAAQ,CAC5B;;EAGH,IAAI,MAAM,YAAY,SAAS,OAAO,OAAO,QAAQ,OAAO,GAAG,WAAW,CACxE,KACD,CAAC;EACF,OAAO,SAAS,KACd;GAAE,MAAM;GAA4B,SAAS;GAAM,EACnD,EAAE,QAAQ,SAAS,QAAQ,CAC5B;;CAGH,OAAO,IAAI,SAAS,SAAS,MAAM;EACjC,QAAQ,SAAS;EACjB,SAAS,EACP,gBACE,SAAS,QAAQ,IAAI,eAAe,IAAI,oBAC3C;EACF,CAAC"}

package/dist/internal/server/capture.d.mts

@@ -1,9 +1,9 @@
 import { CaptureErrorContext, OnRequestErrorContext } from "./types.mjs";
 
 //#region src/internal/server/capture.d.ts
-declare function captureError(error: unknown, request?: unknown, context?: CaptureErrorContext): Promise<void>;
+declare function captureError(error: unknown, _request?: unknown, context?: CaptureErrorContext): void;
 declare function onRequestError(error: Error & {
   digest?: string;
-}, request: unknown, context: OnRequestErrorContext): Promise<void>;
+}, _request: unknown, context: OnRequestErrorContext): void;
 //#endregion
 export { captureError, onRequestError };

package/dist/internal/server/capture.d.mts.map

@@ -1 +1 @@
-{"version":3,"file":"capture.d.mts","names":[],"sources":["../../../src/internal/server/capture.ts"],"mappings":";;;iBAwBsB,YAAA,CACpB,KAAA,WACA,OAAA,YACA,OAAA,GAAU,mBAAA,GACT,OAAA;AAAA,iBAoCmB,cAAA,CACpB,KAAA,EAAO,KAAA;EAAU,MAAA;AAAA,GACjB,OAAA,WACA,OAAA,EAAS,qBAAA,GACR,OAAA"}
+{"version":3,"file":"capture.d.mts","names":[],"sources":["../../../src/internal/server/capture.ts"],"mappings":";;;iBA+GgB,YAAA,CACd,KAAA,WACA,QAAA,YACA,OAAA,GAAU,mBAAA;AAAA,iBAwBI,cAAA,CACd,KAAA,EAAO,KAAA;EAAU,MAAA;AAAA,GACjB,QAAA,WACA,OAAA,EAAS,qBAAA"}

package/dist/internal/server/capture.mjs

@@ -1,53 +1,87 @@
-import { isEnabledInEnvironment } from "../env.mjs";
-import { isErrorCaptured, markErrorCaptured } from "./dedupe.mjs";
-import { buildErrorEnvelope } from "./envelope.mjs";
-import { normalizeRequest } from "./normalize-request.mjs";
+import { isEnabledOnServer } from "../env.mjs";
 import { isPluginEnabled } from "./remote-config.mjs";
-import { resolveServerCaptureRuntime } from "./runtime.mjs";
-import { sendEnvelope } from "./transport.mjs";
-import { MECHANISM_TYPE } from "@interfere/types/sdk/errors";
+import { SpanKind, SpanStatusCode, trace } from "@opentelemetry/api";
+import { MECHANISM_TYPE, isNonErrorException, toException } from "@interfere/types/sdk/errors";
 //#region src/internal/server/capture.ts
+const TRACER_NAME = "@interfere/next/server";
 const ON_REQUEST_ERROR_MECHANISM = {
 	type: MECHANISM_TYPE.nextjs.onRequestError,
 	handled: false,
 	synthetic: false
 };
-const DEFAULT_REQUEST = {
-	method: "GET",
-	path: "/",
-	headers: new Headers()
+const DEFAULT_CAPTURE_ERROR_MECHANISM = {
+	type: MECHANISM_TYPE.nextjs.captureError,
+	handled: true
 };
-async function captureError(error, request, context) {
-	if (!isEnabledInEnvironment()) return;
+const seen = /* @__PURE__ */ new WeakSet();
+function buildAttrs(value, mechanism, context) {
+	const attrs = {
+		"interfere.exception.mechanism": mechanism.type,
+		"interfere.exception.handled": String(mechanism.handled)
+	};
+	const digest = context?.nextjs?.errorDigest;
+	if (digest) attrs["interfere.error.digest"] = digest;
+	if (context?.nextjs?.requestMethod) attrs["http.request.method"] = context.nextjs.requestMethod;
+	if (context?.nextjs?.requestPath) attrs["url.path"] = context.nextjs.requestPath;
+	if (isNonErrorException(value)) {
+		attrs["exception.type"] = value.type;
+		attrs["exception.message"] = value.value;
+		attrs["interfere.exception.kind"] = "non-error";
+		return attrs;
+	}
+	attrs["exception.type"] = value.name;
+	attrs["exception.message"] = value.message;
+	if (value.stack) attrs["exception.stacktrace"] = value.stack;
+	return attrs;
+}
+function recordException({ error, mechanism, context }) {
+	const value = toException(error);
+	const attrs = buildAttrs(value, mechanism, context);
+	const tracer = trace.getTracer(TRACER_NAME);
+	const active = trace.getActiveSpan();
+	if (active) {
+		active.addEvent("exception", attrs);
+		if (!mechanism.handled) active.setStatus({
+			code: SpanStatusCode.ERROR,
+			message: isNonErrorException(value) ? value.value : value.message
+		});
+		return;
+	}
+	const span = tracer.startSpan("interfere.captureError", { kind: SpanKind.INTERNAL });
+	span.addEvent("exception", attrs);
+	if (!mechanism.handled) span.setStatus({
+		code: SpanStatusCode.ERROR,
+		message: isNonErrorException(value) ? value.value : value.message
+	});
+	span.end();
+}
+function captureError(error, _request, context) {
+	if (!isEnabledOnServer()) return;
 	if (!isPluginEnabled("errors")) return;
-	const runtime = resolveServerCaptureRuntime();
-	if (runtime.apiKey === null) return;
-	const normalizedRequest = normalizeRequest(request);
-	const envelope = buildErrorEnvelope({
+	if (error instanceof Error) {
+		if (seen.has(error)) return;
+		seen.add(error);
+	}
+	recordException({
 		error,
-		request: normalizedRequest,
-		context,
-		runtime
+		mechanism: context?.mechanism ?? DEFAULT_CAPTURE_ERROR_MECHANISM,
+		context
 	});
-	try {
-		await sendEnvelope({
-			envelope,
-			runtime,
-			traceparent: context?.traceparent ?? normalizedRequest?.headers.get("traceparent") ?? void 0
-		});
-	} catch {}
 }
-async function onRequestError(error, request, context) {
-	if (isErrorCaptured(error)) return;
-	markErrorCaptured(error);
-	const normalizedRequest = normalizeRequest(request) ?? DEFAULT_REQUEST;
-	await captureError(error, normalizedRequest, {
+function onRequestError(error, _request, context) {
+	if (seen.has(error)) return;
+	seen.add(error);
+	if (!isEnabledOnServer()) return;
+	if (!isPluginEnabled("errors")) return;
+	recordException({
+		error,
 		mechanism: ON_REQUEST_ERROR_MECHANISM,
-		nextjs: {
-			...context,
-			requestMethod: normalizedRequest.method,
-			requestPath: normalizedRequest.path,
-			...error.digest ? { errorDigest: error.digest } : {}
+		context: {
+			mechanism: ON_REQUEST_ERROR_MECHANISM,
+			nextjs: {
+				...context,
+				...error.digest ? { errorDigest: error.digest } : {}
+			}
 		}
 	});
 }

package/dist/internal/server/capture.mjs.map

@@ -1 +1 @@
-{"version":3,"file":"capture.mjs","names":[],"sources":["../../../src/internal/server/capture.ts"],"sourcesContent":["import { MECHANISM_TYPE } from \"@interfere/types/sdk/errors\";\nimport type { ErrorMechanism } from \"@interfere/types/sdk/plugins/payload/errors\";\n\nimport { isEnabledInEnvironment } from \"../env.js\";\nimport { isErrorCaptured, markErrorCaptured } from \"./dedupe.js\";\nimport { buildErrorEnvelope } from \"./envelope.js\";\nimport { normalizeRequest, TRACEPARENT_HEADER } from \"./normalize-request.js\";\nimport { isPluginEnabled } from \"./remote-config.js\";\nimport { resolveServerCaptureRuntime } from \"./runtime.js\";\nimport { sendEnvelope } from \"./transport.js\";\nimport type { CaptureErrorContext, OnRequestErrorContext } from \"./types.js\";\n\nconst ON_REQUEST_ERROR_MECHANISM: ErrorMechanism = {\n  type: MECHANISM_TYPE.nextjs.onRequestError,\n  handled: false,\n  synthetic: false,\n};\n\nconst DEFAULT_REQUEST = {\n  method: \"GET\",\n  path: \"/\",\n  headers: new Headers(),\n};\n\nexport async function captureError(\n  error: unknown,\n  request?: unknown,\n  context?: CaptureErrorContext\n): Promise<void> {\n  if (!isEnabledInEnvironment()) {\n    return;\n  }\n\n  if (!isPluginEnabled(\"errors\")) {\n    return;\n  }\n\n  const runtime = resolveServerCaptureRuntime();\n  if (runtime.apiKey === null) {\n    return;\n  }\n\n  const normalizedRequest = normalizeRequest(request);\n  const envelope = buildErrorEnvelope({\n    error,\n    request: normalizedRequest,\n    context,\n    runtime,\n  });\n\n  try {\n    await sendEnvelope({\n      envelope,\n      runtime,\n      traceparent:\n        context?.traceparent ??\n        normalizedRequest?.headers.get(TRACEPARENT_HEADER) ??\n        undefined,\n    });\n  } catch {\n    /* best-effort */\n  }\n}\n\nexport async function onRequestError(\n  error: Error & { digest?: string },\n  request: unknown,\n  context: OnRequestErrorContext\n): Promise<void> {\n  if (isErrorCaptured(error)) {\n    return;\n  }\n  markErrorCaptured(error);\n\n  const normalizedRequest = normalizeRequest(request) ?? DEFAULT_REQUEST;\n\n  await captureError(error, normalizedRequest, {\n    mechanism: ON_REQUEST_ERROR_MECHANISM,\n    nextjs: {\n      ...context,\n      requestMethod: normalizedRequest.method,\n      requestPath: normalizedRequest.path,\n      ...(error.digest ? { errorDigest: error.digest } : {}),\n    },\n  });\n}\n"],"mappings":";;;;;;;;;AAYA,MAAM,6BAA6C;CACjD,MAAM,eAAe,OAAO;CAC5B,SAAS;CACT,WAAW;CACZ;AAED,MAAM,kBAAkB;CACtB,QAAQ;CACR,MAAM;CACN,SAAS,IAAI,SAAS;CACvB;AAED,eAAsB,aACpB,OACA,SACA,SACe;AACf,KAAI,CAAC,wBAAwB,CAC3B;AAGF,KAAI,CAAC,gBAAgB,SAAS,CAC5B;CAGF,MAAM,UAAU,6BAA6B;AAC7C,KAAI,QAAQ,WAAW,KACrB;CAGF,MAAM,oBAAoB,iBAAiB,QAAQ;CACnD,MAAM,WAAW,mBAAmB;EAClC;EACA,SAAS;EACT;EACA;EACD,CAAC;AAEF,KAAI;AACF,QAAM,aAAa;GACjB;GACA;GACA,aACE,SAAS,eACT,mBAAmB,QAAQ,IAAA,cAAuB,IAClD,KAAA;GACH,CAAC;SACI;;AAKV,eAAsB,eACpB,OACA,SACA,SACe;AACf,KAAI,gBAAgB,MAAM,CACxB;AAEF,mBAAkB,MAAM;CAExB,MAAM,oBAAoB,iBAAiB,QAAQ,IAAI;AAEvD,OAAM,aAAa,OAAO,mBAAmB;EAC3C,WAAW;EACX,QAAQ;GACN,GAAG;GACH,eAAe,kBAAkB;GACjC,aAAa,kBAAkB;GAC/B,GAAI,MAAM,SAAS,EAAE,aAAa,MAAM,QAAQ,GAAG,EAAE;GACtD;EACF,CAAC"}
+{"version":3,"file":"capture.mjs","names":[],"sources":["../../../src/internal/server/capture.ts"],"sourcesContent":["import {\n  isNonErrorException,\n  MECHANISM_TYPE,\n  type NonErrorException,\n  toException,\n} from \"@interfere/types/sdk/errors\";\nimport type { ErrorMechanism } from \"@interfere/types/sdk/plugins/payload/errors\";\n\nimport { SpanKind, SpanStatusCode, trace } from \"@opentelemetry/api\";\n\nimport { isEnabledOnServer } from \"../env.js\";\nimport { isPluginEnabled } from \"./remote-config.js\";\nimport type { CaptureErrorContext, OnRequestErrorContext } from \"./types.js\";\n\nconst TRACER_NAME = \"@interfere/next/server\";\n\nconst ON_REQUEST_ERROR_MECHANISM: ErrorMechanism = {\n  type: MECHANISM_TYPE.nextjs.onRequestError,\n  handled: false,\n  synthetic: false,\n};\n\nconst DEFAULT_CAPTURE_ERROR_MECHANISM: ErrorMechanism = {\n  type: MECHANISM_TYPE.nextjs.captureError,\n  handled: true,\n};\n\n// Per-process dedupe so a thrown route-handler error captured by both the\n// caller's `try { } catch { captureError(e) }` and Next's own\n// `onRequestError` hook only emits one exception event. WeakSet so GC'd\n// errors don't pin memory.\nconst seen = new WeakSet<Error>();\n\ninterface RecordExceptionInput {\n  context?: CaptureErrorContext | undefined;\n  error: unknown;\n  mechanism: ErrorMechanism;\n}\n\nfunction buildAttrs(\n  value: Error | NonErrorException,\n  mechanism: ErrorMechanism,\n  context: CaptureErrorContext | undefined\n): Record<string, string> {\n  const attrs: Record<string, string> = {\n    \"interfere.exception.mechanism\": mechanism.type,\n    \"interfere.exception.handled\": String(mechanism.handled),\n  };\n  const digest = context?.nextjs?.errorDigest;\n  if (digest) {\n    attrs[\"interfere.error.digest\"] = digest;\n  }\n  if (context?.nextjs?.requestMethod) {\n    attrs[\"http.request.method\"] = context.nextjs.requestMethod;\n  }\n  if (context?.nextjs?.requestPath) {\n    attrs[\"url.path\"] = context.nextjs.requestPath;\n  }\n  if (isNonErrorException(value)) {\n    attrs[\"exception.type\"] = value.type;\n    attrs[\"exception.message\"] = value.value;\n    attrs[\"interfere.exception.kind\"] = \"non-error\";\n    return attrs;\n  }\n  attrs[\"exception.type\"] = value.name;\n  attrs[\"exception.message\"] = value.message;\n  if (value.stack) {\n    attrs[\"exception.stacktrace\"] = value.stack;\n  }\n  return attrs;\n}\n\nfunction recordException({\n  error,\n  mechanism,\n  context,\n}: RecordExceptionInput): void {\n  const value = toException(error);\n  const attrs = buildAttrs(value, mechanism, context);\n\n  // Prefer the active span (route handler / Next request span). Fall\n  // back to a fresh single-event span when no active span is available\n  // — Next sometimes calls `onRequestError` from background contexts\n  // (background revalidation, failed prerender) where the request span\n  // is no longer current.\n  const tracer = trace.getTracer(TRACER_NAME);\n  const active = trace.getActiveSpan();\n  if (active) {\n    active.addEvent(\"exception\", attrs);\n    if (!mechanism.handled) {\n      active.setStatus({\n        code: SpanStatusCode.ERROR,\n        message: isNonErrorException(value) ? value.value : value.message,\n      });\n    }\n    return;\n  }\n\n  const span = tracer.startSpan(\"interfere.captureError\", {\n    kind: SpanKind.INTERNAL,\n  });\n  span.addEvent(\"exception\", attrs);\n  if (!mechanism.handled) {\n    span.setStatus({\n      code: SpanStatusCode.ERROR,\n      message: isNonErrorException(value) ? value.value : value.message,\n    });\n  }\n  span.end();\n}\n\nexport function captureError(\n  error: unknown,\n  _request?: unknown,\n  context?: CaptureErrorContext\n): void {\n  if (!isEnabledOnServer()) {\n    return;\n  }\n\n  if (!isPluginEnabled(\"errors\")) {\n    return;\n  }\n\n  if (error instanceof Error) {\n    if (seen.has(error)) {\n      return;\n    }\n    seen.add(error);\n  }\n\n  recordException({\n    error,\n    mechanism: context?.mechanism ?? DEFAULT_CAPTURE_ERROR_MECHANISM,\n    context,\n  });\n}\n\nexport function onRequestError(\n  error: Error & { digest?: string },\n  _request: unknown,\n  context: OnRequestErrorContext\n): void {\n  if (seen.has(error)) {\n    return;\n  }\n  seen.add(error);\n\n  if (!isEnabledOnServer()) {\n    return;\n  }\n  if (!isPluginEnabled(\"errors\")) {\n    return;\n  }\n\n  recordException({\n    error,\n    mechanism: ON_REQUEST_ERROR_MECHANISM,\n    context: {\n      mechanism: ON_REQUEST_ERROR_MECHANISM,\n      nextjs: {\n        ...context,\n        ...(error.digest ? { errorDigest: error.digest } : {}),\n      },\n    },\n  });\n}\n"],"mappings":";;;;;AAcA,MAAM,cAAc;AAEpB,MAAM,6BAA6C;CACjD,MAAM,eAAe,OAAO;CAC5B,SAAS;CACT,WAAW;CACZ;AAED,MAAM,kCAAkD;CACtD,MAAM,eAAe,OAAO;CAC5B,SAAS;CACV;AAMD,MAAM,uBAAO,IAAI,SAAgB;AAQjC,SAAS,WACP,OACA,WACA,SACwB;CACxB,MAAM,QAAgC;EACpC,iCAAiC,UAAU;EAC3C,+BAA+B,OAAO,UAAU,QAAQ;EACzD;CACD,MAAM,SAAS,SAAS,QAAQ;CAChC,IAAI,QACF,MAAM,4BAA4B;CAEpC,IAAI,SAAS,QAAQ,eACnB,MAAM,yBAAyB,QAAQ,OAAO;CAEhD,IAAI,SAAS,QAAQ,aACnB,MAAM,cAAc,QAAQ,OAAO;CAErC,IAAI,oBAAoB,MAAM,EAAE;EAC9B,MAAM,oBAAoB,MAAM;EAChC,MAAM,uBAAuB,MAAM;EACnC,MAAM,8BAA8B;EACpC,OAAO;;CAET,MAAM,oBAAoB,MAAM;CAChC,MAAM,uBAAuB,MAAM;CACnC,IAAI,MAAM,OACR,MAAM,0BAA0B,MAAM;CAExC,OAAO;;AAGT,SAAS,gBAAgB,EACvB,OACA,WACA,WAC6B;CAC7B,MAAM,QAAQ,YAAY,MAAM;CAChC,MAAM,QAAQ,WAAW,OAAO,WAAW,QAAQ;CAOnD,MAAM,SAAS,MAAM,UAAU,YAAY;CAC3C,MAAM,SAAS,MAAM,eAAe;CACpC,IAAI,QAAQ;EACV,OAAO,SAAS,aAAa,MAAM;EACnC,IAAI,CAAC,UAAU,SACb,OAAO,UAAU;GACf,MAAM,eAAe;GACrB,SAAS,oBAAoB,MAAM,GAAG,MAAM,QAAQ,MAAM;GAC3D,CAAC;EAEJ;;CAGF,MAAM,OAAO,OAAO,UAAU,0BAA0B,EACtD,MAAM,SAAS,UAChB,CAAC;CACF,KAAK,SAAS,aAAa,MAAM;CACjC,IAAI,CAAC,UAAU,SACb,KAAK,UAAU;EACb,MAAM,eAAe;EACrB,SAAS,oBAAoB,MAAM,GAAG,MAAM,QAAQ,MAAM;EAC3D,CAAC;CAEJ,KAAK,KAAK;;AAGZ,SAAgB,aACd,OACA,UACA,SACM;CACN,IAAI,CAAC,mBAAmB,EACtB;CAGF,IAAI,CAAC,gBAAgB,SAAS,EAC5B;CAGF,IAAI,iBAAiB,OAAO;EAC1B,IAAI,KAAK,IAAI,MAAM,EACjB;EAEF,KAAK,IAAI,MAAM;;CAGjB,gBAAgB;EACd;EACA,WAAW,SAAS,aAAa;EACjC;EACD,CAAC;;AAGJ,SAAgB,eACd,OACA,UACA,SACM;CACN,IAAI,KAAK,IAAI,MAAM,EACjB;CAEF,KAAK,IAAI,MAAM;CAEf,IAAI,CAAC,mBAAmB,EACtB;CAEF,IAAI,CAAC,gBAAgB,SAAS,EAC5B;CAGF,gBAAgB;EACd;EACA,WAAW;EACX,SAAS;GACP,WAAW;GACX,QAAQ;IACN,GAAG;IACH,GAAI,MAAM,SAAS,EAAE,aAAa,MAAM,QAAQ,GAAG,EAAE;IACtD;GACF;EACF,CAAC"}

package/dist/internal/server/console-bridge.d.mts

@@ -0,0 +1,19 @@
+//#region src/internal/server/console-bridge.d.ts
+/**
+ * Patches `console.{debug,log,info,warn,error}` to additionally emit OTel
+ * `LogRecord`s alongside the original output. Every log record carries
+ * the active span's context (so trace ↔ log correlation works in
+ * dashboards) and any `Error` arg gets unpacked into semconv exception
+ * attrs.
+ *
+ * Returns a disposer that restores the original `console.*` methods.
+ *
+ * Cycle protection: `emitting` guards against the bridge re-entering
+ * itself if a logger backend itself logs to console (which would
+ * recursively emit forever). Failures are bounded-rate logged via the
+ * original `console.error` so a broken backend doesn't drown the
+ * customer's logs in bridge-failure messages.
+ */
+declare function bridgeConsoleToOtel(): () => void;
+//#endregion
+export { bridgeConsoleToOtel };

package/dist/internal/server/console-bridge.d.mts.map

@@ -0,0 +1 @@
+{"version":3,"file":"console-bridge.d.mts","names":[],"sources":["../../../src/internal/server/console-bridge.ts"],"mappings":";;AAgFA;;;;;;;;;;;;;;iBAAgB,mBAAA,CAAA"}