npm - @juspay/neurolink - Versions diffs - 9.30.0 → 9.31.1 - Mend

@juspay/neurolink 9.30.0 → 9.31.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (977) hide show

package/CHANGELOG.md +20 -0
package/README.md +2 -3
package/dist/adapters/providerImageAdapter.js +13 -22
package/dist/adapters/video/videoAnalyzer.d.ts +4 -4
package/dist/adapters/video/videoAnalyzer.js +3 -3
package/dist/agent/directTools.d.ts +20 -289
package/dist/agent/directTools.js +11 -10
package/dist/auth/accountPool.d.ts +68 -0
package/dist/auth/accountPool.js +178 -0
package/dist/auth/anthropicOAuth.d.ts +15 -5
package/dist/auth/anthropicOAuth.js +117 -57
package/dist/auth/index.d.ts +7 -5
package/dist/auth/index.js +6 -2
package/dist/auth/tokenStore.d.ts +71 -27
package/dist/auth/tokenStore.js +342 -64
package/dist/cli/commands/auth.d.ts +39 -2
package/dist/cli/commands/auth.js +585 -36
package/dist/cli/commands/config.d.ts +47 -574
package/dist/cli/commands/config.js +142 -24
package/dist/cli/commands/docs.d.ts +1 -5
package/dist/cli/commands/observability.d.ts +1 -17
package/dist/cli/commands/ollama.js +1 -1
package/dist/cli/commands/proxy.d.ts +20 -0
package/dist/cli/commands/proxy.js +1254 -0
package/dist/cli/commands/setup-anthropic.js +1 -1
package/dist/cli/commands/setup-azure.js +1 -1
package/dist/cli/commands/setup-bedrock.js +2 -2
package/dist/cli/commands/setup-gcp.js +1 -1
package/dist/cli/commands/setup-google-ai.js +1 -1
package/dist/cli/commands/setup-huggingface.js +2 -2
package/dist/cli/commands/setup-mistral.js +1 -1
package/dist/cli/commands/setup-openai.js +1 -1
package/dist/cli/commands/setup.js +3 -3
package/dist/cli/commands/telemetry.d.ts +1 -22
package/dist/cli/factories/authCommandFactory.d.ts +16 -11
package/dist/cli/factories/authCommandFactory.js +96 -1
package/dist/cli/factories/ollamaCommandFactory.js +1 -1
package/dist/cli/factories/sagemakerCommandFactory.js +25 -6
package/dist/cli/index.d.ts +0 -6
package/dist/cli/index.js +5 -2
package/dist/cli/loop/conversationSelector.js +7 -2
package/dist/cli/parser.js +19 -1
package/dist/cli/utils/envManager.js +2 -2
package/dist/cli/utils/ollamaUtils.d.ts +1 -2
package/dist/client/adapters/providerImageAdapter.js +588 -0
package/dist/client/adapters/tts/googleTTSHandler.js +344 -0
package/dist/client/adapters/video/directorPipeline.js +516 -0
package/dist/client/adapters/video/ffmpegAdapter.js +206 -0
package/dist/client/adapters/video/frameExtractor.js +143 -0
package/dist/client/adapters/video/vertexVideoHandler.js +763 -0
package/dist/client/adapters/video/videoAnalyzer.js +238 -0
package/dist/client/adapters/video/videoMerger.js +171 -0
package/dist/client/agent/directTools.js +840 -0
package/dist/client/aiSdkAdapter.d.ts +196 -0
package/dist/client/aiSdkAdapter.js +487 -0
package/dist/client/auth/anthropicOAuth.js +974 -0
package/dist/client/auth/tokenStore.js +799 -0
package/dist/client/auth.d.ts +248 -0
package/dist/client/auth.js +473 -0
package/dist/client/client/aiSdkAdapter.js +487 -0
package/dist/client/client/auth.js +473 -0
package/dist/client/client/errors.js +552 -0
package/dist/client/client/httpClient.js +837 -0
package/dist/client/client/index.js +172 -0
package/dist/client/client/interceptors.js +601 -0
package/dist/client/client/reactHooks.js +1159 -0
package/dist/client/client/sseClient.js +545 -0
package/dist/client/client/streamingClient.js +917 -0
package/dist/client/client/wsClient.js +369 -0
package/dist/client/config/configManager.js +303 -0
package/dist/client/config/conversationMemory.js +86 -0
package/dist/client/config/taskClassificationConfig.js +148 -0
package/dist/client/constants/contextWindows.js +295 -0
package/dist/client/constants/enums.js +853 -0
package/dist/client/constants/index.js +207 -0
package/dist/client/constants/performance.js +389 -0
package/dist/client/constants/retry.js +266 -0
package/dist/client/constants/timeouts.js +182 -0
package/dist/client/constants/tokens.js +380 -0
package/dist/client/constants/videoErrors.js +46 -0
package/dist/client/context/budgetChecker.js +98 -0
package/dist/client/context/contextCompactor.js +205 -0
package/dist/client/context/emergencyTruncation.js +88 -0
package/dist/client/context/errorDetection.js +171 -0
package/dist/client/context/errors.js +21 -0
package/dist/client/context/fileTokenBudget.js +127 -0
package/dist/client/context/prompts/summarizationPrompt.js +117 -0
package/dist/client/context/stages/fileReadDeduplicator.js +66 -0
package/dist/client/context/stages/slidingWindowTruncator.js +190 -0
package/dist/client/context/stages/structuredSummarizer.js +99 -0
package/dist/client/context/stages/toolOutputPruner.js +52 -0
package/dist/client/context/summarizationEngine.js +136 -0
package/dist/client/context/toolOutputLimits.js +78 -0
package/dist/client/context/toolPairRepair.js +66 -0
package/dist/client/core/analytics.js +88 -0
package/dist/client/core/baseProvider.js +1385 -0
package/dist/client/core/constants.js +140 -0
package/dist/client/core/conversationMemoryFactory.js +141 -0
package/dist/client/core/conversationMemoryInitializer.js +128 -0
package/dist/client/core/conversationMemoryManager.js +344 -0
package/dist/client/core/dynamicModels.js +358 -0
package/dist/client/core/evaluation.js +309 -0
package/dist/client/core/evaluationProviders.js +248 -0
package/dist/client/core/factory.js +412 -0
package/dist/client/core/infrastructure/baseError.js +22 -0
package/dist/client/core/infrastructure/baseFactory.js +54 -0
package/dist/client/core/infrastructure/baseRegistry.js +49 -0
package/dist/client/core/infrastructure/index.js +5 -0
package/dist/client/core/infrastructure/retry.js +20 -0
package/dist/client/core/infrastructure/typedEventEmitter.js +23 -0
package/dist/client/core/modelConfiguration.js +851 -0
package/dist/client/core/modules/GenerationHandler.js +588 -0
package/dist/client/core/modules/MessageBuilder.js +273 -0
package/dist/client/core/modules/StreamHandler.js +185 -0
package/dist/client/core/modules/TelemetryHandler.js +203 -0
package/dist/client/core/modules/ToolsManager.js +499 -0
package/dist/client/core/modules/Utilities.js +331 -0
package/dist/client/core/redisConversationMemoryManager.js +1435 -0
package/dist/client/core/streamAnalytics.js +131 -0
package/dist/client/errors.d.ts +299 -0
package/dist/client/errors.js +552 -0
package/dist/client/evaluation/contextBuilder.js +134 -0
package/dist/client/evaluation/index.js +61 -0
package/dist/client/evaluation/prompts.js +73 -0
package/dist/client/evaluation/ragasEvaluator.js +110 -0
package/dist/client/evaluation/retryManager.js +78 -0
package/dist/client/evaluation/scoring.js +61 -0
package/dist/client/factories/providerFactory.js +166 -0
package/dist/client/factories/providerRegistry.js +166 -0
package/dist/client/features/ppt/constants.js +896 -0
package/dist/client/features/ppt/contentPlanner.js +529 -0
package/dist/client/features/ppt/presentationOrchestrator.js +236 -0
package/dist/client/features/ppt/slideGenerator.js +532 -0
package/dist/client/features/ppt/slideRenderers.js +2383 -0
package/dist/client/features/ppt/slideTypeInference.js +405 -0
package/dist/client/features/ppt/types.js +13 -0
package/dist/client/features/ppt/utils.js +443 -0
package/dist/client/files/fileReferenceRegistry.js +1543 -0
package/dist/client/files/fileTools.js +450 -0
package/dist/client/files/streamingReader.js +321 -0
package/dist/client/files/types.js +23 -0
package/dist/client/hitl/hitlErrors.js +54 -0
package/dist/client/hitl/hitlManager.js +460 -0
package/dist/client/httpClient.d.ts +297 -0
package/dist/client/httpClient.js +837 -0
package/dist/client/index.d.ts +111 -0
package/dist/client/index.js +511 -0
package/dist/client/interceptors.d.ts +283 -0
package/dist/client/interceptors.js +601 -0
package/dist/client/mcp/agentExposure.js +356 -0
package/dist/client/mcp/auth/index.js +11 -0
package/dist/client/mcp/auth/oauthClientProvider.js +325 -0
package/dist/client/mcp/auth/tokenStorage.js +134 -0
package/dist/client/mcp/batching/index.js +10 -0
package/dist/client/mcp/batching/requestBatcher.js +441 -0
package/dist/client/mcp/caching/index.js +10 -0
package/dist/client/mcp/caching/toolCache.js +433 -0
package/dist/client/mcp/elicitation/elicitationManager.js +376 -0
package/dist/client/mcp/elicitation/index.js +11 -0
package/dist/client/mcp/elicitation/types.js +10 -0
package/dist/client/mcp/elicitationProtocol.js +375 -0
package/dist/client/mcp/enhancedToolDiscovery.js +481 -0
package/dist/client/mcp/externalServerManager.js +1478 -0
package/dist/client/mcp/factory.js +161 -0
package/dist/client/mcp/flexibleToolValidator.js +161 -0
package/dist/client/mcp/httpRateLimiter.js +391 -0
package/dist/client/mcp/httpRetryHandler.js +178 -0
package/dist/client/mcp/index.js +74 -0
package/dist/client/mcp/mcpCircuitBreaker.js +427 -0
package/dist/client/mcp/mcpClientFactory.js +708 -0
package/dist/client/mcp/mcpRegistryClient.js +488 -0
package/dist/client/mcp/mcpServerBase.js +373 -0
package/dist/client/mcp/multiServerManager.js +579 -0
package/dist/client/mcp/registry.js +158 -0
package/dist/client/mcp/routing/index.js +10 -0
package/dist/client/mcp/routing/toolRouter.js +416 -0
package/dist/client/mcp/serverCapabilities.js +502 -0
package/dist/client/mcp/servers/agent/directToolsServer.js +150 -0
package/dist/client/mcp/toolAnnotations.js +239 -0
package/dist/client/mcp/toolConverter.js +258 -0
package/dist/client/mcp/toolDiscoveryService.js +798 -0
package/dist/client/mcp/toolIntegration.js +334 -0
package/dist/client/mcp/toolRegistry.js +719 -0
package/dist/client/memory/hippocampusInitializer.js +19 -0
package/dist/client/memory/memoryRetrievalTools.js +166 -0
package/dist/client/middleware/builtin/analytics.js +132 -0
package/dist/client/middleware/builtin/autoEvaluation.js +203 -0
package/dist/client/middleware/builtin/guardrails.js +109 -0
package/dist/client/middleware/builtin/lifecycle.js +168 -0
package/dist/client/middleware/factory.js +327 -0
package/dist/client/middleware/registry.js +295 -0
package/dist/client/middleware/utils/guardrailsUtils.js +396 -0
package/dist/client/models/anthropicModels.js +527 -0
package/dist/client/neurolink.js +8015 -0
package/dist/client/observability/exporterRegistry.js +413 -0
package/dist/client/observability/exporters/arizeExporter.js +138 -0
package/dist/client/observability/exporters/baseExporter.js +190 -0
package/dist/client/observability/exporters/braintrustExporter.js +154 -0
package/dist/client/observability/exporters/datadogExporter.js +196 -0
package/dist/client/observability/exporters/laminarExporter.js +302 -0
package/dist/client/observability/exporters/langfuseExporter.js +209 -0
package/dist/client/observability/exporters/langsmithExporter.js +143 -0
package/dist/client/observability/exporters/otelExporter.js +164 -0
package/dist/client/observability/exporters/posthogExporter.js +287 -0
package/dist/client/observability/exporters/sentryExporter.js +165 -0
package/dist/client/observability/index.js +31 -0
package/dist/client/observability/metricsAggregator.js +556 -0
package/dist/client/observability/otelBridge.js +131 -0
package/dist/client/observability/retryPolicy.js +383 -0
package/dist/client/observability/sampling/samplers.js +216 -0
package/dist/client/observability/spanProcessor.js +303 -0
package/dist/client/observability/tokenTracker.js +413 -0
package/dist/client/observability/types/exporterTypes.js +5 -0
package/dist/client/observability/types/index.js +4 -0
package/dist/client/observability/types/spanTypes.js +92 -0
package/dist/client/observability/utils/safeMetadata.js +25 -0
package/dist/client/observability/utils/spanSerializer.js +292 -0
package/dist/client/processors/archive/ArchiveProcessor.js +1308 -0
package/dist/client/processors/base/BaseFileProcessor.js +614 -0
package/dist/client/processors/base/types.js +82 -0
package/dist/client/processors/config/fileTypes.js +520 -0
package/dist/client/processors/config/index.js +92 -0
package/dist/client/processors/config/languageMap.js +410 -0
package/dist/client/processors/config/mimeTypes.js +363 -0
package/dist/client/processors/config/sizeLimits.js +258 -0
package/dist/client/processors/document/ExcelProcessor.js +590 -0
package/dist/client/processors/document/OpenDocumentProcessor.js +212 -0
package/dist/client/processors/document/PptxProcessor.js +157 -0
package/dist/client/processors/document/RtfProcessor.js +361 -0
package/dist/client/processors/document/WordProcessor.js +353 -0
package/dist/client/processors/errors/FileErrorCode.js +255 -0
package/dist/client/processors/errors/errorHelpers.js +386 -0
package/dist/client/processors/errors/errorSerializer.js +507 -0
package/dist/client/processors/errors/index.js +49 -0
package/dist/client/processors/markup/SvgProcessor.js +240 -0
package/dist/client/processors/media/AudioProcessor.js +707 -0
package/dist/client/processors/media/VideoProcessor.js +1045 -0
package/dist/client/providers/amazonBedrock.js +1512 -0
package/dist/client/providers/amazonSagemaker.js +162 -0
package/dist/client/providers/anthropic.js +831 -0
package/dist/client/providers/azureOpenai.js +143 -0
package/dist/client/providers/googleAiStudio.js +1200 -0
package/dist/client/providers/googleNativeGemini3.js +543 -0
package/dist/client/providers/googleVertex.js +2936 -0
package/dist/client/providers/huggingFace.js +315 -0
package/dist/client/providers/litellm.js +488 -0
package/dist/client/providers/mistral.js +157 -0
package/dist/client/providers/ollama.js +1579 -0
package/dist/client/providers/openAI.js +627 -0
package/dist/client/providers/openRouter.js +543 -0
package/dist/client/providers/openaiCompatible.js +290 -0
package/dist/client/providers/providerTypeUtils.js +46 -0
package/dist/client/providers/sagemaker/adaptive-semaphore.js +215 -0
package/dist/client/providers/sagemaker/client.js +472 -0
package/dist/client/providers/sagemaker/config.js +317 -0
package/dist/client/providers/sagemaker/detection.js +606 -0
package/dist/client/providers/sagemaker/error-constants.js +227 -0
package/dist/client/providers/sagemaker/errors.js +299 -0
package/dist/client/providers/sagemaker/language-model.js +775 -0
package/dist/client/providers/sagemaker/parsers.js +634 -0
package/dist/client/providers/sagemaker/streaming.js +331 -0
package/dist/client/providers/sagemaker/structured-parser.js +625 -0
package/dist/client/proxy/accountQuota.js +162 -0
package/dist/client/proxy/claudeFormat.js +595 -0
package/dist/client/proxy/modelRouter.js +29 -0
package/dist/client/proxy/oauthFetch.js +367 -0
package/dist/client/proxy/proxyFetch.js +586 -0
package/dist/client/proxy/requestLogger.js +207 -0
package/dist/client/proxy/tokenRefresh.js +124 -0
package/dist/client/proxy/usageStats.js +74 -0
package/dist/client/proxy/utils/noProxyUtils.js +149 -0
package/dist/client/rag/ChunkerFactory.js +320 -0
package/dist/client/rag/ChunkerRegistry.js +421 -0
package/dist/client/rag/chunkers/BaseChunker.js +143 -0
package/dist/client/rag/chunkers/CharacterChunker.js +28 -0
package/dist/client/rag/chunkers/HTMLChunker.js +38 -0
package/dist/client/rag/chunkers/JSONChunker.js +68 -0
package/dist/client/rag/chunkers/LaTeXChunker.js +63 -0
package/dist/client/rag/chunkers/MarkdownChunker.js +306 -0
package/dist/client/rag/chunkers/RecursiveChunker.js +139 -0
package/dist/client/rag/chunkers/SemanticMarkdownChunker.js +138 -0
package/dist/client/rag/chunkers/SentenceChunker.js +66 -0
package/dist/client/rag/chunkers/TokenChunker.js +61 -0
package/dist/client/rag/chunkers/index.js +15 -0
package/dist/client/rag/chunking/characterChunker.js +142 -0
package/dist/client/rag/chunking/chunkerRegistry.js +194 -0
package/dist/client/rag/chunking/htmlChunker.js +247 -0
package/dist/client/rag/chunking/index.js +17 -0
package/dist/client/rag/chunking/jsonChunker.js +281 -0
package/dist/client/rag/chunking/latexChunker.js +251 -0
package/dist/client/rag/chunking/markdownChunker.js +373 -0
package/dist/client/rag/chunking/recursiveChunker.js +148 -0
package/dist/client/rag/chunking/semanticChunker.js +306 -0
package/dist/client/rag/chunking/sentenceChunker.js +230 -0
package/dist/client/rag/chunking/tokenChunker.js +183 -0
package/dist/client/rag/document/MDocument.js +392 -0
package/dist/client/rag/document/index.js +5 -0
package/dist/client/rag/document/loaders.js +500 -0
package/dist/client/rag/errors/RAGError.js +274 -0
package/dist/client/rag/errors/index.js +6 -0
package/dist/client/rag/graphRag/graphRAG.js +401 -0
package/dist/client/rag/graphRag/index.js +4 -0
package/dist/client/rag/index.js +141 -0
package/dist/client/rag/metadata/MetadataExtractorFactory.js +418 -0
package/dist/client/rag/metadata/MetadataExtractorRegistry.js +362 -0
package/dist/client/rag/metadata/index.js +9 -0
package/dist/client/rag/metadata/metadataExtractor.js +280 -0
package/dist/client/rag/pipeline/RAGPipeline.js +436 -0
package/dist/client/rag/pipeline/contextAssembly.js +341 -0
package/dist/client/rag/pipeline/index.js +5 -0
package/dist/client/rag/ragIntegration.js +321 -0
package/dist/client/rag/reranker/RerankerFactory.js +430 -0
package/dist/client/rag/reranker/RerankerRegistry.js +402 -0
package/dist/client/rag/reranker/index.js +9 -0
package/dist/client/rag/reranker/reranker.js +277 -0
package/dist/client/rag/resilience/CircuitBreaker.js +431 -0
package/dist/client/rag/resilience/RetryHandler.js +304 -0
package/dist/client/rag/resilience/index.js +7 -0
package/dist/client/rag/retrieval/hybridSearch.js +335 -0
package/dist/client/rag/retrieval/index.js +5 -0
package/dist/client/rag/retrieval/vectorQueryTool.js +307 -0
package/dist/client/rag/types.js +8 -0
package/dist/client/reactHooks.d.ts +239 -0
package/dist/client/reactHooks.tsx +1483 -0
package/dist/client/sdk/toolRegistration.js +377 -0
package/dist/client/server/abstract/baseServerAdapter.js +575 -0
package/dist/client/server/adapters/expressAdapter.js +486 -0
package/dist/client/server/adapters/fastifyAdapter.js +472 -0
package/dist/client/server/adapters/honoAdapter.js +632 -0
package/dist/client/server/adapters/koaAdapter.js +510 -0
package/dist/client/server/errors.js +486 -0
package/dist/client/server/factory/serverAdapterFactory.js +160 -0
package/dist/client/server/index.js +108 -0
package/dist/client/server/middleware/abortSignal.js +111 -0
package/dist/client/server/middleware/auth.js +388 -0
package/dist/client/server/middleware/cache.js +359 -0
package/dist/client/server/middleware/common.js +281 -0
package/dist/client/server/middleware/deprecation.js +190 -0
package/dist/client/server/middleware/mcpBodyAttachment.js +63 -0
package/dist/client/server/middleware/rateLimit.js +227 -0
package/dist/client/server/middleware/validation.js +388 -0
package/dist/client/server/openapi/generator.js +398 -0
package/dist/client/server/openapi/index.js +36 -0
package/dist/client/server/openapi/schemas.js +695 -0
package/dist/client/server/openapi/templates.js +374 -0
package/dist/client/server/routes/agentRoutes.js +171 -0
package/dist/client/server/routes/claudeProxyRoutes.js +1600 -0
package/dist/client/server/routes/healthRoutes.js +187 -0
package/dist/client/server/routes/index.js +57 -0
package/dist/client/server/routes/mcpRoutes.js +342 -0
package/dist/client/server/routes/memoryRoutes.js +350 -0
package/dist/client/server/routes/openApiRoutes.js +126 -0
package/dist/client/server/routes/toolRoutes.js +199 -0
package/dist/client/server/streaming/dataStream.js +486 -0
package/dist/client/server/streaming/index.js +11 -0
package/dist/client/server/types.js +67 -0
package/dist/client/server/utils/redaction.js +334 -0
package/dist/client/server/utils/validation.js +243 -0
package/dist/client/server/websocket/WebSocketHandler.js +383 -0
package/dist/client/server/websocket/index.js +4 -0
package/dist/client/services/server/ai/observability/instrumentation.js +808 -0
package/dist/client/sseClient.d.ts +156 -0
package/dist/client/sseClient.js +545 -0
package/dist/client/streamingClient.d.ts +327 -0
package/dist/client/streamingClient.js +917 -0
package/dist/client/telemetry/attributes.js +100 -0
package/dist/client/telemetry/index.js +26 -0
package/dist/client/telemetry/telemetryService.js +308 -0
package/dist/client/telemetry/tracers.js +17 -0
package/dist/client/telemetry/withSpan.js +34 -0
package/dist/client/types/actionTypes.js +6 -0
package/dist/client/types/analytics.js +5 -0
package/dist/client/types/authTypes.js +8 -0
package/dist/client/types/circuitBreakerErrors.js +34 -0
package/dist/client/types/cli.js +21 -0
package/dist/client/types/clientTypes.js +10 -0
package/dist/client/types/common.js +51 -0
package/dist/client/types/configTypes.js +49 -0
package/dist/client/types/content.js +19 -0
package/dist/client/types/contextTypes.js +400 -0
package/dist/client/types/conversation.js +47 -0
package/dist/client/types/conversationMemoryInterface.js +6 -0
package/dist/client/types/domainTypes.js +5 -0
package/dist/client/types/errors.js +167 -0
package/dist/client/types/evaluation.js +5 -0
package/dist/client/types/evaluationProviders.js +5 -0
package/dist/client/types/evaluationTypes.js +1 -0
package/dist/client/types/externalMcp.js +6 -0
package/dist/client/types/fileReferenceTypes.js +8 -0
package/dist/client/types/fileTypes.js +4 -0
package/dist/client/types/generateTypes.js +1 -0
package/dist/client/types/guardrails.js +1 -0
package/dist/client/types/hitlTypes.js +8 -0
package/dist/client/types/index.js +57 -0
package/dist/client/types/mcpTypes.js +5 -0
package/dist/client/types/middlewareTypes.js +1 -0
package/dist/client/types/modelTypes.js +30 -0
package/dist/client/types/multimodal.js +135 -0
package/dist/client/types/observability.js +6 -0
package/dist/client/types/pptTypes.js +82 -0
package/dist/client/types/providers.js +111 -0
package/dist/client/types/proxyTypes.js +16 -0
package/dist/client/types/ragTypes.js +7 -0
package/dist/client/types/sdkTypes.js +8 -0
package/dist/client/types/serviceTypes.js +5 -0
package/dist/client/types/streamTypes.js +1 -0
package/dist/client/types/subscriptionTypes.js +9 -0
package/dist/client/types/taskClassificationTypes.js +5 -0
package/dist/client/types/tools.js +24 -0
package/dist/client/types/ttsTypes.js +57 -0
package/dist/client/types/typeAliases.js +48 -0
package/dist/client/types/utilities.js +4 -0
package/dist/client/types/workflowTypes.js +30 -0
package/dist/client/utils/async/withTimeout.js +98 -0
package/dist/client/utils/asyncMutex.js +60 -0
package/dist/client/utils/conversationMemory.js +431 -0
package/dist/client/utils/csvProcessor.js +846 -0
package/dist/client/utils/errorHandling.js +936 -0
package/dist/client/utils/evaluationUtils.js +131 -0
package/dist/client/utils/factoryProcessing.js +589 -0
package/dist/client/utils/fileDetector.js +2161 -0
package/dist/client/utils/imageCache.js +376 -0
package/dist/client/utils/imageProcessor.js +704 -0
package/dist/client/utils/logger.js +491 -0
package/dist/client/utils/mcpDefaults.js +134 -0
package/dist/client/utils/messageBuilder.js +1653 -0
package/dist/client/utils/modelAliasResolver.js +54 -0
package/dist/client/utils/modelDetection.js +80 -0
package/dist/client/utils/modelRouter.js +292 -0
package/dist/client/utils/multimodalOptionsBuilder.js +65 -0
package/dist/client/utils/observabilityHelpers.js +47 -0
package/dist/client/utils/parameterValidation.js +966 -0
package/dist/client/utils/pdfProcessor.js +410 -0
package/dist/client/utils/performance.js +222 -0
package/dist/client/utils/pricing.js +340 -0
package/dist/client/utils/promptRedaction.js +62 -0
package/dist/client/utils/providerConfig.js +1009 -0
package/dist/client/utils/providerHealth.js +1237 -0
package/dist/client/utils/providerRetry.js +112 -0
package/dist/client/utils/providerUtils.js +434 -0
package/dist/client/utils/rateLimiter.js +200 -0
package/dist/client/utils/redis.js +368 -0
package/dist/client/utils/retryHandler.js +269 -0
package/dist/client/utils/retryability.js +22 -0
package/dist/client/utils/sanitizers/svg.js +481 -0
package/dist/client/utils/schemaConversion.js +255 -0
package/dist/client/utils/taskClassificationUtils.js +149 -0
package/dist/client/utils/taskClassifier.js +94 -0
package/dist/client/utils/thinkingConfig.js +104 -0
package/dist/client/utils/timeout.js +359 -0
package/dist/client/utils/tokenEstimation.js +142 -0
package/dist/client/utils/tokenLimits.js +125 -0
package/dist/client/utils/tokenUtils.js +239 -0
package/dist/client/utils/toolUtils.js +75 -0
package/dist/client/utils/transformationUtils.js +554 -0
package/dist/client/utils/ttsProcessor.js +286 -0
package/dist/client/utils/typeUtils.js +97 -0
package/dist/client/utils/videoAnalysisProcessor.js +67 -0
package/dist/client/workflow/config.js +398 -0
package/dist/client/workflow/core/ensembleExecutor.js +407 -0
package/dist/client/workflow/core/judgeScorer.js +544 -0
package/dist/client/workflow/core/responseConditioner.js +225 -0
package/dist/client/workflow/core/types/conditionerTypes.js +7 -0
package/dist/client/workflow/core/types/ensembleTypes.js +7 -0
package/dist/client/workflow/core/types/index.js +7 -0
package/dist/client/workflow/core/types/judgeTypes.js +7 -0
package/dist/client/workflow/core/types/layerTypes.js +7 -0
package/dist/client/workflow/core/types/registryTypes.js +7 -0
package/dist/client/workflow/core/workflowRegistry.js +304 -0
package/dist/client/workflow/core/workflowRunner.js +586 -0
package/dist/client/workflow/index.js +50 -0
package/dist/client/workflow/types.js +9 -0
package/dist/client/workflow/utils/types/index.js +7 -0
package/dist/client/workflow/utils/workflowMetrics.js +311 -0
package/dist/client/workflow/utils/workflowValidation.js +420 -0
package/dist/client/workflow/workflows/adaptiveWorkflow.js +366 -0
package/dist/client/workflow/workflows/consensusWorkflow.js +192 -0
package/dist/client/workflow/workflows/fallbackWorkflow.js +225 -0
package/dist/client/workflow/workflows/multiJudgeWorkflow.js +351 -0
package/dist/client/wsClient.d.ts +130 -0
package/dist/client/wsClient.js +369 -0
package/dist/config/configManager.js +2 -2
package/dist/constants/contextWindows.js +15 -13
package/dist/constants/enums.d.ts +10 -16
package/dist/constants/enums.js +12 -18
package/dist/constants/index.d.ts +0 -10
package/dist/constants/index.js +1 -1
package/dist/constants/tokens.d.ts +29 -16
package/dist/constants/tokens.js +23 -16
package/dist/core/baseProvider.d.ts +5 -5
package/dist/core/baseProvider.js +6 -6
package/dist/core/constants.js +6 -1
package/dist/core/dynamicModels.js +10 -6
package/dist/core/evaluationProviders.js +1 -1
package/dist/core/infrastructure/baseError.d.ts +1 -1
package/dist/core/infrastructure/baseFactory.d.ts +1 -6
package/dist/core/infrastructure/baseRegistry.d.ts +6 -5
package/dist/core/infrastructure/index.d.ts +6 -4
package/dist/core/infrastructure/index.js +2 -2
package/dist/core/modelConfiguration.js +3 -1
package/dist/core/modules/GenerationHandler.d.ts +3 -3
package/dist/core/modules/GenerationHandler.js +49 -41
package/dist/core/modules/MessageBuilder.d.ts +5 -5
package/dist/core/modules/MessageBuilder.js +4 -6
package/dist/core/modules/StreamHandler.js +26 -12
package/dist/core/modules/TelemetryHandler.d.ts +4 -6
package/dist/core/modules/TelemetryHandler.js +7 -6
package/dist/core/modules/ToolsManager.d.ts +2 -12
package/dist/core/modules/ToolsManager.js +20 -4
package/dist/core/modules/Utilities.js +3 -1
package/dist/core/redisConversationMemoryManager.js +3 -3
package/dist/core/streamAnalytics.js +23 -9
package/dist/evaluation/contextBuilder.d.ts +2 -2
package/dist/evaluation/contextBuilder.js +2 -2
package/dist/evaluation/index.d.ts +2 -2
package/dist/evaluation/retryManager.js +1 -1
package/dist/factories/providerFactory.js +2 -2
package/dist/features/ppt/constants.js +1 -1
package/dist/features/ppt/presentationOrchestrator.js +7 -3
package/dist/features/ppt/slideGenerator.d.ts +2 -1
package/dist/features/ppt/slideGenerator.js +6 -1
package/dist/files/fileTools.d.ts +16 -247
package/dist/files/fileTools.js +16 -15
package/dist/index.d.ts +5 -3
package/dist/index.js +20 -3
package/dist/lib/adapters/providerImageAdapter.js +13 -22
package/dist/lib/adapters/video/videoAnalyzer.d.ts +4 -4
package/dist/lib/adapters/video/videoAnalyzer.js +3 -3
package/dist/lib/agent/directTools.d.ts +20 -289
package/dist/lib/agent/directTools.js +11 -10
package/dist/lib/auth/accountPool.d.ts +68 -0
package/dist/lib/auth/accountPool.js +179 -0
package/dist/lib/auth/anthropicOAuth.d.ts +15 -5
package/dist/lib/auth/anthropicOAuth.js +117 -57
package/dist/lib/auth/index.d.ts +7 -5
package/dist/lib/auth/index.js +6 -2
package/dist/lib/auth/tokenStore.d.ts +71 -27
package/dist/lib/auth/tokenStore.js +342 -64
package/dist/lib/client/aiSdkAdapter.d.ts +196 -0
package/dist/lib/client/aiSdkAdapter.js +488 -0
package/dist/lib/client/auth.d.ts +248 -0
package/dist/lib/client/auth.js +474 -0
package/dist/lib/client/errors.d.ts +299 -0
package/dist/lib/client/errors.js +553 -0
package/dist/lib/client/httpClient.d.ts +297 -0
package/dist/lib/client/httpClient.js +838 -0
package/dist/lib/client/index.d.ts +111 -0
package/dist/lib/client/index.js +173 -0
package/dist/lib/client/interceptors.d.ts +283 -0
package/dist/lib/client/interceptors.js +602 -0
package/dist/lib/client/reactHooks.d.ts +239 -0
package/dist/lib/client/reactHooks.js +1160 -0
package/dist/lib/client/sseClient.d.ts +156 -0
package/dist/lib/client/sseClient.js +546 -0
package/dist/lib/client/streamingClient.d.ts +327 -0
package/dist/lib/client/streamingClient.js +918 -0
package/dist/lib/client/wsClient.d.ts +130 -0
package/dist/lib/client/wsClient.js +370 -0
package/dist/lib/config/configManager.js +2 -2
package/dist/lib/constants/contextWindows.js +15 -13
package/dist/lib/constants/enums.d.ts +10 -16
package/dist/lib/constants/enums.js +12 -18
package/dist/lib/constants/index.d.ts +0 -10
package/dist/lib/constants/index.js +1 -1
package/dist/lib/constants/tokens.d.ts +29 -16
package/dist/lib/constants/tokens.js +23 -16
package/dist/lib/core/baseProvider.d.ts +5 -5
package/dist/lib/core/baseProvider.js +6 -6
package/dist/lib/core/constants.js +6 -1
package/dist/lib/core/dynamicModels.js +10 -6
package/dist/lib/core/evaluationProviders.js +1 -1
package/dist/lib/core/infrastructure/baseError.d.ts +1 -1
package/dist/lib/core/infrastructure/baseFactory.d.ts +1 -6
package/dist/lib/core/infrastructure/baseRegistry.d.ts +6 -5
package/dist/lib/core/infrastructure/index.d.ts +6 -4
package/dist/lib/core/infrastructure/index.js +2 -2
package/dist/lib/core/modelConfiguration.js +3 -1
package/dist/lib/core/modules/GenerationHandler.d.ts +3 -3
package/dist/lib/core/modules/GenerationHandler.js +49 -41
package/dist/lib/core/modules/MessageBuilder.d.ts +5 -5
package/dist/lib/core/modules/MessageBuilder.js +4 -6
package/dist/lib/core/modules/StreamHandler.js +26 -12
package/dist/lib/core/modules/TelemetryHandler.d.ts +4 -6
package/dist/lib/core/modules/TelemetryHandler.js +7 -6
package/dist/lib/core/modules/ToolsManager.d.ts +2 -12
package/dist/lib/core/modules/ToolsManager.js +20 -4
package/dist/lib/core/modules/Utilities.js +3 -1
package/dist/lib/core/redisConversationMemoryManager.js +3 -3
package/dist/lib/core/streamAnalytics.js +23 -9
package/dist/lib/evaluation/contextBuilder.d.ts +2 -2
package/dist/lib/evaluation/contextBuilder.js +2 -2
package/dist/lib/evaluation/index.d.ts +2 -2
package/dist/lib/evaluation/retryManager.js +1 -1
package/dist/lib/factories/providerFactory.js +2 -2
package/dist/lib/features/ppt/constants.js +1 -1
package/dist/lib/features/ppt/presentationOrchestrator.js +7 -3
package/dist/lib/features/ppt/slideGenerator.d.ts +2 -1
package/dist/lib/features/ppt/slideGenerator.js +6 -1
package/dist/lib/files/fileTools.d.ts +16 -247
package/dist/lib/files/fileTools.js +16 -15
package/dist/lib/index.d.ts +5 -3
package/dist/lib/index.js +20 -3
package/dist/lib/mcp/batching/requestBatcher.js +1 -1
package/dist/lib/mcp/externalServerManager.js +5 -2
package/dist/lib/mcp/factory.js +1 -1
package/dist/lib/mcp/index.d.ts +1 -1
package/dist/lib/mcp/index.js +1 -1
package/dist/lib/mcp/mcpCircuitBreaker.d.ts +1 -0
package/dist/lib/mcp/mcpCircuitBreaker.js +30 -4
package/dist/lib/mcp/mcpClientFactory.js +33 -4
package/dist/lib/mcp/toolDiscoveryService.js +52 -5
package/dist/lib/mcp/toolRegistry.js +7 -1
package/dist/lib/memory/memoryRetrievalTools.d.ts +5 -89
package/dist/lib/memory/memoryRetrievalTools.js +1 -1
package/dist/lib/middleware/builtin/analytics.js +3 -0
package/dist/lib/middleware/builtin/autoEvaluation.js +46 -24
package/dist/lib/middleware/builtin/guardrails.js +4 -0
package/dist/lib/middleware/builtin/lifecycle.js +10 -6
package/dist/lib/middleware/factory.d.ts +3 -3
package/dist/lib/middleware/factory.js +3 -2
package/dist/lib/middleware/index.d.ts +1 -1
package/dist/lib/middleware/registry.d.ts +2 -2
package/dist/lib/middleware/registry.js +1 -0
package/dist/lib/middleware/utils/guardrailsUtils.d.ts +5 -6
package/dist/lib/middleware/utils/guardrailsUtils.js +15 -6
package/dist/lib/neurolink.d.ts +9 -20
package/dist/lib/neurolink.js +278 -186
package/dist/lib/observability/retryPolicy.d.ts +2 -13
package/dist/lib/observability/sampling/samplers.d.ts +2 -11
package/dist/lib/observability/spanProcessor.d.ts +2 -14
package/dist/lib/processors/base/BaseFileProcessor.js +1 -1
package/dist/lib/processors/document/OpenDocumentProcessor.js +5 -3
package/dist/lib/processors/media/VideoProcessor.js +157 -101
package/dist/lib/providers/amazonBedrock.js +12 -5
package/dist/lib/providers/amazonSagemaker.d.ts +5 -5
package/dist/lib/providers/amazonSagemaker.js +6 -2
package/dist/lib/providers/anthropic.d.ts +3 -3
package/dist/lib/providers/anthropic.js +23 -192
package/dist/lib/providers/anthropicBaseProvider.d.ts +4 -4
package/dist/lib/providers/anthropicBaseProvider.js +24 -13
package/dist/lib/providers/azureOpenai.d.ts +2 -2
package/dist/lib/providers/azureOpenai.js +6 -6
package/dist/lib/providers/googleAiStudio.d.ts +2 -2
package/dist/lib/providers/googleAiStudio.js +15 -7
package/dist/lib/providers/googleNativeGemini3.d.ts +3 -54
package/dist/lib/providers/googleNativeGemini3.js +14 -10
package/dist/lib/providers/googleVertex.d.ts +6 -6
package/dist/lib/providers/googleVertex.js +32 -26
package/dist/lib/providers/huggingFace.d.ts +4 -4
package/dist/lib/providers/huggingFace.js +15 -5
package/dist/lib/providers/litellm.d.ts +4 -4
package/dist/lib/providers/litellm.js +54 -42
package/dist/lib/providers/mistral.d.ts +2 -2
package/dist/lib/providers/mistral.js +5 -4
package/dist/lib/providers/ollama.d.ts +7 -4
package/dist/lib/providers/ollama.js +30 -8
package/dist/lib/providers/openAI.d.ts +2 -2
package/dist/lib/providers/openAI.js +46 -21
package/dist/lib/providers/openRouter.d.ts +4 -4
package/dist/lib/providers/openRouter.js +63 -35
package/dist/lib/providers/openaiCompatible.d.ts +2 -2
package/dist/lib/providers/openaiCompatible.js +18 -9
package/dist/lib/providers/providerTypeUtils.d.ts +28 -0
package/dist/lib/providers/providerTypeUtils.js +47 -0
package/dist/lib/providers/sagemaker/config.js +5 -5
package/dist/lib/providers/sagemaker/language-model.d.ts +23 -13
package/dist/lib/providers/sagemaker/language-model.js +20 -8
package/dist/lib/proxy/accountQuota.d.ts +33 -0
package/dist/lib/proxy/accountQuota.js +163 -0
package/dist/lib/proxy/claudeFormat.d.ts +143 -0
package/dist/lib/proxy/claudeFormat.js +596 -0
package/dist/lib/proxy/cloaking/index.d.ts +44 -0
package/dist/lib/proxy/cloaking/index.js +87 -0
package/dist/lib/proxy/cloaking/plugins/headerScrubber.d.ts +9 -0
package/dist/lib/proxy/cloaking/plugins/headerScrubber.js +87 -0
package/dist/lib/proxy/cloaking/plugins/sessionIdentity.d.ts +15 -0
package/dist/lib/proxy/cloaking/plugins/sessionIdentity.js +66 -0
package/dist/lib/proxy/cloaking/plugins/systemPromptInjector.d.ts +11 -0
package/dist/lib/proxy/cloaking/plugins/systemPromptInjector.js +84 -0
package/dist/lib/proxy/cloaking/plugins/tlsFingerprint.d.ts +14 -0
package/dist/lib/proxy/cloaking/plugins/tlsFingerprint.js +39 -0
package/dist/lib/proxy/cloaking/plugins/wordObfuscator.d.ts +9 -0
package/dist/lib/proxy/cloaking/plugins/wordObfuscator.js +122 -0
package/dist/lib/proxy/cloaking/types.d.ts +1 -0
package/dist/lib/proxy/cloaking/types.js +2 -0
package/dist/lib/proxy/modelRouter.d.ts +10 -0
package/dist/lib/proxy/modelRouter.js +30 -0
package/dist/lib/proxy/oauthFetch.d.ts +36 -0
package/dist/lib/proxy/oauthFetch.js +368 -0
package/dist/lib/proxy/proxyConfig.d.ts +42 -0
package/dist/lib/proxy/proxyConfig.js +500 -0
package/dist/lib/proxy/proxyFetch.js +2 -1
package/dist/lib/proxy/requestLogger.d.ts +50 -0
package/dist/lib/proxy/requestLogger.js +208 -0
package/dist/lib/proxy/tokenRefresh.d.ts +4 -0
package/dist/lib/proxy/tokenRefresh.js +125 -0
package/dist/lib/proxy/usageStats.d.ts +13 -0
package/dist/lib/proxy/usageStats.js +75 -0
package/dist/lib/rag/document/loaders.js +1 -1
package/dist/lib/rag/pipeline/contextAssembly.d.ts +4 -7
package/dist/lib/rag/ragIntegration.d.ts +2 -14
package/dist/lib/rag/ragIntegration.js +1 -1
package/dist/lib/rag/resilience/CircuitBreaker.d.ts +5 -44
package/dist/lib/rag/resilience/RetryHandler.js +1 -1
package/dist/lib/rag/retrieval/vectorQueryTool.d.ts +1 -9
package/dist/lib/rag/retrieval/vectorQueryTool.js +1 -1
package/dist/lib/sdk/toolRegistration.js +12 -1
package/dist/lib/server/abstract/baseServerAdapter.js +2 -2
package/dist/lib/server/adapters/honoAdapter.d.ts +6 -0
package/dist/lib/server/adapters/honoAdapter.js +76 -10
package/dist/lib/server/middleware/cache.js +3 -0
package/dist/lib/server/routes/claudeProxyRoutes.d.ts +44 -0
package/dist/lib/server/routes/claudeProxyRoutes.js +1601 -0
package/dist/lib/server/routes/healthRoutes.js +18 -1
package/dist/lib/server/routes/index.d.ts +7 -0
package/dist/lib/server/routes/index.js +8 -0
package/dist/lib/server/streaming/dataStream.d.ts +1 -5
package/dist/lib/server/streaming/dataStream.js +3 -0
package/dist/lib/server/utils/validation.d.ts +24 -124
package/dist/lib/server/utils/validation.js +2 -2
package/dist/lib/services/server/ai/observability/instrumentation.js +4 -0
package/dist/lib/telemetry/attributes.d.ts +38 -0
package/dist/lib/telemetry/attributes.js +40 -0
package/dist/lib/telemetry/tracers.d.ts +1 -0
package/dist/lib/telemetry/tracers.js +1 -0
package/dist/lib/types/authTypes.d.ts +56 -0
package/dist/lib/types/authTypes.js +9 -0
package/dist/lib/types/circuitBreakerErrors.d.ts +30 -0
package/dist/lib/types/circuitBreakerErrors.js +35 -0
package/dist/lib/types/cli.d.ts +258 -0
package/dist/lib/types/clientTypes.d.ts +1050 -0
package/dist/lib/types/clientTypes.js +11 -0
package/dist/lib/types/common.d.ts +123 -0
package/dist/lib/types/configTypes.d.ts +49 -0
package/dist/lib/types/configTypes.js +4 -0
package/dist/lib/types/conversation.d.ts +0 -5
package/dist/lib/types/evaluationTypes.d.ts +2 -2
package/dist/lib/types/fileTypes.d.ts +47 -0
package/dist/lib/types/generateTypes.d.ts +7 -3
package/dist/lib/types/guardrails.d.ts +2 -2
package/dist/lib/types/index.d.ts +4 -1
package/dist/lib/types/index.js +5 -0
package/dist/lib/types/middlewareTypes.d.ts +3 -3
package/dist/lib/types/modelTypes.d.ts +7 -97
package/dist/lib/types/modelTypes.js +3 -3
package/dist/lib/types/observability.d.ts +37 -0
package/dist/lib/types/providers.d.ts +107 -0
package/dist/lib/types/proxyTypes.d.ts +536 -0
package/dist/lib/types/proxyTypes.js +17 -0
package/dist/lib/types/ragTypes.d.ts +49 -1
package/dist/lib/types/streamTypes.d.ts +37 -13
package/dist/lib/types/subscriptionTypes.d.ts +77 -0
package/dist/lib/types/subscriptionTypes.js +2 -0
package/dist/lib/types/tools.d.ts +45 -1
package/dist/lib/types/typeAliases.d.ts +8 -0
package/dist/lib/types/typeAliases.js +1 -0
package/dist/lib/utils/async/retry.d.ts +4 -33
package/dist/lib/utils/asyncMutex.d.ts +14 -0
package/dist/lib/utils/asyncMutex.js +61 -0
package/dist/lib/utils/errorHandling.d.ts +2 -1
package/dist/lib/utils/errorHandling.js +14 -6
package/dist/lib/utils/fileDetector.d.ts +13 -1
package/dist/lib/utils/fileDetector.js +114 -32
package/dist/lib/utils/imageProcessor.js +7 -7
package/dist/lib/utils/json/safeParse.d.ts +1 -8
package/dist/lib/utils/mcpDefaults.d.ts +1 -1
package/dist/lib/utils/mcpDefaults.js +11 -2
package/dist/lib/utils/messageBuilder.d.ts +5 -5
package/dist/lib/utils/messageBuilder.js +106 -80
package/dist/lib/utils/modelChoices.d.ts +1 -8
package/dist/lib/utils/pdfProcessor.d.ts +1 -25
package/dist/lib/utils/pdfProcessor.js +5 -4
package/dist/lib/utils/pricing.js +28 -5
package/dist/lib/utils/providerHealth.d.ts +1 -1
package/dist/lib/utils/rateLimiter.d.ts +1 -15
package/dist/lib/utils/redis.d.ts +1 -1
package/dist/lib/utils/redis.js +3 -3
package/dist/lib/utils/sanitizers/filename.d.ts +2 -22
package/dist/lib/utils/sanitizers/index.d.ts +4 -2
package/dist/lib/utils/sanitizers/svg.d.ts +1 -11
package/dist/lib/utils/schemaConversion.js +4 -1
package/dist/lib/utils/thinkingConfig.d.ts +1 -33
package/dist/lib/utils/tokenUtils.d.ts +1 -39
package/dist/lib/utils/videoAnalysisProcessor.d.ts +5 -5
package/dist/lib/utils/videoAnalysisProcessor.js +2 -2
package/dist/lib/workflow/config.d.ts +89 -1257
package/dist/lib/workflow/utils/workflowValidation.js +1 -1
package/dist/mcp/batching/requestBatcher.js +1 -1
package/dist/mcp/externalServerManager.js +5 -2
package/dist/mcp/factory.js +1 -1
package/dist/mcp/index.d.ts +1 -1
package/dist/mcp/index.js +1 -1
package/dist/mcp/mcpCircuitBreaker.d.ts +1 -0
package/dist/mcp/mcpCircuitBreaker.js +30 -4
package/dist/mcp/mcpClientFactory.js +33 -4
package/dist/mcp/toolDiscoveryService.js +52 -5
package/dist/mcp/toolRegistry.js +7 -1
package/dist/memory/memoryRetrievalTools.d.ts +5 -89
package/dist/memory/memoryRetrievalTools.js +1 -1
package/dist/middleware/builtin/analytics.js +3 -0
package/dist/middleware/builtin/autoEvaluation.js +46 -24
package/dist/middleware/builtin/guardrails.js +4 -0
package/dist/middleware/builtin/lifecycle.js +10 -6
package/dist/middleware/factory.d.ts +3 -3
package/dist/middleware/factory.js +3 -2
package/dist/middleware/index.d.ts +1 -1
package/dist/middleware/registry.d.ts +2 -2
package/dist/middleware/registry.js +1 -0
package/dist/middleware/utils/guardrailsUtils.d.ts +5 -6
package/dist/middleware/utils/guardrailsUtils.js +15 -6
package/dist/neurolink.d.ts +9 -20
package/dist/neurolink.js +278 -186
package/dist/observability/retryPolicy.d.ts +2 -13
package/dist/observability/sampling/samplers.d.ts +2 -11
package/dist/observability/spanProcessor.d.ts +2 -14
package/dist/processors/base/BaseFileProcessor.js +1 -1
package/dist/processors/document/OpenDocumentProcessor.js +5 -3
package/dist/processors/media/VideoProcessor.js +157 -101
package/dist/providers/amazonBedrock.js +12 -5
package/dist/providers/amazonSagemaker.d.ts +5 -5
package/dist/providers/amazonSagemaker.js +6 -2
package/dist/providers/anthropic.d.ts +3 -3
package/dist/providers/anthropic.js +23 -192
package/dist/providers/anthropicBaseProvider.d.ts +4 -4
package/dist/providers/anthropicBaseProvider.js +24 -13
package/dist/providers/azureOpenai.d.ts +2 -2
package/dist/providers/azureOpenai.js +6 -6
package/dist/providers/googleAiStudio.d.ts +2 -2
package/dist/providers/googleAiStudio.js +15 -7
package/dist/providers/googleNativeGemini3.d.ts +3 -54
package/dist/providers/googleNativeGemini3.js +14 -10
package/dist/providers/googleVertex.d.ts +6 -6
package/dist/providers/googleVertex.js +32 -26
package/dist/providers/huggingFace.d.ts +4 -4
package/dist/providers/huggingFace.js +15 -5
package/dist/providers/litellm.d.ts +4 -4
package/dist/providers/litellm.js +54 -42
package/dist/providers/mistral.d.ts +2 -2
package/dist/providers/mistral.js +5 -4
package/dist/providers/ollama.d.ts +7 -4
package/dist/providers/ollama.js +30 -8
package/dist/providers/openAI.d.ts +2 -2
package/dist/providers/openAI.js +46 -21
package/dist/providers/openRouter.d.ts +4 -4
package/dist/providers/openRouter.js +63 -35
package/dist/providers/openaiCompatible.d.ts +2 -2
package/dist/providers/openaiCompatible.js +18 -9
package/dist/providers/providerTypeUtils.d.ts +28 -0
package/dist/providers/providerTypeUtils.js +46 -0
package/dist/providers/sagemaker/config.js +5 -5
package/dist/providers/sagemaker/language-model.d.ts +23 -13
package/dist/providers/sagemaker/language-model.js +20 -8
package/dist/proxy/accountQuota.d.ts +33 -0
package/dist/proxy/accountQuota.js +162 -0
package/dist/proxy/claudeFormat.d.ts +143 -0
package/dist/proxy/claudeFormat.js +595 -0
package/dist/proxy/cloaking/index.d.ts +44 -0
package/dist/proxy/cloaking/index.js +86 -0
package/dist/proxy/cloaking/plugins/headerScrubber.d.ts +9 -0
package/dist/proxy/cloaking/plugins/headerScrubber.js +86 -0
package/dist/proxy/cloaking/plugins/sessionIdentity.d.ts +15 -0
package/dist/proxy/cloaking/plugins/sessionIdentity.js +65 -0
package/dist/proxy/cloaking/plugins/systemPromptInjector.d.ts +11 -0
package/dist/proxy/cloaking/plugins/systemPromptInjector.js +83 -0
package/dist/proxy/cloaking/plugins/tlsFingerprint.d.ts +14 -0
package/dist/proxy/cloaking/plugins/tlsFingerprint.js +38 -0
package/dist/proxy/cloaking/plugins/wordObfuscator.d.ts +9 -0
package/dist/proxy/cloaking/plugins/wordObfuscator.js +121 -0
package/dist/proxy/cloaking/types.d.ts +1 -0
package/dist/proxy/cloaking/types.js +1 -0
package/dist/proxy/modelRouter.d.ts +10 -0
package/dist/proxy/modelRouter.js +29 -0
package/dist/proxy/oauthFetch.d.ts +36 -0
package/dist/proxy/oauthFetch.js +367 -0
package/dist/proxy/proxyConfig.d.ts +42 -0
package/dist/proxy/proxyConfig.js +499 -0
package/dist/proxy/proxyFetch.js +2 -1
package/dist/proxy/requestLogger.d.ts +50 -0
package/dist/proxy/requestLogger.js +207 -0
package/dist/proxy/tokenRefresh.d.ts +4 -0
package/dist/proxy/tokenRefresh.js +124 -0
package/dist/proxy/usageStats.d.ts +13 -0
package/dist/proxy/usageStats.js +74 -0
package/dist/rag/document/loaders.js +1 -1
package/dist/rag/pipeline/contextAssembly.d.ts +4 -7
package/dist/rag/ragIntegration.d.ts +2 -14
package/dist/rag/ragIntegration.js +1 -1
package/dist/rag/resilience/CircuitBreaker.d.ts +5 -44
package/dist/rag/resilience/RetryHandler.js +1 -1
package/dist/rag/retrieval/vectorQueryTool.d.ts +1 -9
package/dist/rag/retrieval/vectorQueryTool.js +1 -1
package/dist/sdk/toolRegistration.js +12 -1
package/dist/server/abstract/baseServerAdapter.js +2 -2
package/dist/server/adapters/honoAdapter.d.ts +6 -0
package/dist/server/adapters/honoAdapter.js +76 -10
package/dist/server/middleware/cache.js +3 -0
package/dist/server/routes/claudeProxyRoutes.d.ts +44 -0
package/dist/server/routes/claudeProxyRoutes.js +1600 -0
package/dist/server/routes/healthRoutes.js +18 -1
package/dist/server/routes/index.d.ts +7 -0
package/dist/server/routes/index.js +8 -0
package/dist/server/streaming/dataStream.d.ts +1 -5
package/dist/server/streaming/dataStream.js +3 -0
package/dist/server/utils/validation.d.ts +24 -124
package/dist/server/utils/validation.js +2 -2
package/dist/services/server/ai/observability/instrumentation.js +4 -0
package/dist/telemetry/attributes.d.ts +38 -0
package/dist/telemetry/attributes.js +40 -0
package/dist/telemetry/tracers.d.ts +1 -0
package/dist/telemetry/tracers.js +1 -0
package/dist/types/authTypes.d.ts +56 -0
package/dist/types/authTypes.js +8 -0
package/dist/types/circuitBreakerErrors.d.ts +30 -0
package/dist/types/circuitBreakerErrors.js +34 -0
package/dist/types/cli.d.ts +258 -0
package/dist/types/clientTypes.d.ts +1050 -0
package/dist/types/clientTypes.js +10 -0
package/dist/types/common.d.ts +123 -0
package/dist/types/configTypes.d.ts +49 -0
package/dist/types/configTypes.js +4 -0
package/dist/types/conversation.d.ts +0 -5
package/dist/types/evaluationTypes.d.ts +2 -2
package/dist/types/fileTypes.d.ts +47 -0
package/dist/types/generateTypes.d.ts +7 -3
package/dist/types/guardrails.d.ts +2 -2
package/dist/types/index.d.ts +4 -1
package/dist/types/index.js +5 -0
package/dist/types/middlewareTypes.d.ts +3 -3
package/dist/types/modelTypes.d.ts +7 -97
package/dist/types/modelTypes.js +3 -3
package/dist/types/observability.d.ts +37 -0
package/dist/types/providers.d.ts +107 -0
package/dist/types/proxyTypes.d.ts +536 -0
package/dist/types/proxyTypes.js +16 -0
package/dist/types/ragTypes.d.ts +49 -1
package/dist/types/streamTypes.d.ts +37 -13
package/dist/types/subscriptionTypes.d.ts +77 -0
package/dist/types/subscriptionTypes.js +2 -0
package/dist/types/tools.d.ts +45 -1
package/dist/types/typeAliases.d.ts +8 -0
package/dist/types/typeAliases.js +1 -0
package/dist/utils/async/retry.d.ts +4 -33
package/dist/utils/asyncMutex.d.ts +14 -0
package/dist/utils/asyncMutex.js +60 -0
package/dist/utils/errorHandling.d.ts +2 -1
package/dist/utils/errorHandling.js +14 -6
package/dist/utils/fileDetector.d.ts +13 -1
package/dist/utils/fileDetector.js +114 -32
package/dist/utils/imageProcessor.js +7 -7
package/dist/utils/json/safeParse.d.ts +1 -8
package/dist/utils/mcpDefaults.d.ts +1 -1
package/dist/utils/mcpDefaults.js +11 -2
package/dist/utils/messageBuilder.d.ts +5 -5
package/dist/utils/messageBuilder.js +106 -80
package/dist/utils/modelChoices.d.ts +1 -8
package/dist/utils/pdfProcessor.d.ts +1 -25
package/dist/utils/pdfProcessor.js +5 -4
package/dist/utils/pricing.js +28 -5
package/dist/utils/rateLimiter.d.ts +1 -15
package/dist/utils/redis.d.ts +1 -1
package/dist/utils/redis.js +3 -3
package/dist/utils/sanitizers/filename.d.ts +2 -22
package/dist/utils/sanitizers/index.d.ts +4 -2
package/dist/utils/sanitizers/svg.d.ts +1 -11
package/dist/utils/schemaConversion.js +4 -1
package/dist/utils/thinkingConfig.d.ts +1 -33
package/dist/utils/tokenUtils.d.ts +1 -39
package/dist/utils/videoAnalysisProcessor.d.ts +5 -5
package/dist/utils/videoAnalysisProcessor.js +2 -2
package/dist/workflow/config.d.ts +89 -1257
package/dist/workflow/utils/workflowValidation.js +1 -1
package/docs-site/mcp-server/index.js +2 -3
package/package.json +138 -105
package/dist/lib/memory/mem0Initializer.d.ts +0 -46
package/dist/lib/memory/mem0Initializer.js +0 -85
package/dist/memory/mem0Initializer.d.ts +0 -46
package/dist/memory/mem0Initializer.js +0 -84

package/dist/server/routes/claudeProxyRoutes.js ADDED Viewed

@@ -0,0 +1,1600 @@
+/**
+ * Claude-Compatible Proxy Routes
+ *
+ * Exposes Anthropic-compatible /v1/messages, /v1/models, and /v1/messages/count_tokens
+ * endpoints. ALL requests are routed through ctx.neurolink.generate() / ctx.neurolink.stream()
+ * -- no direct HTTP calls to Anthropic.
+ *
+ * An optional ModelRouter can remap incoming model names to different
+ * provider/model pairs (e.g. "claude-sonnet-4-20250514" -> vertex/gemini-2.5-pro).
+ * Without a router, models are passed through to the Anthropic provider.
+ */
+import { parseClaudeRequest, serializeClaudeResponse, ClaudeStreamSerializer, buildClaudeError, generateToolUseId, } from "../../proxy/claudeFormat.js";
+import { logger } from "../../utils/logger.js";
+import { recordRequest, recordSuccess, recordError, recordCooldown, } from "../../proxy/usageStats.js";
+import { logRequest, logFullRequestResponse, logStreamError, } from "../../proxy/requestLogger.js";
+import { parseQuotaHeaders, saveAccountQuota, } from "../../proxy/accountQuota.js";
+import { needsRefresh, refreshToken, persistTokens, } from "../../proxy/tokenRefresh.js";
+// ---------------------------------------------------------------------------
+// Helpers
+// ---------------------------------------------------------------------------
+/** Header names whose values must be masked in debug logs. */
+const SENSITIVE_HEADERS = new Set(["authorization", "x-api-key"]);
+/** Headers that must never be forwarded upstream to Anthropic. */
+const BLOCKED_UPSTREAM_HEADERS = new Set([
+    "cookie",
+    "proxy-authorization",
+    "host",
+    "connection",
+    "content-length",
+    "transfer-encoding",
+]);
+/** Return a shallow copy of `headers` with sensitive values redacted. */
+function redactSensitiveHeaders(headers) {
+    const redacted = {};
+    for (const [key, value] of Object.entries(headers)) {
+        if (SENSITIVE_HEADERS.has(key.toLowerCase()) && value.length > 8) {
+            redacted[key] = value.substring(0, 8) + "...";
+        }
+        else if (SENSITIVE_HEADERS.has(key.toLowerCase())) {
+            redacted[key] = "***";
+        }
+        else {
+            redacted[key] = value;
+        }
+    }
+    return redacted;
+}
+// ---------------------------------------------------------------------------
+// Module-level state
+// ---------------------------------------------------------------------------
+/** Fill-first: index of the current primary account. Only advances when
+ *  the current account hits a 429 or auth failure that puts it on cooldown. */
+let primaryAccountIndex = 0;
+const MAX_AUTH_RETRIES = 5;
+const MAX_CONSECUTIVE_REFRESH_FAILURES = 15;
+/** Decision 8: Cooldowns only for 401 and 429. */
+const AUTH_COOLDOWN_MS = 5 * 60 * 1000; // 5 minutes for 401
+const RATE_LIMIT_BACKOFF_BASE_MS = 1000; // 1 second base for 429
+const RATE_LIMIT_BACKOFF_CAP_MS = 10 * 60 * 1000; // 10 minute cap for 429
+/** Timeout for upstream requests to Anthropic. Generous to allow long-running
+ *  streaming responses to start, but prevents infinite hangs. */
+const UPSTREAM_FETCH_TIMEOUT_MS = 5 * 60 * 1000; // 5 minutes
+const accountRuntimeState = new Map();
+/** Track whether we've run the one-time startup prune. */
+let startupPruneDone = false;
+/** Advance the primary account index when the current primary is put on cooldown.
+ *  This is what makes fill-first work: we stick to one account until it's unusable.
+ *  Only advances when the account being cooled IS the current primary; otherwise
+ *  it's already a fallback and advancing would disrupt the fill-first ordering. */
+function advancePrimaryIfCurrent(accountKey, enabledCount, primaryAccountKey) {
+    if (enabledCount <= 1) {
+        return;
+    }
+    // Only advance if the cooled account is the current primary
+    if (accountKey !== primaryAccountKey) {
+        return;
+    }
+    primaryAccountIndex = (primaryAccountIndex + 1) % enabledCount;
+}
+// ---------------------------------------------------------------------------
+// Legacy credential refresh helper (extracted to reduce block nesting)
+// ---------------------------------------------------------------------------
+async function tryLoadLegacyAccount(creds, legacyCredPath) {
+    if (!creds.oauth?.accessToken) {
+        return undefined;
+    }
+    let legacyToken = creds.oauth.accessToken;
+    let legacyRefresh = creds.oauth.refreshToken;
+    let legacyExpiry = creds.oauth.expiresAt;
+    const legacyExpired = legacyExpiry ? legacyExpiry < Date.now() : false;
+    if (!legacyExpired) {
+        return {
+            key: "anthropic:legacy-default",
+            label: "default",
+            token: legacyToken,
+            refreshToken: legacyRefresh,
+            expiresAt: legacyExpiry,
+            type: "oauth",
+            persistTarget: { credPath: legacyCredPath },
+        };
+    }
+    if (!legacyRefresh) {
+        logger.always("[proxy] skipping legacy account (expired, no refresh token)");
+        return undefined;
+    }
+    const tmp = {
+        token: legacyToken,
+        refreshToken: legacyRefresh,
+        expiresAt: legacyExpiry,
+        label: "default",
+    };
+    const ok = await refreshToken(tmp);
+    if (!ok.success) {
+        logger.always(`[proxy] skipping legacy account (expired, refresh failed: ${ok.error?.slice(0, 200) ?? "unknown"})`);
+        return undefined;
+    }
+    legacyToken = tmp.token;
+    legacyRefresh = tmp.refreshToken;
+    legacyExpiry = tmp.expiresAt;
+    await persistTokens(legacyCredPath, tmp);
+    logger.always("[proxy] refreshed legacy account at startup");
+    return {
+        key: "anthropic:legacy-default",
+        label: "default",
+        token: legacyToken,
+        refreshToken: legacyRefresh,
+        expiresAt: legacyExpiry,
+        type: "oauth",
+        persistTarget: { credPath: legacyCredPath },
+    };
+}
+// ---------------------------------------------------------------------------
+// Route factory
+// ---------------------------------------------------------------------------
+/**
+ * Create Claude-compatible proxy routes.
+ *
+ * Every request flows through ctx.neurolink.generate() or ctx.neurolink.stream().
+ * No direct fetch() calls to api.anthropic.com.
+ *
+ * @param modelRouter - Optional model router for remapping model names.
+ * @param basePath    - Base path prefix (default: "" since Claude API uses /v1/...).
+ * @returns RouteGroup with Claude-compatible endpoints.
+ */
+export function createClaudeProxyRoutes(modelRouter, basePath = "", accountStrategy = "fill-first") {
+    return {
+        prefix: `${basePath}/v1`,
+        routes: [
+            // =====================================================================
+            // POST /v1/messages -- Main chat completions endpoint
+            // =====================================================================
+            {
+                method: "POST",
+                path: `${basePath}/v1/messages`,
+                handler: async (ctx) => {
+                    const body = ctx.body;
+                    // 1. Validate
+                    if (!body?.model || !body?.messages) {
+                        return buildClaudeError(400, "Missing required fields: model, messages");
+                    }
+                    // 2. Resolve model via router (or pass through to anthropic)
+                    const route = modelRouter?.resolve(body.model) ?? {
+                        provider: "anthropic",
+                        model: body.model,
+                    };
+                    try {
+                        // 3. Route based on target provider
+                        const isClaudeTarget = route.provider === "anthropic" || route.provider === null;
+                        if (isClaudeTarget) {
+                            // ─── PASSTHROUGH MODE (Claude → Claude) ───────────────
+                            const fs = await import("fs");
+                            const os = await import("os");
+                            const accounts = [];
+                            const legacyCredPath = `${os.homedir()}/.neurolink/anthropic-credentials.json`;
+                            // 1. Compound keys from TokenStore
+                            // Skip accounts with expired tokens and no refresh token.
+                            // For expired tokens WITH a refresh token, attempt ONE refresh
+                            // before adding — if it fails, skip the account entirely.
+                            const { tokenStore } = await import("../../auth/tokenStore.js");
+                            // Decision 10D: Auto-prune dead entries once on first request (startup)
+                            if (!startupPruneDone) {
+                                await tokenStore.pruneExpired();
+                                startupPruneDone = true;
+                            }
+                            const compoundKeys = await tokenStore.listByPrefix("anthropic:");
+                            for (const key of compoundKeys) {
+                                // Decision 10D + Hot-reload: Skip disabled accounts UNLESS credentials changed
+                                if (await tokenStore.isDisabled(key)) {
+                                    const existingState = getOrCreateRuntimeState(key);
+                                    // Check if credentials were refreshed/re-authed since disable.
+                                    // On cold start, lastToken is empty — don't treat that as a
+                                    // credential change; only compare on subsequent reloads.
+                                    const tokens = await tokenStore.loadTokens(key);
+                                    const hasTrackedTokens = existingState.lastToken !== undefined &&
+                                        existingState.lastToken !== "";
+                                    const tokenChanged = tokens &&
+                                        hasTrackedTokens &&
+                                        (existingState.lastToken !== tokens.accessToken ||
+                                            existingState.lastRefreshToken !== tokens.refreshToken);
+                                    if (tokenChanged) {
+                                        // Credentials changed — auto-enable and use this account
+                                        await tokenStore.markEnabled(key);
+                                        logger.always(`[proxy] account=${key.split(":")[1] ?? key} re-enabled (credentials changed)`);
+                                        existingState.permanentlyDisabled = false;
+                                        existingState.coolingUntil = undefined;
+                                        existingState.backoffLevel = 0;
+                                        existingState.consecutiveRefreshFailures = 0;
+                                    }
+                                    else {
+                                        logger.debug(`[proxy] skipping disabled account=${key.split(":")[1] ?? key}`);
+                                        existingState.permanentlyDisabled = true;
+                                        continue;
+                                    }
+                                }
+                                const tokens = await tokenStore.loadTokens(key);
+                                if (!tokens) {
+                                    continue;
+                                }
+                                let accessToken = tokens.accessToken;
+                                let refreshTok = tokens.refreshToken;
+                                let expiresAt = tokens.expiresAt;
+                                // Check if token is expired
+                                const isExpired = expiresAt ? expiresAt < Date.now() : false;
+                                if (isExpired) {
+                                    const label = key.split(":")[1] ?? key;
+                                    // Check if already marked dead from a previous request
+                                    const existingState = getOrCreateRuntimeState(key);
+                                    if (existingState.permanentlyDisabled) {
+                                        // Already known dead — skip silently (no log spam)
+                                        continue;
+                                    }
+                                    if (!refreshTok) {
+                                        logger.always(`[proxy] skipping account=${label} (expired, no refresh token)`);
+                                        await disableAccountUntilReauth({ key, label, token: accessToken, type: "oauth" }, existingState);
+                                        continue;
+                                    }
+                                    // Try ONE refresh before adding
+                                    const tempAccount = {
+                                        token: accessToken,
+                                        refreshToken: refreshTok,
+                                        expiresAt,
+                                        label,
+                                    };
+                                    const refreshed = await refreshToken(tempAccount);
+                                    if (!refreshed.success) {
+                                        logger.always(`[proxy] skipping account=${label} (expired, refresh failed: ${refreshed.error?.slice(0, 200) ?? "unknown"})`);
+                                        await disableAccountUntilReauth({ key, label, token: accessToken, type: "oauth" }, existingState);
+                                        continue;
+                                    }
+                                    // Refresh succeeded — use new token and persist
+                                    accessToken = tempAccount.token;
+                                    refreshTok = tempAccount.refreshToken;
+                                    expiresAt = tempAccount.expiresAt;
+                                    await tokenStore.saveTokens(key, {
+                                        accessToken,
+                                        refreshToken: refreshTok,
+                                        expiresAt: expiresAt ?? Date.now() + 3600_000,
+                                        tokenType: "Bearer",
+                                    });
+                                    logger.always(`[proxy] refreshed expired account=${key.split(":")[1] ?? key} at startup`);
+                                }
+                                // Detect whether this is an API key or an OAuth token.
+                                // Use the stored tokenType (set at auth time) rather than a
+                                // prefix heuristic — both API keys (sk-ant-api03-…) and OAuth
+                                // access tokens (sk-ant-oat01-…) share the "sk-ant-" prefix.
+                                const accountType = tokens.tokenType === "Bearer" ? "oauth" : "api_key";
+                                accounts.push({
+                                    key,
+                                    label: key.split(":")[1] ?? key,
+                                    token: accessToken,
+                                    refreshToken: refreshTok,
+                                    expiresAt,
+                                    type: accountType,
+                                    persistTarget: { providerKey: key },
+                                });
+                            }
+                            // 2. Legacy credentials file (only if no usable compound account was loaded)
+                            if (accounts.length === 0) {
+                                try {
+                                    const creds = JSON.parse(fs.readFileSync(legacyCredPath, "utf8"));
+                                    const legacyAccount = await tryLoadLegacyAccount(creds, legacyCredPath);
+                                    if (legacyAccount) {
+                                        accounts.push(legacyAccount);
+                                    }
+                                }
+                                catch {
+                                    // no-op: file absent or invalid
+                                }
+                            }
+                            // 3. Env var — only use as fallback when no OAuth accounts are available.
+                            if (process.env.ANTHROPIC_API_KEY && accounts.length === 0) {
+                                accounts.push({
+                                    key: "anthropic:env",
+                                    label: "env",
+                                    token: process.env.ANTHROPIC_API_KEY,
+                                    type: "api_key",
+                                });
+                            }
+                            if (accounts.length === 0) {
+                                return buildClaudeError(401, "No Anthropic credentials found");
+                            }
+                            // Sync in-memory runtime state with current token material.
+                            for (const account of accounts) {
+                                const state = getOrCreateRuntimeState(account.key);
+                                const tokenChanged = state.lastToken !== account.token ||
+                                    state.lastRefreshToken !== account.refreshToken;
+                                if (tokenChanged) {
+                                    if (state.permanentlyDisabled) {
+                                        logger.always(`[proxy] account=${account.label} credentials changed, re-enabling`);
+                                    }
+                                    state.coolingUntil = undefined;
+                                    state.backoffLevel = 0;
+                                    state.consecutiveRefreshFailures = 0;
+                                    state.permanentlyDisabled = false;
+                                }
+                                state.lastToken = account.token;
+                                state.lastRefreshToken = account.refreshToken;
+                            }
+                            const enabledAccounts = accounts.filter((account) => {
+                                return !getOrCreateRuntimeState(account.key)
+                                    .permanentlyDisabled;
+                            });
+                            if (enabledAccounts.length === 0) {
+                                return buildClaudeError(401, formatReauthMessage(accounts.map((account) => account.label)));
+                            }
+                            // Order accounts based on the configured strategy.
+                            // - fill-first: always start with the primary account;
+                            //   only fall over when the primary is cooling down (429/401).
+                            // - round-robin: rotate the starting index on every request
+                            //   so traffic is spread evenly across accounts.
+                            const orderedAccounts = [...enabledAccounts];
+                            if (orderedAccounts.length > 1) {
+                                if (accountStrategy === "round-robin") {
+                                    // Advance the index on every request for even distribution
+                                    const idx = primaryAccountIndex % orderedAccounts.length;
+                                    primaryAccountIndex =
+                                        (primaryAccountIndex + 1) % orderedAccounts.length;
+                                    if (idx > 0) {
+                                        const head = orderedAccounts.splice(0, idx);
+                                        orderedAccounts.push(...head);
+                                    }
+                                }
+                                else {
+                                    // fill-first (default): clamp primaryAccountIndex
+                                    const idx = primaryAccountIndex % orderedAccounts.length;
+                                    if (idx > 0) {
+                                        const head = orderedAccounts.splice(0, idx);
+                                        orderedAccounts.push(...head);
+                                    }
+                                }
+                            }
+                            let lastError;
+                            let sawRateLimit = false;
+                            let sawNetworkError = false;
+                            let sawTransientFailure = false;
+                            let authFailureMessage = null;
+                            const bodyStr = JSON.stringify(body);
+                            const requestStart = Date.now();
+                            const toolCount = Array.isArray(body.tools)
+                                ? body.tools.length
+                                : 0;
+                            const url = "https://api.anthropic.com/v1/messages?beta=true";
+                            const clientHeaders = ctx.headers ?? {};
+                            for (const account of orderedAccounts) {
+                                const accountState = getOrCreateRuntimeState(account.key);
+                                if (accountState.coolingUntil &&
+                                    accountState.coolingUntil > Date.now()) {
+                                    continue;
+                                }
+                                const logAttempt = (status, errorType, errorMessage) => {
+                                    logRequest({
+                                        timestamp: new Date().toISOString(),
+                                        requestId: ctx.requestId,
+                                        method: ctx.method,
+                                        path: ctx.path,
+                                        model: body.model,
+                                        stream: !!body.stream,
+                                        toolCount,
+                                        account: account.label,
+                                        accountType: account.type,
+                                        responseStatus: status,
+                                        responseTimeMs: Date.now() - requestStart,
+                                        ...(errorType ? { errorType } : {}),
+                                        ...(errorMessage ? { errorMessage } : {}),
+                                    });
+                                };
+                                // Auto-refresh expiring access tokens once before making the request.
+                                if (needsRefresh(account)) {
+                                    const refreshed = await refreshToken(account);
+                                    if (refreshed.success) {
+                                        if (account.persistTarget) {
+                                            await persistTokens(account.persistTarget, account);
+                                        }
+                                        accountState.consecutiveRefreshFailures = 0;
+                                    }
+                                    else {
+                                        accountState.consecutiveRefreshFailures += 1;
+                                        lastError = `token refresh failed for account=${account.label}: ${refreshed.error?.slice(0, 200) ?? "unknown"}`;
+                                        logger.debug(`[proxy] preflight refresh failed account=${account.label} failures=${accountState.consecutiveRefreshFailures}`);
+                                        if (accountState.consecutiveRefreshFailures >=
+                                            MAX_CONSECUTIVE_REFRESH_FAILURES) {
+                                            await disableAccountUntilReauth(account, accountState);
+                                            authFailureMessage = formatReauthMessage(account.label);
+                                            logAttempt(401, "authentication_error", String(lastError));
+                                            continue;
+                                        }
+                                    }
+                                }
+                                const isOAuth = account.type === "oauth";
+                                // Decision 6: Passthrough client headers, fill gaps only.
+                                // Start with a copy of incoming client headers, then set
+                                // defaults for anything the client didn't send. Always
+                                // override auth + content-type.
+                                const headers = {};
+                                for (const [hk, hv] of Object.entries(clientHeaders)) {
+                                    const lower = hk.toLowerCase();
+                                    if (typeof hv === "string" &&
+                                        !BLOCKED_UPSTREAM_HEADERS.has(lower)) {
+                                        headers[lower] = hv;
+                                    }
+                                }
+                                // Always set (override) — auth and content-type are proxy-controlled
+                                headers["content-type"] = "application/json";
+                                if (isOAuth) {
+                                    headers["authorization"] = `Bearer ${account.token}`;
+                                }
+                                else {
+                                    headers["x-api-key"] = account.token;
+                                    delete headers["authorization"];
+                                }
+                                // Defaults: only set when client didn't send them
+                                if (!headers["user-agent"]) {
+                                    headers["user-agent"] = "claude-cli/2.1.80 (external, cli)";
+                                }
+                                if (!headers["anthropic-version"]) {
+                                    headers["anthropic-version"] = "2023-06-01";
+                                }
+                                // Ensure oauth beta is always present in the beta list
+                                const existingBetas = headers["anthropic-beta"] ?? "";
+                                if (!existingBetas) {
+                                    headers["anthropic-beta"] = "oauth-2025-04-20";
+                                }
+                                else if (!existingBetas.includes("oauth")) {
+                                    headers["anthropic-beta"] =
+                                        `${existingBetas},oauth-2025-04-20`;
+                                }
+                                logger.always(`[proxy] → account=${account.label} (${account.type})`);
+                                recordRequest(account.label, account.type);
+                                // Log full request for debugging (written to ~/.neurolink/logs/proxy-debug-*.jsonl)
+                                const fetchStartMs = Date.now();
+                                let response;
+                                try {
+                                    response = await fetch(url, {
+                                        method: "POST",
+                                        headers,
+                                        body: bodyStr,
+                                        signal: AbortSignal.timeout(UPSTREAM_FETCH_TIMEOUT_MS),
+                                    });
+                                }
+                                catch (fetchErr) {
+                                    if (!isRetryableNetworkError(fetchErr)) {
+                                        throw fetchErr;
+                                    }
+                                    // Decision 8: Network errors — immediate rotation, no cooldown
+                                    sawNetworkError = true;
+                                    recordError(account.label, account.type, 502);
+                                    const errorCode = getErrorCode(fetchErr) ?? "unknown";
+                                    const errorMessage = fetchErr instanceof Error
+                                        ? fetchErr.message
+                                        : String(fetchErr);
+                                    lastError = errorMessage;
+                                    logger.always(`[proxy] fetch error account=${account.label} code=${errorCode} (rotating): ${errorMessage}`);
+                                    logAttempt(502, "network_error", errorMessage);
+                                    continue;
+                                }
+                                // Check 429 (with Retry-After + exponential backoff) → continue.
+                                if (response.status === 429) {
+                                    sawRateLimit = true;
+                                    const retryAfter = response.headers.get("retry-after");
+                                    let cooldownMs = 0;
+                                    if (retryAfter) {
+                                        const seconds = parseInt(retryAfter, 10);
+                                        if (!Number.isNaN(seconds)) {
+                                            cooldownMs = seconds * 1000;
+                                        }
+                                        else {
+                                            const date = new Date(retryAfter);
+                                            if (!Number.isNaN(date.getTime())) {
+                                                cooldownMs = Math.max(date.getTime() - Date.now(), 1000);
+                                            }
+                                        }
+                                    }
+                                    const level = accountState.backoffLevel;
+                                    const baseCooldown = cooldownMs > 0 ? cooldownMs : RATE_LIMIT_BACKOFF_BASE_MS;
+                                    const backoffMs = Math.min(baseCooldown * Math.pow(2, level), RATE_LIMIT_BACKOFF_CAP_MS);
+                                    accountState.coolingUntil = Date.now() + backoffMs;
+                                    accountState.backoffLevel += 1;
+                                    advancePrimaryIfCurrent(account.key, enabledAccounts.length, orderedAccounts[0]?.key);
+                                    recordError(account.label, account.type, 429);
+                                    recordCooldown(account.label, account.type, accountState.coolingUntil, accountState.backoffLevel);
+                                    lastError = await response.text();
+                                    logger.always(`[proxy] ← 429 account=${account.label} backoff-level=${accountState.backoffLevel} cooldown=${Math.round(backoffMs / 1000)}s`);
+                                    logAttempt(429, "rate_limit_error", String(lastError));
+                                    continue;
+                                }
+                                // On 401 for refreshable OAuth: refresh token and retry before failing over.
+                                if (response.status === 401 &&
+                                    account.type === "oauth" &&
+                                    account.refreshToken) {
+                                    recordError(account.label, account.type, 401);
+                                    let authRetrySucceeded = false;
+                                    let authRetryError = "received 401 from Anthropic";
+                                    for (let authRetry = 0; authRetry < MAX_AUTH_RETRIES; authRetry++) {
+                                        logger.always(`[proxy] ← 401 account=${account.label} refreshing (attempt ${authRetry + 1}/${MAX_AUTH_RETRIES})`);
+                                        const refreshSucceeded = await refreshToken(account);
+                                        if (!refreshSucceeded.success) {
+                                            accountState.consecutiveRefreshFailures += 1;
+                                            authRetryError = `refresh failed for account=${account.label} attempt ${authRetry + 1}/${MAX_AUTH_RETRIES}: ${refreshSucceeded.error?.slice(0, 200) ?? "unknown"}`;
+                                            lastError = authRetryError;
+                                            logger.always(`[proxy] ⚠ account=${account.label} refresh failed on attempt ${authRetry + 1}`);
+                                            if (accountState.consecutiveRefreshFailures >=
+                                                MAX_CONSECUTIVE_REFRESH_FAILURES) {
+                                                await disableAccountUntilReauth(account, accountState);
+                                                authFailureMessage = formatReauthMessage(account.label);
+                                                break;
+                                            }
+                                            if (authRetry < MAX_AUTH_RETRIES - 1) {
+                                                await sleep(2000);
+                                            }
+                                            continue;
+                                        }
+                                        if (account.persistTarget) {
+                                            await persistTokens(account.persistTarget, account);
+                                        }
+                                        headers.authorization = `Bearer ${account.token}`;
+                                        try {
+                                            const retryResp = await fetch(url, {
+                                                method: "POST",
+                                                headers,
+                                                body: bodyStr,
+                                                signal: AbortSignal.timeout(UPSTREAM_FETCH_TIMEOUT_MS),
+                                            });
+                                            if (retryResp.ok) {
+                                                authRetrySucceeded = true;
+                                                accountState.consecutiveRefreshFailures = 0;
+                                                accountState.backoffLevel = 0;
+                                                accountState.coolingUntil = undefined;
+                                                logger.always(`[proxy] ← 200 account=${account.label} (after ${authRetry + 1} refresh(es))`);
+                                                recordSuccess(account.label, account.type);
+                                                logAttempt(retryResp.status);
+                                                // Capture quota headers after successful auth-retry
+                                                {
+                                                    const retryQuota = parseQuotaHeaders(retryResp.headers);
+                                                    // eslint-disable-next-line max-depth
+                                                    if (retryQuota) {
+                                                        saveAccountQuota(account.label, retryQuota).catch(() => { });
+                                                    }
+                                                }
+                                                // eslint-disable-next-line max-depth
+                                                if (body.stream && retryResp.body) {
+                                                    const retryReader = retryResp.body.getReader();
+                                                    const retryStream = new ReadableStream({
+                                                        async pull(controller) {
+                                                            try {
+                                                                const { done, value } = await retryReader.read();
+                                                                if (done) {
+                                                                    controller.close();
+                                                                    return;
+                                                                }
+                                                                controller.enqueue(value);
+                                                            }
+                                                            catch (streamErr) {
+                                                                const errMsg = streamErr instanceof Error
+                                                                    ? streamErr.message
+                                                                    : String(streamErr);
+                                                                logger.always(`[proxy] mid-stream error (auth-retry) account=${account.label}: ${errMsg}`);
+                                                                logStreamError({
+                                                                    timestamp: new Date().toISOString(),
+                                                                    requestId: ctx.requestId,
+                                                                    account: account.label,
+                                                                    model: body.model,
+                                                                    errorMessage: errMsg,
+                                                                    durationMs: Date.now() - fetchStartMs,
+                                                                });
+                                                                const errorEvent = `event: error\ndata: ${JSON.stringify({ type: "error", error: { type: "api_error", message: `Upstream stream interrupted: ${errMsg}` } })}\n\n`;
+                                                                controller.enqueue(new TextEncoder().encode(errorEvent));
+                                                                controller.close();
+                                                            }
+                                                        },
+                                                        cancel() {
+                                                            retryReader.cancel();
+                                                        },
+                                                    });
+                                                    const responseHeaders = {
+                                                        "content-type": "text/event-stream",
+                                                        "cache-control": "no-cache",
+                                                        connection: "keep-alive",
+                                                    };
+                                                    // eslint-disable-next-line max-depth
+                                                    for (const h of [
+                                                        "retry-after",
+                                                        "anthropic-ratelimit-requests-remaining",
+                                                        "anthropic-ratelimit-requests-limit",
+                                                        "anthropic-ratelimit-tokens-remaining",
+                                                        "anthropic-ratelimit-tokens-limit",
+                                                    ]) {
+                                                        const val = retryResp.headers.get(h);
+                                                        // eslint-disable-next-line max-depth
+                                                        if (val) {
+                                                            responseHeaders[h] = val;
+                                                        }
+                                                    }
+                                                    return new Response(retryStream, {
+                                                        status: retryResp.status,
+                                                        headers: responseHeaders,
+                                                    });
+                                                }
+                                                return retryResp.json();
+                                            }
+                                            const retryStatus = retryResp.status;
+                                            const retryBody = await retryResp.text();
+                                            authRetryError = `retry ${authRetry + 1}/${MAX_AUTH_RETRIES} failed with status ${retryStatus}`;
+                                            lastError = retryBody;
+                                            logger.debug(`[proxy] retry ${authRetry + 1} failed: ${retryStatus} ${retryBody.substring(0, 120)}`);
+                                            recordError(account.label, account.type, retryStatus);
+                                            if (retryStatus === 429) {
+                                                sawRateLimit = true;
+                                                const retryAfter = retryResp.headers.get("retry-after");
+                                                const parsedRetryAfter = parseInt(retryAfter ?? "", 10);
+                                                const cooldownMs = Number.isNaN(parsedRetryAfter)
+                                                    ? 60_000
+                                                    : Math.max(1, parsedRetryAfter) * 1000;
+                                                accountState.coolingUntil = Date.now() + cooldownMs;
+                                                advancePrimaryIfCurrent(account.key, enabledAccounts.length, orderedAccounts[0]?.key);
+                                                recordCooldown(account.label, account.type, accountState.coolingUntil, accountState.backoffLevel);
+                                                break;
+                                            }
+                                            if (retryStatus === 401 ||
+                                                retryStatus === 402 ||
+                                                retryStatus === 403) {
+                                                // eslint-disable-next-line max-depth
+                                                if (authRetry < MAX_AUTH_RETRIES - 1) {
+                                                    await sleep(1000);
+                                                }
+                                                continue;
+                                            }
+                                            if (isTransientHttpFailure(retryStatus, retryBody)) {
+                                                // Decision 8: No cooldown for transient errors — rotate immediately
+                                                sawTransientFailure = true;
+                                                break;
+                                            }
+                                            logAttempt(retryStatus, "api_error", summarizeErrorMessage(retryBody));
+                                            try {
+                                                return JSON.parse(retryBody);
+                                            }
+                                            catch {
+                                                return buildClaudeError(retryStatus, retryBody);
+                                            }
+                                        }
+                                        catch (retryFetchErr) {
+                                            // Decision 8: No cooldown for network errors — rotate immediately
+                                            sawNetworkError = true;
+                                            recordError(account.label, account.type, 502);
+                                            const message = retryFetchErr instanceof Error
+                                                ? retryFetchErr.message
+                                                : String(retryFetchErr);
+                                            authRetryError = `network error on retry ${authRetry + 1}: ${message}`;
+                                            lastError = authRetryError;
+                                            logger.debug(`[proxy] ${authRetryError}`);
+                                            break;
+                                        }
+                                    }
+                                    if (!authRetrySucceeded) {
+                                        if (!accountState.permanentlyDisabled) {
+                                            if (!accountState.coolingUntil ||
+                                                accountState.coolingUntil <= Date.now()) {
+                                                accountState.coolingUntil =
+                                                    Date.now() + AUTH_COOLDOWN_MS;
+                                            }
+                                            recordCooldown(account.label, account.type, accountState.coolingUntil, accountState.backoffLevel);
+                                        }
+                                        lastError = authRetryError;
+                                        logger.always(`[proxy] ⚠ account=${account.label} auth retries exhausted, cooldown=5min`);
+                                        logAttempt(401, "authentication_error", authRetryError);
+                                        continue;
+                                    }
+                                }
+                                if (!response.ok) {
+                                    const errBody = await response.text();
+                                    // Log full error for debugging
+                                    const errRespHeaders = {};
+                                    response.headers.forEach((v, k) => {
+                                        errRespHeaders[k] = v;
+                                    });
+                                    logFullRequestResponse({
+                                        timestamp: new Date().toISOString(),
+                                        requestId: ctx.requestId,
+                                        account: account.label,
+                                        model: body.model,
+                                        stream: !!body.stream,
+                                        requestHeaders: redactSensitiveHeaders(headers),
+                                        requestBody: {
+                                            model: body.model,
+                                            max_tokens: body.max_tokens,
+                                            stream: body.stream,
+                                            system: Array.isArray(body.system)
+                                                ? `[${body.system.length} blocks]`
+                                                : typeof body.system,
+                                            messages: Array.isArray(body.messages)
+                                                ? `[${body.messages.length} messages]`
+                                                : "?",
+                                            tools: Array.isArray(body.tools)
+                                                ? `[${body.tools.length} tools]`
+                                                : "none",
+                                            tool_choice: body.tool_choice,
+                                            thinking: body.thinking,
+                                        },
+                                        requestBodySize: bodyStr.length,
+                                        responseStatus: response.status,
+                                        responseHeaders: errRespHeaders,
+                                        responseBody: errBody.substring(0, 2000),
+                                        responseBodySize: errBody.length,
+                                        durationMs: Date.now() - fetchStartMs,
+                                    });
+                                    // Request-shape errors (do not retry).
+                                    if (isInvalidRequestError(response.status, errBody)) {
+                                        logger.always(`[proxy] ← ${response.status} request-shape error (no retry)`);
+                                        logAttempt(response.status, "invalid_request_error", summarizeErrorMessage(errBody));
+                                        try {
+                                            return JSON.parse(errBody);
+                                        }
+                                        catch {
+                                            return buildClaudeError(response.status, errBody);
+                                        }
+                                    }
+                                    // Auth failures for OAuth accounts without refresh token.
+                                    if ((response.status === 401 ||
+                                        response.status === 402 ||
+                                        response.status === 403) &&
+                                        account.type === "oauth" &&
+                                        !account.refreshToken) {
+                                        recordError(account.label, account.type, response.status);
+                                        accountState.consecutiveRefreshFailures += 1;
+                                        accountState.coolingUntil = Date.now() + AUTH_COOLDOWN_MS;
+                                        recordCooldown(account.label, account.type, accountState.coolingUntil, accountState.backoffLevel);
+                                        if (accountState.consecutiveRefreshFailures >=
+                                            MAX_CONSECUTIVE_REFRESH_FAILURES) {
+                                            await disableAccountUntilReauth(account, accountState);
+                                        }
+                                        authFailureMessage = formatReauthMessage(account.label);
+                                        logger.always(`[proxy] ← ${response.status} account=${account.label} cooldown=5min`);
+                                        lastError = errBody;
+                                        logAttempt(response.status, "authentication_error", summarizeErrorMessage(errBody));
+                                        continue;
+                                    }
+                                    // Auth failures for API-key accounts.
+                                    if ((response.status === 401 ||
+                                        response.status === 402 ||
+                                        response.status === 403) &&
+                                        account.type === "api_key") {
+                                        recordError(account.label, account.type, response.status);
+                                        authFailureMessage =
+                                            "Authentication failed for Anthropic API key credentials. Update ANTHROPIC_API_KEY or re-login with OAuth.";
+                                        accountState.coolingUntil = Date.now() + AUTH_COOLDOWN_MS;
+                                        recordCooldown(account.label, account.type, accountState.coolingUntil, accountState.backoffLevel);
+                                        logger.always(`[proxy] ← ${response.status} account=${account.label} cooldown=5min`);
+                                        lastError = errBody;
+                                        logAttempt(response.status, "authentication_error", summarizeErrorMessage(errBody));
+                                        continue;
+                                    }
+                                    // 404 is generally model/account specific; return immediately (no cooldown per Decision 8).
+                                    if (response.status === 404) {
+                                        recordError(account.label, account.type, response.status);
+                                        logger.always(`[proxy] ← 404 account=${account.label}`);
+                                        logAttempt(404, "not_found_error", summarizeErrorMessage(errBody));
+                                        try {
+                                            return JSON.parse(errBody);
+                                        }
+                                        catch {
+                                            return buildClaudeError(404, errBody);
+                                        }
+                                    }
+                                    // Decision 8: Transient upstream failures — immediate rotation, NO cooldown.
+                                    if (isTransientHttpFailure(response.status, errBody)) {
+                                        recordError(account.label, account.type, response.status);
+                                        sawTransientFailure = true;
+                                        // No cooldown for transient errors (502, 503, etc.) — rotate immediately
+                                        logger.always(`[proxy] ← ${response.status} account=${account.label} (transient, rotating)`);
+                                        lastError = errBody;
+                                        logAttempt(response.status, "api_error", summarizeErrorMessage(errBody));
+                                        continue;
+                                    }
+                                    // Other non-ok errors → return as-is.
+                                    recordError(account.label, account.type, response.status);
+                                    logger.always(`[proxy] ← ${response.status} account=${account.label}`);
+                                    logger.debug(`[claude-proxy] error body: ${errBody.substring(0, 200)}`);
+                                    logAttempt(response.status, "api_error", summarizeErrorMessage(errBody));
+                                    try {
+                                        return JSON.parse(errBody);
+                                    }
+                                    catch {
+                                        return buildClaudeError(response.status, errBody);
+                                    }
+                                }
+                                // Success path.
+                                accountState.backoffLevel = 0;
+                                accountState.coolingUntil = undefined;
+                                accountState.consecutiveRefreshFailures = 0;
+                                recordSuccess(account.label, account.type);
+                                logger.always(`[proxy] ← ${response.status} account=${account.label}`);
+                                logAttempt(response.status);
+                                // Capture quota/utilisation headers (fire-and-forget).
+                                const quota = parseQuotaHeaders(response.headers);
+                                if (quota) {
+                                    saveAccountQuota(account.label, quota).catch(() => {
+                                        // Non-fatal: quota persistence is best-effort
+                                    });
+                                }
+                                // Log full request + response headers for debugging
+                                const respHeaders = {};
+                                response.headers.forEach((v, k) => {
+                                    respHeaders[k] = v;
+                                });
+                                logFullRequestResponse({
+                                    timestamp: new Date().toISOString(),
+                                    requestId: ctx.requestId,
+                                    account: account.label,
+                                    model: body.model,
+                                    stream: !!body.stream,
+                                    requestHeaders: redactSensitiveHeaders(headers),
+                                    requestBody: {
+                                        model: body.model,
+                                        max_tokens: body.max_tokens,
+                                        stream: body.stream,
+                                        system: Array.isArray(body.system)
+                                            ? `[${body.system.length} blocks]`
+                                            : typeof body.system,
+                                        messages: Array.isArray(body.messages)
+                                            ? `[${body.messages.length} messages]`
+                                            : "?",
+                                        tools: Array.isArray(body.tools)
+                                            ? `[${body.tools.length} tools]`
+                                            : "none",
+                                        tool_choice: body.tool_choice,
+                                        thinking: body.thinking,
+                                        metadata: body.metadata ? "present" : "absent",
+                                    },
+                                    requestBodySize: bodyStr.length,
+                                    responseStatus: response.status,
+                                    responseHeaders: respHeaders,
+                                    durationMs: Date.now() - fetchStartMs,
+                                });
+                                if (body.stream) {
+                                    // Bootstrap retry: read first chunk to verify stream is valid.
+                                    if (response.body) {
+                                        const reader = response.body.getReader();
+                                        const firstChunk = await reader.read();
+                                        if (firstChunk.done ||
+                                            !firstChunk.value ||
+                                            firstChunk.value.length === 0) {
+                                            // Empty stream — retry with next account.
+                                            reader.cancel();
+                                            accountState.coolingUntil = Date.now() + 10_000;
+                                            recordCooldown(account.label, account.type, accountState.coolingUntil, accountState.backoffLevel);
+                                            logger.always(`[proxy] ← empty stream from account=${account.label}, trying next`);
+                                            continue;
+                                        }
+                                        // Stream is valid — create a new ReadableStream with first chunk prepended.
+                                        const remainingStream = new ReadableStream({
+                                            start(controller) {
+                                                controller.enqueue(firstChunk.value);
+                                            },
+                                            async pull(controller) {
+                                                try {
+                                                    const { done, value } = await reader.read();
+                                                    if (done) {
+                                                        controller.close();
+                                                        return;
+                                                    }
+                                                    controller.enqueue(value);
+                                                }
+                                                catch (streamErr) {
+                                                    const errMsg = streamErr instanceof Error
+                                                        ? streamErr.message
+                                                        : String(streamErr);
+                                                    logger.always(`[proxy] mid-stream error account=${account.label}: ${errMsg}`);
+                                                    logStreamError({
+                                                        timestamp: new Date().toISOString(),
+                                                        requestId: ctx.requestId,
+                                                        account: account.label,
+                                                        model: body.model,
+                                                        errorMessage: errMsg,
+                                                        durationMs: Date.now() - fetchStartMs,
+                                                    });
+                                                    // Send SSE error event so the client gets a meaningful error
+                                                    // instead of a raw connection drop
+                                                    const errorEvent = `event: error\ndata: ${JSON.stringify({ type: "error", error: { type: "api_error", message: `Upstream stream interrupted: ${errMsg}` } })}\n\n`;
+                                                    controller.enqueue(new TextEncoder().encode(errorEvent));
+                                                    controller.close();
+                                                }
+                                            },
+                                            cancel() {
+                                                reader.cancel();
+                                            },
+                                        });
+                                        // Forward rate limit headers from Anthropic.
+                                        const responseHeaders = {
+                                            "content-type": "text/event-stream",
+                                            "cache-control": "no-cache",
+                                            connection: "keep-alive",
+                                        };
+                                        for (const h of [
+                                            "retry-after",
+                                            "anthropic-ratelimit-requests-remaining",
+                                            "anthropic-ratelimit-requests-limit",
+                                            "anthropic-ratelimit-tokens-remaining",
+                                            "anthropic-ratelimit-tokens-limit",
+                                        ]) {
+                                            const val = response.headers.get(h);
+                                            if (val) {
+                                                responseHeaders[h] = val;
+                                            }
+                                        }
+                                        return new Response(remainingStream, {
+                                            status: response.status,
+                                            headers: responseHeaders,
+                                        });
+                                    }
+                                    return buildClaudeError(502, "No response body from upstream");
+                                }
+                                // Non-streaming: return JSON directly.
+                                return response.json();
+                            }
+                            // All accounts exhausted — compute earliest recovery time.
+                            const earliestRecovery = orderedAccounts.reduce((min, account) => {
+                                const coolingUntil = getOrCreateRuntimeState(account.key).coolingUntil;
+                                return coolingUntil ? Math.min(min, coolingUntil) : min;
+                            }, Infinity);
+                            const retryAfterSec = Number.isFinite(earliestRecovery)
+                                ? Math.max(1, Math.ceil((earliestRecovery - Date.now()) / 1000))
+                                : 60;
+                            // Try fallback chain (alternative providers)
+                            const chain = modelRouter?.getFallbackChain() ?? [];
+                            for (const fallback of chain) {
+                                try {
+                                    logger.always(`[proxy] fallback → ${fallback.provider}/${fallback.model}`);
+                                    const parsed = parseClaudeRequest(body);
+                                    const opts = {
+                                        input: {
+                                            text: parsed.prompt,
+                                            ...(parsed.images.length > 0
+                                                ? { images: parsed.images }
+                                                : {}),
+                                        },
+                                        provider: fallback.provider,
+                                        model: fallback.model,
+                                        systemPrompt: parsed.systemPrompt,
+                                        maxTokens: parsed.maxTokens,
+                                        ...(parsed.temperature !== undefined
+                                            ? { temperature: parsed.temperature }
+                                            : {}),
+                                        ...(parsed.topP !== undefined ? { topP: parsed.topP } : {}),
+                                        ...(parsed.topK !== undefined ? { topK: parsed.topK } : {}),
+                                        ...(parsed.stopSequences?.length
+                                            ? { stopSequences: parsed.stopSequences }
+                                            : {}),
+                                        tools: parsed.tools,
+                                        ...(parsed.toolChoice
+                                            ? { toolChoice: parsed.toolChoice }
+                                            : {}),
+                                        ...(parsed.thinkingConfig
+                                            ? { thinkingConfig: parsed.thinkingConfig }
+                                            : {}),
+                                        ...(parsed.conversationMessages?.length
+                                            ? {
+                                                conversationMessages: parsed.conversationMessages.slice(0, -1),
+                                            }
+                                            : {}),
+                                        maxSteps: 1,
+                                    };
+                                    if (body.stream) {
+                                        const streamResult = await ctx.neurolink.stream(opts);
+                                        const serializer = new ClaudeStreamSerializer(body.model, 0);
+                                        async function* sseGenerator() {
+                                            for (const frame of serializer.start()) {
+                                                yield frame;
+                                            }
+                                            for await (const chunk of streamResult.stream) {
+                                                const text = extractText(chunk);
+                                                if (text) {
+                                                    for (const frame of serializer.pushDelta(text)) {
+                                                        yield frame;
+                                                    }
+                                                }
+                                            }
+                                            // Emit tool_use blocks if model wants to call tools
+                                            if (streamResult.toolCalls?.length) {
+                                                for (const tc of streamResult.toolCalls) {
+                                                    const toolName = tc.toolName ??
+                                                        tc.name ??
+                                                        "unknown";
+                                                    const toolArgs = tc.args ??
+                                                        tc.parameters ??
+                                                        {};
+                                                    for (const frame of serializer.pushToolUse(generateToolUseId(), toolName, toolArgs)) {
+                                                        yield frame;
+                                                    }
+                                                }
+                                            }
+                                            const reason = streamResult.finishReason ?? "end_turn";
+                                            for (const frame of serializer.finish(0, reason)) {
+                                                yield frame;
+                                            }
+                                        }
+                                        return sseGenerator();
+                                    }
+                                    const streamResult = await ctx.neurolink.stream(opts);
+                                    let collectedText = "";
+                                    for await (const chunk of streamResult.stream) {
+                                        const text = extractText(chunk);
+                                        if (text) {
+                                            collectedText += text;
+                                        }
+                                    }
+                                    const internal = {
+                                        content: collectedText,
+                                        model: streamResult.model,
+                                        finishReason: streamResult.finishReason ?? "end_turn",
+                                        reasoning: undefined,
+                                        usage: streamResult.usage
+                                            ? {
+                                                input: streamResult.usage.input ??
+                                                    0,
+                                                output: streamResult.usage
+                                                    .output ?? 0,
+                                                total: streamResult.usage.total ??
+                                                    0,
+                                            }
+                                            : undefined,
+                                        toolCalls: streamResult.toolCalls,
+                                    };
+                                    return serializeClaudeResponse(internal, body.model);
+                                }
+                                catch (fallbackErr) {
+                                    logger.debug(`[proxy] fallback ${fallback.provider}/${fallback.model} failed: ${fallbackErr instanceof Error ? fallbackErr.message : String(fallbackErr)}`);
+                                    continue;
+                                }
+                            }
+                            // If no explicit fallback chain is configured, try SDK auto-provider fallback.
+                            if (chain.length === 0) {
+                                try {
+                                    logger.always("[proxy] fallback → auto-provider");
+                                    const parsed = parseClaudeRequest(body);
+                                    const opts = {
+                                        input: {
+                                            text: parsed.prompt,
+                                            ...(parsed.images.length > 0
+                                                ? { images: parsed.images }
+                                                : {}),
+                                        },
+                                        systemPrompt: parsed.systemPrompt,
+                                        maxTokens: parsed.maxTokens,
+                                        ...(parsed.temperature !== undefined
+                                            ? { temperature: parsed.temperature }
+                                            : {}),
+                                        ...(parsed.topP !== undefined ? { topP: parsed.topP } : {}),
+                                        ...(parsed.topK !== undefined ? { topK: parsed.topK } : {}),
+                                        ...(parsed.stopSequences?.length
+                                            ? { stopSequences: parsed.stopSequences }
+                                            : {}),
+                                        tools: parsed.tools,
+                                        ...(parsed.toolChoice
+                                            ? { toolChoice: parsed.toolChoice }
+                                            : {}),
+                                        ...(parsed.thinkingConfig
+                                            ? { thinkingConfig: parsed.thinkingConfig }
+                                            : {}),
+                                        ...(parsed.conversationMessages?.length
+                                            ? {
+                                                conversationMessages: parsed.conversationMessages.slice(0, -1),
+                                            }
+                                            : {}),
+                                        maxSteps: 1,
+                                    };
+                                    if (body.stream) {
+                                        const streamResult = await ctx.neurolink.stream(opts);
+                                        const serializer = new ClaudeStreamSerializer(body.model, 0);
+                                        async function* sseGenerator() {
+                                            for (const frame of serializer.start()) {
+                                                yield frame;
+                                            }
+                                            for await (const chunk of streamResult.stream) {
+                                                const text = extractText(chunk);
+                                                if (text) {
+                                                    for (const frame of serializer.pushDelta(text)) {
+                                                        yield frame;
+                                                    }
+                                                }
+                                            }
+                                            // Emit tool_use blocks if model wants to call tools
+                                            if (streamResult.toolCalls?.length) {
+                                                for (const tc of streamResult.toolCalls) {
+                                                    const toolName = tc.toolName ??
+                                                        tc.name ??
+                                                        "unknown";
+                                                    const toolArgs = tc.args ??
+                                                        tc.parameters ??
+                                                        {};
+                                                    for (const frame of serializer.pushToolUse(generateToolUseId(), toolName, toolArgs)) {
+                                                        yield frame;
+                                                    }
+                                                }
+                                            }
+                                            const reason = streamResult.finishReason ?? "end_turn";
+                                            for (const frame of serializer.finish(0, reason)) {
+                                                yield frame;
+                                            }
+                                        }
+                                        return sseGenerator();
+                                    }
+                                    const streamResult = await ctx.neurolink.stream(opts);
+                                    let collectedText = "";
+                                    for await (const chunk of streamResult.stream) {
+                                        const text = extractText(chunk);
+                                        if (text) {
+                                            collectedText += text;
+                                        }
+                                    }
+                                    const internal = {
+                                        content: collectedText,
+                                        model: streamResult.model,
+                                        finishReason: streamResult.finishReason ?? "end_turn",
+                                        reasoning: undefined,
+                                        usage: streamResult.usage
+                                            ? {
+                                                input: streamResult.usage.input ??
+                                                    0,
+                                                output: streamResult.usage
+                                                    .output ?? 0,
+                                                total: streamResult.usage.total ??
+                                                    0,
+                                            }
+                                            : undefined,
+                                        toolCalls: streamResult.toolCalls,
+                                    };
+                                    return serializeClaudeResponse(internal, body.model);
+                                }
+                                catch (fallbackErr) {
+                                    logger.debug(`[proxy] fallback auto-provider failed: ${fallbackErr instanceof Error
+                                        ? fallbackErr.message
+                                        : String(fallbackErr)}`);
+                                }
+                            }
+                            if (authFailureMessage && !sawRateLimit) {
+                                return buildClaudeError(401, authFailureMessage);
+                            }
+                            if ((sawNetworkError || sawTransientFailure) && !sawRateLimit) {
+                                return buildClaudeError(502, `All Anthropic accounts failed due to transient upstream/network errors. Last error: ${lastError instanceof Error
+                                    ? lastError.message
+                                    : String(lastError ?? "unknown")}`);
+                            }
+                            if (!sawRateLimit) {
+                                return buildClaudeError(502, `All Anthropic accounts failed. Last error: ${lastError instanceof Error
+                                    ? lastError.message
+                                    : String(lastError ?? "unknown")}`);
+                            }
+                            // All accounts AND all fallbacks exhausted — return 429 with Retry-After
+                            logger.always(`[proxy] all accounts rate-limited, retry in ${retryAfterSec}s`);
+                            const errorBody = buildClaudeError(429, `All accounts rate-limited. Earliest recovery in ${retryAfterSec}s.`, "overloaded_error");
+                            return new Response(JSON.stringify(errorBody), {
+                                status: 429,
+                                headers: {
+                                    "content-type": "application/json",
+                                    "retry-after": String(retryAfterSec),
+                                },
+                            });
+                        }
+                        else {
+                            // ─── TRANSLATION MODE (Claude → Other Provider) ───────
+                            // Parse into NeuroLink format, call generate/stream, serialize back
+                            const parsed = parseClaudeRequest(body);
+                            const historyMessages = parsed.conversationMessages.slice(0, -1);
+                            const options = {
+                                input: {
+                                    text: parsed.prompt,
+                                    ...(parsed.images.length > 0
+                                        ? { images: parsed.images }
+                                        : {}),
+                                },
+                                provider: route.provider,
+                                model: route.model,
+                                systemPrompt: parsed.systemPrompt,
+                                maxTokens: parsed.maxTokens,
+                                ...(parsed.temperature !== undefined
+                                    ? { temperature: parsed.temperature }
+                                    : {}),
+                                ...(parsed.topP !== undefined ? { topP: parsed.topP } : {}),
+                                ...(parsed.topK !== undefined ? { topK: parsed.topK } : {}),
+                                ...(parsed.stopSequences?.length
+                                    ? { stopSequences: parsed.stopSequences }
+                                    : {}),
+                                ...(parsed.thinkingConfig
+                                    ? { thinkingConfig: parsed.thinkingConfig }
+                                    : {}),
+                                tools: parsed.tools,
+                                ...(parsed.toolChoice ? { toolChoice: parsed.toolChoice } : {}),
+                                maxSteps: 1,
+                                ...(historyMessages.length > 0
+                                    ? { conversationMessages: historyMessages }
+                                    : {}),
+                            };
+                            if (body.stream) {
+                                const streamResult = await ctx.neurolink.stream(options);
+                                const serializer = new ClaudeStreamSerializer(body.model, 0);
+                                const KEEPALIVE_INTERVAL_MS = 15_000; // 15 seconds
+                                // Return a ReadableStream that emits SSE keep-alive comments
+                                // every ~15s independently of upstream chunk arrival, so
+                                // intermediaries don't drop the connection during stalls.
+                                const encoder = new TextEncoder();
+                                let translationKeepAliveTimer;
+                                let translationCancelled = false;
+                                // Hold a reference to the upstream async iterator so
+                                // we can abort it when the client disconnects.
+                                let upstreamIterator;
+                                const translationStream = new ReadableStream({
+                                    async start(controller) {
+                                        // Emit start frames
+                                        for (const frame of serializer.start()) {
+                                            controller.enqueue(encoder.encode(frame));
+                                        }
+                                        // Keep-alive interval — fires even when upstream is stalled
+                                        translationKeepAliveTimer = setInterval(() => {
+                                            try {
+                                                controller.enqueue(encoder.encode(": keep-alive\n\n"));
+                                            }
+                                            catch {
+                                                // Controller already closed — ignore
+                                            }
+                                        }, KEEPALIVE_INTERVAL_MS);
+                                        try {
+                                            const iterable = streamResult.stream;
+                                            upstreamIterator = iterable[Symbol.asyncIterator]();
+                                            // Manually drive the async iterator so we can cancel it
+                                            while (true) {
+                                                if (translationCancelled) {
+                                                    break;
+                                                }
+                                                const { value: chunk, done } = await upstreamIterator.next();
+                                                if (done) {
+                                                    break;
+                                                }
+                                                if (translationCancelled) {
+                                                    break;
+                                                }
+                                                const text = extractText(chunk);
+                                                if (text) {
+                                                    for (const frame of serializer.pushDelta(text)) {
+                                                        controller.enqueue(encoder.encode(frame));
+                                                    }
+                                                }
+                                            }
+                                            // Emit tool_use blocks if model wants to call tools
+                                            if (!translationCancelled &&
+                                                streamResult.toolCalls?.length) {
+                                                for (const tc of streamResult.toolCalls) {
+                                                    const toolName = tc.toolName ??
+                                                        tc.name ??
+                                                        "unknown";
+                                                    const toolArgs = tc.args ??
+                                                        tc.parameters ??
+                                                        {};
+                                                    for (const frame of serializer.pushToolUse(generateToolUseId(), toolName, toolArgs)) {
+                                                        controller.enqueue(encoder.encode(frame));
+                                                    }
+                                                }
+                                            }
+                                            if (!translationCancelled) {
+                                                const reason = streamResult.finishReason ?? "end_turn";
+                                                for (const frame of serializer.finish(0, reason)) {
+                                                    controller.enqueue(encoder.encode(frame));
+                                                }
+                                            }
+                                        }
+                                        catch (streamErr) {
+                                            if (translationCancelled) {
+                                                return;
+                                            }
+                                            const errMsg = streamErr instanceof Error
+                                                ? streamErr.message
+                                                : String(streamErr);
+                                            logger.always(`[proxy] mid-stream error (translation mode): ${errMsg}`);
+                                            const errorEvent = `event: error\ndata: ${JSON.stringify({ type: "error", error: { type: "api_error", message: `Upstream stream interrupted: ${errMsg}` } })}\n\n`;
+                                            controller.enqueue(encoder.encode(errorEvent));
+                                        }
+                                        finally {
+                                            if (translationKeepAliveTimer) {
+                                                clearInterval(translationKeepAliveTimer);
+                                            }
+                                            if (!translationCancelled) {
+                                                controller.close();
+                                            }
+                                        }
+                                    },
+                                    cancel() {
+                                        translationCancelled = true;
+                                        if (translationKeepAliveTimer) {
+                                            clearInterval(translationKeepAliveTimer);
+                                            translationKeepAliveTimer = undefined;
+                                        }
+                                        // Propagate cancellation to the upstream provider stream
+                                        if (upstreamIterator?.return) {
+                                            upstreamIterator.return(undefined).catch((cancelErr) => {
+                                                logger.debug(`[proxy] upstream cancel error: ${cancelErr instanceof Error ? cancelErr.message : String(cancelErr)}`);
+                                            });
+                                        }
+                                    },
+                                });
+                                return new Response(translationStream, {
+                                    headers: {
+                                        "content-type": "text/event-stream",
+                                        "cache-control": "no-cache",
+                                        connection: "keep-alive",
+                                    },
+                                });
+                            }
+                            const streamResult = await ctx.neurolink.stream(options);
+                            let collectedText = "";
+                            for await (const chunk of streamResult.stream) {
+                                const text = extractText(chunk);
+                                if (text) {
+                                    collectedText += text;
+                                }
+                            }
+                            const internal = {
+                                content: collectedText,
+                                model: streamResult.model,
+                                finishReason: streamResult.finishReason ?? "end_turn",
+                                reasoning: undefined,
+                                usage: streamResult.usage
+                                    ? {
+                                        input: streamResult.usage.input ?? 0,
+                                        output: streamResult.usage.output ?? 0,
+                                        total: streamResult.usage.total ?? 0,
+                                    }
+                                    : undefined,
+                                toolCalls: streamResult.toolCalls,
+                            };
+                            return serializeClaudeResponse(internal, body.model);
+                        }
+                    }
+                    catch (error) {
+                        logger.error(`[claude-proxy] Generation error for ${body.model}: ${error instanceof Error ? error.message : String(error)}`);
+                        return buildClaudeError(502, `Generation failed: ${error instanceof Error ? error.message : "unknown error"}`);
+                    }
+                },
+                description: "Claude-compatible messages endpoint routed through NeuroLink",
+                tags: ["claude-proxy", "messages"],
+                streaming: { enabled: true, contentType: "text/event-stream" },
+            },
+            // =====================================================================
+            // GET /v1/models -- List available models
+            // =====================================================================
+            {
+                method: "GET",
+                path: `${basePath}/v1/models`,
+                handler: async (_ctx) => {
+                    const models = [
+                        "claude-sonnet-4-20250514",
+                        "claude-sonnet-4-5-20250929",
+                        "claude-haiku-4-5-20241022",
+                        "claude-opus-4-20250514",
+                    ];
+                    return {
+                        object: "list",
+                        data: models.map((id) => ({
+                            id,
+                            object: "model",
+                            created: 1700000000,
+                            owned_by: "anthropic",
+                        })),
+                    };
+                },
+                description: "List available Claude models",
+                tags: ["claude-proxy", "models"],
+            },
+            // =====================================================================
+            // POST /v1/messages/count_tokens -- Token counting endpoint
+            // =====================================================================
+            {
+                method: "POST",
+                path: `${basePath}/v1/messages/count_tokens`,
+                handler: async (ctx) => {
+                    const body = ctx.body;
+                    if (!body?.model || !body?.messages) {
+                        return buildClaudeError(400, "Missing required fields: model, messages");
+                    }
+                    // Simple estimation using character-to-token heuristic
+                    const text = body.messages
+                        .map((m) => typeof m.content === "string"
+                        ? m.content
+                        : JSON.stringify(m.content))
+                        .join(" ");
+                    return { input_tokens: Math.ceil(text.length / 4) };
+                },
+                description: "Count tokens for a messages request",
+                tags: ["claude-proxy", "tokens"],
+            },
+        ],
+    };
+}
+// ---------------------------------------------------------------------------
+// Helpers
+// ---------------------------------------------------------------------------
+/**
+ * Extract text content from a stream chunk (handles various chunk formats).
+ */
+function extractText(chunk) {
+    if (typeof chunk === "string") {
+        return chunk;
+    }
+    if (chunk && typeof chunk === "object") {
+        const c = chunk;
+        // NeuroLink StreamResult chunk format: { content: string }
+        if (typeof c.content === "string") {
+            return c.content;
+        }
+        // Vercel AI SDK text delta format
+        if (c.type === "text-delta" && typeof c.textDelta === "string") {
+            return c.textDelta;
+        }
+        // Direct text field
+        if (typeof c.text === "string") {
+            return c.text;
+        }
+    }
+    return null;
+}
+function getOrCreateRuntimeState(accountKey) {
+    const existing = accountRuntimeState.get(accountKey);
+    if (existing) {
+        return existing;
+    }
+    const initial = {
+        coolingUntil: undefined,
+        backoffLevel: 0,
+        consecutiveRefreshFailures: 0,
+        permanentlyDisabled: false,
+    };
+    accountRuntimeState.set(accountKey, initial);
+    return initial;
+}
+async function disableAccountUntilReauth(account, state) {
+    state.permanentlyDisabled = true;
+    state.coolingUntil = undefined;
+    state.backoffLevel = 0;
+    // Decision 7 (usage): Persist disabled state to disk so it survives restarts
+    try {
+        const { tokenStore } = await import("../../auth/tokenStore.js");
+        await tokenStore.markDisabled(account.key, "refresh_failed");
+    }
+    catch (e) {
+        logger.debug(`[proxy] failed to persist disabled state for ${account.label}: ${e instanceof Error ? e.message : String(e)}`);
+    }
+    logger.always(`[proxy] account=${account.label} disabled until re-authentication. Run: neurolink auth login anthropic --method oauth`);
+}
+function formatReauthMessage(labels) {
+    const value = Array.isArray(labels) ? labels.join(", ") : labels;
+    return `Account(s) require re-authentication: ${value}. Run: neurolink auth login anthropic --method oauth`;
+}
+function summarizeErrorMessage(message, maxLength = 180) {
+    const compact = message.replace(/\s+/g, " ").trim();
+    if (compact.length <= maxLength) {
+        return compact;
+    }
+    return `${compact.slice(0, maxLength)}...`;
+}
+async function sleep(ms) {
+    await new Promise((resolve) => setTimeout(resolve, ms));
+}
+/**
+ * Get low-level network error code from an unknown error shape.
+ */
+function getErrorCode(error) {
+    if (!error || typeof error !== "object") {
+        return undefined;
+    }
+    const directCode = error.code;
+    if (typeof directCode === "string") {
+        return directCode;
+    }
+    const cause = error.cause;
+    if (!cause || typeof cause !== "object") {
+        return undefined;
+    }
+    const causeCode = cause.code;
+    return typeof causeCode === "string" ? causeCode : undefined;
+}
+/**
+ * Determine whether a thrown fetch error is a transient connectivity issue.
+ */
+function isRetryableNetworkError(error) {
+    const code = getErrorCode(error);
+    // Check non-retryable codes FIRST — before the string-based heuristic
+    // which could false-positive on error messages containing these strings.
+    const NON_RETRYABLE_CODES = ["ENOTFOUND"];
+    if (code && NON_RETRYABLE_CODES.includes(code)) {
+        return false;
+    }
+    if (code &&
+        [
+            "ECONNREFUSED",
+            "ECONNRESET",
+            "ETIMEDOUT",
+            "EHOSTUNREACH",
+            "UND_ERR_CONNECT_TIMEOUT",
+            "UND_ERR_CONNECT",
+            "UND_ERR_SOCKET",
+            "UND_ERR_HEADERS_TIMEOUT",
+        ].includes(code)) {
+        return true;
+    }
+    const message = error instanceof Error ? error.message : String(error);
+    const normalized = message.toLowerCase();
+    // Exclude ENOTFOUND from string-based heuristic — DNS failures are permanent
+    // and rotating accounts won't help since they all hit the same host.
+    if (normalized.includes("enotfound")) {
+        return false;
+    }
+    return (normalized.includes("econnrefused") ||
+        normalized.includes("econnreset") ||
+        normalized.includes("etimedout") ||
+        normalized.includes("connection error") ||
+        normalized.includes("connect error") ||
+        normalized.includes("fetch failed") ||
+        normalized.includes("socket hang up"));
+}
+const TRANSIENT_HTTP_STATUSES = new Set([
+    408, 500, 502, 503, 504, 520, 521, 522, 523, 524, 525, 526, 529,
+]);
+/**
+ * Parse a Claude error payload when available.
+ */
+export function parseClaudeErrorBody(errBody) {
+    try {
+        const parsed = JSON.parse(errBody);
+        if (parsed &&
+            parsed.type === "error" &&
+            parsed.error &&
+            typeof parsed.error === "object") {
+            return {
+                errorType: typeof parsed.error.type === "string" ? parsed.error.type : undefined,
+                message: typeof parsed.error.message === "string"
+                    ? parsed.error.message
+                    : undefined,
+            };
+        }
+    }
+    catch {
+        // ignore parse errors; caller will use heuristics
+    }
+    return {};
+}
+/**
+ * Detect malformed request errors that should not trigger account/provider failover.
+ */
+export function isInvalidRequestError(status, errBody) {
+    if (status === 422) {
+        return true;
+    }
+    const parsed = parseClaudeErrorBody(errBody);
+    return (parsed.errorType === "invalid_request_error" ||
+        errBody.includes("invalid_request_error"));
+}
+/**
+ * Detect transient upstream failures that should trigger account/provider failover.
+ *
+ * Includes Cloudflare 52x statuses and Anthropic 400/api_error wrappers that
+ * carry transient HTML responses (e.g. 520 pages) inside `error.message`.
+ */
+export function isTransientHttpFailure(status, errBody) {
+    if (TRANSIENT_HTTP_STATUSES.has(status)) {
+        return true;
+    }
+    if (status !== 400) {
+        return false;
+    }
+    const parsed = parseClaudeErrorBody(errBody);
+    if (parsed.errorType === "overloaded_error") {
+        return true;
+    }
+    if (parsed.errorType !== "api_error") {
+        return false;
+    }
+    const normalized = (parsed.message ?? errBody).toLowerCase();
+    return (normalized.includes("<!doctype html") ||
+        normalized.includes("error code 520") ||
+        normalized.includes("web server is returning an unknown error") ||
+        normalized.includes("cloudflare") ||
+        normalized.includes("internal server error"));
+}