@juspay/neurolink 9.51.0 → 9.51.2

package/dist/core/modules/Utilities.js

@@ -206,7 +206,11 @@ export class Utilities {
         if (result && typeof result === "object" && "success" in result) {
             const mcpResult = result;
             if (mcpResult.success) {
-                return mcpResult.data;
+                // If `data` field exists, return it (standard MCP format).
+                // Otherwise fall back to the full result object so the LLM
+                // receives the actual payload instead of `undefined`, which
+                // would cause it to re-call the tool in a loop.
+                return mcpResult.data !== undefined ? mcpResult.data : result;
             }
             else {
                 // Instead of throwing, return a structured error result

package/dist/lib/core/modules/Utilities.js

@@ -206,7 +206,11 @@ export class Utilities {
         if (result && typeof result === "object" && "success" in result) {
             const mcpResult = result;
             if (mcpResult.success) {
-                return mcpResult.data;
+                // If `data` field exists, return it (standard MCP format).
+                // Otherwise fall back to the full result object so the LLM
+                // receives the actual payload instead of `undefined`, which
+                // would cause it to re-call the tool in a loop.
+                return mcpResult.data !== undefined ? mcpResult.data : result;
             }
             else {
                 // Instead of throwing, return a structured error result

package/dist/lib/providers/anthropic.js

@@ -4,7 +4,7 @@ import { stepCountIs, streamText } from "ai";
 import { existsSync, mkdirSync, readFileSync, renameSync, writeFileSync, } from "fs";
 import { homedir } from "os";
 import { join } from "path";
-import { ANTHROPIC_TOKEN_URL, CLAUDE_CLI_USER_AGENT, CLAUDE_CODE_CLIENT_ID, } from "../auth/anthropicOAuth.js";
+import { ANTHROPIC_TOKEN_URL, CLAUDE_CLI_USER_AGENT, CLAUDE_CODE_CLIENT_ID, CLAUDE_CODE_OAUTH_BETAS, } from "../auth/anthropicOAuth.js";
 import { AnthropicModels, TOKEN_EXPIRY_BUFFER_MS, } from "../constants/enums.js";
 import { BaseProvider } from "../core/baseProvider.js";
 import { DEFAULT_MAX_STEPS } from "../core/constants.js";
@@ -310,6 +310,9 @@ export class AnthropicProvider extends BaseProvider {
             anthropic = createAnthropic({
                 apiKey: apiKeyToUse,
                 headers,
+                ...(process.env.ANTHROPIC_BASE_URL && {
+                    baseURL: process.env.ANTHROPIC_BASE_URL,
+                }),
                 fetch: createProxyFetch(),
             });
             logger.debug("Anthropic Provider initialized with API key", {
@@ -354,9 +357,23 @@ export class AnthropicProvider extends BaseProvider {
      */
     getAuthHeaders() {
         const headers = {};
-        // Add beta headers if enabled
+        // When routing through proxy (ANTHROPIC_BASE_URL set), use the full
+        // OAuth beta set so the proxy forwards them upstream. Without these,
+        // Anthropic treats the request with tighter non-subscription rate limits.
+        const usingProxy = !!process.env.ANTHROPIC_BASE_URL;
         if (this.enableBetaFeatures) {
-            headers["anthropic-beta"] = ANTHROPIC_BETA_HEADERS["anthropic-beta"];
+            if (usingProxy) {
+                headers["anthropic-beta"] = [
+                    ...CLAUDE_CODE_OAUTH_BETAS,
+                    "fine-grained-tool-streaming-2025-05-14",
+                    "context-1m-2025-08-07",
+                    "interleaved-thinking-2025-05-14",
+                    "redact-thinking-2026-02-12",
+                ].join(",");
+            }
+            else {
+                headers["anthropic-beta"] = ANTHROPIC_BETA_HEADERS["anthropic-beta"];
+            }
         }
         // Add subscription-specific headers if applicable
         if (this.subscriptionTier !== "api") {

package/dist/lib/proxy/routingPolicy.js

@@ -2,7 +2,7 @@ const STREAMING_CONVERSATIONAL_TOOL_THRESHOLD = 4;
 const STRONG_TOOL_FIDELITY_THRESHOLD = 8;
 const HIGH_TOOL_COUNT_THRESHOLD = 24;
 const DEFAULT_COOLDOWN_FLOOR_MS = 1_000;
-const HIGH_TOOL_COUNT_COOLDOWN_FLOOR_MS = 120_000;
+const HIGH_TOOL_COUNT_COOLDOWN_FLOOR_MS = 10_000;
 const HIGH_FIDELITY_COOLDOWN_FLOOR_MS = 300_000;
 export function inferClaudeProxyModelTier(modelName) {
     const normalized = modelName.toLowerCase();
@@ -221,10 +221,15 @@ export function applyRateLimitCooldownScope(args) {
     const rcBackoffLevels = args.state.requestClassBackoffLevels ?? {};
     const mtBackoffLevels = args.state.modelTierBackoffLevels ?? {};
     const scopedBackoffLevel = Math.max(rcBackoffLevels[requestClassKey] ?? 0, mtBackoffLevels[modelTierKey] ?? 0);
-    const floorMs = args.profile.modelTier === "opus" || args.profile.requiresStrongToolFidelity
-        ? HIGH_FIDELITY_COOLDOWN_FLOOR_MS
-        : args.profile.isHighToolCountNonStream
-            ? HIGH_TOOL_COUNT_COOLDOWN_FLOOR_MS
+    // High-tool-count-non-stream gets its own (lower) floor so that requests
+    // recover faster once proper OAuth betas are forwarded. Check it first
+    // because every >=24-tool request also satisfies requiresStrongToolFidelity
+    // (threshold 8), which would otherwise shadow this branch.
+    const floorMs = args.profile.isHighToolCountNonStream
+        ? HIGH_TOOL_COUNT_COOLDOWN_FLOOR_MS
+        : args.profile.modelTier === "opus" ||
+            args.profile.requiresStrongToolFidelity
+            ? HIGH_FIDELITY_COOLDOWN_FLOOR_MS
             : DEFAULT_COOLDOWN_FLOOR_MS;
     const baseCooldownMs = Math.max(args.retryAfterMs ?? 0, floorMs);
     const backoffMs = Math.min(baseCooldownMs * 2 ** scopedBackoffLevel, args.capMs);

package/dist/lib/types/conversation.d.ts

@@ -385,7 +385,7 @@ export type AgenticLoopReportType = "META" | "GOOGLEADS" | "GOOGLEGA4" | "OTHER"
 /**
  * Status of an agentic loop report
  */
-export type AgenticLoopReportStatus = "INPROGRESS" | "COMPLETED";
+export type AgenticLoopReportStatus = "INPROGRESS" | "COMPLETED" | "CANCELLED" | "FAILED";
 /**
  * Metadata for an individual agentic loop report
  * A conversation session can have multiple reports tracked via this type
@@ -495,6 +495,8 @@ export type ConversationSummary = ConversationBase & {
 export type RedisStorageConfig = {
     /** Redis connection URL (e.g., 'rediss://host:6379' for TLS) */
     url?: string;
+    /** Redis username for ACL authentication (optional) */
+    username?: string;
     /** Redis host (default: 'localhost') */
     host?: string;
     /** Redis port (default: 6379) */

package/dist/lib/utils/messageBuilder.js

@@ -1209,6 +1209,155 @@ async function downloadImageFromUrl(url) {
         throw new Error(`Failed to download image from ${url}: ${error instanceof Error ? error.message : String(error)}`, { cause: error });
     }
 }
+/**
+ * Get MIME type from file extension
+ */
+function getMimeTypeFromExtension(filePath) {
+    const ext = filePath.toLowerCase().split(".").pop();
+    switch (ext) {
+        case "png":
+            return "image/png";
+        case "gif":
+            return "image/gif";
+        case "webp":
+            return "image/webp";
+        case "bmp":
+            return "image/bmp";
+        case "tiff":
+        case "tif":
+            return "image/tiff";
+        default:
+            return "image/jpeg";
+    }
+}
+/**
+ * Detect MIME type from buffer magic bytes
+ * Returns undefined if format cannot be detected
+ */
+function detectMimeTypeFromBuffer(buffer) {
+    // JPEG: FF D8 FF
+    if (buffer.length >= 3 &&
+        buffer[0] === 0xff &&
+        buffer[1] === 0xd8 &&
+        buffer[2] === 0xff) {
+        return "image/jpeg";
+    }
+    // PNG: 89 50 4E 47 0D 0A 1A 0A
+    if (buffer.length >= 8 &&
+        buffer[0] === 0x89 &&
+        buffer[1] === 0x50 &&
+        buffer[2] === 0x4e &&
+        buffer[3] === 0x47 &&
+        buffer[4] === 0x0d &&
+        buffer[5] === 0x0a &&
+        buffer[6] === 0x1a &&
+        buffer[7] === 0x0a) {
+        return "image/png";
+    }
+    // GIF: 47 49 46 38 (37|39) 61
+    if (buffer.length >= 6 &&
+        buffer[0] === 0x47 &&
+        buffer[1] === 0x49 &&
+        buffer[2] === 0x46 &&
+        buffer[3] === 0x38 &&
+        (buffer[4] === 0x37 || buffer[4] === 0x39) &&
+        buffer[5] === 0x61) {
+        return "image/gif";
+    }
+    // WebP: 52 49 46 46 ?? ?? ?? ?? 57 45 42 50
+    if (buffer.length >= 12 &&
+        buffer[0] === 0x52 &&
+        buffer[1] === 0x49 &&
+        buffer[2] === 0x46 &&
+        buffer[3] === 0x46 &&
+        buffer[8] === 0x57 &&
+        buffer[9] === 0x45 &&
+        buffer[10] === 0x42 &&
+        buffer[11] === 0x50) {
+        return "image/webp";
+    }
+    // BMP: 42 4D
+    if (buffer.length >= 2 && buffer[0] === 0x42 && buffer[1] === 0x4d) {
+        return "image/bmp";
+    }
+    // TIFF: (49 49 2A 00) or (4D 4D 00 2A)
+    if (buffer.length >= 4 &&
+        ((buffer[0] === 0x49 &&
+            buffer[1] === 0x49 &&
+            buffer[2] === 0x2a &&
+            buffer[3] === 0x00) ||
+            (buffer[0] === 0x4d &&
+                buffer[1] === 0x4d &&
+                buffer[2] === 0x00 &&
+                buffer[3] === 0x2a))) {
+        return "image/tiff";
+    }
+    return undefined;
+}
+/**
+ * Convert file path to raw base64 string.
+ * Returns raw base64 (not a data: URI) to avoid SSRF validation in AI SDK v6.
+ */
+function convertFilePathToBase64(filePath) {
+    if (!existsSync(filePath)) {
+        throw new Error(`Image file not found: ${filePath}`);
+    }
+    const buffer = readFileSync(filePath);
+    return buffer.toString("base64");
+}
+/**
+ * Process a single image input and convert to raw base64 format.
+ * IMPORTANT: Returns raw base64 (not a data: URI) to avoid SSRF validation
+ * in Vercel AI SDK v6. The SDK calls `new URL(image)` on string values;
+ * a data: URI is a valid URL, causing the SDK to "download" it and hit
+ * validateDownloadUrl which throws "URL scheme must be http or https, got data:".
+ * Passing raw base64 avoids this because `new URL(base64string)` throws and
+ * the SDK treats the string as inline base64 data instead.
+ */
+function processImageToBase64(image, index) {
+    let imageData;
+    let mimeType = "image/jpeg"; // Default mime type
+    if (typeof image === "string") {
+        if (image.startsWith("data:")) {
+            // Data URI (including downloaded URLs) - extract mime type and raw base64
+            const match = image.match(/^data:([^;]+);base64,(.+)$/);
+            if (match) {
+                mimeType = match[1];
+                imageData = match[2]; // Raw base64 only — NOT the full data: URI
+            }
+            else {
+                imageData = image;
+            }
+        }
+        else if (isInternetUrl(image)) {
+            // This should not happen as URLs are processed separately
+            throw new Error(`Unprocessed URL found in actualImages: ${image}`);
+        }
+        else {
+            // File path string - convert to raw base64
+            try {
+                imageData = convertFilePathToBase64(image);
+                mimeType = getMimeTypeFromExtension(image);
+            }
+            catch (error) {
+                MultimodalLogger.logError("FILE_PATH_CONVERSION", error, {
+                    index,
+                    filePath: image,
+                });
+                throw new Error(`Failed to convert file path to base64: ${image}. ${error}`, { cause: error });
+            }
+        }
+    }
+    else {
+        // Buffer - convert to raw base64 with proper MIME type detection
+        const detectedMimeType = detectMimeTypeFromBuffer(image);
+        if (detectedMimeType) {
+            mimeType = detectedMimeType;
+        }
+        imageData = image.toString("base64");
+    }
+    return { imageData, mimeType };
+}
 /**
  * Convert simple images format to Vercel AI SDK format with smart auto-detection
  * - URLs: Downloaded and converted to base64 for Vercel AI SDK compatibility
@@ -1270,80 +1419,8 @@ async function convertSimpleImagesToProviderFormat(text, images, provider, _mode
     // Process all images (including downloaded URLs) for Vercel AI SDK
     actualImages.forEach(({ data: image }, index) => {
         try {
-            // Vercel AI SDK v6 expects { type: 'image', image: Buffer | string, mimeType?: string }
-            // IMPORTANT: The `image` field must be raw base64 or a Buffer — NOT a data: URI string.
-            // The AI SDK v6's download pipeline calls `new URL(image)` on string values. A data: URI
-            // is a valid URL, so the SDK tries to "download" it, which hits SSRF validation
-            // (validateDownloadUrl) and throws "URL scheme must be http or https, got data:".
-            // Passing raw base64 avoids this because `new URL(base64string)` throws and the SDK
-            // treats the string as inline base64 data instead.
-            let imageData;
-            let mimeType = "image/jpeg"; // Default mime type
-            if (typeof image === "string") {
-                if (image.startsWith("data:")) {
-                    // Data URI (including downloaded URLs) - extract mime type and raw base64
-                    const match = image.match(/^data:([^;]+);base64,(.+)$/);
-                    if (match) {
-                        mimeType = match[1];
-                        imageData = match[2]; // Raw base64 only — NOT the full data: URI
-                    }
-                    else {
-                        imageData = image;
-                    }
-                }
-                else if (isInternetUrl(image)) {
-                    // This should not happen as URLs are processed separately above
-                    // But handle it gracefully just in case
-                    throw new Error(`Unprocessed URL found in actualImages: ${image}`);
-                }
-                else {
-                    // File path string - convert to base64
-                    try {
-                        if (existsSync(image)) {
-                            const buffer = readFileSync(image);
-                            const base64 = buffer.toString("base64");
-                            // Detect mime type from file extension
-                            const ext = image.toLowerCase().split(".").pop();
-                            switch (ext) {
-                                case "png":
-                                    mimeType = "image/png";
-                                    break;
-                                case "gif":
-                                    mimeType = "image/gif";
-                                    break;
-                                case "webp":
-                                    mimeType = "image/webp";
-                                    break;
-                                case "bmp":
-                                    mimeType = "image/bmp";
-                                    break;
-                                case "tiff":
-                                case "tif":
-                                    mimeType = "image/tiff";
-                                    break;
-                                default:
-                                    mimeType = "image/jpeg";
-                                    break;
-                            }
-                            imageData = base64; // Raw base64 only
-                        }
-                        else {
-                            throw new Error(`Image file not found: ${image}`);
-                        }
-                    }
-                    catch (error) {
-                        MultimodalLogger.logError("FILE_PATH_CONVERSION", error, {
-                            index,
-                            filePath: image,
-                        });
-                        throw new Error(`Failed to convert file path to base64: ${image}. ${error}`, { cause: error });
-                    }
-                }
-            }
-            else {
-                // Buffer - convert to raw base64
-                imageData = image.toString("base64");
-            }
+            // Use helper function to process image and reduce nesting depth
+            const { imageData, mimeType } = processImageToBase64(image, index);
             content.push({
                 type: "image",
                 image: imageData,

package/dist/lib/utils/redis.js

@@ -353,6 +353,7 @@ export function getNormalizedConfig(config) {
     const defaultUserSessionsPrefix = keyPrefix.replace(/conversation:?$/, "user:sessions:");
     let host = config.host || "localhost";
     let port = config.port || 6379;
+    let username = config.username || "";
     let password = config.password || "";
     let db = config.db || 0;
     let url = config.url;
@@ -361,13 +362,14 @@ export function getNormalizedConfig(config) {
             const parsedUrl = new URL(url);
             host = parsedUrl.hostname;
             port = parsedUrl.port ? parseInt(parsedUrl.port) : 6379;
+            username = parsedUrl.username || username;
             password = parsedUrl.password || password;
             db = parsedUrl.pathname
                 ? parseInt(parsedUrl.pathname.replace("/", "")) || 0
                 : 0;
         }
         catch (e) {
-            const sanitizedUrl = url.replace(/:\/\/[^:]+:[^@]+@/, "://[redacted]@");
+            const sanitizedUrl = url.replace(/:\/\/[^@]+@/, "://[redacted]@");
             logger.warn("[redisUtils] Failed to parse Redis URL, falling back to component-based connection", {
                 url: sanitizedUrl,
                 error: e instanceof Error ? e.message : String(e),
@@ -380,6 +382,7 @@ export function getNormalizedConfig(config) {
         host,
         port,
         password,
+        username,
         db,
         keyPrefix,
         userSessionsKeyPrefix: config.userSessionsKeyPrefix || defaultUserSessionsPrefix,

package/dist/providers/anthropic.js

@@ -4,7 +4,7 @@ import { stepCountIs, streamText } from "ai";
 import { existsSync, mkdirSync, readFileSync, renameSync, writeFileSync, } from "fs";
 import { homedir } from "os";
 import { join } from "path";
-import { ANTHROPIC_TOKEN_URL, CLAUDE_CLI_USER_AGENT, CLAUDE_CODE_CLIENT_ID, } from "../auth/anthropicOAuth.js";
+import { ANTHROPIC_TOKEN_URL, CLAUDE_CLI_USER_AGENT, CLAUDE_CODE_CLIENT_ID, CLAUDE_CODE_OAUTH_BETAS, } from "../auth/anthropicOAuth.js";
 import { AnthropicModels, TOKEN_EXPIRY_BUFFER_MS, } from "../constants/enums.js";
 import { BaseProvider } from "../core/baseProvider.js";
 import { DEFAULT_MAX_STEPS } from "../core/constants.js";
@@ -310,6 +310,9 @@ export class AnthropicProvider extends BaseProvider {
             anthropic = createAnthropic({
                 apiKey: apiKeyToUse,
                 headers,
+                ...(process.env.ANTHROPIC_BASE_URL && {
+                    baseURL: process.env.ANTHROPIC_BASE_URL,
+                }),
                 fetch: createProxyFetch(),
             });
             logger.debug("Anthropic Provider initialized with API key", {
@@ -354,9 +357,23 @@ export class AnthropicProvider extends BaseProvider {
      */
     getAuthHeaders() {
         const headers = {};
-        // Add beta headers if enabled
+        // When routing through proxy (ANTHROPIC_BASE_URL set), use the full
+        // OAuth beta set so the proxy forwards them upstream. Without these,
+        // Anthropic treats the request with tighter non-subscription rate limits.
+        const usingProxy = !!process.env.ANTHROPIC_BASE_URL;
         if (this.enableBetaFeatures) {
-            headers["anthropic-beta"] = ANTHROPIC_BETA_HEADERS["anthropic-beta"];
+            if (usingProxy) {
+                headers["anthropic-beta"] = [
+                    ...CLAUDE_CODE_OAUTH_BETAS,
+                    "fine-grained-tool-streaming-2025-05-14",
+                    "context-1m-2025-08-07",
+                    "interleaved-thinking-2025-05-14",
+                    "redact-thinking-2026-02-12",
+                ].join(",");
+            }
+            else {
+                headers["anthropic-beta"] = ANTHROPIC_BETA_HEADERS["anthropic-beta"];
+            }
         }
         // Add subscription-specific headers if applicable
         if (this.subscriptionTier !== "api") {

package/dist/proxy/routingPolicy.js

@@ -2,7 +2,7 @@ const STREAMING_CONVERSATIONAL_TOOL_THRESHOLD = 4;
 const STRONG_TOOL_FIDELITY_THRESHOLD = 8;
 const HIGH_TOOL_COUNT_THRESHOLD = 24;
 const DEFAULT_COOLDOWN_FLOOR_MS = 1_000;
-const HIGH_TOOL_COUNT_COOLDOWN_FLOOR_MS = 120_000;
+const HIGH_TOOL_COUNT_COOLDOWN_FLOOR_MS = 10_000;
 const HIGH_FIDELITY_COOLDOWN_FLOOR_MS = 300_000;
 export function inferClaudeProxyModelTier(modelName) {
     const normalized = modelName.toLowerCase();
@@ -221,10 +221,15 @@ export function applyRateLimitCooldownScope(args) {
     const rcBackoffLevels = args.state.requestClassBackoffLevels ?? {};
     const mtBackoffLevels = args.state.modelTierBackoffLevels ?? {};
     const scopedBackoffLevel = Math.max(rcBackoffLevels[requestClassKey] ?? 0, mtBackoffLevels[modelTierKey] ?? 0);
-    const floorMs = args.profile.modelTier === "opus" || args.profile.requiresStrongToolFidelity
-        ? HIGH_FIDELITY_COOLDOWN_FLOOR_MS
-        : args.profile.isHighToolCountNonStream
-            ? HIGH_TOOL_COUNT_COOLDOWN_FLOOR_MS
+    // High-tool-count-non-stream gets its own (lower) floor so that requests
+    // recover faster once proper OAuth betas are forwarded. Check it first
+    // because every >=24-tool request also satisfies requiresStrongToolFidelity
+    // (threshold 8), which would otherwise shadow this branch.
+    const floorMs = args.profile.isHighToolCountNonStream
+        ? HIGH_TOOL_COUNT_COOLDOWN_FLOOR_MS
+        : args.profile.modelTier === "opus" ||
+            args.profile.requiresStrongToolFidelity
+            ? HIGH_FIDELITY_COOLDOWN_FLOOR_MS
             : DEFAULT_COOLDOWN_FLOOR_MS;
     const baseCooldownMs = Math.max(args.retryAfterMs ?? 0, floorMs);
     const backoffMs = Math.min(baseCooldownMs * 2 ** scopedBackoffLevel, args.capMs);

package/dist/types/conversation.d.ts

@@ -385,7 +385,7 @@ export type AgenticLoopReportType = "META" | "GOOGLEADS" | "GOOGLEGA4" | "OTHER"
 /**
  * Status of an agentic loop report
  */
-export type AgenticLoopReportStatus = "INPROGRESS" | "COMPLETED";
+export type AgenticLoopReportStatus = "INPROGRESS" | "COMPLETED" | "CANCELLED" | "FAILED";
 /**
  * Metadata for an individual agentic loop report
  * A conversation session can have multiple reports tracked via this type
@@ -495,6 +495,8 @@ export type ConversationSummary = ConversationBase & {
 export type RedisStorageConfig = {
     /** Redis connection URL (e.g., 'rediss://host:6379' for TLS) */
     url?: string;
+    /** Redis username for ACL authentication (optional) */
+    username?: string;
     /** Redis host (default: 'localhost') */
     host?: string;
     /** Redis port (default: 6379) */