@madarco/agentbox 0.8.0 → 0.9.0

package/dist/chunk-MTVI44DW.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../packages/sandbox-vercel/src/env-loader.ts","../../../packages/sandbox-vercel/src/sbx-cli.ts","../../../packages/sandbox-vercel/src/credentials.ts","../../../packages/sandbox-vercel/src/cli-store.ts","../../../packages/sandbox-vercel/src/sdk.ts","../../../packages/sandbox-vercel/src/vercel-rest.ts"],"sourcesContent":["import { existsSync, readFileSync } from 'node:fs';\nimport { homedir } from 'node:os';\nimport { resolve } from 'node:path';\n\n/**\n * Vercel env auto-loader. The `@vercel/sandbox` SDK reads `VERCEL_OIDC_TOKEN`\n * from `process.env`; for the access-token path we read `VERCEL_TOKEN` +\n * `VERCEL_TEAM_ID` + `VERCEL_PROJECT_ID` and thread them into every SDK call as\n * explicit `Credentials`. We pull all of these in from `~/.agentbox/secrets.env`\n * (written by `agentbox vercel login`) so the SDK Just Works after a one-time\n * login — exactly the daytona/hetzner model.\n *\n * Lookup order (first wins; process.env is never overwritten):\n *   1. `process.env` (already set in the shell).\n *   2. `~/.agentbox/secrets.env` — written by `agentbox vercel login`.\n *\n * Project-level `.env` / `.env.local` are intentionally NOT consulted: those\n * files belong to the app code being developed, and a `VERCEL_*` value there\n * (e.g. a `vercel env pull` OIDC token, or the app's own deploy token) is meant\n * for in-box code, not for the host CLI to harvest and provision sandboxes with.\n * Put host credentials in `~/.agentbox/secrets.env` (or the shell env).\n *\n * Only Vercel-prefixed keys are imported; the rest of the file is left alone.\n * Idempotent and side-effect-free after the first call.\n */\nconst VERCEL_KEYS = [\n  'VERCEL_OIDC_TOKEN',\n  'VERCEL_TOKEN',\n  'VERCEL_TEAM_ID',\n  'VERCEL_PROJECT_ID',\n  // Marker for CLI-login mode (`agentbox vercel login` → `sandbox login`). The\n  // access token is NOT stored here — it's read live from the Vercel CLI store;\n  // only this marker + team/project ids are persisted.\n  'VERCEL_AUTH_SOURCE',\n] as const;\n\nlet loaded = false;\n\nexport function ensureVercelEnvLoaded(): void {\n  if (loaded) return;\n  loaded = true;\n  importVercelFromFile(resolve(homedir(), '.agentbox', 'secrets.env'), VERCEL_KEYS);\n}\n\n/**\n * Force a re-read of `~/.agentbox/secrets.env`. Used by the interactive\n * `agentbox vercel login` flow after it persists the credential trio, so the\n * same process can pick it up without a restart.\n */\nexport function reloadVercelEnv(): void {\n  loaded = false;\n  ensureVercelEnvLoaded();\n}\n\nfunction importVercelFromFile(path: string, keys: readonly string[]): void {\n  if (!existsSync(path)) return;\n  let body: string;\n  try {\n    body = readFileSync(path, 'utf8');\n  } catch {\n    return;\n  }\n  const parsed = parseEnvFile(body);\n  for (const key of keys) {\n    if (process.env[key] !== undefined) continue;\n    const value = parsed[key];\n    if (typeof value === 'string') {\n      process.env[key] = value;\n    }\n  }\n}\n\n/**\n * Minimal `.env` parser: handles `KEY=value`, `KEY=\"value\"`, `KEY='value'`,\n * `export KEY=value`, blank lines, and `#` comments. No variable\n * interpolation — predictable over feature-complete (matches the daytona\n * loader's behavior).\n */\nexport function parseEnvFile(body: string): Record<string, string> {\n  const out: Record<string, string> = {};\n  for (const rawLine of body.split(/\\r?\\n/)) {\n    const line = rawLine.trim();\n    if (line.length === 0 || line.startsWith('#')) continue;\n    const stripped = line.startsWith('export ') ? line.slice('export '.length) : line;\n    const eq = stripped.indexOf('=');\n    if (eq <= 0) continue;\n    const key = stripped.slice(0, eq).trim();\n    let value = stripped.slice(eq + 1).trim();\n    if (\n      value.length >= 2 &&\n      ((value.startsWith('\"') && value.endsWith('\"')) ||\n        (value.startsWith(\"'\") && value.endsWith(\"'\")))\n    ) {\n      value = value.slice(1, -1);\n    }\n    out[key] = value;\n  }\n  return out;\n}\n","/**\n * Driver for the official Vercel Sandbox CLI (`sandbox` / `sbx`, installed via\n * `npm i -g sandbox`). AgentBox's CLI-login auth mode uses it for two things:\n *   - `loginSbx`     — run `sandbox login` interactively so the user completes\n *     the browser OAuth and the CLI writes its own credential store.\n *   - `refreshSbxToken` — run a cheap read command (`sandbox list`) which makes\n *     the CLI lazily refresh its access token from its stored refresh token\n *     when the token is stale. Verified non-interactive: a stale token is\n *     refreshed without opening a browser.\n *\n * Mirrors the probe/install patterns in sandbox-docker/src/portless.ts: execa\n * with `reject:false` for never-throw probes, spawnSync with inherited stdio for\n * the interactive login.\n */\n\nimport { spawnSync } from 'node:child_process';\nimport { execa } from 'execa';\n\n/**\n * Binaries the Sandbox CLI installs. `sbx` is the short alias; we prefer it but\n * fall back to `sandbox`. Pinned here so a future rename is a one-line fix.\n */\nconst SBX_BINS = ['sbx', 'sandbox'] as const;\n\nexport interface SbxState {\n  /** A Sandbox CLI binary resolved on PATH and answered `--version`. */\n  installed: boolean;\n  /** The binary name that answered (`sbx` or `sandbox`), when installed. */\n  bin?: string;\n  /** Version string, when installed. */\n  version?: string;\n}\n\nlet cached: SbxState | null = null;\n\n/**\n * Probe the host for the Sandbox CLI. Cached per-process (install state can't\n * change mid-command); `resetSbxCache` clears it after an install or for tests.\n */\nexport async function detectSbx(): Promise<SbxState> {\n  if (cached !== null) return cached;\n  for (const bin of SBX_BINS) {\n    try {\n      const r = await execa(bin, ['--version'], { reject: false });\n      if (r.exitCode === 0) {\n        cached = { installed: true, bin, version: (r.stdout ?? '').trim() || undefined };\n        return cached;\n      }\n    } catch {\n      // try the next bin name\n    }\n  }\n  cached = { installed: false };\n  return cached;\n}\n\n/** Drop the per-process probe cache so the next `detectSbx()` re-probes. */\nexport function resetSbxCache(): void {\n  cached = null;\n}\n\n/** Command the user should run to install the Sandbox CLI. */\nexport function installSbxHint(): string {\n  return 'npm install -g sandbox';\n}\n\n/** Install the Sandbox CLI globally (`npm install -g sandbox`). Never throws. */\nexport async function installSbx(): Promise<boolean> {\n  try {\n    const r = await execa('npm', ['install', '-g', 'sandbox'], { reject: false });\n    return r.exitCode === 0;\n  } catch {\n    return false;\n  }\n}\n\n/**\n * Run `sandbox login` with inherited stdio so the user sees the CLI's own\n * browser-OAuth output and can interact with it. Blocking, like the interactive\n * agent launch path. Returns the exit status (0 = success).\n */\nexport function loginSbx(bin: string): number {\n  const r = spawnSync(bin, ['login'], { stdio: 'inherit' });\n  return r.status ?? 1;\n}\n\n/**\n * Trigger the CLI's lazy token refresh by running a cheap read command. The CLI\n * refreshes its access token from the stored refresh token when the token is\n * stale and leaves a still-valid token untouched, so this is safe to call\n * eagerly. Non-interactive (stdin from /dev/null); returns true on exit 0.\n */\nexport async function refreshSbxToken(bin: string): Promise<boolean> {\n  try {\n    const r = await execa(bin, ['list'], {\n      reject: false,\n      timeout: 30_000,\n      stdin: 'ignore',\n    });\n    return r.exitCode === 0;\n  } catch {\n    return false;\n  }\n}\n","import {\n  chmodSync,\n  existsSync,\n  mkdirSync,\n  readFileSync,\n  renameSync,\n  writeFileSync,\n} from 'node:fs';\nimport { homedir } from 'node:os';\nimport { dirname, resolve } from 'node:path';\nimport {\n  confirm,\n  isCancel,\n  intro,\n  log,\n  note,\n  outro,\n  password,\n  select,\n  spinner,\n  text,\n} from '@clack/prompts';\nimport { ensureVercelEnvLoaded, reloadVercelEnv } from './env-loader.js';\nimport { hasUsableCredentials } from './sdk.js';\nimport { cliStorePaths, isNearExpiry, readCliAuth, readCliCurrentTeam } from './cli-store.js';\nimport { detectSbx, installSbx, installSbxHint, loginSbx, resetSbxCache } from './sbx-cli.js';\nimport { createProject, getUser, listProjects, type VercelProject } from './vercel-rest.js';\n\nconst DASHBOARD_TOKENS_URL = 'https://vercel.com/account/settings/tokens';\n\n/**\n * Keys we manage in `~/.agentbox/secrets.env`. On reconfigure we strip prior\n * values for these before appending so the file never accumulates duplicates.\n * `VERCEL_AUTH_SOURCE` is the CLI-login marker; the access token itself is never\n * stored here in that mode (it's read live from the Vercel CLI store).\n */\nconst MANAGED_KEYS = [\n  'VERCEL_OIDC_TOKEN',\n  'VERCEL_TOKEN',\n  'VERCEL_TEAM_ID',\n  'VERCEL_PROJECT_ID',\n  'VERCEL_AUTH_SOURCE',\n] as const;\n\nexport interface EnsureVercelCredentialsOptions {\n  /** Re-prompt even when valid credentials are already present (`agentbox vercel login`). */\n  force?: boolean;\n}\n\n/**\n * First-run interactive setup for Vercel credentials. The access-token path\n * persists a `VERCEL_TOKEN` trio to `~/.agentbox/secrets.env` (the canonical\n * store, matching daytona/hetzner). OIDC is also supported, but the token must\n * be present in the shell env or in `~/.agentbox/secrets.env` — agentbox does\n * NOT harvest `.env.local` (that file belongs to the app being developed).\n *\n * No-op when credentials are already configured. Silent no-op when stdin isn't\n * a TTY so scripted/CI callers get the SDK's \"not configured\" error instead of\n * a hung prompt.\n */\nexport async function ensureVercelCredentials(\n  opts: EnsureVercelCredentialsOptions = {},\n): Promise<void> {\n  ensureVercelEnvLoaded();\n\n  if (!opts.force && hasUsableCredentials()) return;\n  if (!process.stdin.isTTY) return;\n\n  intro('Vercel setup');\n  note(\n    `AgentBox needs Vercel credentials to provision sandboxes.\\n` +\n      `Sign in with Vercel (recommended): drives the Vercel \\`sandbox\\` CLI through a browser login, then reads the token from the CLI's own store and keeps it fresh — no token to paste.\\n` +\n      `Access token (best for CI / headless): personal access token + team id + project id, saved to \\`~/.agentbox/secrets.env\\`.\\n` +\n      `OIDC (short interactive work): export VERCEL_OIDC_TOKEN in your shell or add it to \\`~/.agentbox/secrets.env\\` (dev token expires ~12h, no headless refresh).`,\n    'Credentials required',\n  );\n\n  const mode = await select({\n    message: 'How do you want to authenticate?',\n    options: [\n      { value: 'cli', label: 'Sign in with Vercel (browser) — recommended for interactive use' },\n      { value: 'token', label: 'Access token (VERCEL_TOKEN + team + project) — best for CI / headless' },\n      { value: 'oidc', label: 'OIDC token (VERCEL_OIDC_TOKEN in env / secrets.env) — short interactive work' },\n    ],\n    initialValue: 'cli',\n  });\n  if (isCancel(mode)) {\n    log.warn('Vercel setup cancelled — re-run `agentbox vercel login` when ready.');\n    return;\n  }\n\n  if (mode === 'cli') {\n    await runCliLogin();\n    return;\n  }\n\n  if (mode === 'oidc') {\n    note(\n      `Get an OIDC token with \\`vercel link\\` then \\`vercel env pull\\`, then make it visible to AgentBox by either:\\n` +\n        `  export VERCEL_OIDC_TOKEN=<token>   # in this shell\\n` +\n        `  echo \"VERCEL_OIDC_TOKEN=<token>\" >> ~/.agentbox/secrets.env\\n` +\n        `Re-do every ~12h; the dev token expires. AgentBox does not harvest .env.local.`,\n      'OIDC setup',\n    );\n    // Re-read in case the user already added the token to secrets.env.\n    reloadVercelEnv();\n    if (process.env.VERCEL_OIDC_TOKEN) {\n      log.success('Found VERCEL_OIDC_TOKEN — Vercel is configured.');\n      await ensureSbxInstalled();\n      outro('Setup complete.');\n    } else {\n      log.warn('No VERCEL_OIDC_TOKEN found yet — set it as above, then re-run `agentbox vercel login`.');\n    }\n    return;\n  }\n\n  const creds = await promptForTokenTrio();\n  if (creds === null) return;\n  persistCredentials(creds);\n  log.success(`Vercel credentials saved to ${secretsPath()}`);\n  await ensureSbxInstalled();\n  outro('Setup complete.');\n}\n\ninterface TokenTrio {\n  token: string;\n  teamId: string;\n  projectId: string;\n}\n\nasync function promptForTokenTrio(): Promise<TokenTrio | null> {\n  const openIt = await confirm({\n    message: `Open ${DASHBOARD_TOKENS_URL} to create a token?`,\n    initialValue: true,\n  });\n  if (isCancel(openIt)) return null;\n  if (openIt) openDashboard();\n\n  const token = await password({\n    message: 'Paste your Vercel access token',\n    validate: (v) => (v && v.trim().length > 0 ? undefined : 'Cannot be empty'),\n  });\n  if (isCancel(token)) {\n    log.warn('Vercel setup cancelled.');\n    return null;\n  }\n  const teamId = await text({\n    message: 'Team ID (team settings → General)',\n    placeholder: 'team_...',\n    validate: (v) => (v && v.trim().length > 0 ? undefined : 'Cannot be empty'),\n  });\n  if (isCancel(teamId)) {\n    log.warn('Vercel setup cancelled.');\n    return null;\n  }\n  const projectId = await text({\n    message: 'Project ID (project settings → General)',\n    placeholder: 'prj_...',\n    validate: (v) => (v && v.trim().length > 0 ? undefined : 'Cannot be empty'),\n  });\n  if (isCancel(projectId)) {\n    log.warn('Vercel setup cancelled.');\n    return null;\n  }\n  return { token: token.trim(), teamId: teamId.trim(), projectId: projectId.trim() };\n}\n\nfunction persistCredentials(creds: TokenTrio): void {\n  writeManaged({\n    VERCEL_TOKEN: creds.token,\n    VERCEL_TEAM_ID: creds.teamId,\n    VERCEL_PROJECT_ID: creds.projectId,\n  });\n}\n\n/**\n * Persist the CLI-login marker + cached stable ids. The access token is\n * deliberately omitted — it's read live from the Vercel CLI store on each call\n * and refreshed there, so the only thing we cache is the team/project scope.\n */\nfunction persistCliCredentials(ids: { teamId: string; projectId: string }): void {\n  writeManaged({\n    VERCEL_AUTH_SOURCE: 'cli',\n    VERCEL_TEAM_ID: ids.teamId,\n    VERCEL_PROJECT_ID: ids.projectId,\n  });\n}\n\n/**\n * Atomically rewrite the managed Vercel keys in `~/.agentbox/secrets.env`:\n * strip every prior value for a `MANAGED_KEYS` entry, then append exactly the\n * keys in `record` (mode 0600, temp-file + rename). Also mirrors the record\n * into `process.env` (and clears the other managed keys there) so the current\n * run uses the new values immediately.\n */\nfunction writeManaged(record: Record<string, string>): void {\n  for (const k of MANAGED_KEYS) delete process.env[k];\n  for (const [k, v] of Object.entries(record)) process.env[k] = v;\n\n  const path = secretsPath();\n  mkdirSync(dirname(path), { recursive: true });\n\n  let existing = '';\n  if (existsSync(path)) {\n    try {\n      existing = readFileSync(path, 'utf8');\n    } catch {\n      existing = '';\n    }\n  }\n  const kept = existing\n    .split(/\\r?\\n/)\n    .filter((line) => {\n      const stripped = line.startsWith('export ') ? line.slice('export '.length) : line;\n      const eq = stripped.indexOf('=');\n      if (eq <= 0) return true;\n      const key = stripped.slice(0, eq).trim();\n      return !(MANAGED_KEYS as readonly string[]).includes(key);\n    })\n    .join('\\n')\n    .replace(/\\s+$/u, '');\n\n  const lines = Object.entries(record).map(([k, v]) => `${k}=${v}`);\n  const body = (kept ? `${kept}\\n` : '') + lines.join('\\n') + '\\n';\n\n  const tmp = `${path}.tmp`;\n  writeFileSync(tmp, body, { mode: 0o600 });\n  try {\n    chmodSync(tmp, 0o600);\n  } catch {\n    // chmod best-effort; writeFileSync mode already covers most filesystems.\n  }\n  renameSync(tmp, path);\n  try {\n    chmodSync(path, 0o600);\n  } catch {\n    // ignore — already attempted above\n  }\n}\n\n/**\n * The full CLI-login flow: make sure the Vercel `sandbox` CLI is installed (offer\n * to install it), run its browser OAuth, harvest the team id from the CLI store,\n * let the user pick a project to scope sandboxes to, and persist the marker +\n * ids. The access token is never stored — `resolveCredentials` reads it live.\n */\n/**\n * Make sure the Vercel `sandbox` CLI is on PATH, offering to install it. Every\n * login mode ensures it because interactive attach (`agentbox shell|claude|\n * codex|opencode` on a vercel box) drives `sbx exec` for a real PTY. Returns the\n * resolved bin, or null if absent / declined / install failed (callers warn).\n */\nasync function ensureSbxInstalled(): Promise<{ bin: string } | null> {\n  let det = await detectSbx();\n  if (!det.installed) {\n    const doInstall = await confirm({\n      message: `The Vercel sandbox CLI (needed for interactive attach) isn't installed. Install it now? (${installSbxHint()})`,\n      initialValue: true,\n    });\n    if (isCancel(doInstall) || !doInstall) {\n      log.warn(\n        `Install it with \\`${installSbxHint()}\\` to use \\`agentbox shell|claude|codex|opencode\\` on Vercel boxes.`,\n      );\n      return null;\n    }\n    const sp = spinner();\n    sp.start('Installing the Vercel sandbox CLI…');\n    const ok = await installSbx();\n    resetSbxCache();\n    det = await detectSbx();\n    if (!ok || !det.installed || !det.bin) {\n      sp.stop('Install failed.');\n      log.warn(`Could not install the sandbox CLI — run \\`${installSbxHint()}\\` manually.`);\n      return null;\n    }\n    sp.stop(`Installed sandbox CLI${det.version ? ` ${det.version}` : ''}.`);\n  }\n  return det.bin ? { bin: det.bin } : null;\n}\n\nasync function runCliLogin(): Promise<void> {\n  const det = await ensureSbxInstalled();\n  if (!det) {\n    log.warn('The Vercel sandbox CLI is required to sign in this way — install it, then re-run `agentbox vercel login`.');\n    return;\n  }\n\n  note('A browser window will open to sign in to Vercel.', 'Vercel sign-in');\n  const status = loginSbx(det.bin);\n  if (status !== 0) {\n    log.warn('Vercel sign-in did not complete — re-run `agentbox vercel login` to try again.');\n    return;\n  }\n\n  const harvested = harvestCliCredentials();\n  if (!harvested) {\n    log.warn('Sign-in finished but no credentials were found in the Vercel CLI store. Try again.');\n    return;\n  }\n\n  // Validate the token early so a bad/expired session fails here, not mid-op.\n  try {\n    await getUser(harvested.token);\n  } catch (err) {\n    log.warn(\n      `The Vercel session looks invalid (${err instanceof Error ? err.message : String(err)}). ` +\n        'Re-run `agentbox vercel login`.',\n    );\n    return;\n  }\n\n  const projectId = await resolveProjectId(harvested.token, harvested.teamId);\n  if (projectId === null) {\n    log.warn('No project selected — re-run `agentbox vercel login` to finish setup.');\n    return;\n  }\n\n  persistCliCredentials({ teamId: harvested.teamId, projectId });\n  reloadVercelEnv();\n  log.success(`Signed in with Vercel — credentials managed by the sandbox CLI (saved scope to ${secretsPath()}).`);\n  outro('Setup complete.');\n}\n\n/**\n * Read the live token + team id from the Vercel CLI store. teamId prefers an\n * already-cached `VERCEL_TEAM_ID` (e.g. from a prior login) and falls back to\n * the CLI's `currentTeam`. Null when the CLI isn't logged in.\n */\nfunction harvestCliCredentials(): { token: string; teamId: string } | null {\n  const auth = readCliAuth();\n  if (!auth) return null;\n  const teamId = process.env.VERCEL_TEAM_ID ?? readCliCurrentTeam();\n  if (!teamId) return null;\n  return { token: auth.token, teamId };\n}\n\n/**\n * Pick the Vercel project sandboxes run under. Lists the team's projects in a\n * clack select (pre-selecting an existing `agentbox` / sandbox-default project),\n * plus a \"create a new project\" entry. Returns the project id, or null if the\n * user cancelled. Non-interactive callers reuse/create an `agentbox` project.\n */\nasync function resolveProjectId(token: string, teamId: string): Promise<string | null> {\n  let projects: VercelProject[] = [];\n  const sp = spinner();\n  sp.start('Loading your Vercel projects…');\n  try {\n    projects = await listProjects(token, teamId);\n    sp.stop(`Found ${projects.length} project${projects.length === 1 ? '' : 's'}.`);\n  } catch (err) {\n    sp.stop('Could not list projects.');\n    log.warn(`Failed to list Vercel projects: ${err instanceof Error ? err.message : String(err)}`);\n    return null;\n  }\n\n  const CREATE = '__create__';\n  const preferred =\n    projects.find((p) => p.name === 'agentbox') ??\n    projects.find((p) => p.name === 'vercel-sandbox-default-project');\n  const choice = await select({\n    message: 'Which Vercel project should sandboxes run under?',\n    options: [\n      ...projects.map((p) => ({ value: p.id, label: p.name })),\n      { value: CREATE, label: 'Create a new project…' },\n    ],\n    initialValue: preferred ? preferred.id : CREATE,\n  });\n  if (isCancel(choice)) return null;\n\n  if (choice !== CREATE) return choice;\n\n  const name = await text({\n    message: 'New project name',\n    placeholder: 'agentbox',\n    defaultValue: 'agentbox',\n    validate: (v) => (v && v.trim().length > 0 ? undefined : 'Cannot be empty'),\n  });\n  if (isCancel(name)) return null;\n  try {\n    const created = await createProject(token, teamId, name.trim() || 'agentbox');\n    return created.id;\n  } catch (err) {\n    log.warn(`Could not create the project: ${err instanceof Error ? err.message : String(err)}`);\n    return null;\n  }\n}\n\nfunction openDashboard(): void {\n  // Lazy import keeps node:child_process out of the module's load cost.\n  import('node:child_process')\n    .then(({ spawnSync }) => {\n      const r = spawnSync('open', [DASHBOARD_TOKENS_URL], { stdio: 'ignore' });\n      if (r.status !== 0) {\n        log.warn(`Could not auto-open the browser — visit ${DASHBOARD_TOKENS_URL} manually.`);\n      }\n    })\n    .catch(() => {\n      log.warn(`Could not auto-open the browser — visit ${DASHBOARD_TOKENS_URL} manually.`);\n    });\n}\n\nexport function secretsPath(): string {\n  return resolve(homedir(), '.agentbox', 'secrets.env');\n}\n\nexport interface VercelCredStatus {\n  /** Which auth mode is configured. */\n  auth: 'oidc' | 'cli' | 'token' | 'none';\n  /** Legacy alias kept for callers that branch on OIDC. */\n  oidc: boolean;\n  token?: string;\n  teamId?: string;\n  projectId?: string;\n  source: 'env' | 'secrets.env' | 'cli-store' | 'none';\n  /**\n   * CLI mode only: details about the live Vercel CLI session. Whether the\n   * `sandbox` CLI is *installed* needs an async probe (`detectSbx`) and is not\n   * reported here — the status printer probes it separately.\n   */\n  cli?: {\n    /** A logged-in session was found in the CLI store. */\n    loggedIn: boolean;\n    /** Unix seconds the live access token expires at, when known. */\n    expiresAt?: number;\n    /** True when the token is at/near expiry (a refresh would fire). */\n    nearExpiry?: boolean;\n    /** Path to the CLI's `auth.json`. */\n    authPath: string;\n  };\n}\n\nexport function readVercelCredStatus(): VercelCredStatus {\n  const shellHad = !!process.env.VERCEL_OIDC_TOKEN || !!process.env.VERCEL_TOKEN;\n  ensureVercelEnvLoaded();\n  const oidc = !!process.env.VERCEL_OIDC_TOKEN;\n  const teamId = process.env.VERCEL_TEAM_ID;\n  const projectId = process.env.VERCEL_PROJECT_ID;\n\n  if (oidc) {\n    return { auth: 'oidc', oidc: true, teamId, projectId, source: shellHad ? 'env' : 'secrets.env' };\n  }\n\n  if (process.env.VERCEL_AUTH_SOURCE === 'cli') {\n    const auth = readCliAuth();\n    return {\n      auth: 'cli',\n      oidc: false,\n      token: auth?.token,\n      teamId,\n      projectId,\n      source: 'cli-store',\n      cli: {\n        loggedIn: !!auth,\n        expiresAt: auth?.expiresAt,\n        nearExpiry: auth ? isNearExpiry(auth) : undefined,\n        authPath: cliStorePaths().authPath,\n      },\n    };\n  }\n\n  const token = process.env.VERCEL_TOKEN;\n  if (!token) return { auth: 'none', oidc: false, source: 'none' };\n  return {\n    auth: 'token',\n    oidc: false,\n    token,\n    teamId,\n    projectId,\n    source: shellHad ? 'env' : 'secrets.env',\n  };\n}\n\nexport function maskKey(value: string): string {\n  if (value.length <= 8) return '*'.repeat(value.length);\n  return `${value.slice(0, 4)}…${'*'.repeat(8)}${value.slice(-4)}`;\n}\n","/**\n * Reader for the Vercel CLI's own credential store — written by `sandbox login`\n * / `vercel login` (the `sandbox`/`sbx` CLI and `vercel` CLI share one store).\n *\n * AgentBox's \"CLI-login\" auth mode (see credentials.ts) drives that CLI for the\n * browser OAuth, then reads the resulting OAuth access token live from here on\n * every SDK call rather than copying it into `secrets.env`: the token is a\n * short-lived, opaque `vca_…` access token that the CLI refreshes lazily from\n * its stored refresh token, so the CLI store is the single self-refreshing\n * source of truth. We only cache the stable bits (team/project id + a marker)\n * in `secrets.env`.\n *\n * Pure FS + path logic — no clack, no execa — so it stays trivially testable.\n */\n\nimport { existsSync, readFileSync } from 'node:fs';\nimport { homedir } from 'node:os';\nimport { join } from 'node:path';\n\n/** The shape of the CLI's `auth.json` (only the fields we consume). */\nexport interface VercelCliAuth {\n  /** Opaque OAuth access token (`vca_…`). NOT a JWT — expiry is `expiresAt`. */\n  token: string;\n  /** Unix seconds. Absent on some CLI versions → treated as near-expiry. */\n  expiresAt?: number;\n  /** Present but unused by us; the CLI uses it to self-refresh `token`. */\n  refreshToken?: string;\n}\n\n/**\n * Resolve the `com.vercel.cli` data directory the way the CLI itself does\n * (xdg-app-paths-style), per platform:\n *   - macOS:   ~/Library/Application Support/com.vercel.cli\n *   - Windows: %APPDATA%\\com.vercel.cli\n *   - else:    $XDG_DATA_HOME/com.vercel.cli  (default ~/.local/share/...)\n *\n * `AGENTBOX_VERCEL_CLI_DIR` overrides outright — for tests and the rare install\n * that relocates the store.\n */\nexport function vercelCliDir(): string {\n  const override = process.env.AGENTBOX_VERCEL_CLI_DIR;\n  if (override && override.trim().length > 0) return override.trim();\n\n  const name = 'com.vercel.cli';\n  if (process.platform === 'darwin') {\n    return join(homedir(), 'Library', 'Application Support', name);\n  }\n  if (process.platform === 'win32') {\n    const appData = process.env.APPDATA;\n    if (appData && appData.trim().length > 0) return join(appData, name);\n    return join(homedir(), 'AppData', 'Roaming', name);\n  }\n  const xdg = process.env.XDG_DATA_HOME;\n  const base = xdg && xdg.trim().length > 0 ? xdg.trim() : join(homedir(), '.local', 'share');\n  return join(base, name);\n}\n\n/** Absolute paths to the CLI store files, for status/diagnostics. */\nexport function cliStorePaths(): { authPath: string; configPath: string } {\n  const dir = vercelCliDir();\n  return { authPath: join(dir, 'auth.json'), configPath: join(dir, 'config.json') };\n}\n\nfunction readJson(path: string): unknown {\n  if (!existsSync(path)) return null;\n  try {\n    return JSON.parse(readFileSync(path, 'utf8'));\n  } catch {\n    return null;\n  }\n}\n\n/**\n * Read the live access token from the CLI store. Returns null when the store is\n * missing / unparseable / has no token (CLI never logged in, or logged out) so\n * callers can surface a clear \"run `agentbox vercel login`\" error.\n */\nexport function readCliAuth(): VercelCliAuth | null {\n  const raw = readJson(cliStorePaths().authPath) as Record<string, unknown> | null;\n  if (!raw || typeof raw.token !== 'string' || raw.token.length === 0) return null;\n  return {\n    token: raw.token,\n    expiresAt: typeof raw.expiresAt === 'number' ? raw.expiresAt : undefined,\n    refreshToken: typeof raw.refreshToken === 'string' ? raw.refreshToken : undefined,\n  };\n}\n\n/** Read the CLI's currently-selected team (`config.json` `currentTeam`). */\nexport function readCliCurrentTeam(): string | null {\n  const raw = readJson(cliStorePaths().configPath) as Record<string, unknown> | null;\n  return raw && typeof raw.currentTeam === 'string' && raw.currentTeam.length > 0\n    ? raw.currentTeam\n    : null;\n}\n\n/**\n * Whether the access token is at/near expiry and should be refreshed before\n * use. A missing `expiresAt` is treated as near-expiry so we always probe a\n * refresh rather than ship a token of unknown age. `skewSec` is the safety\n * window: refresh if the token expires within that many seconds.\n */\nexport function isNearExpiry(auth: VercelCliAuth, skewSec = 120): boolean {\n  if (auth.expiresAt === undefined) return true;\n  return auth.expiresAt * 1000 < Date.now() + skewSec * 1000;\n}\n","/**\n * Thin loader around `@vercel/sandbox`. Resolves the auth credentials once and\n * threads them into every SDK call.\n *\n * Three auth modes (in precedence order):\n *   - OIDC: `VERCEL_OIDC_TOKEN` in env → decode the JWT for owner/project and\n *     pass `{ token, teamId, projectId }` explicitly.\n *   - CLI-login: `VERCEL_AUTH_SOURCE=cli` → read the live OAuth access token\n *     from the Vercel CLI's own store (`auth.json`) and the cached team/project\n *     ids from `secrets.env`. The token is never copied to `secrets.env`; the\n *     CLI store is the self-refreshing source of truth. `ensureFreshCredentials`\n *     refreshes it (via the `sbx` CLI) before use when it's near expiry.\n *   - Access token: `VERCEL_TOKEN` + `VERCEL_TEAM_ID` + `VERCEL_PROJECT_ID` →\n *     passed explicitly as `{ token, teamId, projectId }` on each call, since\n *     the SDK does NOT read those from env automatically.\n */\n\nimport { ensureVercelEnvLoaded } from './env-loader.js';\nimport { isNearExpiry, readCliAuth, readCliCurrentTeam } from './cli-store.js';\nimport { detectSbx, refreshSbxToken } from './sbx-cli.js';\n\nexport interface VercelCredentials {\n  token: string;\n  teamId: string;\n  projectId: string;\n}\n\n/**\n * Resolve the credentials to thread into SDK calls. Throws when nothing is\n * configured (or an OIDC token has expired) so callers get a clear, actionable\n * error instead of an opaque SDK auth failure.\n *\n * For OIDC we do NOT return `{}` and let the SDK read the env var: the SDK's\n * env-OIDC path (`@vercel/oidc`) tries to *refresh* the token via the Vercel\n * CLI's `.vercel/project.json` + cached auth, which an agentbox box doesn't\n * have, so it fails with \"Could not get credentials from OIDC context\". Instead\n * we decode the OIDC JWT — which embeds `owner_id` (teamId) and `project_id` —\n * and pass `{ token, teamId, projectId }` explicitly, which uses the SDK's\n * direct-credentials path (the OIDC token is itself a valid API bearer).\n */\nexport function resolveCredentials(): VercelCredentials {\n  ensureVercelEnvLoaded();\n  const oidc = process.env.VERCEL_OIDC_TOKEN;\n  if (oidc) {\n    const claims = decodeOidcClaims(oidc);\n    if (!claims) {\n      throw new Error(\n        'VERCEL_OIDC_TOKEN is set but could not be decoded (not a valid Vercel OIDC JWT). ' +\n          'Re-run `vercel env pull`, or use the VERCEL_TOKEN + VERCEL_TEAM_ID + VERCEL_PROJECT_ID trio.',\n      );\n    }\n    if (claims.exp !== undefined && claims.exp * 1000 < Date.now()) {\n      throw new Error(\n        'VERCEL_OIDC_TOKEN has expired (Vercel dev OIDC tokens last ~12h). ' +\n          'Re-run `vercel env pull` to refresh it, then retry.',\n      );\n    }\n    return { token: oidc, teamId: claims.teamId, projectId: claims.projectId };\n  }\n  if (process.env.VERCEL_AUTH_SOURCE === 'cli') {\n    const auth = readCliAuth();\n    if (!auth) {\n      throw new Error(\n        'Vercel CLI session not found — run `agentbox vercel login` (or `sbx login`) to sign in again.',\n      );\n    }\n    const teamId = process.env.VERCEL_TEAM_ID ?? readCliCurrentTeam() ?? undefined;\n    const projectId = process.env.VERCEL_PROJECT_ID;\n    if (!teamId || !projectId) {\n      throw new Error(\n        'Vercel CLI auth is missing the team/project id — re-run `agentbox vercel login`.',\n      );\n    }\n    // Live token straight from the CLI store; nothing cached on disk.\n    return { token: auth.token, teamId, projectId };\n  }\n  const token = process.env.VERCEL_TOKEN;\n  const teamId = process.env.VERCEL_TEAM_ID;\n  const projectId = process.env.VERCEL_PROJECT_ID;\n  if (token && teamId && projectId) return { token, teamId, projectId };\n  throw new Error(\n    'Vercel credentials not configured.\\n' +\n      'Either run `vercel link && vercel env pull` to get a VERCEL_OIDC_TOKEN, ' +\n      'or set VERCEL_TOKEN + VERCEL_TEAM_ID + VERCEL_PROJECT_ID ' +\n      '(see `agentbox vercel login`).',\n  );\n}\n\ninterface OidcClaims {\n  teamId: string;\n  projectId: string;\n  exp?: number;\n}\n\n/** Decode the `owner_id`/`project_id`/`exp` claims from a Vercel OIDC JWT. */\nfunction decodeOidcClaims(token: string): OidcClaims | null {\n  const parts = token.split('.');\n  if (parts.length < 2 || !parts[1]) return null;\n  try {\n    const payload = JSON.parse(Buffer.from(parts[1], 'base64url').toString('utf8')) as {\n      owner_id?: unknown;\n      project_id?: unknown;\n      exp?: unknown;\n    };\n    if (typeof payload.owner_id !== 'string' || typeof payload.project_id !== 'string') return null;\n    return {\n      teamId: payload.owner_id,\n      projectId: payload.project_id,\n      exp: typeof payload.exp === 'number' ? payload.exp : undefined,\n    };\n  } catch {\n    return null;\n  }\n}\n\n/** True when any auth mode is configured. Used by the credential gate. */\nexport function hasUsableCredentials(): boolean {\n  ensureVercelEnvLoaded();\n  if (process.env.VERCEL_OIDC_TOKEN) return true;\n  if (\n    process.env.VERCEL_AUTH_SOURCE === 'cli' &&\n    process.env.VERCEL_TEAM_ID &&\n    process.env.VERCEL_PROJECT_ID &&\n    readCliAuth()\n  ) {\n    return true;\n  }\n  return Boolean(\n    process.env.VERCEL_TOKEN && process.env.VERCEL_TEAM_ID && process.env.VERCEL_PROJECT_ID,\n  );\n}\n\n/**\n * Refresh the CLI-login access token before use when it's near expiry. No-op\n * for the OIDC and access-token modes (nothing to refresh). For CLI mode: if the\n * live token in the CLI store is within the safety window, run a cheap `sbx`\n * read command, which makes the CLI rotate its own token from the stored refresh\n * token, then re-read `secrets.env`. Throws an actionable error when the CLI is\n * gone or the refresh fails (e.g. the refresh token itself expired).\n *\n * Call this once at the top of each backend operation, BEFORE the (sync)\n * `resolveCredentials()` reads the token. An in-process single-flight collapses\n * concurrent ops onto one refresh; cross-process races are harmless (the CLI\n * writes its store atomically and a fresh-token refresh is a no-op).\n */\nlet inflightRefresh: Promise<void> | null = null;\n\nexport function ensureFreshCredentials(): Promise<void> {\n  ensureVercelEnvLoaded();\n  if (process.env.VERCEL_AUTH_SOURCE !== 'cli') return Promise.resolve();\n  if (inflightRefresh) return inflightRefresh;\n  inflightRefresh = refreshCliToken().finally(() => {\n    inflightRefresh = null;\n  });\n  return inflightRefresh;\n}\n\nasync function refreshCliToken(): Promise<void> {\n  const auth = readCliAuth();\n  if (!auth) return; // resolveCredentials() will throw the clear \"logged out\" error\n  if (!isNearExpiry(auth)) return; // still valid — no work\n\n  const det = await detectSbx();\n  if (!det.installed || !det.bin) {\n    throw new Error(\n      'Vercel access token is near expiry and the `sandbox` CLI is no longer installed — ' +\n        'reinstall it (`npm install -g sandbox`) or run `agentbox vercel login`.',\n    );\n  }\n  const ok = await refreshSbxToken(det.bin);\n  if (!ok) {\n    throw new Error(\n      'Vercel token refresh failed — run `agentbox vercel login` (the refresh token may have expired).',\n    );\n  }\n  // The token lives in the CLI store, not secrets.env — refreshSbxToken rotated\n  // auth.json in place, so the next readCliAuth() returns the fresh token.\n  const fresh = readCliAuth();\n  if (!fresh || isNearExpiry(fresh, 0)) {\n    throw new Error(\n      'Vercel token is still stale after a refresh attempt — run `agentbox vercel login`.',\n    );\n  }\n}\n\n// Re-export the SDK surface we use so the rest of the package imports from one\n// place (and tests can mock `./sdk.js` instead of the package).\nexport { Sandbox, Snapshot } from '@vercel/sandbox';\nexport type { Sandbox as SandboxType } from '@vercel/sandbox';\n","/**\n * Minimal Vercel REST helpers used by the CLI-login auth flow. The Sandbox SDK\n * requires a projectId on every call, but the OAuth access token harvested from\n * the CLI is team-scoped with no project — so after login we list the team's\n * projects (and optionally create one) to resolve a project to scope sandboxes\n * to. Plain `fetch`; no SDK. Each call takes the harvested `(token, teamId)`.\n */\n\nconst API = 'https://api.vercel.com';\n\nexport interface VercelProject {\n  id: string;\n  name: string;\n}\n\nclass VercelApiError extends Error {\n  constructor(\n    readonly status: number,\n    message: string,\n  ) {\n    super(message);\n    this.name = 'VercelApiError';\n  }\n}\n\nasync function api(\n  token: string,\n  path: string,\n  init?: { method?: string; body?: unknown },\n): Promise<unknown> {\n  const res = await fetch(`${API}${path}`, {\n    method: init?.method ?? 'GET',\n    headers: {\n      Authorization: `Bearer ${token}`,\n      ...(init?.body ? { 'Content-Type': 'application/json' } : {}),\n    },\n    body: init?.body ? JSON.stringify(init.body) : undefined,\n  });\n  const text = await res.text();\n  let json: unknown = null;\n  try {\n    json = text ? JSON.parse(text) : null;\n  } catch {\n    json = null;\n  }\n  if (!res.ok) {\n    const detail =\n      (json as { error?: { message?: string } } | null)?.error?.message ??\n      text ??\n      res.statusText;\n    throw new VercelApiError(res.status, `Vercel API ${res.status}: ${detail}`);\n  }\n  return json;\n}\n\n/** Validate the token and return the authenticated user (probe / status). */\nexport async function getUser(token: string): Promise<{ id: string; username?: string }> {\n  const json = (await api(token, '/v2/user')) as {\n    user?: { id: string; username?: string };\n  };\n  const user = json.user;\n  if (!user?.id) throw new Error('Vercel /v2/user returned no user');\n  return user;\n}\n\n/** List the team's projects (id + name). Paginates up to `limit` (default 100). */\nexport async function listProjects(\n  token: string,\n  teamId: string,\n  limit = 100,\n): Promise<VercelProject[]> {\n  const json = (await api(\n    token,\n    `/v9/projects?teamId=${encodeURIComponent(teamId)}&limit=${limit}`,\n  )) as { projects?: Array<{ id: string; name: string }> };\n  return (json.projects ?? []).map((p) => ({ id: p.id, name: p.name }));\n}\n\n/**\n * Create a project under the team. On a 409 (name already taken) re-list and\n * return the existing project of that name, so the caller treats create as\n * idempotent.\n */\nexport async function createProject(\n  token: string,\n  teamId: string,\n  name: string,\n): Promise<VercelProject> {\n  try {\n    const json = (await api(token, `/v9/projects?teamId=${encodeURIComponent(teamId)}`, {\n      method: 'POST',\n      body: { name },\n    })) as { id: string; name: string };\n    return { id: json.id, name: json.name };\n  } catch (err) {\n    if (err instanceof VercelApiError && err.status === 409) {\n      const existing = (await listProjects(token, teamId)).find((p) => p.name === name);\n      if (existing) return existing;\n    }\n    throw err;\n  }\n}\n"],"mappings":";;;AAAA,SAAS,YAAY,oBAAoB;AACzC,SAAS,eAAe;AACxB,SAAS,eAAe;ACaxB,SAAS,iBAAiB;AAC1B,SAAS,aAAa;AChBtB;EACE;EACA,cAAAA;EACA;EACA,gBAAAC;EACA;EACA;OACK;AACP,SAAS,WAAAC,gBAAe;AACxB,SAAS,SAAS,WAAAC,gBAAe;AACjC;EACE;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;OACK;ACNP,SAAS,cAAAH,aAAY,gBAAAC,qBAAoB;AACzC,SAAS,WAAAC,gBAAe;AACxB,SAAS,YAAY;AC0KrB,SAAS,SAAS,gBAAgB;AJlKlC,IAAM,cAAc;EAClB;EACA;EACA;EACA;;;;EAIA;AACF;AAEA,IAAI,SAAS;AAEN,SAAS,wBAA8B;AAC5C,MAAI,OAAQ;AACZ,WAAS;AACT,uBAAqB,QAAQ,QAAQ,GAAG,aAAa,aAAa,GAAG,WAAW;AAClF;AAOO,SAAS,kBAAwB;AACtC,WAAS;AACT,wBAAsB;AACxB;AAEA,SAAS,qBAAqB,MAAc,MAA+B;AACzE,MAAI,CAAC,WAAW,IAAI,EAAG;AACvB,MAAI;AACJ,MAAI;AACF,WAAO,aAAa,MAAM,MAAM;EAClC,QAAQ;AACN;EACF;AACA,QAAM,SAAS,aAAa,IAAI;AAChC,aAAW,OAAO,MAAM;AACtB,QAAI,QAAQ,IAAI,GAAG,MAAM,OAAW;AACpC,UAAM,QAAQ,OAAO,GAAG;AACxB,QAAI,OAAO,UAAU,UAAU;AAC7B,cAAQ,IAAI,GAAG,IAAI;IACrB;EACF;AACF;AAQO,SAAS,aAAa,MAAsC;AACjE,QAAM,MAA8B,CAAC;AACrC,aAAW,WAAW,KAAK,MAAM,OAAO,GAAG;AACzC,UAAM,OAAO,QAAQ,KAAK;AAC1B,QAAI,KAAK,WAAW,KAAK,KAAK,WAAW,GAAG,EAAG;AAC/C,UAAM,WAAW,KAAK,WAAW,SAAS,IAAI,KAAK,MAAM,UAAU,MAAM,IAAI;AAC7E,UAAM,KAAK,SAAS,QAAQ,GAAG;AAC/B,QAAI,MAAM,EAAG;AACb,UAAM,MAAM,SAAS,MAAM,GAAG,EAAE,EAAE,KAAK;AACvC,QAAI,QAAQ,SAAS,MAAM,KAAK,CAAC,EAAE,KAAK;AACxC,QACE,MAAM,UAAU,MACd,MAAM,WAAW,GAAG,KAAK,MAAM,SAAS,GAAG,KAC1C,MAAM,WAAW,GAAG,KAAK,MAAM,SAAS,GAAG,IAC9C;AACA,cAAQ,MAAM,MAAM,GAAG,EAAE;IAC3B;AACA,QAAI,GAAG,IAAI;EACb;AACA,SAAO;AACT;AC5EA,IAAM,WAAW,CAAC,OAAO,SAAS;AAWlC,IAAI,SAA0B;AAM9B,eAAsB,YAA+B;AACnD,MAAI,WAAW,KAAM,QAAO;AAC5B,aAAW,OAAO,UAAU;AAC1B,QAAI;AACF,YAAM,IAAI,MAAM,MAAM,KAAK,CAAC,WAAW,GAAG,EAAE,QAAQ,MAAM,CAAC;AAC3D,UAAI,EAAE,aAAa,GAAG;AACpB,iBAAS,EAAE,WAAW,MAAM,KAAK,UAAU,EAAE,UAAU,IAAI,KAAK,KAAK,OAAU;AAC/E,eAAO;MACT;IACF,QAAQ;IAER;EACF;AACA,WAAS,EAAE,WAAW,MAAM;AAC5B,SAAO;AACT;AAGO,SAAS,gBAAsB;AACpC,WAAS;AACX;AAGO,SAAS,iBAAyB;AACvC,SAAO;AACT;AAGA,eAAsB,aAA+B;AACnD,MAAI;AACF,UAAM,IAAI,MAAM,MAAM,OAAO,CAAC,WAAW,MAAM,SAAS,GAAG,EAAE,QAAQ,MAAM,CAAC;AAC5E,WAAO,EAAE,aAAa;EACxB,QAAQ;AACN,WAAO;EACT;AACF;AAOO,SAAS,SAAS,KAAqB;AAC5C,QAAM,IAAI,UAAU,KAAK,CAAC,OAAO,GAAG,EAAE,OAAO,UAAU,CAAC;AACxD,SAAO,EAAE,UAAU;AACrB;AAQA,eAAsB,gBAAgB,KAA+B;AACnE,MAAI;AACF,UAAM,IAAI,MAAM,MAAM,KAAK,CAAC,MAAM,GAAG;MACnC,QAAQ;MACR,SAAS;MACT,OAAO;IACT,CAAC;AACD,WAAO,EAAE,aAAa;EACxB,QAAQ;AACN,WAAO;EACT;AACF;AEhEO,SAAS,eAAuB;AACrC,QAAM,WAAW,QAAQ,IAAI;AAC7B,MAAI,YAAY,SAAS,KAAK,EAAE,SAAS,EAAG,QAAO,SAAS,KAAK;AAEjE,QAAM,OAAO;AACb,MAAI,QAAQ,aAAa,UAAU;AACjC,WAAO,KAAKA,SAAQ,GAAG,WAAW,uBAAuB,IAAI;EAC/D;AACA,MAAI,QAAQ,aAAa,SAAS;AAChC,UAAM,UAAU,QAAQ,IAAI;AAC5B,QAAI,WAAW,QAAQ,KAAK,EAAE,SAAS,EAAG,QAAO,KAAK,SAAS,IAAI;AACnE,WAAO,KAAKA,SAAQ,GAAG,WAAW,WAAW,IAAI;EACnD;AACA,QAAM,MAAM,QAAQ,IAAI;AACxB,QAAM,OAAO,OAAO,IAAI,KAAK,EAAE,SAAS,IAAI,IAAI,KAAK,IAAI,KAAKA,SAAQ,GAAG,UAAU,OAAO;AAC1F,SAAO,KAAK,MAAM,IAAI;AACxB;AAGO,SAAS,gBAA0D;AACxE,QAAM,MAAM,aAAa;AACzB,SAAO,EAAE,UAAU,KAAK,KAAK,WAAW,GAAG,YAAY,KAAK,KAAK,aAAa,EAAE;AAClF;AAEA,SAAS,SAAS,MAAuB;AACvC,MAAI,CAACF,YAAW,IAAI,EAAG,QAAO;AAC9B,MAAI;AACF,WAAO,KAAK,MAAMC,cAAa,MAAM,MAAM,CAAC;EAC9C,QAAQ;AACN,WAAO;EACT;AACF;AAOO,SAAS,cAAoC;AAClD,QAAM,MAAM,SAAS,cAAc,EAAE,QAAQ;AAC7C,MAAI,CAAC,OAAO,OAAO,IAAI,UAAU,YAAY,IAAI,MAAM,WAAW,EAAG,QAAO;AAC5E,SAAO;IACL,OAAO,IAAI;IACX,WAAW,OAAO,IAAI,cAAc,WAAW,IAAI,YAAY;IAC/D,cAAc,OAAO,IAAI,iBAAiB,WAAW,IAAI,eAAe;EAC1E;AACF;AAGO,SAAS,qBAAoC;AAClD,QAAM,MAAM,SAAS,cAAc,EAAE,UAAU;AAC/C,SAAO,OAAO,OAAO,IAAI,gBAAgB,YAAY,IAAI,YAAY,SAAS,IAC1E,IAAI,cACJ;AACN;AAQO,SAAS,aAAa,MAAqB,UAAU,KAAc;AACxE,MAAI,KAAK,cAAc,OAAW,QAAO;AACzC,SAAO,KAAK,YAAY,MAAO,KAAK,IAAI,IAAI,UAAU;AACxD;AChEO,SAAS,qBAAwC;AACtD,wBAAsB;AACtB,QAAM,OAAO,QAAQ,IAAI;AACzB,MAAI,MAAM;AACR,UAAM,SAAS,iBAAiB,IAAI;AACpC,QAAI,CAAC,QAAQ;AACX,YAAM,IAAI;QACR;MAEF;IACF;AACA,QAAI,OAAO,QAAQ,UAAa,OAAO,MAAM,MAAO,KAAK,IAAI,GAAG;AAC9D,YAAM,IAAI;QACR;MAEF;IACF;AACA,WAAO,EAAE,OAAO,MAAM,QAAQ,OAAO,QAAQ,WAAW,OAAO,UAAU;EAC3E;AACA,MAAI,QAAQ,IAAI,uBAAuB,OAAO;AAC5C,UAAM,OAAO,YAAY;AACzB,QAAI,CAAC,MAAM;AACT,YAAM,IAAI;QACR;MACF;IACF;AACA,UAAMG,UAAS,QAAQ,IAAI,kBAAkB,mBAAmB,KAAK;AACrE,UAAMC,aAAY,QAAQ,IAAI;AAC9B,QAAI,CAACD,WAAU,CAACC,YAAW;AACzB,YAAM,IAAI;QACR;MACF;IACF;AAEA,WAAO,EAAE,OAAO,KAAK,OAAO,QAAAD,SAAQ,WAAAC,WAAU;EAChD;AACA,QAAM,QAAQ,QAAQ,IAAI;AAC1B,QAAM,SAAS,QAAQ,IAAI;AAC3B,QAAM,YAAY,QAAQ,IAAI;AAC9B,MAAI,SAAS,UAAU,UAAW,QAAO,EAAE,OAAO,QAAQ,UAAU;AACpE,QAAM,IAAI;IACR;EAIF;AACF;AASA,SAAS,iBAAiB,OAAkC;AAC1D,QAAM,QAAQ,MAAM,MAAM,GAAG;AAC7B,MAAI,MAAM,SAAS,KAAK,CAAC,MAAM,CAAC,EAAG,QAAO;AAC1C,MAAI;AACF,UAAM,UAAU,KAAK,MAAM,OAAO,KAAK,MAAM,CAAC,GAAG,WAAW,EAAE,SAAS,MAAM,CAAC;AAK9E,QAAI,OAAO,QAAQ,aAAa,YAAY,OAAO,QAAQ,eAAe,SAAU,QAAO;AAC3F,WAAO;MACL,QAAQ,QAAQ;MAChB,WAAW,QAAQ;MACnB,KAAK,OAAO,QAAQ,QAAQ,WAAW,QAAQ,MAAM;IACvD;EACF,QAAQ;AACN,WAAO;EACT;AACF;AAGO,SAAS,uBAAgC;AAC9C,wBAAsB;AACtB,MAAI,QAAQ,IAAI,kBAAmB,QAAO;AAC1C,MACE,QAAQ,IAAI,uBAAuB,SACnC,QAAQ,IAAI,kBACZ,QAAQ,IAAI,qBACZ,YAAY,GACZ;AACA,WAAO;EACT;AACA,SAAO;IACL,QAAQ,IAAI,gBAAgB,QAAQ,IAAI,kBAAkB,QAAQ,IAAI;EACxE;AACF;AAeA,IAAI,kBAAwC;AAErC,SAAS,yBAAwC;AACtD,wBAAsB;AACtB,MAAI,QAAQ,IAAI,uBAAuB,MAAO,QAAO,QAAQ,QAAQ;AACrE,MAAI,gBAAiB,QAAO;AAC5B,oBAAkB,gBAAgB,EAAE,QAAQ,MAAM;AAChD,sBAAkB;EACpB,CAAC;AACD,SAAO;AACT;AAEA,eAAe,kBAAiC;AAC9C,QAAM,OAAO,YAAY;AACzB,MAAI,CAAC,KAAM;AACX,MAAI,CAAC,aAAa,IAAI,EAAG;AAEzB,QAAM,MAAM,MAAM,UAAU;AAC5B,MAAI,CAAC,IAAI,aAAa,CAAC,IAAI,KAAK;AAC9B,UAAM,IAAI;MACR;IAEF;EACF;AACA,QAAM,KAAK,MAAM,gBAAgB,IAAI,GAAG;AACxC,MAAI,CAAC,IAAI;AACP,UAAM,IAAI;MACR;IACF;EACF;AAGA,QAAM,QAAQ,YAAY;AAC1B,MAAI,CAAC,SAAS,aAAa,OAAO,CAAC,GAAG;AACpC,UAAM,IAAI;MACR;IACF;EACF;AACF;AC/KA,IAAM,MAAM;AAOZ,IAAM,iBAAN,cAA6B,MAAM;EACjC,YACW,QACT,SACA;AACA,UAAM,OAAO;AAHJ,SAAA,SAAA;AAIT,SAAK,OAAO;EACd;EALW;AAMb;AAEA,eAAe,IACb,OACA,MACA,MACkB;AAClB,QAAM,MAAM,MAAM,MAAM,GAAG,GAAG,GAAG,IAAI,IAAI;IACvC,QAAQ,MAAM,UAAU;IACxB,SAAS;MACP,eAAe,UAAU,KAAK;MAC9B,GAAI,MAAM,OAAO,EAAE,gBAAgB,mBAAmB,IAAI,CAAC;IAC7D;IACA,MAAM,MAAM,OAAO,KAAK,UAAU,KAAK,IAAI,IAAI;EACjD,CAAC;AACD,QAAMC,QAAO,MAAM,IAAI,KAAK;AAC5B,MAAI,OAAgB;AACpB,MAAI;AACF,WAAOA,QAAO,KAAK,MAAMA,KAAI,IAAI;EACnC,QAAQ;AACN,WAAO;EACT;AACA,MAAI,CAAC,IAAI,IAAI;AACX,UAAM,SACH,MAAkD,OAAO,WAC1DA,SACA,IAAI;AACN,UAAM,IAAI,eAAe,IAAI,QAAQ,cAAc,IAAI,MAAM,KAAK,MAAM,EAAE;EAC5E;AACA,SAAO;AACT;AAGA,eAAsB,QAAQ,OAA2D;AACvF,QAAM,OAAQ,MAAM,IAAI,OAAO,UAAU;AAGzC,QAAM,OAAO,KAAK;AAClB,MAAI,CAAC,MAAM,GAAI,OAAM,IAAI,MAAM,kCAAkC;AACjE,SAAO;AACT;AAGA,eAAsB,aACpB,OACA,QACA,QAAQ,KACkB;AAC1B,QAAM,OAAQ,MAAM;IAClB;IACA,uBAAuB,mBAAmB,MAAM,CAAC,UAAU,KAAK;EAClE;AACA,UAAQ,KAAK,YAAY,CAAC,GAAG,IAAI,CAAC,OAAO,EAAE,IAAI,EAAE,IAAI,MAAM,EAAE,KAAK,EAAE;AACtE;AAOA,eAAsB,cACpB,OACA,QACA,MACwB;AACxB,MAAI;AACF,UAAM,OAAQ,MAAM,IAAI,OAAO,uBAAuB,mBAAmB,MAAM,CAAC,IAAI;MAClF,QAAQ;MACR,MAAM,EAAE,KAAK;IACf,CAAC;AACD,WAAO,EAAE,IAAI,KAAK,IAAI,MAAM,KAAK,KAAK;EACxC,SAAS,KAAK;AACZ,QAAI,eAAe,kBAAkB,IAAI,WAAW,KAAK;AACvD,YAAM,YAAY,MAAM,aAAa,OAAO,MAAM,GAAG,KAAK,CAAC,MAAM,EAAE,SAAS,IAAI;AAChF,UAAI,SAAU,QAAO;IACvB;AACA,UAAM;EACR;AACF;AHzEA,IAAM,uBAAuB;AAQ7B,IAAM,eAAe;EACnB;EACA;EACA;EACA;EACA;AACF;AAkBA,eAAsB,wBACpB,OAAuC,CAAC,GACzB;AACf,wBAAsB;AAEtB,MAAI,CAAC,KAAK,SAAS,qBAAqB,EAAG;AAC3C,MAAI,CAAC,QAAQ,MAAM,MAAO;AAE1B,QAAM,cAAc;AACpB;IACE;;;;IAIA;EACF;AAEA,QAAM,OAAO,MAAM,OAAO;IACxB,SAAS;IACT,SAAS;MACP,EAAE,OAAO,OAAO,OAAO,uEAAkE;MACzF,EAAE,OAAO,SAAS,OAAO,6EAAwE;MACjG,EAAE,OAAO,QAAQ,OAAO,oFAA+E;IACzG;IACA,cAAc;EAChB,CAAC;AACD,MAAI,SAAS,IAAI,GAAG;AAClB,QAAI,KAAK,0EAAqE;AAC9E;EACF;AAEA,MAAI,SAAS,OAAO;AAClB,UAAM,YAAY;AAClB;EACF;AAEA,MAAI,SAAS,QAAQ;AACnB;MACE;;;;MAIA;IACF;AAEA,oBAAgB;AAChB,QAAI,QAAQ,IAAI,mBAAmB;AACjC,UAAI,QAAQ,sDAAiD;AAC7D,YAAM,mBAAmB;AACzB,YAAM,iBAAiB;IACzB,OAAO;AACL,UAAI,KAAK,6FAAwF;IACnG;AACA;EACF;AAEA,QAAM,QAAQ,MAAM,mBAAmB;AACvC,MAAI,UAAU,KAAM;AACpB,qBAAmB,KAAK;AACxB,MAAI,QAAQ,+BAA+B,YAAY,CAAC,EAAE;AAC1D,QAAM,mBAAmB;AACzB,QAAM,iBAAiB;AACzB;AAQA,eAAe,qBAAgD;AAC7D,QAAM,SAAS,MAAM,QAAQ;IAC3B,SAAS,QAAQ,oBAAoB;IACrC,cAAc;EAChB,CAAC;AACD,MAAI,SAAS,MAAM,EAAG,QAAO;AAC7B,MAAI,OAAQ,eAAc;AAE1B,QAAM,QAAQ,MAAM,SAAS;IAC3B,SAAS;IACT,UAAU,CAAC,MAAO,KAAK,EAAE,KAAK,EAAE,SAAS,IAAI,SAAY;EAC3D,CAAC;AACD,MAAI,SAAS,KAAK,GAAG;AACnB,QAAI,KAAK,yBAAyB;AAClC,WAAO;EACT;AACA,QAAM,SAAS,MAAM,KAAK;IACxB,SAAS;IACT,aAAa;IACb,UAAU,CAAC,MAAO,KAAK,EAAE,KAAK,EAAE,SAAS,IAAI,SAAY;EAC3D,CAAC;AACD,MAAI,SAAS,MAAM,GAAG;AACpB,QAAI,KAAK,yBAAyB;AAClC,WAAO;EACT;AACA,QAAM,YAAY,MAAM,KAAK;IAC3B,SAAS;IACT,aAAa;IACb,UAAU,CAAC,MAAO,KAAK,EAAE,KAAK,EAAE,SAAS,IAAI,SAAY;EAC3D,CAAC;AACD,MAAI,SAAS,SAAS,GAAG;AACvB,QAAI,KAAK,yBAAyB;AAClC,WAAO;EACT;AACA,SAAO,EAAE,OAAO,MAAM,KAAK,GAAG,QAAQ,OAAO,KAAK,GAAG,WAAW,UAAU,KAAK,EAAE;AACnF;AAEA,SAAS,mBAAmB,OAAwB;AAClD,eAAa;IACX,cAAc,MAAM;IACpB,gBAAgB,MAAM;IACtB,mBAAmB,MAAM;EAC3B,CAAC;AACH;AAOA,SAAS,sBAAsB,KAAkD;AAC/E,eAAa;IACX,oBAAoB;IACpB,gBAAgB,IAAI;IACpB,mBAAmB,IAAI;EACzB,CAAC;AACH;AASA,SAAS,aAAa,QAAsC;AAC1D,aAAW,KAAK,aAAc,QAAO,QAAQ,IAAI,CAAC;AAClD,aAAW,CAAC,GAAG,CAAC,KAAK,OAAO,QAAQ,MAAM,EAAG,SAAQ,IAAI,CAAC,IAAI;AAE9D,QAAM,OAAO,YAAY;AACzB,YAAU,QAAQ,IAAI,GAAG,EAAE,WAAW,KAAK,CAAC;AAE5C,MAAI,WAAW;AACf,MAAIN,YAAW,IAAI,GAAG;AACpB,QAAI;AACF,iBAAWC,cAAa,MAAM,MAAM;IACtC,QAAQ;AACN,iBAAW;IACb;EACF;AACA,QAAM,OAAO,SACV,MAAM,OAAO,EACb,OAAO,CAAC,SAAS;AAChB,UAAM,WAAW,KAAK,WAAW,SAAS,IAAI,KAAK,MAAM,UAAU,MAAM,IAAI;AAC7E,UAAM,KAAK,SAAS,QAAQ,GAAG;AAC/B,QAAI,MAAM,EAAG,QAAO;AACpB,UAAM,MAAM,SAAS,MAAM,GAAG,EAAE,EAAE,KAAK;AACvC,WAAO,CAAE,aAAmC,SAAS,GAAG;EAC1D,CAAC,EACA,KAAK,IAAI,EACT,QAAQ,SAAS,EAAE;AAEtB,QAAM,QAAQ,OAAO,QAAQ,MAAM,EAAE,IAAI,CAAC,CAAC,GAAG,CAAC,MAAM,GAAG,CAAC,IAAI,CAAC,EAAE;AAChE,QAAM,QAAQ,OAAO,GAAG,IAAI;IAAO,MAAM,MAAM,KAAK,IAAI,IAAI;AAE5D,QAAM,MAAM,GAAG,IAAI;AACnB,gBAAc,KAAK,MAAM,EAAE,MAAM,IAAM,CAAC;AACxC,MAAI;AACF,cAAU,KAAK,GAAK;EACtB,QAAQ;EAER;AACA,aAAW,KAAK,IAAI;AACpB,MAAI;AACF,cAAU,MAAM,GAAK;EACvB,QAAQ;EAER;AACF;AAcA,eAAe,qBAAsD;AACnE,MAAI,MAAM,MAAM,UAAU;AAC1B,MAAI,CAAC,IAAI,WAAW;AAClB,UAAM,YAAY,MAAM,QAAQ;MAC9B,SAAS,4FAA4F,eAAe,CAAC;MACrH,cAAc;IAChB,CAAC;AACD,QAAI,SAAS,SAAS,KAAK,CAAC,WAAW;AACrC,UAAI;QACF,qBAAqB,eAAe,CAAC;MACvC;AACA,aAAO;IACT;AACA,UAAM,KAAK,QAAQ;AACnB,OAAG,MAAM,yCAAoC;AAC7C,UAAM,KAAK,MAAM,WAAW;AAC5B,kBAAc;AACd,UAAM,MAAM,UAAU;AACtB,QAAI,CAAC,MAAM,CAAC,IAAI,aAAa,CAAC,IAAI,KAAK;AACrC,SAAG,KAAK,iBAAiB;AACzB,UAAI,KAAK,kDAA6C,eAAe,CAAC,cAAc;AACpF,aAAO;IACT;AACA,OAAG,KAAK,wBAAwB,IAAI,UAAU,IAAI,IAAI,OAAO,KAAK,EAAE,GAAG;EACzE;AACA,SAAO,IAAI,MAAM,EAAE,KAAK,IAAI,IAAI,IAAI;AACtC;AAEA,eAAe,cAA6B;AAC1C,QAAM,MAAM,MAAM,mBAAmB;AACrC,MAAI,CAAC,KAAK;AACR,QAAI,KAAK,gHAA2G;AACpH;EACF;AAEA,OAAK,oDAAoD,gBAAgB;AACzE,QAAM,SAAS,SAAS,IAAI,GAAG;AAC/B,MAAI,WAAW,GAAG;AAChB,QAAI,KAAK,qFAAgF;AACzF;EACF;AAEA,QAAM,YAAY,sBAAsB;AACxC,MAAI,CAAC,WAAW;AACd,QAAI,KAAK,oFAAoF;AAC7F;EACF;AAGA,MAAI;AACF,UAAM,QAAQ,UAAU,KAAK;EAC/B,SAAS,KAAK;AACZ,QAAI;MACF,qCAAqC,eAAe,QAAQ,IAAI,UAAU,OAAO,GAAG,CAAC;IAEvF;AACA;EACF;AAEA,QAAM,YAAY,MAAM,iBAAiB,UAAU,OAAO,UAAU,MAAM;AAC1E,MAAI,cAAc,MAAM;AACtB,QAAI,KAAK,4EAAuE;AAChF;EACF;AAEA,wBAAsB,EAAE,QAAQ,UAAU,QAAQ,UAAU,CAAC;AAC7D,kBAAgB;AAChB,MAAI,QAAQ,uFAAkF,YAAY,CAAC,IAAI;AAC/G,QAAM,iBAAiB;AACzB;AAOA,SAAS,wBAAkE;AACzE,QAAM,OAAO,YAAY;AACzB,MAAI,CAAC,KAAM,QAAO;AAClB,QAAM,SAAS,QAAQ,IAAI,kBAAkB,mBAAmB;AAChE,MAAI,CAAC,OAAQ,QAAO;AACpB,SAAO,EAAE,OAAO,KAAK,OAAO,OAAO;AACrC;AAQA,eAAe,iBAAiB,OAAe,QAAwC;AACrF,MAAI,WAA4B,CAAC;AACjC,QAAM,KAAK,QAAQ;AACnB,KAAG,MAAM,oCAA+B;AACxC,MAAI;AACF,eAAW,MAAM,aAAa,OAAO,MAAM;AAC3C,OAAG,KAAK,SAAS,SAAS,MAAM,WAAW,SAAS,WAAW,IAAI,KAAK,GAAG,GAAG;EAChF,SAAS,KAAK;AACZ,OAAG,KAAK,0BAA0B;AAClC,QAAI,KAAK,mCAAmC,eAAe,QAAQ,IAAI,UAAU,OAAO,GAAG,CAAC,EAAE;AAC9F,WAAO;EACT;AAEA,QAAM,SAAS;AACf,QAAM,YACJ,SAAS,KAAK,CAAC,MAAM,EAAE,SAAS,UAAU,KAC1C,SAAS,KAAK,CAAC,MAAM,EAAE,SAAS,gCAAgC;AAClE,QAAM,SAAS,MAAM,OAAO;IAC1B,SAAS;IACT,SAAS;MACP,GAAG,SAAS,IAAI,CAAC,OAAO,EAAE,OAAO,EAAE,IAAI,OAAO,EAAE,KAAK,EAAE;MACvD,EAAE,OAAO,QAAQ,OAAO,6BAAwB;IAClD;IACA,cAAc,YAAY,UAAU,KAAK;EAC3C,CAAC;AACD,MAAI,SAAS,MAAM,EAAG,QAAO;AAE7B,MAAI,WAAW,OAAQ,QAAO;AAE9B,QAAM,OAAO,MAAM,KAAK;IACtB,SAAS;IACT,aAAa;IACb,cAAc;IACd,UAAU,CAAC,MAAO,KAAK,EAAE,KAAK,EAAE,SAAS,IAAI,SAAY;EAC3D,CAAC;AACD,MAAI,SAAS,IAAI,EAAG,QAAO;AAC3B,MAAI;AACF,UAAM,UAAU,MAAM,cAAc,OAAO,QAAQ,KAAK,KAAK,KAAK,UAAU;AAC5E,WAAO,QAAQ;EACjB,SAAS,KAAK;AACZ,QAAI,KAAK,iCAAiC,eAAe,QAAQ,IAAI,UAAU,OAAO,GAAG,CAAC,EAAE;AAC5F,WAAO;EACT;AACF;AAEA,SAAS,gBAAsB;AAE7B,SAAO,eAAoB,EACxB,KAAK,CAAC,EAAE,WAAAM,WAAU,MAAM;AACvB,UAAM,IAAIA,WAAU,QAAQ,CAAC,oBAAoB,GAAG,EAAE,OAAO,SAAS,CAAC;AACvE,QAAI,EAAE,WAAW,GAAG;AAClB,UAAI,KAAK,gDAA2C,oBAAoB,YAAY;IACtF;EACF,CAAC,EACA,MAAM,MAAM;AACX,QAAI,KAAK,gDAA2C,oBAAoB,YAAY;EACtF,CAAC;AACL;AAEO,SAAS,cAAsB;AACpC,SAAOJ,SAAQD,SAAQ,GAAG,aAAa,aAAa;AACtD;AA4BO,SAAS,uBAAyC;AACvD,QAAM,WAAW,CAAC,CAAC,QAAQ,IAAI,qBAAqB,CAAC,CAAC,QAAQ,IAAI;AAClE,wBAAsB;AACtB,QAAM,OAAO,CAAC,CAAC,QAAQ,IAAI;AAC3B,QAAM,SAAS,QAAQ,IAAI;AAC3B,QAAM,YAAY,QAAQ,IAAI;AAE9B,MAAI,MAAM;AACR,WAAO,EAAE,MAAM,QAAQ,MAAM,MAAM,QAAQ,WAAW,QAAQ,WAAW,QAAQ,cAAc;EACjG;AAEA,MAAI,QAAQ,IAAI,uBAAuB,OAAO;AAC5C,UAAM,OAAO,YAAY;AACzB,WAAO;MACL,MAAM;MACN,MAAM;MACN,OAAO,MAAM;MACb;MACA;MACA,QAAQ;MACR,KAAK;QACH,UAAU,CAAC,CAAC;QACZ,WAAW,MAAM;QACjB,YAAY,OAAO,aAAa,IAAI,IAAI;QACxC,UAAU,cAAc,EAAE;MAC5B;IACF;EACF;AAEA,QAAM,QAAQ,QAAQ,IAAI;AAC1B,MAAI,CAAC,MAAO,QAAO,EAAE,MAAM,QAAQ,MAAM,OAAO,QAAQ,OAAO;AAC/D,SAAO;IACL,MAAM;IACN,MAAM;IACN;IACA;IACA;IACA,QAAQ,WAAW,QAAQ;EAC7B;AACF;AAEO,SAAS,QAAQ,OAAuB;AAC7C,MAAI,MAAM,UAAU,EAAG,QAAO,IAAI,OAAO,MAAM,MAAM;AACrD,SAAO,GAAG,MAAM,MAAM,GAAG,CAAC,CAAC,SAAI,IAAI,OAAO,CAAC,CAAC,GAAG,MAAM,MAAM,EAAE,CAAC;AAChE;","names":["existsSync","readFileSync","homedir","resolve","teamId","projectId","text","spawnSync"]}

package/dist/{chunk-6OZDFNBF.js → chunk-NCJP5MTN.js}

@@ -19,7 +19,7 @@ import {
   recordBox,
   removeBoxRecord,
   writePreparedDockerState
-} from "./chunk-BGK32PZE.js";
+} from "./chunk-KL36BRN4.js";
 
 // ../../packages/sandbox-docker/dist/index.js
 import { randomBytes as randomBytes3 } from "crypto";
@@ -736,6 +736,7 @@ var BUILT_IN_DEFAULTS = {
     defaultCheckpointDocker: "",
     defaultCheckpointDaytona: "",
     defaultCheckpointHetzner: "",
+    defaultCheckpointVercel: "",
     withPlaywright: false,
     withEnv: false,
     vnc: true,
@@ -748,7 +749,10 @@ var BUILT_IN_DEFAULTS = {
     cpus: 0,
     pidsLimit: 0,
     disk: "",
-    bundleDepth: void 0
+    bundleDepth: void 0,
+    vercelVcpus: 2,
+    vercelTimeoutMs: 27e5,
+    vercelNetworkPolicy: ""
   },
   checkpoint: {
     maxLayers: 3
@@ -799,7 +803,12 @@ var BUILT_IN_DEFAULTS = {
   },
   queue: {
     enabled: true,
-    maxConcurrent: 5
+    maxConcurrent: 5,
+    maxWorking: 0,
+    idleGraceSeconds: 15
+  },
+  cloud: {
+    useCurrentBranch: false
   },
   maintenance: {
     pruneProjectConfigs: true,
@@ -810,8 +819,8 @@ var KEY_REGISTRY = [
   {
     key: "box.provider",
     type: "enum",
-    enumValues: ["docker", "daytona", "hetzner"],
-    description: "Sandbox backend new boxes are created on: local Docker containers, Daytona Cloud sandboxes, or Hetzner Cloud VPSes."
+    enumValues: ["docker", "daytona", "hetzner", "vercel"],
+    description: "Sandbox backend new boxes are created on: local Docker containers, Daytona Cloud sandboxes, Hetzner Cloud VPSes, or Vercel Sandboxes."
   },
   {
     key: "box.hostSnapshot",
@@ -841,6 +850,12 @@ var KEY_REGISTRY = [
     description: "Per-provider override of `box.defaultCheckpoint` for hetzner. Wins over the global when set; set via `agentbox checkpoint set-default --provider hetzner`.",
     advanced: true
   },
+  {
+    key: "box.defaultCheckpointVercel",
+    type: "string",
+    description: "Per-provider override of `box.defaultCheckpoint` for vercel. Wins over the global when set; set via `agentbox checkpoint set-default --provider vercel`.",
+    advanced: true
+  },
   {
     key: "checkpoint.maxLayers",
     type: "int",
@@ -914,6 +929,21 @@ var KEY_REGISTRY = [
     type: "int",
     description: "Cap git bundle history shipped to cloud sandboxes (daytona, hetzner). 0 = full history. Unset = adaptive default (last 200 commits; re-bundle at 100 if the bundle exceeds 20 MB). Ignored for docker (which bind-mounts .git/)."
   },
+  {
+    key: "box.vercelVcpus",
+    type: "int",
+    description: "vCPUs for new --provider vercel boxes (Vercel couples RAM at 2048 MB/vCPU). Default 2. Vercel only accepts specific counts (e.g. 1, 2, 4, 8) \u2014 an unsupported value fails create with a 400. Vercel-only; ignored by other providers."
+  },
+  {
+    key: "box.vercelTimeoutMs",
+    type: "int",
+    description: "Max session length (ms) for new --provider vercel boxes before the VM auto-snapshots; persistent mode auto-resumes on the next call. Default 2700000 (45 min, the Hobby ceiling). Vercel-only."
+  },
+  {
+    key: "box.vercelNetworkPolicy",
+    type: "string",
+    description: "Egress lock for new --provider vercel boxes: 'allow-all' (default, unset), 'deny-all', or a comma-separated domain allowlist (e.g. 'github.com,*.npmjs.org') that denies everything else. Vercel-only; ignored by other providers."
+  },
   {
     key: "claude.sessionName",
     type: "string",
@@ -1031,6 +1061,21 @@ var KEY_REGISTRY = [
     type: "int",
     description: "Max number of simultaneously-running boxes (across providers) before background `-i` jobs queue up instead of starting immediately. Per-invocation override: `--max-running <n>`."
   },
+  {
+    key: "queue.maxWorking",
+    type: "int",
+    description: "Max agents actively working/thinking (quota-consuming) at once before background `-i` jobs queue. 0 = disabled (use the queue.maxConcurrent running-box gate). Counts all boxes, foreground + queued. Per-invocation override: `--max-working <n>`."
+  },
+  {
+    key: "queue.idleGraceSeconds",
+    type: "int",
+    description: "Seconds an agent must stay non-working before it frees its working slot (debounce against brief idle flaps between turns). Only used when queue.maxWorking > 0."
+  },
+  {
+    key: "cloud.useCurrentBranch",
+    type: "bool",
+    description: "On cloud providers (daytona/hetzner), start new boxes on the host's current branch instead of forking a new agentbox/<box-name> branch. Overridden by an explicit --use-branch / --from-branch."
+  },
   {
     key: "maintenance.pruneProjectConfigs",
     type: "bool",
@@ -1386,7 +1431,7 @@ function writeLeaf(obj, branch, leaf, value) {
   b[leaf] = value;
 }
 function resolveDefaultCheckpoint(cfg, provider) {
-  const perProvider = provider === "daytona" ? cfg.box.defaultCheckpointDaytona : provider === "hetzner" ? cfg.box.defaultCheckpointHetzner : cfg.box.defaultCheckpointDocker;
+  const perProvider = provider === "daytona" ? cfg.box.defaultCheckpointDaytona : provider === "hetzner" ? cfg.box.defaultCheckpointHetzner : provider === "vercel" ? cfg.box.defaultCheckpointVercel : cfg.box.defaultCheckpointDocker;
   if (perProvider && perProvider.length > 0) return perProvider;
   return cfg.box.defaultCheckpoint;
 }
@@ -1394,6 +1439,7 @@ function defaultCheckpointConfigKey(provider) {
   if (provider === "docker") return "box.defaultCheckpointDocker";
   if (provider === "daytona") return "box.defaultCheckpointDaytona";
   if (provider === "hetzner") return "box.defaultCheckpointHetzner";
+  if (provider === "vercel") return "box.defaultCheckpointVercel";
   return "box.defaultCheckpoint";
 }
 async function setConfigValue(scope, key, value, cwd, opts = {}) {
@@ -1676,6 +1722,15 @@ var GH_PR_OPS = [
   "close",
   "reopen"
 ];
+function injectPrCreateHead(op, branch, args) {
+  if (op !== "create") return args;
+  if (!branch || branch === "HEAD") return args;
+  if (hasHeadArg(args)) return args;
+  return ["--head", branch, ...args];
+}
+function hasHeadArg(args) {
+  return args.some((a) => a === "--head" || a.startsWith("--head=") || a.startsWith("-H"));
+}
 var MAX_BODY_BYTES = 1024 * 1024;
 var QUEUE_DIR = join3(STATE_DIR, "queue");
 async function loadQueueConfig() {
@@ -1688,7 +1743,9 @@ async function loadQueueConfig() {
   const q = global.queue ?? {};
   return {
     enabled: q.enabled ?? d.enabled,
-    maxConcurrent: q.maxConcurrent ?? d.maxConcurrent
+    maxConcurrent: q.maxConcurrent ?? d.maxConcurrent,
+    maxWorking: q.maxWorking ?? d.maxWorking,
+    idleGraceMs: (q.idleGraceSeconds ?? d.idleGraceSeconds) * 1e3
   };
 }
 async function writeJob(job) {
@@ -3671,6 +3728,22 @@ async function pullClaudeExtras(spec, opts) {
   return { newItems, mergedRegistries };
 }
 var CREDENTIALS_BACKUP_FILE = join32(STATE_DIR, "claude-credentials.json");
+var CODEX_CREDENTIALS_BACKUP_FILE = join32(STATE_DIR, "codex-credentials.json");
+var OPENCODE_CREDENTIALS_BACKUP_FILE = join32(STATE_DIR, "opencode-credentials.json");
+function isRealAgentCredential(agent, text) {
+  let parsed;
+  try {
+    parsed = JSON.parse(text);
+  } catch {
+    return false;
+  }
+  if (typeof parsed !== "object" || parsed === null) return false;
+  if (agent === "claude") {
+    const rt = parsed.claudeAiOauth?.refreshToken;
+    return typeof rt === "string" && rt.length > 0;
+  }
+  return Object.keys(parsed).length > 0;
+}
 async function hostBackupHasCredentials(path = CREDENTIALS_BACKUP_FILE) {
   try {
     const parsed = JSON.parse(await readFile32(path, "utf8"));
@@ -4571,23 +4644,10 @@ async function seedWorkspace(opts) {
     const main = r.repo.hostMainRepo;
     const wt = r.gitWorktreePath;
     const baseRef = r.repo.kind === "root" ? opts.fromBranch ?? "HEAD" : "HEAD";
+    const addArgs = r.reuseBranch ? ["worktree", "add", wt, r.branch] : ["worktree", "add", "-b", r.branch, wt, baseRef];
     const add = await execa7(
       "docker",
-      [
-        "exec",
-        "--user",
-        "vscode",
-        opts.container,
-        "git",
-        "-C",
-        main,
-        "worktree",
-        "add",
-        "-b",
-        r.branch,
-        wt,
-        baseRef
-      ],
+      ["exec", "--user", "vscode", opts.container, "git", "-C", main, ...addArgs],
       { reject: false }
     );
     if (add.exitCode !== 0) {
@@ -5306,25 +5366,72 @@ async function ensureRelay(opts = {}) {
     await removeContainer(RELAY_CONTAINER_NAME);
     log(`removed legacy relay container ${RELAY_CONTAINER_NAME}`);
   }
-  if (await pingHealthz(500)) {
-    return ENDPOINT;
-  }
-  const existingPid = await readPidFile();
-  if (existingPid !== null && await processAlive(existingPid)) {
-    for (let i = 0; i < 10; i++) {
-      if (await pingHealthz(300)) return ENDPOINT;
-      await delay2(200);
+  const health = await fetchHealthz(500);
+  if (health !== null) {
+    if (health.cliEntry !== false) {
+      return ENDPOINT;
+    }
+    log("relay is alive but lacks AGENTBOX_CLI_ENTRY (cp/download/checkpoint would fail) \u2014 reclaiming");
+    await reclaimRelay(health.pid, log);
+  } else {
+    const existingPid = await readPidFile();
+    if (existingPid !== null && await processAlive(existingPid)) {
+      for (let i = 0; i < 10; i++) {
+        if (await pingHealthz(300)) return ENDPOINT;
+        await delay2(200);
+      }
+      log(`relay pid ${String(existingPid)} alive but /healthz unresponsive \u2014 proceeding anyway`);
+      return ENDPOINT;
+    }
+    if (existingPid !== null) {
+      await unlink2(PID_FILE).catch(() => {
+      });
     }
-    log(`relay pid ${String(existingPid)} alive but /healthz unresponsive \u2014 proceeding anyway`);
-    return ENDPOINT;
-  }
-  if (existingPid !== null) {
-    await unlink2(PID_FILE).catch(() => {
-    });
   }
   const relayBin = resolveRelayBin();
-  const logFd = openSync(LOG_FILE, "a");
   const cliEntry = resolveCliEntry();
+  if (cliEntry === null) {
+    throw new Error(
+      "cannot start the host relay: agentbox CLI entry not found (is the build complete / dist present?). Set AGENTBOX_CLI_ENTRY to override."
+    );
+  }
+  return spawnRelay(relayBin, cliEntry, log);
+}
+async function reclaimRelay(reportedPid, log) {
+  const pidFromFile = await readPidFile();
+  const seen = /* @__PURE__ */ new Set();
+  for (const pid of [reportedPid, pidFromFile]) {
+    if (typeof pid !== "number" || pid <= 0 || seen.has(pid)) continue;
+    seen.add(pid);
+    if (!await processAlive(pid)) continue;
+    log(`stopping crippled relay pid ${String(pid)}`);
+    await killPid(pid);
+  }
+  await unlink2(PID_FILE).catch(() => {
+  });
+  if (await pingHealthz(300)) {
+    throw new Error(
+      `a relay without AGENTBOX_CLI_ENTRY is still listening on :${String(PORT)} and could not be stopped (reported pid ${String(reportedPid ?? "unknown")}); kill it manually and retry`
+    );
+  }
+}
+async function killPid(pid) {
+  try {
+    process.kill(pid, "SIGTERM");
+  } catch {
+    return;
+  }
+  for (let i = 0; i < 20; i++) {
+    if (!await processAlive(pid)) return;
+    await delay2(100);
+  }
+  try {
+    process.kill(pid, "SIGKILL");
+  } catch {
+  }
+}
+async function spawnRelay(relayBin, cliEntry, log) {
+  const logFd = openSync(LOG_FILE, "a");
   const child = spawn(
     process.execPath,
     [relayBin, "serve", "--port", String(PORT), "--host", "0.0.0.0"],
@@ -5333,7 +5440,7 @@ async function ensureRelay(opts = {}) {
       stdio: ["ignore", logFd, logFd],
       env: {
         ...process.env,
-        ...cliEntry ? { AGENTBOX_CLI_ENTRY: cliEntry } : {}
+        AGENTBOX_CLI_ENTRY: cliEntry
       }
     }
   );
@@ -5465,7 +5572,13 @@ function fetchHealthz(timeoutMs) {
           try {
             const parsed = JSON.parse(Buffer.concat(chunks).toString("utf8"));
             if (typeof parsed.ok === "boolean" && typeof parsed.boxes === "number" && typeof parsed.events === "number") {
-              resolveP({ ok: parsed.ok, boxes: parsed.boxes, events: parsed.events });
+              resolveP({
+                ok: parsed.ok,
+                boxes: parsed.boxes,
+                events: parsed.events,
+                pid: typeof parsed.pid === "number" ? parsed.pid : void 0,
+                cliEntry: typeof parsed.cliEntry === "boolean" ? parsed.cliEntry : void 0
+              });
             } else {
               resolveP(null);
             }
@@ -5944,9 +6057,33 @@ async function createBox(opts) {
       );
     }
     for (const r of repos) {
+      const containerPath = r.kind === "root" ? "/workspace" : `/workspace/${r.relPathFromWorkspace}`;
+      const reuseBranch = r.kind === "root" && opts.useBranch !== void 0;
+      if (reuseBranch) {
+        const branch2 = opts.useBranch;
+        const gitWorktreePath2 = gitWorktreePathFor(branch2);
+        repoCarryOvers.push({
+          repo: r,
+          containerPath,
+          gitWorktreePath: gitWorktreePath2,
+          branch: branch2,
+          stashSha: null,
+          untrackedNul: "",
+          hostSource: r.hostMainRepo,
+          reuseBranch: true
+        });
+        gitWorktreeRecords.push({
+          kind: r.kind,
+          hostMainRepo: r.hostMainRepo,
+          containerPath,
+          gitWorktreePath: gitWorktreePath2,
+          branch: branch2,
+          relPathFromWorkspace: r.relPathFromWorkspace
+        });
+        continue;
+      }
       const branchBase = r.kind === "root" ? `agentbox/${name}` : `agentbox/${name}--${r.relPathFromWorkspace.replace(/[^A-Za-z0-9._-]+/g, "_")}`;
       const branch = await pickFreshBranch(r.hostMainRepo, branchBase);
-      const containerPath = r.kind === "root" ? "/workspace" : `/workspace/${r.relPathFromWorkspace}`;
       const gitWorktreePath = gitWorktreePathFor(branch);
       const carry = await collectRepoCarryOver(r, branch, containerPath, gitWorktreePath);
       repoCarryOvers.push(carry);
@@ -6191,9 +6328,18 @@ async function createBox(opts) {
         });
         log("seeded /workspace from in-container git worktree(s)");
       } catch (err) {
-        log(
-          `seedWorkspace failed; leaving ${containerName} running so you can inspect it`
-        );
+        if (opts.useBranch !== void 0) {
+          log(`seedWorkspace failed for --use-branch ${opts.useBranch}; cleaning up the box`);
+          await execa13("docker", ["rm", "-f", containerName], { reject: false });
+          for (const w of gitWorktreeRecords) {
+            await removeInBoxWorktree({
+              hostMainRepo: w.hostMainRepo,
+              gitWorktreePath: w.gitWorktreePath
+            });
+          }
+        } else {
+          log(`seedWorkspace failed; leaving ${containerName} running so you can inspect it`);
+        }
         throw err;
       }
     } else {
@@ -7427,6 +7573,7 @@ var dockerProvider = {
       useSnapshot: po.useSnapshot ?? false,
       checkpointRef: req.checkpointRef,
       fromBranch: req.fromBranch,
+      useBranch: req.useBranch,
       image: req.image,
       onLog: req.onLog,
       claudeConfig: po.claudeConfig,
@@ -7783,6 +7930,9 @@ async function stageCodexStaticForUpload(opts = {}) {
   }
 }
 async function stageCodexCredentialsForUpload(opts = {}) {
+  if (await pathExists7(CODEX_CREDENTIALS_BACKUP_FILE)) {
+    return stageSingleFileTarball("codex-creds", CODEX_CREDENTIALS_BACKUP_FILE, "auth.json");
+  }
   const hostHome = opts.hostHome ?? homedir11();
   const hostAuth = join14(hostHome, ".codex", "auth.json");
   if (!await pathExists7(hostAuth)) return emptyResult([CODEX_KEYCHAIN_WARNING]);
@@ -7847,6 +7997,9 @@ async function stageOpencodeStaticForUpload(opts = {}) {
   }
 }
 async function stageOpencodeCredentialsForUpload(opts = {}) {
+  if (await pathExists7(OPENCODE_CREDENTIALS_BACKUP_FILE)) {
+    return stageSingleFileTarball("opencode-creds", OPENCODE_CREDENTIALS_BACKUP_FILE, "auth.json");
+  }
   const hostHome = opts.hostHome ?? homedir11();
   const hostAuth = join14(hostHome, ".local", "share", "opencode", "auth.json");
   if (!await pathExists7(hostAuth)) return emptyResult();
@@ -7908,6 +8061,7 @@ export {
   RELAY_IMAGE_REF,
   hashRpcParams,
   GH_PR_OPS,
+  injectPrCreateHead,
   loadQueueConfig,
   writeJob,
   readJob,
@@ -7966,6 +8120,9 @@ export {
   claudeSessionInfo,
   pullClaudeExtras,
   CREDENTIALS_BACKUP_FILE,
+  CODEX_CREDENTIALS_BACKUP_FILE,
+  OPENCODE_CREDENTIALS_BACKUP_FILE,
+  isRealAgentCredential,
   hostBackupHasCredentials,
   parseSyncResult,
   syncClaudeCredentials,
@@ -8111,4 +8268,4 @@ export {
   browserSessionActive,
   ensureBoxBrowser
 };
-//# sourceMappingURL=chunk-6OZDFNBF.js.map
+//# sourceMappingURL=chunk-NCJP5MTN.js.map