@mochi.js/core 0.6.0 → 0.8.0

package/README.md

@@ -22,7 +22,7 @@ await session.close();
 
 ## Status
 
-`v0.4.x` (v0.2 wave-4 surfaces). `mochi.launch()` is fully wired: pipe-mode CDP transport, relational `(profile, seed)` Matrix, JIT-friendly inject delivered via `Fetch.fulfillRequest` body splice (with `Page.addScriptToEvaluateOnNewDocument({ runImmediately: true, worldName: "" })` as the `about:blank` / `data:` fallback), behavioral synth, and JA4-coherent `session.fetch` via Rust+wreq.
+`v0.7.x`. `mochi.launch()` is fully wired: pipe-mode CDP transport, relational `(profile, seed)` Matrix, JIT-friendly inject delivered via `Fetch.fulfillRequest` body splice (with `Page.addScriptToEvaluateOnNewDocument({ runImmediately: true, worldName: "" })` as the `about:blank` / `data:` fallback), behavioral synth, and a Chromium-native `session.fetch` (routes through CDP — `Network.loadNetworkResource` for simple GETs, `page.evaluate("fetch")` for non-GET — so JA4 is real Chrome by definition).
 
 The full [v0.1.4 → v0.2] surface lands as additive minor bumps. See [`CHANGELOG.md`](https://github.com/0xchasercat/mochi/blob/main/CHANGELOG.md).
 
@@ -31,7 +31,7 @@ The full [v0.1.4 → v0.2] surface lands as additive minor bumps. See [`CHANGELO
 - `mochi.launch(opts)` — spawn a Chromium-for-Testing instance with a relationally-locked fingerprint matrix derived from `(profile, seed)`. Options include `proxy`, `headless`, `binary`, `timeout`, `geoConsistency` (IP/TZ/locale exit reconciliation), and `challenges` (Turnstile auto-click).
 - `Session` and `Page` — the runtime objects you drive.
 - `page.humanClick / humanType / humanScroll` — biomechanically-shaped input synthesis (Bezier + Fitts + Gaussian jitter).
-- `session.fetch` — out-of-band requests with profile-matching JA3/JA4/H2 via the Rust+wreq backend.
+- `session.fetch` — out-of-band requests routed through Chromium itself via CDP. JA4/JA3/H2 are real Chrome by definition because Chromium is the client; cookies inherit from the page's origin; CORS applies for non-GET cross-origin calls.
 - `page.screenshot(opts?)` — PNG / JPEG / WebP via CDP `Page.captureScreenshot`. Options: `format`, `quality`, `fullPage`, `clip`, `omitBackground`, `encoding`. Element-bounded capture (`{ element: handle }`) is deferred — see <https://mochijs.com/docs/reference/limits>.
 - `session.cookies.{save,load}(path, { pattern? })` — JSON cookie jar with version header + regex domain filter. Round-trips losslessly via `Storage.getCookies` / `Storage.setCookies`.
 - `page.localStorage.{get,set}` and `page.sessionStorage.{get,set}` — direct `DOMStorage` CDP access, frame-scoped (defaults to current main-frame origin; pass `{ origin }` for cross-origin).

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@mochi.js/core",
-  "version": "0.6.0",
-  "description": "Bun-native browser automation framework — relational fingerprint locking, zero-jitter injection, behavioral playback. The primary entry point.",
+  "version": "0.8.0",
+  "description": "The library for faithful browser automation. Bun-native; relational fingerprint matrix, biomechanical input, stock Chromium-for-Testing.",
   "license": "MIT",
   "type": "module",
   "main": "./src/index.ts",
@@ -52,8 +52,7 @@
     "@mochi.js/behavioral": "^0.1.4",
     "@mochi.js/challenges": "^0.2.1",
     "@mochi.js/consistency": "^0.1.3",
-    "@mochi.js/inject": "^0.3.0",
-    "@mochi.js/net": "^0.1.1"
+    "@mochi.js/inject": "^0.3.0"
   },
   "publishConfig": {
     "access": "public"

package/src/__tests__/cookies-jar.test.ts

@@ -1,5 +1,5 @@
 /**
- * Unit tests for the {@link Session.cookies} jar surface (task 0257):
+ * Unit tests for the {@link Session.cookies} jar surface:
  *
  *   - `cookies.get()`         → `Storage.getCookies` round-trip with optional
  *                               url-host filter.
@@ -19,7 +19,6 @@
  * `ChromiumProcess` whose pipe reader/writer let us observe every CDP
  * request sent and inject canned responses.
  *
- * @see tasks/0257-dx-cluster-cookies-storage-permissions.md
  * @see docs/audits/nodriver.md (LOW finding 2 — pickle → JSON port)
  */
 
@@ -193,7 +192,7 @@ const SAMPLE_COOKIES: Cookie[] = [
   },
 ];
 
-describe("Session.cookies (task 0257)", () => {
+describe("Session.cookies", () => {
   let fake: FakeBrowser;
   let session: Session;
   let tmpFile: string;

package/src/__tests__/default-profile.test.ts

@@ -1,5 +1,5 @@
 /**
- * Unit tests for the host-OS profile auto-pick (task 0272).
+ * Unit tests for the host-OS profile auto-pick.
  *
  * Three layers under test:
  *
@@ -18,11 +18,9 @@
  * exported `defaultProfileForHost` introspection helper. We do NOT spawn
  * Chromium here — the goal is to lock the decisions against regressions
  * without taking the cost of a real launch. Mirrors the
- * `proc-linux-server.test.ts` pattern (task 0258).
+ * `proc-linux-server.test.ts` pattern.
  *
  * @see packages/core/src/default-profile.ts
- * @see tasks/0271-the-linux-os-thesis.md (strategic thesis + production evidence)
- * @see tasks/0272-host-os-profile-auto-default.md (engineering brief)
  */
 
 import { afterEach, describe, expect, it } from "bun:test";
@@ -33,7 +31,7 @@ import {
   unsupportedHostMessage,
 } from "../default-profile";
 
-describe("resolveDefaultProfileForHost — pure mapping table (task 0272)", () => {
+describe("resolveDefaultProfileForHost — pure mapping table", () => {
   it("linux/x64 → linux-chrome-stable", () => {
     expect(resolveDefaultProfileForHost("linux", "x64")).toBe("linux-chrome-stable");
   });
@@ -87,7 +85,7 @@ describe("resolveDefaultProfileForHost — pure mapping table (task 0272)", () =
   });
 });
 
-describe("defaultProfileForHost — live wrapper (task 0272)", () => {
+describe("defaultProfileForHost — live wrapper", () => {
   // Stub `process.platform` / `process.arch` so the live wrapper exercises
   // the same table as the pure resolver. `Object.defineProperty` is the
   // standard Bun-test pattern (matches `proc-linux-server.test.ts`).
@@ -127,7 +125,7 @@ describe("defaultProfileForHost — live wrapper (task 0272)", () => {
   });
 });
 
-describe("unsupportedHostMessage — failure-mode diagnostic (task 0272)", () => {
+describe("unsupportedHostMessage — failure-mode diagnostic", () => {
   it("names the host platform + arch verbatim", () => {
     const msg = unsupportedHostMessage("freebsd", "x64");
     expect(msg).toContain("platform=freebsd");
@@ -153,7 +151,7 @@ describe("unsupportedHostMessage — failure-mode diagnostic (task 0272)", () =>
   });
 });
 
-describe("introspection contract — defaultProfileForHost is pure (task 0272)", () => {
+describe("introspection contract — defaultProfileForHost is pure", () => {
   it("returns the same value on repeated calls (no caching, no mutation)", () => {
     // The launcher consults this helper at every launch; pinning purity
     // here means a downstream `console.log(mochi.defaultProfileForHost())`

package/src/__tests__/dx-cluster.e2e.test.ts

@@ -1,5 +1,5 @@
 /**
- * Live conformance test for the DX cluster (task 0257).
+ * Live conformance test for the DX cluster.
  *
  * Gated by `MOCHI_E2E=1`. Drives a real Chromium-for-Testing through the
  * public mochi launch path to verify, end-to-end, that:
@@ -18,7 +18,6 @@
  * Budget: < 30 seconds.
  *
  * @see PLAN.md §14
- * @see tasks/0257-dx-cluster-cookies-storage-permissions.md
  */
 
 import { describe, expect, it } from "bun:test";

package/src/__tests__/geo-consistency.test.ts

@@ -6,7 +6,6 @@
  * Pure JS — no FFI, no CDP, no network. The {@link reconcileGeoConsistency}
  * function is a pure transform on `(matrix, geo, mode)`.
  *
- * @see tasks/0262-ip-tz-locale-exit-consistency.md
  * @see packages/core/src/geo-consistency.ts
  */
 

package/src/__tests__/geo-probe.test.ts

@@ -8,17 +8,18 @@
  *     / parser-null and respects the 4-attempt cap.
  *   - all-fail returns `null`.
  *
- * The probe's `fetch` injection seam is an internal — production wires it
- * to `@mochi.js/net`'s `fetch`, which carries the matrix's wreq preset.
+ * Post-0.7 the probe's `fetch` seam delegates to `globalThis.fetch` by
+ * default; production launch paths inject a `Session.fetch`-backed
+ * adapter so the probe rides Chromium's network stack (real Chrome JA4
+ * by definition).
  *
- * @see tasks/0262-ip-tz-locale-exit-consistency.md
  * @see packages/core/src/geo-probe.ts
  */
 
 import { describe, expect, it } from "bun:test";
 import { ADAPTERS, type ProbeFetch, probeExitGeo } from "../geo-probe";
 
-const MATRIX_STUB = { wreqPreset: "chrome_131_macos" };
+const MATRIX_STUB = {};
 
 /** Build a `ProbeFetch` that returns canned JSON for each URL. */
 function fakeFetch(
@@ -335,10 +336,10 @@ describe("probeExitGeo — strategy", () => {
     expect(calls).toBe(4);
   });
 
-  it("forwards proxy + matrix.wreqPreset to the fetch impl", async () => {
-    let captured: { url?: string; preset?: string; proxy?: string } = {};
+  it("forwards proxy diagnostic to the fetch impl", async () => {
+    let captured: { url?: string; proxy?: string } = {};
     const fetchSpy: ProbeFetch = async (url, init) => {
-      captured = { url, preset: init.preset, proxy: init.proxy };
+      captured = { url, proxy: init.proxy };
       return new Response(
         JSON.stringify({
           proxy: { ip: "1" },
@@ -349,22 +350,21 @@ describe("probeExitGeo — strategy", () => {
       );
     };
     await probeExitGeo({
-      matrix: { wreqPreset: "chrome_131_linux" },
+      matrix: MATRIX_STUB,
       proxy: "http://user:pass@proxy.example:8080",
       fetch: fetchSpy,
       shuffle: noShuffle,
       maxAttempts: 1,
       perEndpointTimeoutMs: 100,
     });
-    expect(captured.preset).toBe("chrome_131_linux");
     expect(captured.proxy).toBe("http://user:pass@proxy.example:8080");
   });
 
-  it("synchronous throw from fetch (e.g. dlopen failure) → null, NEVER propagates", async () => {
+  it("synchronous throw from fetch → null, NEVER propagates", async () => {
     const fetchSpy: ProbeFetch = () => {
-      // Simulate the cdylib-missing case: throws synchronously off the
-      // top of the body, before Promise.resolve.
-      throw new Error("dlopen: libmochi-net.dylib not found");
+      // Simulate a transport-level synchronous throw — e.g. a Session
+      // that's already been closed when the probe fires.
+      throw new Error("transport unavailable");
     };
     const geo = await probeExitGeo({
       matrix: MATRIX_STUB,

package/src/__tests__/init-injector.e2e.test.ts

@@ -16,7 +16,6 @@
  * Gated by `MOCHI_E2E=1`. Set `MOCHI_CHROMIUM_PATH` if needed.
  *
  * @see PLAN.md §8.4
- * @see tasks/0266-fetch-fulfill-init-script.md
  */
 
 import { describe, expect, it } from "bun:test";

package/src/__tests__/init-injector.test.ts

@@ -1,5 +1,5 @@
 /**
- * Unit tests for the init-injector building blocks (task 0266).
+ * Unit tests for the init-injector building blocks.
  *
  * Covers:
  *   - {@link rewriteCsp}: no-nonce / nonce / strict-dynamic / unsafe-inline
@@ -12,7 +12,6 @@
  *   - {@link wrapSelfRemovingPayload}: first statement is the self-remove +
  *     marker; the inner payload is left intact.
  *
- * @see tasks/0266-fetch-fulfill-init-script.md
  */
 
 import { describe, expect, it } from "bun:test";

package/src/__tests__/inject.test.ts

@@ -10,7 +10,6 @@
  * `MessageRouter`, so the test implicitly enforces those too.
  *
  * @see PLAN.md §12.1 — capture must run against bare Chromium.
- * @see tasks/0040-mochi-capture.md — `bypassInject: true` requirement.
  * @see tests/helpers/cdp-fixture.ts — shared helper consolidating fake-pipe boilerplate.
  */
 
@@ -129,7 +128,7 @@ describe("Session.bypassInject (PLAN.md §12.1, task 0040)", () => {
     expect(session._internalBypassInject()).toBe(true);
   });
 
-  it("with bypassInject omitted — Session installs the unified Fetch-domain injector instead of Page.addScriptToEvaluateOnNewDocument (task 0266)", async () => {
+  it("with bypassInject omitted — Session installs the unified Fetch-domain injector instead of Page.addScriptToEvaluateOnNewDocument", async () => {
     // Override the script identifier for this test — it asserts that the
     // dual-mechanism `addScriptToEvaluateOnNewDocument` call (commit 2 of
     // 0266) carries the wrapped matrix payload.

package/src/__tests__/page-dx-cluster.test.ts

@@ -1,5 +1,5 @@
 /**
- * Unit tests for the Page DX cluster (task 0257):
+ * Unit tests for the Page DX cluster:
  *   - `Page.localStorage.{get,set}`   → DOMStorage.getDOMStorageItems /
  *                                       DOMStorage.setDOMStorageItem.
  *   - `Page.sessionStorage.{get,set}` → same shape, `isLocalStorage: false`.
@@ -9,7 +9,6 @@
  * Driven against a hand-rolled fake CDP transport — same fixture pattern as
  * the cookies-jar tests, kept inline here so each test file stands alone.
  *
- * @see tasks/0257-dx-cluster-cookies-storage-permissions.md
  */
 
 import { afterEach, beforeEach, describe, expect, it } from "bun:test";
@@ -114,7 +113,7 @@ function wireOriginResolver(fake: FakeBrowser, origin: string): void {
   });
 }
 
-describe("Page.localStorage / Page.sessionStorage (task 0257)", () => {
+describe("Page.localStorage / Page.sessionStorage", () => {
   let fake: FakeBrowser;
   let router: MessageRouter;
   let page: Page;
@@ -224,7 +223,7 @@ describe("Page.localStorage / Page.sessionStorage (task 0257)", () => {
   });
 });
 
-describe("Page.grantAllPermissions (task 0257)", () => {
+describe("Page.grantAllPermissions", () => {
   let fake: FakeBrowser;
   let router: MessageRouter;
   let page: Page;

package/src/__tests__/piercing.test.ts

@@ -3,7 +3,7 @@
  * (`packages/core/src/page/piercing.ts`). Drives a hand-crafted
  * `PierceDomNode` tree that mirrors the CDP `DOM.getDocument({ depth:-1,
  * pierce:true })` shape — including a closed-shadow-rooted iframe, which is
- * the whole point of task 0253.
+ * the whole point of
  *
  * The findPiercingMatches output is verified by `backendNodeId`, the only
  * field the host-side `Page.querySelectorPiercing` cares about for the

package/src/__tests__/proc-linux-server.test.ts

@@ -1,6 +1,6 @@
 /**
  * Unit tests for the Linux-server environment auto-detection that drives
- * `LaunchOptions.headlessMode` defaulting (task 0258).
+ * `LaunchOptions.headlessMode` defaulting.
  *
  * Two layers under test:
  *
@@ -41,7 +41,7 @@ function probes(overrides: Partial<LinuxServerProbes> = {}): LinuxServerProbes {
   };
 }
 
-describe("detectLinuxServerEnv — server-no-display classifier (task 0258)", () => {
+describe("detectLinuxServerEnv — server-no-display classifier", () => {
   it("flags Linux + no DISPLAY + no WAYLAND_DISPLAY as serverNoDisplay=true", () => {
     const env = detectLinuxServerEnv(probes());
     expect(env.serverNoDisplay).toBe(true);
@@ -130,7 +130,7 @@ describe("detectLinuxServerEnv — server-no-display classifier (task 0258)", ()
   });
 });
 
-describe("resolveHeadlessMode — precedence table (task 0258)", () => {
+describe("resolveHeadlessMode — precedence table", () => {
   const SERVER_ENV = detectLinuxServerEnv(probes());
   const DEV_ENV = detectLinuxServerEnv(probes({ display: ":0" }));
 
@@ -198,7 +198,7 @@ describe("resolveHeadlessMode — precedence table (task 0258)", () => {
   });
 });
 
-describe("buildChromiumArgs — headlessMode dispatch (task 0258)", () => {
+describe("buildChromiumArgs — headlessMode dispatch", () => {
   function baseCfg(overrides: Partial<SpawnConfig> = {}): SpawnConfig {
     return { binary: FAKE_BINARY, headless: false, ...overrides };
   }

package/src/__tests__/proc.test.ts

@@ -4,7 +4,7 @@
  * spawn a real Chromium here; the goal is to lock the flag set against
  * regressions, particularly the matrix-derived `--lang=<locale>` flag that
  * closes the I-5 leak between Chromium's network-layer `Accept-Language`
- * header and the JS-layer `navigator.language(s)` spoof (task 0251).
+ * header and the JS-layer `navigator.language(s)` spoof.
  *
  * The flag is sourced from `MatrixV1.locale` (the canonical primary BCP-47
  * string) and MUST come from the matrix, never from the host OS.
@@ -75,7 +75,7 @@ describe("buildChromiumArgs / baseline", () => {
   });
 });
 
-describe("buildChromiumArgs / --lang (task 0251 — matrix.locale → Accept-Language)", () => {
+describe("buildChromiumArgs / --lang  (— matrix.locale → Accept-Language)", () => {
   it("appends --lang=<value> when locale is set", () => {
     const args = buildChromiumArgs(
       baseCfg({ locale: "en-US" }),
@@ -337,7 +337,7 @@ describe("buildChromiumArgs — task 0256 (hermetic-mode knob)", () => {
 });
 
 /**
- * Diagnostic-tail classifier — task 0259. Locks the two patterns we currently
+ * Diagnostic-tail classifier — Locks the two patterns we currently
  * surface (root-sandbox refusal and missing shared libs) against regressions
  * without spawning a real Chromium.
  */

package/src/__tests__/proxy-auth.test.ts

@@ -13,7 +13,6 @@
  *   - The defensive `Fetch.requestPaused` handler issues `Fetch.continueRequest`.
  *   - `dispose()` sends `Fetch.disable` and is idempotent.
  *
- * @see tasks/0160-proxy-auth-and-ci-fix.md
  */
 
 import { describe, expect, it } from "bun:test";
@@ -152,7 +151,7 @@ function makeRouter(): FakeRouter {
 }
 
 describe("installProxyAuth", () => {
-  it("sends Fetch.enable with handleAuthRequests:true and Document-first patterns (task 0266)", async () => {
+  it("sends Fetch.enable with handleAuthRequests:true and Document-first patterns", async () => {
     const f = makeRouter();
     const handle = await installProxyAuth(f.router, { username: "u", password: "p" });
     const enable = f.pipe.written.find((c) => c.parsed.method === "Fetch.enable");

package/src/__tests__/screenshot.e2e.test.ts

@@ -1,5 +1,5 @@
 /**
- * Live conformance test for `Page.screenshot` (task 0265).
+ * Live conformance test for `Page.screenshot`.
  *
  * Gated by `MOCHI_E2E=1` so the default `bun test` run stays fast and offline.
  * Spawns a real Chromium-for-Testing instance, navigates to a tiny data URL,

package/src/__tests__/screenshot.test.ts

@@ -1,5 +1,5 @@
 /**
- * Unit tests for `Page.screenshot` (task 0265).
+ * Unit tests for `Page.screenshot`.
  *
  * Exercises the CDP wire shape against a `MessageRouter` driven over a fake
  * pipe — no real Chromium spawn, no real `Session`. The router still applies

package/src/__tests__/window-size.e2e.test.ts

@@ -22,7 +22,6 @@
  *
  * Gated by `MOCHI_E2E=1`. Set `MOCHI_CHROMIUM_PATH` to a real binary.
  *
- * @see tasks/0252-window-size-flag-from-matrix.md
  * @see UDC `__init__.py:410-411`, UDC issue #2242
  */
 

package/src/cdp/types.ts

@@ -83,7 +83,6 @@ export interface DomNode {
  *
  * @see PLAN.md §8.2 — `DOM.getDocument` and `DOM.resolveNode` are not on the
  * forbidden list; both are fine to use.
- * @see tasks/0253-closed-shadow-piercing-locator.md
  */
 export interface PierceDomNode {
   nodeId: number;

package/src/default-profile.ts

@@ -1,6 +1,6 @@
 /**
  * Auto-pick the host-OS-matching profile when `LaunchOptions.profile` is
- * omitted (task 0272). The function below is the pure decision table the
+ * omitted. The function below is the pure decision table the
  * launcher consults; tests stub `(platform, arch)` and assert the mapping
  * without spinning a Chromium.
  *
@@ -17,7 +17,7 @@
  * by hand" into a default removes the entire class of "user accidentally
  * spoofed Windows from a Linux DC and looked weird to the WAF" failures —
  * the same argument that drove `detectLinuxServerEnv` for headless mode in
- * task 0259.
+ *
  *
  * ## Mapping
  *
@@ -38,12 +38,10 @@
  * The current profile catalog (`packages/profiles/data/`) ships
  * `mac-chrome-stable` as a darwin/arm64 capture (its `os.arch === "arm64"`
  * in `profile.json`). The mapping above still routes darwin/x64 to
- * `mac-chrome-stable` per task 0272's success criteria; users on Intel Macs
+ * `mac-chrome-stable`; users on Intel Macs
  * who want a strict arch match should pass `profile` explicitly until an
  * `mac-intel-chrome-stable` capture lands.
  *
- * @see tasks/0271-the-linux-os-thesis.md — the strategic thesis + evidence
- * @see tasks/0272-host-os-profile-auto-default.md — engineering brief
  */
 
 import type { ProfileId } from "./launch";
@@ -64,7 +62,7 @@ export function defaultProfileForHost(): ProfileId | null {
 /**
  * Internal pure resolver, exposed so the unit tests can drive the table
  * without stubbing global `process`. Mirrors the precedence-table style of
- * `resolveHeadlessMode` (task 0258).
+ * `resolveHeadlessMode`.
  *
  * @internal
  */
@@ -82,7 +80,7 @@ export function resolveDefaultProfileForHost(
 /**
  * The six real-device profile IDs that `defaultProfileForHost` can return,
  * surfaced by the launcher's failure-mode diagnostic. Order matches the
- * task 0272 brief verbatim so the user-facing message is stable.
+ * brief verbatim so the user-facing message is stable.
  *
  * @internal
  */
@@ -97,7 +95,7 @@ export const EXPLICIT_PROFILE_IDS = [
 
 /**
  * Build the precise diagnostic emitted when `profile` is omitted on an
- * unsupported host. Format pinned by task 0272 — keep stable so docs +
+ * unsupported host. Format pinned — keep stable so docs +
  * LLM-context blocks stay correct.
  *
  * @internal

package/src/geo-consistency.ts

@@ -11,7 +11,6 @@
  * + en-US looks like every Tor user.
  *
  * @see PLAN.md §9 — relational consistency, IP/TZ/Locale axis
- * @see tasks/0262-ip-tz-locale-exit-consistency.md
  */
 
 import type { MatrixV1 } from "@mochi.js/consistency";

package/src/geo-probe.ts

@@ -9,11 +9,13 @@
  * first half of the fix (the second half is {@link reconcileGeoConsistency}
  * in `launch.ts`).
  *
- * The probe issues a single GET through the same `wreq` preset the session
- * would use for user traffic, so the geolocation service sees the **same
- * JA4 / headers** as the actual page — the probe doesn't itself become
- * detectable. The probe respects the `proxy` option; if unset, the probe
- * goes direct (which is fine — the user's exit IP is the host's IP).
+ * Post-0.7 the probe rides Chromium itself — same network stack as
+ * `page.goto`, same TLS / H2 / JA4 by definition. The default `ProbeFetch`
+ * adapter delegates to `globalThis.fetch` so {@link probeExitGeo} can run
+ * in a test runner without requiring a live Session; production callers
+ * inject a `Session.fetch`-backed adapter via `launch.ts`. The probe
+ * respects the `proxy` option as a diagnostic-only field — Chromium picks
+ * up `--proxy-server` from the launch flags directly.
  *
  * ### Endpoint registry (verified working 2026-05-09)
  *
@@ -34,14 +36,12 @@
  * mode (default `privacy-fallback`).
  *
  * **No cross-session caching** — proxy IPs rotate; stale cache is worse
- * than no cache. (`docs/limits.md` — task 0262.)
+ * than no cache. (`docs/limits.md` —)
  *
  * @see PLAN.md §9 (relational consistency — IP/TZ/Locale axis)
- * @see tasks/0262-ip-tz-locale-exit-consistency.md
  */
 
 import type { MatrixV1 } from "@mochi.js/consistency";
-import { fetch as netFetch } from "@mochi.js/net";
 
 /**
  * Normalised geolocation derived from one of the probe endpoints. The
@@ -429,22 +429,30 @@ const DEFAULT_PER_ENDPOINT_TIMEOUT_MS = 2000;
 
 /**
  * Injection seam for the underlying HTTP transport. Production uses
- * `@mochi.js/net`'s `fetch` (so the probe carries the same JA4/headers as
- * user traffic). Tests inject a stub.
+ * `Session.fetch` (so the probe carries the same JA4/headers as user
+ * traffic — it IS the browser). Tests inject a stub.
+ *
+ * The `proxy` field is forwarded for diagnostic purposes only; the
+ * actual proxy egress is wired at the Chromium `--proxy-server` flag.
  *
  * @internal
  */
 export type ProbeFetch = (
   url: string,
-  init: { preset: string; proxy?: string; timeoutMs: number },
+  init: { proxy?: string; timeoutMs: number },
 ) => Promise<Response>;
 
 /** Options for {@link probeExitGeo}. */
 export interface ProbeOptions {
-  /** Optional outbound proxy URL — `user:pass@host:port` form is fine. */
+  /** Optional outbound proxy URL — diagnostic-only post-0.7. */
   readonly proxy?: string;
-  /** The matrix whose `wreqPreset` drives the TLS fingerprint of the probe. */
-  readonly matrix: Pick<MatrixV1, "wreqPreset">;
+  /**
+   * The matrix is retained on the API surface for forward-compat (so any
+   * future per-locale endpoint shuffle can read from it) and to keep
+   * call sites stable across the 0.6 → 0.7 transition. The probe itself
+   * no longer reads any field — Chromium owns the TLS fingerprint.
+   */
+  readonly matrix?: Partial<MatrixV1>;
   /**
    * Override the default 4-attempt cap. Tests use 2 to keep wall-time low;
    * production sticks with 4.
@@ -454,7 +462,9 @@ export interface ProbeOptions {
   readonly perEndpointTimeoutMs?: number;
   /**
    * Inject a custom `fetch` transport (for tests). Defaults to
-   * `@mochi.js/net`'s `fetch` so the probe shares the session's TLS preset.
+   * `globalThis.fetch` (test/standalone use) — production calls override
+   * this with a `Session.fetch`-backed adapter so the probe rides the
+   * same Chromium network stack as user traffic.
    * @internal
    */
   readonly fetch?: ProbeFetch;
@@ -467,27 +477,23 @@ export interface ProbeOptions {
 }
 
 /**
- * Default `ProbeFetch` — issues the request through `@mochi.js/net`'s
- * one-shot `fetch` so the geo service sees the same JA4 as user traffic.
+ * Default `ProbeFetch` — falls back to `globalThis.fetch` so the probe
+ * works standalone in tests without a live Session. Production launch
+ * paths inject a `Session.fetch`-backed adapter so the probe shares
+ * Chromium's network stack (and therefore JA4) with user traffic.
  *
- * The per-call timeout is mapped onto the wreq `timeoutMs` field; we do
- * NOT also wrap with `AbortController` because Bun's `Response` from the
- * FFI path is synchronous and we want the wreq layer to own the timeout
- * (a layered `AbortController` would race with the Rust handle drop).
+ * The per-call timeout is enforced via `AbortController`.
  */
 const defaultFetch: ProbeFetch = (url, init) => {
-  return Promise.resolve(
-    netFetch(url, {
-      preset: init.preset,
-      ...(init.proxy !== undefined ? { proxy: init.proxy } : {}),
+  const ac = new AbortController();
+  const timer = setTimeout(() => ac.abort(), init.timeoutMs);
+  return globalThis
+    .fetch(url, {
       method: "GET",
       headers: { Accept: "application/json" },
-      timeoutMs: init.timeoutMs,
-      // Connect timeout matches the per-endpoint cap — a stuck SYN is the
-      // dominant failure mode against rate-limited endpoints.
-      connectTimeoutMs: init.timeoutMs,
-    }),
-  );
+      signal: ac.signal,
+    })
+    .finally(() => clearTimeout(timer));
 };
 
 /** Fisher-Yates shuffle — non-deterministic, Math.random-backed. */
@@ -570,7 +576,6 @@ export async function probeExitGeo(opts: ProbeOptions): Promise<ExitGeo | null>
       new Promise<Response>((resolve, reject) => {
         try {
           fetchFn(adapter.url, {
-            preset: opts.matrix.wreqPreset,
             ...(opts.proxy !== undefined ? { proxy: opts.proxy } : {}),
             timeoutMs: perEndpointTimeoutMs,
           }).then(resolve, reject);

package/src/index.ts

@@ -20,7 +20,7 @@ export {
   type Unsubscribe,
 } from "./cdp/router";
 // Auto-pick host-OS-matching profile when `LaunchOptions.profile` is omitted
-// (task 0272 — paired with the strategic thesis in task 0271).
+//  (— paired with the strategic thesis in task 0271).
 export {
   defaultProfileForHost,
   EXPLICIT_PROFILE_IDS,