@nuanu-ai/agentbrowse 0.2.46 → 0.2.48

package/dist/commands/observe.test-harness.d.ts

@@ -3,12 +3,18 @@ import type { BrowseSession } from '../session.js';
 type ViMock = ReturnType<typeof vi.fn>;
 export declare const connectOverCDPMock: ViMock;
 export declare const connectStagehandMock: ViMock;
+export declare const appendCommandLifecycleEventBestEffortMock: ViMock;
+export declare const appendStepChildSpanMock: ViMock;
+export declare const captureStepSnapshotBestEffortMock: ViMock;
+export declare const exportRunStepToOtlpHttpJsonBestEffortMock: ViMock;
+export declare const finishRunStepMock: ViMock;
 export declare const outputContractFailureMock: ViMock;
 export declare const outputErrorMock: ViMock;
 export declare const outputFailureMock: ViMock;
 export declare const outputJSONMock: ViMock;
 export declare const rerankDomTargetsForGoalMock: ViMock;
 export declare const saveSessionMock: ViMock;
+export declare const startRunStepMock: ViMock;
 export declare const outputJSONRawPayloads: unknown[];
 export declare const observe: typeof import("./observe.js").observe, __testDomTargetCollection: {
     collectDomTargetsFromDocument: (context: {
@@ -30,6 +36,7 @@ export declare const observe: typeof import("./observe.js").observe, __testDomTa
         inputName?: string;
         inputType?: string;
         autocomplete?: string;
+        ariaAutocomplete?: string;
         value?: string;
         text?: string;
         currentValue?: string;
@@ -42,6 +49,7 @@ export declare const observe: typeof import("./observe.js").observe, __testDomTa
         inputName?: string;
         inputType?: string;
         autocomplete?: string;
+        ariaAutocomplete?: string;
         value?: string;
         text?: string;
         currentValue?: string;

package/dist/commands/observe.test-harness.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"observe.test-harness.d.ts","sourceRoot":"","sources":["../../src/commands/observe.test-harness.ts"],"names":[],"mappings":"AAAA,OAAO,EAAyB,EAAE,EAAE,MAAM,QAAQ,CAAC;AACnD,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAGnD,KAAK,MAAM,GAAG,UAAU,CAAC,OAAO,EAAE,CAAC,EAAE,CAAC,CAAC;AA0EvC,eAAO,MAAM,kBAAkB,EAAE,MAAiC,CAAC;AACnE,eAAO,MAAM,oBAAoB,EAAE,MAAmC,CAAC;AACvE,eAAO,MAAM,yBAAyB,EAAE,MAAwC,CAAC;AACjF,eAAO,MAAM,eAAe,EAAE,MAA8B,CAAC;AAC7D,eAAO,MAAM,iBAAiB,EAAE,MAAgC,CAAC;AACjE,eAAO,MAAM,cAAc,EAAE,MAA6B,CAAC;AAC3D,eAAO,MAAM,2BAA2B,EAAE,MAA0C,CAAC;AACrF,eAAO,MAAM,eAAe,EAAE,MAA8B,CAAC;AAC7D,eAAO,MAAM,qBAAqB,EAAE,OAAO,EAAgC,CAAC;AA+B5E,eAAO,MAAQ,OAAO,yCAAE,yBAAyB;;;;iBAqE6vX,CAAC;gBAAwB,CAAC;;;;;GArErxX,yBAAyB;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAE3E,CAAC;AACF,eAAO,MAAQ,0BAA0B;;;;;CAA+C,CAAC;AAMzF,wBAAgB,WAAW,IAAI,aAAa,CAW3C;AAYD,wBAAgB,oBAAoB,CAAC,CAAC,SAAS,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EACpE,IAAI,EAAE,CAAC,EACP,YAAY,SAAkC,GAC7C,CAAC,GAAG;IAAE,OAAO,EAAE,UAAU,CAAC,OAAO,EAAE,CAAC,EAAE,CAAC,CAAA;CAAE,CAM3C;AAED,wBAAgB,uBAAuB,IAAI,IAAI,CAyB9C"}
+{"version":3,"file":"observe.test-harness.d.ts","sourceRoot":"","sources":["../../src/commands/observe.test-harness.ts"],"names":[],"mappings":"AAAA,OAAO,EAAyB,EAAE,EAAE,MAAM,QAAQ,CAAC;AACnD,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAGnD,KAAK,MAAM,GAAG,UAAU,CAAC,OAAO,EAAE,CAAC,EAAE,CAAC,CAAC;AAuFvC,eAAO,MAAM,kBAAkB,EAAE,MAAiC,CAAC;AACnE,eAAO,MAAM,oBAAoB,EAAE,MAAmC,CAAC;AACvE,eAAO,MAAM,yCAAyC,EAAE,MACP,CAAC;AAClD,eAAO,MAAM,uBAAuB,EAAE,MAAsC,CAAC;AAC7E,eAAO,MAAM,iCAAiC,EAAE,MAAgD,CAAC;AACjG,eAAO,MAAM,yCAAyC,EAAE,MACP,CAAC;AAClD,eAAO,MAAM,iBAAiB,EAAE,MAAgC,CAAC;AACjE,eAAO,MAAM,yBAAyB,EAAE,MAAwC,CAAC;AACjF,eAAO,MAAM,eAAe,EAAE,MAA8B,CAAC;AAC7D,eAAO,MAAM,iBAAiB,EAAE,MAAgC,CAAC;AACjE,eAAO,MAAM,cAAc,EAAE,MAA6B,CAAC;AAC3D,eAAO,MAAM,2BAA2B,EAAE,MAA0C,CAAC;AACrF,eAAO,MAAM,eAAe,EAAE,MAA8B,CAAC;AAC7D,eAAO,MAAM,gBAAgB,EAAE,MAA+B,CAAC;AAC/D,eAAO,MAAM,qBAAqB,EAAE,OAAO,EAAgC,CAAC;AA8C5E,eAAO,MAAQ,OAAO,yCAAE,yBAAyB;;;;iBAqFoga,CAAC;gBAAwB,CAAC;;;;;GArF5ha,yBAAyB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAE3E,CAAC;AACF,eAAO,MAAQ,0BAA0B;;;;;CAA+C,CAAC;AAMzF,wBAAgB,WAAW,IAAI,aAAa,CAY3C;AAYD,wBAAgB,oBAAoB,CAAC,CAAC,SAAS,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EACpE,IAAI,EAAE,CAAC,EACP,YAAY,SAAkC,GAC7C,CAAC,GAAG;IAAE,OAAO,EAAE,UAAU,CAAC,OAAO,EAAE,CAAC,EAAE,CAAC,CAAA;CAAE,CAM3C;AAED,wBAAgB,uBAAuB,IAAI,IAAI,CAwC9C"}

package/dist/commands/observe.test-harness.js

@@ -1,5 +1,5 @@
 import { afterEach, beforeEach, vi } from 'vitest';
-import { registerPage } from '../runtime-state.js';
+import { registerPage } from '../runtime-page-state.js';
 function flattenObservedTargetsForTests(payload) {
     return payload.scopes?.flatMap((scope) => scope.targets ?? []) ?? [];
 }
@@ -22,8 +22,16 @@ function normalizeObservedOutputForTests(payload) {
 const mocks = vi.hoisted(() => {
     const outputJSONRawPayloads = [];
     return {
+        appendCommandLifecycleEventBestEffortMock: vi.fn(),
+        appendStepChildSpanMock: vi.fn(),
+        captureStepSnapshotBestEffortMock: vi.fn(),
         connectOverCDPMock: vi.fn(),
         connectStagehandMock: vi.fn(),
+        exportRunStepToOtlpHttpJsonBestEffortMock: vi.fn(async () => ({
+            attempted: false,
+            reason: 'config_missing',
+        })),
+        finishRunStepMock: vi.fn(),
         outputContractFailureMock: vi.fn((payload) => {
             throw new Error(`outputContractFailure:${JSON.stringify(payload)}`);
         }),
@@ -49,16 +57,27 @@ const mocks = vi.hoisted(() => {
         }),
         rerankDomTargetsForGoalMock: vi.fn(async (..._args) => []),
         saveSessionMock: vi.fn(),
+        startRunStepMock: vi.fn((input) => ({
+            stepId: 'step_observe_1',
+            runId: input?.runId ?? 'run_123',
+            command: (input?.command ?? 'observe'),
+        })),
     };
 });
 export const connectOverCDPMock = mocks.connectOverCDPMock;
 export const connectStagehandMock = mocks.connectStagehandMock;
+export const appendCommandLifecycleEventBestEffortMock = mocks.appendCommandLifecycleEventBestEffortMock;
+export const appendStepChildSpanMock = mocks.appendStepChildSpanMock;
+export const captureStepSnapshotBestEffortMock = mocks.captureStepSnapshotBestEffortMock;
+export const exportRunStepToOtlpHttpJsonBestEffortMock = mocks.exportRunStepToOtlpHttpJsonBestEffortMock;
+export const finishRunStepMock = mocks.finishRunStepMock;
 export const outputContractFailureMock = mocks.outputContractFailureMock;
 export const outputErrorMock = mocks.outputErrorMock;
 export const outputFailureMock = mocks.outputFailureMock;
 export const outputJSONMock = mocks.outputJSONMock;
 export const rerankDomTargetsForGoalMock = mocks.rerankDomTargetsForGoalMock;
 export const saveSessionMock = mocks.saveSessionMock;
+export const startRunStepMock = mocks.startRunStepMock;
 export const outputJSONRawPayloads = mocks.outputJSONRawPayloads;
 vi.mock('playwright-core', () => ({
     chromium: {
@@ -77,6 +96,18 @@ vi.mock('../output.js', () => ({
 vi.mock('./semantic-observe.js', () => ({
     rerankDomTargetsForGoal: rerankDomTargetsForGoalMock,
 }));
+vi.mock('../run-store.js', () => ({
+    appendStepChildSpan: appendStepChildSpanMock,
+    finishRunStep: finishRunStepMock,
+    startRunStep: startRunStepMock,
+}));
+vi.mock('../run-observability.js', () => ({
+    appendCommandLifecycleEventBestEffort: appendCommandLifecycleEventBestEffortMock,
+    captureStepSnapshotBestEffort: captureStepSnapshotBestEffortMock,
+}));
+vi.mock('../otel-exporter.js', () => ({
+    exportRunStepToOtlpHttpJsonBestEffort: exportRunStepToOtlpHttpJsonBestEffortMock,
+}));
 vi.mock('../session.js', async () => {
     const actual = await vi.importActual('../session.js');
     return {
@@ -93,6 +124,7 @@ export function makeSession() {
     const session = {
         cdpUrl: 'ws://localhost:9222/devtools/browser/test',
         pid: 1,
+        activeRunId: 'run_123',
         launchedAt: new Date(0).toISOString(),
     };
     registerPage(session, {
@@ -119,8 +151,17 @@ export function withStagehandLocator(page, domSignature = 'button|button|Observe
 }
 export function installObserveTestHooks() {
     beforeEach(() => {
+        appendCommandLifecycleEventBestEffortMock.mockReset();
+        appendStepChildSpanMock.mockReset();
+        captureStepSnapshotBestEffortMock.mockReset();
         connectOverCDPMock.mockReset();
         connectStagehandMock.mockReset();
+        exportRunStepToOtlpHttpJsonBestEffortMock.mockReset();
+        exportRunStepToOtlpHttpJsonBestEffortMock.mockResolvedValue({
+            attempted: false,
+            reason: 'config_missing',
+        });
+        finishRunStepMock.mockReset();
         outputContractFailureMock.mockReset();
         outputContractFailureMock.mockImplementation((payload) => {
             throw new Error(`outputContractFailure:${JSON.stringify(payload)}`);
@@ -135,6 +176,12 @@ export function installObserveTestHooks() {
         rerankDomTargetsForGoalMock.mockReset();
         rerankDomTargetsForGoalMock.mockResolvedValue([]);
         saveSessionMock.mockReset();
+        startRunStepMock.mockReset();
+        startRunStepMock.mockImplementation((input) => ({
+            stepId: 'step_observe_1',
+            runId: input?.runId ?? 'run_123',
+            command: (input?.command ?? 'observe'),
+        }));
     });
     afterEach(() => {
         globalThis.fetch = originalFetch;

package/dist/commands/poll-secret.d.ts

@@ -0,0 +1,6 @@
+/**
+ * browse poll-secret <requestId> — Poll one secret request state without blocking or claiming values.
+ */
+import type { BrowseSession } from '../session.js';
+export declare function pollSecret(session: BrowseSession, requestId: string): Promise<void>;
+//# sourceMappingURL=poll-secret.d.ts.map

package/dist/commands/poll-secret.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"poll-secret.d.ts","sourceRoot":"","sources":["../../src/commands/poll-secret.ts"],"names":[],"mappings":"AAAA;;GAEG;AAWH,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AA6GnD,wBAAsB,UAAU,CAAC,OAAO,EAAE,aAAa,EAAE,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CA6GzF"}

package/dist/commands/poll-secret.js

@@ -0,0 +1,159 @@
+/**
+ * browse poll-secret <requestId> — Poll one secret request state without blocking or claiming values.
+ */
+import { outputFailure, outputJSON } from '../output.js';
+import { withApiTraceContext } from '../command-api-tracing.js';
+import { finishRunStep, startRunStep } from '../run-store.js';
+import { exportRunStepToOtlpHttpJsonBestEffort } from '../otel-exporter.js';
+import { appendCommandLifecycleEventBestEffort, captureStepSnapshotBestEffort, } from '../run-observability.js';
+import { saveSecretRequestSnapshot } from '../runtime-protected-state.js';
+import { saveSession } from '../session.js';
+import { describeSecretRequestStatus, serializeSecretRequest, } from '../secrets/request-output.js';
+import { getSecretBackend } from '../secrets/backend.js';
+function finalizePollSecretStepBestEffort(runId, stepId, options) {
+    if (!runId || !stepId) {
+        return;
+    }
+    try {
+        finishRunStep({
+            runId,
+            stepId,
+            ...options,
+        });
+    }
+    catch {
+    }
+}
+async function emitPollSecretFailure(session, runId, stepId, payload, options = {}) {
+    const step = runId && stepId ? { runId, stepId, command: 'poll-secret' } : null;
+    captureStepSnapshotBestEffort({
+        session,
+        step,
+        phase: 'point-in-time',
+        pageRef: options.pageRef ?? session.runtime?.currentPageRef,
+    });
+    appendCommandLifecycleEventBestEffort({
+        step,
+        phase: 'failed',
+        attributes: {
+            outcomeType: typeof payload.outcomeType === 'string' ? payload.outcomeType : payload.error,
+            pageRef: options.pageRef,
+            requestId: options.requestId,
+            reason: typeof payload.reason === 'string' ? payload.reason : payload.error,
+        },
+    });
+    finalizePollSecretStepBestEffort(runId, stepId, {
+        success: false,
+        outcomeType: typeof payload.outcomeType === 'string' ? payload.outcomeType : payload.error,
+        message: typeof payload.message === 'string' ? payload.message : payload.error,
+        reason: typeof payload.reason === 'string' ? payload.reason : payload.error,
+    });
+    await exportRunStepToOtlpHttpJsonBestEffort(runId, stepId);
+    return outputFailure(payload);
+}
+async function emitPollSecretSuccess(session, runId, stepId, payload, defaultOutcomeType, options = {}) {
+    const step = runId && stepId ? { runId, stepId, command: 'poll-secret' } : null;
+    captureStepSnapshotBestEffort({
+        session,
+        step,
+        phase: 'after',
+        pageRef: options.pageRef ?? session.runtime?.currentPageRef,
+    });
+    appendCommandLifecycleEventBestEffort({
+        step,
+        phase: 'completed',
+        attributes: {
+            outcomeType: typeof payload.outcomeType === 'string' ? payload.outcomeType : defaultOutcomeType,
+            pageRef: options.pageRef,
+            requestId: options.requestId,
+        },
+    });
+    finalizePollSecretStepBestEffort(runId, stepId, {
+        success: true,
+        outcomeType: typeof payload.outcomeType === 'string' ? payload.outcomeType : defaultOutcomeType,
+        message: typeof payload.message === 'string' ? payload.message : 'Protected secret request polled.',
+        reason: typeof payload.reason === 'string' ? payload.reason : undefined,
+    });
+    await exportRunStepToOtlpHttpJsonBestEffort(runId, stepId);
+    return outputJSON(payload);
+}
+export async function pollSecret(session, requestId) {
+    const pollSecretStep = session.activeRunId
+        ? startRunStep({
+            runId: session.activeRunId,
+            command: 'poll-secret',
+            refs: {
+                requestId,
+            },
+            protectedStep: true,
+        })
+        : null;
+    const pollSecretStepHandle = session.activeRunId && pollSecretStep?.stepId
+        ? {
+            runId: session.activeRunId,
+            stepId: pollSecretStep.stepId,
+            command: 'poll-secret',
+        }
+        : null;
+    captureStepSnapshotBestEffort({
+        session,
+        step: pollSecretStepHandle,
+        phase: 'before',
+        pageRef: session.runtime?.currentPageRef,
+    });
+    appendCommandLifecycleEventBestEffort({
+        step: pollSecretStepHandle,
+        phase: 'started',
+        attributes: {
+            requestId,
+            pageRef: session.runtime?.currentPageRef,
+        },
+    });
+    return withApiTraceContext({
+        runId: session.activeRunId,
+        stepId: pollSecretStep?.stepId,
+        command: 'poll-secret',
+    }, async () => {
+        if (!session.intentSessionId) {
+            return emitPollSecretFailure(session, session.activeRunId, pollSecretStep?.stepId, {
+                error: 'workflow_session_unavailable',
+                outcomeType: 'blocked',
+                message: 'Protected secret request polling failed because no active workflow session is bound to this browser.',
+                reason: 'Run start-session first so AgentBrowse has a workflow session for secret requests.',
+                requestId,
+            }, {
+                requestId,
+            });
+        }
+        const result = await getSecretBackend().getSecretRequest(session.intentSessionId, requestId);
+        if (!result) {
+            return emitPollSecretFailure(session, session.activeRunId, pollSecretStep?.stepId, {
+                error: 'secret_request_not_found',
+                message: 'Protected secret request lookup failed because the requested request does not exist.',
+                outcomeType: 'blocked',
+                reason: 'The provided requestId was not found in AgentPay.',
+                requestId,
+            }, {
+                requestId,
+            });
+        }
+        const snapshot = saveSecretRequestSnapshot(session, result.snapshot);
+        session.intentSessionId = result.session.sessionId;
+        session.currentRequestId = result.session.currentRequestId ?? undefined;
+        session.lastKnownStatus = result.session.status;
+        session.lastEventSeq = result.session.lastEventSeq;
+        saveSession(session);
+        const statusContract = describeSecretRequestStatus(snapshot.status, snapshot.requestType);
+        return emitPollSecretSuccess(session, session.activeRunId, pollSecretStep?.stepId, {
+            success: true,
+            ...serializeSecretRequest(snapshot),
+            ...(statusContract.outcomeType ? { outcomeType: statusContract.outcomeType } : {}),
+            message: statusContract.message,
+            reason: statusContract.reason,
+            ...(statusContract.nextAction ? { nextAction: statusContract.nextAction } : {}),
+        }, snapshot.status === 'fulfilled' ? 'secret_request_ready_to_fill' : 'secret_request_polled', {
+            pageRef: snapshot.pageRef,
+            requestId,
+        });
+    });
+}

package/dist/commands/request-secret.d.ts

@@ -0,0 +1,6 @@
+/**
+ * browse request-secret <fillRef> <storedSecretRef> — Create or reuse a session-bound secret request.
+ */
+import type { BrowseSession } from '../session.js';
+export declare function requestSecret(session: BrowseSession, fillRef: string, storedSecretRef: string, merchantName: string): Promise<void>;
+//# sourceMappingURL=request-secret.d.ts.map

package/dist/commands/request-secret.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"request-secret.d.ts","sourceRoot":"","sources":["../../src/commands/request-secret.ts"],"names":[],"mappings":"AAAA;;GAEG;AAUH,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AA+KnD,wBAAsB,aAAa,CACjC,OAAO,EAAE,aAAa,EACtB,OAAO,EAAE,MAAM,EACf,eAAe,EAAE,MAAM,EACvB,YAAY,EAAE,MAAM,GACnB,OAAO,CAAC,IAAI,CAAC,CAwNf"}

package/dist/commands/request-secret.js

@@ -0,0 +1,284 @@
+/**
+ * browse request-secret <fillRef> <storedSecretRef> — Create or reuse a session-bound secret request.
+ */
+import { outputFailure, outputJSON } from '../output.js';
+import { withApiTraceContext } from '../command-api-tracing.js';
+import { finishRunStep, startRunStep } from '../run-store.js';
+import { exportRunStepToOtlpHttpJsonBestEffort } from '../otel-exporter.js';
+import { appendCommandLifecycleEventBestEffort, captureStepSnapshotBestEffort, } from '../run-observability.js';
+import { getFillableForm, saveSecretRequestSnapshot } from '../runtime-protected-state.js';
+import { saveSession } from '../session.js';
+import { tryResolveCatalogHost } from '../secrets/catalog-sync.js';
+import { describeSecretRequestStatus, serializeSecretRequest, } from '../secrets/request-output.js';
+import { getSecretBackend } from '../secrets/backend.js';
+function fillableFormPresencePayload(fillableForm) {
+    return {
+        fillableFormPresence: fillableForm.presence ?? 'present',
+    };
+}
+function finalizeRequestSecretStepBestEffort(runId, stepId, options) {
+    if (!runId || !stepId) {
+        return;
+    }
+    try {
+        finishRunStep({
+            runId,
+            stepId,
+            ...options,
+        });
+    }
+    catch {
+    }
+}
+async function emitRequestSecretFailure(session, runId, stepId, payload, options = {}) {
+    const step = runId && stepId ? { runId, stepId, command: 'request-secret' } : null;
+    captureStepSnapshotBestEffort({
+        session,
+        step,
+        phase: 'point-in-time',
+        pageRef: options.pageRef ?? session.runtime?.currentPageRef,
+    });
+    appendCommandLifecycleEventBestEffort({
+        step,
+        phase: 'failed',
+        attributes: {
+            outcomeType: typeof payload.outcomeType === 'string' ? payload.outcomeType : payload.error,
+            pageRef: options.pageRef,
+            fillRef: options.fillRef,
+            storedSecretRef: options.storedSecretRef,
+            reason: typeof payload.reason === 'string' ? payload.reason : payload.error,
+        },
+    });
+    finalizeRequestSecretStepBestEffort(runId, stepId, {
+        success: false,
+        outcomeType: typeof payload.outcomeType === 'string' ? payload.outcomeType : payload.error,
+        message: typeof payload.message === 'string'
+            ? payload.message
+            : 'Protected secret request failed.',
+        reason: typeof payload.reason === 'string' ? payload.reason : payload.error,
+    });
+    await exportRunStepToOtlpHttpJsonBestEffort(runId, stepId);
+    return outputFailure(payload);
+}
+async function emitRequestSecretSuccess(session, runId, stepId, payload, options = {}) {
+    const step = runId && stepId ? { runId, stepId, command: 'request-secret' } : null;
+    captureStepSnapshotBestEffort({
+        session,
+        step,
+        phase: 'after',
+        pageRef: options.pageRef ?? session.runtime?.currentPageRef,
+    });
+    appendCommandLifecycleEventBestEffort({
+        step,
+        phase: 'completed',
+        attributes: {
+            outcomeType: typeof payload.outcomeType === 'string' ? payload.outcomeType : 'secret_request_created',
+            pageRef: options.pageRef,
+            fillRef: options.fillRef,
+            storedSecretRef: options.storedSecretRef,
+            requestId: options.requestId,
+        },
+    });
+    finalizeRequestSecretStepBestEffort(runId, stepId, {
+        success: true,
+        outcomeType: typeof payload.outcomeType === 'string' ? payload.outcomeType : 'secret_request_created',
+        message: typeof payload.message === 'string' ? payload.message : 'Protected secret request created.',
+        reason: typeof payload.reason === 'string' ? payload.reason : undefined,
+    });
+    await exportRunStepToOtlpHttpJsonBestEffort(runId, stepId);
+    return outputJSON(payload);
+}
+function secretFieldType(fieldKey) {
+    if (fieldKey === 'password' || fieldKey === 'cvv') {
+        return 'secret';
+    }
+    if (fieldKey === 'date_of_birth' || fieldKey === 'issue_date' || fieldKey === 'expiry_date') {
+        return 'date';
+    }
+    if (fieldKey === 'exp_month' || fieldKey === 'exp_year') {
+        return 'number';
+    }
+    return 'text';
+}
+function buildSecretHintFields(fillableForm, storedSecret) {
+    const allowedFieldKeys = storedSecret.fieldKeys && storedSecret.fieldKeys.length > 0
+        ? new Set(storedSecret.fieldKeys)
+        : null;
+    return fillableForm.fields
+        .filter((field) => !allowedFieldKeys || allowedFieldKeys.has(field.fieldKey))
+        .map((field) => ({
+        key: field.fieldKey,
+        ...(field.label ? { label: field.label } : {}),
+        ...(secretFieldType(field.fieldKey) ? { type: secretFieldType(field.fieldKey) } : {}),
+        required: field.required !== false,
+    }));
+}
+function persistSecretRequestState(session, result) {
+    const snapshot = saveSecretRequestSnapshot(session, result.snapshot);
+    session.intentSessionId = result.session.sessionId;
+    session.currentRequestId = result.session.currentRequestId ?? undefined;
+    session.lastKnownStatus = result.session.status;
+    session.lastEventSeq = result.session.lastEventSeq;
+    saveSession(session);
+    return snapshot;
+}
+export async function requestSecret(session, fillRef, storedSecretRef, merchantName) {
+    const requestSecretStep = session.activeRunId
+        ? startRunStep({
+            runId: session.activeRunId,
+            command: 'request-secret',
+            input: {
+                storedSecretRef,
+                merchantName,
+            },
+            refs: {
+                fillRef,
+            },
+            protectedStep: true,
+        })
+        : null;
+    const requestSecretStepHandle = session.activeRunId && requestSecretStep?.stepId
+        ? {
+            runId: session.activeRunId,
+            stepId: requestSecretStep.stepId,
+            command: 'request-secret',
+        }
+        : null;
+    captureStepSnapshotBestEffort({
+        session,
+        step: requestSecretStepHandle,
+        phase: 'before',
+        pageRef: session.runtime?.currentPageRef,
+    });
+    appendCommandLifecycleEventBestEffort({
+        step: requestSecretStepHandle,
+        phase: 'started',
+        attributes: {
+            fillRef,
+            storedSecretRef,
+            pageRef: session.runtime?.currentPageRef,
+        },
+    });
+    return withApiTraceContext({
+        runId: session.activeRunId,
+        stepId: requestSecretStep?.stepId,
+        command: 'request-secret',
+    }, async () => {
+        if (!session.intentSessionId) {
+            return emitRequestSecretFailure(session, session.activeRunId, requestSecretStep?.stepId, {
+                error: 'workflow_session_unavailable',
+                outcomeType: 'blocked',
+                message: 'Protected secret request was not created because no active workflow session is bound to this browser.',
+                reason: 'Run start-session first so AgentBrowse has a workflow session for secret requests.',
+                fillRef,
+                storedSecretRef,
+            }, {
+                fillRef,
+                storedSecretRef,
+            });
+        }
+        const fillableForm = getFillableForm(session, fillRef);
+        if (!fillableForm) {
+            return emitRequestSecretFailure(session, session.activeRunId, requestSecretStep?.stepId, {
+                error: 'unknown_fill_ref',
+                outcomeType: 'blocked',
+                message: 'Protected secret request was not created because the requested fill reference is unknown.',
+                reason: 'The provided fillRef does not match any currently observed protected fill target.',
+                fillRef,
+            }, {
+                fillRef,
+                storedSecretRef,
+            });
+        }
+        if (fillableForm.presence === 'absent') {
+            return emitRequestSecretFailure(session, session.activeRunId, requestSecretStep?.stepId, {
+                error: 'fillable_form_absent',
+                outcomeType: 'blocked',
+                message: 'Protected secret request was not created because the requested fill target is no longer present on the page.',
+                reason: 'AgentBrowse already observed this protected fill target as absent, so a new observe pass is required before requesting a secret.',
+                fillRef,
+                storedSecretRef,
+                ...fillableFormPresencePayload(fillableForm),
+            }, {
+                pageRef: fillableForm.pageRef,
+                fillRef,
+                storedSecretRef,
+            });
+        }
+        const storedSecret = fillableForm.storedSecretCandidates.find((candidate) => candidate.storedSecretRef === storedSecretRef);
+        if (!storedSecret) {
+            return emitRequestSecretFailure(session, session.activeRunId, requestSecretStep?.stepId, {
+                error: 'stored_secret_not_available_for_fill_ref',
+                outcomeType: 'blocked',
+                message: 'Protected secret request was not created because this stored secret is not available for the requested fill target.',
+                reason: 'The provided storedSecretRef is not a candidate for the requested protected fill target.',
+                fillRef,
+                storedSecretRef,
+                ...fillableFormPresencePayload(fillableForm),
+            }, {
+                pageRef: fillableForm.pageRef,
+                fillRef,
+                storedSecretRef,
+            });
+        }
+        const pageState = session.runtime?.pages?.[fillableForm.pageRef];
+        const pageUrl = pageState?.url;
+        const host = tryResolveCatalogHost(pageUrl);
+        if (!host) {
+            return emitRequestSecretFailure(session, session.activeRunId, requestSecretStep?.stepId, {
+                error: 'secret_request_host_resolution_failed',
+                outcomeType: 'blocked',
+                message: 'Protected secret request was not created because AgentBrowse could not determine the current site host.',
+                reason: 'The current page URL did not resolve to a usable host for secret request creation.',
+                fillRef,
+                storedSecretRef,
+                ...fillableFormPresencePayload(fillableForm),
+            }, {
+                pageRef: fillableForm.pageRef,
+                fillRef,
+                storedSecretRef,
+            });
+        }
+        const result = await getSecretBackend().createOrReuseSecretRequest({
+            sessionId: session.intentSessionId,
+            clientRequestId: requestSecretStep?.stepId ?? `request-secret-${Date.now()}`,
+            fillRef,
+            purpose: fillableForm.purpose,
+            merchantName,
+            page: {
+                ref: fillableForm.pageRef,
+                ...(pageState?.url ? { url: pageState.url } : {}),
+                ...(pageState?.title ? { title: pageState.title } : {}),
+            },
+            secretHint: {
+                storedSecretRef,
+                credentialName: storedSecret.displayName,
+                kind: storedSecret.kind,
+                host,
+                ...(fillableForm.scopeRef ? { scopeRef: fillableForm.scopeRef } : {}),
+                fields: buildSecretHintFields(fillableForm, storedSecret),
+            },
+        });
+        const snapshot = persistSecretRequestState(session, result);
+        const statusContract = describeSecretRequestStatus(snapshot.status, snapshot.requestType);
+        const reasonPrefix = result.reused
+            ? 'AgentBrowse reused an existing secret request for this fill target.'
+            : 'AgentBrowse created a new secret request for this fill target.';
+        return emitRequestSecretSuccess(session, session.activeRunId, requestSecretStep?.stepId, {
+            success: true,
+            ...fillableFormPresencePayload(fillableForm),
+            ...serializeSecretRequest(snapshot),
+            reused: result.reused,
+            ...(result.duplicate ? { duplicate: true } : {}),
+            ...(statusContract.outcomeType ? { outcomeType: statusContract.outcomeType } : {}),
+            message: statusContract.message,
+            reason: `${reasonPrefix} ${statusContract.reason}`,
+            ...(statusContract.nextAction ? { nextAction: statusContract.nextAction } : {}),
+        }, {
+            pageRef: fillableForm.pageRef,
+            fillRef,
+            storedSecretRef,
+            requestId: snapshot.requestId,
+        });
+    });
+}

package/dist/commands/screenshot.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"screenshot.d.ts","sourceRoot":"","sources":["../../src/commands/screenshot.ts"],"names":[],"mappings":"AAAA;;GAEG;AAGH,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAWnD,wBAAsB,UAAU,CAAC,OAAO,EAAE,aAAa,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAsEzF"}
+{"version":3,"file":"screenshot.d.ts","sourceRoot":"","sources":["../../src/commands/screenshot.ts"],"names":[],"mappings":"AAAA;;GAEG;AAGH,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAoKnD,wBAAsB,UAAU,CAAC,OAAO,EAAE,aAAa,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CA0HzF"}