@pensar/apex 2.1.2 → 2.1.3-canary.15e34bf1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (55) hide show
  1. package/build/agent-3ktj43z9.js +19 -0
  2. package/build/{agent-vdrtakz4.js → agent-3s7c1qrd.js} +10 -10
  3. package/build/{agent-737mxp3v.js → agent-v3d0ssgy.js} +8 -8
  4. package/build/{apps-j0bwey0w.js → apps-rk071a9p.js} +16 -16
  5. package/build/{auth-5stxpmga.js → auth-cnc8b1tj.js} +16 -16
  6. package/build/authentication-hrwp9bw8.js +19 -0
  7. package/build/blackboxAgent-fzp5cyvr.js +19 -0
  8. package/build/{blackboxPentest-2edr9rj3.js → blackboxPentest-b6cpqtkh.js} +14 -14
  9. package/build/{cli-9vzc18m5.js → cli-1kgqgq0a.js} +30 -17
  10. package/build/{cli-f7d23ded.js → cli-29yqhrjq.js} +936 -1775
  11. package/build/{cli-0gk2x2sc.js → cli-2zbvtnrx.js} +16 -18
  12. package/build/{cli-gbkj2has.js → cli-49kwknjj.js} +3 -3
  13. package/build/{cli-35czfv00.js → cli-4xz6rqg5.js} +70821 -79369
  14. package/build/{cli-ks60cc3h.js → cli-7y6dwmn8.js} +30 -30
  15. package/build/{cli-whtdyc0e.js → cli-84pr5q33.js} +4 -4
  16. package/build/{cli-dqkdnd3c.js → cli-8vaa0frx.js} +88 -49
  17. package/build/{cli-jd0c0b91.js → cli-9m9d9vtm.js} +1 -1
  18. package/build/{cli-hj3t87r2.js → cli-dh7tfkre.js} +1 -1
  19. package/build/{cli-6vs0mtsb.js → cli-eh6nrt6s.js} +2 -2
  20. package/build/{cli-9z6vwf30.js → cli-h7w8nj1x.js} +1 -1
  21. package/build/{cli-v1aqbv58.js → cli-nm2jskqg.js} +25040 -26995
  22. package/build/{cli-6wwpk9d9.js → cli-r5n86ej6.js} +1 -1
  23. package/build/{cli-xnnkeg5p.js → cli-td2vwxvv.js} +1 -1
  24. package/build/{cli-yjbkaqvy.js → cli-xe08y0nv.js} +43 -13
  25. package/build/{cli-tw3fe8bj.js → cli-yqtxtvg8.js} +2 -2
  26. package/build/cli.js +109 -88
  27. package/build/{config-s5ryv5ez.js → config-nvgzsffk.js} +3 -3
  28. package/build/{doctor-f08gegwc.js → doctor-785qvedj.js} +7 -7
  29. package/build/{fixes-qf4s92z2.js → fixes-xhr8ghx7.js} +16 -16
  30. package/build/{index-s8gw83d6.js → index-2edcw64j.js} +17 -11
  31. package/build/{index-sqjve2bm.js → index-e9rxwzqv.js} +2 -2
  32. package/build/{index-gakk2t5q.js → index-kx3w10s2.js} +18 -18
  33. package/build/{index-mgng15va.js → index-n1yh9e86.js} +909 -456
  34. package/build/{index-exvkbve0.js → index-ng1a7q8g.js} +4 -4
  35. package/build/{index-x4xefngs.js → index-qcf9f2n7.js} +3 -3
  36. package/build/{index-5h1hjhzw.js → index-y5bdx5j1.js} +10 -10
  37. package/build/{index-c6qz0gve.js → index-z35ctxx8.js} +7 -7
  38. package/build/{issues-5anqrh2j.js → issues-jwfdctks.js} +16 -16
  39. package/build/{logs-q6ankt6m.js → logs-8h7pwx7s.js} +16 -16
  40. package/build/{main-3zneyg7p.js → main-3d7dfdvs.js} +17 -93
  41. package/build/{offesecAgent-hsej0pfc.js → offesecAgent-yxaxnxwk.js} +9 -9
  42. package/build/pentest-a87kxj2v.js +28 -0
  43. package/build/{pentests-hyx3c3qa.js → pentests-6nhr9rdv.js} +16 -16
  44. package/build/{targetedPentest-ws0a7frk.js → targetedPentest-jyzcm9cx.js} +18 -11
  45. package/build/{targets-9cqrshet.js → targets-wbxhcpb8.js} +16 -16
  46. package/build/threatModel-0qpzh1jb.js +26 -0
  47. package/build/{uninstall-1j469qj7.js → uninstall-57tdyecc.js} +1 -1
  48. package/build/{upload-ymvhkyq5.js → upload-tvad5wre.js} +7 -7
  49. package/build/{utils-d1ed6jzf.js → utils-e14mz7h9.js} +6 -6
  50. package/package.json +30 -30
  51. package/build/agent-8w9h3tnw.js +0 -19
  52. package/build/authentication-qswvctj4.js +0 -19
  53. package/build/blackboxAgent-vwm9t3h4.js +0 -19
  54. package/build/pentest-1e30q7rs.js +0 -28
  55. package/build/threatModel-z9b213x8.js +0 -26
@@ -11,50 +11,50 @@ var init_package = __esm(() => {
11
11
  pensar: "./bin/pensar.js"
12
12
  },
13
13
  dependencies: {
14
- "@ai-sdk/amazon-bedrock": "^4.0.113",
15
- "@ai-sdk/anthropic": "^3.0.81",
16
- "@ai-sdk/google": "^3.0.37",
14
+ "@ai-sdk/amazon-bedrock": "^4.0.119",
15
+ "@ai-sdk/anthropic": "^3.0.85",
16
+ "@ai-sdk/google": "^3.0.83",
17
17
  "@ai-sdk/openai": "3.0.46",
18
- "@ai-sdk/openai-compatible": "^2.0.35",
19
- "@ai-sdk/provider": "^3.0.8",
20
- "@daytonaio/sdk": "^0.112.1",
21
- "@googleapis/gmail": "^16.1.1",
18
+ "@ai-sdk/openai-compatible": "^2.0.51",
19
+ "@ai-sdk/provider": "^3.0.10",
20
+ "@daytonaio/sdk": "^0.112.3",
21
+ "@googleapis/gmail": "^16.1.2",
22
22
  "@microsoft/microsoft-graph-client": "^3.0.7",
23
- "@modelcontextprotocol/sdk": "^1.0.0",
24
- "@openrouter/ai-sdk-provider": "^2.2.3",
25
- "@opentelemetry/api": "^1.9.0",
23
+ "@modelcontextprotocol/sdk": "^1.29.0",
24
+ "@openrouter/ai-sdk-provider": "^2.9.1",
25
+ "@opentelemetry/api": "^1.9.1",
26
26
  "@opentui/core": "^0.1.107",
27
27
  "@opentui/react": "^0.1.107",
28
28
  "@pensar/surface": "0.2.2",
29
29
  "@playwright/mcp": "^0.0.54",
30
- ai: "^6.0.105",
30
+ ai: "^6.0.208",
31
31
  "camoufox-js": "^0.11.1",
32
- glob: "^13.0.0",
32
+ glob: "^13.0.6",
33
33
  "highlight.js": "^11.11.1",
34
- imapflow: "^1.2.10",
35
- mailparser: "^3.9.3",
36
- marked: "^16.4.0",
34
+ imapflow: "^1.4.2",
35
+ mailparser: "^3.9.11",
36
+ marked: "^16.4.2",
37
37
  "mime-types": "^3.0.2",
38
- nodemailer: "^8.0.7",
39
- "p-limit": "^7.2.0",
40
- react: "^19.2.0",
41
- sharp: "^0.34.4",
42
- tldts: "^7.0.28",
43
- yaml: "^2.8.2",
44
- zod: "^4.1.12"
38
+ nodemailer: "^8.0.11",
39
+ "p-limit": "^7.3.0",
40
+ react: "^19.2.7",
41
+ sharp: "^0.34.5",
42
+ tldts: "^7.4.3",
43
+ yaml: "^2.9.0",
44
+ zod: "^4.4.3"
45
45
  },
46
46
  description: "AI-powered penetration testing CLI tool with terminal UI",
47
47
  devDependencies: {
48
48
  "@biomejs/biome": "2.4.14",
49
- "@types/bun": "^1.3.0",
49
+ "@types/bun": "^1.3.14",
50
50
  "@types/mailparser": "^3.4.6",
51
51
  "@types/mime-types": "^3.0.1",
52
- "@types/nodemailer": "^8.0.0",
53
- "@types/react": "^19.2.6",
54
- dotenv: "^17.2.3",
55
- knip: "^6.12.0",
56
- prettier: "^3.8.1",
57
- vitest: "^2.1.8"
52
+ "@types/nodemailer": "^8.0.1",
53
+ "@types/react": "^19.2.17",
54
+ dotenv: "^17.4.2",
55
+ knip: "^6.17.1",
56
+ prettier: "^3.8.4",
57
+ vitest: "^2.1.9"
58
58
  },
59
59
  engines: {
60
60
  bun: ">=1.0.0",
@@ -120,7 +120,7 @@ var init_package = __esm(() => {
120
120
  tsc: "tsc --noEmit"
121
121
  },
122
122
  type: "module",
123
- version: "2.1.2"
123
+ version: "2.1.3-canary.15e34bf1"
124
124
  };
125
125
  });
126
126
 
@@ -1,14 +1,14 @@
1
1
  import {
2
2
  OffensiveSecurityAgent
3
- } from "./cli-35czfv00.js";
3
+ } from "./cli-4xz6rqg5.js";
4
4
  import {
5
5
  detectOSAndEnhancePrompt
6
- } from "./cli-6wwpk9d9.js";
6
+ } from "./cli-r5n86ej6.js";
7
7
  import {
8
8
  hasToolCall,
9
9
  init_dist,
10
10
  stepCountIs
11
- } from "./cli-v1aqbv58.js";
11
+ } from "./cli-nm2jskqg.js";
12
12
 
13
13
  // src/core/agents/specialized/attackSurface/blackboxAgent.ts
14
14
  init_dist();
@@ -479,7 +479,7 @@ ${authenticationInstructions}
479
479
  authBlock = `⚠️ AUTHENTICATION CREDENTIALS PROVIDED — YOU MUST LOG IN FIRST.
480
480
 
481
481
  Your FIRST tool call must be: browser_navigate to ${loginTarget}
482
- Then use browser tools to authenticate. Pass the credentialId to authenticate_session or delegate_to_auth_subagent — secrets are resolved automatically.
482
+ Then use browser tools to authenticate. Pass the credentialId to delegate_to_auth_subagent — secrets are resolved automatically.
483
483
  For browser_fill on password/secret fields, use credentialId + credentialField instead of raw values.
484
484
 
485
485
  Do NOT run curl, nmap, dig, or any other command before completing login.
@@ -4,27 +4,27 @@ import {
4
4
  OffensiveSecurityAgent,
5
5
  SKILL_TOOL_NAMES,
6
6
  buildBaseSystemPrompt
7
- } from "./cli-35czfv00.js";
7
+ } from "./cli-4xz6rqg5.js";
8
8
  import {
9
9
  init_dist,
10
10
  init_session,
11
11
  sessions,
12
12
  stepCountIs
13
- } from "./cli-v1aqbv58.js";
13
+ } from "./cli-nm2jskqg.js";
14
14
  import {
15
15
  ensureValidToken,
16
16
  getPensarApiUrl,
17
17
  init_auth,
18
18
  init_constants
19
- } from "./cli-hj3t87r2.js";
19
+ } from "./cli-dh7tfkre.js";
20
20
  import {
21
21
  exports_external,
22
22
  init_zod
23
- } from "./cli-f7d23ded.js";
23
+ } from "./cli-29yqhrjq.js";
24
24
  import {
25
25
  config,
26
26
  init_config
27
- } from "./cli-9z6vwf30.js";
27
+ } from "./cli-h7w8nj1x.js";
28
28
  import {
29
29
  __commonJS,
30
30
  __require
@@ -583,6 +583,8 @@ var require_Alias = __commonJS((exports) => {
583
583
  });
584
584
  }
585
585
  resolve(doc, ctx) {
586
+ if (ctx?.maxAliasCount === 0)
587
+ throw new ReferenceError("Alias resolution is disabled");
586
588
  let nodes;
587
589
  if (ctx?.aliasResolveCache) {
588
590
  nodes = ctx.aliasResolveCache;
@@ -1362,6 +1364,7 @@ var require_stringify = __commonJS((exports) => {
1362
1364
  nullStr: "null",
1363
1365
  simpleKeys: false,
1364
1366
  singleQuote: null,
1367
+ trailingComma: false,
1365
1368
  trueStr: "true",
1366
1369
  verifyAliasOrder: true
1367
1370
  }, doc.schema.toStringOptions, options);
@@ -1631,18 +1634,18 @@ var require_merge = __commonJS((exports) => {
1631
1634
  };
1632
1635
  var isMergeKey = (ctx, key) => (merge.identify(key) || identity.isScalar(key) && (!key.type || key.type === Scalar.Scalar.PLAIN) && merge.identify(key.value)) && ctx?.doc.schema.tags.some((tag) => tag.tag === merge.tag && tag.default);
1633
1636
  function addMergeToJSMap(ctx, map, value) {
1634
- value = ctx && identity.isAlias(value) ? value.resolve(ctx.doc) : value;
1635
- if (identity.isSeq(value))
1636
- for (const it of value.items)
1637
+ const source = resolveAliasValue(ctx, value);
1638
+ if (identity.isSeq(source))
1639
+ for (const it of source.items)
1637
1640
  mergeValue(ctx, map, it);
1638
- else if (Array.isArray(value))
1639
- for (const it of value)
1641
+ else if (Array.isArray(source))
1642
+ for (const it of source)
1640
1643
  mergeValue(ctx, map, it);
1641
1644
  else
1642
- mergeValue(ctx, map, value);
1645
+ mergeValue(ctx, map, source);
1643
1646
  }
1644
1647
  function mergeValue(ctx, map, value) {
1645
- const source = ctx && identity.isAlias(value) ? value.resolve(ctx.doc) : value;
1648
+ const source = resolveAliasValue(ctx, value);
1646
1649
  if (!identity.isMap(source))
1647
1650
  throw new Error("Merge sources must be maps or map aliases");
1648
1651
  const srcMap = source.toJSON(null, ctx, Map);
@@ -1663,6 +1666,9 @@ var require_merge = __commonJS((exports) => {
1663
1666
  }
1664
1667
  return map;
1665
1668
  }
1669
+ function resolveAliasValue(ctx, value) {
1670
+ return ctx && identity.isAlias(value) ? value.resolve(ctx.doc, ctx) : value;
1671
+ }
1666
1672
  exports.addMergeToJSMap = addMergeToJSMap;
1667
1673
  exports.isMergeKey = isMergeKey;
1668
1674
  exports.merge = merge;
@@ -1870,13 +1876,20 @@ ${indent}${line}` : `
1870
1876
  if (comment)
1871
1877
  reqNewline = true;
1872
1878
  let str = stringify.stringify(item, itemCtx, () => comment = null);
1873
- if (i < items.length - 1)
1879
+ reqNewline || (reqNewline = lines.length > linesAtValue || str.includes(`
1880
+ `));
1881
+ if (i < items.length - 1) {
1874
1882
  str += ",";
1883
+ } else if (ctx.options.trailingComma) {
1884
+ if (ctx.options.lineWidth > 0) {
1885
+ reqNewline || (reqNewline = lines.reduce((sum, line) => sum + line.length + 2, 2) + (str.length + 2) > ctx.options.lineWidth);
1886
+ }
1887
+ if (reqNewline) {
1888
+ str += ",";
1889
+ }
1890
+ }
1875
1891
  if (comment)
1876
1892
  str += stringifyComment.lineComment(str, itemIndent, commentString(comment));
1877
- if (!reqNewline && (lines.length > linesAtValue || str.includes(`
1878
- `)))
1879
- reqNewline = true;
1880
1893
  lines.push(str);
1881
1894
  linesAtValue = lines.length;
1882
1895
  }
@@ -2231,7 +2244,7 @@ var require_stringifyNumber = __commonJS((exports) => {
2231
2244
  if (!isFinite(num))
2232
2245
  return isNaN(num) ? ".nan" : num < 0 ? "-.inf" : ".inf";
2233
2246
  let n = Object.is(value, -0) ? "-0" : JSON.stringify(value);
2234
- if (!format && minFractionDigits && (!tag || tag === "tag:yaml.org,2002:float") && /^\d/.test(n)) {
2247
+ if (!format && minFractionDigits && (!tag || tag === "tag:yaml.org,2002:float") && /^-?\d/.test(n) && !n.includes("e")) {
2235
2248
  let i = n.indexOf(".");
2236
2249
  if (i < 0) {
2237
2250
  i = n.length;
@@ -4456,7 +4469,7 @@ var require_resolve_flow_scalar = __commonJS((exports) => {
4456
4469
  while (next === " " || next === "\t")
4457
4470
  next = source[++i + 1];
4458
4471
  } else if (next === "x" || next === "u" || next === "U") {
4459
- const length = { x: 2, u: 4, U: 8 }[next];
4472
+ const length = next === "x" ? 2 : next === "u" ? 4 : 8;
4460
4473
  res += parseCharCode(source, i + 1, length, onError);
4461
4474
  i += length;
4462
4475
  } else {
@@ -4525,12 +4538,13 @@ var require_resolve_flow_scalar = __commonJS((exports) => {
4525
4538
  const cc = source.substr(offset, length);
4526
4539
  const ok = cc.length === length && /^[0-9a-fA-F]+$/.test(cc);
4527
4540
  const code = ok ? parseInt(cc, 16) : NaN;
4528
- if (isNaN(code)) {
4541
+ try {
4542
+ return String.fromCodePoint(code);
4543
+ } catch {
4529
4544
  const raw = source.substr(offset - 2, length + 2);
4530
4545
  onError(offset - 2, "BAD_DQ_ESCAPE", `Invalid escape sequence ${raw}`);
4531
4546
  return raw;
4532
4547
  }
4533
- return String.fromCodePoint(code);
4534
4548
  }
4535
4549
  exports.resolveFlowScalar = resolveFlowScalar;
4536
4550
  });
@@ -4671,17 +4685,22 @@ var require_compose_node = __commonJS((exports) => {
4671
4685
  case "block-map":
4672
4686
  case "block-seq":
4673
4687
  case "flow-collection":
4674
- node = composeCollection.composeCollection(CN, ctx, token, props, onError);
4675
- if (anchor)
4676
- node.anchor = anchor.source.substring(1);
4688
+ try {
4689
+ node = composeCollection.composeCollection(CN, ctx, token, props, onError);
4690
+ if (anchor)
4691
+ node.anchor = anchor.source.substring(1);
4692
+ } catch (error) {
4693
+ const message = error instanceof Error ? error.message : String(error);
4694
+ onError(token, "RESOURCE_EXHAUSTION", message);
4695
+ }
4677
4696
  break;
4678
4697
  default: {
4679
4698
  const message = token.type === "error" ? token.message : `Unsupported token (type: ${token.type})`;
4680
4699
  onError(token, "UNEXPECTED_TOKEN", message);
4681
- node = composeEmptyNode(ctx, token.offset, undefined, null, props, onError);
4682
4700
  isSrcToken = false;
4683
4701
  }
4684
4702
  }
4703
+ node ?? (node = composeEmptyNode(ctx, token.offset, undefined, null, props, onError));
4685
4704
  if (anchor && node.anchor === "")
4686
4705
  onError(anchor, "BAD_ALIAS", "Anchor cannot be an empty string");
4687
4706
  if (atKey && ctx.options.stringKeys && (!identity.isScalar(node) || typeof node.value !== "string" || node.tag && node.tag !== "tag:yaml.org,2002:str")) {
@@ -4864,8 +4883,10 @@ ${cb}` : comment;
4864
4883
  }
4865
4884
  }
4866
4885
  if (afterDoc) {
4867
- Array.prototype.push.apply(doc.errors, this.errors);
4868
- Array.prototype.push.apply(doc.warnings, this.warnings);
4886
+ for (let i = 0;i < this.errors.length; ++i)
4887
+ doc.errors.push(this.errors[i]);
4888
+ for (let i = 0;i < this.warnings.length; ++i)
4889
+ doc.warnings.push(this.warnings[i]);
4869
4890
  } else {
4870
4891
  doc.errors = this.errors;
4871
4892
  doc.warnings = this.warnings;
@@ -5577,7 +5598,7 @@ var require_lexer = __commonJS((exports) => {
5577
5598
  const n = (yield* this.pushCount(1)) + (yield* this.pushSpaces(true));
5578
5599
  this.indentNext = this.indentValue + 1;
5579
5600
  this.indentValue += n;
5580
- return yield* this.parseBlockStart();
5601
+ return "block-start";
5581
5602
  }
5582
5603
  return "doc";
5583
5604
  }
@@ -5884,26 +5905,37 @@ var require_lexer = __commonJS((exports) => {
5884
5905
  return 0;
5885
5906
  }
5886
5907
  *pushIndicators() {
5887
- switch (this.charAt(0)) {
5888
- case "!":
5889
- return (yield* this.pushTag()) + (yield* this.pushSpaces(true)) + (yield* this.pushIndicators());
5890
- case "&":
5891
- return (yield* this.pushUntil(isNotAnchorChar)) + (yield* this.pushSpaces(true)) + (yield* this.pushIndicators());
5892
- case "-":
5893
- case "?":
5894
- case ":": {
5895
- const inFlow = this.flowLevel > 0;
5896
- const ch1 = this.charAt(1);
5897
- if (isEmpty(ch1) || inFlow && flowIndicatorChars.has(ch1)) {
5898
- if (!inFlow)
5899
- this.indentNext = this.indentValue + 1;
5900
- else if (this.flowKey)
5901
- this.flowKey = false;
5902
- return (yield* this.pushCount(1)) + (yield* this.pushSpaces(true)) + (yield* this.pushIndicators());
5908
+ let n = 0;
5909
+ loop:
5910
+ while (true) {
5911
+ switch (this.charAt(0)) {
5912
+ case "!":
5913
+ n += yield* this.pushTag();
5914
+ n += yield* this.pushSpaces(true);
5915
+ continue loop;
5916
+ case "&":
5917
+ n += yield* this.pushUntil(isNotAnchorChar);
5918
+ n += yield* this.pushSpaces(true);
5919
+ continue loop;
5920
+ case "-":
5921
+ case "?":
5922
+ case ":": {
5923
+ const inFlow = this.flowLevel > 0;
5924
+ const ch1 = this.charAt(1);
5925
+ if (isEmpty(ch1) || inFlow && flowIndicatorChars.has(ch1)) {
5926
+ if (!inFlow)
5927
+ this.indentNext = this.indentValue + 1;
5928
+ else if (this.flowKey)
5929
+ this.flowKey = false;
5930
+ n += yield* this.pushCount(1);
5931
+ n += yield* this.pushSpaces(true);
5932
+ continue loop;
5933
+ }
5934
+ }
5903
5935
  }
5936
+ break loop;
5904
5937
  }
5905
- }
5906
- return 0;
5938
+ return n;
5907
5939
  }
5908
5940
  *pushTag() {
5909
5941
  if (this.charAt(1) === "<") {
@@ -6057,6 +6089,13 @@ var require_parser = __commonJS((exports) => {
6057
6089
  while (prev[++i]?.type === "space") {}
6058
6090
  return prev.splice(i, prev.length);
6059
6091
  }
6092
+ function arrayPushArray(target, source) {
6093
+ if (source.length < 1e5)
6094
+ Array.prototype.push.apply(target, source);
6095
+ else
6096
+ for (let i = 0;i < source.length; ++i)
6097
+ target.push(source[i]);
6098
+ }
6060
6099
  function fixFlowSeqItems(fc) {
6061
6100
  if (fc.start.type === "flow-seq-start") {
6062
6101
  for (const it of fc.items) {
@@ -6066,11 +6105,11 @@ var require_parser = __commonJS((exports) => {
6066
6105
  delete it.key;
6067
6106
  if (isFlowToken(it.value)) {
6068
6107
  if (it.value.end)
6069
- Array.prototype.push.apply(it.value.end, it.sep);
6108
+ arrayPushArray(it.value.end, it.sep);
6070
6109
  else
6071
6110
  it.value.end = it.sep;
6072
6111
  } else
6073
- Array.prototype.push.apply(it.start, it.sep);
6112
+ arrayPushArray(it.start, it.sep);
6074
6113
  delete it.sep;
6075
6114
  }
6076
6115
  }
@@ -6410,7 +6449,7 @@ var require_parser = __commonJS((exports) => {
6410
6449
  const prev = map.items[map.items.length - 2];
6411
6450
  const end = prev?.value?.end;
6412
6451
  if (Array.isArray(end)) {
6413
- Array.prototype.push.apply(end, it.start);
6452
+ arrayPushArray(end, it.start);
6414
6453
  end.push(this.sourceToken);
6415
6454
  map.items.pop();
6416
6455
  return;
@@ -6598,7 +6637,7 @@ var require_parser = __commonJS((exports) => {
6598
6637
  const prev = seq.items[seq.items.length - 2];
6599
6638
  const end = prev?.value?.end;
6600
6639
  if (Array.isArray(end)) {
6601
- Array.prototype.push.apply(end, it.start);
6640
+ arrayPushArray(end, it.start);
6602
6641
  end.push(this.sourceToken);
6603
6642
  seq.items.pop();
6604
6643
  return;
@@ -3,7 +3,7 @@ import {
3
3
  init_lazyLogger,
4
4
  init_structured,
5
5
  scopedLogger
6
- } from "./cli-v1aqbv58.js";
6
+ } from "./cli-nm2jskqg.js";
7
7
 
8
8
  // src/core/integrations/wandb/client.ts
9
9
  init_structured();
@@ -1,7 +1,7 @@
1
1
  import {
2
2
  config,
3
3
  init_config
4
- } from "./cli-9z6vwf30.js";
4
+ } from "./cli-h7w8nj1x.js";
5
5
  import {
6
6
  __esm
7
7
  } from "./cli-8rxa073f.js";
@@ -1,10 +1,10 @@
1
1
  import {
2
2
  OffensiveSecurityAgent
3
- } from "./cli-35czfv00.js";
3
+ } from "./cli-4xz6rqg5.js";
4
4
  import {
5
5
  init_dist,
6
6
  stepCountIs
7
- } from "./cli-v1aqbv58.js";
7
+ } from "./cli-nm2jskqg.js";
8
8
 
9
9
  // src/core/agents/specialized/codeAgent/agent.ts
10
10
  init_dist();
@@ -3,7 +3,7 @@ import {
3
3
  init,
4
4
  init_config,
5
5
  update
6
- } from "./cli-xnnkeg5p.js";
6
+ } from "./cli-td2vwxvv.js";
7
7
  import {
8
8
  __esm
9
9
  } from "./cli-8rxa073f.js";