@rester159/blacktip 0.1.0 → 0.4.0

package/dist/identity-pool.d.ts

@@ -0,0 +1,160 @@
+/**
+ * Identity pool — long-running session and identity rotation.
+ *
+ * An "identity" is the union of everything that makes a browser session
+ * look like one specific human: cookies, localStorage, proxy, device
+ * profile, behavior profile, locale, timezone. v0.4.0's answer to the
+ * question "how do I rotate identities cleanly across many requests
+ * without my whole flow looking like one bot retried under different IPs?"
+ *
+ * The pool persists to a JSON file at a caller-supplied path so identities
+ * survive process restarts. Each identity has its own burn-list (per
+ * domain), so an identity that got blocked on opentable.com is still
+ * eligible for amazon.com.
+ *
+ * Composition:
+ *   - Snapshots (cookies + storage) come from `SnapshotManager`.
+ *   - Proxies come from `ProxyPool` and are bound to an identity at
+ *     creation time.
+ *   - Device + behavior profiles are part of the identity itself.
+ *
+ * Lifecycle:
+ *   1. `pool.add(...)` — create an identity (no snapshot yet).
+ *   2. `pool.acquire(domain)` — pick one not burned for this domain.
+ *   3. `pool.applyToConfig(identity)` — produces a `BlackTipConfig` to
+ *      pass to `new BlackTip(...)`.
+ *   4. After flow, `pool.captureFromBlackTip(bt, identity)` — save the
+ *      session state back into the identity for next time.
+ *   5. `pool.markBurned(id, reason, domain?)` — when something blocks.
+ *
+ * The pool is in-memory + file-backed. There's no SQL, no LRU cache,
+ * no daemon. It's a single class with two file-IO methods.
+ */
+import type { BlackTip } from './blacktip.js';
+import type { BlackTipConfig, ProfileConfig } from './types.js';
+import type { SessionSnapshot } from './snapshot.js';
+/** Device profile names BlackTip ships with. */
+export type DeviceProfileName = 'desktop-windows' | 'desktop-macos' | 'desktop-linux';
+import type { ProxyDescriptor, ProxyPool } from './proxy-pool.js';
+export interface Identity {
+    /** UUID. Generated on `add()` if not supplied. */
+    id: string;
+    label?: string;
+    createdAt: string;
+    /** ISO timestamp of last `acquire()` call, or null if never used. */
+    lastUsedAt: string | null;
+    /** Number of times this identity has been acquired. */
+    useCount: number;
+    /** ISO timestamp of when the identity was fully burned (across all domains). */
+    burnedAt: string | null;
+    /** Reason from the most recent burn. */
+    burnedReason: string | null;
+    /** Domains on which this identity is burned. Per-domain so an identity
+     *  blocked on opentable can still be used elsewhere. */
+    burnedDomains: string[];
+    /** Cookies + localStorage. Null until the first capture. */
+    snapshot: SessionSnapshot | null;
+    /** The proxy bound to this identity, if any. */
+    proxy: ProxyDescriptor | null;
+    /** Behavior profile — either a built-in name or a full ProfileConfig
+     *  (e.g. one fitted via `fitFromSamples`). */
+    behaviorProfile: ProfileConfig | 'human' | 'scraper';
+    /** Device profile. */
+    deviceProfile: DeviceProfileName;
+    locale: string;
+    timezone: string;
+}
+export interface RotationPolicy {
+    /** Burn an identity after this many uses. Default: never. */
+    maxUses?: number;
+    /** Burn an identity if its first use was longer than this ago. Default: never. */
+    maxAgeMs?: number;
+    /** When acquiring, prefer the least-recently-used identity (otherwise
+     *  uses round-robin order). Default: true. */
+    preferLeastRecentlyUsed?: boolean;
+}
+export interface IdentityPoolOptions {
+    /** Path to a JSON file that backs the pool. Will be created if missing. */
+    storePath: string;
+    /** Optional ProxyPool to draw new identities' proxies from when
+     *  `add()` is called without an explicit proxy. */
+    proxyPool?: ProxyPool;
+    /** Rotation policy. Defaults to no automatic burning. */
+    rotationPolicy?: RotationPolicy;
+}
+export declare class IdentityPool {
+    private storePath;
+    private proxyPool;
+    private rotationPolicy;
+    private identities;
+    private acquireCursor;
+    constructor(options: IdentityPoolOptions);
+    /** Load identities from the store file. Called automatically by the
+     *  constructor; safe to call again to refresh from disk. */
+    load(): void;
+    /** Persist the in-memory state to the store file. Called automatically
+     *  after every mutation. */
+    save(): void;
+    /**
+     * Create a new identity. Required: deviceProfile. Optional: everything
+     * else (sane defaults are filled in). If a `proxyPool` was supplied to
+     * the IdentityPool and `proxy` is omitted, the pool draws one.
+     */
+    add(init: {
+        label?: string;
+        deviceProfile: DeviceProfileName;
+        behaviorProfile?: Identity['behaviorProfile'];
+        locale?: string;
+        timezone?: string;
+        proxy?: ProxyDescriptor | null;
+    }): Identity;
+    remove(id: string): boolean;
+    list(): Identity[];
+    size(): number;
+    /** Identities not fully burned (i.e. eligible for at least some domains). */
+    available(): Identity[];
+    /**
+     * Pick an identity for use. If `domain` is supplied, the result is
+     * guaranteed not to be in that identity's `burnedDomains` list. Applies
+     * the rotation policy: identities exceeding `maxUses` or `maxAgeMs`
+     * are auto-burned and skipped.
+     *
+     * Returns null if no eligible identity exists.
+     */
+    acquire(domain?: string): Identity | null;
+    /**
+     * Mark an identity as burned, either fully (omit `domain`) or only on
+     * one specific domain. Burned identities are skipped by `acquire()`.
+     * Domain-specific burns also report the proxy ban back to the
+     * `ProxyPool` if one is wired up — that's the feedback loop that
+     * keeps the pool clean.
+     */
+    markBurned(id: string, reason: string, domain?: string): boolean;
+    /** Clear a burn (full or per-domain). Useful for manually unbanning. */
+    clearBurn(id: string, domain?: string): boolean;
+    private applyRotationPolicy;
+    /**
+     * Build a `BlackTipConfig` for the given identity. The caller passes
+     * this to `new BlackTip(config)`. The result includes:
+     *   - deviceProfile, behaviorProfile, locale, timezone from the identity
+     *   - proxy URL if the identity has one bound
+     *
+     * Cookies and localStorage from the identity's snapshot are NOT applied
+     * here (they need a launched browser). Call `restoreSnapshot(bt, identity)`
+     * after `bt.launch()` to apply them.
+     */
+    applyToConfig(identity: Identity, baseConfig?: Partial<BlackTipConfig>): BlackTipConfig;
+    /**
+     * After `bt.launch()`, apply the identity's snapshot (cookies +
+     * localStorage) to the running browser. No-op if the identity has
+     * no snapshot yet.
+     */
+    restoreSnapshot(bt: BlackTip, identity: Identity): Promise<void>;
+    /**
+     * Capture the current BlackTip session state into the identity. Call
+     * after a successful flow so the next acquire of this identity starts
+     * from a known-good logged-in state.
+     */
+    captureSnapshot(bt: BlackTip, identity: Identity): Promise<void>;
+}
+//# sourceMappingURL=identity-pool.d.ts.map

package/dist/identity-pool.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"identity-pool.d.ts","sourceRoot":"","sources":["../src/identity-pool.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+BG;AAKH,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAC;AAC9C,OAAO,KAAK,EAAE,cAAc,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AAChE,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AAErD,gDAAgD;AAChD,MAAM,MAAM,iBAAiB,GAAG,iBAAiB,GAAG,eAAe,GAAG,eAAe,CAAC;AAEtF,OAAO,KAAK,EAAE,eAAe,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAKlE,MAAM,WAAW,QAAQ;IACvB,kDAAkD;IAClD,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;IAClB,qEAAqE;IACrE,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,uDAAuD;IACvD,QAAQ,EAAE,MAAM,CAAC;IACjB,gFAAgF;IAChF,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,wCAAwC;IACxC,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B;4DACwD;IACxD,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,4DAA4D;IAC5D,QAAQ,EAAE,eAAe,GAAG,IAAI,CAAC;IACjC,gDAAgD;IAChD,KAAK,EAAE,eAAe,GAAG,IAAI,CAAC;IAC9B;kDAC8C;IAC9C,eAAe,EAAE,aAAa,GAAG,OAAO,GAAG,SAAS,CAAC;IACrD,sBAAsB;IACtB,aAAa,EAAE,iBAAiB,CAAC;IACjC,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;CAClB;AAID,MAAM,WAAW,cAAc;IAC7B,6DAA6D;IAC7D,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,kFAAkF;IAClF,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB;kDAC8C;IAC9C,uBAAuB,CAAC,EAAE,OAAO,CAAC;CACnC;AAYD,MAAM,WAAW,mBAAmB;IAClC,2EAA2E;IAC3E,SAAS,EAAE,MAAM,CAAC;IAClB;uDACmD;IACnD,SAAS,CAAC,EAAE,SAAS,CAAC;IACtB,yDAAyD;IACzD,cAAc,CAAC,EAAE,cAAc,CAAC;CACjC;AAED,qBAAa,YAAY;IACvB,OAAO,CAAC,SAAS,CAAS;IAC1B,OAAO,CAAC,SAAS,CAAwB;IACzC,OAAO,CAAC,cAAc,CAA2B;IACjD,OAAO,CAAC,UAAU,CAAkB;IACpC,OAAO,CAAC,aAAa,CAAK;gBAEd,OAAO,EAAE,mBAAmB;IAaxC;gEAC4D;IAC5D,IAAI,IAAI,IAAI;IAiBZ;gCAC4B;IAC5B,IAAI,IAAI,IAAI;IAaZ;;;;OAIG;IACH,GAAG,CAAC,IAAI,EAAE;QACR,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,aAAa,EAAE,iBAAiB,CAAC;QACjC,eAAe,CAAC,EAAE,QAAQ,CAAC,iBAAiB,CAAC,CAAC;QAC9C,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,KAAK,CAAC,EAAE,eAAe,GAAG,IAAI,CAAC;KAChC,GAAG,QAAQ;IA8BZ,MAAM,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO;IAU3B,IAAI,IAAI,QAAQ,EAAE;IAIlB,IAAI,IAAI,MAAM;IAId,6EAA6E;IAC7E,SAAS,IAAI,QAAQ,EAAE;IAMvB;;;;;;;OAOG;IACH,OAAO,CAAC,MAAM,CAAC,EAAE,MAAM,GAAG,QAAQ,GAAG,IAAI;IA8BzC;;;;;;OAMG;IACH,UAAU,CAAC,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,OAAO;IAmBhE,wEAAwE;IACxE,SAAS,CAAC,EAAE,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,OAAO;IAa/C,OAAO,CAAC,mBAAmB;IAyB3B;;;;;;;;;OASG;IACH,aAAa,CAAC,QAAQ,EAAE,QAAQ,EAAE,UAAU,GAAE,OAAO,CAAC,cAAc,CAAM,GAAG,cAAc;IAW3F;;;;OAIG;IACG,eAAe,CAAC,EAAE,EAAE,QAAQ,EAAE,QAAQ,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAMtE;;;;OAIG;IACG,eAAe,CAAC,EAAE,EAAE,QAAQ,EAAE,QAAQ,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;CAKvE"}

package/dist/identity-pool.js

@@ -0,0 +1,288 @@
+/**
+ * Identity pool — long-running session and identity rotation.
+ *
+ * An "identity" is the union of everything that makes a browser session
+ * look like one specific human: cookies, localStorage, proxy, device
+ * profile, behavior profile, locale, timezone. v0.4.0's answer to the
+ * question "how do I rotate identities cleanly across many requests
+ * without my whole flow looking like one bot retried under different IPs?"
+ *
+ * The pool persists to a JSON file at a caller-supplied path so identities
+ * survive process restarts. Each identity has its own burn-list (per
+ * domain), so an identity that got blocked on opentable.com is still
+ * eligible for amazon.com.
+ *
+ * Composition:
+ *   - Snapshots (cookies + storage) come from `SnapshotManager`.
+ *   - Proxies come from `ProxyPool` and are bound to an identity at
+ *     creation time.
+ *   - Device + behavior profiles are part of the identity itself.
+ *
+ * Lifecycle:
+ *   1. `pool.add(...)` — create an identity (no snapshot yet).
+ *   2. `pool.acquire(domain)` — pick one not burned for this domain.
+ *   3. `pool.applyToConfig(identity)` — produces a `BlackTipConfig` to
+ *      pass to `new BlackTip(...)`.
+ *   4. After flow, `pool.captureFromBlackTip(bt, identity)` — save the
+ *      session state back into the identity for next time.
+ *   5. `pool.markBurned(id, reason, domain?)` — when something blocks.
+ *
+ * The pool is in-memory + file-backed. There's no SQL, no LRU cache,
+ * no daemon. It's a single class with two file-IO methods.
+ */
+import { existsSync, readFileSync, writeFileSync, mkdirSync } from 'node:fs';
+import { dirname } from 'node:path';
+import { randomUUID } from 'node:crypto';
+import { SnapshotManager } from './snapshot.js';
+import { proxyToUrl } from './proxy-pool.js';
+export class IdentityPool {
+    storePath;
+    proxyPool;
+    rotationPolicy;
+    identities = [];
+    acquireCursor = 0;
+    constructor(options) {
+        this.storePath = options.storePath;
+        this.proxyPool = options.proxyPool;
+        this.rotationPolicy = {
+            maxUses: options.rotationPolicy?.maxUses ?? Infinity,
+            maxAgeMs: options.rotationPolicy?.maxAgeMs ?? Infinity,
+            preferLeastRecentlyUsed: options.rotationPolicy?.preferLeastRecentlyUsed ?? true,
+        };
+        this.load();
+    }
+    // ── File I/O ──
+    /** Load identities from the store file. Called automatically by the
+     *  constructor; safe to call again to refresh from disk. */
+    load() {
+        if (!existsSync(this.storePath)) {
+            this.identities = [];
+            return;
+        }
+        try {
+            const raw = readFileSync(this.storePath, 'utf-8');
+            const parsed = JSON.parse(raw);
+            if (parsed.version !== 1) {
+                throw new Error(`Unsupported pool file version: ${parsed.version}`);
+            }
+            this.identities = parsed.identities;
+        }
+        catch (err) {
+            throw new Error(`IdentityPool: failed to load ${this.storePath}: ${err instanceof Error ? err.message : String(err)}`);
+        }
+    }
+    /** Persist the in-memory state to the store file. Called automatically
+     *  after every mutation. */
+    save() {
+        const dir = dirname(this.storePath);
+        if (!existsSync(dir))
+            mkdirSync(dir, { recursive: true });
+        const file = {
+            version: 1,
+            savedAt: new Date().toISOString(),
+            identities: this.identities,
+        };
+        writeFileSync(this.storePath, JSON.stringify(file, null, 2));
+    }
+    // ── CRUD ──
+    /**
+     * Create a new identity. Required: deviceProfile. Optional: everything
+     * else (sane defaults are filled in). If a `proxyPool` was supplied to
+     * the IdentityPool and `proxy` is omitted, the pool draws one.
+     */
+    add(init) {
+        const id = randomUUID();
+        let proxy = init.proxy ?? null;
+        // If no proxy supplied and a pool exists, take the next round-robin pick
+        // from the pool. We use a placeholder domain key since identities
+        // are domain-agnostic at creation time.
+        if (proxy === null && this.proxyPool && this.proxyPool.size() > 0) {
+            proxy = this.proxyPool.selectForDomain('__identity-pool__');
+        }
+        const identity = {
+            id,
+            label: init.label,
+            createdAt: new Date().toISOString(),
+            lastUsedAt: null,
+            useCount: 0,
+            burnedAt: null,
+            burnedReason: null,
+            burnedDomains: [],
+            snapshot: null,
+            proxy,
+            behaviorProfile: init.behaviorProfile ?? 'human',
+            deviceProfile: init.deviceProfile,
+            locale: init.locale ?? 'en-US',
+            timezone: init.timezone ?? 'America/New_York',
+        };
+        this.identities.push(identity);
+        this.save();
+        return identity;
+    }
+    remove(id) {
+        const before = this.identities.length;
+        this.identities = this.identities.filter((i) => i.id !== id);
+        if (this.identities.length !== before) {
+            this.save();
+            return true;
+        }
+        return false;
+    }
+    list() {
+        return [...this.identities];
+    }
+    size() {
+        return this.identities.length;
+    }
+    /** Identities not fully burned (i.e. eligible for at least some domains). */
+    available() {
+        return this.identities.filter((i) => i.burnedAt === null);
+    }
+    // ── Acquisition ──
+    /**
+     * Pick an identity for use. If `domain` is supplied, the result is
+     * guaranteed not to be in that identity's `burnedDomains` list. Applies
+     * the rotation policy: identities exceeding `maxUses` or `maxAgeMs`
+     * are auto-burned and skipped.
+     *
+     * Returns null if no eligible identity exists.
+     */
+    acquire(domain) {
+        this.applyRotationPolicy();
+        const eligible = this.identities.filter((i) => {
+            if (i.burnedAt !== null)
+                return false;
+            if (domain && i.burnedDomains.includes(domain))
+                return false;
+            return true;
+        });
+        if (eligible.length === 0)
+            return null;
+        let chosen;
+        if (this.rotationPolicy.preferLeastRecentlyUsed) {
+            chosen = eligible.reduce((best, i) => {
+                const bestT = best.lastUsedAt ? Date.parse(best.lastUsedAt) : 0;
+                const iT = i.lastUsedAt ? Date.parse(i.lastUsedAt) : 0;
+                return iT < bestT ? i : best;
+            });
+        }
+        else {
+            this.acquireCursor = (this.acquireCursor + 1) % eligible.length;
+            chosen = eligible[this.acquireCursor];
+        }
+        chosen.lastUsedAt = new Date().toISOString();
+        chosen.useCount++;
+        this.save();
+        return chosen;
+    }
+    // ── Burning ──
+    /**
+     * Mark an identity as burned, either fully (omit `domain`) or only on
+     * one specific domain. Burned identities are skipped by `acquire()`.
+     * Domain-specific burns also report the proxy ban back to the
+     * `ProxyPool` if one is wired up — that's the feedback loop that
+     * keeps the pool clean.
+     */
+    markBurned(id, reason, domain) {
+        const identity = this.identities.find((i) => i.id === id);
+        if (!identity)
+            return false;
+        if (domain) {
+            if (!identity.burnedDomains.includes(domain))
+                identity.burnedDomains.push(domain);
+            // If the identity has a proxy and a ProxyPool, report the ban so
+            // the pool's reputation tracking learns from this failure.
+            if (identity.proxy && this.proxyPool) {
+                this.proxyPool.reportBan(identity.proxy.id, domain, reason);
+            }
+        }
+        else {
+            identity.burnedAt = new Date().toISOString();
+            identity.burnedReason = reason;
+        }
+        this.save();
+        return true;
+    }
+    /** Clear a burn (full or per-domain). Useful for manually unbanning. */
+    clearBurn(id, domain) {
+        const identity = this.identities.find((i) => i.id === id);
+        if (!identity)
+            return false;
+        if (domain) {
+            identity.burnedDomains = identity.burnedDomains.filter((d) => d !== domain);
+        }
+        else {
+            identity.burnedAt = null;
+            identity.burnedReason = null;
+        }
+        this.save();
+        return true;
+    }
+    applyRotationPolicy() {
+        const now = Date.now();
+        let mutated = false;
+        for (const i of this.identities) {
+            if (i.burnedAt !== null)
+                continue;
+            if (i.useCount >= this.rotationPolicy.maxUses) {
+                i.burnedAt = new Date().toISOString();
+                i.burnedReason = `auto-burn: useCount >= maxUses (${this.rotationPolicy.maxUses})`;
+                mutated = true;
+                continue;
+            }
+            if (i.lastUsedAt) {
+                const ageMs = now - Date.parse(i.lastUsedAt);
+                if (ageMs > this.rotationPolicy.maxAgeMs) {
+                    i.burnedAt = new Date().toISOString();
+                    i.burnedReason = `auto-burn: age ${ageMs}ms > maxAgeMs ${this.rotationPolicy.maxAgeMs}`;
+                    mutated = true;
+                }
+            }
+        }
+        if (mutated)
+            this.save();
+    }
+    // ── BlackTip integration ──
+    /**
+     * Build a `BlackTipConfig` for the given identity. The caller passes
+     * this to `new BlackTip(config)`. The result includes:
+     *   - deviceProfile, behaviorProfile, locale, timezone from the identity
+     *   - proxy URL if the identity has one bound
+     *
+     * Cookies and localStorage from the identity's snapshot are NOT applied
+     * here (they need a launched browser). Call `restoreSnapshot(bt, identity)`
+     * after `bt.launch()` to apply them.
+     */
+    applyToConfig(identity, baseConfig = {}) {
+        return {
+            ...baseConfig,
+            deviceProfile: identity.deviceProfile,
+            behaviorProfile: identity.behaviorProfile,
+            locale: identity.locale,
+            timezone: identity.timezone,
+            proxy: identity.proxy ? proxyToUrl(identity.proxy) : baseConfig.proxy,
+        };
+    }
+    /**
+     * After `bt.launch()`, apply the identity's snapshot (cookies +
+     * localStorage) to the running browser. No-op if the identity has
+     * no snapshot yet.
+     */
+    async restoreSnapshot(bt, identity) {
+        if (!identity.snapshot)
+            return;
+        const mgr = new SnapshotManager(bt.core);
+        await mgr.restore(identity.snapshot);
+    }
+    /**
+     * Capture the current BlackTip session state into the identity. Call
+     * after a successful flow so the next acquire of this identity starts
+     * from a known-good logged-in state.
+     */
+    async captureSnapshot(bt, identity) {
+        const mgr = new SnapshotManager(bt.core);
+        identity.snapshot = await mgr.capture(identity.label);
+        this.save();
+    }
+}
+//# sourceMappingURL=identity-pool.js.map

package/dist/identity-pool.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"identity-pool.js","sourceRoot":"","sources":["../src/identity-pool.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+BG;AAEH,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,aAAa,EAAE,SAAS,EAAE,MAAM,SAAS,CAAC;AAC7E,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAOzC,OAAO,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AAEhD,OAAO,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAiE7C,MAAM,OAAO,YAAY;IACf,SAAS,CAAS;IAClB,SAAS,CAAwB;IACjC,cAAc,CAA2B;IACzC,UAAU,GAAe,EAAE,CAAC;IAC5B,aAAa,GAAG,CAAC,CAAC;IAE1B,YAAY,OAA4B;QACtC,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,CAAC;QACnC,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,CAAC;QACnC,IAAI,CAAC,cAAc,GAAG;YACpB,OAAO,EAAE,OAAO,CAAC,cAAc,EAAE,OAAO,IAAI,QAAQ;YACpD,QAAQ,EAAE,OAAO,CAAC,cAAc,EAAE,QAAQ,IAAI,QAAQ;YACtD,uBAAuB,EAAE,OAAO,CAAC,cAAc,EAAE,uBAAuB,IAAI,IAAI;SACjF,CAAC;QACF,IAAI,CAAC,IAAI,EAAE,CAAC;IACd,CAAC;IAED,iBAAiB;IAEjB;gEAC4D;IAC5D,IAAI;QACF,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC;YAChC,IAAI,CAAC,UAAU,GAAG,EAAE,CAAC;YACrB,OAAO;QACT,CAAC;QACD,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,YAAY,CAAC,IAAI,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;YAClD,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAa,CAAC;YAC3C,IAAI,MAAM,CAAC,OAAO,KAAK,CAAC,EAAE,CAAC;gBACzB,MAAM,IAAI,KAAK,CAAC,kCAAkC,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC;YACtE,CAAC;YACD,IAAI,CAAC,UAAU,GAAG,MAAM,CAAC,UAAU,CAAC;QACtC,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,MAAM,IAAI,KAAK,CAAC,gCAAgC,IAAI,CAAC,SAAS,KAAK,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QACzH,CAAC;IACH,CAAC;IAED;gCAC4B;IAC5B,IAAI;QACF,MAAM,GAAG,GAAG,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QACpC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC;YAAE,SAAS,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QAC1D,MAAM,IAAI,GAAa;YACrB,OAAO,EAAE,CAAC;YACV,OAAO,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACjC,UAAU,EAAE,IAAI,CAAC,UAAU;SAC5B,CAAC;QACF,aAAa,CAAC,IAAI,CAAC,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;IAC/D,CAAC;IAED,aAAa;IAEb;;;;OAIG;IACH,GAAG,CAAC,IAOH;QACC,MAAM,EAAE,GAAG,UAAU,EAAE,CAAC;QACxB,IAAI,KAAK,GAAG,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC;QAC/B,yEAAyE;QACzE,kEAAkE;QAClE,wCAAwC;QACxC,IAAI,KAAK,KAAK,IAAI,IAAI,IAAI,CAAC,SAAS,IAAI,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE,GAAG,CAAC,EAAE,CAAC;YAClE,KAAK,GAAG,IAAI,CAAC,SAAS,CAAC,eAAe,CAAC,mBAAmB,CAAC,CAAC;QAC9D,CAAC;QACD,MAAM,QAAQ,GAAa;YACzB,EAAE;YACF,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,UAAU,EAAE,IAAI;YAChB,QAAQ,EAAE,CAAC;YACX,QAAQ,EAAE,IAAI;YACd,YAAY,EAAE,IAAI;YAClB,aAAa,EAAE,EAAE;YACjB,QAAQ,EAAE,IAAI;YACd,KAAK;YACL,eAAe,EAAE,IAAI,CAAC,eAAe,IAAI,OAAO;YAChD,aAAa,EAAE,IAAI,CAAC,aAAa;YACjC,MAAM,EAAE,IAAI,CAAC,MAAM,IAAI,OAAO;YAC9B,QAAQ,EAAE,IAAI,CAAC,QAAQ,IAAI,kBAAkB;SAC9C,CAAC;QACF,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC/B,IAAI,CAAC,IAAI,EAAE,CAAC;QACZ,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED,MAAM,CAAC,EAAU;QACf,MAAM,MAAM,GAAG,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC;QACtC,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC;QAC7D,IAAI,IAAI,CAAC,UAAU,CAAC,MAAM,KAAK,MAAM,EAAE,CAAC;YACtC,IAAI,CAAC,IAAI,EAAE,CAAC;YACZ,OAAO,IAAI,CAAC;QACd,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC;IAED,IAAI;QACF,OAAO,CAAC,GAAG,IAAI,CAAC,UAAU,CAAC,CAAC;IAC9B,CAAC;IAED,IAAI;QACF,OAAO,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC;IAChC,CAAC;IAED,6EAA6E;IAC7E,SAAS;QACP,OAAO,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,IAAI,CAAC,CAAC;IAC5D,CAAC;IAED,oBAAoB;IAEpB;;;;;;;OAOG;IACH,OAAO,CAAC,MAAe;QACrB,IAAI,CAAC,mBAAmB,EAAE,CAAC;QAE3B,MAAM,QAAQ,GAAG,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE;YAC5C,IAAI,CAAC,CAAC,QAAQ,KAAK,IAAI;gBAAE,OAAO,KAAK,CAAC;YACtC,IAAI,MAAM,IAAI,CAAC,CAAC,aAAa,CAAC,QAAQ,CAAC,MAAM,CAAC;gBAAE,OAAO,KAAK,CAAC;YAC7D,OAAO,IAAI,CAAC;QACd,CAAC,CAAC,CAAC;QACH,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,IAAI,CAAC;QAEvC,IAAI,MAAgB,CAAC;QACrB,IAAI,IAAI,CAAC,cAAc,CAAC,uBAAuB,EAAE,CAAC;YAChD,MAAM,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,CAAC,EAAE,EAAE;gBACnC,MAAM,KAAK,GAAG,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;gBAChE,MAAM,EAAE,GAAG,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;gBACvD,OAAO,EAAE,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;YAC/B,CAAC,CAAC,CAAC;QACL,CAAC;aAAM,CAAC;YACN,IAAI,CAAC,aAAa,GAAG,CAAC,IAAI,CAAC,aAAa,GAAG,CAAC,CAAC,GAAG,QAAQ,CAAC,MAAM,CAAC;YAChE,MAAM,GAAG,QAAQ,CAAC,IAAI,CAAC,aAAa,CAAE,CAAC;QACzC,CAAC;QAED,MAAM,CAAC,UAAU,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAC7C,MAAM,CAAC,QAAQ,EAAE,CAAC;QAClB,IAAI,CAAC,IAAI,EAAE,CAAC;QACZ,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,gBAAgB;IAEhB;;;;;;OAMG;IACH,UAAU,CAAC,EAAU,EAAE,MAAc,EAAE,MAAe;QACpD,MAAM,QAAQ,GAAG,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC;QAC1D,IAAI,CAAC,QAAQ;YAAE,OAAO,KAAK,CAAC;QAE5B,IAAI,MAAM,EAAE,CAAC;YACX,IAAI,CAAC,QAAQ,CAAC,aAAa,CAAC,QAAQ,CAAC,MAAM,CAAC;gBAAE,QAAQ,CAAC,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAClF,iEAAiE;YACjE,2DAA2D;YAC3D,IAAI,QAAQ,CAAC,KAAK,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;gBACrC,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC;YAC9D,CAAC;QACH,CAAC;aAAM,CAAC;YACN,QAAQ,CAAC,QAAQ,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;YAC7C,QAAQ,CAAC,YAAY,GAAG,MAAM,CAAC;QACjC,CAAC;QACD,IAAI,CAAC,IAAI,EAAE,CAAC;QACZ,OAAO,IAAI,CAAC;IACd,CAAC;IAED,wEAAwE;IACxE,SAAS,CAAC,EAAU,EAAE,MAAe;QACnC,MAAM,QAAQ,GAAG,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC;QAC1D,IAAI,CAAC,QAAQ;YAAE,OAAO,KAAK,CAAC;QAC5B,IAAI,MAAM,EAAE,CAAC;YACX,QAAQ,CAAC,aAAa,GAAG,QAAQ,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,KAAK,MAAM,CAAC,CAAC;QAC9E,CAAC;aAAM,CAAC;YACN,QAAQ,CAAC,QAAQ,GAAG,IAAI,CAAC;YACzB,QAAQ,CAAC,YAAY,GAAG,IAAI,CAAC;QAC/B,CAAC;QACD,IAAI,CAAC,IAAI,EAAE,CAAC;QACZ,OAAO,IAAI,CAAC;IACd,CAAC;IAEO,mBAAmB;QACzB,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,IAAI,OAAO,GAAG,KAAK,CAAC;QACpB,KAAK,MAAM,CAAC,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;YAChC,IAAI,CAAC,CAAC,QAAQ,KAAK,IAAI;gBAAE,SAAS;YAClC,IAAI,CAAC,CAAC,QAAQ,IAAI,IAAI,CAAC,cAAc,CAAC,OAAO,EAAE,CAAC;gBAC9C,CAAC,CAAC,QAAQ,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;gBACtC,CAAC,CAAC,YAAY,GAAG,mCAAmC,IAAI,CAAC,cAAc,CAAC,OAAO,GAAG,CAAC;gBACnF,OAAO,GAAG,IAAI,CAAC;gBACf,SAAS;YACX,CAAC;YACD,IAAI,CAAC,CAAC,UAAU,EAAE,CAAC;gBACjB,MAAM,KAAK,GAAG,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC;gBAC7C,IAAI,KAAK,GAAG,IAAI,CAAC,cAAc,CAAC,QAAQ,EAAE,CAAC;oBACzC,CAAC,CAAC,QAAQ,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;oBACtC,CAAC,CAAC,YAAY,GAAG,kBAAkB,KAAK,iBAAiB,IAAI,CAAC,cAAc,CAAC,QAAQ,EAAE,CAAC;oBACxF,OAAO,GAAG,IAAI,CAAC;gBACjB,CAAC;YACH,CAAC;QACH,CAAC;QACD,IAAI,OAAO;YAAE,IAAI,CAAC,IAAI,EAAE,CAAC;IAC3B,CAAC;IAED,6BAA6B;IAE7B;;;;;;;;;OASG;IACH,aAAa,CAAC,QAAkB,EAAE,aAAsC,EAAE;QACxE,OAAO;YACL,GAAG,UAAU;YACb,aAAa,EAAE,QAAQ,CAAC,aAAa;YACrC,eAAe,EAAE,QAAQ,CAAC,eAAe;YACzC,MAAM,EAAE,QAAQ,CAAC,MAAM;YACvB,QAAQ,EAAE,QAAQ,CAAC,QAAQ;YAC3B,KAAK,EAAE,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,KAAK;SACtE,CAAC;IACJ,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,eAAe,CAAC,EAAY,EAAE,QAAkB;QACpD,IAAI,CAAC,QAAQ,CAAC,QAAQ;YAAE,OAAO;QAC/B,MAAM,GAAG,GAAG,IAAI,eAAe,CAAE,EAA4E,CAAC,IAAI,CAAC,CAAC;QACpH,MAAM,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IACvC,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,eAAe,CAAC,EAAY,EAAE,QAAkB;QACpD,MAAM,GAAG,GAAG,IAAI,eAAe,CAAE,EAA4E,CAAC,IAAI,CAAC,CAAC;QACpH,QAAQ,CAAC,QAAQ,GAAG,MAAM,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;QACtD,IAAI,CAAC,IAAI,EAAE,CAAC;IACd,CAAC;CACF"}

package/dist/index.d.ts

@@ -8,12 +8,19 @@ export { Logger } from './logging.js';
 export { BrowserCore } from './browser-core.js';
 export { fitDistribution, fitFittsLaw, fitMouseDynamics, fitTypingDynamics, fitFromSamples, deriveProfileConfig, } from './behavioral/calibration.js';
 export type { MouseSample, MouseMovement, KeystrokeSample, TypingSession, DistributionFit, MouseFit, TypingFit, CalibratedProfile, } from './behavioral/calibration.js';
+export { parseCmuKeystrokeCsv, parseBalabitMouseCsv, parseGenericTelemetryJson, CMU_PHRASE, } from './behavioral/parsers.js';
+export { TlsSideChannel } from './tls-side-channel.js';
+export type { TlsRequest, TlsResponse, ParsedCookie } from './tls-side-channel.js';
+export { IdentityPool } from './identity-pool.js';
+export type { Identity, IdentityPoolOptions, RotationPolicy, DeviceProfileName, } from './identity-pool.js';
 export { ProxyPool, ProxyProviders, proxyToUrl } from './proxy-pool.js';
 export type { ProxyDescriptor, ProxyProtocol, PoolOptions } from './proxy-pool.js';
 export { SnapshotManager } from './snapshot.js';
 export type { SessionSnapshot } from './snapshot.js';
 export { attachObservability, JsonlFileExporter, ConsoleExporter, newTraceId, } from './observability.js';
 export type { StructuredEvent, EventExporter } from './observability.js';
+export { captureFingerprint, checkIpReputation, testAgainstAkamai, testAgainstAntiBot, } from './diagnostics.js';
+export type { FingerprintSnapshot, IpReputationResult, AkamaiTestResult, AntiBotTestResult, AntiBotVendor, } from './diagnostics.js';
 export type { BlackTipConfig, ProfileConfig, DeviceProfile, PluginData, ActionResult, NavigateResult, ScreenshotResult, WaitResult, ActionEvent, BehavioralMetadata, ErrorEvent, RetryEvent, TabChangeEvent, LogEntry, TabInfo, FrameInfo, LogLevel, ClickOptions, TypeOptions, ScrollOptions, HoverOptions, SelectOptions, PressKeyOptions, UploadFileOptions, NavigateOptions, ScreenshotOptions, WaitForOptions, WaitForNavigationOptions, ExtractTextOptions, PageContentOptions, ErrorCode, RetryStrategy, Point, BoundingBox, } from './types.js';
 export { ErrorCodes } from './types.js';
 //# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AACxD,OAAO,EAAE,gBAAgB,EAAE,aAAa,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AAC1F,YAAY,EAAE,SAAS,EAAE,aAAa,EAAE,UAAU,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAC;AACrG,OAAO,EAAE,oBAAoB,EAAE,MAAM,kBAAkB,CAAC;AACxD,OAAO,EAAE,sBAAsB,EAAE,MAAM,cAAc,CAAC;AACtD,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACpD,OAAO,EAAE,MAAM,EAAE,MAAM,cAAc,CAAC;AACtC,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAGhD,OAAO,EACL,eAAe,EACf,WAAW,EACX,gBAAgB,EAChB,iBAAiB,EACjB,cAAc,EACd,mBAAmB,GACpB,MAAM,6BAA6B,CAAC;AACrC,YAAY,EACV,WAAW,EACX,aAAa,EACb,eAAe,EACf,aAAa,EACb,eAAe,EACf,QAAQ,EACR,SAAS,EACT,iBAAiB,GAClB,MAAM,6BAA6B,CAAC;AAErC,OAAO,EAAE,SAAS,EAAE,cAAc,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AACxE,YAAY,EAAE,eAAe,EAAE,aAAa,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAEnF,OAAO,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AAChD,YAAY,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AAErD,OAAO,EACL,mBAAmB,EACnB,iBAAiB,EACjB,eAAe,EACf,UAAU,GACX,MAAM,oBAAoB,CAAC;AAC5B,YAAY,EAAE,eAAe,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AAEzE,YAAY,EACV,cAAc,EACd,aAAa,EACb,aAAa,EACb,UAAU,EACV,YAAY,EACZ,cAAc,EACd,gBAAgB,EAChB,UAAU,EACV,WAAW,EACX,kBAAkB,EAClB,UAAU,EACV,UAAU,EACV,cAAc,EACd,QAAQ,EACR,OAAO,EACP,SAAS,EACT,QAAQ,EACR,YAAY,EACZ,WAAW,EACX,aAAa,EACb,YAAY,EACZ,aAAa,EACb,eAAe,EACf,iBAAiB,EACjB,eAAe,EACf,iBAAiB,EACjB,cAAc,EACd,wBAAwB,EACxB,kBAAkB,EAClB,kBAAkB,EAClB,SAAS,EACT,aAAa,EACb,KAAK,EACL,WAAW,GACZ,MAAM,YAAY,CAAC;AAEpB,OAAO,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AACxD,OAAO,EAAE,gBAAgB,EAAE,aAAa,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AAC1F,YAAY,EAAE,SAAS,EAAE,aAAa,EAAE,UAAU,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAC;AACrG,OAAO,EAAE,oBAAoB,EAAE,MAAM,kBAAkB,CAAC;AACxD,OAAO,EAAE,sBAAsB,EAAE,MAAM,cAAc,CAAC;AACtD,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACpD,OAAO,EAAE,MAAM,EAAE,MAAM,cAAc,CAAC;AACtC,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAGhD,OAAO,EACL,eAAe,EACf,WAAW,EACX,gBAAgB,EAChB,iBAAiB,EACjB,cAAc,EACd,mBAAmB,GACpB,MAAM,6BAA6B,CAAC;AACrC,YAAY,EACV,WAAW,EACX,aAAa,EACb,eAAe,EACf,aAAa,EACb,eAAe,EACf,QAAQ,EACR,SAAS,EACT,iBAAiB,GAClB,MAAM,6BAA6B,CAAC;AAGrC,OAAO,EACL,oBAAoB,EACpB,oBAAoB,EACpB,yBAAyB,EACzB,UAAU,GACX,MAAM,yBAAyB,CAAC;AAGjC,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AACvD,YAAY,EAAE,UAAU,EAAE,WAAW,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAC;AAGnF,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,YAAY,EACV,QAAQ,EACR,mBAAmB,EACnB,cAAc,EACd,iBAAiB,GAClB,MAAM,oBAAoB,CAAC;AAE5B,OAAO,EAAE,SAAS,EAAE,cAAc,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AACxE,YAAY,EAAE,eAAe,EAAE,aAAa,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAEnF,OAAO,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AAChD,YAAY,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AAErD,OAAO,EACL,mBAAmB,EACnB,iBAAiB,EACjB,eAAe,EACf,UAAU,GACX,MAAM,oBAAoB,CAAC;AAC5B,YAAY,EAAE,eAAe,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AAGzE,OAAO,EACL,kBAAkB,EAClB,iBAAiB,EACjB,iBAAiB,EACjB,kBAAkB,GACnB,MAAM,kBAAkB,CAAC;AAC1B,YAAY,EACV,mBAAmB,EACnB,kBAAkB,EAClB,gBAAgB,EAChB,iBAAiB,EACjB,aAAa,GACd,MAAM,kBAAkB,CAAC;AAE1B,YAAY,EACV,cAAc,EACd,aAAa,EACb,aAAa,EACb,UAAU,EACV,YAAY,EACZ,cAAc,EACd,gBAAgB,EAChB,UAAU,EACV,WAAW,EACX,kBAAkB,EAClB,UAAU,EACV,UAAU,EACV,cAAc,EACd,QAAQ,EACR,OAAO,EACP,SAAS,EACT,QAAQ,EACR,YAAY,EACZ,WAAW,EACX,aAAa,EACb,YAAY,EACZ,aAAa,EACb,eAAe,EACf,iBAAiB,EACjB,eAAe,EACf,iBAAiB,EACjB,cAAc,EACd,wBAAwB,EACxB,kBAAkB,EAClB,kBAAkB,EAClB,SAAS,EACT,aAAa,EACb,KAAK,EACL,WAAW,GACZ,MAAM,YAAY,CAAC;AAEpB,OAAO,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC"}

package/dist/index.js

@@ -7,8 +7,16 @@ export { Logger } from './logging.js';
 export { BrowserCore } from './browser-core.js';
 // v2 additions — Tier 2 calibration, Tier 3 infrastructure, observability.
 export { fitDistribution, fitFittsLaw, fitMouseDynamics, fitTypingDynamics, fitFromSamples, deriveProfileConfig, } from './behavioral/calibration.js';
+// v0.3.0 — dataset parsers for end-to-end calibration
+export { parseCmuKeystrokeCsv, parseBalabitMouseCsv, parseGenericTelemetryJson, CMU_PHRASE, } from './behavioral/parsers.js';
+// v0.3.0 — TLS side-channel via bogdanfinn/tls-client
+export { TlsSideChannel } from './tls-side-channel.js';
+// v0.4.0 — IdentityPool: long-running session and identity rotation
+export { IdentityPool } from './identity-pool.js';
 export { ProxyPool, ProxyProviders, proxyToUrl } from './proxy-pool.js';
 export { SnapshotManager } from './snapshot.js';
 export { attachObservability, JsonlFileExporter, ConsoleExporter, newTraceId, } from './observability.js';
+// v0.2.0 — stealth diagnostics
+export { captureFingerprint, checkIpReputation, testAgainstAkamai, testAgainstAntiBot, } from './diagnostics.js';
 export { ErrorCodes } from './types.js';
 //# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AACxD,OAAO,EAAE,gBAAgB,EAAE,aAAa,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AAE1F,OAAO,EAAE,oBAAoB,EAAE,MAAM,kBAAkB,CAAC;AACxD,OAAO,EAAE,sBAAsB,EAAE,MAAM,cAAc,CAAC;AACtD,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACpD,OAAO,EAAE,MAAM,EAAE,MAAM,cAAc,CAAC;AACtC,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAEhD,2EAA2E;AAC3E,OAAO,EACL,eAAe,EACf,WAAW,EACX,gBAAgB,EAChB,iBAAiB,EACjB,cAAc,EACd,mBAAmB,GACpB,MAAM,6BAA6B,CAAC;AAYrC,OAAO,EAAE,SAAS,EAAE,cAAc,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAGxE,OAAO,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AAGhD,OAAO,EACL,mBAAmB,EACnB,iBAAiB,EACjB,eAAe,EACf,UAAU,GACX,MAAM,oBAAoB,CAAC;AAwC5B,OAAO,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AACxD,OAAO,EAAE,gBAAgB,EAAE,aAAa,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AAE1F,OAAO,EAAE,oBAAoB,EAAE,MAAM,kBAAkB,CAAC;AACxD,OAAO,EAAE,sBAAsB,EAAE,MAAM,cAAc,CAAC;AACtD,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACpD,OAAO,EAAE,MAAM,EAAE,MAAM,cAAc,CAAC;AACtC,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAEhD,2EAA2E;AAC3E,OAAO,EACL,eAAe,EACf,WAAW,EACX,gBAAgB,EAChB,iBAAiB,EACjB,cAAc,EACd,mBAAmB,GACpB,MAAM,6BAA6B,CAAC;AAYrC,sDAAsD;AACtD,OAAO,EACL,oBAAoB,EACpB,oBAAoB,EACpB,yBAAyB,EACzB,UAAU,GACX,MAAM,yBAAyB,CAAC;AAEjC,sDAAsD;AACtD,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAGvD,oEAAoE;AACpE,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAQlD,OAAO,EAAE,SAAS,EAAE,cAAc,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAGxE,OAAO,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AAGhD,OAAO,EACL,mBAAmB,EACnB,iBAAiB,EACjB,eAAe,EACf,UAAU,GACX,MAAM,oBAAoB,CAAC;AAG5B,+BAA+B;AAC/B,OAAO,EACL,kBAAkB,EAClB,iBAAiB,EACjB,iBAAiB,EACjB,kBAAkB,GACnB,MAAM,kBAAkB,CAAC;AA8C1B,OAAO,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC"}

package/dist/tls-side-channel.d.ts

@@ -0,0 +1,82 @@
+/**
+ * TLS side-channel — spawns the Go-based bogdanfinn/tls-client daemon
+ * and exposes a `fetchWithTls()` primitive that performs HTTP requests
+ * with a real Chrome TLS ClientHello, real H2 frame settings, and real
+ * H2 frame order. Used to make gating requests that the browser can't
+ * make through itself, then inject the resulting cookies into the
+ * BlackTip browser session.
+ *
+ * This is the v0.3.0 answer to "an edge gates the very first request
+ * before BlackTip's browser even has a session." Use it as follows:
+ *
+ *   const channel = await TlsSideChannel.spawn();
+ *   const resp = await channel.fetch('https://protected.example.com/');
+ *   await bt.setCookies(resp.cookies.map(c => ({ name: c.name, value: c.value, domain: c.domain, path: c.path })));
+ *   await bt.navigate('https://protected.example.com/');
+ *   // ... browser session now has the cookies the gating request earned
+ *   await channel.close();
+ *
+ * The daemon binary lives in `native/tls-client/blacktip-tls` (Linux/macOS)
+ * or `native/tls-client/blacktip-tls.exe` (Windows). Build it once with
+ * `cd native/tls-client && go build -o blacktip-tls .` — Go is the only
+ * build dependency, and you can grab it from https://go.dev/dl/.
+ *
+ * The daemon stays alive across many requests so we don't pay subprocess
+ * startup cost per call. It uses a newline-delimited JSON wire protocol
+ * with per-request IDs, so multiple `fetch()` calls can be in flight
+ * concurrently without interleaving issues.
+ */
+export interface TlsRequest {
+    url: string;
+    method?: string;
+    headers?: Record<string, string>;
+    /** Request body as a UTF-8 string (will be base64-encoded for the wire). */
+    body?: string;
+    timeoutMs?: number;
+    /** Chrome / Firefox / Safari profile name; defaults to chrome_133. */
+    profile?: string;
+}
+export interface TlsResponse {
+    status: number;
+    /** Headers from the upstream response, lower-cased keys. */
+    headers: Record<string, string[]>;
+    /** Response body as a UTF-8 string (decoded from the wire's base64). */
+    body: string;
+    finalUrl: string;
+    durationMs: number;
+    /** Cookies parsed from `Set-Cookie` headers, ready to inject via `bt.setCookies()`. */
+    cookies: ParsedCookie[];
+}
+export interface ParsedCookie {
+    name: string;
+    value: string;
+    domain: string;
+    path: string;
+    httpOnly: boolean;
+    secure: boolean;
+    sameSite?: 'Strict' | 'Lax' | 'None';
+    expires?: number;
+}
+export declare class TlsSideChannel {
+    private proc;
+    private rl;
+    private pending;
+    private nextId;
+    private closed;
+    private constructor();
+    /**
+     * Spawn the daemon. Throws if the binary isn't built or can't start.
+     * The daemon stays alive until you call `close()`.
+     */
+    static spawn(): Promise<TlsSideChannel>;
+    private handleLine;
+    /**
+     * Perform a single TLS-impersonated request. Multiple `fetch()` calls
+     * can be in flight concurrently — the daemon handles each in its own
+     * goroutine and matches responses by id.
+     */
+    fetch(req: TlsRequest): Promise<TlsResponse>;
+    /** Shut down the daemon and clean up the subprocess. */
+    close(): Promise<void>;
+}
+//# sourceMappingURL=tls-side-channel.d.ts.map

package/dist/tls-side-channel.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"tls-side-channel.d.ts","sourceRoot":"","sources":["../src/tls-side-channel.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2BG;AAUH,MAAM,WAAW,UAAU;IACzB,GAAG,EAAE,MAAM,CAAC;IACZ,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACjC,4EAA4E;IAC5E,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,sEAAsE;IACtE,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,WAAW;IAC1B,MAAM,EAAE,MAAM,CAAC;IACf,4DAA4D;IAC5D,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;IAClC,wEAAwE;IACxE,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,EAAE,MAAM,CAAC;IACnB,uFAAuF;IACvF,OAAO,EAAE,YAAY,EAAE,CAAC;CACzB;AAED,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,OAAO,CAAC;IAClB,MAAM,EAAE,OAAO,CAAC;IAChB,QAAQ,CAAC,EAAE,QAAQ,GAAG,KAAK,GAAG,MAAM,CAAC;IACrC,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAoGD,qBAAa,cAAc;IACzB,OAAO,CAAC,IAAI,CAAiC;IAC7C,OAAO,CAAC,EAAE,CAAoB;IAC9B,OAAO,CAAC,OAAO,CAAqC;IACpD,OAAO,CAAC,MAAM,CAAK;IACnB,OAAO,CAAC,MAAM,CAAS;IAEvB,OAAO;IAYP;;;OAGG;WACU,KAAK,IAAI,OAAO,CAAC,cAAc,CAAC;IAU7C,OAAO,CAAC,UAAU;IA8ClB;;;;OAIG;IACG,KAAK,CAAC,GAAG,EAAE,UAAU,GAAG,OAAO,CAAC,WAAW,CAAC;IAuBlD,wDAAwD;IAClD,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;CAc7B"}