@sailfish-ai/recorder 1.10.12 → 1.10.13

package/dist/chunks/{index-DNOCpBMH.js → index-DvLh2k6O.js}

@@ -370,7 +370,7 @@ function initializeWebSocket(t2, n2, i2, o2, s2 = false) {
     const t3 = new URL(e2);
     return `${t3.hostname}${t3.port ? `:${t3.port}` : ""}`;
   })(t2);
-  let r2 = `${"https:" === new URL(t2).protocol ? "wss" : "ws"}://${a2}/ws/notify/?apiKey=${n2}&sessionId=${i2}&sender=JS%2FTS&version=1.10.12`;
+  let r2 = `${"https:" === new URL(t2).protocol ? "wss" : "ws"}://${a2}/ws/notify/?apiKey=${n2}&sessionId=${i2}&sender=JS%2FTS&version=1.10.13`;
   if (o2 && (r2 += `&envValue=${encodeURIComponent(o2)}`), k = s2 ? (function tryCreateWsWorker() {
     if ("undefined" == typeof Worker) return null;
     try {
@@ -701,7 +701,7 @@ async function initializeRecording(e2, n2, i2, o2, s2, a2 = true, r2 = false, l2
       }
       const { record: n4 } = await import("@sailfish-rrweb/rrweb-record-only");
       if (J = n4, await yieldToMain(), l2) {
-        const { chunkedSnapshot: i3 } = await import("./chunkSerializer-kuVb759b.js"), o3 = n4.mirror;
+        const { chunkedSnapshot: i3 } = await import("./chunkSerializer-Dk1eF3S8.js"), o3 = n4.mirror;
         let s3 = true;
         const a3 = [];
         n4({ emit(e3) {
@@ -2002,7 +2002,7 @@ function matchUrlWithWildcard(e2, t2) {
     let [n3, i3] = t3.split("/", 2), o3 = "";
     n3.includes(":") && ([n3, o3] = n3.split(":"));
     const r3 = getCachedRegex(`^${n3.replace(/\./g, "\\.").replace(/\*/g, ".*")}$`, "i"), c2 = l2.startsWith("www.") ? l2.slice(4) : l2;
-    if (o3 && a2 !== o3) return false;
+    if (o3 && "*" !== o3 && a2 !== o3) return false;
     if (n3.startsWith("*.")) {
       const e4 = n3.slice(2).toLowerCase();
       if (!(l2 === e4 || c2 === e4 || l2.endsWith("." + e4))) return false;
@@ -2018,34 +2018,34 @@ function matchUrlWithWildcard(e2, t2) {
     return true;
   });
 }
-function createSkipHeadersPropagationChecker(e2 = []) {
-  const t2 = [...Te, ...e2];
+function createSkipHeadersPropagationChecker(e2 = [], t2 = []) {
+  const n2 = [...Te, ...e2], i2 = t2.length > 0;
   return function shouldSkipHeadersPropagation(e3) {
-    let n2;
+    let o2;
     try {
-      n2 = new URL("string" == typeof e3 ? e3 : String((e3 == null ? void 0 : e3.url) ?? e3), window.location.href);
+      o2 = new URL("string" == typeof e3 ? e3 : String((e3 == null ? void 0 : e3.url) ?? e3), window.location.href);
     } catch {
       return true;
     }
-    const i2 = n2.pathname.toLowerCase(), o2 = i2.lastIndexOf(".");
-    return !(-1 === o2 || !Ie.has(i2.slice(o2))) || !!matchUrlWithWildcard(e3, t2);
+    const s2 = o2.pathname.toLowerCase(), a2 = s2.lastIndexOf(".");
+    return !(-1 === a2 || !Ie.has(s2.slice(a2))) || (!(!i2 || matchUrlWithWildcard(e3, t2)) || !!matchUrlWithWildcard(e3, n2));
   };
 }
-function setupFetchInterceptor(e2 = [], t2 = { captureStreamingResponseBody: true, captureResponseBodyMaxMb: 10, captureStreamPrefixKb: 64, captureStreamTimeoutMs: 1e4 }) {
-  const i2 = window.fetch, o2 = getOrSetSessionId(), s2 = createSkipHeadersPropagationChecker(e2), a2 = ["text/event-stream", "application/x-ndjson", "application/stream+json", "application/grpc", "application/grpc-web"], r2 = ["application/octet-stream"];
-  window.fetch = new Proxy(i2, { apply: async (e3, i3, l2) => {
-    let c2, d2 = l2[0], u2 = l2[1] || {};
+function setupFetchInterceptor(e2 = [], t2 = { captureStreamingResponseBody: true, captureResponseBodyMaxMb: 10, captureStreamPrefixKb: 64, captureStreamTimeoutMs: 1e4 }, i2 = []) {
+  const o2 = window.fetch, s2 = getOrSetSessionId(), a2 = createSkipHeadersPropagationChecker(e2, i2), r2 = ["text/event-stream", "application/x-ndjson", "application/stream+json", "application/grpc", "application/grpc-web"], l2 = ["application/octet-stream"];
+  window.fetch = new Proxy(o2, { apply: async (e3, i3, o3) => {
+    let c2, d2 = o3[0], u2 = o3[1] || {};
     if ("string" == typeof d2) c2 = d2;
     else if (d2 instanceof Request) c2 = d2.url;
     else {
-      if (!(d2 instanceof URL)) return e3.apply(i3, l2);
+      if (!(d2 instanceof URL)) return e3.apply(i3, o3);
       c2 = d2.href;
     }
-    return s2(c2) ? e3.apply(i3, l2) : (async function injectHeaderWrapper(e4, i4, o3, s3, l3, c3, d3) {
+    return a2(c2) ? e3.apply(i3, o3) : (async function injectHeaderWrapper(e4, i4, o4, s3, a3, c3, d3) {
       var _a, _b;
-      if (!c3) return e4.apply(i4, o3);
+      if (!c3) return e4.apply(i4, o4);
       let u3 = uuidv4();
-      const p2 = getUrlAndStoredUuids(), f2 = l3.method || "GET", g2 = Date.now();
+      const p2 = getUrlAndStoredUuids(), f2 = a3.method || "GET", g2 = Date.now();
       let m2, h2 = {}, y2 = null;
       try {
         if (s3 instanceof Request) {
@@ -2057,11 +2057,11 @@ function setupFetchInterceptor(e2 = [], t2 = { captureStreamingResponseBody: tru
           } catch (e5) {
             y2 = null;
           }
-        } else l3.headers && (l3.headers instanceof Headers ? l3.headers.forEach((e5, t3) => {
+        } else a3.headers && (a3.headers instanceof Headers ? a3.headers.forEach((e5, t3) => {
           h2[t3] = e5;
-        }) : Array.isArray(l3.headers) ? l3.headers.forEach(([e5, t3]) => {
+        }) : Array.isArray(a3.headers) ? a3.headers.forEach(([e5, t3]) => {
           h2[e5] = t3;
-        }) : h2 = { ...l3.headers }), m2 = l3.body;
+        }) : h2 = { ...a3.headers }), m2 = a3.body;
       } catch (e5) {
         ke && console.warn("[Sailfish] Failed to capture request data:", e5);
       }
@@ -2072,38 +2072,38 @@ function setupFetchInterceptor(e2 = [], t2 = { captureStreamingResponseBody: tru
       h2[n] = w2, b2 && (h2[b2.name] = b2.value);
       maskAuthorizationHeader(h2);
       try {
-        let b3 = await (async function injectHeader(e5, t3, i5, o4, s4, a3, r3) {
-          const l4 = getFuncSpanHeader();
+        let b3 = await (async function injectHeader(e5, t3, i5, o5, s4, a4, r3) {
+          const l3 = getFuncSpanHeader();
           if (i5 instanceof Request) {
             const c4 = i5.clone(), d4 = new Headers(c4.headers);
-            d4.set(n, `${s4}/${a3}/${r3}`), l4 && (d4.set(l4.name, l4.value), ke && console.log("[Sailfish] Added funcspan header to HTTP Request:", { url: i5.url, header: l4.name }));
+            d4.set(n, `${s4}/${a4}/${r3}`), l3 && (d4.set(l3.name, l3.value), ke && console.log("[Sailfish] Added funcspan header to HTTP Request:", { url: i5.url, header: l3.name }));
             const u4 = new Request(c4, { headers: d4 });
-            return await e5.call(t3, u4, o4);
+            return await e5.call(t3, u4, o5);
           }
           {
-            const c4 = { ...o4 }, d4 = new Headers(o4.headers || {});
-            return d4.set(n, `${s4}/${a3}/${r3}`), l4 && (d4.set(l4.name, l4.value), ke && console.log("[Sailfish] Added funcspan header to HTTP fetch:", { url: "string" == typeof i5 ? i5 : i5.href, header: l4.name })), c4.headers = d4, await e5.call(t3, i5, c4);
+            const c4 = { ...o5 }, d4 = new Headers(o5.headers || {});
+            return d4.set(n, `${s4}/${a4}/${r3}`), l3 && (d4.set(l3.name, l3.value), ke && console.log("[Sailfish] Added funcspan header to HTTP fetch:", { url: "string" == typeof i5 ? i5 : i5.href, header: l3.name })), c4.headers = d4, await e5.call(t3, i5, c4);
           }
-        })(e4, i4, s3, l3, c3, p2.page_visit_uuid, u3), w3 = false;
-        Ee.includes(b3.status) && (ke && console.log("Perform retry as status was fail:", b3), delete h2[n], b3 = await (async function retryWithoutPropagateHeaders(e5, t3, i5, o4) {
+        })(e4, i4, s3, a3, c3, p2.page_visit_uuid, u3), w3 = false;
+        Ee.includes(b3.status) && (ke && console.log("Perform retry as status was fail:", b3), delete h2[n], b3 = await (async function retryWithoutPropagateHeaders(e5, t3, i5, o5) {
           try {
-            let o5 = i5[0], s4 = i5[1] || {};
-            if ("string" == typeof o5 || o5 instanceof URL) {
-              const i6 = { ...s4 }, a3 = new Headers(s4.headers || {});
-              a3.delete(n), i6.headers = a3;
-              return await e5.call(t3, o5, i6);
+            let o6 = i5[0], s4 = i5[1] || {};
+            if ("string" == typeof o6 || o6 instanceof URL) {
+              const i6 = { ...s4 }, a4 = new Headers(s4.headers || {});
+              a4.delete(n), i6.headers = a4;
+              return await e5.call(t3, o6, i6);
             }
-            if (o5 instanceof Request) {
-              const i6 = o5.clone(), a3 = new Headers(i6.headers);
-              a3.delete(n);
-              const r3 = new Request(i6, { headers: a3 });
+            if (o6 instanceof Request) {
+              const i6 = o6.clone(), a4 = new Headers(i6.headers);
+              a4.delete(n);
+              const r3 = new Request(i6, { headers: a4 });
               return await e5.call(t3, r3, s4);
             }
             return e5.apply(t3, i5);
           } catch (e6) {
-            throw ke && console.log(`Retry without ${n} for ${o4} also failed:`, e6), e6;
+            throw ke && console.log(`Retry without ${n} for ${o5} also failed:`, e6), e6;
           }
-        })(e4, i4, o3, d3), w3 = true);
+        })(e4, i4, o4, d3), w3 = true);
         const v2 = Date.now(), S2 = b3.status, k2 = b3.ok, x2 = k2 ? "" : `Request Error: ${b3.statusText}`;
         let I2 = null;
         try {
@@ -2125,32 +2125,32 @@ function setupFetchInterceptor(e2 = [], t2 = { captureStreamingResponseBody: tru
           const t3 = e5.headers.get("content-type");
           if (!t3) return false;
           const n2 = t3.toLowerCase();
-          return r2.some((e6) => n2.includes(e6));
+          return l2.some((e6) => n2.includes(e6));
         })(b3)) sendEventWithBody(null);
         else if ((function isStreamingResponse(e5) {
           const t3 = e5.headers.get("content-type");
           if (!t3) return false;
           const n2 = t3.toLowerCase();
-          return a2.some((e6) => n2.includes(e6));
+          return r2.some((e6) => n2.includes(e6));
         })(b3)) if (t2.captureStreamingResponseBody) try {
           (async function readStreamPrefix(e5, t3, n2) {
             const i5 = e5.body;
             if (!i5) return null;
-            const o4 = i5.getReader(), s4 = new TextDecoder(), a3 = [];
+            const o5 = i5.getReader(), s4 = new TextDecoder(), a4 = [];
             let r3 = 0;
             const readWithLimit = async () => {
               try {
                 for (; r3 < t3; ) {
-                  const { done: e6, value: t4 } = await o4.read();
+                  const { done: e6, value: t4 } = await o5.read();
                   if (e6) break;
-                  r3 += t4.byteLength, a3.push(s4.decode(t4, { stream: true }));
+                  r3 += t4.byteLength, a4.push(s4.decode(t4, { stream: true }));
                 }
-                return a3.push(s4.decode()), a3.join("");
+                return a4.push(s4.decode()), a4.join("");
               } catch {
-                return a3.length > 0 ? a3.join("") : null;
+                return a4.length > 0 ? a4.join("") : null;
               } finally {
                 try {
-                  o4.cancel();
+                  o5.cancel();
                 } catch {
                 }
               }
@@ -2158,14 +2158,14 @@ function setupFetchInterceptor(e2 = [], t2 = { captureStreamingResponseBody: tru
             try {
               return await Promise.race([readWithLimit(), new Promise((e6) => setTimeout(() => {
                 try {
-                  o4.cancel();
+                  o5.cancel();
                 } catch {
                 }
-                e6(a3.length > 0 ? a3.join("") : null);
+                e6(a4.length > 0 ? a4.join("") : null);
               }, n2))]);
             } catch {
               try {
-                o4.cancel();
+                o5.cancel();
               } catch {
               }
               return null;
@@ -2188,17 +2188,17 @@ function setupFetchInterceptor(e2 = [], t2 = { captureStreamingResponseBody: tru
         }
         return b3;
       } catch (t3) {
-        const n2 = Date.now(), s4 = false, a3 = ((_a = t3.response) == null ? void 0 : _a.status) || 500, r3 = t3.message || "Fetch request failed";
-        if (t3 instanceof TypeError && ((_b = t3 == null ? void 0 : t3.message) == null ? void 0 : _b.toLowerCase().includes(Ce.toLowerCase()))) return e4.apply(i4, o3);
-        let l4 = m2;
+        const n2 = Date.now(), s4 = false, a4 = ((_a = t3.response) == null ? void 0 : _a.status) || 500, r3 = t3.message || "Fetch request failed";
+        if (t3 instanceof TypeError && ((_b = t3 == null ? void 0 : t3.message) == null ? void 0 : _b.toLowerCase().includes(Ce.toLowerCase()))) return e4.apply(i4, o4);
+        let l3 = m2;
         if (y2) try {
-          l4 = await y2.text();
+          l3 = await y2.text();
         } catch {
-          l4 = null;
+          l3 = null;
         }
-        throw sendEvent({ type: 27, timestamp: n2, sessionId: c3, data: { request_id: u3, session_id: c3, timestamp_start: g2, timestamp_end: n2, response_code: a3, success: s4, error: r3, method: f2, url: d3, request_headers: h2, request_body: l4, response_body: null }, ...p2 }), t3;
+        throw sendEvent({ type: 27, timestamp: n2, sessionId: c3, data: { request_id: u3, session_id: c3, timestamp_start: g2, timestamp_end: n2, response_code: a4, success: s4, error: r3, method: f2, url: d3, request_headers: h2, request_body: l3, response_body: null }, ...p2 }), t3;
       }
-    })(e3, i3, l2, d2, u2, o2, c2);
+    })(e3, i3, o3, d2, u2, s2, c2);
   } });
 }
 async function startRecording({ apiKey: e2, backendApi: t2 = "https://api-service.sailfishqa.com", domainsToPropagateHeaderTo: i2 = [], domainsToNotPropagateHeaderTo: o2 = [], serviceVersion: s2, serviceIdentifier: a2, gitSha: r2, serviceAdditionalMetadata: l2, enableIpTracking: c2, captureStreamingResponseBody: d2 = true, captureResponseBodyMaxMb: u2 = 10, captureStreamPrefixKb: p2 = 64, captureStreamTimeoutMs: f2 = 1e4, enableFiberTracking: m2 = false, deferRecording: h2, deferRecordingStart: y2, chunkSnapshot: b2, useWsWorker: w2 = true }) {
@@ -2217,17 +2217,17 @@ async function startRecording({ apiKey: e2, backendApi: t2 = "https://api-servic
   const v2 = h2 ?? y2 ?? true, S2 = getOrSetSessionId(), k2 = window.__sailfish_recorder || (window.__sailfish_recorder = {});
   if (k2.sessionId = S2, k2.apiKey = e2, k2.backendApi = t2, k2.serviceAdditionalMetadata = l2, k2.initialized && k2.sessionId === S2 && k2.ws && 1 === k2.ws.readyState) return void trackDomainChangesOnce();
   const x2 = { captureStreamingResponseBody: d2, captureResponseBodyMaxMb: u2, captureStreamPrefixKb: p2, captureStreamTimeoutMs: f2 };
-  sessionStorage.getItem("pageVisitUUID") || (sessionStorage.setItem("pageVisitUUID", uuidv4()), invalidateUrlCache()), k2.xhrPatched || (!(function setupXMLHttpRequestInterceptor(e3 = [], t3 = { captureStreamingResponseBody: true, captureResponseBodyMaxMb: 10, captureStreamPrefixKb: 64, captureStreamTimeoutMs: 1e4 }) {
-    const i3 = XMLHttpRequest.prototype.open, o3 = XMLHttpRequest.prototype.send, s3 = XMLHttpRequest.prototype.setRequestHeader, a3 = getOrSetSessionId(), r3 = createSkipHeadersPropagationChecker(e3);
+  sessionStorage.getItem("pageVisitUUID") || (sessionStorage.setItem("pageVisitUUID", uuidv4()), invalidateUrlCache()), k2.xhrPatched || (!(function setupXMLHttpRequestInterceptor(e3 = [], t3 = { captureStreamingResponseBody: true, captureResponseBodyMaxMb: 10, captureStreamPrefixKb: 64, captureStreamTimeoutMs: 1e4 }, i3 = []) {
+    const o3 = XMLHttpRequest.prototype.open, s3 = XMLHttpRequest.prototype.send, a3 = XMLHttpRequest.prototype.setRequestHeader, r3 = getOrSetSessionId(), l3 = createSkipHeadersPropagationChecker(e3, i3);
     XMLHttpRequest.prototype.setRequestHeader = function(e4, t4) {
-      return this._capturedRequestHeaders || (this._capturedRequestHeaders = {}), this._capturedRequestHeaders[e4] = t4, s3.call(this, e4, t4);
+      return this._capturedRequestHeaders || (this._capturedRequestHeaders = {}), this._capturedRequestHeaders[e4] = t4, a3.call(this, e4, t4);
     }, XMLHttpRequest.prototype.open = function(e4, t4, ...n2) {
-      return this._requestUrl = "string" == typeof t4 && t4.length > 0 ? t4 : null, this._requestMethod = e4, this._capturedRequestHeaders = {}, i3.apply(this, [e4, t4, ...n2]);
+      return this._requestUrl = "string" == typeof t4 && t4.length > 0 ? t4 : null, this._requestMethod = e4, this._capturedRequestHeaders = {}, o3.apply(this, [e4, t4, ...n2]);
     }, XMLHttpRequest.prototype.send = function(...e4) {
       const i4 = this._requestUrl;
-      if (!i4) return o3.apply(this, e4);
-      if (r3(i4)) return o3.apply(this, e4);
-      const s4 = sessionStorage.getItem("pageVisitUUID"), l3 = uuidv4(), c3 = `${a3}/${s4}/${l3}`;
+      if (!i4) return s3.apply(this, e4);
+      if (l3(i4)) return s3.apply(this, e4);
+      const o4 = sessionStorage.getItem("pageVisitUUID"), a4 = uuidv4(), c3 = `${r3}/${o4}/${a4}`;
       try {
         this.setRequestHeader(n, c3);
       } catch (e5) {
@@ -2243,21 +2243,21 @@ async function startRecording({ apiKey: e2, backendApi: t2 = "https://api-servic
       let p3 = false;
       const f3 = e4[0], g2 = { ...this._capturedRequestHeaders };
       maskAuthorizationHeader(g2);
-      const emitFinished = (e5, t4, n2, o4, s5) => {
+      const emitFinished = (e5, t4, n2, o5, s4) => {
         if (p3) return;
         p3 = true;
-        const r4 = Date.now();
-        sendEvent({ type: 27, timestamp: r4, sessionId: a3, data: { request_id: l3, session_id: a3, timestamp_start: u3, timestamp_end: r4, response_code: t4, success: e5, error: n2, method: this._requestMethod, url: i4, request_headers: g2, request_body: f3, response_headers: s5, response_body: o4 }, ...getUrlAndStoredUuids() });
+        const l4 = Date.now();
+        sendEvent({ type: 27, timestamp: l4, sessionId: r3, data: { request_id: a4, session_id: r3, timestamp_start: u3, timestamp_end: l4, response_code: t4, success: e5, error: n2, method: this._requestMethod, url: i4, request_headers: g2, request_body: f3, response_headers: s4, response_body: o5 }, ...getUrlAndStoredUuids() });
       };
       return this.addEventListener("load", () => {
         const e5 = this.status || 0;
         let n2, i5 = null;
-        const o4 = 1024 * t3.captureResponseBodyMaxMb * 1024;
+        const o5 = 1024 * t3.captureResponseBodyMaxMb * 1024;
         try {
           if (0 === t3.captureResponseBodyMaxMb) n2 = null;
           else {
             const e6 = this.responseText || this.response;
-            n2 = "string" == typeof e6 && e6.length > o4 ? null : e6;
+            n2 = "string" == typeof e6 && e6.length > o5 ? null : e6;
           }
         } catch (e6) {
           n2 = null;
@@ -2280,9 +2280,9 @@ async function startRecording({ apiKey: e2, backendApi: t2 = "https://api-servic
       }, { once: true }), this.addEventListener("error", () => {
         const e5 = this.status || 0, t4 = 0 === e5 ? "Network or CORS failure" : this.statusText || `Error ${e5}`;
         emitFinished(false, e5, t4);
-      }, { once: true }), o3.apply(this, e4);
+      }, { once: true }), s3.apply(this, e4);
     };
-  })(o2, x2), k2.xhrPatched = true), k2.fetchPatched || (setupFetchInterceptor(o2, x2), k2.fetchPatched = true), await yieldToMain(), k2.domEventsInit || (initializeDomContentEvents(S2), k2.domEventsInit = true), await yieldToMain(), k2.consoleInit || (initializeConsolePlugin(Ae, S2), k2.consoleInit = true), await yieldToMain(), k2.errorInit || (!(function initializeErrorInterceptor() {
+  })(o2, x2, i2), k2.xhrPatched = true), k2.fetchPatched || (setupFetchInterceptor(o2, x2, i2), k2.fetchPatched = true), await yieldToMain(), k2.domEventsInit || (initializeDomContentEvents(S2), k2.domEventsInit = true), await yieldToMain(), k2.consoleInit || (initializeConsolePlugin(Ae, S2), k2.consoleInit = true), await yieldToMain(), k2.errorInit || (!(function initializeErrorInterceptor() {
     window.addEventListener("error", (e3) => {
       captureError(e3.error || e3.message);
     }), window.addEventListener("unhandledrejection", (e3) => {
@@ -2369,49 +2369,50 @@ const initRecorder = async (e2) => {
   })), t2.initPromise);
 };
 export {
-  initializeRecording as A,
-  initializeWebSocket as B,
-  invalidateUrlCache as C,
+  initializeFunctionSpanTrackingFromApi as A,
+  initializeRecording as B,
+  initializeWebSocket as C,
   Me as D,
-  isFunctionSpanTrackingEnabled as E,
-  matchUrlWithWildcard as F,
-  w as G,
-  onNavigationChange as H,
-  openReportIssueModal as I,
-  restoreFuncSpanState as J,
-  sendDomainsToNotPropagateHeaderTo as K,
-  sendEvent as L,
-  sendGraphQLRequest as M,
-  sendMessage as N,
-  startRecording as O,
-  startRecordingSession as P,
-  trackingEvent as Q,
-  withAppUrlMetadata as R,
+  invalidateUrlCache as E,
+  isFunctionSpanTrackingEnabled as F,
+  matchUrlWithWildcard as G,
+  w as H,
+  onNavigationChange as I,
+  openReportIssueModal as J,
+  restoreFuncSpanState as K,
+  sendDomainsToNotPropagateHeaderTo as L,
+  sendEvent as M,
+  sendGraphQLRequest as N,
+  sendMessage as O,
+  startRecording as P,
+  startRecordingSession as Q,
+  trackingEvent as R,
   $e as S,
+  withAppUrlMetadata as T,
   Ae as a,
   addOrUpdateMetadata as b,
   buildBatches as c,
   clearStaleFuncSpanState as d,
-  createTriageAndIssueFromRecorder as e,
-  createTriageFromRecorder as f,
-  disableFunctionSpanTracking as g,
-  enableFunctionSpanTracking as h,
-  ensureHrefCache as i,
-  eventSize as j,
-  fetchAndSendIp as k,
-  fetchCaptureSettings as l,
-  fetchEngineeringTicketPlatformIntegrations as m,
-  fetchFunctionSpanTrackingEnabled as n,
-  flushBufferedEvents as o,
-  getCachedHref as p,
-  getCachedHrefNoQuery as q,
-  getFuncSpanHeader as r,
-  getOrSetSessionId as s,
-  getUrlAndStoredUuids as t,
-  identify as u,
-  initRecorder as v,
-  initializeConsolePlugin as w,
-  initializeDomContentEvents as x,
+  createSkipHeadersPropagationChecker as e,
+  createTriageAndIssueFromRecorder as f,
+  createTriageFromRecorder as g,
+  disableFunctionSpanTracking as h,
+  enableFunctionSpanTracking as i,
+  ensureHrefCache as j,
+  eventSize as k,
+  fetchAndSendIp as l,
+  fetchCaptureSettings as m,
+  fetchEngineeringTicketPlatformIntegrations as n,
+  fetchFunctionSpanTrackingEnabled as o,
+  flushBufferedEvents as p,
+  getCachedHref as q,
+  getCachedHrefNoQuery as r,
+  getFuncSpanHeader as s,
+  getOrSetSessionId as t,
+  getUrlAndStoredUuids as u,
+  identify as v,
+  initRecorder as w,
+  initializeConsolePlugin as x,
   yieldToMain as y,
-  initializeFunctionSpanTrackingFromApi as z
+  initializeDomContentEvents as z
 };

package/dist/index.js

@@ -348,8 +348,8 @@ export function matchUrlWithWildcard(input, patterns) {
         const domainRegex = getCachedRegex(`^${normalizedPatternDomain}$`, "i");
         // Strip 'www.' from both the input domain and the pattern domain for comparison
         const strippedDomain = domain.startsWith("www.") ? domain.slice(4) : domain;
-        // If pattern specifies a port, match the exact port
-        if (patternPort && port !== patternPort)
+        // If pattern specifies a port, match the exact port (or any port if wildcard)
+        if (patternPort && patternPort !== "*" && port !== patternPort)
             return false;
         // handle patterns like "*.example.com"
         if (patternDomain.startsWith("*.")) {
@@ -383,12 +383,14 @@ export function matchUrlWithWildcard(input, patterns) {
         return true;
     });
 }
-function createSkipHeadersPropagationChecker(domainsToNotPropagateHeaderTo = []) {
+export function createSkipHeadersPropagationChecker(domainsToNotPropagateHeaderTo = [], domainsToPropagateHeaderTo = []) {
     // Pre-compute the combined domain exclusion patterns once per interceptor setup
     const combinedPatterns = [
         ...DOMAINS_TO_NOT_PROPAGATE_HEADER_TO_DEFAULT,
         ...domainsToNotPropagateHeaderTo,
     ];
+    // Pre-compute allowlist presence once (avoids per-request .length check overhead)
+    const hasAllowlist = domainsToPropagateHeaderTo.length > 0;
     return function shouldSkipHeadersPropagation(url) {
         let urlObj;
         try {
@@ -404,7 +406,11 @@ function createSkipHeadersPropagationChecker(domainsToNotPropagateHeaderTo = [])
         if (lastDotIdx !== -1 && STATIC_EXTENSIONS_SET.has(lowerPathname.slice(lastDotIdx))) {
             return true;
         }
-        // 2️⃣ WILDCARD-BASED EXCLUSION (domain + path)
+        // 2️⃣ ALLOWLIST CHECK — if provided, URL must match at least one allowlist pattern
+        if (hasAllowlist && !matchUrlWithWildcard(url, domainsToPropagateHeaderTo)) {
+            return true;
+        }
+        // 3️⃣ WILDCARD-BASED EXCLUSION (domain + path) — blocklist still applies even if allowlisted
         if (matchUrlWithWildcard(url, combinedPatterns)) {
             return true;
         }
@@ -412,12 +418,12 @@ function createSkipHeadersPropagationChecker(domainsToNotPropagateHeaderTo = [])
     };
 }
 // Updated XMLHttpRequest interceptor with domain exclusion
-function setupXMLHttpRequestInterceptor(domainsToNotPropagateHeaderTo = [], bodyCaptureConfig = { captureStreamingResponseBody: true, captureResponseBodyMaxMb: 10, captureStreamPrefixKb: 64, captureStreamTimeoutMs: 10000 }) {
+function setupXMLHttpRequestInterceptor(domainsToNotPropagateHeaderTo = [], bodyCaptureConfig = { captureStreamingResponseBody: true, captureResponseBodyMaxMb: 10, captureStreamPrefixKb: 64, captureStreamTimeoutMs: 10000 }, domainsToPropagateHeaderTo = []) {
     const originalOpen = XMLHttpRequest.prototype.open;
     const originalSend = XMLHttpRequest.prototype.send;
     const originalSetRequestHeader = XMLHttpRequest.prototype.setRequestHeader;
     const sessionId = getOrSetSessionId();
-    const shouldSkipHeadersPropagation = createSkipHeadersPropagationChecker(domainsToNotPropagateHeaderTo);
+    const shouldSkipHeadersPropagation = createSkipHeadersPropagationChecker(domainsToNotPropagateHeaderTo, domainsToPropagateHeaderTo);
     // Intercept setRequestHeader()
     XMLHttpRequest.prototype.setRequestHeader = function (name, value) {
         // initialize the buffer on first use
@@ -580,10 +586,10 @@ function setupXMLHttpRequestInterceptor(domainsToNotPropagateHeaderTo = [], body
     };
 }
 // Updated fetch interceptor with exclusion handling
-function setupFetchInterceptor(domainsToNotPropagateHeadersTo = [], bodyCaptureConfig = { captureStreamingResponseBody: true, captureResponseBodyMaxMb: 10, captureStreamPrefixKb: 64, captureStreamTimeoutMs: 10000 }) {
+function setupFetchInterceptor(domainsToNotPropagateHeadersTo = [], bodyCaptureConfig = { captureStreamingResponseBody: true, captureResponseBodyMaxMb: 10, captureStreamPrefixKb: 64, captureStreamTimeoutMs: 10000 }, domainsToPropagateHeaderTo = []) {
     const originalFetch = window.fetch;
     const sessionId = getOrSetSessionId();
-    const shouldSkipHeadersPropagation = createSkipHeadersPropagationChecker(domainsToNotPropagateHeadersTo);
+    const shouldSkipHeadersPropagation = createSkipHeadersPropagationChecker(domainsToNotPropagateHeadersTo, domainsToPropagateHeaderTo);
     // --- Streaming detection helpers ---
     // Content types that indicate a streaming response.
     // These responses should NOT have their body fully consumed — only a limited prefix is captured.
@@ -1067,11 +1073,11 @@ export async function startRecording({ apiKey, backendApi = "https://api-service
     // 1a. XHR + Fetch interceptors (must both run synchronously before any yield,
     //     so fire-and-forget callers patch fetch before frameworks capture it)
     if (!g.xhrPatched) {
-        setupXMLHttpRequestInterceptor(domainsToNotPropagateHeaderTo, bodyCaptureConfig);
+        setupXMLHttpRequestInterceptor(domainsToNotPropagateHeaderTo, bodyCaptureConfig, domainsToPropagateHeaderTo);
         g.xhrPatched = true;
     }
     if (!g.fetchPatched) {
-        setupFetchInterceptor(domainsToNotPropagateHeaderTo, bodyCaptureConfig);
+        setupFetchInterceptor(domainsToNotPropagateHeaderTo, bodyCaptureConfig, domainsToPropagateHeaderTo);
         g.fetchPatched = true;
     }
     await yieldToMain();

package/dist/recorder.cjs

@@ -1,4 +1,4 @@
 "use strict";
 Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
-const e = require("./chunks/index-OzfaZiW-.js");
-exports.DEFAULT_CAPTURE_SETTINGS = e.DEFAULT_CAPTURE_SETTINGS, exports.DEFAULT_CONSOLE_RECORDING_SETTINGS = e.DEFAULT_CONSOLE_RECORDING_SETTINGS, exports.STORAGE_VERSION = e.STORAGE_VERSION, exports.addOrUpdateMetadata = e.addOrUpdateMetadata, exports.buildBatches = e.buildBatches, exports.clearStaleFuncSpanState = e.clearStaleFuncSpanState, exports.createTriageAndIssueFromRecorder = e.createTriageAndIssueFromRecorder, exports.createTriageFromRecorder = e.createTriageFromRecorder, exports.disableFunctionSpanTracking = e.disableFunctionSpanTracking, exports.enableFunctionSpanTracking = e.enableFunctionSpanTracking, exports.ensureHrefCache = e.ensureHrefCache, exports.eventSize = e.eventSize, exports.fetchAndSendIp = e.fetchAndSendIp, exports.fetchCaptureSettings = e.fetchCaptureSettings, exports.fetchEngineeringTicketPlatformIntegrations = e.fetchEngineeringTicketPlatformIntegrations, exports.fetchFunctionSpanTrackingEnabled = e.fetchFunctionSpanTrackingEnabled, exports.flushBufferedEvents = e.flushBufferedEvents, exports.getCachedHref = e.getCachedHref, exports.getCachedHrefNoQuery = e.getCachedHrefNoQuery, exports.getFuncSpanHeader = e.getFuncSpanHeader, exports.getOrSetSessionId = e.getOrSetSessionId, exports.getUrlAndStoredUuids = e.getUrlAndStoredUuids, exports.identify = e.identify, exports.initRecorder = e.initRecorder, exports.initializeConsolePlugin = e.initializeConsolePlugin, exports.initializeDomContentEvents = e.initializeDomContentEvents, exports.initializeFunctionSpanTrackingFromApi = e.initializeFunctionSpanTrackingFromApi, exports.initializeRecording = e.initializeRecording, exports.initializeWebSocket = e.initializeWebSocket, exports.invalidateUrlCache = e.invalidateUrlCache, exports.isFunctionSpanTrackingEnabled = e.isFunctionSpanTrackingEnabled, exports.matchUrlWithWildcard = e.matchUrlWithWildcard, Object.defineProperty(exports, "nowTimestamp", { enumerable: true, get: () => e.nowTimestamp }), exports.onNavigationChange = e.onNavigationChange, exports.openReportIssueModal = e.openReportIssueModal, exports.restoreFuncSpanState = e.restoreFuncSpanState, exports.sendDomainsToNotPropagateHeaderTo = e.sendDomainsToNotPropagateHeaderTo, exports.sendEvent = e.sendEvent, exports.sendGraphQLRequest = e.sendGraphQLRequest, exports.sendMessage = e.sendMessage, exports.startRecording = e.startRecording, exports.startRecordingSession = e.startRecordingSession, exports.trackingEvent = e.trackingEvent, exports.withAppUrlMetadata = e.withAppUrlMetadata;
+const e = require("./chunks/index-DW416eVj.js");
+exports.DEFAULT_CAPTURE_SETTINGS = e.DEFAULT_CAPTURE_SETTINGS, exports.DEFAULT_CONSOLE_RECORDING_SETTINGS = e.DEFAULT_CONSOLE_RECORDING_SETTINGS, exports.STORAGE_VERSION = e.STORAGE_VERSION, exports.addOrUpdateMetadata = e.addOrUpdateMetadata, exports.buildBatches = e.buildBatches, exports.clearStaleFuncSpanState = e.clearStaleFuncSpanState, exports.createSkipHeadersPropagationChecker = e.createSkipHeadersPropagationChecker, exports.createTriageAndIssueFromRecorder = e.createTriageAndIssueFromRecorder, exports.createTriageFromRecorder = e.createTriageFromRecorder, exports.disableFunctionSpanTracking = e.disableFunctionSpanTracking, exports.enableFunctionSpanTracking = e.enableFunctionSpanTracking, exports.ensureHrefCache = e.ensureHrefCache, exports.eventSize = e.eventSize, exports.fetchAndSendIp = e.fetchAndSendIp, exports.fetchCaptureSettings = e.fetchCaptureSettings, exports.fetchEngineeringTicketPlatformIntegrations = e.fetchEngineeringTicketPlatformIntegrations, exports.fetchFunctionSpanTrackingEnabled = e.fetchFunctionSpanTrackingEnabled, exports.flushBufferedEvents = e.flushBufferedEvents, exports.getCachedHref = e.getCachedHref, exports.getCachedHrefNoQuery = e.getCachedHrefNoQuery, exports.getFuncSpanHeader = e.getFuncSpanHeader, exports.getOrSetSessionId = e.getOrSetSessionId, exports.getUrlAndStoredUuids = e.getUrlAndStoredUuids, exports.identify = e.identify, exports.initRecorder = e.initRecorder, exports.initializeConsolePlugin = e.initializeConsolePlugin, exports.initializeDomContentEvents = e.initializeDomContentEvents, exports.initializeFunctionSpanTrackingFromApi = e.initializeFunctionSpanTrackingFromApi, exports.initializeRecording = e.initializeRecording, exports.initializeWebSocket = e.initializeWebSocket, exports.invalidateUrlCache = e.invalidateUrlCache, exports.isFunctionSpanTrackingEnabled = e.isFunctionSpanTrackingEnabled, exports.matchUrlWithWildcard = e.matchUrlWithWildcard, Object.defineProperty(exports, "nowTimestamp", { enumerable: true, get: () => e.nowTimestamp }), exports.onNavigationChange = e.onNavigationChange, exports.openReportIssueModal = e.openReportIssueModal, exports.restoreFuncSpanState = e.restoreFuncSpanState, exports.sendDomainsToNotPropagateHeaderTo = e.sendDomainsToNotPropagateHeaderTo, exports.sendEvent = e.sendEvent, exports.sendGraphQLRequest = e.sendGraphQLRequest, exports.sendMessage = e.sendMessage, exports.startRecording = e.startRecording, exports.startRecordingSession = e.startRecordingSession, exports.trackingEvent = e.trackingEvent, exports.withAppUrlMetadata = e.withAppUrlMetadata;

package/dist/recorder.js

@@ -1,4 +1,4 @@
-import { D, a, S, b, c, d, e, f, g, h, i, j, k, l, m, n, o, p, q, r, s, t, u, v, w, x, z, A, B, C, E, F, G, H, I, J, K, L, M, N, O, P, Q, R } from "./chunks/index-DNOCpBMH.js";
+import { D, a, S, b, c, d, e, f, g, h, i, j, k, l, m, n, o, p, q, r, s, t, u, v, w, x, z, A, B, C, E, F, G, H, I, J, K, L, M, N, O, P, Q, R, T } from "./chunks/index-DvLh2k6O.js";
 export {
   D as DEFAULT_CAPTURE_SETTINGS,
   a as DEFAULT_CONSOLE_RECORDING_SETTINGS,
@@ -6,42 +6,43 @@ export {
   b as addOrUpdateMetadata,
   c as buildBatches,
   d as clearStaleFuncSpanState,
-  e as createTriageAndIssueFromRecorder,
-  f as createTriageFromRecorder,
-  g as disableFunctionSpanTracking,
-  h as enableFunctionSpanTracking,
-  i as ensureHrefCache,
-  j as eventSize,
-  k as fetchAndSendIp,
-  l as fetchCaptureSettings,
-  m as fetchEngineeringTicketPlatformIntegrations,
-  n as fetchFunctionSpanTrackingEnabled,
-  o as flushBufferedEvents,
-  p as getCachedHref,
-  q as getCachedHrefNoQuery,
-  r as getFuncSpanHeader,
-  s as getOrSetSessionId,
-  t as getUrlAndStoredUuids,
-  u as identify,
-  v as initRecorder,
-  w as initializeConsolePlugin,
-  x as initializeDomContentEvents,
-  z as initializeFunctionSpanTrackingFromApi,
-  A as initializeRecording,
-  B as initializeWebSocket,
-  C as invalidateUrlCache,
-  E as isFunctionSpanTrackingEnabled,
-  F as matchUrlWithWildcard,
-  G as nowTimestamp,
-  H as onNavigationChange,
-  I as openReportIssueModal,
-  J as restoreFuncSpanState,
-  K as sendDomainsToNotPropagateHeaderTo,
-  L as sendEvent,
-  M as sendGraphQLRequest,
-  N as sendMessage,
-  O as startRecording,
-  P as startRecordingSession,
-  Q as trackingEvent,
-  R as withAppUrlMetadata
+  e as createSkipHeadersPropagationChecker,
+  f as createTriageAndIssueFromRecorder,
+  g as createTriageFromRecorder,
+  h as disableFunctionSpanTracking,
+  i as enableFunctionSpanTracking,
+  j as ensureHrefCache,
+  k as eventSize,
+  l as fetchAndSendIp,
+  m as fetchCaptureSettings,
+  n as fetchEngineeringTicketPlatformIntegrations,
+  o as fetchFunctionSpanTrackingEnabled,
+  p as flushBufferedEvents,
+  q as getCachedHref,
+  r as getCachedHrefNoQuery,
+  s as getFuncSpanHeader,
+  t as getOrSetSessionId,
+  u as getUrlAndStoredUuids,
+  v as identify,
+  w as initRecorder,
+  x as initializeConsolePlugin,
+  z as initializeDomContentEvents,
+  A as initializeFunctionSpanTrackingFromApi,
+  B as initializeRecording,
+  C as initializeWebSocket,
+  E as invalidateUrlCache,
+  F as isFunctionSpanTrackingEnabled,
+  G as matchUrlWithWildcard,
+  H as nowTimestamp,
+  I as onNavigationChange,
+  J as openReportIssueModal,
+  K as restoreFuncSpanState,
+  L as sendDomainsToNotPropagateHeaderTo,
+  M as sendEvent,
+  N as sendGraphQLRequest,
+  O as sendMessage,
+  P as startRecording,
+  Q as startRecordingSession,
+  R as trackingEvent,
+  T as withAppUrlMetadata
 };

package/dist/types/index.d.ts

@@ -5,6 +5,7 @@ export declare const STORAGE_VERSION = 1;
 export declare const DEFAULT_CAPTURE_SETTINGS: CaptureSettings;
 export declare const DEFAULT_CONSOLE_RECORDING_SETTINGS: LogRecordOptions;
 export declare function matchUrlWithWildcard(input: unknown, patterns: string[]): boolean;
+export declare function createSkipHeadersPropagationChecker(domainsToNotPropagateHeaderTo?: string[], domainsToPropagateHeaderTo?: string[]): (url: string) => boolean;
 export declare function startRecording({ apiKey, backendApi, domainsToPropagateHeaderTo, domainsToNotPropagateHeaderTo, serviceVersion, serviceIdentifier, gitSha, serviceAdditionalMetadata, enableIpTracking, captureStreamingResponseBody, captureResponseBodyMaxMb, captureStreamPrefixKb, captureStreamTimeoutMs, enableFiberTracking, deferRecording, deferRecordingStart, chunkSnapshot, useWsWorker, }: {
     apiKey: string;
     backendApi?: string;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@sailfish-ai/recorder",
-  "version": "1.10.12",
+  "version": "1.10.13",
   "publishPublicly": true,
   "type": "module",
   "main": "dist/recorder.cjs",