@sentry/junior 0.5.0 → 0.6.0

package/bin/junior.mjs

@@ -36,6 +36,15 @@ async function runInit(dir) {
   await runInitFn(dir);
 }
 
+async function runCheck(dir) {
+  const runCheckFn = await loadCliFunction(
+    "check",
+    "runCheck",
+    "Check module is unavailable; reinstall @sentry/junior and retry."
+  );
+  await runCheckFn(dir);
+}
+
 async function main() {
   const runCli = await loadCliFunction(
     "run",
@@ -44,7 +53,8 @@ async function main() {
   );
   const exitCode = await runCli(positionals, {
     runInit,
-    runSnapshotCreate
+    runSnapshotCreate,
+    runCheck
   });
   if (exitCode !== 0) {
     process.exit(exitCode);

package/dist/{bot-PFLNB5PC.js → bot-HXAROQ33.js}

@@ -4,10 +4,12 @@ import {
   createNormalizingStream,
   resetBotDepsForTests,
   setBotDepsForTests
-} from "./chunk-3ENACZ27.js";
-import "./chunk-BKYYVLVN.js";
-import "./chunk-PY4AI2GZ.js";
+} from "./chunk-QNOV65P4.js";
+import "./chunk-KT5HARSN.js";
+import "./chunk-5UJSQX4R.js";
 import "./chunk-Z5E25LRN.js";
+import "./chunk-PY4AI2GZ.js";
+import "./chunk-VW26MOSO.js";
 export {
   appSlackRuntime,
   bot,

package/dist/{chunk-BKYYVLVN.js → chunk-5UJSQX4R.js}

@@ -1,3 +1,7 @@
+import {
+  discoverInstalledPluginPackageContent,
+  discoverProjectRoots
+} from "./chunk-Z5E25LRN.js";
 import {
   logInfo,
   logWarn,
@@ -5,14 +9,12 @@ import {
   withSpan
 } from "./chunk-PY4AI2GZ.js";
 import {
-  discoverInstalledPluginPackageContent,
-  discoverProjectRoots
-} from "./chunk-Z5E25LRN.js";
+  parsePluginManifest
+} from "./chunk-VW26MOSO.js";
 
 // src/chat/plugins/registry.ts
 import { readFileSync, readdirSync, statSync } from "fs";
 import path2 from "path";
-import { parse as parseYaml } from "yaml";
 
 // src/chat/home.ts
 import fs from "fs";
@@ -32,7 +34,7 @@ function pathExists(targetPath) {
   }
 }
 function hasAnyDataMarkers(appDir) {
-  return pathExists(path.join(appDir, "SOUL.md"));
+  return pathExists(path.join(appDir, "SOUL.md")) || pathExists(path.join(appDir, "ABOUT.md"));
 }
 function scoreAppCandidate(appDir) {
   let score = 0;
@@ -73,7 +75,10 @@ function resolveHomeDir(cwd = process.cwd(), options) {
   if (pathExists(directApp) && hasAnyDataMarkers(directApp)) {
     return directApp;
   }
-  const candidates = resolveCandidateAppDirs(resolvedCwd, options?.projectRoots);
+  const candidates = resolveCandidateAppDirs(
+    resolvedCwd,
+    options?.projectRoots
+  );
   if (candidates.length === 0) {
     return directApp;
   }
@@ -96,10 +101,7 @@ function resolveContentRoots(subdir) {
   if (subdir === "data") {
     return [homeDir()];
   }
-  if (subdir === "skills") {
-    return [path.join(homeDir(), "skills"), path.resolve(process.cwd(), "skills")];
-  }
-  return [path.join(homeDir(), "plugins")];
+  return [path.join(homeDir(), subdir)];
 }
 function dataRoots() {
   return unique(resolveContentRoots("data"));
@@ -114,6 +116,10 @@ function soulPathCandidates() {
   const candidates = dataRoots().map((root) => path.join(root, "SOUL.md"));
   return unique(candidates);
 }
+function aboutPathCandidates() {
+  const candidates = dataRoots().map((root) => path.join(root, "ABOUT.md"));
+  return unique(candidates);
+}
 
 // src/chat/plugins/github-app-broker.ts
 import { createPrivateKey, createSign, randomUUID } from "crypto";
@@ -556,477 +562,6 @@ function createOAuthBearerBroker(manifest, credentials, deps) {
 }
 
 // src/chat/plugins/registry.ts
-var PLUGIN_NAME_RE = /^[a-z][a-z0-9-]*$/;
-var SHORT_CAPABILITY_RE = /^[a-z0-9]+(\.[a-z0-9-]+)*$/;
-var SHORT_CONFIG_KEY_RE = /^[a-z0-9]+(\.[a-z0-9-]+)*$/;
-var AUTH_TOKEN_ENV_RE = /^[A-Z][A-Z0-9_]*$/;
-var API_DOMAIN_RE = /^(?:[a-z0-9](?:[a-z0-9-]{0,61}[a-z0-9])?\.)+[a-z0-9](?:[a-z0-9-]{0,61}[a-z0-9])?$/;
-var RUNTIME_POSTINSTALL_CMD_RE = /^[A-Za-z0-9._/-]+$/;
-var RESERVED_AUTHORIZE_PARAM_KEYS = /* @__PURE__ */ new Set([
-  "client_id",
-  "scope",
-  "state",
-  "redirect_uri",
-  "response_type"
-]);
-var FORBIDDEN_API_HEADER_NAMES = /* @__PURE__ */ new Set(["authorization"]);
-var FORBIDDEN_TOKEN_HEADER_NAMES = /* @__PURE__ */ new Set(["authorization"]);
-function toRecord(value, errorMessage) {
-  if (!value || typeof value !== "object" || Array.isArray(value)) {
-    throw new Error(errorMessage);
-  }
-  return value;
-}
-function requireStringField(record, field, errorMessage) {
-  const value = record[field];
-  if (typeof value !== "string" || !value.trim()) {
-    throw new Error(errorMessage);
-  }
-  return value.trim();
-}
-function requireEnvVarField(record, field, pluginName) {
-  const value = requireStringField(
-    record,
-    field,
-    `Plugin ${pluginName} ${field} must be a non-empty string`
-  );
-  if (!AUTH_TOKEN_ENV_RE.test(value)) {
-    throw new Error(
-      `Plugin ${pluginName} ${field} must be an uppercase env var name`
-    );
-  }
-  return value;
-}
-function requireHttpsUrlField(record, field, pluginName) {
-  const value = requireStringField(
-    record,
-    field,
-    `Plugin ${pluginName} oauth.${field} must be a non-empty string`
-  );
-  let parsed;
-  try {
-    parsed = new URL(value);
-  } catch {
-    throw new Error(`Plugin ${pluginName} oauth.${field} must be a valid URL`);
-  }
-  if (parsed.protocol !== "https:") {
-    throw new Error(`Plugin ${pluginName} oauth.${field} must use https`);
-  }
-  return value;
-}
-function normalizeApiDomain(rawDomain, name) {
-  const domain = typeof rawDomain === "string" ? rawDomain.trim().toLowerCase() : "";
-  if (!domain) {
-    throw new Error(
-      `Plugin ${name} credentials.api-domains entries must be non-empty strings`
-    );
-  }
-  if (!API_DOMAIN_RE.test(domain)) {
-    throw new Error(
-      `Plugin ${name} credentials.api-domains entries must be valid domain names`
-    );
-  }
-  return domain;
-}
-function parseStringMap(data, errorLabel, options = {}) {
-  if (data === void 0) {
-    return void 0;
-  }
-  const record = toRecord(
-    data,
-    `${errorLabel} must be an object when provided`
-  );
-  const entries = Object.entries(record);
-  if (entries.length === 0) {
-    return void 0;
-  }
-  const result = {};
-  const seen = /* @__PURE__ */ new Set();
-  for (const [rawKey, rawValue] of entries) {
-    const key = rawKey.trim();
-    if (!key) {
-      throw new Error(`${errorLabel} keys must be non-empty strings`);
-    }
-    if (typeof rawValue !== "string" || !rawValue.trim()) {
-      throw new Error(`${errorLabel}.${key} must be a non-empty string`);
-    }
-    const normalizedKey = key.toLowerCase();
-    if (options.reservedKeys?.has(normalizedKey)) {
-      throw new Error(`${errorLabel}.${key} is reserved by the runtime`);
-    }
-    if (options.forbiddenKeys?.has(normalizedKey)) {
-      throw new Error(`${errorLabel}.${key} is not allowed`);
-    }
-    if (seen.has(normalizedKey)) {
-      throw new Error(`${errorLabel}.${key} is duplicated`);
-    }
-    seen.add(normalizedKey);
-    result[key] = rawValue.trim();
-  }
-  return Object.keys(result).length > 0 ? result : void 0;
-}
-function parseBaseCredentialFields(data, name) {
-  const rawDomains = data["api-domains"];
-  if (!Array.isArray(rawDomains) || rawDomains.length === 0) {
-    throw new Error(
-      `Plugin ${name} credentials.api-domains must be a non-empty array of strings`
-    );
-  }
-  const apiDomains = rawDomains.map(
-    (rawDomain) => normalizeApiDomain(rawDomain, name)
-  );
-  const apiHeaders = parseStringMap(
-    data["api-headers"],
-    `Plugin ${name} credentials.api-headers`,
-    { forbiddenKeys: FORBIDDEN_API_HEADER_NAMES }
-  );
-  const authTokenEnv = requireEnvVarField(data, "auth-token-env", name);
-  const authTokenPlaceholderRaw = data["auth-token-placeholder"];
-  if (authTokenPlaceholderRaw !== void 0 && (typeof authTokenPlaceholderRaw !== "string" || !authTokenPlaceholderRaw.trim())) {
-    throw new Error(
-      `Plugin ${name} credentials.auth-token-placeholder must be a non-empty string when provided`
-    );
-  }
-  return {
-    apiDomains,
-    ...apiHeaders ? { apiHeaders } : {},
-    authTokenEnv,
-    ...typeof authTokenPlaceholderRaw === "string" ? { authTokenPlaceholder: authTokenPlaceholderRaw.trim() } : {}
-  };
-}
-function parseCredentials(data, name) {
-  const type = data.type;
-  if (type === "oauth-bearer") {
-    const base = parseBaseCredentialFields(data, name);
-    return { type: "oauth-bearer", ...base };
-  }
-  if (type === "github-app") {
-    const base = parseBaseCredentialFields(data, name);
-    const appIdEnv = requireEnvVarField(data, "app-id-env", name);
-    const privateKeyEnv = requireEnvVarField(data, "private-key-env", name);
-    const installationIdEnv = requireEnvVarField(
-      data,
-      "installation-id-env",
-      name
-    );
-    return {
-      type: "github-app",
-      ...base,
-      appIdEnv,
-      privateKeyEnv,
-      installationIdEnv
-    };
-  }
-  throw new Error(`Plugin ${name} has unsupported credentials.type: "${type}"`);
-}
-function parseRuntimeDependencies(data, name) {
-  if (data === void 0) {
-    return void 0;
-  }
-  if (!Array.isArray(data)) {
-    throw new Error(`Plugin ${name} runtime-dependencies must be an array`);
-  }
-  const parsed = [];
-  const seen = /* @__PURE__ */ new Set();
-  for (const entry of data) {
-    if (!entry || typeof entry !== "object" || Array.isArray(entry)) {
-      throw new Error(
-        `Plugin ${name} runtime-dependencies entries must be objects`
-      );
-    }
-    const record = entry;
-    const type = record.type;
-    const packageName = record.package;
-    const packageUrl = record.url;
-    const version = record.version;
-    const sha256 = record.sha256;
-    if (typeof type !== "string" || type !== "npm" && type !== "system") {
-      throw new Error(
-        `Plugin ${name} runtime dependency type must be "npm" or "system"`
-      );
-    }
-    const normalizedPackage = typeof packageName === "string" ? packageName.trim() : "";
-    const normalizedUrl = typeof packageUrl === "string" ? packageUrl.trim() : "";
-    if (type === "npm") {
-      if (!normalizedPackage) {
-        throw new Error(
-          `Plugin ${name} runtime dependency package must be a non-empty string`
-        );
-      }
-      if (packageUrl !== void 0 || sha256 !== void 0) {
-        throw new Error(
-          `Plugin ${name} npm runtime dependencies must only include package/version fields`
-        );
-      }
-      const normalizedVersion = typeof version === "string" ? version.trim() : "latest";
-      if (!normalizedVersion) {
-        throw new Error(
-          `Plugin ${name} runtime dependency version must be a non-empty string when provided`
-        );
-      }
-      const dedupeKey2 = `${type}:${normalizedPackage}:${normalizedVersion}`;
-      if (seen.has(dedupeKey2)) {
-        continue;
-      }
-      seen.add(dedupeKey2);
-      parsed.push({
-        type: "npm",
-        package: normalizedPackage,
-        version: normalizedVersion
-      });
-      continue;
-    }
-    if (version !== void 0) {
-      throw new Error(
-        `Plugin ${name} system runtime dependencies must not include a version`
-      );
-    }
-    if (normalizedPackage && normalizedUrl) {
-      throw new Error(
-        `Plugin ${name} system runtime dependencies must specify either package or url, not both`
-      );
-    }
-    if (!normalizedPackage && !normalizedUrl) {
-      throw new Error(
-        `Plugin ${name} system runtime dependencies must specify package or url`
-      );
-    }
-    if (normalizedPackage) {
-      if (sha256 !== void 0) {
-        throw new Error(
-          `Plugin ${name} system runtime dependency package entries must not include sha256`
-        );
-      }
-      const dedupeKey2 = `${type}:package:${normalizedPackage}`;
-      if (seen.has(dedupeKey2)) {
-        continue;
-      }
-      seen.add(dedupeKey2);
-      parsed.push({
-        type: "system",
-        package: normalizedPackage
-      });
-      continue;
-    }
-    if (!/^https:\/\//i.test(normalizedUrl)) {
-      throw new Error(
-        `Plugin ${name} system runtime dependency url must be an https URL`
-      );
-    }
-    const normalizedSha256 = typeof sha256 === "string" ? sha256.trim().toLowerCase() : "";
-    if (!/^[a-f0-9]{64}$/.test(normalizedSha256)) {
-      throw new Error(
-        `Plugin ${name} system runtime dependency url entries must include a valid sha256`
-      );
-    }
-    const dedupeKey = `${type}:url:${normalizedUrl}:${normalizedSha256}`;
-    if (seen.has(dedupeKey)) {
-      continue;
-    }
-    seen.add(dedupeKey);
-    parsed.push({
-      type: "system",
-      url: normalizedUrl,
-      sha256: normalizedSha256
-    });
-  }
-  return parsed.length > 0 ? parsed : void 0;
-}
-function parseRuntimePostinstall(data, name) {
-  if (data === void 0) {
-    return void 0;
-  }
-  if (!Array.isArray(data)) {
-    throw new Error(`Plugin ${name} runtime-postinstall must be an array`);
-  }
-  const parsed = [];
-  for (const entry of data) {
-    if (!entry || typeof entry !== "object" || Array.isArray(entry)) {
-      throw new Error(
-        `Plugin ${name} runtime-postinstall entries must be objects`
-      );
-    }
-    const record = entry;
-    const cmd = typeof record.cmd === "string" ? record.cmd.trim() : "";
-    if (!cmd) {
-      throw new Error(
-        `Plugin ${name} runtime-postinstall cmd must be a non-empty string`
-      );
-    }
-    if (!RUNTIME_POSTINSTALL_CMD_RE.test(cmd)) {
-      throw new Error(
-        `Plugin ${name} runtime-postinstall cmd must be a single executable token (letters, digits, ., _, /, -)`
-      );
-    }
-    const argsRaw = record.args;
-    if (argsRaw !== void 0 && (!Array.isArray(argsRaw) || !argsRaw.every((arg) => typeof arg === "string"))) {
-      throw new Error(
-        `Plugin ${name} runtime-postinstall args must be an array of strings when provided`
-      );
-    }
-    const sudoRaw = record.sudo;
-    if (sudoRaw !== void 0 && typeof sudoRaw !== "boolean") {
-      throw new Error(
-        `Plugin ${name} runtime-postinstall sudo must be a boolean when provided`
-      );
-    }
-    const normalizedArgs = Array.isArray(argsRaw) ? argsRaw.map((arg) => arg.trim()).filter((arg) => arg.length > 0) : void 0;
-    parsed.push({
-      cmd,
-      ...normalizedArgs && normalizedArgs.length > 0 ? { args: normalizedArgs } : {},
-      ...typeof sudoRaw === "boolean" ? { sudo: sudoRaw } : {}
-    });
-  }
-  return parsed.length > 0 ? parsed : void 0;
-}
-function parseManifest(raw, dir) {
-  const data = toRecord(
-    parseYaml(raw),
-    `Invalid plugin manifest in ${dir}: expected an object`
-  );
-  const rawName = data.name;
-  if (typeof rawName !== "string" || !PLUGIN_NAME_RE.test(rawName)) {
-    throw new Error(`Invalid plugin name in ${dir}: "${rawName}"`);
-  }
-  const name = rawName;
-  const rawDescription = data.description;
-  if (typeof rawDescription !== "string" || !rawDescription.trim()) {
-    throw new Error(`Invalid plugin description in ${dir}`);
-  }
-  const description = rawDescription;
-  const rawCapabilities = data.capabilities;
-  if (rawCapabilities !== void 0 && !Array.isArray(rawCapabilities)) {
-    throw new Error(
-      `Plugin ${name} capabilities must be an array when provided`
-    );
-  }
-  const capabilities = [];
-  for (const cap of rawCapabilities ?? []) {
-    if (typeof cap !== "string" || !SHORT_CAPABILITY_RE.test(cap)) {
-      throw new Error(`Invalid capability token "${cap}" in plugin ${name}`);
-    }
-    capabilities.push(`${name}.${cap}`);
-  }
-  const rawConfigKeys = data["config-keys"];
-  if (rawConfigKeys !== void 0 && !Array.isArray(rawConfigKeys)) {
-    throw new Error(
-      `Plugin ${name} config-keys must be an array when provided`
-    );
-  }
-  const configKeys = [];
-  for (const key of rawConfigKeys ?? []) {
-    if (typeof key !== "string" || !SHORT_CONFIG_KEY_RE.test(key)) {
-      throw new Error(`Invalid config key "${key}" in plugin ${name}`);
-    }
-    configKeys.push(`${name}.${key}`);
-  }
-  const credentialsRaw = data.credentials;
-  if (credentialsRaw !== void 0) {
-    toRecord(
-      credentialsRaw,
-      `Plugin ${name} credentials must be an object when provided`
-    );
-  }
-  const credentials = credentialsRaw ? parseCredentials(credentialsRaw, name) : void 0;
-  const runtimeDependencies = parseRuntimeDependencies(
-    data["runtime-dependencies"],
-    name
-  );
-  const runtimePostinstall = parseRuntimePostinstall(
-    data["runtime-postinstall"],
-    name
-  );
-  const manifest = {
-    name,
-    description,
-    capabilities,
-    configKeys,
-    ...credentials ? { credentials } : {},
-    ...runtimeDependencies ? { runtimeDependencies } : {},
-    ...runtimePostinstall ? { runtimePostinstall } : {}
-  };
-  const oauthRaw = data.oauth ? toRecord(data.oauth, `Plugin ${name} oauth must be an object`) : void 0;
-  if (oauthRaw) {
-    if (!credentials) {
-      throw new Error(`Plugin ${name} oauth requires credentials`);
-    }
-    if (credentials.type !== "oauth-bearer") {
-      throw new Error(
-        `Plugin ${name} oauth requires credentials.type "oauth-bearer"`
-      );
-    }
-    const authorizeParams = parseStringMap(
-      oauthRaw["authorize-params"],
-      `Plugin ${name} oauth.authorize-params`,
-      { reservedKeys: RESERVED_AUTHORIZE_PARAM_KEYS }
-    );
-    const tokenExtraHeaders = parseStringMap(
-      oauthRaw["token-extra-headers"],
-      `Plugin ${name} oauth.token-extra-headers`,
-      { forbiddenKeys: FORBIDDEN_TOKEN_HEADER_NAMES }
-    );
-    const tokenAuthMethodRaw = oauthRaw["token-auth-method"];
-    let tokenAuthMethod;
-    if (tokenAuthMethodRaw !== void 0) {
-      const parsedTokenAuthMethod = requireStringField(
-        oauthRaw,
-        "token-auth-method",
-        `Plugin ${name} oauth.token-auth-method must be a non-empty string`
-      );
-      if (parsedTokenAuthMethod !== "body" && parsedTokenAuthMethod !== "basic") {
-        throw new Error(
-          `Plugin ${name} oauth.token-auth-method must be "body" or "basic"`
-        );
-      }
-      tokenAuthMethod = parsedTokenAuthMethod;
-    }
-    manifest.oauth = {
-      clientIdEnv: requireEnvVarField(oauthRaw, "client-id-env", name),
-      clientSecretEnv: requireEnvVarField(oauthRaw, "client-secret-env", name),
-      authorizeEndpoint: requireHttpsUrlField(
-        oauthRaw,
-        "authorize-endpoint",
-        name
-      ),
-      tokenEndpoint: requireHttpsUrlField(oauthRaw, "token-endpoint", name),
-      ...oauthRaw.scope !== void 0 ? {
-        scope: requireStringField(
-          oauthRaw,
-          "scope",
-          `Plugin ${name} oauth.scope must be a non-empty string`
-        )
-      } : {},
-      ...authorizeParams ? { authorizeParams } : {},
-      ...tokenAuthMethod ? { tokenAuthMethod } : {},
-      ...tokenExtraHeaders ? { tokenExtraHeaders } : {}
-    };
-  }
-  const targetRaw = data.target ? toRecord(data.target, `Plugin ${name} target must be an object`) : void 0;
-  if (targetRaw) {
-    if (targetRaw.type !== "repo") {
-      throw new Error(`Plugin ${name} target.type must be "repo"`);
-    }
-    const rawConfigKey = targetRaw["config-key"];
-    if (typeof rawConfigKey !== "string" || !rawConfigKey.trim()) {
-      throw new Error(
-        `Plugin ${name} target.config-key must be a non-empty string`
-      );
-    }
-    if (!SHORT_CONFIG_KEY_RE.test(rawConfigKey)) {
-      throw new Error(
-        `Plugin ${name} target.config-key "${rawConfigKey}" is invalid`
-      );
-    }
-    const qualifiedKey = `${name}.${rawConfigKey}`;
-    if (!configKeys.includes(qualifiedKey)) {
-      throw new Error(
-        `Plugin ${name} target.config-key "${rawConfigKey}" must be listed in config-keys`
-      );
-    }
-    manifest.target = { type: "repo", configKey: qualifiedKey };
-  }
-  return manifest;
-}
 var pluginDefinitions = [];
 var capabilityToPlugin = /* @__PURE__ */ new Map();
 var pluginConfigKeys = /* @__PURE__ */ new Set();
@@ -1034,7 +569,7 @@ var pluginsByName = /* @__PURE__ */ new Map();
 var packageSkillRoots = /* @__PURE__ */ new Set();
 var pluginsLoaded = false;
 function registerPluginManifest(raw, pluginDir) {
-  const manifest = parseManifest(raw, pluginDir);
+  const manifest = parsePluginManifest(raw, pluginDir);
   if (pluginsByName.has(manifest.name)) {
     return;
   }
@@ -2196,6 +1731,7 @@ export {
   homeDir,
   skillRoots,
   soulPathCandidates,
+  aboutPathCandidates,
   resolveAuthTokenPlaceholder,
   CredentialUnavailableError,
   buildOAuthTokenRequest,

package/dist/{chunk-ECEC25CR.js → chunk-EZ6WIJL2.js}

@@ -12,7 +12,7 @@ import {
 import { after } from "next/server";
 import * as Sentry from "@sentry/nextjs";
 async function loadBot() {
-  const { bot } = await import("./bot-PFLNB5PC.js");
+  const { bot } = await import("./bot-HXAROQ33.js");
   return bot;
 }
 async function POST(request, context) {