@sylphx/sdk 0.3.2 → 0.3.4

package/dist/index.js

@@ -49,7 +49,6 @@ __export(index_exports, {
   WorkersClient: () => WorkersClient,
   acceptAllConsents: () => acceptAllConsents,
   acceptOrganizationInvitation: () => acceptOrganizationInvitation,
-  addCustomDomain: () => addCustomDomain,
   batchIndex: () => batchIndex,
   canDeleteOrganization: () => canDeleteOrganization,
   canManageMembers: () => canManageMembers,
@@ -184,7 +183,6 @@ __export(index_exports, {
   kvZrange: () => kvZrange,
   leaveOrganization: () => leaveOrganization,
   linkAnonymousConsents: () => linkAnonymousConsents,
-  listCustomDomains: () => listCustomDomains,
   listEnvVars: () => listEnvVars,
   listScheduledEmails: () => listScheduledEmails,
   listSecretKeys: () => listSecretKeys,
@@ -200,7 +198,6 @@ __export(index_exports, {
   regenerateReferralCode: () => regenerateReferralCode,
   registerPush: () => registerPush,
   registerPushServiceWorker: () => registerPushServiceWorker,
-  removeCustomDomain: () => removeCustomDomain,
   removeOrganizationMember: () => removeOrganizationMember,
   replayWebhookDelivery: () => replayWebhookDelivery,
   rescheduleEmail: () => rescheduleEmail,
@@ -251,9 +248,7 @@ __export(index_exports, {
 module.exports = __toCommonJS(index_exports);
 
 // src/constants.ts
-var DEFAULT_PLATFORM_URL = "https://sylphx.com";
-var SDK_API_PATH = `/api/v1`;
-var SDK_API_PATH_NEW = `/v1`;
+var SDK_API_PATH = `/v1`;
 var DEFAULT_SDK_API_HOST = "api.sylphx.com";
 var SDK_VERSION = "0.1.0";
 var SDK_PLATFORM = typeof window !== "undefined" ? "browser" : typeof process !== "undefined" && process.versions?.node ? "node" : "unknown";
@@ -745,7 +740,7 @@ function httpStatusToErrorCode(status) {
       return status >= 500 ? "INTERNAL_SERVER_ERROR" : "BAD_REQUEST";
   }
 }
-var REF_PATTERN = /^[a-z0-9]{16}$/;
+var REF_PATTERN = /^[a-z0-9]{12}$/;
 function createConfig(input) {
   let secretKey;
   if (input.secretKey) {
@@ -761,32 +756,18 @@ function createConfig(input) {
     }
     secretKey = result.sanitizedKey;
   }
-  if (input.ref !== void 0) {
-    const trimmedRef = input.ref.trim();
-    if (!REF_PATTERN.test(trimmedRef)) {
-      throw new SylphxError(
-        `[Sylphx] Invalid project ref format: "${input.ref}". Expected a 16-character lowercase alphanumeric string (e.g. "abc123def456ghij"). Get your ref from Platform Console \u2192 Projects \u2192 Your Project \u2192 Overview.`,
-        { code: "BAD_REQUEST" }
-      );
-    }
-  }
-  let platformUrl;
-  let apiBasePath;
-  if (input.platformUrl) {
-    platformUrl = input.platformUrl.trim();
-    apiBasePath = SDK_API_PATH;
-  } else if (input.ref) {
-    platformUrl = `https://${input.ref.trim()}.${DEFAULT_SDK_API_HOST}`;
-    apiBasePath = SDK_API_PATH_NEW;
-  } else {
-    platformUrl = DEFAULT_PLATFORM_URL;
-    apiBasePath = SDK_API_PATH;
+  const trimmedRef = input.ref.trim();
+  if (!REF_PATTERN.test(trimmedRef)) {
+    throw new SylphxError(
+      `[Sylphx] Invalid project ref format: "${input.ref}". Expected a 12-character lowercase alphanumeric string (e.g. "abc123def456"). Get your ref from Platform Console \u2192 Projects \u2192 Your Project \u2192 Overview.`,
+      { code: "BAD_REQUEST" }
+    );
   }
+  const baseUrl = `https://${trimmedRef}.${DEFAULT_SDK_API_HOST}${SDK_API_PATH}`;
   return Object.freeze({
     secretKey,
-    platformUrl,
-    ref: input.ref,
-    apiBasePath,
+    ref: trimmedRef,
+    baseUrl,
     accessToken: input.accessToken
   });
 }
@@ -794,7 +775,7 @@ function withToken(config, accessToken) {
   return Object.freeze({
     ...config,
     accessToken
-    // Preserve apiBasePath and ref from original config
+    // Preserve baseUrl and ref from original config
   });
 }
 function buildHeaders(config) {
@@ -810,9 +791,9 @@ function buildHeaders(config) {
   return headers;
 }
 function buildApiUrl(config, path) {
-  const base = config.platformUrl.replace(/\/$/, "");
+  const base = config.baseUrl.replace(/\/$/, "");
   const cleanPath = path.startsWith("/") ? path : `/${path}`;
-  return `${base}${config.apiBasePath ?? SDK_API_PATH}${cleanPath}`;
+  return `${base}${cleanPath}`;
 }
 async function callApi(config, path, options = {}) {
   const {
@@ -1366,7 +1347,7 @@ function createRetryMiddleware(retryConfig) {
 function validateClientConfig(config) {
   return {
     secretKey: validateAndSanitizeSecretKey(config.secretKey),
-    baseUrl: (config.platformUrl || DEFAULT_PLATFORM_URL).trim()
+    baseUrl: (config.platformUrl || `https://${DEFAULT_SDK_API_HOST}`).trim()
   };
 }
 function createRestClient(config) {
@@ -1492,7 +1473,7 @@ async function verifyTwoFactor(config, userId, code) {
   });
 }
 async function introspectToken(config, token, tokenTypeHint) {
-  const response = await fetch(`${config.platformUrl}/api/v1/auth/introspect`, {
+  const response = await fetch(buildApiUrl(config, "/auth/introspect"), {
     method: "POST",
     headers: { "Content-Type": "application/json" },
     body: JSON.stringify({
@@ -1507,7 +1488,7 @@ async function introspectToken(config, token, tokenTypeHint) {
   return response.json();
 }
 async function revokeToken(config, token, options) {
-  await fetch(`${config.platformUrl}/api/v1/auth/revoke`, {
+  await fetch(buildApiUrl(config, "/auth/revoke"), {
     method: "POST",
     headers: { "Content-Type": "application/json" },
     body: JSON.stringify({
@@ -1658,7 +1639,7 @@ function createTracker(config, defaultAnonymousId) {
 
 // src/ai.ts
 async function chat(config, input) {
-  const response = await fetch(`${config.platformUrl}/api/v1/chat/completions`, {
+  const response = await fetch(buildApiUrl(config, "/chat/completions"), {
     method: "POST",
     headers: {
       ...buildHeaders(config),
@@ -1706,7 +1687,7 @@ async function chat(config, input) {
 function chatStream(config, input) {
   return {
     [Symbol.asyncIterator]: async function* () {
-      const response = await fetch(`${config.platformUrl}/api/v1/chat/completions`, {
+      const response = await fetch(buildApiUrl(config, "/chat/completions"), {
         method: "POST",
         headers: {
           ...buildHeaders(config),
@@ -1778,7 +1759,7 @@ function chatStream(config, input) {
   };
 }
 async function embed(config, input) {
-  const response = await fetch(`${config.platformUrl}/api/v1/embeddings`, {
+  const response = await fetch(buildApiUrl(config, "/embeddings"), {
     method: "POST",
     headers: {
       ...buildHeaders(config),
@@ -1908,7 +1889,7 @@ async function uploadFile(config, file, options) {
   let lastError = null;
   for (let attempt = 0; attempt <= UPLOAD_RETRY_CONFIG.maxRetries; attempt++) {
     try {
-      tokenResponse = await fetch(`${config.platformUrl}/api/v1/storage/upload`, {
+      tokenResponse = await fetch(buildApiUrl(config, "/storage/upload"), {
         method: "POST",
         headers: buildHeaders(config),
         body: JSON.stringify({
@@ -2636,7 +2617,7 @@ async function getConsentHistory(config, input) {
       userId: input.userId,
       anonymousId: input.anonymousId,
       limit: input.limit?.toString(),
-      offset: input.offset?.toString()
+      cursor: input.cursor
     }
   });
 }
@@ -3209,27 +3190,6 @@ async function deleteEnvVar(config, envId, key) {
     { method: "DELETE" }
   );
 }
-async function listCustomDomains(config, envId) {
-  const result = await callApi(
-    config,
-    `/sdk/deploy/domains/${encodeURIComponent(envId)}`,
-    { method: "GET" }
-  );
-  return result.domains;
-}
-async function addCustomDomain(config, envId, request) {
-  return callApi(config, `/sdk/deploy/domains/${encodeURIComponent(envId)}`, {
-    method: "POST",
-    body: request
-  });
-}
-async function removeCustomDomain(config, envId, domain) {
-  return callApi(
-    config,
-    `/sdk/deploy/domains/${encodeURIComponent(envId)}/${encodeURIComponent(domain)}`,
-    { method: "DELETE" }
-  );
-}
 
 // src/monitoring.ts
 function errorToExceptionValue(error) {
@@ -3289,13 +3249,67 @@ async function captureMessage(config, message, options = {}) {
 }
 
 // src/sandbox.ts
-var DEFAULT_IMAGE = "registry.sylphx.com/library/exec-server:latest";
+var SandboxFiles = class {
+  constructor(endpoint, token) {
+    this.endpoint = endpoint;
+    this.token = token;
+  }
+  authHeader() {
+    return { Authorization: `Bearer ${this.token}` };
+  }
+  /** Write a file to the sandbox filesystem. */
+  async write(path, content, encoding = "utf8") {
+    const contentStr = Buffer.isBuffer(content) ? content.toString("base64") : content;
+    const effectiveEncoding = Buffer.isBuffer(content) ? "base64" : encoding;
+    const res = await fetch(`${this.endpoint}/files`, {
+      method: "POST",
+      headers: { ...this.authHeader(), "Content-Type": "application/json" },
+      body: JSON.stringify({ path, content: contentStr, encoding: effectiveEncoding })
+    });
+    if (!res.ok) throw new Error(`files.write failed: ${await res.text()}`);
+  }
+  /** Read a file from the sandbox filesystem. Returns content as string. */
+  async read(path) {
+    const res = await fetch(`${this.endpoint}/files?path=${encodeURIComponent(path)}`, {
+      headers: this.authHeader()
+    });
+    if (!res.ok) throw new Error(`files.read failed: ${await res.text()}`);
+    const data = await res.json();
+    return data.content;
+  }
+  /** Delete a file from the sandbox filesystem. */
+  async delete(path) {
+    const res = await fetch(`${this.endpoint}/files?path=${encodeURIComponent(path)}`, {
+      method: "DELETE",
+      headers: this.authHeader()
+    });
+    if (!res.ok) throw new Error(`files.delete failed: ${await res.text()}`);
+  }
+  /** List files in a directory. */
+  async list(path = "/") {
+    const res = await fetch(`${this.endpoint}/list?path=${encodeURIComponent(path)}`, {
+      headers: this.authHeader()
+    });
+    if (!res.ok) throw new Error(`files.list failed: ${await res.text()}`);
+    const data = await res.json();
+    return data.files;
+  }
+};
 var SandboxClient = class _SandboxClient {
   id;
   config;
-  constructor(id, config) {
+  /** Public endpoint from Platform (may be null for sandboxes from pool pre-v2) */
+  endpoint;
+  /** Per-sandbox JWT for direct exec-server auth */
+  token;
+  /** File operations (direct to exec-server) */
+  files;
+  constructor(id, config, endpoint, token) {
     this.id = id;
     this.config = config;
+    this.endpoint = endpoint;
+    this.token = token;
+    this.files = endpoint && token ? new SandboxFiles(endpoint, token) : null;
   }
   // ---------------------------------------------------------------------------
   // Factory
@@ -3303,130 +3317,153 @@ var SandboxClient = class _SandboxClient {
   /**
    * Create a new sandbox.
    *
-   * The sandbox pod starts asynchronously — it will be in `starting` status
-   * after creation. File/run operations will block until the pod is ready.
-   *
-   * @param config - Sylphx config with a secret key (sk_*) and project ref
-   * @param options - Sandbox creation options
+   * Platform provisions the K8s pod, waits for readiness, and returns
+   * { endpoint, token } once the sandbox is fully ready to accept traffic.
+   * No client-side polling required.
    */
   static async create(config, options) {
-    const record = await callApi(config, `/sandboxes`, {
+    const record = await callApi(config, "/sandboxes", {
       method: "POST",
       body: {
-        image: options?.image ?? DEFAULT_IMAGE,
+        image: options?.image,
         idleTimeoutMs: options?.idleTimeoutMs ?? 3e5,
         resources: options?.resources,
         env: options?.env,
         storage: options?.storageGi !== void 0 ? { enabled: true, sizeGi: options.storageGi } : void 0
       }
     });
-    return new _SandboxClient(record.id, config);
+    return new _SandboxClient(record.id, config, record.endpoint, record.token);
   }
   /**
    * Reconnect to an existing sandbox by ID.
-   *
-   * Use this to resume operations on a sandbox created in a previous request.
+   * Fetches the current status to get the endpoint + token.
    */
-  static fromId(config, sandboxId) {
-    return new _SandboxClient(sandboxId, config);
+  static async fromId(config, sandboxId) {
+    const record = await callApi(config, `/sandboxes/${sandboxId}`, {
+      method: "GET"
+    });
+    return new _SandboxClient(record.id, config, record.endpoint, record.token);
   }
   // ---------------------------------------------------------------------------
   // Lifecycle
   // ---------------------------------------------------------------------------
-  /**
-   * Get the current status of this sandbox.
-   */
   async getStatus() {
     return callApi(this.config, `/sandboxes/${this.id}`, { method: "GET" });
   }
-  /**
-   * Terminate the sandbox immediately.
-   *
-   * Deletes the K8s Pod and Service. PVC (storage) is preserved for reuse.
-   * This operation is idempotent — safe to call multiple times.
-   */
   async terminate() {
     await callApi(this.config, `/sandboxes/${this.id}`, { method: "DELETE" });
   }
   // ---------------------------------------------------------------------------
-  // File Operations
+  // Exec — SSE streaming (primary)
   // ---------------------------------------------------------------------------
   /**
-   * Write a file to the sandbox filesystem.
+   * Execute a command and stream output as async iterable events.
    *
-   * @param path - Absolute path inside the sandbox (e.g. '/workspace/file.py')
-   * @param content - File content as string or Buffer
-   * @param encoding - 'utf8' (default) or 'base64' for binary files
-   */
-  async writeFile(path, content, encoding = "utf8") {
-    const contentStr = Buffer.isBuffer(content) ? content.toString("base64") : content;
-    const effectiveEncoding = Buffer.isBuffer(content) ? "base64" : encoding;
-    await callApi(this.config, `/sandboxes/${this.id}/files`, {
-      method: "POST",
-      body: { path, content: contentStr, encoding: effectiveEncoding }
-    });
-  }
-  /**
-   * Read a file from the sandbox filesystem.
+   * Uses Server-Sent Events (SSE) for real-time stdout/stderr streaming.
+   * Communicates DIRECTLY with exec-server (Platform not in data path).
    *
-   * @param path - Absolute path inside the sandbox
-   * @returns File content as a string
-   */
-  async readFile(path) {
-    const result = await callApi(this.config, `/sandboxes/${this.id}/files`, {
-      method: "GET",
-      query: { path }
-    });
-    return result.content;
-  }
-  /**
-   * Delete a file from the sandbox filesystem.
-   *
-   * @param path - Absolute path inside the sandbox
+   * @example
+   * ```typescript
+   * for await (const event of sandbox.exec(['npm', 'install'])) {
+   *   if (event.type === 'stdout') process.stdout.write(event.data)
+   *   if (event.type === 'exit') console.log('Done:', event.exitCode)
+   * }
+   * ```
    */
-  async deleteFile(path) {
-    await callApi(this.config, `/sandboxes/${this.id}/files`, {
-      method: "DELETE",
-      query: { path }
+  async *exec(command, options) {
+    this.assertDirect();
+    const res = await fetch(`${this.endpoint}/exec/stream`, {
+      method: "POST",
+      headers: {
+        Authorization: `Bearer ${this.token}`,
+        "Content-Type": "application/json"
+      },
+      body: JSON.stringify({ command, ...options })
     });
+    if (!res.ok) {
+      throw new Error(`exec failed (${res.status}): ${await res.text()}`);
+    }
+    if (!res.body) throw new Error("exec: no response body");
+    const decoder = new TextDecoder();
+    const reader = res.body.getReader();
+    let buffer = "";
+    try {
+      while (true) {
+        const { done, value } = await reader.read();
+        if (done) break;
+        buffer += decoder.decode(value, { stream: true });
+        const lines = buffer.split("\n");
+        buffer = lines.pop() ?? "";
+        for (const line of lines) {
+          if (line.startsWith("data: ")) {
+            try {
+              const event = JSON.parse(line.slice(6));
+              yield event;
+              if (event.type === "exit" || event.type === "error") return;
+            } catch {
+            }
+          }
+        }
+      }
+    } finally {
+      reader.releaseLock();
+    }
   }
   /**
-   * List files in a directory.
+   * Execute a command and collect all output (non-streaming).
+   * Convenience wrapper over exec() for simple use cases.
    *
-   * @param path - Directory path inside the sandbox (default: '/')
-   * @returns Array of file/directory paths
+   * For long-running commands, prefer exec() to stream output incrementally.
    */
-  async listFiles(path = "/") {
-    const result = await callApi(this.config, `/sandboxes/${this.id}/list`, {
-      method: "GET",
-      query: { path }
-    });
-    return result.files;
+  async run(command, options) {
+    let stdout = "";
+    let stderr = "";
+    let exitCode = 1;
+    let durationMs = 0;
+    for await (const event of this.exec(command, options)) {
+      if (event.type === "stdout") stdout += event.data;
+      else if (event.type === "stderr") stderr += event.data;
+      else if (event.type === "exit") {
+        exitCode = event.exitCode;
+        durationMs = event.durationMs;
+      }
+    }
+    return { stdout, stderr, exitCode, durationMs };
   }
   // ---------------------------------------------------------------------------
-  // Command Execution
+  // PTY — Interactive terminal (WebSocket)
   // ---------------------------------------------------------------------------
   /**
-   * Run a command inside the sandbox.
+   * Open an interactive PTY session (WebSocket).
    *
-   * The command runs synchronously inside the exec pod and returns when complete.
-   *
-   * @param command - Full command + args as array (e.g. ['python3', 'script.py'])
-   * @param options - Optional cwd, env, timeout, stdin
-   * @returns { stdout, stderr, exitCode, durationMs }
+   * Returns a WebSocket connected to a bash shell in the sandbox.
+   * Token is passed as a query param (WebSocket doesn't support custom headers in browsers).
    *
    * @example
    * ```typescript
-   * const { stdout, exitCode } = await sandbox.run(['python3', '-c', 'print(1+1)'])
-   * console.log(stdout) // "2\n"
-   * console.log(exitCode) // 0
+   * const ws = await sandbox.pty()
+   * ws.on('message', (data) => process.stdout.write(JSON.parse(data).data))
+   * ws.send(JSON.stringify({ type: 'input', data: 'ls -la\n' }))
+   * ws.send(JSON.stringify({ type: 'resize', cols: 120, rows: 40 }))
    * ```
    */
-  async run(command, options) {
-    return callApi(this.config, `/sandboxes/${this.id}/run`, {
-      method: "POST",
-      body: { command, ...options }
-    });
+  pty() {
+    this.assertDirect();
+    const wsEndpoint = this.endpoint.replace(/^https:\/\//, "wss://").replace(
+      /^http:\/\//,
+      "ws://"
+    );
+    return new WebSocket(`${wsEndpoint}/pty?token=${encodeURIComponent(this.token)}`);
+  }
+  // ---------------------------------------------------------------------------
+  // Private
+  // ---------------------------------------------------------------------------
+  assertDirect() {
+    if (!this.endpoint || !this.token) {
+      throw new Error(
+        "Sandbox endpoint/token not available. This sandbox was created with an older SDK version or does not have a public endpoint."
+      );
+    }
   }
 };
 
@@ -3648,7 +3685,6 @@ function sleep2(ms) {
   WorkersClient,
   acceptAllConsents,
   acceptOrganizationInvitation,
-  addCustomDomain,
   batchIndex,
   canDeleteOrganization,
   canManageMembers,
@@ -3783,7 +3819,6 @@ function sleep2(ms) {
   kvZrange,
   leaveOrganization,
   linkAnonymousConsents,
-  listCustomDomains,
   listEnvVars,
   listScheduledEmails,
   listSecretKeys,
@@ -3799,7 +3834,6 @@ function sleep2(ms) {
   regenerateReferralCode,
   registerPush,
   registerPushServiceWorker,
-  removeCustomDomain,
   removeOrganizationMember,
   replayWebhookDelivery,
   rescheduleEmail,