@tailor-platform/sdk 1.45.2 → 1.47.0

package/dist/vitest/index.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.mjs","names":[],"sources":["../../src/vitest/blocked-modules.ts","../../src/vitest/plugin.ts","../../src/vitest/index.ts"],"sourcesContent":["/**\n * Blocked Node.js built-in modules and their Web Standard API alternatives.\n *\n * The Tailor Platform runtime only provides Web Standard APIs.\n * These Node.js modules are not available and should be replaced with\n * the suggested alternatives.\n */\nimport { builtinModules } from \"node:module\";\n\n// Suggestions keyed by bare specifier. Lookup also checks with \"node:\" prefix stripped.\nconst SUGGESTIONS: Record<string, string> = {\n  crypto: \"Use the Web Crypto API (globalThis.crypto) instead.\",\n  buffer: \"Use Uint8Array or ArrayBuffer instead.\",\n  fs: \"File system access is not available in the Tailor Platform runtime.\",\n  \"fs/promises\": \"File system access is not available in the Tailor Platform runtime.\",\n  path: \"Use URL or URLPattern for path manipulation.\",\n  http: \"Use the Fetch API (globalThis.fetch) for HTTP requests instead.\",\n  https: \"Use the Fetch API (globalThis.fetch) for HTTPS requests instead.\",\n  url: \"Use the URL and URLSearchParams Web APIs instead.\",\n  util: \"Use Web Standard APIs instead.\",\n  stream: \"Use Web Streams API (ReadableStream, WritableStream, TransformStream) instead.\",\n  \"stream/web\": \"Use Web Streams API (ReadableStream, WritableStream, TransformStream) instead.\",\n  events: \"Use EventTarget instead.\",\n  zlib: \"Use CompressionStream and DecompressionStream Web APIs instead.\",\n  querystring: \"Use URLSearchParams instead.\",\n  string_decoder: \"Use TextDecoder instead.\",\n};\n\nconst BLOCKED_MODULES = new Set<string>();\nfor (const mod of builtinModules) {\n  BLOCKED_MODULES.add(mod);\n  BLOCKED_MODULES.add(`node:${mod}`);\n}\n\n/**\n * Check if a module specifier is a blocked Node.js built-in.\n * @param specifier - Module specifier to check (e.g. \"node:crypto\", \"fs\")\n * @returns Whether the specifier is blocked\n */\nexport function isBlockedModule(specifier: string): boolean {\n  return BLOCKED_MODULES.has(specifier);\n}\n\n/**\n * Get the error message for a blocked module import.\n * @param specifier - Module specifier that was blocked\n * @returns Error message with optional suggestion for the Web Standard API alternative\n */\nexport function getBlockedMessage(specifier: string): string {\n  const bare = specifier.startsWith(\"node:\") ? specifier.slice(5) : specifier;\n  const suggestion = SUGGESTIONS[bare];\n  const base = `\"${specifier}\" is not available in the Tailor Platform runtime.`;\n  return suggestion ? `${base} ${suggestion}` : base;\n}\n","import { dirname, isAbsolute, matchesGlob, relative, resolve } from \"node:path\";\nimport { fileURLToPath } from \"node:url\";\nimport { isBlockedModule, getBlockedMessage } from \"./blocked-modules\";\nimport type { Plugin } from \"vitest/config\";\n\nconst DEFAULT_TEST_INCLUDE = [\"**/*.{test,spec}.{js,mjs,cjs,ts,mts,cts,jsx,tsx}\"];\n\ninterface ExportSpecifierNode {\n  type?: string;\n  exported?: { name?: unknown } | null;\n}\n\ninterface ImportLikeNode {\n  type: string;\n  start: number;\n  end: number;\n  source?: { value?: unknown } | null;\n  specifiers?: ExportSpecifierNode[] | null;\n  exported?: { name?: unknown } | null;\n}\n\nconst IMPORT_LIKE_TYPES = new Set([\n  \"ImportDeclaration\",\n  \"ExportNamedDeclaration\",\n  \"ExportAllDeclaration\",\n]);\n\n// Re-export specifiers (`export { x as Y } from \"...\"`) accept any\n// `IdentifierName` for `Y` — including reserved words like `delete`. But\n// `export const Y = ...` requires a `BindingIdentifier`, which forbids\n// reserved words and the strict-mode-banned `arguments` / `eval`. Synthesizing\n// `export const delete = ...` would yield a syntax error, so we fall back to\n// plain `throw` for unsafe names.\nconst UNSAFE_BINDING_NAMES = new Set([\n  // ReservedWord (ES2022+)\n  \"break\",\n  \"case\",\n  \"catch\",\n  \"class\",\n  \"const\",\n  \"continue\",\n  \"debugger\",\n  \"default\",\n  \"delete\",\n  \"do\",\n  \"else\",\n  \"enum\",\n  \"export\",\n  \"extends\",\n  \"false\",\n  \"finally\",\n  \"for\",\n  \"function\",\n  \"if\",\n  \"import\",\n  \"in\",\n  \"instanceof\",\n  \"new\",\n  \"null\",\n  \"return\",\n  \"super\",\n  \"switch\",\n  \"this\",\n  \"throw\",\n  \"true\",\n  \"try\",\n  \"typeof\",\n  \"var\",\n  \"void\",\n  \"while\",\n  \"with\",\n  \"yield\",\n  // Strict-mode reserved (ESM is always strict)\n  \"let\",\n  \"static\",\n  \"implements\",\n  \"interface\",\n  \"package\",\n  \"private\",\n  \"protected\",\n  \"public\",\n  // Module-specific reserved\n  \"await\",\n  // Banned as binding names in strict mode\n  \"arguments\",\n  \"eval\",\n]);\n\nconst ID_START = /^[A-Za-z_$]/;\nconst ID_CONT = /^[A-Za-z0-9_$]*$/;\n\nfunction isSafeBindingName(name: string): boolean {\n  if (UNSAFE_BINDING_NAMES.has(name)) return false;\n  if (name.length === 0) return false;\n  // Restrict to ASCII identifiers — Unicode bindings are valid JS but rare\n  // for re-exports of node:* modules, and a regex over the full\n  // ID_Start/ID_Continue sets adds substantial weight for marginal gain.\n  return ID_START.test(name[0] ?? \"\") && ID_CONT.test(name.slice(1));\n}\n\nfunction buildBlockedReplacement(node: ImportLikeNode, message: string): string {\n  // JSON.stringify yields a fully-escaped string literal (including the\n  // surrounding quotes), so we don't need to manually handle backslashes,\n  // newlines, or other control characters that may appear in the message.\n  const literal = JSON.stringify(message);\n  const throwStmt = `throw new Error(${literal});`;\n  const throwExpr = `(() => { throw new Error(${literal}); })()`;\n\n  if (node.type === \"ExportNamedDeclaration\") {\n    const specs = node.specifiers ?? [];\n    const stubs: string[] = [];\n    for (const spec of specs) {\n      const exportedName = spec.exported?.name;\n      if (typeof exportedName !== \"string\") continue;\n      if (exportedName === \"default\") {\n        stubs.push(`export default ${throwExpr};`);\n        continue;\n      }\n      // Reserved words can be re-export names but not binding names.\n      // Bail to a plain throw rather than emit invalid syntax.\n      if (!isSafeBindingName(exportedName)) return throwStmt;\n      stubs.push(`export const ${exportedName} = ${throwExpr};`);\n    }\n    return stubs.length > 0 ? stubs.join(\" \") : throwStmt;\n  }\n\n  if (node.type === \"ExportAllDeclaration\") {\n    const exportedName = node.exported?.name;\n    if (typeof exportedName === \"string\" && isSafeBindingName(exportedName)) {\n      return `export const ${exportedName} = ${throwExpr};`;\n    }\n    return throwStmt;\n  }\n\n  return throwStmt;\n}\n\n/**\n * Vite plugin that blocks Node.js built-in module imports from production code.\n *\n * Uses the `transform` hook to walk the Rollup-provided AST of non-test source\n * files for static `node:*` imports and re-exports.\n * `ImportDeclaration` and bare `export * from \"...\"` are replaced with a\n * `throw new Error(...)` statement so the failure surfaces at evaluation time.\n * `ExportNamedDeclaration` (`export { x, y as z } from \"...\"`) and namespaced\n * `export * as ns from \"...\"` are rewritten to per-binding stub exports\n * (`export const x = (() => { throw new Error(...) })();`). The IIFE throws\n * eagerly during module evaluation (same timing as a top-level `throw`), but\n * preserving the declared export bindings ensures the surfaced error is the\n * actual \"node:* not available\" message rather than an opaque\n * \"missing export\" raised by the loader.\n * Vitest treats `node:*` as external SSR modules (skipping `resolveId`), so\n * source-level transformation is the only reliable interception point.\n * Runs in the default phase (no `enforce: \"pre\"`) so esbuild's TypeScript\n * transform strips `import type` first; only runtime imports reach this hook.\n * Node.js globals not in the platform runtime are removed by the environment (whitelist-based).\n * Test file patterns are read from the resolved Vitest config (`test.include`).\n * Vitest setup files (`test.setupFiles`) and global-setup files\n * (`test.globalSetup`) are also exempted: they run in the test runner host,\n * not in the emulated platform runtime, so they may freely use `node:*`\n * modules (e.g. `node:url` for `pathToFileURL`).\n * @returns Vite plugin\n */\nexport function createBlockPlugin(): Plugin {\n  let isTestFile: (id: string) => boolean = () => false;\n  let isUserSourceFile: (id: string) => boolean = () => false;\n\n  return {\n    name: \"tailor-runtime-block-node\",\n\n    configResolved(config) {\n      type HostFileTestConfig = {\n        include?: string[];\n        setupFiles?: string | string[];\n        globalSetup?: string | string[];\n        root?: string;\n      };\n      const testConfig = (\n        config as typeof config & {\n          test?: HostFileTestConfig & {\n            projects?: { test?: HostFileTestConfig }[];\n          };\n        }\n      ).test;\n      const root = testConfig?.root ?? config.root;\n      // Setup files and global-setup files run in the Vitest host (not the\n      // emulated runtime), so they may freely import node:* modules. Collect\n      // them from the top-level config AND from each `test.projects[i]` —\n      // per-project setup files run in the host too and would otherwise be\n      // transformed as production code, breaking node:* imports inside them.\n      const toAbsolutePaths = (value: string | string[] | undefined, baseRoot: string) =>\n        (Array.isArray(value) ? value : value ? [value] : []).map((f) => resolve(baseRoot, f));\n      const exemptHostFiles = new Set<string>([\n        ...toAbsolutePaths(testConfig?.setupFiles, root),\n        ...toAbsolutePaths(testConfig?.globalSetup, root),\n      ]);\n      // Vitest projects can each define their own `test.include` (and root).\n      // A project that uses non-default patterns (e.g. `tests/**/*.spec.ts`)\n      // must also be considered when classifying test files — otherwise its\n      // tests would be treated as production code and have node:* imports\n      // rewritten. Build a list of (root, patterns) pairs covering top-level\n      // + every project, and accept a file if any pair matches.\n      const includePairs: { root: string; patterns: string[] }[] = [\n        { root, patterns: testConfig?.include ?? DEFAULT_TEST_INCLUDE },\n      ];\n      for (const project of testConfig?.projects ?? []) {\n        const projectTest = project?.test;\n        if (!projectTest) continue;\n        const projectRoot = projectTest.root ?? root;\n        for (const f of toAbsolutePaths(projectTest.setupFiles, projectRoot)) {\n          exemptHostFiles.add(f);\n        }\n        for (const f of toAbsolutePaths(projectTest.globalSetup, projectRoot)) {\n          exemptHostFiles.add(f);\n        }\n        includePairs.push({\n          root: projectRoot,\n          patterns: projectTest.include ?? DEFAULT_TEST_INCLUDE,\n        });\n      }\n      isTestFile = (id: string) => {\n        if (exemptHostFiles.has(id)) return true;\n        return includePairs.some(({ root: r, patterns }) => {\n          const candidate = isAbsolute(id) ? relative(r, id) : id;\n          return patterns.some((pattern) => matchesGlob(candidate, pattern));\n        });\n      };\n      // Only transform files inside the project root. With pnpm workspaces,\n      // dependencies are symlinked and Vite resolves them to absolute paths\n      // outside `node_modules`, so the substring check alone is insufficient.\n      // Non-absolute ids are Vite-internal: virtual modules (`\\0...`,\n      // `virtual:...`), bare specifiers, etc. Those are never user source\n      // files and must not be parsed/transformed.\n      isUserSourceFile = (id: string) => {\n        if (!isAbsolute(id)) return false;\n        const rel = relative(root, id);\n        return rel !== \"\" && !rel.startsWith(\"..\") && !isAbsolute(rel);\n      };\n    },\n\n    transform(code, id) {\n      // Vite can pass ids with query/hash suffixes (e.g. `file.ts?import`,\n      // `file.ts?v=hash`). Strip them so exact-path lookups (Set membership,\n      // glob matching, absolute-path checks) match what callers configured.\n      const queryIdx = id.search(/[?#]/);\n      const cleanId = queryIdx === -1 ? id : id.slice(0, queryIdx);\n\n      if (isTestFile(cleanId)) return undefined;\n      if (cleanId.includes(\"node_modules\")) return undefined;\n      if (!isUserSourceFile(cleanId)) return undefined;\n\n      let ast: { body: ImportLikeNode[] };\n      try {\n        ast = this.parse(code) as unknown as { body: ImportLikeNode[] };\n      } catch {\n        // Not parseable as ESM (e.g. JSON, asset). Let other plugins handle it.\n        return undefined;\n      }\n\n      const replacements: { start: number; end: number; replacement: string }[] = [];\n      for (const node of ast.body) {\n        if (!IMPORT_LIKE_TYPES.has(node.type)) continue;\n        const specifier = node.source?.value;\n        if (typeof specifier !== \"string\") continue;\n        if (isBlockedModule(specifier)) {\n          replacements.push({\n            start: node.start,\n            end: node.end,\n            replacement: buildBlockedReplacement(node, getBlockedMessage(specifier)),\n          });\n        }\n      }\n\n      if (replacements.length === 0) return undefined;\n\n      let transformed = code;\n      for (const r of replacements.sort((a, b) => b.start - a.start)) {\n        transformed = transformed.slice(0, r.start) + r.replacement + transformed.slice(r.end);\n      }\n\n      return { code: transformed, map: null };\n    },\n  };\n}\n\nconst ENVIRONMENT_NAME = \"tailor-runtime\";\n\n/**\n * Vite plugin that resolves the tailor-runtime environment and injects setup files.\n *\n * Vitest resolves environments starting with \".\" or \"/\" as file paths.\n * This plugin rewrites `environment: \"tailor-runtime\"` to the absolute path\n * of the bundled environment module, both at the top-level and per-project.\n * It also injects the setup file that removes Vitest-dependent globals\n * (like `performance`) per-test via beforeEach/afterEach hooks.\n * @param options - Optional configuration\n * @param options.config - Path to tailor.config.ts to load SecretManager values into mock\n * @returns Vite plugin\n */\nexport function createEnvironmentPlugin(options?: { config?: string }): Plugin {\n  const currentDir = dirname(fileURLToPath(import.meta.url));\n  const environmentPath = resolve(currentDir, \"environment.mjs\");\n  const setupPath = resolve(currentDir, \"setup.mjs\");\n\n  return {\n    name: \"tailor-runtime-environment\",\n\n    config(config) {\n      const testConfig = config.test as\n        | (Record<string, unknown> & {\n            projects?: Record<string, unknown>[];\n            setupFiles?: string | string[];\n          })\n        | undefined;\n\n      // Rewrite environment name to absolute path at top-level\n      let usesTailorRuntime = false;\n      if (testConfig?.environment === ENVIRONMENT_NAME) {\n        testConfig.environment = environmentPath;\n        usesTailorRuntime = true;\n      }\n\n      // Rewrite in each project config\n      if (testConfig?.projects) {\n        for (const project of testConfig.projects) {\n          const projectTest = project.test as Record<string, unknown> | undefined;\n          if (projectTest?.environment === ENVIRONMENT_NAME) {\n            projectTest.environment = environmentPath;\n            usesTailorRuntime = true;\n          }\n        }\n      }\n\n      // Pass config path to setup.ts via env var (cross-process compatible).\n      // Always clear first, then set only when tailor-runtime is actually\n      // selected. This makes the env var deterministic across Vite config\n      // reloads (watch mode, programmatic re-init): a stale value from a\n      // prior iteration cannot make setup.ts load secrets from an old config.\n      // The leading `__` marks this as plugin-private, so deleting any\n      // pre-existing value is safe.\n      delete process.env.__TAILOR_RUNTIME_CONFIG;\n      if (options?.config && usesTailorRuntime) {\n        // Resolve against the user-provided Vite root when present (falling\n        // back to cwd). Vitest projects with a non-cwd `root` would otherwise\n        // resolve a relative options.config against the wrong directory.\n        const configRoot = (config.root as string | undefined) ?? process.cwd();\n        const configAbsPath = resolve(configRoot, options.config);\n        process.env.__TAILOR_RUNTIME_CONFIG = configAbsPath;\n      }\n\n      // Normalize a user-provided string `setupFiles` into an array so Vite's\n      // array-concat merge sees both sides as arrays (the string form would\n      // otherwise be replaced rather than concatenated by some merge paths).\n      // Vite then concatenates the user's array with our [setupPath].\n      if (testConfig && typeof testConfig.setupFiles === \"string\") {\n        testConfig.setupFiles = [testConfig.setupFiles];\n      }\n\n      return {\n        test: {\n          setupFiles: [setupPath],\n        },\n      };\n    },\n  };\n}\n","import { createBlockPlugin, createEnvironmentPlugin } from \"./plugin\";\nimport type { Plugin } from \"vitest/config\";\n\n/**\n * Creates Vitest plugins that emulate the Tailor Platform function runtime environment.\n *\n * **Beta:** This API may change in future releases.\n *\n * ## What it does\n *\n * 1. **Node.js module blocking** (transform hook) — Imports of `node:*` modules\n *    (and bare builtins like `crypto`, `fs`) in non-test source files are replaced\n *    with code that throws an error with a suggestion for the Web Standard API alternative.\n *    Test files are exempt and can use `node:*` freely. Test file patterns are read\n *    from the resolved Vitest config (`test.include`).\n *\n * 2. **Node.js globals removal** (environment + setup) — Only globals available in the\n *    Tailor Platform runtime are kept (whitelist: ECMAScript standard, Web Standard APIs\n *    from bootstrap.js, platform mocks). All others (`Buffer`, `global`, `setImmediate`,\n *    `__dirname`, `__filename`, etc.) are removed. `performance` is removed per-test\n *    via beforeEach/afterEach since Vitest needs it during initialization.\n *\n * 3. **Platform API mocks** (environment) — All platform APIs are auto-injected with\n *    control objects: `tailordbMock`, `workflowMock`, `secretmanagerMock`,\n *    `authconnectionMock`, `idpMock`, `fileMock`, `iconvMock`. Each provides response\n *    configuration, call recording, and reset.\n *\n * 4. **Environment resolution** — Rewrites `environment: \"tailor-runtime\"` to the\n *    absolute path of the bundled environment module via the config hook.\n *\n * ## Known limitations\n *\n * - **`process`** and **`require`** are NOT removed or blocked. Vitest's internal\n *   runner depends on them. On the real Tailor Platform runtime, they do not exist.\n * - **Dynamic `import()`** of bundled files (via `createImportMain()`) bypasses\n *   the transform hook since those files are loaded through Node.js native loader.\n * ## Options\n *\n * - **`config`** — Path to `tailor.config.ts`. Loads `defineSecretManager()` values\n *   into `secretmanagerMock` so `getSecret()` returns the configured values.\n * @example\n * ```typescript\n * // vitest.config.ts\n * import { defineConfig } from \"vitest/config\";\n * import { tailorRuntime } from \"@tailor-platform/sdk/vitest\";\n *\n * export default defineConfig({\n *   plugins: [tailorRuntime({ config: \"./tailor.config.ts\" })],\n *   test: {\n *     environment: \"tailor-runtime\",\n *   },\n * });\n * ```\n * @param options - Optional configuration\n * @param options.config - Path to tailor.config.ts to load SecretManager values into mock\n * @returns Array of Vite plugins\n */\nexport function tailorRuntime(options?: { config?: string }): Plugin[] {\n  return [createBlockPlugin(), createEnvironmentPlugin(options)];\n}\n\nexport {\n  tailordbMock,\n  workflowMock,\n  secretmanagerMock,\n  authconnectionMock,\n  idpMock,\n  fileMock,\n  iconvMock,\n} from \"./mock\";\n"],"mappings":";;;;;;;;;;;;;;AAUA,MAAM,cAAsC;CAC1C,QAAQ;CACR,QAAQ;CACR,IAAI;CACJ,eAAe;CACf,MAAM;CACN,MAAM;CACN,OAAO;CACP,KAAK;CACL,MAAM;CACN,QAAQ;CACR,cAAc;CACd,QAAQ;CACR,MAAM;CACN,aAAa;CACb,gBAAgB;CACjB;AAED,MAAM,kCAAkB,IAAI,KAAa;AACzC,KAAK,MAAM,OAAO,gBAAgB;AAChC,iBAAgB,IAAI,IAAI;AACxB,iBAAgB,IAAI,QAAQ,MAAM;;;;;;;AAQpC,SAAgB,gBAAgB,WAA4B;AAC1D,QAAO,gBAAgB,IAAI,UAAU;;;;;;;AAQvC,SAAgB,kBAAkB,WAA2B;CAE3D,MAAM,aAAa,YADN,UAAU,WAAW,QAAQ,GAAG,UAAU,MAAM,EAAE,GAAG;CAElE,MAAM,OAAO,IAAI,UAAU;AAC3B,QAAO,aAAa,GAAG,KAAK,GAAG,eAAe;;;;;AC/ChD,MAAM,uBAAuB,CAAC,mDAAmD;AAgBjF,MAAM,oBAAoB,IAAI,IAAI;CAChC;CACA;CACA;CACD,CAAC;AAQF,MAAM,uBAAuB,IAAI,IAAI;CAEnC;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CAEA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CAEA;CAEA;CACA;CACD,CAAC;AAEF,MAAM,WAAW;AACjB,MAAM,UAAU;AAEhB,SAAS,kBAAkB,MAAuB;AAChD,KAAI,qBAAqB,IAAI,KAAK,CAAE,QAAO;AAC3C,KAAI,KAAK,WAAW,EAAG,QAAO;AAI9B,QAAO,SAAS,KAAK,KAAK,MAAM,GAAG,IAAI,QAAQ,KAAK,KAAK,MAAM,EAAE,CAAC;;AAGpE,SAAS,wBAAwB,MAAsB,SAAyB;CAI9E,MAAM,UAAU,KAAK,UAAU,QAAQ;CACvC,MAAM,YAAY,mBAAmB,QAAQ;CAC7C,MAAM,YAAY,4BAA4B,QAAQ;AAEtD,KAAI,KAAK,SAAS,0BAA0B;EAC1C,MAAM,QAAQ,KAAK,cAAc,EAAE;EACnC,MAAM,QAAkB,EAAE;AAC1B,OAAK,MAAM,QAAQ,OAAO;GACxB,MAAM,eAAe,KAAK,UAAU;AACpC,OAAI,OAAO,iBAAiB,SAAU;AACtC,OAAI,iBAAiB,WAAW;AAC9B,UAAM,KAAK,kBAAkB,UAAU,GAAG;AAC1C;;AAIF,OAAI,CAAC,kBAAkB,aAAa,CAAE,QAAO;AAC7C,SAAM,KAAK,gBAAgB,aAAa,KAAK,UAAU,GAAG;;AAE5D,SAAO,MAAM,SAAS,IAAI,MAAM,KAAK,IAAI,GAAG;;AAG9C,KAAI,KAAK,SAAS,wBAAwB;EACxC,MAAM,eAAe,KAAK,UAAU;AACpC,MAAI,OAAO,iBAAiB,YAAY,kBAAkB,aAAa,CACrE,QAAO,gBAAgB,aAAa,KAAK,UAAU;AAErD,SAAO;;AAGT,QAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA6BT,SAAgB,oBAA4B;CAC1C,IAAI,mBAA4C;CAChD,IAAI,yBAAkD;AAEtD,QAAO;EACL,MAAM;EAEN,eAAe,QAAQ;GAOrB,MAAM,aACJ,OAKA;GACF,MAAM,OAAO,YAAY,QAAQ,OAAO;GAMxC,MAAM,mBAAmB,OAAsC,cAC5D,MAAM,QAAQ,MAAM,GAAG,QAAQ,QAAQ,CAAC,MAAM,GAAG,EAAE,EAAE,KAAK,MAAM,QAAQ,UAAU,EAAE,CAAC;GACxF,MAAM,kBAAkB,IAAI,IAAY,CACtC,GAAG,gBAAgB,YAAY,YAAY,KAAK,EAChD,GAAG,gBAAgB,YAAY,aAAa,KAAK,CAClD,CAAC;GAOF,MAAM,eAAuD,CAC3D;IAAE;IAAM,UAAU,YAAY,WAAW;IAAsB,CAChE;AACD,QAAK,MAAM,WAAW,YAAY,YAAY,EAAE,EAAE;IAChD,MAAM,cAAc,SAAS;AAC7B,QAAI,CAAC,YAAa;IAClB,MAAM,cAAc,YAAY,QAAQ;AACxC,SAAK,MAAM,KAAK,gBAAgB,YAAY,YAAY,YAAY,CAClE,iBAAgB,IAAI,EAAE;AAExB,SAAK,MAAM,KAAK,gBAAgB,YAAY,aAAa,YAAY,CACnE,iBAAgB,IAAI,EAAE;AAExB,iBAAa,KAAK;KAChB,MAAM;KACN,UAAU,YAAY,WAAW;KAClC,CAAC;;AAEJ,iBAAc,OAAe;AAC3B,QAAI,gBAAgB,IAAI,GAAG,CAAE,QAAO;AACpC,WAAO,aAAa,MAAM,EAAE,MAAM,GAAG,eAAe;KAClD,MAAM,YAAY,WAAW,GAAG,GAAG,SAAS,GAAG,GAAG,GAAG;AACrD,YAAO,SAAS,MAAM,YAAY,YAAY,WAAW,QAAQ,CAAC;MAClE;;AAQJ,uBAAoB,OAAe;AACjC,QAAI,CAAC,WAAW,GAAG,CAAE,QAAO;IAC5B,MAAM,MAAM,SAAS,MAAM,GAAG;AAC9B,WAAO,QAAQ,MAAM,CAAC,IAAI,WAAW,KAAK,IAAI,CAAC,WAAW,IAAI;;;EAIlE,UAAU,MAAM,IAAI;GAIlB,MAAM,WAAW,GAAG,OAAO,OAAO;GAClC,MAAM,UAAU,aAAa,KAAK,KAAK,GAAG,MAAM,GAAG,SAAS;AAE5D,OAAI,WAAW,QAAQ,CAAE,QAAO;AAChC,OAAI,QAAQ,SAAS,eAAe,CAAE,QAAO;AAC7C,OAAI,CAAC,iBAAiB,QAAQ,CAAE,QAAO;GAEvC,IAAI;AACJ,OAAI;AACF,UAAM,KAAK,MAAM,KAAK;WAChB;AAEN;;GAGF,MAAM,eAAsE,EAAE;AAC9E,QAAK,MAAM,QAAQ,IAAI,MAAM;AAC3B,QAAI,CAAC,kBAAkB,IAAI,KAAK,KAAK,CAAE;IACvC,MAAM,YAAY,KAAK,QAAQ;AAC/B,QAAI,OAAO,cAAc,SAAU;AACnC,QAAI,gBAAgB,UAAU,CAC5B,cAAa,KAAK;KAChB,OAAO,KAAK;KACZ,KAAK,KAAK;KACV,aAAa,wBAAwB,MAAM,kBAAkB,UAAU,CAAC;KACzE,CAAC;;AAIN,OAAI,aAAa,WAAW,EAAG,QAAO;GAEtC,IAAI,cAAc;AAClB,QAAK,MAAM,KAAK,aAAa,MAAM,GAAG,MAAM,EAAE,QAAQ,EAAE,MAAM,CAC5D,eAAc,YAAY,MAAM,GAAG,EAAE,MAAM,GAAG,EAAE,cAAc,YAAY,MAAM,EAAE,IAAI;AAGxF,UAAO;IAAE,MAAM;IAAa,KAAK;IAAM;;EAE1C;;AAGH,MAAM,mBAAmB;;;;;;;;;;;;;AAczB,SAAgB,wBAAwB,SAAuC;CAC7E,MAAM,aAAa,QAAQ,cAAc,OAAO,KAAK,IAAI,CAAC;CAC1D,MAAM,kBAAkB,QAAQ,YAAY,kBAAkB;CAC9D,MAAM,YAAY,QAAQ,YAAY,YAAY;AAElD,QAAO;EACL,MAAM;EAEN,OAAO,QAAQ;GACb,MAAM,aAAa,OAAO;GAQ1B,IAAI,oBAAoB;AACxB,OAAI,YAAY,gBAAgB,kBAAkB;AAChD,eAAW,cAAc;AACzB,wBAAoB;;AAItB,OAAI,YAAY,SACd,MAAK,MAAM,WAAW,WAAW,UAAU;IACzC,MAAM,cAAc,QAAQ;AAC5B,QAAI,aAAa,gBAAgB,kBAAkB;AACjD,iBAAY,cAAc;AAC1B,yBAAoB;;;AAY1B,UAAO,QAAQ,IAAI;AACnB,OAAI,SAAS,UAAU,mBAAmB;IAKxC,MAAM,gBAAgB,QADF,OAAO,QAA+B,QAAQ,KAAK,EAC7B,QAAQ,OAAO;AACzD,YAAQ,IAAI,0BAA0B;;AAOxC,OAAI,cAAc,OAAO,WAAW,eAAe,SACjD,YAAW,aAAa,CAAC,WAAW,WAAW;AAGjD,UAAO,EACL,MAAM,EACJ,YAAY,CAAC,UAAU,EACxB,EACF;;EAEJ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;ACnTH,SAAgB,cAAc,SAAyC;AACrE,QAAO,CAAC,mBAAmB,EAAE,wBAAwB,QAAQ,CAAC"}

package/dist/vitest/setup.d.mts

@@ -0,0 +1,64 @@
+/// <reference types="@tailor-platform/function-types" />
+//#region src/vitest/setup.d.ts
+type SavedGlobals = Record<string, PropertyDescriptor | undefined>;
+/**
+ * Reference-counted lifecycle for blocked globals.
+ *
+ * Concurrent tests in the same Vitest worker (`test.concurrent`) interleave
+ * their beforeEach/afterEach hooks: a naive `let saved` shared across hooks
+ * would let one test's `afterEach` restore `performance` mid-execution of
+ * another test. Reference counting keeps the globals removed for the union
+ * of all overlapping test scopes — the property is removed on first entry
+ * and restored only when the last test exits.
+ * @returns Lifecycle hooks
+ */
+declare function createBlockedGlobalsLifecycle(): {
+  enter: (globalObj: Record<string, unknown>, keys: readonly string[]) => void;
+  exit: (globalObj: Record<string, unknown>) => void;
+  readonly active: number;
+};
+/**
+ * Extract a vault store from a secrets-shaped value.
+ *
+ * `defineSecretManager()` returns `{ vaults, options, get, getAll }` (get/getAll
+ * are non-enumerable). When that shape is present, the actual vaults live
+ * under `.vaults`. Otherwise fall back to treating the object itself as the
+ * vault map (for plain object configs).
+ * @param secrets - Value from `appConfig.secrets` or `config.secrets`
+ * @returns Vault store, or null if the value is unusable
+ */
+declare function extractVaultStore(secrets: unknown): Record<string, Record<string, string>> | null;
+/**
+ * Load and parse secrets from a tailor.config.ts file.
+ *
+ * Returns a vault store on success, or `null` on any failure (missing config,
+ * import failure, missing/invalid secrets shape). Errors are swallowed so a
+ * misconfigured project still boots — the user can set secrets manually via
+ * `secretmanagerMock.setSecrets()`.
+ * @param configPath - Absolute path to tailor.config.ts
+ * @returns Vault store keyed by vault name, or null if unavailable
+ */
+declare function loadSecretsFromConfig(configPath: string): Promise<Record<string, Record<string, string>> | null>;
+/**
+ * Remove the given globals from `globalObj`, returning the descriptors that
+ * were actually deleted so `restoreBlockedGlobals` can put them back.
+ *
+ * Mirrors environment.ts: non-configurable properties are skipped instead of
+ * deleted, so `delete` never throws in strict-mode runtimes that lock them
+ * down. Only properties whose deletion actually happened are returned, so the
+ * caller restores nothing for the skipped case.
+ * @param globalObj - Target object (typically `globalThis`)
+ * @param keys - Property names to remove
+ * @returns Map of removed descriptors keyed by property name
+ */
+declare function removeBlockedGlobals(globalObj: Record<string, unknown>, keys: readonly string[]): SavedGlobals;
+/**
+ * Restore previously-removed globals onto `globalObj` from a `SavedGlobals`
+ * map produced by `removeBlockedGlobals`.
+ * @param globalObj - Target object (typically `globalThis`)
+ * @param saved - Descriptors to re-define
+ */
+declare function restoreBlockedGlobals(globalObj: Record<string, unknown>, saved: SavedGlobals): void;
+//#endregion
+export { createBlockedGlobalsLifecycle, extractVaultStore, loadSecretsFromConfig, removeBlockedGlobals, restoreBlockedGlobals };
+//# sourceMappingURL=setup.d.mts.map

package/dist/vitest/setup.mjs

@@ -0,0 +1,141 @@
+
+import { l as secretmanagerMock, t as RUNTIME_FLAG_KEY } from "../mock-BP-9O5On.mjs";
+import { pathToFileURL } from "node:url";
+import { afterEach, beforeAll, beforeEach } from "vitest";
+
+//#region src/vitest/setup.ts
+/**
+* Vitest setup file that removes Node.js globals which Vitest depends on
+* but are not available in the Tailor Platform runtime.
+*
+* These globals cannot be removed in the environment's setup() because
+* Vitest's runner needs them during initialization. By using beforeEach/afterEach,
+* they are only removed during user test code execution.
+*
+* This file is auto-injected by tailorRuntime() but only activates when
+* the tailor-runtime environment is active (detected via __tailorRuntimeActive,
+* a flag set by injectMocks() during environment setup).
+*/
+const BLOCKED_GLOBALS = ["performance"];
+/**
+* Reference-counted lifecycle for blocked globals.
+*
+* Concurrent tests in the same Vitest worker (`test.concurrent`) interleave
+* their beforeEach/afterEach hooks: a naive `let saved` shared across hooks
+* would let one test's `afterEach` restore `performance` mid-execution of
+* another test. Reference counting keeps the globals removed for the union
+* of all overlapping test scopes — the property is removed on first entry
+* and restored only when the last test exits.
+* @returns Lifecycle hooks
+*/
+function createBlockedGlobalsLifecycle() {
+	let active = 0;
+	let saved = {};
+	return {
+		get active() {
+			return active;
+		},
+		enter(globalObj, keys) {
+			if (active === 0) saved = removeBlockedGlobals(globalObj, keys);
+			active++;
+		},
+		exit(globalObj) {
+			if (active === 0) return;
+			active--;
+			if (active === 0) {
+				restoreBlockedGlobals(globalObj, saved);
+				saved = {};
+			}
+		}
+	};
+}
+const lifecycle = createBlockedGlobalsLifecycle();
+function isTailorRuntime() {
+	return RUNTIME_FLAG_KEY in globalThis;
+}
+/**
+* Extract a vault store from a secrets-shaped value.
+*
+* `defineSecretManager()` returns `{ vaults, options, get, getAll }` (get/getAll
+* are non-enumerable). When that shape is present, the actual vaults live
+* under `.vaults`. Otherwise fall back to treating the object itself as the
+* vault map (for plain object configs).
+* @param secrets - Value from `appConfig.secrets` or `config.secrets`
+* @returns Vault store, or null if the value is unusable
+*/
+function extractVaultStore(secrets) {
+	if (!secrets || typeof secrets !== "object") return null;
+	const source = "vaults" in secrets && typeof secrets.vaults === "object" && secrets.vaults !== null ? secrets.vaults : secrets;
+	const store = {};
+	for (const [vaultName, vaultData] of Object.entries(source)) if (typeof vaultData === "object" && vaultData !== null) store[vaultName] = { ...vaultData };
+	return Object.keys(store).length > 0 ? store : null;
+}
+/**
+* Load and parse secrets from a tailor.config.ts file.
+*
+* Returns a vault store on success, or `null` on any failure (missing config,
+* import failure, missing/invalid secrets shape). Errors are swallowed so a
+* misconfigured project still boots — the user can set secrets manually via
+* `secretmanagerMock.setSecrets()`.
+* @param configPath - Absolute path to tailor.config.ts
+* @returns Vault store keyed by vault name, or null if unavailable
+*/
+async function loadSecretsFromConfig(configPath) {
+	try {
+		const config = await import(pathToFileURL(configPath).href);
+		return extractVaultStore(config.default?.secrets ?? config.secrets);
+	} catch {
+		return null;
+	}
+}
+beforeAll(async () => {
+	if (!isTailorRuntime()) return;
+	const configPath = process.env.__TAILOR_RUNTIME_CONFIG;
+	if (!configPath) return;
+	const store = await loadSecretsFromConfig(configPath);
+	if (store) secretmanagerMock.setSecrets(store);
+});
+/**
+* Remove the given globals from `globalObj`, returning the descriptors that
+* were actually deleted so `restoreBlockedGlobals` can put them back.
+*
+* Mirrors environment.ts: non-configurable properties are skipped instead of
+* deleted, so `delete` never throws in strict-mode runtimes that lock them
+* down. Only properties whose deletion actually happened are returned, so the
+* caller restores nothing for the skipped case.
+* @param globalObj - Target object (typically `globalThis`)
+* @param keys - Property names to remove
+* @returns Map of removed descriptors keyed by property name
+*/
+function removeBlockedGlobals(globalObj, keys) {
+	const removed = {};
+	for (const key of keys) {
+		const descriptor = Object.getOwnPropertyDescriptor(globalObj, key);
+		if (descriptor?.configurable) {
+			removed[key] = descriptor;
+			delete globalObj[key];
+		}
+	}
+	return removed;
+}
+/**
+* Restore previously-removed globals onto `globalObj` from a `SavedGlobals`
+* map produced by `removeBlockedGlobals`.
+* @param globalObj - Target object (typically `globalThis`)
+* @param saved - Descriptors to re-define
+*/
+function restoreBlockedGlobals(globalObj, saved) {
+	for (const [key, descriptor] of Object.entries(saved)) if (descriptor) Object.defineProperty(globalObj, key, descriptor);
+}
+beforeEach(() => {
+	if (!isTailorRuntime()) return;
+	lifecycle.enter(globalThis, BLOCKED_GLOBALS);
+});
+afterEach(() => {
+	if (!isTailorRuntime()) return;
+	lifecycle.exit(globalThis);
+});
+
+//#endregion
+export { createBlockedGlobalsLifecycle, extractVaultStore, loadSecretsFromConfig, removeBlockedGlobals, restoreBlockedGlobals };
+//# sourceMappingURL=setup.mjs.map

package/dist/vitest/setup.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"setup.mjs","names":[],"sources":["../../src/vitest/setup.ts"],"sourcesContent":["/**\n * Vitest setup file that removes Node.js globals which Vitest depends on\n * but are not available in the Tailor Platform runtime.\n *\n * These globals cannot be removed in the environment's setup() because\n * Vitest's runner needs them during initialization. By using beforeEach/afterEach,\n * they are only removed during user test code execution.\n *\n * This file is auto-injected by tailorRuntime() but only activates when\n * the tailor-runtime environment is active (detected via __tailorRuntimeActive,\n * a flag set by injectMocks() during environment setup).\n */\nimport { pathToFileURL } from \"node:url\";\nimport { afterEach, beforeAll, beforeEach } from \"vitest\";\nimport { RUNTIME_FLAG_KEY, secretmanagerMock } from \"./mock\";\n\n// Globals that Vitest internals depend on but don't exist in the platform runtime.\n// Removed before each test, restored after.\nconst BLOCKED_GLOBALS = [\"performance\"] as const;\n\ntype SavedGlobals = Record<string, PropertyDescriptor | undefined>;\n\n/**\n * Reference-counted lifecycle for blocked globals.\n *\n * Concurrent tests in the same Vitest worker (`test.concurrent`) interleave\n * their beforeEach/afterEach hooks: a naive `let saved` shared across hooks\n * would let one test's `afterEach` restore `performance` mid-execution of\n * another test. Reference counting keeps the globals removed for the union\n * of all overlapping test scopes — the property is removed on first entry\n * and restored only when the last test exits.\n * @returns Lifecycle hooks\n */\nexport function createBlockedGlobalsLifecycle(): {\n  enter: (globalObj: Record<string, unknown>, keys: readonly string[]) => void;\n  exit: (globalObj: Record<string, unknown>) => void;\n  readonly active: number;\n} {\n  let active = 0;\n  let saved: SavedGlobals = {};\n  return {\n    get active() {\n      return active;\n    },\n    enter(globalObj, keys) {\n      if (active === 0) saved = removeBlockedGlobals(globalObj, keys);\n      active++;\n    },\n    exit(globalObj) {\n      // Defensive guard — in practice every `enter` is paired with `exit`,\n      // but a hook crash could desync the counter.\n      if (active === 0) return;\n      active--;\n      if (active === 0) {\n        restoreBlockedGlobals(globalObj, saved);\n        saved = {};\n      }\n    },\n  };\n}\n\nconst lifecycle = createBlockedGlobalsLifecycle();\n\nfunction isTailorRuntime(): boolean {\n  return RUNTIME_FLAG_KEY in globalThis;\n}\n\n/**\n * Extract a vault store from a secrets-shaped value.\n *\n * `defineSecretManager()` returns `{ vaults, options, get, getAll }` (get/getAll\n * are non-enumerable). When that shape is present, the actual vaults live\n * under `.vaults`. Otherwise fall back to treating the object itself as the\n * vault map (for plain object configs).\n * @param secrets - Value from `appConfig.secrets` or `config.secrets`\n * @returns Vault store, or null if the value is unusable\n */\nexport function extractVaultStore(secrets: unknown): Record<string, Record<string, string>> | null {\n  if (!secrets || typeof secrets !== \"object\") return null;\n\n  const source =\n    \"vaults\" in secrets &&\n    typeof (secrets as { vaults?: unknown }).vaults === \"object\" &&\n    (secrets as { vaults?: unknown }).vaults !== null\n      ? ((secrets as { vaults: Record<string, unknown> }).vaults as Record<string, unknown>)\n      : (secrets as Record<string, unknown>);\n\n  const store: Record<string, Record<string, string>> = {};\n  for (const [vaultName, vaultData] of Object.entries(source)) {\n    if (typeof vaultData === \"object\" && vaultData !== null) {\n      store[vaultName] = { ...(vaultData as Record<string, string>) };\n    }\n  }\n  return Object.keys(store).length > 0 ? store : null;\n}\n\n/**\n * Load and parse secrets from a tailor.config.ts file.\n *\n * Returns a vault store on success, or `null` on any failure (missing config,\n * import failure, missing/invalid secrets shape). Errors are swallowed so a\n * misconfigured project still boots — the user can set secrets manually via\n * `secretmanagerMock.setSecrets()`.\n * @param configPath - Absolute path to tailor.config.ts\n * @returns Vault store keyed by vault name, or null if unavailable\n */\nexport async function loadSecretsFromConfig(\n  configPath: string,\n): Promise<Record<string, Record<string, string>> | null> {\n  try {\n    // Convert to file URL so absolute Windows paths (e.g. \"C:\\...\") parse as\n    // valid ESM specifiers.\n    const config = await import(pathToFileURL(configPath).href);\n    const appConfig = config.default;\n    const secrets = appConfig?.secrets ?? config.secrets;\n    return extractVaultStore(secrets);\n  } catch {\n    return null;\n  }\n}\n\n// Load secrets from tailor.config.ts if config path is provided via env var\nbeforeAll(async () => {\n  if (!isTailorRuntime()) return;\n  const configPath = process.env.__TAILOR_RUNTIME_CONFIG;\n  if (!configPath) return;\n\n  const store = await loadSecretsFromConfig(configPath);\n  if (store) {\n    secretmanagerMock.setSecrets(store);\n  }\n});\n\n/**\n * Remove the given globals from `globalObj`, returning the descriptors that\n * were actually deleted so `restoreBlockedGlobals` can put them back.\n *\n * Mirrors environment.ts: non-configurable properties are skipped instead of\n * deleted, so `delete` never throws in strict-mode runtimes that lock them\n * down. Only properties whose deletion actually happened are returned, so the\n * caller restores nothing for the skipped case.\n * @param globalObj - Target object (typically `globalThis`)\n * @param keys - Property names to remove\n * @returns Map of removed descriptors keyed by property name\n */\nexport function removeBlockedGlobals(\n  globalObj: Record<string, unknown>,\n  keys: readonly string[],\n): SavedGlobals {\n  const removed: SavedGlobals = {};\n  for (const key of keys) {\n    const descriptor = Object.getOwnPropertyDescriptor(globalObj, key);\n    if (descriptor?.configurable) {\n      removed[key] = descriptor;\n      delete globalObj[key];\n    }\n  }\n  return removed;\n}\n\n/**\n * Restore previously-removed globals onto `globalObj` from a `SavedGlobals`\n * map produced by `removeBlockedGlobals`.\n * @param globalObj - Target object (typically `globalThis`)\n * @param saved - Descriptors to re-define\n */\nexport function restoreBlockedGlobals(\n  globalObj: Record<string, unknown>,\n  saved: SavedGlobals,\n): void {\n  for (const [key, descriptor] of Object.entries(saved)) {\n    if (descriptor) {\n      Object.defineProperty(globalObj, key, descriptor);\n    }\n  }\n}\n\nbeforeEach(() => {\n  if (!isTailorRuntime()) return;\n  lifecycle.enter(globalThis as Record<string, unknown>, BLOCKED_GLOBALS);\n});\n\nafterEach(() => {\n  if (!isTailorRuntime()) return;\n  lifecycle.exit(globalThis as Record<string, unknown>);\n});\n"],"mappings":";;;;;;;;;;;;;;;;;;AAkBA,MAAM,kBAAkB,CAAC,cAAc;;;;;;;;;;;;AAevC,SAAgB,gCAId;CACA,IAAI,SAAS;CACb,IAAI,QAAsB,EAAE;AAC5B,QAAO;EACL,IAAI,SAAS;AACX,UAAO;;EAET,MAAM,WAAW,MAAM;AACrB,OAAI,WAAW,EAAG,SAAQ,qBAAqB,WAAW,KAAK;AAC/D;;EAEF,KAAK,WAAW;AAGd,OAAI,WAAW,EAAG;AAClB;AACA,OAAI,WAAW,GAAG;AAChB,0BAAsB,WAAW,MAAM;AACvC,YAAQ,EAAE;;;EAGf;;AAGH,MAAM,YAAY,+BAA+B;AAEjD,SAAS,kBAA2B;AAClC,QAAO,oBAAoB;;;;;;;;;;;;AAa7B,SAAgB,kBAAkB,SAAiE;AACjG,KAAI,CAAC,WAAW,OAAO,YAAY,SAAU,QAAO;CAEpD,MAAM,SACJ,YAAY,WACZ,OAAQ,QAAiC,WAAW,YACnD,QAAiC,WAAW,OACvC,QAAgD,SACjD;CAEP,MAAM,QAAgD,EAAE;AACxD,MAAK,MAAM,CAAC,WAAW,cAAc,OAAO,QAAQ,OAAO,CACzD,KAAI,OAAO,cAAc,YAAY,cAAc,KACjD,OAAM,aAAa,EAAE,GAAI,WAAsC;AAGnE,QAAO,OAAO,KAAK,MAAM,CAAC,SAAS,IAAI,QAAQ;;;;;;;;;;;;AAajD,eAAsB,sBACpB,YACwD;AACxD,KAAI;EAGF,MAAM,SAAS,MAAM,OAAO,cAAc,WAAW,CAAC;AAGtD,SAAO,kBAFW,OAAO,SACE,WAAW,OAAO,QACZ;SAC3B;AACN,SAAO;;;AAKX,UAAU,YAAY;AACpB,KAAI,CAAC,iBAAiB,CAAE;CACxB,MAAM,aAAa,QAAQ,IAAI;AAC/B,KAAI,CAAC,WAAY;CAEjB,MAAM,QAAQ,MAAM,sBAAsB,WAAW;AACrD,KAAI,MACF,mBAAkB,WAAW,MAAM;EAErC;;;;;;;;;;;;;AAcF,SAAgB,qBACd,WACA,MACc;CACd,MAAM,UAAwB,EAAE;AAChC,MAAK,MAAM,OAAO,MAAM;EACtB,MAAM,aAAa,OAAO,yBAAyB,WAAW,IAAI;AAClE,MAAI,YAAY,cAAc;AAC5B,WAAQ,OAAO;AACf,UAAO,UAAU;;;AAGrB,QAAO;;;;;;;;AAST,SAAgB,sBACd,WACA,OACM;AACN,MAAK,MAAM,CAAC,KAAK,eAAe,OAAO,QAAQ,MAAM,CACnD,KAAI,WACF,QAAO,eAAe,WAAW,KAAK,WAAW;;AAKvD,iBAAiB;AACf,KAAI,CAAC,iBAAiB,CAAE;AACxB,WAAU,MAAM,YAAuC,gBAAgB;EACvE;AAEF,gBAAgB;AACd,KAAI,CAAC,iBAAiB,CAAE;AACxB,WAAU,KAAK,WAAsC;EACrD"}

package/dist/{workflow.generated-DFljpJh7.d.mts → workflow.generated-i7PK4fg-.d.mts}

@@ -1,5 +1,5 @@
 /// <reference types="@tailor-platform/function-types" />
-import { A as RelationType, Bt as InferredAttributeMap, D as DefinedDBFieldMetadata, Dt as ArrayFieldOutput, E as DBFieldMetadata, F as AuthConfig, Ft as FieldValidateInput, Ht as TailorUser, It as Validators, Jt as output, M as TailorDBServiceInput, Mt as FieldOutput, O as GqlOperationsConfig, Pt as TailorToTs, Wt as InferFieldsOutput, Y as TailorField, c as PluginConfigs, ht as BuiltinIdP, i as TailorDBType$1, j as SerialConfig, jt as FieldOptions, k as IndexDef, kt as EnumValue, qt as Prettify, r as TailorDBField$1, t as TailorAnyDBField$1 } from "./tailor-db-field-Hx9OqPWY.mjs";
+import { A as RelationType, Bt as InferredAttributeMap, D as DefinedDBFieldMetadata, Dt as ArrayFieldOutput, E as DBFieldMetadata, F as AuthConfig, Ft as FieldValidateInput, Ht as TailorUser, It as Validators, Jt as output, M as TailorDBServiceInput, Mt as FieldOutput, O as GqlOperationsConfig, Pt as TailorToTs, Wt as InferFieldsOutput, Y as TailorField, c as PluginConfigs, ht as BuiltinIdP, i as TailorDBType$1, j as SerialConfig, jt as FieldOptions, k as IndexDef, kt as EnumValue, qt as Prettify, r as TailorDBField$1, t as TailorAnyDBField$1 } from "./tailor-db-field-Bn8ZC5lK.mjs";
 import { NonEmptyObject } from "type-fest";
 import { StandardSchemaV1 } from "@standard-schema/spec";
 
@@ -1207,4 +1207,4 @@ type ConcurrencyPolicy = {
 };
 //#endregion
 export { PermissionCondition as A, IdPInput as C, TailorDBInstance as D, TailorDBField as E, AllowedValues as F, AllowedValuesOutput as I, TailorTypePermission as M, unsafeAllowAllGqlPermission as N, TailorDBType as O, unsafeAllowAllTypePermission as P, IdPGqlOperationsInput as S, TailorAnyDBType as T, IdPExternalConfig as _, ExecutorServiceInput as a, IdPEmailConfig as b, ResolverServiceInput as c, StaticWebsiteConfig as d, StaticWebsiteDefinitionBrand as f, IdPConfig as g, SecretsDefinitionBrand as h, ExecutorServiceConfig as i, TailorTypeGqlPermission as j, db as k, WorkflowServiceConfig as l, SecretsConfig as m, RetryPolicy as n, ResolverExternalConfig as o, StaticWebsiteInput as p, AppConfig as r, ResolverServiceConfig as s, ConcurrencyPolicy as t, WorkflowServiceInput as u, IdPUserField as v, TailorAnyDBField as w, IdPGqlOperations as x, IdpDefinitionBrand as y };
-//# sourceMappingURL=workflow.generated-DFljpJh7.d.mts.map
+//# sourceMappingURL=workflow.generated-i7PK4fg-.d.mts.map

package/docs/cli/application.md

@@ -89,29 +89,31 @@ See [Global Options](../cli-reference.md#global-options) for options available t
 
 <!-- politty:command:generate:global-options-link:end -->
 
-<!-- politty:command:apply:heading:start -->
+<!-- politty:command:deploy:heading:start -->
 
-## apply
+## deploy
 
-<!-- politty:command:apply:heading:end -->
+<!-- politty:command:deploy:heading:end -->
 
-<!-- politty:command:apply:description:start -->
+<!-- politty:command:deploy:description:start -->
 
-Apply Tailor configuration to deploy your application.
+Deploy your application by applying the Tailor configuration.
 
-<!-- politty:command:apply:description:end -->
+**Aliases:** `apply`
 
-<!-- politty:command:apply:usage:start -->
+<!-- politty:command:deploy:description:end -->
+
+<!-- politty:command:deploy:usage:start -->
 
 **Usage**
 
 ```
-tailor-sdk apply [options]
+tailor-sdk deploy [options]
 ```
 
-<!-- politty:command:apply:usage:end -->
+<!-- politty:command:deploy:usage:end -->
 
-<!-- politty:command:apply:options:start -->
+<!-- politty:command:deploy:options:start -->
 
 **Options**
 
@@ -126,17 +128,17 @@ tailor-sdk apply [options]
 | `--no-cache`                    | -     | Disable bundle caching for this run                | No       | -                    | -                                 |
 | `--clean-cache`                 | -     | Clean the bundle cache before building             | No       | -                    | -                                 |
 
-<!-- politty:command:apply:options:end -->
+<!-- politty:command:deploy:options:end -->
 
-<!-- politty:command:apply:global-options-link:start -->
+<!-- politty:command:deploy:global-options-link:start -->
 
 See [Global Options](../cli-reference.md#global-options) for options available to all commands.
 
-<!-- politty:command:apply:global-options-link:end -->
+<!-- politty:command:deploy:global-options-link:end -->
 
 **Migration Handling:**
 
-When migrations are configured (`db.tailordb.migration` in config), the `apply` command automatically:
+When migrations are configured (`db.tailordb.migration` in config), the `deploy` command automatically:
 
 1. Detects pending migration scripts that haven't been executed
 2. Applies schema changes in a safe order (pre-migration → script execution → post-migration)
@@ -147,18 +149,18 @@ See [TailorDB Commands](./tailordb.md#automatic-migration-execution) for details
 
 **Schema Check:**
 
-By default, `apply` performs two verification steps:
+By default, `deploy` performs two verification steps:
 
 1. **Local schema check**: Verifies that local schema changes match the migration files. This ensures migrations are properly generated before deployment.
 2. **Remote schema check**: Verifies that the remote schema matches the expected state based on migration history. This detects schema drift caused by manual changes or other developers.
 
-If remote schema drift is detected, the apply will fail with an error showing the differences. This helps prevent applying migrations to an inconsistent state.
+If remote schema drift is detected, the deploy will fail with an error showing the differences. This helps prevent applying migrations to an inconsistent state.
 
 Use `--no-schema-check` to skip both verifications (not recommended for production).
 
 **Plan Output:**
 
-Before applying changes, `apply` shows a preview of the planned resource changes.
+Before applying changes, `deploy` shows a preview of the planned resource changes.
 
 - `+` means the resource will be created
 - `~` means the resource will be updated

package/docs/cli/crashreport.md

@@ -0,0 +1,119 @@
+# Crash Report Commands
+
+Commands for managing crash reports.
+
+<!-- politty:command:crashreport:heading:start -->
+
+## crashreport
+
+<!-- politty:command:crashreport:heading:end -->
+
+<!-- politty:command:crashreport:description:start -->
+
+Manage crash reports.
+
+**Aliases:** `crash-report`
+
+<!-- politty:command:crashreport:description:end -->
+
+<!-- politty:command:crashreport:usage:start -->
+
+**Usage**
+
+```
+tailor-sdk crashreport [command]
+```
+
+<!-- politty:command:crashreport:usage:end -->
+
+<!-- politty:command:crashreport:global-options-link:start -->
+
+See [Global Options](../cli-reference.md#global-options) for options available to all commands.
+
+<!-- politty:command:crashreport:global-options-link:end -->
+
+<!-- politty:command:crashreport:subcommands:start -->
+
+**Commands**
+
+| Command                                 | Description                                    |
+| --------------------------------------- | ---------------------------------------------- |
+| [`crashreport list`](#crashreport-list) | List local crash report files.                 |
+| [`crashreport send`](#crashreport-send) | Submit a crash report to help improve the SDK. |
+
+<!-- politty:command:crashreport:subcommands:end -->
+<!-- politty:command:crashreport list:heading:start -->
+
+### crashreport list
+
+<!-- politty:command:crashreport list:heading:end -->
+
+<!-- politty:command:crashreport list:description:start -->
+
+List local crash report files.
+
+<!-- politty:command:crashreport list:description:end -->
+
+<!-- politty:command:crashreport list:usage:start -->
+
+**Usage**
+
+```
+tailor-sdk crashreport list [options]
+```
+
+<!-- politty:command:crashreport list:usage:end -->
+
+<!-- politty:command:crashreport list:options:start -->
+
+**Options**
+
+| Option            | Alias | Description                                              | Required | Default  |
+| ----------------- | ----- | -------------------------------------------------------- | -------- | -------- |
+| `--order <ORDER>` | -     | Sort order (asc or desc)                                 | No       | `"desc"` |
+| `--limit <LIMIT>` | `-l`  | Maximum number of items to return (0 or omit: unlimited) | No       | -        |
+
+<!-- politty:command:crashreport list:options:end -->
+
+<!-- politty:command:crashreport list:global-options-link:start -->
+
+See [Global Options](../cli-reference.md#global-options) for options available to all commands.
+
+<!-- politty:command:crashreport list:global-options-link:end -->
+<!-- politty:command:crashreport send:heading:start -->
+
+### crashreport send
+
+<!-- politty:command:crashreport send:heading:end -->
+
+<!-- politty:command:crashreport send:description:start -->
+
+Submit a crash report to help improve the SDK.
+
+<!-- politty:command:crashreport send:description:end -->
+
+<!-- politty:command:crashreport send:usage:start -->
+
+**Usage**
+
+```
+tailor-sdk crashreport send [options]
+```
+
+<!-- politty:command:crashreport send:usage:end -->
+
+<!-- politty:command:crashreport send:options:start -->
+
+**Options**
+
+| Option          | Alias | Description                   | Required | Default |
+| --------------- | ----- | ----------------------------- | -------- | ------- |
+| `--file <FILE>` | -     | Path to the crash report file | Yes      | -       |
+
+<!-- politty:command:crashreport send:options:end -->
+
+<!-- politty:command:crashreport send:global-options-link:start -->
+
+See [Global Options](../cli-reference.md#global-options) for options available to all commands.
+
+<!-- politty:command:crashreport send:global-options-link:end -->

package/docs/cli/executor.md

@@ -151,7 +151,7 @@ List or get executor jobs.
 **Usage**
 
 ```
-tailor-sdk executor jobs [options] <executorName> [jobId]
+tailor-sdk executor jobs [options] <executor-name> [job-id]
 ```
 
 <!-- politty:command:executor jobs:usage:end -->
@@ -160,10 +160,10 @@ tailor-sdk executor jobs [options] <executorName> [jobId]
 
 **Arguments**
 
-| Argument       | Description                             | Required |
-| -------------- | --------------------------------------- | -------- |
-| `executorName` | Executor name                           | Yes      |
-| `jobId`        | Job ID (if provided, shows job details) | No       |
+| Argument        | Description                             | Required |
+| --------------- | --------------------------------------- | -------- |
+| `executor-name` | Executor name                           | Yes      |
+| `job-id`        | Job ID (if provided, shows job details) | No       |
 
 <!-- politty:command:executor jobs:arguments:end -->
 
@@ -256,7 +256,7 @@ Trigger an executor manually.
 **Usage**
 
 ```
-tailor-sdk executor trigger [options] <executorName>
+tailor-sdk executor trigger [options] <executor-name>
 ```
 
 <!-- politty:command:executor trigger:usage:end -->
@@ -265,9 +265,9 @@ tailor-sdk executor trigger [options] <executorName>
 
 **Arguments**
 
-| Argument       | Description   | Required |
-| -------------- | ------------- | -------- |
-| `executorName` | Executor name | Yes      |
+| Argument        | Description   | Required |
+| --------------- | ------------- | -------- |
+| `executor-name` | Executor name | Yes      |
 
 <!-- politty:command:executor trigger:arguments:end -->
 

package/docs/cli/function.md

@@ -139,7 +139,7 @@ List or get function execution logs.
 **Usage**
 
 ```
-tailor-sdk function logs [options] [executionId]
+tailor-sdk function logs [options] [execution-id]
 ```
 
 <!-- politty:command:function logs:usage:end -->
@@ -148,9 +148,9 @@ tailor-sdk function logs [options] [executionId]
 
 **Arguments**
 
-| Argument      | Description                                         | Required |
-| ------------- | --------------------------------------------------- | -------- |
-| `executionId` | Execution ID (if provided, shows details with logs) | No       |
+| Argument       | Description                                         | Required |
+| -------------- | --------------------------------------------------- | -------- |
+| `execution-id` | Execution ID (if provided, shows details with logs) | No       |
 
 <!-- politty:command:function logs:arguments:end -->
 
@@ -209,7 +209,7 @@ $ tailor-sdk function logs <execution-id> --json
 
 When viewing a specific execution that failed, the command displays error details with the stack trace mapped back to original source files via the inline sourcemap (clickable file links and code snippets, matching `function test-run` output).
 
-When the deployed script cannot be downloaded or the function has been redeployed since the execution, the command falls back to a plain-text error display to avoid showing misleading source locations.
+The download is pinned to the bundle that actually ran using the execution's content hash, so stack traces stay accurate across redeploys when the server retains old bundles. The command falls back to a plain-text error display when the pinned bundle cannot be retrieved, or when the execution was recorded before content hashes started being tracked and the function was redeployed after it ran.
 
 <!-- politty:command:function logs:notes:end -->
 

package/docs/cli/setup.md

@@ -72,6 +72,7 @@ tailor-sdk setup github [options]
 | `--organization-id <ORGANIZATION_ID>`   | `-o`  | Organization ID                     | Yes      | -       |
 | `--folder-id <FOLDER_ID>`               | `-f`  | Folder ID                           | Yes      | -       |
 | `--dir <DIR>`                           | `-d`  | App directory (for monorepo setups) | No       | `"."`   |
+| `--with-plan`                           | `-p`  | Include plan job for PR previews    | No       | `false` |
 
 <!-- politty:command:setup github:options:end -->
 

package/docs/cli/tailordb.md

@@ -135,7 +135,7 @@ Manage TailorDB schema migrations.
 
 <!-- politty:command:tailordb migration:description:end -->
 
-Note: Migration scripts are automatically executed during `tailor-sdk apply`. See [Automatic Migration Execution](../services/tailordb-migration.md#automatic-migration-execution) for details.
+Note: Migration scripts are automatically executed during `tailor-sdk deploy`. See [Automatic Migration Execution](../services/tailordb-migration.md#automatic-migration-execution) for details.
 
 <!-- politty:command:tailordb migration:usage:start -->
 

package/docs/cli/workflow.md

@@ -202,7 +202,7 @@ List or get workflow executions.
 **Usage**
 
 ```
-tailor-sdk workflow executions [options] [executionId]
+tailor-sdk workflow executions [options] [execution-id]
 ```
 
 <!-- politty:command:workflow executions:usage:end -->
@@ -211,9 +211,9 @@ tailor-sdk workflow executions [options] [executionId]
 
 **Arguments**
 
-| Argument      | Description                               | Required |
-| ------------- | ----------------------------------------- | -------- |
-| `executionId` | Execution ID (if provided, shows details) | No       |
+| Argument       | Description                               | Required |
+| -------------- | ----------------------------------------- | -------- |
+| `execution-id` | Execution ID (if provided, shows details) | No       |
 
 <!-- politty:command:workflow executions:arguments:end -->
 
@@ -257,7 +257,7 @@ Resume a failed or pending workflow execution.
 **Usage**
 
 ```
-tailor-sdk workflow resume [options] <executionId>
+tailor-sdk workflow resume [options] <execution-id>
 ```
 
 <!-- politty:command:workflow resume:usage:end -->
@@ -266,9 +266,9 @@ tailor-sdk workflow resume [options] <executionId>
 
 **Arguments**
 
-| Argument      | Description         | Required |
-| ------------- | ------------------- | -------- |
-| `executionId` | Failed execution ID | Yes      |
+| Argument       | Description         | Required |
+| -------------- | ------------------- | -------- |
+| `execution-id` | Failed execution ID | Yes      |
 
 <!-- politty:command:workflow resume:arguments:end -->