@tailor-platform/sdk 1.48.0 → 1.49.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (45) hide show
  1. package/CHANGELOG.md +16 -0
  2. package/dist/{application-DUENhx4Y.mjs → application-CZMzt9jL.mjs} +3 -2
  3. package/dist/application-CZMzt9jL.mjs.map +1 -0
  4. package/dist/application-v_E2W-Fz.mjs +4 -0
  5. package/dist/brand-D-d15jx3.mjs.map +1 -1
  6. package/dist/cli/index.mjs +46 -22
  7. package/dist/cli/index.mjs.map +1 -1
  8. package/dist/cli/lib.mjs +4 -4
  9. package/dist/cli/lib.mjs.map +1 -1
  10. package/dist/cli/skills.mjs.map +1 -1
  11. package/dist/client-_kHh0Pip.mjs.map +1 -1
  12. package/dist/configure/index.mjs.map +1 -1
  13. package/dist/crashreport-CvmdFs4i.mjs.map +1 -1
  14. package/dist/enum-constants-C3KSpsYj.mjs.map +1 -1
  15. package/dist/errors-pMPXghkO.mjs.map +1 -1
  16. package/dist/field-DLSIuMTu.mjs.map +1 -1
  17. package/dist/file-utils-DjNi_3U_.mjs.map +1 -1
  18. package/dist/interceptor-DTNS0EtF.mjs.map +1 -1
  19. package/dist/job-M3Avv_SV.mjs.map +1 -1
  20. package/dist/kysely/index.mjs.map +1 -1
  21. package/dist/kysely-type-B8aRz_oC.mjs.map +1 -1
  22. package/dist/logger-DTNAMYGy.mjs.map +1 -1
  23. package/dist/mock-BfL09ULZ.mjs.map +1 -1
  24. package/dist/multiline-e3IpANmS.mjs.map +1 -1
  25. package/dist/package-json-6Px8bDpG.mjs.map +1 -1
  26. package/dist/plugin/index.mjs.map +1 -1
  27. package/dist/repl-editor-jZ493eQI.mjs.map +1 -1
  28. package/dist/{runtime-CNg0w27y.mjs → runtime-oZgK353r.mjs} +91 -10
  29. package/dist/runtime-oZgK353r.mjs.map +1 -0
  30. package/dist/schema-C5QjYEc-.mjs.map +1 -1
  31. package/dist/secret-file-BHpxGyNf.mjs.map +1 -1
  32. package/dist/seed/index.mjs.map +1 -1
  33. package/dist/seed-DjfAn0BC.mjs.map +1 -1
  34. package/dist/service-DCgJxdg1.mjs.map +1 -1
  35. package/dist/telemetry-C1Y56L5E.mjs.map +1 -1
  36. package/dist/types-sir9UPht.mjs.map +1 -1
  37. package/dist/utils/test/index.mjs.map +1 -1
  38. package/dist/vitest/environment.mjs.map +1 -1
  39. package/dist/vitest/index.mjs.map +1 -1
  40. package/dist/vitest/setup.mjs.map +1 -1
  41. package/docs/cli/workspace.md +20 -17
  42. package/package.json +6 -6
  43. package/dist/application-BNkNt47b.mjs +0 -4
  44. package/dist/application-DUENhx4Y.mjs.map +0 -1
  45. package/dist/runtime-CNg0w27y.mjs.map +0 -1
package/CHANGELOG.md CHANGED
@@ -1,5 +1,21 @@
1
1
  # @tailor-platform/sdk
2
2
 
3
+ ## 1.49.0
4
+
5
+ ### Minor Changes
6
+
7
+ - [#1147](https://github.com/tailor-platform/sdk/pull/1147) [`f0de80a`](https://github.com/tailor-platform/sdk/commit/f0de80ac83a3e76bcb65be7957cb3d7bd1f80ec1) Thanks [@dqn](https://github.com/dqn)! - Add `--permission <write|read>` flag to `profile create`, `profile update`, and `workspace create` (when `--profile-name` is given) so editor users can use a viewer-style profile by default. Profiles created with `--permission read` block platform-state mutations driven by the operator's bearer token (`apply`, `remove`, `workspace create/delete/restore`, `secret create/update/delete`, `tailordb migrate set`, `tailordb truncate`, `tailordb erd deploy`, `executor trigger`, `staticwebsite deploy`, `authconnection authorize/revoke`, organization / folder / PAT / workspace-user mutations, and direct `api <endpoint>` calls) with a `PROFILE_READONLY` error. Application-data operations executed under a machine user (`query`, `workflow start/resume`, `function test-run`) are not gated because the machine user's own permissions already govern those mutations. Switch profile or run `profile update <name> --permission write` to lift the restriction. Profile management itself stays available so the flag can always be cleared. `profile update` skips remote user / workspace validation when only `--permission` is changing, so the flag can be cleared offline or with an expired token.
8
+
9
+ The guard activates only when a profile is in scope: pass `--profile <name>` or set `TAILOR_PLATFORM_PROFILE`. `TAILOR_PLATFORM_TOKEN` and `--workspace-id` direct access bypass the guard by design; they are intended for machine-user / CI flows where the platform token already encodes the permitted scope.
10
+
11
+ ### Patch Changes
12
+
13
+ - [#1204](https://github.com/tailor-platform/sdk/pull/1204) [`6b1bbcb`](https://github.com/tailor-platform/sdk/commit/6b1bbcbe843340a912a3c75c2ecdb03c5697f967) Thanks [@renovate](https://github.com/apps/renovate)! - fix(deps): update dependency rolldown to v1.0.1
14
+
15
+ - [#1196](https://github.com/tailor-platform/sdk/pull/1196) [`c9b7d1e`](https://github.com/tailor-platform/sdk/commit/c9b7d1eae8a3cccf70191bd8c228cd11db6ed060) Thanks [@dqn](https://github.com/dqn)! - Eliminate the Node.js `DEP0205` `DeprecationWarning` (`` `module.register()` is deprecated. Use `module.registerHooks()` instead. ``) printed by every `tailor-sdk` CLI invocation on Node v26. The CLI now registers `tsx` through its own programmatic API (`tsx/esm/api`) instead of calling `node:module`'s `register("tsx", …)` directly, which on tsx 4.21.1+ routes through `module.registerHooks()` on Node ≥ 24.11.1 / 25.1 / 26 and falls back to `module.register()` on older runtimes. Bumps the bundled `tsx` from 4.21.0 to 4.21.1.
16
+
17
+ - [#1179](https://github.com/tailor-platform/sdk/pull/1179) [`f72ffe1`](https://github.com/tailor-platform/sdk/commit/f72ffe1aed824eb9af5e7520529c3ebde029b5a6) Thanks [@toiroakr](https://github.com/toiroakr)! - Fix `tailor-sdk deploy --no-schema-check` to reconcile the TailorDB migration label to the working tree's latest migration number when it completes. Previously, running `deploy --no-schema-check` from a revision whose working tree is older than the remote left the remote migration label stale; the next `deploy` then reconstructed a snapshot at a label that no longer existed in the working tree and aborted with a false "Remote schema drift detected" error.
18
+
3
19
  ## 1.48.0
4
20
 
5
21
  ### Minor Changes
package/dist/{application-DUENhx4Y.mjs → application-CZMzt9jL.mjs} RENAMED
@@ -198,7 +198,8 @@ async function deleteKeyringTokens(account) {
198
198
  //#region src/cli/shared/context.ts
199
199
  const pfProfileSchema = z.object({
200
200
  user: z.string(),
201
- workspace_id: z.string()
201
+ workspace_id: z.string(),
202
+ readonly: z.boolean().optional()
202
203
  });
203
204
  const pfUserSchemaV1 = z.object({
204
205
  access_token: z.string(),
@@ -5344,4 +5345,4 @@ async function loadApplication(params) {
5344
5345
 
5345
5346
  //#endregion
5346
5347
  export { loadConfigPath as C, saveUserTokens as D, resolveTokens as E, writePlatformConfig as O, loadAccessToken as S, readPlatformConfig as T, getDistDir as _, WorkflowJobSchema as a, deleteUserTokens as b, ExecutorSchema as c, buildResolverOperationHookExpr as d, OAuth2ClientSchema as f, createBundleCache as g, loadFilesWithIgnores as h, resolveInlineSourcemap as i, INVOKER_EXPR as l, stringifyFunction as m, generatePluginFilesIfNeeded as n, ResolverSchema as o, TailorDBTypeSchema as p, loadApplication as r, createExecutorService as s, defineApplication as t, buildExecutorArgsExpr as u, hashFile as v, loadWorkspaceId as w, fetchLatestToken as x, loadConfig as y };
5347
- //# sourceMappingURL=application-DUENhx4Y.mjs.map
5348
+ //# sourceMappingURL=application-CZMzt9jL.mjs.map