npm - @timber-js/app - Versions diffs - 0.1.20 → 0.1.22 - Mend

@timber-js/app 0.1.20 → 0.1.22

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (137) hide show

package/dist/_chunks/als-registry-c0AGnbqS.js +39 -0
package/dist/_chunks/als-registry-c0AGnbqS.js.map +1 -0
package/dist/_chunks/{interception-c-a3uODY.js → interception-DGDIjDbR.js} +10 -3
package/dist/_chunks/interception-DGDIjDbR.js.map +1 -0
package/dist/_chunks/{metadata-routes-BDnswgRO.js → metadata-routes-CQCnF4VK.js} +14 -2
package/dist/_chunks/metadata-routes-CQCnF4VK.js.map +1 -0
package/dist/_chunks/{request-context-BzES06i1.js → request-context-C69VW4xS.js} +2 -4
package/dist/_chunks/request-context-C69VW4xS.js.map +1 -0
package/dist/_chunks/ssr-data-B2yikEEB.js +90 -0
package/dist/_chunks/ssr-data-B2yikEEB.js.map +1 -0
package/dist/_chunks/{tracing-BtOwb8O6.js → tracing-tIvqStk8.js} +2 -3
package/dist/_chunks/tracing-tIvqStk8.js.map +1 -0
package/dist/_chunks/{use-cookie-D2cZu0jK.js → use-cookie-D5aS4slY.js} +2 -2
package/dist/_chunks/{use-cookie-D2cZu0jK.js.map → use-cookie-D5aS4slY.js.map} +1 -1
package/dist/_chunks/{use-query-states-wEXY2JQB.js → use-query-states-DAhgj8Gx.js} +1 -1
package/dist/_chunks/{use-query-states-wEXY2JQB.js.map → use-query-states-DAhgj8Gx.js.map} +1 -1
package/dist/cache/index.js +2 -1
package/dist/cache/index.js.map +1 -1
package/dist/client/error-boundary.js +1 -1
package/dist/client/index.d.ts +1 -1
package/dist/client/index.d.ts.map +1 -1
package/dist/client/index.js +40 -26
package/dist/client/index.js.map +1 -1
package/dist/client/router-ref.d.ts.map +1 -1
package/dist/client/router.d.ts.map +1 -1
package/dist/client/ssr-data.d.ts +3 -0
package/dist/client/ssr-data.d.ts.map +1 -1
package/dist/client/state.d.ts +47 -0
package/dist/client/state.d.ts.map +1 -0
package/dist/client/types.d.ts +10 -1
package/dist/client/types.d.ts.map +1 -1
package/dist/client/unload-guard.d.ts +3 -0
package/dist/client/unload-guard.d.ts.map +1 -1
package/dist/client/use-params.d.ts +19 -6
package/dist/client/use-params.d.ts.map +1 -1
package/dist/client/use-search-params.d.ts +3 -0
package/dist/client/use-search-params.d.ts.map +1 -1
package/dist/cookies/index.js +4 -2
package/dist/cookies/index.js.map +1 -1
package/dist/index.js +4 -1
package/dist/index.js.map +1 -1
package/dist/plugins/shims.d.ts.map +1 -1
package/dist/routing/index.js +1 -1
package/dist/routing/scanner.d.ts.map +1 -1
package/dist/rsc-runtime/browser.d.ts +13 -0
package/dist/rsc-runtime/browser.d.ts.map +1 -0
package/dist/rsc-runtime/rsc.d.ts +14 -0
package/dist/rsc-runtime/rsc.d.ts.map +1 -0
package/dist/rsc-runtime/ssr.d.ts +13 -0
package/dist/rsc-runtime/ssr.d.ts.map +1 -0
package/dist/search-params/builtin-codecs.d.ts +105 -0
package/dist/search-params/builtin-codecs.d.ts.map +1 -0
package/dist/search-params/index.d.ts +1 -0
package/dist/search-params/index.d.ts.map +1 -1
package/dist/search-params/index.js +167 -2
package/dist/search-params/index.js.map +1 -1
package/dist/server/actions.d.ts +2 -7
package/dist/server/actions.d.ts.map +1 -1
package/dist/server/als-registry.d.ts +80 -0
package/dist/server/als-registry.d.ts.map +1 -0
package/dist/server/early-hints-sender.d.ts.map +1 -1
package/dist/server/form-flash.d.ts.map +1 -1
package/dist/server/index.d.ts +1 -0
package/dist/server/index.d.ts.map +1 -1
package/dist/server/index.js +242 -76
package/dist/server/index.js.map +1 -1
package/dist/server/metadata-routes.d.ts +27 -0
package/dist/server/metadata-routes.d.ts.map +1 -1
package/dist/server/pipeline.d.ts +7 -0
package/dist/server/pipeline.d.ts.map +1 -1
package/dist/server/primitives.d.ts +14 -6
package/dist/server/primitives.d.ts.map +1 -1
package/dist/server/request-context.d.ts +2 -32
package/dist/server/request-context.d.ts.map +1 -1
package/dist/server/route-matcher.d.ts +5 -0
package/dist/server/route-matcher.d.ts.map +1 -1
package/dist/server/rsc-entry/index.d.ts.map +1 -1
package/dist/server/rsc-entry/rsc-payload.d.ts +25 -0
package/dist/server/rsc-entry/rsc-payload.d.ts.map +1 -0
package/dist/server/rsc-entry/rsc-stream.d.ts +43 -0
package/dist/server/rsc-entry/rsc-stream.d.ts.map +1 -0
package/dist/server/rsc-entry/ssr-renderer.d.ts +52 -0
package/dist/server/rsc-entry/ssr-renderer.d.ts.map +1 -0
package/dist/server/rsc-prop-warnings.d.ts +53 -0
package/dist/server/rsc-prop-warnings.d.ts.map +1 -0
package/dist/server/server-timing.d.ts +49 -0
package/dist/server/server-timing.d.ts.map +1 -0
package/dist/server/tracing.d.ts +2 -6
package/dist/server/tracing.d.ts.map +1 -1
package/dist/server/types.d.ts +11 -0
package/dist/server/types.d.ts.map +1 -1
package/package.json +1 -1
package/src/client/browser-entry.ts +1 -1
package/src/client/index.ts +1 -1
package/src/client/router-ref.ts +6 -12
package/src/client/router.ts +14 -4
package/src/client/ssr-data.ts +25 -9
package/src/client/state.ts +83 -0
package/src/client/types.ts +18 -1
package/src/client/unload-guard.ts +6 -3
package/src/client/use-params.ts +42 -32
package/src/client/use-search-params.ts +9 -5
package/src/plugins/shims.ts +26 -2
package/src/routing/scanner.ts +18 -2
package/src/rsc-runtime/browser.ts +18 -0
package/src/rsc-runtime/rsc.ts +19 -0
package/src/rsc-runtime/ssr.ts +13 -0
package/src/search-params/builtin-codecs.ts +228 -0
package/src/search-params/index.ts +11 -0
package/src/server/action-handler.ts +1 -1
package/src/server/actions.ts +4 -10
package/src/server/als-registry.ts +116 -0
package/src/server/deny-renderer.ts +1 -1
package/src/server/early-hints-sender.ts +1 -3
package/src/server/form-flash.ts +1 -5
package/src/server/index.ts +1 -0
package/src/server/metadata-routes.ts +61 -0
package/src/server/pipeline.ts +164 -38
package/src/server/primitives.ts +110 -6
package/src/server/request-context.ts +8 -36
package/src/server/route-matcher.ts +25 -2
package/src/server/rsc-entry/error-renderer.ts +1 -1
package/src/server/rsc-entry/index.ts +42 -380
package/src/server/rsc-entry/rsc-payload.ts +126 -0
package/src/server/rsc-entry/rsc-stream.ts +162 -0
package/src/server/rsc-entry/ssr-renderer.ts +228 -0
package/src/server/rsc-prop-warnings.ts +187 -0
package/src/server/server-timing.ts +132 -0
package/src/server/ssr-entry.ts +1 -1
package/src/server/tracing.ts +3 -11
package/src/server/types.ts +16 -0
package/dist/_chunks/interception-c-a3uODY.js.map +0 -1
package/dist/_chunks/metadata-routes-BDnswgRO.js.map +0 -1
package/dist/_chunks/request-context-BzES06i1.js.map +0 -1
package/dist/_chunks/ssr-data-BgSwMbN9.js +0 -38
package/dist/_chunks/ssr-data-BgSwMbN9.js.map +0 -1
package/dist/_chunks/tracing-BtOwb8O6.js.map +0 -1

package/dist/server/als-registry.d.ts ADDED Viewed

@@ -0,0 +1,80 @@
+/**
+ * Centralized AsyncLocalStorage registry for server-side per-request state.
+ *
+ * ALL ALS instances used by the server framework live here. Individual
+ * modules (request-context.ts, tracing.ts, actions.ts, etc.) import from
+ * this registry and re-export public accessor functions.
+ *
+ * Why: ALS instances require singleton semantics — if two copies of the
+ * same ALS exist (one from a relative import, one from a barrel import),
+ * one module writes to its copy and another reads from an empty copy.
+ * Centralizing ALS creation in a single module eliminates this class of bug.
+ *
+ * The `timber-shims` plugin ensures `@timber-js/app/server` resolves to
+ * src/ in RSC and SSR environments, so all import paths converge here.
+ *
+ * DO NOT create ALS instances outside this file. If you need a new ALS,
+ * add it here and import from `./als-registry.js` in the consuming module.
+ *
+ * See design/18-build-system.md §"Module Singleton Strategy" and
+ * §"Singleton State Registry".
+ */
+import { AsyncLocalStorage } from 'node:async_hooks';
+/** @internal — import via request-context.ts public API */
+export declare const requestContextAls: AsyncLocalStorage<RequestContextStore>;
+export interface RequestContextStore {
+    /** Incoming request headers (read-only view). */
+    headers: Headers;
+    /** Raw cookie header string, parsed lazily into a Map on first access. */
+    cookieHeader: string;
+    /** Lazily-parsed cookie map (mutable — reflects write-overlay from set()). */
+    parsedCookies?: Map<string, string>;
+    /** Original (pre-overlay) frozen headers, kept for overlay merging. */
+    originalHeaders: Headers;
+    /**
+     * Promise resolving to the route's typed search params (when search-params.ts
+     * exists) or to the raw URLSearchParams. Stored as a Promise so the framework
+     * can later support partial pre-rendering where param resolution is deferred.
+     */
+    searchParamsPromise: Promise<URLSearchParams | Record<string, unknown>>;
+    /** Outgoing Set-Cookie entries (name → serialized value + options). Last write wins. */
+    cookieJar: Map<string, CookieEntry>;
+    /** Whether the response has flushed (headers committed). */
+    flushed: boolean;
+    /** Whether the current context allows cookie mutation. */
+    mutableContext: boolean;
+}
+/** A single outgoing cookie entry in the cookie jar. */
+export interface CookieEntry {
+    name: string;
+    value: string;
+    options: import('./request-context.js').CookieOptions;
+}
+export interface TraceStore {
+    /** 32-char lowercase hex trace ID (OTEL or UUID fallback). */
+    traceId: string;
+    /** OTEL span ID if available, undefined otherwise. */
+    spanId?: string;
+}
+/** @internal — import via tracing.ts public API */
+export declare const traceAls: AsyncLocalStorage<TraceStore>;
+export interface TimingStore {
+    entries: import('./server-timing.js').TimingEntry[];
+}
+/** @internal — import via server-timing.ts public API */
+export declare const timingAls: AsyncLocalStorage<TimingStore>;
+export interface RevalidationState {
+    /** Paths to re-render (populated by revalidatePath calls). */
+    paths: string[];
+    /** Tags to invalidate (populated by revalidateTag calls). */
+    tags: string[];
+}
+/** @internal — import via actions.ts public API */
+export declare const revalidationAls: AsyncLocalStorage<RevalidationState>;
+/** @internal — import via form-flash.ts public API */
+export declare const formFlashAls: AsyncLocalStorage<import("./form-flash.js").FormFlashData>;
+/** Function that sends Link header values as a 103 Early Hints response. */
+export type EarlyHintsSenderFn = (links: string[]) => void;
+/** @internal — import via early-hints-sender.ts public API */
+export declare const earlyHintsSenderAls: AsyncLocalStorage<EarlyHintsSenderFn>;
+//# sourceMappingURL=als-registry.d.ts.map

package/dist/server/als-registry.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"als-registry.d.ts","sourceRoot":"","sources":["../../src/server/als-registry.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;GAoBG;AAEH,OAAO,EAAE,iBAAiB,EAAE,MAAM,kBAAkB,CAAC;AAMrD,2DAA2D;AAC3D,eAAO,MAAM,iBAAiB,wCAA+C,CAAC;AAE9E,MAAM,WAAW,mBAAmB;IAClC,iDAAiD;IACjD,OAAO,EAAE,OAAO,CAAC;IACjB,0EAA0E;IAC1E,YAAY,EAAE,MAAM,CAAC;IACrB,8EAA8E;IAC9E,aAAa,CAAC,EAAE,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACpC,uEAAuE;IACvE,eAAe,EAAE,OAAO,CAAC;IACzB;;;;OAIG;IACH,mBAAmB,EAAE,OAAO,CAAC,eAAe,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;IACxE,wFAAwF;IACxF,SAAS,EAAE,GAAG,CAAC,MAAM,EAAE,WAAW,CAAC,CAAC;IACpC,4DAA4D;IAC5D,OAAO,EAAE,OAAO,CAAC;IACjB,0DAA0D;IAC1D,cAAc,EAAE,OAAO,CAAC;CACzB;AAED,wDAAwD;AACxD,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,OAAO,EAAE,OAAO,sBAAsB,EAAE,aAAa,CAAC;CACvD;AAMD,MAAM,WAAW,UAAU;IACzB,8DAA8D;IAC9D,OAAO,EAAE,MAAM,CAAC;IAChB,sDAAsD;IACtD,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,mDAAmD;AACnD,eAAO,MAAM,QAAQ,+BAAsC,CAAC;AAM5D,MAAM,WAAW,WAAW;IAC1B,OAAO,EAAE,OAAO,oBAAoB,EAAE,WAAW,EAAE,CAAC;CACrD;AAED,yDAAyD;AACzD,eAAO,MAAM,SAAS,gCAAuC,CAAC;AAM9D,MAAM,WAAW,iBAAiB;IAChC,8DAA8D;IAC9D,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,6DAA6D;IAC7D,IAAI,EAAE,MAAM,EAAE,CAAC;CAChB;AAED,mDAAmD;AACnD,eAAO,MAAM,eAAe,sCAA6C,CAAC;AAM1E,sDAAsD;AACtD,eAAO,MAAM,YAAY,4DAAmE,CAAC;AAM7F,4EAA4E;AAC5E,MAAM,MAAM,kBAAkB,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,IAAI,CAAC;AAE3D,8DAA8D;AAC9D,eAAO,MAAM,mBAAmB,uCAA8C,CAAC"}

package/dist/server/early-hints-sender.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"early-hints-sender.d.ts","sourceRoot":"","sources":["../../src/server/early-hints-sender.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;GAkBG;AAIH,4EAA4E;AAC5E,MAAM,MAAM,kBAAkB,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,IAAI,CAAC;~~AAI3D~~;;;;;GAKG;AACH,wBAAgB,uBAAuB,CAAC,CAAC,EAAE,MAAM,EAAE,kBAAkB,EAAE,EAAE,EAAE,MAAM,CAAC,GAAG,CAAC,CAErF;AAED;;;;;;;GAOG;AACH,wBAAgB,iBAAiB,CAAC,KAAK,EAAE,MAAM,EAAE,GAAG,IAAI,CASvD"}
1	+ {"version":3,"file":"early-hints-sender.d.ts","sourceRoot":"","sources":["../../src/server/early-hints-sender.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;GAkBG;AAIH,4EAA4E;AAC5E,MAAM,MAAM,kBAAkB,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,IAAI,CAAC;AAE3D;;;;;GAKG;AACH,wBAAgB,uBAAuB,CAAC,CAAC,EAAE,MAAM,EAAE,kBAAkB,EAAE,EAAE,EAAE,MAAM,CAAC,GAAG,CAAC,CAErF;AAED;;;;;;;GAOG;AACH,wBAAgB,iBAAiB,CAAC,KAAK,EAAE,MAAM,EAAE,GAAG,IAAI,CASvD"}

package/dist/server/form-flash.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"form-flash.d.ts","sourceRoot":"","sources":["../../src/server/form-flash.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;~~AAGH~~,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;~~AAI3D~~;;;;;;;;;;;;GAYG;AACH,MAAM,WAAW,aAAa;IAC5B,oCAAoC;IACpC,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,4EAA4E;IAC5E,gBAAgB,CAAC,EAAE,gBAAgB,CAAC;IACpC,oFAAoF;IACpF,eAAe,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAC1C,uDAAuD;IACvD,WAAW,CAAC,EAAE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,IAAI,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;KAAE,CAAC;CAChE;~~AAQD~~;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AACH,wBAAgB,YAAY,IAAI,aAAa,GAAG,IAAI,CAEnD;AAID;;;;;;;GAOG;AACH,wBAAgB,gBAAgB,CAAC,CAAC,EAAE,IAAI,EAAE,aAAa,EAAE,EAAE,EAAE,MAAM,CAAC,GAAG,CAAC,CAEvE"}
1	+ {"version":3,"file":"form-flash.d.ts","sourceRoot":"","sources":["../../src/server/form-flash.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAEH,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AAK3D;;;;;;;;;;;;GAYG;AACH,MAAM,WAAW,aAAa;IAC5B,oCAAoC;IACpC,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,4EAA4E;IAC5E,gBAAgB,CAAC,EAAE,gBAAgB,CAAC;IACpC,oFAAoF;IACpF,eAAe,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAC1C,uDAAuD;IACvD,WAAW,CAAC,EAAE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,IAAI,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;KAAE,CAAC;CAChE;AAID;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AACH,wBAAgB,YAAY,IAAI,aAAa,GAAG,IAAI,CAEnD;AAID;;;;;;;GAOG;AACH,wBAAgB,gBAAgB,CAAC,CAAC,EAAE,IAAI,EAAE,aAAa,EAAE,EAAE,EAAE,MAAM,CAAC,GAAG,CAAC,CAEvE"}

package/dist/server/index.d.ts CHANGED Viewed

@@ -6,6 +6,7 @@ export { headers, cookies, searchParams, setParsedSearchParams, runWithRequestCo
 export type { ReadonlyHeaders, RequestCookies, CookieOptions } from './request-context';
 export { deny, notFound, redirect, permanentRedirect, redirectExternal, RedirectType, RenderError, waitUntil, DenySignal, RedirectSignal, } from './primitives';
 export type { RenderErrorDigest, WaitUntilAdapter } from './primitives';
+export type { JsonSerializable } from './types';
 export { createPipeline } from './pipeline';
 export type { PipelineConfig, RouteMatch, RouteMatcher, RouteRenderer, EarlyHintsEmitter, } from './pipeline';
 export { collectEarlyHintHeaders, formatLinkHeader } from './early-hints';

package/dist/server/index.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/server/index.ts"],"names":[],"mappings":"AAGA,YAAY,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AAC7C,YAAY,EAAE,iBAAiB,EAAE,MAAM,SAAS,CAAC;AACjD,YAAY,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAC5C,YAAY,EAAE,QAAQ,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AAKvD,OAAO,EACL,OAAO,EACP,OAAO,EACP,YAAY,EACZ,qBAAqB,EACrB,qBAAqB,EACrB,uBAAuB,EACvB,mBAAmB,EACnB,mBAAmB,EACnB,gBAAgB,GACjB,MAAM,mBAAmB,CAAC;AAC3B,YAAY,EAAE,eAAe,EAAE,cAAc,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC;AAGxF,OAAO,EACL,IAAI,EACJ,QAAQ,EACR,QAAQ,EACR,iBAAiB,EACjB,gBAAgB,EAChB,YAAY,EACZ,WAAW,EACX,SAAS,EACT,UAAU,EACV,cAAc,GACf,MAAM,cAAc,CAAC;AACtB,YAAY,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;~~AAGxE~~,OAAO,EAAE,cAAc,EAAE,MAAM,YAAY,CAAC;AAC5C,YAAY,EACV,cAAc,EACd,UAAU,EACV,YAAY,EACZ,aAAa,EACb,iBAAiB,GAClB,MAAM,YAAY,CAAC;AAGpB,OAAO,EAAE,uBAAuB,EAAE,gBAAgB,EAAE,MAAM,eAAe,CAAC;AAC1E,YAAY,EAAE,SAAS,EAAE,MAAM,eAAe,CAAC;AAG/C,OAAO,EAAE,uBAAuB,EAAE,iBAAiB,EAAE,MAAM,sBAAsB,CAAC;AAClF,YAAY,EAAE,kBAAkB,EAAE,MAAM,sBAAsB,CAAC;AAG/D,OAAO,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAC9C,YAAY,EAAE,kBAAkB,EAAE,MAAM,gBAAgB,CAAC;AAGzD,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AACnC,YAAY,EAAE,OAAO,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AAGpD,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACpD,YAAY,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAGxD,OAAO,EAAE,gBAAgB,EAAE,MAAM,gBAAgB,CAAC;AAClD,YAAY,EACV,iBAAiB,EACjB,eAAe,EACf,YAAY,EACZ,YAAY,EACZ,eAAe,EACf,mBAAmB,EACnB,kBAAkB,GACnB,MAAM,gBAAgB,CAAC;AAGxB,OAAO,EAAE,UAAU,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AAG3D,OAAO,EAAE,iBAAiB,EAAE,iBAAiB,EAAE,MAAM,wBAAwB,CAAC;AAC9E,YAAY,EACV,oBAAoB,EACpB,cAAc,EACd,gBAAgB,EAChB,oBAAoB,EACpB,cAAc,GACf,MAAM,wBAAwB,CAAC;AAGhC,OAAO,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AACxC,YAAY,EAAE,YAAY,EAAE,WAAW,EAAE,QAAQ,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAGjF,OAAO,EAAE,YAAY,EAAE,MAAM,QAAQ,CAAC;AACtC,YAAY,EAAE,UAAU,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAC;AAGrD,OAAO,EAAE,aAAa,EAAE,iBAAiB,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AACjF,YAAY,EAAE,gBAAgB,EAAE,eAAe,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAC;AAGjF,OAAO,EACL,eAAe,EACf,YAAY,EACZ,mBAAmB,EACnB,wBAAwB,GACzB,MAAM,YAAY,CAAC;AACpB,YAAY,EAAE,oBAAoB,EAAE,sBAAsB,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAG5F,OAAO,EACL,qBAAqB,EACrB,yBAAyB,EACzB,wBAAwB,EACxB,0BAA0B,GAC3B,MAAM,mBAAmB,CAAC;AAC3B,YAAY,EAAE,iBAAiB,EAAE,iBAAiB,EAAE,MAAM,mBAAmB,CAAC;AAG9E,OAAO,EAAE,kBAAkB,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAC7E,YAAY,EACV,YAAY,EACZ,QAAQ,EACR,aAAa,EACb,uBAAuB,EACvB,aAAa,EACb,gBAAgB,EAChB,YAAY,EACZ,gBAAgB,GACjB,MAAM,iBAAiB,CAAC;AAGzB,OAAO,EAAE,aAAa,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AAGpD,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC5C,YAAY,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAGlD,OAAO,EACL,cAAc,EACd,aAAa,EACb,aAAa,EACb,iBAAiB,EACjB,kBAAkB,GACnB,MAAM,WAAW,CAAC;AACnB,YAAY,EACV,kBAAkB,EAClB,iBAAiB,EACjB,mBAAmB,EACnB,mBAAmB,GACpB,MAAM,WAAW,CAAC;AAInB,OAAO,EACL,OAAO,EACP,MAAM,EACN,eAAe,EACf,cAAc,EACd,cAAc,EACd,QAAQ,EACR,YAAY,GACb,MAAM,WAAW,CAAC;AACnB,YAAY,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AAI5C,OAAO,EAAE,SAAS,EAAE,SAAS,EAAE,MAAM,UAAU,CAAC;AAChD,OAAO,EACL,mBAAmB,EACnB,kBAAkB,EAClB,cAAc,EACd,yBAAyB,EACzB,kBAAkB,EAClB,cAAc,EACd,aAAa,EACb,uBAAuB,EACvB,oBAAoB,EACpB,mBAAmB,EACnB,YAAY,GACb,MAAM,UAAU,CAAC;AAClB,YAAY,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAI7C,OAAO,EAAE,mBAAmB,EAAE,kBAAkB,EAAE,iBAAiB,EAAE,MAAM,mBAAmB,CAAC;AAC/F,YAAY,EACV,6BAA6B,EAC7B,0BAA0B,EAC1B,2BAA2B,GAC5B,MAAM,mBAAmB,CAAC;AAI3B,OAAO,EACL,4BAA4B,EAC5B,kBAAkB,EAClB,sBAAsB,EACtB,oBAAoB,EACpB,oBAAoB,EACpB,qBAAqB,EACrB,2BAA2B,EAC3B,aAAa,EACb,SAAS,EAET,2BAA2B,EAC3B,wBAAwB,EACxB,kBAAkB,GACnB,MAAM,gBAAgB,CAAC;AACxB,YAAY,EAAE,gBAAgB,EAAE,MAAM,gBAAgB,CAAC;AAIvD,OAAO,EAAE,kBAAkB,EAAE,qBAAqB,EAAE,MAAM,iBAAiB,CAAC;AAC5E,YAAY,EAAE,WAAW,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC"}
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/server/index.ts"],"names":[],"mappings":"AAGA,YAAY,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AAC7C,YAAY,EAAE,iBAAiB,EAAE,MAAM,SAAS,CAAC;AACjD,YAAY,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAC5C,YAAY,EAAE,QAAQ,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AAKvD,OAAO,EACL,OAAO,EACP,OAAO,EACP,YAAY,EACZ,qBAAqB,EACrB,qBAAqB,EACrB,uBAAuB,EACvB,mBAAmB,EACnB,mBAAmB,EACnB,gBAAgB,GACjB,MAAM,mBAAmB,CAAC;AAC3B,YAAY,EAAE,eAAe,EAAE,cAAc,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC;AAGxF,OAAO,EACL,IAAI,EACJ,QAAQ,EACR,QAAQ,EACR,iBAAiB,EACjB,gBAAgB,EAChB,YAAY,EACZ,WAAW,EACX,SAAS,EACT,UAAU,EACV,cAAc,GACf,MAAM,cAAc,CAAC;AACtB,YAAY,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AACxE,YAAY,EAAE,gBAAgB,EAAE,MAAM,SAAS,CAAC;AAGhD,OAAO,EAAE,cAAc,EAAE,MAAM,YAAY,CAAC;AAC5C,YAAY,EACV,cAAc,EACd,UAAU,EACV,YAAY,EACZ,aAAa,EACb,iBAAiB,GAClB,MAAM,YAAY,CAAC;AAGpB,OAAO,EAAE,uBAAuB,EAAE,gBAAgB,EAAE,MAAM,eAAe,CAAC;AAC1E,YAAY,EAAE,SAAS,EAAE,MAAM,eAAe,CAAC;AAG/C,OAAO,EAAE,uBAAuB,EAAE,iBAAiB,EAAE,MAAM,sBAAsB,CAAC;AAClF,YAAY,EAAE,kBAAkB,EAAE,MAAM,sBAAsB,CAAC;AAG/D,OAAO,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAC9C,YAAY,EAAE,kBAAkB,EAAE,MAAM,gBAAgB,CAAC;AAGzD,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AACnC,YAAY,EAAE,OAAO,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AAGpD,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACpD,YAAY,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAGxD,OAAO,EAAE,gBAAgB,EAAE,MAAM,gBAAgB,CAAC;AAClD,YAAY,EACV,iBAAiB,EACjB,eAAe,EACf,YAAY,EACZ,YAAY,EACZ,eAAe,EACf,mBAAmB,EACnB,kBAAkB,GACnB,MAAM,gBAAgB,CAAC;AAGxB,OAAO,EAAE,UAAU,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AAG3D,OAAO,EAAE,iBAAiB,EAAE,iBAAiB,EAAE,MAAM,wBAAwB,CAAC;AAC9E,YAAY,EACV,oBAAoB,EACpB,cAAc,EACd,gBAAgB,EAChB,oBAAoB,EACpB,cAAc,GACf,MAAM,wBAAwB,CAAC;AAGhC,OAAO,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AACxC,YAAY,EAAE,YAAY,EAAE,WAAW,EAAE,QAAQ,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAGjF,OAAO,EAAE,YAAY,EAAE,MAAM,QAAQ,CAAC;AACtC,YAAY,EAAE,UAAU,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAC;AAGrD,OAAO,EAAE,aAAa,EAAE,iBAAiB,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AACjF,YAAY,EAAE,gBAAgB,EAAE,eAAe,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAC;AAGjF,OAAO,EACL,eAAe,EACf,YAAY,EACZ,mBAAmB,EACnB,wBAAwB,GACzB,MAAM,YAAY,CAAC;AACpB,YAAY,EAAE,oBAAoB,EAAE,sBAAsB,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAG5F,OAAO,EACL,qBAAqB,EACrB,yBAAyB,EACzB,wBAAwB,EACxB,0BAA0B,GAC3B,MAAM,mBAAmB,CAAC;AAC3B,YAAY,EAAE,iBAAiB,EAAE,iBAAiB,EAAE,MAAM,mBAAmB,CAAC;AAG9E,OAAO,EAAE,kBAAkB,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAC7E,YAAY,EACV,YAAY,EACZ,QAAQ,EACR,aAAa,EACb,uBAAuB,EACvB,aAAa,EACb,gBAAgB,EAChB,YAAY,EACZ,gBAAgB,GACjB,MAAM,iBAAiB,CAAC;AAGzB,OAAO,EAAE,aAAa,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AAGpD,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC5C,YAAY,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAGlD,OAAO,EACL,cAAc,EACd,aAAa,EACb,aAAa,EACb,iBAAiB,EACjB,kBAAkB,GACnB,MAAM,WAAW,CAAC;AACnB,YAAY,EACV,kBAAkB,EAClB,iBAAiB,EACjB,mBAAmB,EACnB,mBAAmB,GACpB,MAAM,WAAW,CAAC;AAInB,OAAO,EACL,OAAO,EACP,MAAM,EACN,eAAe,EACf,cAAc,EACd,cAAc,EACd,QAAQ,EACR,YAAY,GACb,MAAM,WAAW,CAAC;AACnB,YAAY,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AAI5C,OAAO,EAAE,SAAS,EAAE,SAAS,EAAE,MAAM,UAAU,CAAC;AAChD,OAAO,EACL,mBAAmB,EACnB,kBAAkB,EAClB,cAAc,EACd,yBAAyB,EACzB,kBAAkB,EAClB,cAAc,EACd,aAAa,EACb,uBAAuB,EACvB,oBAAoB,EACpB,mBAAmB,EACnB,YAAY,GACb,MAAM,UAAU,CAAC;AAClB,YAAY,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAI7C,OAAO,EAAE,mBAAmB,EAAE,kBAAkB,EAAE,iBAAiB,EAAE,MAAM,mBAAmB,CAAC;AAC/F,YAAY,EACV,6BAA6B,EAC7B,0BAA0B,EAC1B,2BAA2B,GAC5B,MAAM,mBAAmB,CAAC;AAI3B,OAAO,EACL,4BAA4B,EAC5B,kBAAkB,EAClB,sBAAsB,EACtB,oBAAoB,EACpB,oBAAoB,EACpB,qBAAqB,EACrB,2BAA2B,EAC3B,aAAa,EACb,SAAS,EAET,2BAA2B,EAC3B,wBAAwB,EACxB,kBAAkB,GACnB,MAAM,gBAAgB,CAAC;AACxB,YAAY,EAAE,gBAAgB,EAAE,MAAM,gBAAgB,CAAC;AAIvD,OAAO,EAAE,kBAAkB,EAAE,qBAAqB,EAAE,MAAM,iBAAiB,CAAC;AAC5E,YAAY,EAAE,WAAW,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC"}

package/dist/server/index.js CHANGED Viewed

@@ -1,10 +1,60 @@
 import { a as warnDenyAfterFlush, c as warnRedirectInAccess, d as warnSlowSlotWithoutSuspense, f as warnStaticRequestApi, i as warnCacheRequestProps, l as warnRedirectInSlotAccess, n as WarningId, o as warnDenyInSuspense, p as warnSuspenseWrappingChildren, r as setViteServer, s as warnDynamicApiInStaticBuild, t as formatSize, u as warnRedirectInSuspense } from "../_chunks/format-DNt20Kt8.js";
-import { i as getMetadataRouteServePath, n as classifyMetadataRoute, r as getMetadataRouteAutoLink, t as METADATA_ROUTE_CONVENTIONS } from "../_chunks/metadata-routes-BDnswgRO.js";
-import { a as markResponseFlushed, c as setCookieSecrets, i as headers, l as setMutableCookieContext, n as cookies, o as runWithRequestContext, r as getSetCookieHeaders, s as searchParams, t as applyRequestHeaderOverlay, u as setParsedSearchParams } from "../_chunks/request-context-BzES06i1.js";
-import { a as replaceTraceId, c as spanId, i as getTraceStore, l as traceId, n as generateTraceId, o as runWithTraceId, r as getOtelTraceId, s as setSpanAttribute, t as addSpanEvent, u as withSpan } from "../_chunks/tracing-BtOwb8O6.js";
-import { AsyncLocalStorage } from "node:async_hooks";
+import { i as getMetadataRouteServePath, n as classifyMetadataRoute, r as getMetadataRouteAutoLink, t as METADATA_ROUTE_CONVENTIONS } from "../_chunks/metadata-routes-CQCnF4VK.js";
+import { a as timingAls, i as revalidationAls, n as formFlashAls, t as earlyHintsSenderAls } from "../_chunks/als-registry-c0AGnbqS.js";
+import { a as markResponseFlushed, c as setCookieSecrets, i as headers, l as setMutableCookieContext, n as cookies, o as runWithRequestContext, r as getSetCookieHeaders, s as searchParams, t as applyRequestHeaderOverlay, u as setParsedSearchParams } from "../_chunks/request-context-C69VW4xS.js";
+import { a as replaceTraceId, c as spanId, i as getTraceStore, l as traceId, n as generateTraceId, o as runWithTraceId, r as getOtelTraceId, s as setSpanAttribute, t as addSpanEvent, u as withSpan } from "../_chunks/tracing-tIvqStk8.js";
+import { readFile } from "node:fs/promises";
 //#region src/server/primitives.ts
 /**
+* Check if a value is JSON-serializable without data loss.
+* Returns a description of the first non-serializable value found, or null if OK.
+*
+* @internal Exported for testing only.
+*/
+function findNonSerializable(value, path = "data") {
+	if (value === null || value === void 0) return null;
+	switch (typeof value) {
+		case "string":
+		case "number":
+		case "boolean": return null;
+		case "bigint": return `${path} contains a BigInt — BigInt throws in JSON.stringify`;
+		case "function": return `${path} is a function — functions are not JSON-serializable`;
+		case "symbol": return `${path} is a symbol — symbols are not JSON-serializable`;
+		case "object": break;
+		default: return `${path} has unsupported type "${typeof value}"`;
+	}
+	if (value instanceof Date) return `${path} is a Date — Dates silently coerce to strings in JSON.stringify`;
+	if (value instanceof Map) return `${path} is a Map — Maps serialize as {} in JSON.stringify (data loss)`;
+	if (value instanceof Set) return `${path} is a Set — Sets serialize as {} in JSON.stringify (data loss)`;
+	if (value instanceof RegExp) return `${path} is a RegExp — RegExps serialize as {} in JSON.stringify`;
+	if (value instanceof Error) return `${path} is an Error — Errors serialize as {} in JSON.stringify`;
+	if (Array.isArray(value)) {
+		for (let i = 0; i < value.length; i++) {
+			const result = findNonSerializable(value[i], `${path}[${i}]`);
+			if (result) return result;
+		}
+		return null;
+	}
+	const proto = Object.getPrototypeOf(value);
+	if (proto === null) return `${path} is a null-prototype object — React Flight rejects null prototypes`;
+	if (proto !== Object.prototype) return `${path} is a ${value.constructor?.name ?? "unknown"} instance — class instances may lose data in JSON.stringify`;
+	for (const key of Object.keys(value)) {
+		const result = findNonSerializable(value[key], `${path}.${key}`);
+		if (result) return result;
+	}
+	return null;
+}
+/**
+* Emit a dev-mode warning if data is not JSON-serializable.
+* No-op in production.
+*/
+function warnIfNotSerializable(data, callerName) {
+	if (process.env.NODE_ENV === "production") return;
+	if (data === void 0) return;
+	const issue = findNonSerializable(data);
+	if (issue) console.warn(`[timber] ${callerName}: ${issue}. Data passed to deny() or RenderError must be JSON-serializable because the post-flush path uses JSON.stringify, not React Flight.`);
+}
+/**
 * Render-phase signal thrown by `deny()`. Caught by the framework to produce
 * the correct HTTP status code (segment context) or graceful degradation (slot context).
 */
@@ -47,10 +97,11 @@ var DenySignal = class extends Error {
 * - Inside Suspense (after flush): error boundary + noindex meta
 *
 * @param status - Any 4xx HTTP status code. Defaults to 403.
-* @param data - Optional data passed as `dangerouslyPassData` prop to status-code files.
+* @param data - Optional JSON-serializable data passed as `dangerouslyPassData` prop to status-code files.
 */
 function deny(status = 403, data) {
 	if (status < 400 || status > 499) throw new Error(`deny() requires a 4xx status code, got ${status}. For 5xx errors, throw a RenderError instead.`);
+	warnIfNotSerializable(data, "deny()");
 	throw new DenySignal(status, data);
 }
 /**
@@ -157,6 +208,7 @@ var RenderError = class extends Error {
 			code,
 			data
 		};
+		warnIfNotSerializable(data, "RenderError");
 		const status = options?.status ?? 500;
 		if (status < 400 || status > 599) throw new Error(`RenderError status must be 4xx or 5xx, got ${status}.`);
 		this.status = status;
@@ -278,6 +330,82 @@ async function runMiddleware(middlewareFn, ctx) {
 	if (result instanceof Response) return result;
 }
 //#endregion
+//#region src/server/server-timing.ts
+/**
+* Server-Timing header — dev-mode timing breakdowns for Chrome DevTools.
+*
+* Collects timing entries per request using ALS. Each pipeline phase
+* (proxy, middleware, render, SSR, access, fetch) records an entry.
+* Before response flush, entries are formatted into a Server-Timing header.
+*
+* Only active in dev mode — zero overhead in production.
+*
+* See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Server-Timing
+* Task: LOCAL-290
+*/
+/**
+* Run a callback with a per-request timing collector.
+* Must be called at the top of the request pipeline (wraps the full request).
+*/
+function runWithTimingCollector(fn) {
+	return timingAls.run({ entries: [] }, fn);
+}
+/**
+* Run a function and automatically record its duration as a timing entry.
+* Returns the function's result. No-ops the recording if outside a collector.
+*/
+async function withTiming(name, desc, fn) {
+	const store = timingAls.getStore();
+	if (!store) return fn();
+	const start = performance.now();
+	try {
+		return await fn();
+	} finally {
+		const dur = Math.round(performance.now() - start);
+		store.entries.push({
+			name,
+			dur,
+			desc
+		});
+	}
+}
+/**
+* Get the Server-Timing header value for the current request.
+* Returns null if no entries exist or outside a collector.
+*
+* Format: `name;dur=123;desc="description", name2;dur=456`
+* See RFC 6797 / Server-Timing spec for format details.
+*/
+function getServerTimingHeader() {
+	const store = timingAls.getStore();
+	if (!store || store.entries.length === 0) return null;
+	const nameCounts = /* @__PURE__ */ new Map();
+	const parts = store.entries.map((entry) => {
+		const count = nameCounts.get(entry.name) ?? 0;
+		nameCounts.set(entry.name, count + 1);
+		const uniqueName = count > 0 ? `${entry.name}-${count}` : entry.name;
+		return {
+			...entry,
+			name: uniqueName
+		};
+	}).map((entry) => {
+		let part = `${entry.name};dur=${entry.dur}`;
+		if (entry.desc) {
+			const safeDesc = entry.desc.replace(/\\/g, "\\\\").replace(/"/g, "\\\"");
+			part += `;desc="${safeDesc}"`;
+		}
+		return part;
+	});
+	const MAX_HEADER_SIZE = 4096;
+	let result = "";
+	for (let i = 0; i < parts.length; i++) {
+		const candidate = result ? `${result}, ${parts[i]}` : parts[i];
+		if (candidate.length > MAX_HEADER_SIZE) break;
+		result = candidate;
+	}
+	return result || null;
+}
+//#endregion
 //#region src/server/error-formatter.ts
 /**
 * Error Formatter — rewrites SSR/RSC error messages to surface user code.
@@ -554,7 +682,7 @@ function hasOnRequestError() {
 * and produces a Response. This is the top-level entry point for the server.
 */
 function createPipeline(config) {
-	const { proxy, matchRoute, render, earlyHints, stripTrailingSlash = true, slowRequestMs = 3e3, onPipelineError } = config;
+	const { proxy, matchRoute, render, earlyHints, stripTrailingSlash = true, slowRequestMs = 3e3, enableServerTiming = false, onPipelineError } = config;
 	return async (req) => {
 		const url = new URL(req.url);
 		const method = req.method;
@@ -562,37 +690,47 @@ function createPipeline(config) {
 		const startTime = performance.now();
 		return runWithTraceId(generateTraceId(), async () => {
 			return runWithRequestContext(req, async () => {
-				logRequestReceived({
-					method,
-					path
-				});
-				const response = await withSpan("http.server.request", {
-					"http.request.method": method,
-					"url.path": path
-				}, async () => {
-					const otelIds = await getOtelTraceId();
-					if (otelIds) replaceTraceId(otelIds.traceId, otelIds.spanId);
-					let result;
-					if (proxy || config.proxyLoader) result = await runProxyPhase(req, method, path);
-					else result = await handleRequest(req, method, path);
-					await setSpanAttribute("http.response.status_code", result.status);
-					return result;
-				});
-				const durationMs = Math.round(performance.now() - startTime);
-				const status = response.status;
-				logRequestCompleted({
-					method,
-					path,
-					status,
-					durationMs
-				});
-				if (slowRequestMs > 0 && durationMs > slowRequestMs) logSlowRequest({
-					method,
-					path,
-					durationMs,
-					threshold: slowRequestMs
-				});
-				return response;
+				const runRequest = async () => {
+					logRequestReceived({
+						method,
+						path
+					});
+					const response = await withSpan("http.server.request", {
+						"http.request.method": method,
+						"url.path": path
+					}, async () => {
+						const otelIds = await getOtelTraceId();
+						if (otelIds) replaceTraceId(otelIds.traceId, otelIds.spanId);
+						let result;
+						if (proxy || config.proxyLoader) result = await runProxyPhase(req, method, path);
+						else result = await handleRequest(req, method, path);
+						await setSpanAttribute("http.response.status_code", result.status);
+						if (enableServerTiming) {
+							const serverTiming = getServerTimingHeader();
+							if (serverTiming) {
+								result = ensureMutableResponse(result);
+								result.headers.set("Server-Timing", serverTiming);
+							}
+						}
+						return result;
+					});
+					const durationMs = Math.round(performance.now() - startTime);
+					const status = response.status;
+					logRequestCompleted({
+						method,
+						path,
+						status,
+						durationMs
+					});
+					if (slowRequestMs > 0 && durationMs > slowRequestMs) logSlowRequest({
+						method,
+						path,
+						durationMs,
+						threshold: slowRequestMs
+					});
+					return response;
+				};
+				return enableServerTiming ? runWithTimingCollector(runRequest) : runRequest();
 			});
 		});
 	};
@@ -601,7 +739,8 @@ function createPipeline(config) {
 			let proxyExport;
 			if (config.proxyLoader) proxyExport = (await config.proxyLoader()).default;
 			else proxyExport = config.proxy;
-			return await withSpan("timber.proxy", {}, () => runProxy(proxyExport, req, () => handleRequest(req, method, path)));
+			const proxyFn = () => runProxy(proxyExport, req, () => handleRequest(req, method, path));
+			return await withSpan("timber.proxy", {}, () => enableServerTiming ? withTiming("proxy", "proxy.ts", proxyFn) : proxyFn());
 		} catch (error) {
 			logProxyError({ error });
 			await fireOnRequestError(error, req, "proxy");
@@ -616,6 +755,7 @@ function createPipeline(config) {
 		if (config.matchMetadataRoute) {
 			const metaMatch = config.matchMetadataRoute(canonicalPathname);
 			if (metaMatch) try {
+				if (metaMatch.isStatic) return await serveStaticMetadataFile(metaMatch);
 				const mod = await metaMatch.file.load();
 				if (typeof mod.default !== "function") return new Response("Metadata route must export a default function", { status: 500 });
 				const handlerResult = await mod.default();
@@ -684,16 +824,18 @@ function createPipeline(config) {
 			};
 			try {
 				setMutableCookieContext(true);
-				const middlewareResponse = await withSpan("timber.middleware", {}, () => runMiddleware(match.middleware, ctx));
+				const middlewareFn = () => runMiddleware(match.middleware, ctx);
+				const middlewareResponse = await withSpan("timber.middleware", {}, () => enableServerTiming ? withTiming("mw", "middleware.ts", middlewareFn) : middlewareFn());
 				setMutableCookieContext(false);
 				if (middlewareResponse) {
-					applyCookieJar(middlewareResponse.headers);
+					const finalResponse = ensureMutableResponse(middlewareResponse);
+					applyCookieJar(finalResponse.headers);
 					logMiddlewareShortCircuit({
 						method,
 						path,
-						status: middlewareResponse.status
+						status: finalResponse.status
 					});
-					return middlewareResponse;
+					return finalResponse;
 				}
 				applyRequestHeaderOverlay(requestHeaderOverlay);
 			} catch (error) {
@@ -726,7 +868,8 @@ function createPipeline(config) {
 		}
 		applyCookieJar(responseHeaders);
 		try {
-			const response = await withSpan("timber.render", { "http.route": canonicalPathname }, () => render(req, match, responseHeaders, requestHeaderOverlay, interception));
+			const renderFn = () => render(req, match, responseHeaders, requestHeaderOverlay, interception);
+			const response = await withSpan("timber.render", { "http.route": canonicalPathname }, () => enableServerTiming ? withTiming("render", "RSC + SSR render", renderFn) : renderFn());
 			markResponseFlushed();
 			return response;
 		} catch (error) {
@@ -811,6 +954,29 @@ function applyCookieJar(headers) {
 	for (const value of getSetCookieHeaders()) headers.append("Set-Cookie", value);
 }
 /**
+* Ensure a Response has mutable headers so the pipeline can safely append
+* Set-Cookie and Server-Timing entries.
+*
+* `Response.redirect()` and some platform-level responses return objects
+* with immutable headers. Calling `.set()` or `.append()` on them throws
+* `TypeError: immutable`. This helper detects the immutable case by
+* attempting a no-op write and, on failure, clones into a fresh Response
+* with mutable headers.
+*/
+function ensureMutableResponse(response) {
+	try {
+		response.headers.set("X-Timber-Probe", "1");
+		response.headers.delete("X-Timber-Probe");
+		return response;
+	} catch {
+		return new Response(response.body, {
+			status: response.status,
+			statusText: response.statusText,
+			headers: new Headers(response.headers)
+		});
+	}
+}
+/**
 * Serialize a sitemap array to XML.
 * Follows the sitemap.org protocol: https://www.sitemaps.org/protocol.html
 */
@@ -831,6 +997,39 @@ function serializeSitemap(entries) {
 function escapeXml(str) {
 	return str.replace(/&/g, "&amp;").replace(/</g, "&lt;").replace(/>/g, "&gt;").replace(/"/g, "&quot;").replace(/'/g, "&apos;");
 }
+/**
+* Content types that are text-based and should include charset=utf-8.
+* Binary formats (images) should not include charset.
+*/
+var TEXT_CONTENT_TYPES = new Set([
+	"application/xml",
+	"text/plain",
+	"application/json",
+	"application/manifest+json",
+	"image/svg+xml"
+]);
+/**
+* Serve a static metadata file by reading it from disk.
+*
+* Static metadata route files (.xml, .txt, .json, .png, .ico, .svg, etc.)
+* are served as-is with the appropriate Content-Type header.
+* Text files include charset=utf-8; binary files do not.
+*
+* See design/16-metadata.md §"Metadata Routes"
+*/
+async function serveStaticMetadataFile(metaMatch) {
+	const { contentType, file } = metaMatch;
+	const isText = TEXT_CONTENT_TYPES.has(contentType);
+	const body = await readFile(file.filePath);
+	const headers = {
+		"Content-Type": isText ? `${contentType}; charset=utf-8` : contentType,
+		"Content-Length": String(body.byteLength)
+	};
+	return new Response(body, {
+		status: 200,
+		headers
+	});
+}
 //#endregion
 //#region src/server/build-manifest.ts
 /**
@@ -996,7 +1195,6 @@ function collectEarlyHintHeaders(segments, manifest, options) {
 *
 * Design doc: 02-rendering-pipeline.md §"Early Hints (103)"
 */
-var earlyHintsSenderAls = new AsyncLocalStorage();
 /**
 * Run a function with a per-request early hints sender installed.
 *
@@ -2655,22 +2853,6 @@ function stripFiles(value) {
 //#endregion
 //#region src/server/form-flash.ts
 /**
-* Form Flash — ALS-based store for no-JS form action results.
-*
-* When a no-JS form action completes, the server re-renders the page with
-* the action result injected via AsyncLocalStorage instead of redirecting
-* (which would discard the result). Server components read the flash and
-* pass it to client form components as the initial `useActionState` value.
-*
-* This follows the Remix/Rails pattern — the form component becomes the
-* single source of truth for both with-JS (React state) and no-JS (flash).
-*
-* The flash data is server-side only — never serialized to cookies or headers.
-*
-* See design/08-forms-and-actions.md §"No-JS Error Round-Trip"
-*/
-var formFlashAls = new AsyncLocalStorage();
-/**
 * Read the form flash data for the current request.
 *
 * Returns `null` if no flash data is present (i.e., this is a normal page
@@ -2701,22 +2883,6 @@ function getFormFlash() {
 //#endregion
 //#region src/server/actions.ts
 /**
-* Server action primitives: revalidatePath, revalidateTag, and the action handler.
-*
-* - revalidatePath(path) re-renders the route at that path and returns the RSC
-*   flight payload for inline reconciliation.
-* - revalidateTag(tag) invalidates cached shells and 'use cache' entries by tag.
-*
-* Both are callable from anywhere on the server — actions, API routes, handlers.
-*
-* The action handler processes incoming action requests, validates CSRF,
-* enforces body limits, executes the action, and returns the response
-* (with piggybacked RSC payload if revalidatePath was called).
-*
-* See design/08-forms-and-actions.md
-*/
-var revalidationAls = new AsyncLocalStorage();
-/**
 * Get the current revalidation state. Throws if called outside an action context.
 * @internal
 */