@ulpi/browse 2.3.3 → 2.4.0

package/dist/types/proxy/index.d.ts

@@ -0,0 +1,6 @@
+/**
+ * Proxy module — proxy pool, providers, and configuration.
+ */
+export { type ProxyProvider, type SessionOptions, decodoProvider, genericProvider, getProvider, registerProvider, normalizePlaywrightProxy } from './providers';
+export { type ProxyPool, type ProxyPoolConfig, type ProxyConfig, createProxyPool, buildProxyUrl } from './pool';
+//# sourceMappingURL=index.d.ts.map

package/dist/types/proxy/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/proxy/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,KAAK,aAAa,EAAE,KAAK,cAAc,EAAE,cAAc,EAAE,eAAe,EAAE,WAAW,EAAE,gBAAgB,EAAE,wBAAwB,EAAE,MAAM,aAAa,CAAC;AAChK,OAAO,EAAE,KAAK,SAAS,EAAE,KAAK,eAAe,EAAE,KAAK,WAAW,EAAE,eAAe,EAAE,aAAa,EAAE,MAAM,QAAQ,CAAC"}

package/dist/types/proxy/pool.d.ts

@@ -0,0 +1,44 @@
+/**
+ * Proxy pool — assigns different proxies to different browser contexts.
+ * Supports round-robin (fixed port list) and backconnect (sticky sessions via provider).
+ */
+import { type ProxyProvider } from './providers';
+export interface ProxyConfig {
+    server: string;
+    username?: string;
+    password?: string;
+    sessionId?: string;
+}
+export interface ProxyPoolConfig {
+    strategy: 'round_robin' | 'backconnect';
+    host?: string;
+    ports?: number[];
+    username?: string;
+    password?: string;
+    backconnectHost?: string;
+    backconnectPort?: number;
+    providerName?: string;
+    country?: string;
+    state?: string;
+    city?: string;
+    sessionDurationMinutes?: number;
+}
+export interface ProxyPool {
+    mode: 'round_robin' | 'backconnect';
+    provider: ProxyProvider | null;
+    canRotateSessions: boolean;
+    launchRetries: number;
+    launchTimeoutMs: number;
+    size: number;
+    getLaunchProxy(sessionId?: string): ProxyConfig;
+    getNext(sessionId?: string): ProxyConfig;
+}
+/**
+ * Create a proxy pool from configuration. Returns null if required fields are missing.
+ */
+export declare function createProxyPool(config: ProxyPoolConfig): ProxyPool | null;
+/**
+ * Build a proxy URL string (http://user:pass@host:port) for CLI tools.
+ */
+export declare function buildProxyUrl(pool: ProxyPool, config: ProxyPoolConfig): string | null;
+//# sourceMappingURL=pool.d.ts.map

package/dist/types/proxy/pool.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"pool.d.ts","sourceRoot":"","sources":["../../../src/proxy/pool.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAyC,KAAK,aAAa,EAAE,MAAM,aAAa,CAAC;AAGxF,MAAM,WAAW,WAAW;IAC1B,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,eAAe;IAC9B,QAAQ,EAAE,aAAa,GAAG,aAAa,CAAC;IACxC,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IACjB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,sBAAsB,CAAC,EAAE,MAAM,CAAC;CACjC;AAED,MAAM,WAAW,SAAS;IACxB,IAAI,EAAE,aAAa,GAAG,aAAa,CAAC;IACpC,QAAQ,EAAE,aAAa,GAAG,IAAI,CAAC;IAC/B,iBAAiB,EAAE,OAAO,CAAC;IAC3B,aAAa,EAAE,MAAM,CAAC;IACtB,eAAe,EAAE,MAAM,CAAC;IACxB,IAAI,EAAE,MAAM,CAAC;IACb,cAAc,CAAC,SAAS,CAAC,EAAE,MAAM,GAAG,WAAW,CAAC;IAChD,OAAO,CAAC,SAAS,CAAC,EAAE,MAAM,GAAG,WAAW,CAAC;CAC1C;AAMD;;GAEG;AACH,wBAAgB,eAAe,CAAC,MAAM,EAAE,eAAe,GAAG,SAAS,GAAG,IAAI,CA6CzE;AAED;;GAEG;AACH,wBAAgB,aAAa,CAAC,IAAI,EAAE,SAAS,EAAE,MAAM,EAAE,eAAe,GAAG,MAAM,GAAG,IAAI,CAUrF"}

package/dist/types/proxy/providers.d.ts

@@ -0,0 +1,32 @@
+/**
+ * Proxy providers — pluggable proxy credential shaping and capability declaration.
+ * Each provider knows how to build usernames for sticky sessions.
+ */
+export interface SessionOptions {
+    country?: string;
+    state?: string;
+    city?: string;
+    zip?: string;
+    sessionId?: string;
+    sessionDurationMinutes?: number;
+}
+export interface ProxyProvider {
+    name: string;
+    canRotateSessions: boolean;
+    launchRetries: number;
+    launchTimeoutMs: number;
+    buildSessionUsername(baseUsername: string, options?: SessionOptions): string;
+}
+/** Decodo residential proxy provider. Username DSL: user-{base}-country-{cc}-session-{id} */
+export declare const decodoProvider: ProxyProvider;
+/** Generic backconnect provider — pass-through username with session suffix. */
+export declare const genericProvider: ProxyProvider;
+export declare function getProvider(name: string): ProxyProvider | null;
+export declare function registerProvider(name: string, provider: ProxyProvider): void;
+/** Decode percent-encoded proxy credentials for Playwright compatibility. */
+export declare function normalizePlaywrightProxy(proxy: {
+    server: string;
+    username?: string;
+    password?: string;
+}): typeof proxy;
+//# sourceMappingURL=providers.d.ts.map

package/dist/types/proxy/providers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"providers.d.ts","sourceRoot":"","sources":["../../../src/proxy/providers.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,MAAM,WAAW,cAAc;IAC7B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,sBAAsB,CAAC,EAAE,MAAM,CAAC;CACjC;AAED,MAAM,WAAW,aAAa;IAC5B,IAAI,EAAE,MAAM,CAAC;IACb,iBAAiB,EAAE,OAAO,CAAC;IAC3B,aAAa,EAAE,MAAM,CAAC;IACtB,eAAe,EAAE,MAAM,CAAC;IACxB,oBAAoB,CAAC,YAAY,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,cAAc,GAAG,MAAM,CAAC;CAC9E;AAOD,6FAA6F;AAC7F,eAAO,MAAM,cAAc,EAAE,aAqB5B,CAAC;AAEF,gFAAgF;AAChF,eAAO,MAAM,eAAe,EAAE,aAU7B,CAAC;AAOF,wBAAgB,WAAW,CAAC,IAAI,EAAE,MAAM,GAAG,aAAa,GAAG,IAAI,CAE9D;AAED,wBAAgB,gBAAgB,CAAC,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,aAAa,GAAG,IAAI,CAE5E;AAED,6EAA6E;AAC7E,wBAAgB,wBAAwB,CAAC,KAAK,EAAE;IAAE,MAAM,EAAE,MAAM,CAAC;IAAC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAAC,QAAQ,CAAC,EAAE,MAAM,CAAA;CAAE,GAAG,OAAO,KAAK,CAOtH"}

package/dist/types/sdk/client.d.ts

@@ -0,0 +1,37 @@
+/**
+ * BrowseClient — factory for creating BrowseSession instances.
+ *
+ * Automatically selects the right transport based on options:
+ *   - No endpoint/apiKey  -> LocalTransport (HTTP to local server)
+ *   - endpoint + apiKey   -> CloudTransport (HTTPS to browse cloud)
+ */
+import { BrowseSession } from './session.js';
+export interface ConnectOptions {
+    /** Cloud API endpoint URL. If provided with apiKey, uses cloud transport. */
+    endpoint?: string;
+    /** API key for cloud authentication. */
+    apiKey?: string;
+    /** Session ID for multiplexing (works with both local and cloud). */
+    session?: string;
+    /** Override state file path for local transport. */
+    stateFile?: string;
+    /** Command timeout in milliseconds (default: 30000). */
+    timeout?: number;
+}
+export declare class BrowseClient {
+    /**
+     * Connect to a browse server and return a typed session.
+     *
+     * Local (default):
+     *   const session = await BrowseClient.connect();
+     *   const session = await BrowseClient.connect({ session: 'agent-1' });
+     *
+     * Cloud:
+     *   const session = await BrowseClient.connect({
+     *     endpoint: 'https://api.browse.dev',
+     *     apiKey: 'brw_...',
+     *   });
+     */
+    static connect(opts?: ConnectOptions): Promise<BrowseSession>;
+}
+//# sourceMappingURL=client.d.ts.map

package/dist/types/sdk/client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../../src/sdk/client.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAM7C,MAAM,WAAW,cAAc;IAC7B,6EAA6E;IAC7E,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,wCAAwC;IACxC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,qEAAqE;IACrE,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,oDAAoD;IACpD,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,wDAAwD;IACxD,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAID,qBAAa,YAAY;IACvB;;;;;;;;;;;;OAYG;WACU,OAAO,CAAC,IAAI,GAAE,cAAmB,GAAG,OAAO,CAAC,aAAa,CAAC;CA8BxE"}

package/dist/types/sdk/index.d.ts

@@ -0,0 +1,17 @@
+/**
+ * @ulpi/browse SDK — programmatic API for browse automation.
+ *
+ * Usage:
+ *   import { BrowseClient } from './sdk/index.js';
+ *
+ *   const session = await BrowseClient.connect();
+ *   await session.goto('https://example.com');
+ *   const text = await session.text();
+ *   console.log(text);
+ *   await session.close();
+ */
+export { BrowseClient, type ConnectOptions } from './client.js';
+export { BrowseSession, type Transport, type SnapshotOptions } from './session.js';
+export { LocalTransport, type LocalTransportOptions } from './transports/local.js';
+export { CloudTransport, CloudApiError, type CloudTransportOptions } from './transports/cloud.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/types/sdk/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/sdk/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,EAAE,YAAY,EAAE,KAAK,cAAc,EAAE,MAAM,aAAa,CAAC;AAChE,OAAO,EAAE,aAAa,EAAE,KAAK,SAAS,EAAE,KAAK,eAAe,EAAE,MAAM,cAAc,CAAC;AACnF,OAAO,EAAE,cAAc,EAAE,KAAK,qBAAqB,EAAE,MAAM,uBAAuB,CAAC;AACnF,OAAO,EAAE,cAAc,EAAE,aAAa,EAAE,KAAK,qBAAqB,EAAE,MAAM,uBAAuB,CAAC"}

package/dist/types/sdk/session.d.ts

@@ -0,0 +1,95 @@
+/**
+ * BrowseSession — typed wrapper around a browse transport.
+ *
+ * Provides ergonomic methods for every browse command category:
+ * navigation, content extraction, interaction, evaluation, and meta.
+ * Each method delegates to the underlying Transport.execute().
+ */
+/**
+ * Transport contract — any mechanism that can send a browse command
+ * and return its text output. Implementations:
+ *   - LocalTransport (HTTP to local server)
+ *   - CloudTransport (HTTPS to browse cloud API)
+ */
+export interface Transport {
+    execute(command: string, args: string[]): Promise<string>;
+    close(): Promise<void>;
+}
+export interface SnapshotOptions {
+    /** Include interactive elements with @ref IDs (-i flag) */
+    interactive?: boolean;
+    /** Include cursor-interactive elements like div.onclick (-C flag) */
+    clickable?: boolean;
+    /** Max tree depth (-d flag) */
+    depth?: number;
+    /** Scope to a CSS selector (-s flag) */
+    selector?: string;
+}
+export declare class BrowseSession {
+    private transport;
+    readonly sessionId?: string | undefined;
+    constructor(transport: Transport, sessionId?: string | undefined);
+    goto(url: string): Promise<string>;
+    back(): Promise<string>;
+    forward(): Promise<string>;
+    reload(): Promise<string>;
+    text(): Promise<string>;
+    html(selector?: string): Promise<string>;
+    links(): Promise<string>;
+    forms(): Promise<string>;
+    accessibility(): Promise<string>;
+    snapshot(opts?: SnapshotOptions): Promise<string>;
+    value(selector: string): Promise<string>;
+    count(selector: string): Promise<string>;
+    css(selector: string, property: string): Promise<string>;
+    attrs(selector: string): Promise<string>;
+    elementState(selector: string): Promise<string>;
+    click(selector: string): Promise<string>;
+    dblclick(selector: string): Promise<string>;
+    fill(selector: string, value: string): Promise<string>;
+    select(selector: string, value: string): Promise<string>;
+    hover(selector: string): Promise<string>;
+    focus(selector: string): Promise<string>;
+    check(selector: string): Promise<string>;
+    uncheck(selector: string): Promise<string>;
+    type(text: string): Promise<string>;
+    press(key: string): Promise<string>;
+    scroll(target?: string): Promise<string>;
+    drag(source: string, target: string): Promise<string>;
+    highlight(selector: string): Promise<string>;
+    upload(selector: string, ...files: string[]): Promise<string>;
+    download(selector: string, path?: string): Promise<string>;
+    dialog(): Promise<string>;
+    dialogAccept(text?: string): Promise<string>;
+    dialogDismiss(): Promise<string>;
+    js(expression: string): Promise<string>;
+    eval(filePath: string): Promise<string>;
+    wait(selectorOrFlag: string): Promise<string>;
+    screenshot(path?: string): Promise<string>;
+    pdf(path?: string): Promise<string>;
+    responsive(prefix?: string): Promise<string>;
+    screenshotDiff(baseline: string, current?: string): Promise<string>;
+    tabs(): Promise<string>;
+    tab(id: string): Promise<string>;
+    newtab(url?: string): Promise<string>;
+    closetab(id?: string): Promise<string>;
+    url(): Promise<string>;
+    cookies(): Promise<string>;
+    storage(action?: string, key?: string, value?: string): Promise<string>;
+    perf(): Promise<string>;
+    console(opts?: {
+        clear?: boolean;
+    }): Promise<string>;
+    network(opts?: {
+        clear?: boolean;
+    }): Promise<string>;
+    viewport(size: string): Promise<string>;
+    cookie(nameValue: string): Promise<string>;
+    header(nameValue: string): Promise<string>;
+    useragent(ua: string): Promise<string>;
+    emulate(device: string): Promise<string>;
+    offline(mode?: 'on' | 'off'): Promise<string>;
+    route(pattern: string, action: string): Promise<string>;
+    close(): Promise<void>;
+}
+//# sourceMappingURL=session.d.ts.map

package/dist/types/sdk/session.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"session.d.ts","sourceRoot":"","sources":["../../../src/sdk/session.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAIH;;;;;GAKG;AACH,MAAM,WAAW,SAAS;IACxB,OAAO,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAC1D,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;CACxB;AAID,MAAM,WAAW,eAAe;IAC9B,2DAA2D;IAC3D,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,qEAAqE;IACrE,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB,+BAA+B;IAC/B,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,wCAAwC;IACxC,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAID,qBAAa,aAAa;IAEtB,OAAO,CAAC,SAAS;aACD,SAAS,CAAC,EAAE,MAAM;gBAD1B,SAAS,EAAE,SAAS,EACZ,SAAS,CAAC,EAAE,MAAM,YAAA;IAK9B,IAAI,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAIlC,IAAI,IAAI,OAAO,CAAC,MAAM,CAAC;IAIvB,OAAO,IAAI,OAAO,CAAC,MAAM,CAAC;IAI1B,MAAM,IAAI,OAAO,CAAC,MAAM,CAAC;IAMzB,IAAI,IAAI,OAAO,CAAC,MAAM,CAAC;IAIvB,IAAI,CAAC,QAAQ,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAIxC,KAAK,IAAI,OAAO,CAAC,MAAM,CAAC;IAIxB,KAAK,IAAI,OAAO,CAAC,MAAM,CAAC;IAIxB,aAAa,IAAI,OAAO,CAAC,MAAM,CAAC;IAIhC,QAAQ,CAAC,IAAI,CAAC,EAAE,eAAe,GAAG,OAAO,CAAC,MAAM,CAAC;IASjD,KAAK,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAIxC,KAAK,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAIxC,GAAG,CAAC,QAAQ,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAIxD,KAAK,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAIxC,YAAY,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAM/C,KAAK,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAIxC,QAAQ,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAI3C,IAAI,CAAC,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAItD,MAAM,CAAC,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAIxD,KAAK,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAIxC,KAAK,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAIxC,KAAK,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAIxC,OAAO,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAI1C,IAAI,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAInC,KAAK,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAInC,MAAM,CAAC,MAAM,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAIxC,IAAI,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAIrD,SAAS,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAI5C,MAAM,CAAC,QAAQ,EAAE,MAAM,EAAE,GAAG,KAAK,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC;IAI7D,QAAQ,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAM1D,MAAM,IAAI,OAAO,CAAC,MAAM,CAAC;IAIzB,YAAY,CAAC,IAAI,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAI5C,aAAa,IAAI,OAAO,CAAC,MAAM,CAAC;IAMhC,EAAE,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAIvC,IAAI,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAMvC,IAAI,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAM7C,UAAU,CAAC,IAAI,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAI1C,GAAG,CAAC,IAAI,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAInC,UAAU,CAAC,MAAM,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAI5C,cAAc,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAMnE,IAAI,IAAI,OAAO,CAAC,MAAM,CAAC;IAIvB,GAAG,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAIhC,MAAM,CAAC,GAAG,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAIrC,QAAQ,CAAC,EAAE,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAMtC,GAAG,IAAI,OAAO,CAAC,MAAM,CAAC;IAItB,OAAO,IAAI,OAAO,CAAC,MAAM,CAAC;IAI1B,OAAO,CAAC,MAAM,CAAC,EAAE,MAAM,EAAE,GAAG,CAAC,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAQvE,IAAI,IAAI,OAAO,CAAC,MAAM,CAAC;IAMvB,OAAO,CAAC,IAAI,CAAC,EAAE;QAAE,KAAK,CAAC,EAAE,OAAO,CAAA;KAAE,GAAG,OAAO,CAAC,MAAM,CAAC;IAIpD,OAAO,CAAC,IAAI,CAAC,EAAE;QAAE,KAAK,CAAC,EAAE,OAAO,CAAA;KAAE,GAAG,OAAO,CAAC,MAAM,CAAC;IAMpD,QAAQ,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAIvC,MAAM,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAI1C,MAAM,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAI1C,SAAS,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAItC,OAAO,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAIxC,OAAO,CAAC,IAAI,CAAC,EAAE,IAAI,GAAG,KAAK,GAAG,OAAO,CAAC,MAAM,CAAC;IAI7C,KAAK,CAAC,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAMvD,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;CAG7B"}

package/dist/types/sdk/transports/cloud.d.ts

@@ -0,0 +1,89 @@
+/**
+ * CloudTransport — talks to a browse cloud API via HTTPS (or HTTP for dev).
+ *
+ * Authenticates with an API key, receives a JWT, and sends commands
+ * as authenticated HTTP requests. Handles JWT auto-refresh (60s before
+ * expiry) and 401 retry.
+ *
+ * API contract (cloud server — built in parallel):
+ *   POST /v1/auth         { apiKey }             -> { token, expiresIn, tenantId }
+ *   POST /v1/sessions     (JWT)                  -> { sessionId, createdAt }
+ *   POST /v1/sessions/:id/command  { command, args } -> { output, durationMs }
+ *   DELETE /v1/sessions/:id                       -> 204
+ *   POST /v1/sessions/:id/freeze                  -> 200
+ *   POST /v1/sessions/:id/resume                  -> 200
+ */
+import type { Transport } from '../session.js';
+export interface CloudTransportOptions {
+    /** Cloud API endpoint URL (e.g., 'https://api.browse.dev' or 'http://localhost:8400') */
+    endpoint: string;
+    /** API key for authentication */
+    apiKey: string;
+    /** Session ID — if not provided, one is provisioned on connect */
+    sessionId?: string;
+    /** Request timeout in ms (default 30000) */
+    timeout?: number;
+}
+export declare class CloudTransport implements Transport {
+    /** Session ID — publicly readable for BrowseClient to pass to BrowseSession. */
+    sessionId: string | undefined;
+    private endpoint;
+    private apiKey;
+    private timeout;
+    private jwt;
+    private jwtExpiresAt;
+    private connected;
+    /** Parsed URL components for request routing. */
+    private parsedUrl;
+    private useHttps;
+    constructor(opts: CloudTransportOptions);
+    /**
+     * Authenticate with the API key and optionally provision a session.
+     * Idempotent — safe to call multiple times.
+     */
+    connect(): Promise<void>;
+    /**
+     * Send a command to the cloud session.
+     * Auto-refreshes the JWT if expired (or within 60s of expiry).
+     * Retries once on 401 (token rejected by server).
+     */
+    execute(command: string, args: string[]): Promise<string>;
+    /**
+     * Close the cloud session (best-effort DELETE).
+     */
+    close(): Promise<void>;
+    /**
+     * Freeze the cloud session (persist state for later resume).
+     * Requires cloud server with freeze/resume routes (POST /v1/sessions/:id/freeze|resume).
+     */
+    freeze(): Promise<void>;
+    /**
+     * Resume a previously frozen cloud session.
+     * Requires cloud server with freeze/resume routes (POST /v1/sessions/:id/freeze|resume).
+     */
+    resume(): Promise<void>;
+    /**
+     * Authenticate with the API key and store the JWT + expiry.
+     */
+    private authenticate;
+    /**
+     * Re-authenticate if the JWT is expired or within 60s of expiry.
+     */
+    private ensureValidJwt;
+    /**
+     * Generic HTTP/HTTPS request using native modules.
+     * Selects http vs https based on the endpoint URL.
+     * Sets Content-Type and Authorization headers.
+     * Parses JSON response. Throws CloudApiError on non-2xx.
+     */
+    private request;
+}
+/**
+ * Error with HTTP status code from the cloud API.
+ * Extends Error so it propagates naturally through promise chains.
+ */
+export declare class CloudApiError extends Error {
+    readonly statusCode: number;
+    constructor(statusCode: number, message: string);
+}
+//# sourceMappingURL=cloud.d.ts.map

package/dist/types/sdk/transports/cloud.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cloud.d.ts","sourceRoot":"","sources":["../../../../src/sdk/transports/cloud.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAIH,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,eAAe,CAAC;AAI/C,MAAM,WAAW,qBAAqB;IACpC,yFAAyF;IACzF,QAAQ,EAAE,MAAM,CAAC;IACjB,iCAAiC;IACjC,MAAM,EAAE,MAAM,CAAC;IACf,kEAAkE;IAClE,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,4CAA4C;IAC5C,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAoBD,qBAAa,cAAe,YAAW,SAAS;IAC9C,gFAAgF;IACzE,SAAS,EAAE,MAAM,GAAG,SAAS,CAAC;IAErC,OAAO,CAAC,QAAQ,CAAS;IACzB,OAAO,CAAC,MAAM,CAAS;IACvB,OAAO,CAAC,OAAO,CAAS;IACxB,OAAO,CAAC,GAAG,CAAc;IACzB,OAAO,CAAC,YAAY,CAAa;IACjC,OAAO,CAAC,SAAS,CAAkB;IAEnC,iDAAiD;IACjD,OAAO,CAAC,SAAS,CAAM;IACvB,OAAO,CAAC,QAAQ,CAAU;gBAEd,IAAI,EAAE,qBAAqB;IAavC;;;OAGG;IACG,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;IAa9B;;;;OAIG;IACG,OAAO,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC;IAyB/D;;OAEG;IACG,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAe5B;;;OAGG;IACG,MAAM,IAAI,OAAO,CAAC,IAAI,CAAC;IAK7B;;;OAGG;IACG,MAAM,IAAI,OAAO,CAAC,IAAI,CAAC;IAO7B;;OAEG;YACW,YAAY;IAa1B;;OAEG;YACW,cAAc;IAQ5B;;;;;OAKG;IACH,OAAO,CAAC,OAAO;CA6GhB;AAID;;;GAGG;AACH,qBAAa,aAAc,SAAQ,KAAK;aAEpB,UAAU,EAAE,MAAM;gBAAlB,UAAU,EAAE,MAAM,EAClC,OAAO,EAAE,MAAM;CAKlB"}

package/dist/types/sdk/transports/index.d.ts

@@ -0,0 +1,3 @@
+export { LocalTransport, type LocalTransportOptions } from './local.js';
+export { CloudTransport, CloudApiError, type CloudTransportOptions } from './cloud.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/types/sdk/transports/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/sdk/transports/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,KAAK,qBAAqB,EAAE,MAAM,YAAY,CAAC;AACxE,OAAO,EAAE,cAAc,EAAE,aAAa,EAAE,KAAK,qBAAqB,EAAE,MAAM,YAAY,CAAC"}

package/dist/types/sdk/transports/local.d.ts

@@ -0,0 +1,56 @@
+/**
+ * LocalTransport — talks to a local browse server via HTTP.
+ *
+ * Reads the server state file (.browse/browse-server.json) to discover
+ * the port and auth token. Does NOT auto-start the server — callers
+ * should ensure the server is running before connecting (e.g. via `browse status`).
+ *
+ * State file discovery mirrors the CLI logic in src/cli.ts:
+ *   1. Explicit stateFile option
+ *   2. BROWSE_STATE_FILE env var
+ *   3. Walk up from cwd looking for .browse/browse-server.json
+ *   4. Fallback to /tmp/browse-server.json
+ */
+import type { Transport } from '../session.js';
+export interface LocalTransportOptions {
+    /** Override state file path (skips discovery) */
+    stateFile?: string;
+    /** Session ID for multiplexing */
+    session?: string;
+    /** Command timeout in milliseconds (default: 30000) */
+    timeout?: number;
+}
+export declare class LocalTransport implements Transport {
+    private opts;
+    private port;
+    private token;
+    private session;
+    private timeout;
+    private connected;
+    constructor(opts?: LocalTransportOptions);
+    /**
+     * Read the server state file and extract port + token.
+     * Must be called before execute(), or execute() will call it lazily.
+     */
+    connect(): Promise<void>;
+    /**
+     * Send a command to the browse server and return the text response.
+     * Lazily connects on first call if connect() was not called explicitly.
+     */
+    execute(command: string, args: string[]): Promise<string>;
+    /**
+     * Close the transport. LocalTransport does not own the server,
+     * so this is a no-op. The session can optionally be closed via
+     * session.execute('session-close', [sessionId]).
+     */
+    close(): Promise<void>;
+    /**
+     * Resolve the state file path using the same strategy as the CLI:
+     *   1. Explicit option
+     *   2. BROWSE_STATE_FILE env var
+     *   3. Walk up from cwd looking for .browse/browse-server.json
+     *   4. Fallback to /tmp/browse-server.json
+     */
+    private resolveStateFile;
+}
+//# sourceMappingURL=local.d.ts.map

package/dist/types/sdk/transports/local.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"local.d.ts","sourceRoot":"","sources":["../../../../src/sdk/transports/local.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAKH,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,eAAe,CAAC;AAI/C,MAAM,WAAW,qBAAqB;IACpC,iDAAiD;IACjD,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,kCAAkC;IAClC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,uDAAuD;IACvD,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAYD,qBAAa,cAAe,YAAW,SAAS;IAOlC,OAAO,CAAC,IAAI;IANxB,OAAO,CAAC,IAAI,CAAa;IACzB,OAAO,CAAC,KAAK,CAAc;IAC3B,OAAO,CAAC,OAAO,CAAqB;IACpC,OAAO,CAAC,OAAO,CAAS;IACxB,OAAO,CAAC,SAAS,CAAkB;gBAEf,IAAI,GAAE,qBAA0B;IAKpD;;;OAGG;IACG,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;IAyC9B;;;OAGG;IACG,OAAO,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC;IAsE/D;;;;OAIG;IACG,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAM5B;;;;;;OAMG;IACH,OAAO,CAAC,gBAAgB;CAoCzB"}

package/dist/types/sdk.d.ts

@@ -0,0 +1,35 @@
+/**
+ * SDK mode — programmatic API for direct browser automation.
+ *
+ * Usage:
+ *   import { createBrowser } from '@ulpi/browse';
+ *   const browser = await createBrowser();
+ *   await browser.goto('https://example.com');
+ *   const text = await browser.text();
+ *   await browser.close();
+ *
+ * No HTTP server is spawned. Direct BrowserManager access.
+ */
+export interface BrowseSDK {
+    goto(url: string): Promise<string>;
+    text(): Promise<string>;
+    html(selector?: string): Promise<string>;
+    click(selector: string): Promise<string>;
+    fill(selector: string, value: string): Promise<string>;
+    type(text: string): Promise<string>;
+    press(key: string): Promise<string>;
+    snapshot(opts?: {
+        interactive?: boolean;
+    }): Promise<string>;
+    screenshot(path?: string): Promise<string>;
+    evaluate(expression: string): Promise<string>;
+    close(): Promise<void>;
+}
+/**
+ * Create a new headless browser instance for programmatic use.
+ * No HTTP server — direct Playwright access.
+ */
+export declare function createBrowser(options?: {
+    headless?: boolean;
+}): Promise<BrowseSDK>;
+//# sourceMappingURL=sdk.d.ts.map

package/dist/types/sdk.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sdk.d.ts","sourceRoot":"","sources":["../../src/sdk.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAQH,MAAM,WAAW,SAAS;IACxB,IAAI,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IACnC,IAAI,IAAI,OAAO,CAAC,MAAM,CAAC,CAAC;IACxB,IAAI,CAAC,QAAQ,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IACzC,KAAK,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IACzC,IAAI,CAAC,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IACvD,IAAI,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IACpC,KAAK,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IACpC,QAAQ,CAAC,IAAI,CAAC,EAAE;QAAE,WAAW,CAAC,EAAE,OAAO,CAAA;KAAE,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAC5D,UAAU,CAAC,IAAI,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAC3C,QAAQ,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAC9C,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;CACxB;AAED;;;GAGG;AACH,wBAAsB,aAAa,CAAC,OAAO,CAAC,EAAE;IAC5C,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB,GAAG,OAAO,CAAC,SAAS,CAAC,CA+CrB"}

package/dist/types/security/auth-vault.d.ts

@@ -0,0 +1,32 @@
+/**
+ * Credential vault — AES-256-GCM encrypted credential storage
+ *
+ * Encryption key: BROWSE_ENCRYPTION_KEY env var (64-char hex)
+ * or auto-generated at .browse/.encryption-key
+ *
+ * Storage: .browse/auth/<name>.json (mode 0o600)
+ * Password never returned in list/get — only hasPassword: true
+ */
+import type { BrowserTarget } from '../browser/target';
+export interface CredentialInfo {
+    name: string;
+    url: string;
+    username: string;
+    hasPassword: boolean;
+    createdAt: string;
+}
+export declare class AuthVault {
+    private authDir;
+    private encryptionKey;
+    constructor(localDir: string);
+    save(name: string, url: string, username: string, password: string, selectors?: {
+        username?: string;
+        password?: string;
+        submit?: string;
+    }): void;
+    private load;
+    login(name: string, bm: BrowserTarget): Promise<string>;
+    list(): CredentialInfo[];
+    delete(name: string): void;
+}
+//# sourceMappingURL=auth-vault.d.ts.map

package/dist/types/security/auth-vault.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-vault.d.ts","sourceRoot":"","sources":["../../../src/security/auth-vault.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAIH,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC;AAoBvD,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,GAAG,EAAE,MAAM,CAAC;IACZ,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,EAAE,OAAO,CAAC;IACrB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,qBAAa,SAAS;IACpB,OAAO,CAAC,OAAO,CAAS;IACxB,OAAO,CAAC,aAAa,CAAS;gBAElB,QAAQ,EAAE,MAAM;IAK5B,IAAI,CACF,IAAI,EAAE,MAAM,EACZ,GAAG,EAAE,MAAM,EACX,QAAQ,EAAE,MAAM,EAChB,QAAQ,EAAE,MAAM,EAChB,SAAS,CAAC,EAAE;QAAE,QAAQ,CAAC,EAAE,MAAM,CAAC;QAAC,QAAQ,CAAC,EAAE,MAAM,CAAC;QAAC,MAAM,CAAC,EAAE,MAAM,CAAA;KAAE,GACpE,IAAI;IAyBP,OAAO,CAAC,IAAI;IAQN,KAAK,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE,EAAE,aAAa,GAAG,OAAO,CAAC,MAAM,CAAC;IA2B7D,IAAI,IAAI,cAAc,EAAE;IAoBxB,MAAM,CAAC,IAAI,EAAE,MAAM,GAAG,IAAI;CAO3B"}

package/dist/types/security/domain-filter.d.ts

@@ -0,0 +1,31 @@
+/**
+ * Domain filter — blocks navigation and sub-resource requests outside an allowlist.
+ *
+ * Supports:
+ *   - Exact domain: "example.com" matches only example.com
+ *   - Wildcard: "*.example.com" matches example.com AND any subdomain
+ *   - Case-insensitive matching
+ */
+export declare class DomainFilter {
+    private domains;
+    constructor(domains: string[]);
+    /**
+     * Check if a URL's domain is in the allowlist.
+     * Returns true if allowed, false if blocked.
+     * Non-HTTP URLs (about:blank, data:, etc.) are always allowed.
+     */
+    isAllowed(url: string): boolean;
+    /**
+     * Get a human-readable error message for a blocked URL.
+     */
+    blockedMessage(url: string): string;
+    /**
+     * Generate a JS init script that wraps WebSocket, EventSource, and
+     * navigator.sendBeacon with domain checks. Playwright's context.route()
+     * only covers HTTP — these JS-level APIs bypass it entirely.
+     *
+     * Injected via context.addInitScript() so it runs before any page JS.
+     */
+    generateInitScript(): string;
+}
+//# sourceMappingURL=domain-filter.d.ts.map

package/dist/types/security/domain-filter.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"domain-filter.d.ts","sourceRoot":"","sources":["../../../src/security/domain-filter.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,qBAAa,YAAY;IACvB,OAAO,CAAC,OAAO,CAAW;gBAEd,OAAO,EAAE,MAAM,EAAE;IAI7B;;;;OAIG;IACH,SAAS,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO;IAmC/B;;OAEG;IACH,cAAc,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM;IAQnC;;;;;;OAMG;IACH,kBAAkB,IAAI,MAAM;CAiE7B"}

package/dist/types/security/index.d.ts

@@ -0,0 +1,10 @@
+/**
+ * Security module — domain filtering, action policy, path sanitization, credential vault.
+ */
+export { DomainFilter } from './domain-filter';
+export { PolicyChecker } from './policy';
+export type { PolicyResult } from './policy';
+export { sanitizeName } from './sanitize';
+export { AuthVault } from './auth-vault';
+export type { CredentialInfo } from './auth-vault';
+//# sourceMappingURL=index.d.ts.map

package/dist/types/security/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/security/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAC/C,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AACzC,YAAY,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAC7C,OAAO,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAC1C,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AACzC,YAAY,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC"}

package/dist/types/security/policy.d.ts

@@ -0,0 +1,20 @@
+/**
+ * Action policy — gate commands via JSON config
+ *
+ * File: browse-policy.json (project root) or BROWSE_POLICY env var
+ * Format: { default: "allow"|"deny", deny?: string[], confirm?: string[], allow?: string[] }
+ * Precedence: deny > confirm > allow whitelist > default
+ * Hot-reloads on mtime change.
+ */
+export type PolicyResult = 'allow' | 'deny' | 'confirm';
+export declare class PolicyChecker {
+    private filePath;
+    private lastMtime;
+    private policy;
+    private confirmOverrides;
+    constructor(filePath?: string);
+    private reload;
+    check(command: string): PolicyResult;
+    isActive(): boolean;
+}
+//# sourceMappingURL=policy.d.ts.map

package/dist/types/security/policy.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"policy.d.ts","sourceRoot":"","sources":["../../../src/security/policy.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAYH,MAAM,MAAM,YAAY,GAAG,OAAO,GAAG,MAAM,GAAG,SAAS,CAAC;AAkBxD,qBAAa,aAAa;IACxB,OAAO,CAAC,QAAQ,CAAuB;IACvC,OAAO,CAAC,SAAS,CAAa;IAC9B,OAAO,CAAC,MAAM,CAA6B;IAC3C,OAAO,CAAC,gBAAgB,CAA4B;gBAExC,QAAQ,CAAC,EAAE,MAAM;IAe7B,OAAO,CAAC,MAAM;IAed,KAAK,CAAC,OAAO,EAAE,MAAM,GAAG,YAAY;IAiBpC,QAAQ,IAAI,OAAO;CAGpB"}

package/dist/types/security/sanitize.d.ts

@@ -0,0 +1,6 @@
+/**
+ * Sanitize a user-supplied name for safe use in file paths.
+ * Strips path separators and parent directory references.
+ */
+export declare function sanitizeName(name: string): string;
+//# sourceMappingURL=sanitize.d.ts.map

package/dist/types/security/sanitize.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sanitize.d.ts","sourceRoot":"","sources":["../../../src/security/sanitize.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,wBAAgB,YAAY,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAMjD"}

package/dist/types/server.d.ts

@@ -0,0 +1,13 @@
+/**
+ * browse server — persistent Chromium daemon
+ *
+ * Architecture:
+ *   Bun.serve HTTP on localhost → routes commands to Playwright
+ *   Session multiplexing: multiple agents share one Chromium via X-Browse-Session header
+ *   Console/network buffers: per-session in-memory + disk flush every 1s
+ *   Chromium crash → server EXITS with clear error (CLI auto-restarts)
+ *   Auto-shutdown when all sessions idle past BROWSE_IDLE_TIMEOUT (default 30 min)
+ */
+import { type LogEntry, type NetworkEntry } from './network/buffers';
+export { type LogEntry, type NetworkEntry };
+//# sourceMappingURL=server.d.ts.map

package/dist/types/server.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../../src/server.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAQH,OAAO,EAAE,KAAK,QAAQ,EAAE,KAAK,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAuCrE,OAAO,EAAE,KAAK,QAAQ,EAAE,KAAK,YAAY,EAAE,CAAC"}

package/dist/types/session/concurrency.d.ts

@@ -0,0 +1,28 @@
+/**
+ * ConcurrencyLimiter — caps concurrent operations per session.
+ * Excess requests queue with a timeout.
+ */
+export declare class ConcurrencyLimitError extends Error {
+    constructor(sessionId: string, timeoutMs: number);
+}
+export declare class ConcurrencyLimiter {
+    private maxConcurrent;
+    private sessions;
+    constructor(maxConcurrent?: number);
+    /** Get stats for a session. */
+    getStats(sessionId: string): {
+        active: number;
+        queued: number;
+    };
+    /** Acquire a slot. Resolves when a slot is available. Rejects on timeout. */
+    acquire(sessionId: string, timeoutMs?: number): Promise<void>;
+    /** Release a slot, allowing the next queued request to proceed. */
+    release(sessionId: string): void;
+    /** Drain all queued requests for a session. Call before closing. */
+    drain(sessionId: string): void;
+}
+/**
+ * Convenience wrapper: acquire, run operation, release.
+ */
+export declare function withUserLimit<T>(limiter: ConcurrencyLimiter, sessionId: string, operation: () => Promise<T>, timeoutMs?: number): Promise<T>;
+//# sourceMappingURL=concurrency.d.ts.map