npm - @vercel/sandbox - Versions diffs - 2.0.0-beta.2 → 2.0.0-beta.20 - Mend

@vercel/sandbox 2.0.0-beta.2 → 2.0.0-beta.20

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (208) hide show

package/README.md +48 -1
package/dist/_virtual/rolldown_runtime.cjs +29 -0
package/dist/api-client/api-client.cjs +445 -0
package/dist/api-client/api-client.cjs.map +1 -0
package/dist/api-client/api-client.d.cts +6235 -0
package/dist/api-client/api-client.d.ts +6229 -706
package/dist/api-client/api-client.js +436 -472
package/dist/api-client/api-client.js.map +1 -1
package/dist/api-client/api-error.cjs +32 -0
package/dist/api-client/api-error.cjs.map +1 -0
package/dist/api-client/api-error.d.cts +29 -0
package/dist/api-client/api-error.d.ts +21 -16
package/dist/api-client/api-error.js +28 -32
package/dist/api-client/api-error.js.map +1 -1
package/dist/api-client/base-client.cjs +126 -0
package/dist/api-client/base-client.cjs.map +1 -0
package/dist/api-client/base-client.d.cts +38 -0
package/dist/api-client/base-client.d.ts +31 -36
package/dist/api-client/base-client.js +114 -118
package/dist/api-client/base-client.js.map +1 -1
package/dist/api-client/file-writer.cjs +62 -0
package/dist/api-client/file-writer.cjs.map +1 -0
package/dist/api-client/file-writer.d.cts +66 -0
package/dist/api-client/file-writer.d.ts +56 -42
package/dist/api-client/file-writer.js +57 -61
package/dist/api-client/file-writer.js.map +1 -1
package/dist/api-client/index.cjs +2 -0
package/dist/api-client/index.d.ts +2 -2
package/dist/api-client/index.js +4 -21
package/dist/api-client/validators.cjs +229 -0
package/dist/api-client/validators.cjs.map +1 -0
package/dist/api-client/validators.d.cts +26885 -0
package/dist/api-client/validators.d.ts +26732 -3706
package/dist/api-client/validators.js +198 -191
package/dist/api-client/validators.js.map +1 -1
package/dist/api-client/with-retry.cjs +89 -0
package/dist/api-client/with-retry.cjs.map +1 -0
package/dist/api-client/with-retry.d.cts +10 -0
package/dist/api-client/with-retry.d.ts +9 -13
package/dist/api-client/with-retry.js +81 -102
package/dist/api-client/with-retry.js.map +1 -1
package/dist/auth/api.cjs +29 -0
package/dist/auth/api.cjs.map +1 -0
package/dist/auth/api.js +26 -25
package/dist/auth/api.js.map +1 -1
package/dist/auth/error.cjs +13 -0
package/dist/auth/error.cjs.map +1 -0
package/dist/auth/error.js +11 -11
package/dist/auth/error.js.map +1 -1
package/dist/auth/file.cjs +64 -0
package/dist/auth/file.cjs.map +1 -0
package/dist/auth/file.d.cts +26 -0
package/dist/auth/file.d.ts +19 -15
package/dist/auth/file.js +49 -64
package/dist/auth/file.js.map +1 -1
package/dist/auth/index.cjs +11 -0
package/dist/auth/index.d.cts +5 -0
package/dist/auth/index.d.ts +5 -6
package/dist/auth/index.js +6 -27
package/dist/auth/linked-project.cjs +38 -0
package/dist/auth/linked-project.cjs.map +1 -0
package/dist/auth/linked-project.js +30 -64
package/dist/auth/linked-project.js.map +1 -1
package/dist/auth/oauth.cjs +205 -0
package/dist/auth/oauth.cjs.map +1 -0
package/dist/auth/oauth.d.cts +135 -0
package/dist/auth/oauth.d.ts +113 -109
package/dist/auth/oauth.js +185 -252
package/dist/auth/oauth.js.map +1 -1
package/dist/auth/poll-for-token.cjs +82 -0
package/dist/auth/poll-for-token.cjs.map +1 -0
package/dist/auth/poll-for-token.d.cts +28 -0
package/dist/auth/poll-for-token.d.ts +23 -15
package/dist/auth/poll-for-token.js +79 -64
package/dist/auth/poll-for-token.js.map +1 -1
package/dist/auth/project.cjs +178 -0
package/dist/auth/project.cjs.map +1 -0
package/dist/auth/project.d.cts +40 -0
package/dist/auth/project.d.ts +19 -19
package/dist/auth/project.js +169 -72
package/dist/auth/project.js.map +1 -1
package/dist/auth/zod.cjs +22 -0
package/dist/auth/zod.cjs.map +1 -0
package/dist/auth/zod.js +18 -17
package/dist/auth/zod.js.map +1 -1
package/dist/command.cjs +328 -0
package/dist/command.cjs.map +1 -0
package/dist/command.d.cts +289 -0
package/dist/command.d.ts +265 -171
package/dist/command.js +323 -226
package/dist/command.js.map +1 -1
package/dist/constants.d.cts +5 -0
package/dist/constants.d.ts +5 -1
package/dist/filesystem.cjs +499 -0
package/dist/filesystem.cjs.map +1 -0
package/dist/filesystem.d.cts +258 -0
package/dist/filesystem.d.ts +258 -0
package/dist/filesystem.js +497 -0
package/dist/filesystem.js.map +1 -0
package/dist/index.cjs +15 -0
package/dist/index.d.cts +8 -0
package/dist/index.d.ts +8 -6
package/dist/index.js +8 -17
package/dist/network-policy.d.cts +156 -0
package/dist/network-policy.d.ts +88 -28
package/dist/sandbox.cjs +816 -0
package/dist/sandbox.cjs.map +1 -0
package/dist/sandbox.d.cts +2847 -0
package/dist/sandbox.d.ts +2834 -628
package/dist/sandbox.js +808 -557
package/dist/sandbox.js.map +1 -1
package/dist/session.cjs +527 -0
package/dist/session.cjs.map +1 -0
package/dist/session.d.cts +410 -0
package/dist/session.d.ts +403 -368
package/dist/session.js +524 -489
package/dist/session.js.map +1 -1
package/dist/snapshot.cjs +204 -0
package/dist/snapshot.cjs.map +1 -0
package/dist/snapshot.d.cts +161 -0
package/dist/snapshot.d.ts +152 -92
package/dist/snapshot.js +201 -114
package/dist/snapshot.js.map +1 -1
package/dist/utils/array.cjs +17 -0
package/dist/utils/array.cjs.map +1 -0
package/dist/utils/array.js +12 -15
package/dist/utils/array.js.map +1 -1
package/dist/utils/consume-readable.cjs +18 -0
package/dist/utils/consume-readable.cjs.map +1 -0
package/dist/utils/consume-readable.js +13 -12
package/dist/utils/consume-readable.js.map +1 -1
package/dist/utils/decode-base64-url.cjs +15 -0
package/dist/utils/decode-base64-url.cjs.map +1 -0
package/dist/utils/decode-base64-url.js +10 -9
package/dist/utils/decode-base64-url.js.map +1 -1
package/dist/utils/dev-credentials.cjs +142 -0
package/dist/utils/dev-credentials.cjs.map +1 -0
package/dist/utils/dev-credentials.js +126 -184
package/dist/utils/dev-credentials.js.map +1 -1
package/dist/utils/get-credentials.cjs +123 -0
package/dist/utils/get-credentials.cjs.map +1 -0
package/dist/utils/get-credentials.d.cts +21 -0
package/dist/utils/get-credentials.d.ts +19 -61
package/dist/utils/get-credentials.js +106 -140
package/dist/utils/get-credentials.js.map +1 -1
package/dist/utils/log.cjs +25 -0
package/dist/utils/log.cjs.map +1 -0
package/dist/utils/log.js +15 -17
package/dist/utils/log.js.map +1 -1
package/dist/utils/network-policy.cjs +49 -0
package/dist/utils/network-policy.cjs.map +1 -0
package/dist/utils/network-policy.js +42 -77
package/dist/utils/network-policy.js.map +1 -1
package/dist/utils/normalizePath.cjs +27 -0
package/dist/utils/normalizePath.cjs.map +1 -0
package/dist/utils/normalizePath.js +21 -28
package/dist/utils/normalizePath.js.map +1 -1
package/dist/utils/paginator.cjs +41 -0
package/dist/utils/paginator.cjs.map +1 -0
package/dist/utils/paginator.d.cts +16 -0
package/dist/utils/paginator.d.ts +16 -0
package/dist/utils/paginator.js +40 -0
package/dist/utils/paginator.js.map +1 -0
package/dist/utils/resolveSignal.cjs +20 -0
package/dist/utils/resolveSignal.cjs.map +1 -0
package/dist/utils/resolveSignal.d.cts +15 -0
package/dist/utils/resolveSignal.d.ts +12 -10
package/dist/utils/resolveSignal.js +14 -17
package/dist/utils/resolveSignal.js.map +1 -1
package/dist/utils/sandbox-snapshot.cjs +14 -0
package/dist/utils/sandbox-snapshot.cjs.map +1 -0
package/dist/utils/sandbox-snapshot.d.cts +10 -0
package/dist/utils/sandbox-snapshot.d.ts +11 -0
package/dist/utils/sandbox-snapshot.js +14 -0
package/dist/utils/sandbox-snapshot.js.map +1 -0
package/dist/utils/types.cjs +13 -0
package/dist/utils/types.cjs.map +1 -0
package/dist/utils/types.d.cts +11 -0
package/dist/utils/types.d.ts +5 -7
package/dist/utils/types.js +8 -8
package/dist/utils/types.js.map +1 -1
package/dist/version.cjs +7 -0
package/dist/version.cjs.map +1 -0
package/dist/version.js +5 -5
package/dist/version.js.map +1 -1
package/package.json +23 -3
package/dist/api-client/index.js.map +0 -1
package/dist/auth/api.d.ts +0 -6
package/dist/auth/error.d.ts +0 -11
package/dist/auth/index.js.map +0 -1
package/dist/auth/linked-project.d.ts +0 -10
package/dist/auth/zod.d.ts +0 -5
package/dist/constants.js +0 -3
package/dist/constants.js.map +0 -1
package/dist/index.js.map +0 -1
package/dist/network-policy.js +0 -3
package/dist/network-policy.js.map +0 -1
package/dist/utils/array.d.ts +0 -9
package/dist/utils/consume-readable.d.ts +0 -5
package/dist/utils/convert-sandbox.d.ts +0 -6
package/dist/utils/convert-sandbox.js +0 -14
package/dist/utils/convert-sandbox.js.map +0 -1
package/dist/utils/decode-base64-url.d.ts +0 -7
package/dist/utils/dev-credentials.d.ts +0 -37
package/dist/utils/log.d.ts +0 -2
package/dist/utils/network-policy.d.ts +0 -7
package/dist/utils/normalizePath.d.ts +0 -17
package/dist/version.d.ts +0 -1

package/dist/auth/project.js CHANGED Viewed

@@ -1,80 +1,177 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.inferScope = inferScope;
-exports.selectTeam = selectTeam;
-const zod_1 = require("zod");
-const api_1 = require("./api");
-const error_1 = require("./error");
-const linked_project_1 = require("./linked-project");
-const TeamsSchema = zod_1.z.object({
-    teams: zod_1.z
-        .array(zod_1.z.object({
-        slug: zod_1.z.string(),
-    }))
-        .min(1, `No teams found. Please create a team first.`),
+import { NotOk } from "./error.js";
+import { fetchApi } from "./api.js";
+import { readLinkedProject } from "./linked-project.js";
+import { z } from "zod";
+//#region src/auth/project.ts
+const UserSchema = z.object({ user: z.object({
+	defaultTeamId: z.string().nullable(),
+	username: z.string()
+}) });
+const TeamSchema = z.object({
+	id: z.string(),
+	slug: z.string(),
+	updatedAt: z.number(),
+	membership: z.object({ role: z.string() }),
+	billing: z.object({ plan: z.string() })
+});
+const TeamsSchema = z.object({
+	teams: z.array(TeamSchema),
+	pagination: z.object({
+		count: z.number(),
+		next: z.number().nullable()
+	})
 });
 const DEFAULT_PROJECT_NAME = "vercel-sandbox-default-project";
+/** Status codes that mean "this team can't be used, try the next one". */
+function isSkippableTeamError(e) {
+	return e instanceof NotOk && (e.response.statusCode === 402 || e.response.statusCode === 403);
+}
 /**
- * Resolves the team and project scope for sandbox operations.
- *
- * First checks for a locally linked project in `.vercel/project.json`.
- * If found, uses the `projectId` and `orgId` from there.
- *
- * Otherwise, if `teamId` is not provided, selects the first available team for the account.
- * Ensures a default project exists within the team, creating it if necessary.
- *
- * @param opts.token - Vercel API authentication token.
- * @param opts.teamId - Optional team slug. If omitted, the first team is selected.
- * @param opts.cwd - Optional directory to search for `.vercel/project.json`. Defaults to `process.cwd()`.
- * @returns The resolved scope with `projectId`, `teamId`, and whether the project was `created`.
- *
- * @throws {NotOk} If the API returns an error other than 404 when checking the project.
- * @throws {ZodError} If no teams exist for the account.
- *
- * @example
- * ```ts
- * const scope = await inferScope({ token: "vercel_..." });
- * // => { projectId: "vercel-sandbox-default-project", teamId: "my-team", created: false }
- * ```
- */
+* Resolves the team and project scope for sandbox operations.
+*
+* First checks for a locally linked project in `.vercel/project.json`.
+* If found, uses the `projectId` and `orgId` from there.
+*
+* Otherwise, if `teamId` is not provided, builds an ordered list of candidate
+* teams to try: the user's `defaultTeamId` first (if set), then hobby-plan
+* teams where the user has an OWNER role (preferring the personal team matching
+* the username, then the most recently updated). Tries each candidate until one
+* succeeds.
+*
+* @param opts.token - Vercel API authentication token.
+* @param opts.teamId - Optional team slug. If omitted, candidate teams are resolved automatically.
+* @param opts.cwd - Optional directory to search for `.vercel/project.json`. Defaults to `process.cwd()`.
+* @returns The resolved scope with `projectId`, `teamId`, and whether the project was `created`.
+*
+* @throws {NotOk} If the API returns an error other than 404 when checking the project.
+*
+* @example
+* ```ts
+* const scope = await inferScope({ token: "vercel_..." });
+* // => { projectId: "vercel-sandbox-default-project", teamId: "my-team", created: false }
+* ```
+*/
 async function inferScope(opts) {
-    const linkedProject = await (0, linked_project_1.readLinkedProject)(opts.cwd ?? process.cwd());
-    if (linkedProject) {
-        return { ...linkedProject, created: false };
-    }
-    const teamId = opts.teamId ?? (await selectTeam(opts.token));
-    let created = false;
-    try {
-        await (0, api_1.fetchApi)({
-            token: opts.token,
-            endpoint: `/v2/projects/${encodeURIComponent(DEFAULT_PROJECT_NAME)}?slug=${encodeURIComponent(teamId)}`,
-        });
-    }
-    catch (e) {
-        if (!(e instanceof error_1.NotOk) || e.response.statusCode !== 404) {
-            throw e;
-        }
-        await (0, api_1.fetchApi)({
-            token: opts.token,
-            endpoint: `/v11/projects?slug=${encodeURIComponent(teamId)}`,
-            method: "POST",
-            body: JSON.stringify({
-                name: DEFAULT_PROJECT_NAME,
-            }),
-        });
-        created = true;
-    }
-    return { projectId: DEFAULT_PROJECT_NAME, teamId, created };
+	const linkedProject = await readLinkedProject(opts.cwd ?? process.cwd());
+	if (linkedProject) {
+		const slugs = await resolveLinkedProjectSlugs(opts.token, linkedProject.teamId, linkedProject.projectId);
+		return {
+			...linkedProject,
+			created: false,
+			...slugs
+		};
+	}
+	if (opts.teamId) return tryTeam(opts.token, opts.teamId);
+	const { defaultTeamId, username } = (await fetchApi({
+		token: opts.token,
+		endpoint: "/v2/user"
+	}).then(UserSchema.parse)).user;
+	if (defaultTeamId) try {
+		const result = await tryTeam(opts.token, defaultTeamId);
+		try {
+			const team = await fetchApi({
+				token: opts.token,
+				endpoint: `/v2/teams/${encodeURIComponent(defaultTeamId)}`
+			}).then(z.object({ slug: z.string() }).parse);
+			return {
+				...result,
+				teamSlug: team.slug
+			};
+		} catch {
+			return result;
+		}
+	} catch (e) {
+		if (!isSkippableTeamError(e)) throw e;
+	}
+	let next = null;
+	do {
+		const endpoint = next === null ? "/v2/teams?limit=20" : `/v2/teams?limit=20&until=${next}`;
+		const page = await fetchApi({
+			token: opts.token,
+			endpoint
+		}).then(TeamsSchema.parse);
+		next = page.pagination.next;
+		const hobbyOwnerTeams = page.teams.filter((t) => t.membership.role === "OWNER" && t.billing.plan === "hobby");
+		if (hobbyOwnerTeams.length === 0) continue;
+		const bestHobbyTeam = hobbyOwnerTeams.find((t) => t.slug === username) ?? hobbyOwnerTeams.sort((a, b) => b.updatedAt - a.updatedAt)[0];
+		if (bestHobbyTeam && bestHobbyTeam.id !== defaultTeamId) try {
+			return {
+				...await tryTeam(opts.token, bestHobbyTeam.id),
+				teamSlug: bestHobbyTeam.slug
+			};
+		} catch (e) {
+			if (!isSkippableTeamError(e)) throw e;
+		}
+	} while (next !== null);
+	try {
+		return {
+			...await tryTeam(opts.token, username),
+			teamSlug: username
+		};
+	} catch (e) {
+		if (!isSkippableTeamError(e)) throw e;
+	}
+	throw new NotOk({
+		statusCode: 403,
+		responseText: `Authenticated as "${username}" but none of the available teams allow sandbox creation. Specify a team explicitly with --scope <team-id-or-slug>.`
+	});
+}
+/**
+* Attempts to use a specific team for sandbox operations by checking for
+* (or creating) the default project within that team.
+*
+* @returns The resolved scope if the team is usable.
+* @throws {NotOk} On authorization or other API errors.
+*/
+async function tryTeam(token, teamId) {
+	const teamParam = teamId.startsWith("team_") ? `teamId=${encodeURIComponent(teamId)}` : `slug=${encodeURIComponent(teamId)}`;
+	let created = false;
+	try {
+		await fetchApi({
+			token,
+			endpoint: `/v2/projects/${encodeURIComponent(DEFAULT_PROJECT_NAME)}?${teamParam}`
+		});
+	} catch (e) {
+		if (!(e instanceof NotOk) || e.response.statusCode !== 404) throw e;
+		await fetchApi({
+			token,
+			endpoint: `/v11/projects?${teamParam}`,
+			method: "POST",
+			body: JSON.stringify({ name: DEFAULT_PROJECT_NAME })
+		});
+		created = true;
+	}
+	return {
+		projectId: DEFAULT_PROJECT_NAME,
+		teamId,
+		created
+	};
 }
 /**
- * Selects a team for the current token by querying the Teams API and
- * returning the slug of the first team in the result set.
- *
- * @param token - Authentication token used to call the Vercel API.
- * @returns A promise that resolves to the first team's slug.
- */
-async function selectTeam(token) {
-    const { teams: [team], } = await (0, api_1.fetchApi)({ token, endpoint: "/v2/teams?limit=1" }).then(TeamsSchema.parse);
-    return team.slug;
+* Best-effort resolution of team slug and project name for a linked project.
+* Both IDs may be opaque (e.g. `team_xxx`, `prj_xxx`), so we fetch the
+* human-readable names from the API in parallel.
+*/
+async function resolveLinkedProjectSlugs(token, teamId, projectId) {
+	try {
+		const teamParam = teamId.startsWith("team_") ? `teamId=${encodeURIComponent(teamId)}` : `slug=${encodeURIComponent(teamId)}`;
+		const [teamData, projectData] = await Promise.all([fetchApi({
+			token,
+			endpoint: `/v2/teams/${encodeURIComponent(teamId)}`
+		}).then(z.object({ slug: z.string() }).parse), fetchApi({
+			token,
+			endpoint: `/v2/projects/${encodeURIComponent(projectId)}?${teamParam}`
+		}).then(z.object({ name: z.string() }).parse)]);
+		return {
+			teamSlug: teamData.slug,
+			projectSlug: projectData.name
+		};
+	} catch {
+		return {};
+	}
 }
+//#endregion
+export { inferScope };
 //# sourceMappingURL=project.js.map

package/dist/auth/project.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"project.js","sourceRoot":"","sources":["../../src/auth/project.ts"],"names":[],"mappings":";;AAwCA,gCAmCC;AASD,gCAOC;AA3FD,6BAAwB;AACxB,+BAAiC;AACjC,mCAAgC;AAChC,qDAAqD;AAErD,MAAM,WAAW,GAAG,OAAC,CAAC,MAAM,CAAC;IAC3B,KAAK,EAAE,OAAC;SACL,KAAK,CACJ,OAAC,CAAC,MAAM,CAAC;QACP,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE;KACjB,CAAC,CACH;SACA,GAAG,CAAC,CAAC,EAAE,6CAA6C,CAAC;CACzD,CAAC,CAAC;AAEH,MAAM,oBAAoB,GAAG,gCAAgC,CAAC;AAE9D;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACI,KAAK,UAAU,UAAU,CAAC,IAIhC;IACC,MAAM,aAAa,GAAG,MAAM,IAAA,kCAAiB,EAAC,IAAI,CAAC,GAAG,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC;IACzE,IAAI,aAAa,EAAE,CAAC;QAClB,OAAO,EAAE,GAAG,aAAa,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;IAC9C,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,IAAI,CAAC,MAAM,UAAU,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC;IAE7D,IAAI,OAAO,GAAG,KAAK,CAAC;IACpB,IAAI,CAAC;QACH,MAAM,IAAA,cAAQ,EAAC;YACb,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,QAAQ,EAAE,gBAAgB,kBAAkB,CAAC,oBAAoB,CAAC,SAAS,kBAAkB,CAAC,MAAM,CAAC,EAAE;SACxG,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,IAAI,CAAC,CAAC,CAAC,YAAY,aAAK,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,UAAU,KAAK,GAAG,EAAE,CAAC;YAC3D,MAAM,CAAC,CAAC;QACV,CAAC;QAED,MAAM,IAAA,cAAQ,EAAC;YACb,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,QAAQ,EAAE,sBAAsB,kBAAkB,CAAC,MAAM,CAAC,EAAE;YAC5D,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;gBACnB,IAAI,EAAE,oBAAoB;aAC3B,CAAC;SACH,CAAC,CAAC;QACH,OAAO,GAAG,IAAI,CAAC;IACjB,CAAC;IAED,OAAO,EAAE,SAAS,EAAE,oBAAoB,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC;AAC9D,CAAC;AAED;;;;;;GAMG;AACI,KAAK,UAAU,UAAU,CAAC,KAAa;IAC5C,MAAM,EACJ,KAAK,EAAE,CAAC,IAAI,CAAC,GACd,GAAG,MAAM,IAAA,cAAQ,EAAC,EAAE,KAAK,EAAE,QAAQ,EAAE,mBAAmB,EAAE,CAAC,CAAC,IAAI,CAC/D,WAAW,CAAC,KAAK,CAClB,CAAC;IACF,OAAO,IAAI,CAAC,IAAI,CAAC;AACnB,CAAC"}
1	+ {"version":3,"file":"project.js","names":["next: number \| null","endpoint: string"],"sources":["../../src/auth/project.ts"],"sourcesContent":["import { z } from \"zod\";\nimport { fetchApi } from \"./api.js\";\nimport { NotOk } from \"./error.js\";\nimport { readLinkedProject } from \"./linked-project.js\";\n\nconst UserSchema = z.object({\n user: z.object({\n defaultTeamId: z.string().nullable(),\n username: z.string(),\n }),\n});\n\nconst TeamSchema = z.object({\n id: z.string(),\n slug: z.string(),\n updatedAt: z.number(),\n membership: z.object({\n role: z.string(),\n }),\n billing: z.object({\n plan: z.string(),\n }),\n});\n\nconst TeamsSchema = z.object({\n teams: z.array(TeamSchema),\n pagination: z.object({\n count: z.number(),\n next: z.number().nullable(),\n }),\n});\n\nconst DEFAULT_PROJECT_NAME = \"vercel-sandbox-default-project\";\n\n/** Status codes that mean \"this team can't be used, try the next one\". /\nfunction isSkippableTeamError(e: unknown): boolean {\n return e instanceof NotOk && (e.response.statusCode === 402 \|\| e.response.statusCode === 403);\n}\n\n/\n Resolves the team and project scope for sandbox operations.\n \n First checks for a locally linked project in `.vercel/project.json`.\n * If found, uses the `projectId` and `orgId` from there.\n \n Otherwise, if `teamId` is not provided, builds an ordered list of candidate\n * teams to try: the user's `defaultTeamId` first (if set), then hobby-plan\n * teams where the user has an OWNER role (preferring the personal team matching\n * the username, then the most recently updated). Tries each candidate until one\n * succeeds.\n \n @param opts.token - Vercel API authentication token.\n * @param opts.teamId - Optional team slug. If omitted, candidate teams are resolved automatically.\n * @param opts.cwd - Optional directory to search for `.vercel/project.json`. Defaults to `process.cwd()`.\n * @returns The resolved scope with `projectId`, `teamId`, and whether the project was `created`.\n \n @throws {NotOk} If the API returns an error other than 404 when checking the project.\n \n @example\n * ```ts\n * const scope = await inferScope({ token: \"vercel_...\" });\n * // => { projectId: \"vercel-sandbox-default-project\", teamId: \"my-team\", created: false }\n * ```\n /\nexport async function inferScope(opts: {\n token: string;\n teamId?: string;\n cwd?: string;\n}): Promise<{\n projectId: string;\n teamId: string;\n created: boolean;\n teamSlug?: string;\n projectSlug?: string;\n}> {\n const linkedProject = await readLinkedProject(opts.cwd ?? process.cwd());\n if (linkedProject) {\n const slugs = await resolveLinkedProjectSlugs(\n opts.token,\n linkedProject.teamId,\n linkedProject.projectId,\n );\n return { ...linkedProject, created: false, ...slugs };\n }\n\n if (opts.teamId) {\n return tryTeam(opts.token, opts.teamId);\n }\n\n const userData = await fetchApi({\n token: opts.token,\n endpoint: \"/v2/user\",\n }).then(UserSchema.parse);\n const { defaultTeamId, username } = userData.user;\n\n // 1. Try defaultTeamId first\n if (defaultTeamId) {\n try {\n const result = await tryTeam(opts.token, defaultTeamId);\n // Resolve team slug (best-effort)\n try {\n const team = await fetchApi({\n token: opts.token,\n endpoint: `/v2/teams/${encodeURIComponent(defaultTeamId)}`,\n }).then(z.object({ slug: z.string() }).parse);\n return { ...result, teamSlug: team.slug };\n } catch {\n return result;\n }\n } catch (e) {\n if (!isSkippableTeamError(e)) throw e;\n }\n }\n\n // 2. Paginate teams in pages of 20, try best hobby team per page\n let next: number \| null = null;\n do {\n const endpoint: string =\n next === null\n ? \"/v2/teams?limit=20\"\n : `/v2/teams?limit=20&until=${next}`;\n const page = await fetchApi({ token: opts.token, endpoint }).then(\n TeamsSchema.parse,\n );\n\n next = page.pagination.next;\n\n const hobbyOwnerTeams = page.teams.filter(\n (t) => t.membership.role === \"OWNER\" && t.billing.plan === \"hobby\",\n );\n if (hobbyOwnerTeams.length === 0) {\n continue;\n }\n\n const bestHobbyTeam =\n hobbyOwnerTeams.find((t) => t.slug === username) ??\n hobbyOwnerTeams.sort((a, b) => b.updatedAt - a.updatedAt)[0];\n\n if (bestHobbyTeam && bestHobbyTeam.id !== defaultTeamId) {\n try {\n const result = await tryTeam(opts.token, bestHobbyTeam.id);\n return { ...result, teamSlug: bestHobbyTeam.slug };\n } catch (e) {\n if (!isSkippableTeamError(e)) throw e;\n }\n }\n } while (next !== null);\n\n // 3. Fall back to username as personal team\n try {\n const result = await tryTeam(opts.token, username);\n return { ...result, teamSlug: username };\n } catch (e) {\n if (!isSkippableTeamError(e)) throw e;\n }\n\n throw new NotOk({\n statusCode: 403,\n responseText: `Authenticated as \"${username}\" but none of the available teams allow sandbox creation. Specify a team explicitly with --scope <team-id-or-slug>.`,\n });\n}\n\n/\n Attempts to use a specific team for sandbox operations by checking for\n * (or creating) the default project within that team.\n \n @returns The resolved scope if the team is usable.\n * @throws {NotOk} On authorization or other API errors.\n /\nasync function tryTeam(\n token: string,\n teamId: string,\n): Promise<{ projectId: string; teamId: string; created: boolean }> {\n const teamParam = teamId.startsWith(\"team_\")\n ? `teamId=${encodeURIComponent(teamId)}`\n : `slug=${encodeURIComponent(teamId)}`;\n\n let created = false;\n try {\n await fetchApi({\n token,\n endpoint: `/v2/projects/${encodeURIComponent(DEFAULT_PROJECT_NAME)}?${teamParam}`,\n });\n } catch (e) {\n if (!(e instanceof NotOk) \|\| e.response.statusCode !== 404) {\n throw e;\n }\n\n await fetchApi({\n token,\n endpoint: `/v11/projects?${teamParam}`,\n method: \"POST\",\n body: JSON.stringify({\n name: DEFAULT_PROJECT_NAME,\n }),\n });\n created = true;\n }\n\n return { projectId: DEFAULT_PROJECT_NAME, teamId, created };\n}\n\n/\n Best-effort resolution of team slug and project name for a linked project.\n * Both IDs may be opaque (e.g. `team_xxx`, `prj_xxx`), so we fetch the\n * human-readable names from the API in parallel.\n */\nasync function resolveLinkedProjectSlugs(\n token: string,\n teamId: string,\n projectId: string,\n): Promise<{ teamSlug?: string; projectSlug?: string }> {\n try {\n const teamParam = teamId.startsWith(\"team_\")\n ? `teamId=${encodeURIComponent(teamId)}`\n : `slug=${encodeURIComponent(teamId)}`;\n const [teamData, projectData] = await Promise.all([\n fetchApi({\n token,\n endpoint: `/v2/teams/${encodeURIComponent(teamId)}`,\n }).then(z.object({ slug: z.string() }).parse),\n fetchApi({\n token,\n endpoint: `/v2/projects/${encodeURIComponent(projectId)}?${teamParam}`,\n }).then(z.object({ name: z.string() }).parse),\n ]);\n return { teamSlug: teamData.slug, projectSlug: projectData.name };\n } catch {\n return {};\n }\n}\n"],"mappings":";;;;;;AAKA,MAAM,aAAa,EAAE,OAAO,EAC1B,MAAM,EAAE,OAAO;CACb,eAAe,EAAE,QAAQ,CAAC,UAAU;CACpC,UAAU,EAAE,QAAQ;CACrB,CAAC,EACH,CAAC;AAEF,MAAM,aAAa,EAAE,OAAO;CAC1B,IAAI,EAAE,QAAQ;CACd,MAAM,EAAE,QAAQ;CAChB,WAAW,EAAE,QAAQ;CACrB,YAAY,EAAE,OAAO,EACnB,MAAM,EAAE,QAAQ,EACjB,CAAC;CACF,SAAS,EAAE,OAAO,EAChB,MAAM,EAAE,QAAQ,EACjB,CAAC;CACH,CAAC;AAEF,MAAM,cAAc,EAAE,OAAO;CAC3B,OAAO,EAAE,MAAM,WAAW;CAC1B,YAAY,EAAE,OAAO;EACnB,OAAO,EAAE,QAAQ;EACjB,MAAM,EAAE,QAAQ,CAAC,UAAU;EAC5B,CAAC;CACH,CAAC;AAEF,MAAM,uBAAuB;;AAG7B,SAAS,qBAAqB,GAAqB;AACjD,QAAO,aAAa,UAAU,EAAE,SAAS,eAAe,OAAO,EAAE,SAAS,eAAe;;;;;;;;;;;;;;;;;;;;;;;;;;;AA4B3F,eAAsB,WAAW,MAU9B;CACD,MAAM,gBAAgB,MAAM,kBAAkB,KAAK,OAAO,QAAQ,KAAK,CAAC;AACxE,KAAI,eAAe;EACjB,MAAM,QAAQ,MAAM,0BAClB,KAAK,OACL,cAAc,QACd,cAAc,UACf;AACD,SAAO;GAAE,GAAG;GAAe,SAAS;GAAO,GAAG;GAAO;;AAGvD,KAAI,KAAK,OACP,QAAO,QAAQ,KAAK,OAAO,KAAK,OAAO;CAOzC,MAAM,EAAE,eAAe,cAJN,MAAM,SAAS;EAC9B,OAAO,KAAK;EACZ,UAAU;EACX,CAAC,CAAC,KAAK,WAAW,MAAM,EACoB;AAG7C,KAAI,cACF,KAAI;EACF,MAAM,SAAS,MAAM,QAAQ,KAAK,OAAO,cAAc;AAEvD,MAAI;GACF,MAAM,OAAO,MAAM,SAAS;IAC1B,OAAO,KAAK;IACZ,UAAU,aAAa,mBAAmB,cAAc;IACzD,CAAC,CAAC,KAAK,EAAE,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC,CAAC,MAAM;AAC7C,UAAO;IAAE,GAAG;IAAQ,UAAU,KAAK;IAAM;UACnC;AACN,UAAO;;UAEF,GAAG;AACV,MAAI,CAAC,qBAAqB,EAAE,CAAE,OAAM;;CAKxC,IAAIA,OAAsB;AAC1B,IAAG;EACD,MAAMC,WACJ,SAAS,OACL,uBACA,4BAA4B;EAClC,MAAM,OAAO,MAAM,SAAS;GAAE,OAAO,KAAK;GAAO;GAAU,CAAC,CAAC,KAC3D,YAAY,MACb;AAED,SAAO,KAAK,WAAW;EAEvB,MAAM,kBAAkB,KAAK,MAAM,QAChC,MAAM,EAAE,WAAW,SAAS,WAAW,EAAE,QAAQ,SAAS,QAC5D;AACD,MAAI,gBAAgB,WAAW,EAC7B;EAGF,MAAM,gBACJ,gBAAgB,MAAM,MAAM,EAAE,SAAS,SAAS,IAChD,gBAAgB,MAAM,GAAG,MAAM,EAAE,YAAY,EAAE,UAAU,CAAC;AAE5D,MAAI,iBAAiB,cAAc,OAAO,cACxC,KAAI;AAEF,UAAO;IAAE,GADM,MAAM,QAAQ,KAAK,OAAO,cAAc,GAAG;IACtC,UAAU,cAAc;IAAM;WAC3C,GAAG;AACV,OAAI,CAAC,qBAAqB,EAAE,CAAE,OAAM;;UAGjC,SAAS;AAGlB,KAAI;AAEF,SAAO;GAAE,GADM,MAAM,QAAQ,KAAK,OAAO,SAAS;GAC9B,UAAU;GAAU;UACjC,GAAG;AACV,MAAI,CAAC,qBAAqB,EAAE,CAAE,OAAM;;AAGtC,OAAM,IAAI,MAAM;EACd,YAAY;EACZ,cAAc,qBAAqB,SAAS;EAC7C,CAAC;;;;;;;;;AAUJ,eAAe,QACb,OACA,QACkE;CAClE,MAAM,YAAY,OAAO,WAAW,QAAQ,GACxC,UAAU,mBAAmB,OAAO,KACpC,QAAQ,mBAAmB,OAAO;CAEtC,IAAI,UAAU;AACd,KAAI;AACF,QAAM,SAAS;GACb;GACA,UAAU,gBAAgB,mBAAmB,qBAAqB,CAAC,GAAG;GACvE,CAAC;UACK,GAAG;AACV,MAAI,EAAE,aAAa,UAAU,EAAE,SAAS,eAAe,IACrD,OAAM;AAGR,QAAM,SAAS;GACb;GACA,UAAU,iBAAiB;GAC3B,QAAQ;GACR,MAAM,KAAK,UAAU,EACnB,MAAM,sBACP,CAAC;GACH,CAAC;AACF,YAAU;;AAGZ,QAAO;EAAE,WAAW;EAAsB;EAAQ;EAAS;;;;;;;AAQ7D,eAAe,0BACb,OACA,QACA,WACsD;AACtD,KAAI;EACF,MAAM,YAAY,OAAO,WAAW,QAAQ,GACxC,UAAU,mBAAmB,OAAO,KACpC,QAAQ,mBAAmB,OAAO;EACtC,MAAM,CAAC,UAAU,eAAe,MAAM,QAAQ,IAAI,CAChD,SAAS;GACP;GACA,UAAU,aAAa,mBAAmB,OAAO;GAClD,CAAC,CAAC,KAAK,EAAE,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC,CAAC,MAAM,EAC7C,SAAS;GACP;GACA,UAAU,gBAAgB,mBAAmB,UAAU,CAAC,GAAG;GAC5D,CAAC,CAAC,KAAK,EAAE,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC,CAAC,MAAM,CAC9C,CAAC;AACF,SAAO;GAAE,UAAU,SAAS;GAAM,aAAa,YAAY;GAAM;SAC3D;AACN,SAAO,EAAE"}

package/dist/auth/zod.cjs ADDED Viewed

@@ -0,0 +1,22 @@
+const require_rolldown_runtime = require('../_virtual/rolldown_runtime.cjs');
+let zod = require("zod");
+//#region src/auth/zod.ts
+/**
+* A Zod codec that serializes and deserializes JSON strings.
+*/
+const json = zod.z.string().transform((jsonString, ctx) => {
+	try {
+		return JSON.parse(jsonString);
+	} catch (err) {
+		ctx.addIssue({
+			code: zod.z.ZodIssueCode.custom,
+			message: `Invalid JSON: ${err.message}`
+		});
+		return zod.z.NEVER;
+	}
+});
+//#endregion
+exports.json = json;
+//# sourceMappingURL=zod.cjs.map

package/dist/auth/zod.cjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"zod.cjs","names":["z","err: any"],"sources":["../../src/auth/zod.ts"],"sourcesContent":["import { z } from \"zod\";\n\n/**\n * A Zod codec that serializes and deserializes JSON strings.\n */\nexport const json = z.string().transform((jsonString: string, ctx): unknown => {\n try {\n return JSON.parse(jsonString);\n } catch (err: any) {\n ctx.addIssue({\n code: z.ZodIssueCode.custom,\n message: `Invalid JSON: ${err.message}`,\n });\n return z.NEVER;\n }\n});\n"],"mappings":";;;;;;;AAKA,MAAa,OAAOA,MAAE,QAAQ,CAAC,WAAW,YAAoB,QAAiB;AAC7E,KAAI;AACF,SAAO,KAAK,MAAM,WAAW;UACtBC,KAAU;AACjB,MAAI,SAAS;GACX,MAAMD,MAAE,aAAa;GACrB,SAAS,iBAAiB,IAAI;GAC/B,CAAC;AACF,SAAOA,MAAE;;EAEX"}

package/dist/auth/zod.js CHANGED Viewed

@@ -1,20 +1,21 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.json = void 0;
-const zod_1 = require("zod");
+import { z } from "zod";
+//#region src/auth/zod.ts
 /**
- * A Zod codec that serializes and deserializes JSON strings.
- */
-exports.json = zod_1.z.string().transform((jsonString, ctx) => {
-    try {
-        return JSON.parse(jsonString);
-    }
-    catch (err) {
-        ctx.addIssue({
-            code: zod_1.z.ZodIssueCode.custom,
-            message: `Invalid JSON: ${err.message}`,
-        });
-        return zod_1.z.NEVER;
-    }
+* A Zod codec that serializes and deserializes JSON strings.
+*/
+const json = z.string().transform((jsonString, ctx) => {
+	try {
+		return JSON.parse(jsonString);
+	} catch (err) {
+		ctx.addIssue({
+			code: z.ZodIssueCode.custom,
+			message: `Invalid JSON: ${err.message}`
+		});
+		return z.NEVER;
+	}
 });
+//#endregion
+export { json };
 //# sourceMappingURL=zod.js.map

package/dist/auth/zod.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"zod.js","~~sourceRoot~~":"","sources":["../../src/auth/zod.ts"],"~~names~~":[],"mappings":"~~;;;AAAA~~,~~6BAAwB;AAExB;;GAEG;AACU~~,~~QAAA~~,~~IAAI,GAAG,OAAC,CAAC,MAAM,~~EAAE,~~CAAC~~,~~SAAS,~~CAAC,~~CAAC~~,~~UAAkB~~,~~EAAE,GAAG,EAAW,EAAE~~;~~IAC5E~~,~~IAAI,CAAC~~;~~QACH~~,~~OAAO~~,~~IAAI,CAAC,~~KAAK,~~CAAC~~,~~UAAU,CAAC,CAAC~~;~~IAChC~~,~~CAAC~~;~~IAAC~~,~~OAAO~~,~~GAAQ,EAAE,CAAC~~;~~QAClB~~,~~GAAG~~,~~CAAC,QAAQ,CAAC;YACX,IAAI,~~EAAE,~~OAAC,CAAC,YAAY,CAAC,MAAM~~;~~YAC3B~~,~~OAAO~~,~~EAAE,~~iBAAiB,~~GAAG,CAAC,OAAO,EAAE~~;~~SACxC~~,CAAC~~,CAAC~~;~~QACH~~,~~OAAO~~,~~OAAC,CAAC,KAAK,CAAC;IACjB,CAAC;AACH,CAAC,CAAC,CAAC~~"}
1	+ {"version":3,"file":"zod.js","names":["err: any"],"sources":["../../src/auth/zod.ts"],"sourcesContent":["import { z } from \"zod\";\n\n/*\n A Zod codec that serializes and deserializes JSON strings.\n */\nexport const json = z.string().transform((jsonString: string, ctx): unknown => {\n try {\n return JSON.parse(jsonString);\n } catch (err: any) {\n ctx.addIssue({\n code: z.ZodIssueCode.custom,\n message: `Invalid JSON: ${err.message}`,\n });\n return z.NEVER;\n }\n});\n"],"mappings":";;;;;;AAKA,MAAa,OAAO,EAAE,QAAQ,CAAC,WAAW,YAAoB,QAAiB;AAC7E,KAAI;AACF,SAAO,KAAK,MAAM,WAAW;UACtBA,KAAU;AACjB,MAAI,SAAS;GACX,MAAM,EAAE,aAAa;GACrB,SAAS,iBAAiB,IAAI;GAC/B,CAAC;AACF,SAAO,EAAE;;EAEX"}