@vm0/cli 9.109.0 → 9.110.0

package/{chunk-WJ6BDJIT.js → chunk-XBIXXD2C.js}

@@ -34652,7 +34652,7 @@ if (DSN) {
   Sentry.init({
     dsn: DSN,
     environment: process.env.SENTRY_ENVIRONMENT ?? "production",
-    release: "9.109.0",
+    release: "9.110.0",
     sendDefaultPii: false,
     tracesSampleRate: 0,
     shutdownTimeout: 500,
@@ -34671,7 +34671,7 @@ if (DSN) {
     }
   });
   Sentry.setContext("cli", {
-    version: "9.109.0",
+    version: "9.110.0",
     command: process.argv.slice(2).join(" ")
   });
   Sentry.setContext("runtime", {
@@ -69537,6 +69537,34 @@ var webhookStoragesCommitContract = c6.router({
     summary: "Commit uploaded storage from sandbox"
   }
 });
+var webhookUsageContract = c6.router({
+  send: {
+    method: "POST",
+    path: "/api/webhooks/agent/usage",
+    headers: authHeadersSchema,
+    body: external_exports.object({
+      runId: external_exports.string().min(1, "runId is required"),
+      usage: external_exports.object({
+        model: external_exports.string().optional(),
+        input_tokens: external_exports.number().optional(),
+        output_tokens: external_exports.number().optional(),
+        cache_read_input_tokens: external_exports.number().optional(),
+        cache_creation_input_tokens: external_exports.number().optional(),
+        web_search_requests: external_exports.number().optional()
+      }).strict()
+    }),
+    responses: {
+      200: external_exports.object({
+        success: external_exports.boolean()
+      }),
+      400: apiErrorSchema,
+      401: apiErrorSchema,
+      404: apiErrorSchema,
+      500: apiErrorSchema
+    },
+    summary: "Receive proxy-extracted usage data from sandbox"
+  }
+});
 
 // ../../packages/core/src/contracts/cli-auth.ts
 init_esm_shims();
@@ -70029,7 +70057,7 @@ function mpFirewall(type, authHeader, placeholderValue) {
   const headerValue = authHeader.valuePrefix ? `${authHeader.valuePrefix} ${secretRef}` : secretRef;
   return {
     name: `model-provider:${type}`,
-    ref: "__auto__",
+    ref: `model-provider:${type}`,
     apis: [
       {
         base: getFirewallBaseUrl(type),
@@ -70761,7 +70789,7 @@ function parseGraphQLRule(rest) {
   const suffixParts = rest.slice(gqlIdx + 1).split(/\s+/);
   let typeFilter = null;
   let opFilter = null;
-  let fieldFilter = null;
+  let fieldFilters = null;
   for (let i = 1; i < suffixParts.length; i++) {
     const part = suffixParts[i];
     if (part.startsWith("type:")) {
@@ -70769,10 +70797,10 @@ function parseGraphQLRule(rest) {
     } else if (part.startsWith("operationName:")) {
       opFilter = part.slice(14);
     } else if (part.startsWith("field:")) {
-      fieldFilter = part.slice(6);
+      fieldFilters = part.slice(6).split(",");
     }
   }
-  return { path: path2, typeFilter, opFilter, fieldFilter };
+  return { path: path2, typeFilter, opFilter, fieldFilters };
 }
 function matchWildcard(value, pattern) {
   if (pattern.endsWith("*")) {
@@ -70780,7 +70808,7 @@ function matchWildcard(value, pattern) {
   }
   return value === pattern;
 }
-function matchGraphQLBody(body, typeFilter, opFilter, fieldFilter) {
+function matchGraphQLBody(body, typeFilter, opFilter, fieldFilters) {
   if (!body) return false;
   if (typeFilter !== null && body.type !== typeFilter) {
     return false;
@@ -70790,11 +70818,13 @@ function matchGraphQLBody(body, typeFilter, opFilter, fieldFilter) {
     if (!opName) return false;
     if (!matchWildcard(opName, opFilter)) return false;
   }
-  if (fieldFilter !== null) {
+  if (fieldFilters !== null) {
     const fields = body.fields;
     if (!fields || fields.length === 0) return false;
-    if (!fields.some((f) => {
-      return matchWildcard(f, fieldFilter);
+    if (!fieldFilters.some((pattern) => {
+      return fields.some((f) => {
+        return matchWildcard(f, pattern);
+      });
     }))
       return false;
   }
@@ -70816,11 +70846,11 @@ function findMatchingPermissions(method, path2, config2, graphqlBody) {
         const gql = parseGraphQLRule(rest);
         const rulePath = gql ? gql.path : rest;
         if (matchFirewallPath(path2, rulePath) !== null) {
-          if (gql && (gql.typeFilter !== null || gql.opFilter !== null || gql.fieldFilter !== null) && !matchGraphQLBody(
+          if (gql && (gql.typeFilter !== null || gql.opFilter !== null || gql.fieldFilters !== null) && !matchGraphQLBody(
             graphqlBody,
             gql.typeFilter,
             gql.opFilter,
-            gql.fieldFilter
+            gql.fieldFilters
           )) {
             continue;
           }
@@ -72022,6 +72052,7 @@ var runContextFirewallSchema = external_exports.object({
 var runContextResponseSchema = external_exports.object({
   prompt: external_exports.string(),
   appendSystemPrompt: external_exports.string().nullable(),
+  sessionId: external_exports.string().nullable(),
   secretNames: external_exports.array(external_exports.string()),
   vars: external_exports.record(external_exports.string(), external_exports.string()).nullable(),
   environment: external_exports.record(external_exports.string(), external_exports.string()),
@@ -75922,4 +75953,4 @@ undici/lib/web/fetch/body.js:
 undici/lib/web/websocket/frame.js:
   (*! ws. MIT License. Einar Otto Stangvik <einaros@gmail.com> *)
 */
-//# sourceMappingURL=chunk-WJ6BDJIT.js.map
+//# sourceMappingURL=chunk-XBIXXD2C.js.map