@xano/cli 1.0.2-beta.6 → 1.0.2-beta.8

package/README.md

@@ -505,6 +505,8 @@ xano sandbox push --review                               # Push and open sandbox
 
 # Review (open in browser)
 xano sandbox review
+xano sandbox review --url-only                           # Print the URL without opening the browser
+xano sandbox review --insecure                           # Skip TLS verification (self-signed certs)
 
 # Impersonate (open in browser)
 xano sandbox impersonate

package/dist/commands/sandbox/review/index.d.ts

@@ -3,6 +3,7 @@ export default class SandboxReview extends BaseCommand {
     static description: string;
     static examples: string[];
     static flags: {
+        insecure: import("@oclif/core/interfaces").BooleanFlag<boolean>;
         output: import("@oclif/core/interfaces").OptionFlag<string, import("@oclif/core/interfaces").CustomOptions>;
         'url-only': import("@oclif/core/interfaces").BooleanFlag<boolean>;
         config: import("@oclif/core/interfaces").OptionFlag<string | undefined, import("@oclif/core/interfaces").CustomOptions>;

package/dist/commands/sandbox/review/index.js

@@ -10,9 +10,16 @@ Review session started!
 `,
         `$ xano sandbox review -u`,
         `$ xano sandbox review -o json`,
+        `$ xano sandbox review --insecure`,
     ];
     static flags = {
         ...BaseCommand.baseFlags,
+        insecure: Flags.boolean({
+            char: 'k',
+            default: false,
+            description: 'Skip TLS certificate verification (for self-signed certificates)',
+            required: false,
+        }),
         output: Flags.string({
             char: 'o',
             default: 'summary',
@@ -29,6 +36,10 @@ Review session started!
     };
     async run() {
         const { flags } = await this.parse(SandboxReview);
+        if (flags.insecure) {
+            process.env.NODE_TLS_REJECT_UNAUTHORIZED = '0';
+            this.warn('TLS certificate verification is disabled (insecure mode)');
+        }
         const { profile } = this.resolveProfile(flags);
         const apiUrl = `${profile.instance_origin}/api:meta/sandbox/impersonate`;
         try {

package/dist/utils/multidoc-push.d.ts

@@ -54,6 +54,31 @@ export declare function countSummaryChanges(summary: Record<string, {
     truncated: number;
     updated: number;
 }>, shouldDelete: boolean): number;
+/**
+ * Filter document entries down to the ones the dry-run preview reports as changed,
+ * used to send only the changed documents during a partial (non-`--sync`) push.
+ *
+ * The preview keys each operation as `${type}:${name}` (with the verb appended for
+ * API endpoints). Local documents are matched against that set.
+ *
+ * Triggers need special handling: they are authored with specific subtypes
+ * (workspace_trigger, error_trigger, table_trigger, agent_trigger,
+ * mcp_server_trigger, realtime_trigger) but the server buckets every one under the
+ * generic `trigger` type in the preview. We therefore match a local trigger against
+ * both its specific type and the generic `trigger` type — otherwise partial pushes
+ * silently drop triggers, requiring `--sync --force` to include them (DEV-7084).
+ */
+export declare function filterChangedEntries(entries: Array<{
+    content: string;
+    filePath: string;
+}>, operations: Array<{
+    action: string;
+    name: string;
+    type: string;
+}>, includeRecords: boolean): Array<{
+    content: string;
+    filePath: string;
+}>;
 /**
  * Recursively collect all .xs files from a directory, sorted for deterministic ordering.
  */

package/dist/utils/multidoc-push.js

@@ -14,6 +14,44 @@ export const WORKSPACE_MISMATCH_THRESHOLD = 10;
 export function countSummaryChanges(summary, shouldDelete) {
     return Object.values(summary).reduce((sum, c) => sum + c.created + c.updated + (shouldDelete ? c.deleted : 0) + c.truncated, 0);
 }
+/**
+ * Filter document entries down to the ones the dry-run preview reports as changed,
+ * used to send only the changed documents during a partial (non-`--sync`) push.
+ *
+ * The preview keys each operation as `${type}:${name}` (with the verb appended for
+ * API endpoints). Local documents are matched against that set.
+ *
+ * Triggers need special handling: they are authored with specific subtypes
+ * (workspace_trigger, error_trigger, table_trigger, agent_trigger,
+ * mcp_server_trigger, realtime_trigger) but the server buckets every one under the
+ * generic `trigger` type in the preview. We therefore match a local trigger against
+ * both its specific type and the generic `trigger` type — otherwise partial pushes
+ * silently drop triggers, requiring `--sync --force` to include them (DEV-7084).
+ */
+export function filterChangedEntries(entries, operations, includeRecords) {
+    const changedKeys = new Set(operations
+        .filter((op) => op.action !== 'unchanged' && op.action !== 'delete' && op.action !== 'cascade_delete')
+        .map((op) => `${op.type}:${op.name}`));
+    return entries.filter((entry) => {
+        const parsed = parseDocument(entry.content);
+        if (!parsed)
+            return true;
+        // Workspace settings always use a fixed key in dry-run regardless of the actual name
+        if (parsed.type === 'workspace' && changedKeys.has('workspace:workspace'))
+            return true;
+        const opName = parsed.verb ? `${parsed.name} ${parsed.verb}` : parsed.name;
+        if (changedKeys.has(`${parsed.type}:${opName}`))
+            return true;
+        // The dry-run preview reports all trigger subtypes under the generic `trigger`
+        // type, so match triggers against that bucket too (DEV-7084).
+        if (parsed.type.endsWith('_trigger') && changedKeys.has(`trigger:${opName}`))
+            return true;
+        // Keep table documents that contain records when --records is active
+        if (includeRecords && parsed.type === 'table' && /\bitems\s*=\s*\[/m.test(entry.content))
+            return true;
+        return false;
+    });
+}
 // ── File Collection ─────────────────────────────────────────────────────────
 /**
  * Recursively collect all .xs files from a directory, sorted for deterministic ordering.
@@ -520,24 +558,7 @@ export async function executePush(ctx, target, flags) {
     }
     // ── Partial push: filter to changed documents only ────────────────────
     if (isPartial && dryRunPreview) {
-        const changedKeys = new Set(dryRunPreview.operations
-            .filter((op) => op.action !== 'unchanged' && op.action !== 'delete' && op.action !== 'cascade_delete')
-            .map((op) => `${op.type}:${op.name}`));
-        const filteredEntries = documentEntries.filter((entry) => {
-            const parsed = parseDocument(entry.content);
-            if (!parsed)
-                return true;
-            // Workspace settings always use a fixed key in dry-run regardless of the actual name
-            if (parsed.type === 'workspace' && changedKeys.has('workspace:workspace'))
-                return true;
-            const opName = parsed.verb ? `${parsed.name} ${parsed.verb}` : parsed.name;
-            if (changedKeys.has(`${parsed.type}:${opName}`))
-                return true;
-            // Keep table documents that contain records when --records is active
-            if (flags.records && parsed.type === 'table' && /\bitems\s*=\s*\[/m.test(entry.content))
-                return true;
-            return false;
-        });
+        const filteredEntries = filterChangedEntries(documentEntries, dryRunPreview.operations, flags.records);
         if (filteredEntries.length === 0) {
             log('No changes to push.');
             return;