@zavudev/sdk-mcp 0.25.0 → 0.27.0

package/code-tool.js

@@ -1,12 +1,53 @@
 "use strict";
 // File generated from our OpenAPI spec by Stainless. See CONTRIBUTING.md for details.
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.codeTool = codeTool;
+const node_fs_1 = __importDefault(require("node:fs"));
+const node_path_1 = __importDefault(require("node:path"));
+const node_url_1 = __importDefault(require("node:url"));
+const deno_http_worker_1 = require("@valtown/deno-http-worker");
+const code_tool_paths_cjs_1 = require("./code-tool-paths.cjs");
 const types_1 = require("./types.js");
-const server_1 = require("./server.js");
+const util_1 = require("./util.js");
 const prompt = `Runs JavaScript code to interact with the Zavudev API.
 
-You are a skilled programmer writing code to interface with the service.
+You are a skilled TypeScript programmer writing code to interface with the service.
 Define an async function named "run" that takes a single parameter of an initialized SDK client and it will be run.
 For example:
 
@@ -22,7 +63,9 @@ You will be returned anything that your function returns, plus the results of an
 Do not add try-catch blocks for single API calls. The tool will handle errors for you.
 Do not add comments unless necessary for generating better code.
 Code will run in a container, and cannot interact with the network outside of the given SDK client.
-Variables will not persist between calls, so make sure to return or log any data you might need later.`;
+Variables will not persist between calls, so make sure to return or log any data you might need later.
+Remember that you are writing TypeScript code, so you need to be careful with your types.
+Always type dynamic key-value stores explicitly as Record<string, YourValueType> instead of {}.`;
 /**
  * A tool that runs code against a copy of the SDK.
  *
@@ -30,9 +73,13 @@ Variables will not persist between calls, so make sure to return or log any data
  * we expose a single tool that can be used to search for endpoints by name, resource, operation, or tag, and then
  * a generic endpoint that can be used to invoke any endpoint with the provided arguments.
  *
- * @param endpoints - The endpoints to include in the list.
+ * @param blockedMethods - The methods to block for code execution. Blocking is done by simple string
+ * matching, so it is not secure against obfuscation. For stronger security, block in the downstream API
+ * with limited API keys.
+ * @param codeExecutionMode - Whether to execute code in a local Deno environment or in a remote
+ * sandbox environment hosted by Stainless.
  */
-function codeTool(params) {
+function codeTool({ blockedMethods, codeExecutionMode, }) {
     const metadata = { resource: 'all', operation: 'write', tags: [] };
     const tool = {
         name: 'execute',
@@ -52,58 +99,217 @@ function codeTool(params) {
             required: ['code'],
         },
     };
-    const handler = async (client, args) => {
+    const handler = async ({ reqContext, args, }) => {
         const code = args.code;
-        const intent = args.intent;
         // Do very basic blocking of code that includes forbidden method names.
         //
         // WARNING: This is not secure against obfuscation and other evasion methods. If
         // stronger security blocks are required, then these should be enforced in the downstream
         // API (e.g., by having users call the MCP server with API keys with limited permissions).
-        if (params.blockedMethods) {
-            const blockedMatches = params.blockedMethods.filter((method) => code.includes(method.fullyQualifiedName));
+        if (blockedMethods) {
+            const blockedMatches = blockedMethods.filter((method) => code.includes(method.fullyQualifiedName));
             if (blockedMatches.length > 0) {
                 return (0, types_1.asErrorResult)(`The following methods have been blocked by the MCP server and cannot be used in code execution: ${blockedMatches
                     .map((m) => m.fullyQualifiedName)
                     .join(', ')}`);
             }
         }
-        // this is not required, but passing a Stainless API key for the matching project_name
-        // will allow you to run code-mode queries against non-published versions of your SDK.
-        const stainlessAPIKey = (0, server_1.readEnv)('STAINLESS_API_KEY');
-        const codeModeEndpoint = (0, server_1.readEnv)('CODE_MODE_ENDPOINT_URL') ?? 'https://api.stainless.com/api/ai/code-tool';
-        const res = await fetch(codeModeEndpoint, {
-            method: 'POST',
-            headers: {
-                ...(stainlessAPIKey && { Authorization: stainlessAPIKey }),
-                'Content-Type': 'application/json',
-                client_envs: JSON.stringify({
-                    ZAVUDEV_API_KEY: (0, server_1.requireValue)((0, server_1.readEnv)('ZAVUDEV_API_KEY') ?? client.apiKey, 'set ZAVUDEV_API_KEY environment variable or provide apiKey client option'),
-                    ZAVUDEV_BASE_URL: (0, server_1.readEnv)('ZAVUDEV_BASE_URL') ?? client.baseURL ?? undefined,
-                }),
-            },
-            body: JSON.stringify({
-                project_name: 'zavudev',
-                code,
-                intent,
-                client_opts: {},
-            }),
-        });
-        if (!res.ok) {
-            throw new Error(`${res.status}: ${res.statusText} error when trying to contact Code Tool server. Details: ${await res.text()}`);
+        if (codeExecutionMode === 'local') {
+            return await localDenoHandler({ reqContext, args });
         }
-        const { is_error, result, log_lines, err_lines } = (await res.json());
-        const hasLogs = log_lines.length > 0 || err_lines.length > 0;
-        const output = {
-            result,
-            ...(log_lines.length > 0 && { log_lines }),
-            ...(err_lines.length > 0 && { err_lines }),
-        };
-        if (is_error) {
-            return (0, types_1.asErrorResult)(typeof result === 'string' && !hasLogs ? result : JSON.stringify(output, null, 2));
+        else {
+            return await remoteStainlessHandler({ reqContext, args });
         }
-        return (0, types_1.asTextContentResult)(output);
     };
     return { metadata, tool, handler };
 }
+const remoteStainlessHandler = async ({ reqContext, args, }) => {
+    const code = args.code;
+    const intent = args.intent;
+    const client = reqContext.client;
+    const codeModeEndpoint = (0, util_1.readEnv)('CODE_MODE_ENDPOINT_URL') ?? 'https://api.stainless.com/api/ai/code-tool';
+    // Setting a Stainless API key authenticates requests to the code tool endpoint.
+    const res = await fetch(codeModeEndpoint, {
+        method: 'POST',
+        headers: {
+            ...(reqContext.stainlessApiKey && { Authorization: reqContext.stainlessApiKey }),
+            'Content-Type': 'application/json',
+            client_envs: JSON.stringify({
+                ZAVUDEV_API_KEY: (0, util_1.requireValue)((0, util_1.readEnv)('ZAVUDEV_API_KEY') ?? client.apiKey, 'set ZAVUDEV_API_KEY environment variable or provide apiKey client option'),
+                ZAVUDEV_BASE_URL: (0, util_1.readEnv)('ZAVUDEV_BASE_URL') ?? client.baseURL ?? undefined,
+            }),
+        },
+        body: JSON.stringify({
+            project_name: 'zavudev',
+            code,
+            intent,
+            client_opts: {},
+        }),
+    });
+    if (!res.ok) {
+        throw new Error(`${res.status}: ${res.statusText} error when trying to contact Code Tool server. Details: ${await res.text()}`);
+    }
+    const { is_error, result, log_lines, err_lines } = (await res.json());
+    const hasLogs = log_lines.length > 0 || err_lines.length > 0;
+    const output = {
+        result,
+        ...(log_lines.length > 0 && { log_lines }),
+        ...(err_lines.length > 0 && { err_lines }),
+    };
+    if (is_error) {
+        return (0, types_1.asErrorResult)(typeof result === 'string' && !hasLogs ? result : JSON.stringify(output, null, 2));
+    }
+    return (0, types_1.asTextContentResult)(output);
+};
+const localDenoHandler = async ({ reqContext, args, }) => {
+    const client = reqContext.client;
+    const baseURLHostname = new URL(client.baseURL).hostname;
+    const { code } = args;
+    let denoPath;
+    const packageRoot = node_path_1.default.resolve(node_path_1.default.dirname(code_tool_paths_cjs_1.workerPath), '..');
+    const packageNodeModulesPath = node_path_1.default.resolve(packageRoot, 'node_modules');
+    // Check if deno is in PATH
+    const { execSync } = await Promise.resolve().then(() => __importStar(require('node:child_process')));
+    try {
+        execSync('command -v deno', { stdio: 'ignore' });
+        denoPath = 'deno';
+    }
+    catch {
+        try {
+            // Use deno binary in node_modules if it's found
+            const denoNodeModulesPath = node_path_1.default.resolve(packageNodeModulesPath, 'deno', 'bin.cjs');
+            await node_fs_1.default.promises.access(denoNodeModulesPath, node_fs_1.default.constants.X_OK);
+            denoPath = denoNodeModulesPath;
+        }
+        catch {
+            return (0, types_1.asErrorResult)('Deno is required for code execution but was not found. ' +
+                'Install it from https://deno.land or run: npm install deno');
+        }
+    }
+    const allowReadPaths = [
+        'code-tool-worker.mjs',
+        `${code_tool_paths_cjs_1.workerPath.replace(/([\/\\]node_modules)[\/\\].+$/, '$1')}/`,
+        packageRoot,
+    ];
+    // Follow symlinks in node_modules to allow read access to workspace-linked packages
+    try {
+        const sdkPkgName = '@zavudev/sdk';
+        const sdkDir = node_path_1.default.resolve(packageNodeModulesPath, sdkPkgName);
+        const realSdkDir = node_fs_1.default.realpathSync(sdkDir);
+        if (realSdkDir !== sdkDir) {
+            allowReadPaths.push(realSdkDir);
+        }
+    }
+    catch {
+        // Ignore if symlink resolution fails
+    }
+    const allowRead = allowReadPaths.join(',');
+    const worker = await (0, deno_http_worker_1.newDenoHTTPWorker)(node_url_1.default.pathToFileURL(code_tool_paths_cjs_1.workerPath), {
+        denoExecutable: denoPath,
+        runFlags: [
+            `--node-modules-dir=manual`,
+            `--allow-read=${allowRead}`,
+            `--allow-net=${baseURLHostname}`,
+            // Allow environment variables because instantiating the client will try to read from them,
+            // even though they are not set.
+            '--allow-env',
+        ],
+        printOutput: true,
+        spawnOptions: {
+            cwd: node_path_1.default.dirname(code_tool_paths_cjs_1.workerPath),
+        },
+    });
+    try {
+        const resp = await new Promise((resolve, reject) => {
+            worker.addEventListener('exit', (exitCode) => {
+                reject(new Error(`Worker exited with code ${exitCode}`));
+            });
+            const opts = {
+                baseURL: client.baseURL,
+                apiKey: client.apiKey,
+                defaultHeaders: {
+                    'X-Stainless-MCP': 'true',
+                },
+            };
+            const req = worker.request('http://localhost', {
+                headers: {
+                    'content-type': 'application/json',
+                },
+                method: 'POST',
+            }, (resp) => {
+                const body = [];
+                resp.on('error', (err) => {
+                    reject(err);
+                });
+                resp.on('data', (chunk) => {
+                    body.push(chunk);
+                });
+                resp.on('end', () => {
+                    resolve(new Response(Buffer.concat(body).toString(), {
+                        status: resp.statusCode ?? 200,
+                        headers: resp.headers,
+                    }));
+                });
+            });
+            const body = JSON.stringify({
+                opts,
+                code,
+            });
+            req.write(body, (err) => {
+                if (err != null) {
+                    reject(err);
+                }
+            });
+            req.end();
+        });
+        if (resp.status === 200) {
+            const { result, log_lines, err_lines } = (await resp.json());
+            const returnOutput = result == null ? null : ({
+                type: 'text',
+                text: typeof result === 'string' ? result : JSON.stringify(result),
+            });
+            const logOutput = log_lines.length === 0 ?
+                null
+                : {
+                    type: 'text',
+                    text: log_lines.join('\n'),
+                };
+            const errOutput = err_lines.length === 0 ?
+                null
+                : {
+                    type: 'text',
+                    text: 'Error output:\n' + err_lines.join('\n'),
+                };
+            return {
+                content: [returnOutput, logOutput, errOutput].filter((block) => block !== null),
+            };
+        }
+        else {
+            const { result, log_lines, err_lines } = (await resp.json());
+            const messageOutput = result == null ? null : ({
+                type: 'text',
+                text: typeof result === 'string' ? result : JSON.stringify(result),
+            });
+            const logOutput = log_lines.length === 0 ?
+                null
+                : {
+                    type: 'text',
+                    text: log_lines.join('\n'),
+                };
+            const errOutput = err_lines.length === 0 ?
+                null
+                : {
+                    type: 'text',
+                    text: 'Error output:\n' + err_lines.join('\n'),
+                };
+            return {
+                content: [messageOutput, logOutput, errOutput].filter((block) => block !== null),
+                isError: true,
+            };
+        }
+    }
+    finally {
+        worker.terminate();
+    }
+};
 //# sourceMappingURL=code-tool.js.map

package/code-tool.js.map

@@ -1 +1 @@
-{"version":3,"file":"code-tool.js","sourceRoot":"","sources":["src/code-tool.ts"],"names":[],"mappings":";AAAA,sFAAsF;;AAsCtF,4BA2FC;AA/HD,sCAAgG;AAEhG,wCAAiD;AAKjD,MAAM,MAAM,GAAG;;;;;;;;;;;;;;;;;;uGAkBwF,CAAC;AAExG;;;;;;;;GAQG;AACH,SAAgB,QAAQ,CAAC,MAAmD;IAC1E,MAAM,QAAQ,GAAa,EAAE,QAAQ,EAAE,KAAK,EAAE,SAAS,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;IAC7E,MAAM,IAAI,GAAS;QACjB,IAAI,EAAE,SAAS;QACf,WAAW,EAAE,MAAM;QACnB,WAAW,EAAE;YACX,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,IAAI,EAAE;oBACJ,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,kBAAkB;iBAChC;gBACD,MAAM,EAAE;oBACN,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,iEAAiE;iBAC/E;aACF;YACD,QAAQ,EAAE,CAAC,MAAM,CAAC;SACnB;KACF,CAAC;IACF,MAAM,OAAO,GAAG,KAAK,EAAE,MAAe,EAAE,IAAS,EAA2B,EAAE;QAC5E,MAAM,IAAI,GAAG,IAAI,CAAC,IAAc,CAAC;QACjC,MAAM,MAAM,GAAG,IAAI,CAAC,MAA4B,CAAC;QAEjD,uEAAuE;QACvE,EAAE;QACF,gFAAgF;QAChF,yFAAyF;QACzF,0FAA0F;QAC1F,IAAI,MAAM,CAAC,cAAc,EAAE,CAAC;YAC1B,MAAM,cAAc,GAAG,MAAM,CAAC,cAAc,CAAC,MAAM,CAAC,CAAC,MAAM,EAAE,EAAE,CAC7D,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,kBAAkB,CAAC,CACzC,CAAC;YACF,IAAI,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAC9B,OAAO,IAAA,qBAAa,EAClB,mGAAmG,cAAc;qBAC9G,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,kBAAkB,CAAC;qBAChC,IAAI,CAAC,IAAI,CAAC,EAAE,CAChB,CAAC;YACJ,CAAC;QACH,CAAC;QAED,sFAAsF;QACtF,sFAAsF;QACtF,MAAM,eAAe,GAAG,IAAA,gBAAO,EAAC,mBAAmB,CAAC,CAAC;QACrD,MAAM,gBAAgB,GACpB,IAAA,gBAAO,EAAC,wBAAwB,CAAC,IAAI,4CAA4C,CAAC;QAEpF,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,gBAAgB,EAAE;YACxC,MAAM,EAAE,MAAM;YACd,OAAO,EAAE;gBACP,GAAG,CAAC,eAAe,IAAI,EAAE,aAAa,EAAE,eAAe,EAAE,CAAC;gBAC1D,cAAc,EAAE,kBAAkB;gBAClC,WAAW,EAAE,IAAI,CAAC,SAAS,CAAC;oBAC1B,eAAe,EAAE,IAAA,qBAAY,EAC3B,IAAA,gBAAO,EAAC,iBAAiB,CAAC,IAAI,MAAM,CAAC,MAAM,EAC3C,0EAA0E,CAC3E;oBACD,gBAAgB,EAAE,IAAA,gBAAO,EAAC,kBAAkB,CAAC,IAAI,MAAM,CAAC,OAAO,IAAI,SAAS;iBAC7E,CAAC;aACH;YACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;gBACnB,YAAY,EAAE,SAAS;gBACvB,IAAI;gBACJ,MAAM;gBACN,WAAW,EAAE,EAAE;aACM,CAAC;SACzB,CAAC,CAAC;QAEH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;YACZ,MAAM,IAAI,KAAK,CACb,GAAG,GAAG,CAAC,MAAM,KACX,GAAG,CAAC,UACN,4DAA4D,MAAM,GAAG,CAAC,IAAI,EAAE,EAAE,CAC/E,CAAC;QACJ,CAAC;QAED,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,GAAG,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,CAAiB,CAAC;QACtF,MAAM,OAAO,GAAG,SAAS,CAAC,MAAM,GAAG,CAAC,IAAI,SAAS,CAAC,MAAM,GAAG,CAAC,CAAC;QAC7D,MAAM,MAAM,GAAG;YACb,MAAM;YACN,GAAG,CAAC,SAAS,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,SAAS,EAAE,CAAC;YAC1C,GAAG,CAAC,SAAS,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,SAAS,EAAE,CAAC;SAC3C,CAAC;QACF,IAAI,QAAQ,EAAE,CAAC;YACb,OAAO,IAAA,qBAAa,EAAC,OAAO,MAAM,KAAK,QAAQ,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAC1G,CAAC;QACD,OAAO,IAAA,2BAAmB,EAAC,MAAM,CAAC,CAAC;IACrC,CAAC,CAAC;IAEF,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,OAAO,EAAE,CAAC;AACrC,CAAC"}
+{"version":3,"file":"code-tool.js","sourceRoot":"","sources":["src/code-tool.ts"],"names":[],"mappings":";AAAA,sFAAsF;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA0DtF,4BA2DC;AAnHD,sDAAyB;AACzB,0DAA6B;AAC7B,wDAA2B;AAC3B,gEAA8D;AAC9D,+DAAmD;AACnD,sCAQiB;AAEjB,oCAA+C;AAM/C,MAAM,MAAM,GAAG;;;;;;;;;;;;;;;;;;;;gGAoBiF,CAAC;AAEjG;;;;;;;;;;;;GAYG;AACH,SAAgB,QAAQ,CAAC,EACvB,cAAc,EACd,iBAAiB,GAIlB;IACC,MAAM,QAAQ,GAAa,EAAE,QAAQ,EAAE,KAAK,EAAE,SAAS,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;IAC7E,MAAM,IAAI,GAAS;QACjB,IAAI,EAAE,SAAS;QACf,WAAW,EAAE,MAAM;QACnB,WAAW,EAAE;YACX,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,IAAI,EAAE;oBACJ,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,kBAAkB;iBAChC;gBACD,MAAM,EAAE;oBACN,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,iEAAiE;iBAC/E;aACF;YACD,QAAQ,EAAE,CAAC,MAAM,CAAC;SACnB;KACF,CAAC;IAEF,MAAM,OAAO,GAAG,KAAK,EAAE,EACrB,UAAU,EACV,IAAI,GAIL,EAA2B,EAAE;QAC5B,MAAM,IAAI,GAAG,IAAI,CAAC,IAAc,CAAC;QACjC,uEAAuE;QACvE,EAAE;QACF,gFAAgF;QAChF,yFAAyF;QACzF,0FAA0F;QAC1F,IAAI,cAAc,EAAE,CAAC;YACnB,MAAM,cAAc,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,kBAAkB,CAAC,CAAC,CAAC;YACnG,IAAI,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAC9B,OAAO,IAAA,qBAAa,EAClB,mGAAmG,cAAc;qBAC9G,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,kBAAkB,CAAC;qBAChC,IAAI,CAAC,IAAI,CAAC,EAAE,CAChB,CAAC;YACJ,CAAC;QACH,CAAC;QAED,IAAI,iBAAiB,KAAK,OAAO,EAAE,CAAC;YAClC,OAAO,MAAM,gBAAgB,CAAC,EAAE,UAAU,EAAE,IAAI,EAAE,CAAC,CAAC;QACtD,CAAC;aAAM,CAAC;YACN,OAAO,MAAM,sBAAsB,CAAC,EAAE,UAAU,EAAE,IAAI,EAAE,CAAC,CAAC;QAC5D,CAAC;IACH,CAAC,CAAC;IAEF,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,OAAO,EAAE,CAAC;AACrC,CAAC;AAED,MAAM,sBAAsB,GAAG,KAAK,EAAE,EACpC,UAAU,EACV,IAAI,GAIL,EAA2B,EAAE;IAC5B,MAAM,IAAI,GAAG,IAAI,CAAC,IAAc,CAAC;IACjC,MAAM,MAAM,GAAG,IAAI,CAAC,MAA4B,CAAC;IACjD,MAAM,MAAM,GAAG,UAAU,CAAC,MAAM,CAAC;IAEjC,MAAM,gBAAgB,GAAG,IAAA,cAAO,EAAC,wBAAwB,CAAC,IAAI,4CAA4C,CAAC;IAE3G,gFAAgF;IAChF,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,gBAAgB,EAAE;QACxC,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,GAAG,CAAC,UAAU,CAAC,eAAe,IAAI,EAAE,aAAa,EAAE,UAAU,CAAC,eAAe,EAAE,CAAC;YAChF,cAAc,EAAE,kBAAkB;YAClC,WAAW,EAAE,IAAI,CAAC,SAAS,CAAC;gBAC1B,eAAe,EAAE,IAAA,mBAAY,EAC3B,IAAA,cAAO,EAAC,iBAAiB,CAAC,IAAI,MAAM,CAAC,MAAM,EAC3C,0EAA0E,CAC3E;gBACD,gBAAgB,EAAE,IAAA,cAAO,EAAC,kBAAkB,CAAC,IAAI,MAAM,CAAC,OAAO,IAAI,SAAS;aAC7E,CAAC;SACH;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;YACnB,YAAY,EAAE,SAAS;YACvB,IAAI;YACJ,MAAM;YACN,WAAW,EAAE,EAAE;SACM,CAAC;KACzB,CAAC,CAAC;IAEH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;QACZ,MAAM,IAAI,KAAK,CACb,GAAG,GAAG,CAAC,MAAM,KACX,GAAG,CAAC,UACN,4DAA4D,MAAM,GAAG,CAAC,IAAI,EAAE,EAAE,CAC/E,CAAC;IACJ,CAAC;IAED,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,GAAG,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,CAAiB,CAAC;IACtF,MAAM,OAAO,GAAG,SAAS,CAAC,MAAM,GAAG,CAAC,IAAI,SAAS,CAAC,MAAM,GAAG,CAAC,CAAC;IAC7D,MAAM,MAAM,GAAG;QACb,MAAM;QACN,GAAG,CAAC,SAAS,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,SAAS,EAAE,CAAC;QAC1C,GAAG,CAAC,SAAS,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,SAAS,EAAE,CAAC;KAC3C,CAAC;IACF,IAAI,QAAQ,EAAE,CAAC;QACb,OAAO,IAAA,qBAAa,EAAC,OAAO,MAAM,KAAK,QAAQ,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;IAC1G,CAAC;IACD,OAAO,IAAA,2BAAmB,EAAC,MAAM,CAAC,CAAC;AACrC,CAAC,CAAC;AAEF,MAAM,gBAAgB,GAAG,KAAK,EAAE,EAC9B,UAAU,EACV,IAAI,GAIL,EAA2B,EAAE;IAC5B,MAAM,MAAM,GAAG,UAAU,CAAC,MAAM,CAAC;IACjC,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,QAAQ,CAAC;IACzD,MAAM,EAAE,IAAI,EAAE,GAAG,IAAwB,CAAC;IAE1C,IAAI,QAAgB,CAAC;IAErB,MAAM,WAAW,GAAG,mBAAI,CAAC,OAAO,CAAC,mBAAI,CAAC,OAAO,CAAC,gCAAU,CAAC,EAAE,IAAI,CAAC,CAAC;IACjE,MAAM,sBAAsB,GAAG,mBAAI,CAAC,OAAO,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC;IAEzE,2BAA2B;IAC3B,MAAM,EAAE,QAAQ,EAAE,GAAG,wDAAa,oBAAoB,GAAC,CAAC;IACxD,IAAI,CAAC;QACH,QAAQ,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,CAAC;QACjD,QAAQ,GAAG,MAAM,CAAC;IACpB,CAAC;IAAC,MAAM,CAAC;QACP,IAAI,CAAC;YACH,gDAAgD;YAChD,MAAM,mBAAmB,GAAG,mBAAI,CAAC,OAAO,CAAC,sBAAsB,EAAE,MAAM,EAAE,SAAS,CAAC,CAAC;YACpF,MAAM,iBAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,mBAAmB,EAAE,iBAAE,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;YACjE,QAAQ,GAAG,mBAAmB,CAAC;QACjC,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,IAAA,qBAAa,EAClB,yDAAyD;gBACvD,4DAA4D,CAC/D,CAAC;QACJ,CAAC;IACH,CAAC;IAED,MAAM,cAAc,GAAG;QACrB,sBAAsB;QACtB,GAAG,gCAAU,CAAC,OAAO,CAAC,+BAA+B,EAAE,IAAI,CAAC,GAAG;QAC/D,WAAW;KACZ,CAAC;IAEF,oFAAoF;IACpF,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,cAAc,CAAC;QAClC,MAAM,MAAM,GAAG,mBAAI,CAAC,OAAO,CAAC,sBAAsB,EAAE,UAAU,CAAC,CAAC;QAChE,MAAM,UAAU,GAAG,iBAAE,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;QAC3C,IAAI,UAAU,KAAK,MAAM,EAAE,CAAC;YAC1B,cAAc,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QAClC,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,qCAAqC;IACvC,CAAC;IAED,MAAM,SAAS,GAAG,cAAc,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAE3C,MAAM,MAAM,GAAG,MAAM,IAAA,oCAAiB,EAAC,kBAAG,CAAC,aAAa,CAAC,gCAAU,CAAC,EAAE;QACpE,cAAc,EAAE,QAAQ;QACxB,QAAQ,EAAE;YACR,2BAA2B;YAC3B,gBAAgB,SAAS,EAAE;YAC3B,eAAe,eAAe,EAAE;YAChC,2FAA2F;YAC3F,gCAAgC;YAChC,aAAa;SACd;QACD,WAAW,EAAE,IAAI;QACjB,YAAY,EAAE;YACZ,GAAG,EAAE,mBAAI,CAAC,OAAO,CAAC,gCAAU,CAAC;SAC9B;KACF,CAAC,CAAC;IAEH,IAAI,CAAC;QACH,MAAM,IAAI,GAAG,MAAM,IAAI,OAAO,CAAW,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YAC3D,MAAM,CAAC,gBAAgB,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,EAAE;gBAC3C,MAAM,CAAC,IAAI,KAAK,CAAC,2BAA2B,QAAQ,EAAE,CAAC,CAAC,CAAC;YAC3D,CAAC,CAAC,CAAC;YAEH,MAAM,IAAI,GAAkB;gBAC1B,OAAO,EAAE,MAAM,CAAC,OAAO;gBACvB,MAAM,EAAE,MAAM,CAAC,MAAM;gBACrB,cAAc,EAAE;oBACd,iBAAiB,EAAE,MAAM;iBAC1B;aACF,CAAC;YAEF,MAAM,GAAG,GAAG,MAAM,CAAC,OAAO,CACxB,kBAAkB,EAClB;gBACE,OAAO,EAAE;oBACP,cAAc,EAAE,kBAAkB;iBACnC;gBACD,MAAM,EAAE,MAAM;aACf,EACD,CAAC,IAAI,EAAE,EAAE;gBACP,MAAM,IAAI,GAAiB,EAAE,CAAC;gBAC9B,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE;oBACvB,MAAM,CAAC,GAAG,CAAC,CAAC;gBACd,CAAC,CAAC,CAAC;gBACH,IAAI,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAK,EAAE,EAAE;oBACxB,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBACnB,CAAC,CAAC,CAAC;gBACH,IAAI,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE;oBAClB,OAAO,CACL,IAAI,QAAQ,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,QAAQ,EAAE,EAAE;wBAC3C,MAAM,EAAE,IAAI,CAAC,UAAU,IAAI,GAAG;wBAC9B,OAAO,EAAE,IAAI,CAAC,OAAc;qBAC7B,CAAC,CACH,CAAC;gBACJ,CAAC,CAAC,CAAC;YACL,CAAC,CACF,CAAC;YAEF,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC;gBAC1B,IAAI;gBACJ,IAAI;aACL,CAAC,CAAC;YAEH,GAAG,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,GAAG,EAAE,EAAE;gBACtB,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;oBAChB,MAAM,CAAC,GAAG,CAAC,CAAC;gBACd,CAAC;YACH,CAAC,CAAC,CAAC;YAEH,GAAG,CAAC,GAAG,EAAE,CAAC;QACZ,CAAC,CAAC,CAAC;QAEH,IAAI,IAAI,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;YACxB,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,GAAG,CAAC,MAAM,IAAI,CAAC,IAAI,EAAE,CAAiB,CAAC;YAC7E,MAAM,YAAY,GAChB,MAAM,IAAI,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CACtB;gBACE,IAAI,EAAE,MAAM;gBACZ,IAAI,EAAE,OAAO,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC;aACnE,CACF,CAAC;YACJ,MAAM,SAAS,GACb,SAAS,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC;gBACtB,IAAI;gBACN,CAAC,CAAC;oBACE,IAAI,EAAE,MAAM;oBACZ,IAAI,EAAE,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC;iBAC3B,CAAC;YACN,MAAM,SAAS,GACb,SAAS,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC;gBACtB,IAAI;gBACN,CAAC,CAAC;oBACE,IAAI,EAAE,MAAM;oBACZ,IAAI,EAAE,iBAAiB,GAAG,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC;iBAC/C,CAAC;YACN,OAAO;gBACL,OAAO,EAAE,CAAC,YAAY,EAAE,SAAS,EAAE,SAAS,CAAC,CAAC,MAAM,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,KAAK,IAAI,CAAC;aAChF,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,GAAG,CAAC,MAAM,IAAI,CAAC,IAAI,EAAE,CAAiB,CAAC;YAC7E,MAAM,aAAa,GACjB,MAAM,IAAI,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CACtB;gBACE,IAAI,EAAE,MAAM;gBACZ,IAAI,EAAE,OAAO,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC;aACnE,CACF,CAAC;YACJ,MAAM,SAAS,GACb,SAAS,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC;gBACtB,IAAI;gBACN,CAAC,CAAC;oBACE,IAAI,EAAE,MAAM;oBACZ,IAAI,EAAE,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC;iBAC3B,CAAC;YACN,MAAM,SAAS,GACb,SAAS,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC;gBACtB,IAAI;gBACN,CAAC,CAAC;oBACE,IAAI,EAAE,MAAM;oBACZ,IAAI,EAAE,iBAAiB,GAAG,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC;iBAC/C,CAAC;YACN,OAAO;gBACL,OAAO,EAAE,CAAC,aAAa,EAAE,SAAS,EAAE,SAAS,CAAC,CAAC,MAAM,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,KAAK,IAAI,CAAC;gBAChF,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;IACH,CAAC;YAAS,CAAC;QACT,MAAM,CAAC,SAAS,EAAE,CAAC;IACrB,CAAC;AACH,CAAC,CAAC"}

package/code-tool.mjs

@@ -1,9 +1,14 @@
 // File generated from our OpenAPI spec by Stainless. See CONTRIBUTING.md for details.
-import { asErrorResult, asTextContentResult } from "./types.mjs";
-import { readEnv, requireValue } from "./server.mjs";
+import fs from 'node:fs';
+import path from 'node:path';
+import url from 'node:url';
+import { newDenoHTTPWorker } from '@valtown/deno-http-worker';
+import { workerPath } from './code-tool-paths.cjs';
+import { asErrorResult, asTextContentResult, } from "./types.mjs";
+import { readEnv, requireValue } from "./util.mjs";
 const prompt = `Runs JavaScript code to interact with the Zavudev API.
 
-You are a skilled programmer writing code to interface with the service.
+You are a skilled TypeScript programmer writing code to interface with the service.
 Define an async function named "run" that takes a single parameter of an initialized SDK client and it will be run.
 For example:
 
@@ -19,7 +24,9 @@ You will be returned anything that your function returns, plus the results of an
 Do not add try-catch blocks for single API calls. The tool will handle errors for you.
 Do not add comments unless necessary for generating better code.
 Code will run in a container, and cannot interact with the network outside of the given SDK client.
-Variables will not persist between calls, so make sure to return or log any data you might need later.`;
+Variables will not persist between calls, so make sure to return or log any data you might need later.
+Remember that you are writing TypeScript code, so you need to be careful with your types.
+Always type dynamic key-value stores explicitly as Record<string, YourValueType> instead of {}.`;
 /**
  * A tool that runs code against a copy of the SDK.
  *
@@ -27,9 +34,13 @@ Variables will not persist between calls, so make sure to return or log any data
  * we expose a single tool that can be used to search for endpoints by name, resource, operation, or tag, and then
  * a generic endpoint that can be used to invoke any endpoint with the provided arguments.
  *
- * @param endpoints - The endpoints to include in the list.
+ * @param blockedMethods - The methods to block for code execution. Blocking is done by simple string
+ * matching, so it is not secure against obfuscation. For stronger security, block in the downstream API
+ * with limited API keys.
+ * @param codeExecutionMode - Whether to execute code in a local Deno environment or in a remote
+ * sandbox environment hosted by Stainless.
  */
-export function codeTool(params) {
+export function codeTool({ blockedMethods, codeExecutionMode, }) {
     const metadata = { resource: 'all', operation: 'write', tags: [] };
     const tool = {
         name: 'execute',
@@ -49,58 +60,217 @@ export function codeTool(params) {
             required: ['code'],
         },
     };
-    const handler = async (client, args) => {
+    const handler = async ({ reqContext, args, }) => {
         const code = args.code;
-        const intent = args.intent;
         // Do very basic blocking of code that includes forbidden method names.
         //
         // WARNING: This is not secure against obfuscation and other evasion methods. If
         // stronger security blocks are required, then these should be enforced in the downstream
         // API (e.g., by having users call the MCP server with API keys with limited permissions).
-        if (params.blockedMethods) {
-            const blockedMatches = params.blockedMethods.filter((method) => code.includes(method.fullyQualifiedName));
+        if (blockedMethods) {
+            const blockedMatches = blockedMethods.filter((method) => code.includes(method.fullyQualifiedName));
             if (blockedMatches.length > 0) {
                 return asErrorResult(`The following methods have been blocked by the MCP server and cannot be used in code execution: ${blockedMatches
                     .map((m) => m.fullyQualifiedName)
                     .join(', ')}`);
             }
         }
-        // this is not required, but passing a Stainless API key for the matching project_name
-        // will allow you to run code-mode queries against non-published versions of your SDK.
-        const stainlessAPIKey = readEnv('STAINLESS_API_KEY');
-        const codeModeEndpoint = readEnv('CODE_MODE_ENDPOINT_URL') ?? 'https://api.stainless.com/api/ai/code-tool';
-        const res = await fetch(codeModeEndpoint, {
-            method: 'POST',
-            headers: {
-                ...(stainlessAPIKey && { Authorization: stainlessAPIKey }),
-                'Content-Type': 'application/json',
-                client_envs: JSON.stringify({
-                    ZAVUDEV_API_KEY: requireValue(readEnv('ZAVUDEV_API_KEY') ?? client.apiKey, 'set ZAVUDEV_API_KEY environment variable or provide apiKey client option'),
-                    ZAVUDEV_BASE_URL: readEnv('ZAVUDEV_BASE_URL') ?? client.baseURL ?? undefined,
-                }),
-            },
-            body: JSON.stringify({
-                project_name: 'zavudev',
-                code,
-                intent,
-                client_opts: {},
-            }),
-        });
-        if (!res.ok) {
-            throw new Error(`${res.status}: ${res.statusText} error when trying to contact Code Tool server. Details: ${await res.text()}`);
+        if (codeExecutionMode === 'local') {
+            return await localDenoHandler({ reqContext, args });
         }
-        const { is_error, result, log_lines, err_lines } = (await res.json());
-        const hasLogs = log_lines.length > 0 || err_lines.length > 0;
-        const output = {
-            result,
-            ...(log_lines.length > 0 && { log_lines }),
-            ...(err_lines.length > 0 && { err_lines }),
-        };
-        if (is_error) {
-            return asErrorResult(typeof result === 'string' && !hasLogs ? result : JSON.stringify(output, null, 2));
+        else {
+            return await remoteStainlessHandler({ reqContext, args });
         }
-        return asTextContentResult(output);
     };
     return { metadata, tool, handler };
 }
+const remoteStainlessHandler = async ({ reqContext, args, }) => {
+    const code = args.code;
+    const intent = args.intent;
+    const client = reqContext.client;
+    const codeModeEndpoint = readEnv('CODE_MODE_ENDPOINT_URL') ?? 'https://api.stainless.com/api/ai/code-tool';
+    // Setting a Stainless API key authenticates requests to the code tool endpoint.
+    const res = await fetch(codeModeEndpoint, {
+        method: 'POST',
+        headers: {
+            ...(reqContext.stainlessApiKey && { Authorization: reqContext.stainlessApiKey }),
+            'Content-Type': 'application/json',
+            client_envs: JSON.stringify({
+                ZAVUDEV_API_KEY: requireValue(readEnv('ZAVUDEV_API_KEY') ?? client.apiKey, 'set ZAVUDEV_API_KEY environment variable or provide apiKey client option'),
+                ZAVUDEV_BASE_URL: readEnv('ZAVUDEV_BASE_URL') ?? client.baseURL ?? undefined,
+            }),
+        },
+        body: JSON.stringify({
+            project_name: 'zavudev',
+            code,
+            intent,
+            client_opts: {},
+        }),
+    });
+    if (!res.ok) {
+        throw new Error(`${res.status}: ${res.statusText} error when trying to contact Code Tool server. Details: ${await res.text()}`);
+    }
+    const { is_error, result, log_lines, err_lines } = (await res.json());
+    const hasLogs = log_lines.length > 0 || err_lines.length > 0;
+    const output = {
+        result,
+        ...(log_lines.length > 0 && { log_lines }),
+        ...(err_lines.length > 0 && { err_lines }),
+    };
+    if (is_error) {
+        return asErrorResult(typeof result === 'string' && !hasLogs ? result : JSON.stringify(output, null, 2));
+    }
+    return asTextContentResult(output);
+};
+const localDenoHandler = async ({ reqContext, args, }) => {
+    const client = reqContext.client;
+    const baseURLHostname = new URL(client.baseURL).hostname;
+    const { code } = args;
+    let denoPath;
+    const packageRoot = path.resolve(path.dirname(workerPath), '..');
+    const packageNodeModulesPath = path.resolve(packageRoot, 'node_modules');
+    // Check if deno is in PATH
+    const { execSync } = await import('node:child_process');
+    try {
+        execSync('command -v deno', { stdio: 'ignore' });
+        denoPath = 'deno';
+    }
+    catch {
+        try {
+            // Use deno binary in node_modules if it's found
+            const denoNodeModulesPath = path.resolve(packageNodeModulesPath, 'deno', 'bin.cjs');
+            await fs.promises.access(denoNodeModulesPath, fs.constants.X_OK);
+            denoPath = denoNodeModulesPath;
+        }
+        catch {
+            return asErrorResult('Deno is required for code execution but was not found. ' +
+                'Install it from https://deno.land or run: npm install deno');
+        }
+    }
+    const allowReadPaths = [
+        'code-tool-worker.mjs',
+        `${workerPath.replace(/([\/\\]node_modules)[\/\\].+$/, '$1')}/`,
+        packageRoot,
+    ];
+    // Follow symlinks in node_modules to allow read access to workspace-linked packages
+    try {
+        const sdkPkgName = '@zavudev/sdk';
+        const sdkDir = path.resolve(packageNodeModulesPath, sdkPkgName);
+        const realSdkDir = fs.realpathSync(sdkDir);
+        if (realSdkDir !== sdkDir) {
+            allowReadPaths.push(realSdkDir);
+        }
+    }
+    catch {
+        // Ignore if symlink resolution fails
+    }
+    const allowRead = allowReadPaths.join(',');
+    const worker = await newDenoHTTPWorker(url.pathToFileURL(workerPath), {
+        denoExecutable: denoPath,
+        runFlags: [
+            `--node-modules-dir=manual`,
+            `--allow-read=${allowRead}`,
+            `--allow-net=${baseURLHostname}`,
+            // Allow environment variables because instantiating the client will try to read from them,
+            // even though they are not set.
+            '--allow-env',
+        ],
+        printOutput: true,
+        spawnOptions: {
+            cwd: path.dirname(workerPath),
+        },
+    });
+    try {
+        const resp = await new Promise((resolve, reject) => {
+            worker.addEventListener('exit', (exitCode) => {
+                reject(new Error(`Worker exited with code ${exitCode}`));
+            });
+            const opts = {
+                baseURL: client.baseURL,
+                apiKey: client.apiKey,
+                defaultHeaders: {
+                    'X-Stainless-MCP': 'true',
+                },
+            };
+            const req = worker.request('http://localhost', {
+                headers: {
+                    'content-type': 'application/json',
+                },
+                method: 'POST',
+            }, (resp) => {
+                const body = [];
+                resp.on('error', (err) => {
+                    reject(err);
+                });
+                resp.on('data', (chunk) => {
+                    body.push(chunk);
+                });
+                resp.on('end', () => {
+                    resolve(new Response(Buffer.concat(body).toString(), {
+                        status: resp.statusCode ?? 200,
+                        headers: resp.headers,
+                    }));
+                });
+            });
+            const body = JSON.stringify({
+                opts,
+                code,
+            });
+            req.write(body, (err) => {
+                if (err != null) {
+                    reject(err);
+                }
+            });
+            req.end();
+        });
+        if (resp.status === 200) {
+            const { result, log_lines, err_lines } = (await resp.json());
+            const returnOutput = result == null ? null : ({
+                type: 'text',
+                text: typeof result === 'string' ? result : JSON.stringify(result),
+            });
+            const logOutput = log_lines.length === 0 ?
+                null
+                : {
+                    type: 'text',
+                    text: log_lines.join('\n'),
+                };
+            const errOutput = err_lines.length === 0 ?
+                null
+                : {
+                    type: 'text',
+                    text: 'Error output:\n' + err_lines.join('\n'),
+                };
+            return {
+                content: [returnOutput, logOutput, errOutput].filter((block) => block !== null),
+            };
+        }
+        else {
+            const { result, log_lines, err_lines } = (await resp.json());
+            const messageOutput = result == null ? null : ({
+                type: 'text',
+                text: typeof result === 'string' ? result : JSON.stringify(result),
+            });
+            const logOutput = log_lines.length === 0 ?
+                null
+                : {
+                    type: 'text',
+                    text: log_lines.join('\n'),
+                };
+            const errOutput = err_lines.length === 0 ?
+                null
+                : {
+                    type: 'text',
+                    text: 'Error output:\n' + err_lines.join('\n'),
+                };
+            return {
+                content: [messageOutput, logOutput, errOutput].filter((block) => block !== null),
+                isError: true,
+            };
+        }
+    }
+    finally {
+        worker.terminate();
+    }
+};
 //# sourceMappingURL=code-tool.mjs.map