agentlang 0.10.1 → 0.10.3

package/README.md

@@ -1,4 +1,3 @@
-
 <div align="center">
 
 <p>
@@ -25,18 +24,20 @@
 <a href="https://github.com/agentlang-ai/agentlang/tree/main/example"><img src="https://img.shields.io/badge/Examples-Page-yellow?logo=homepage&logoColor=yellow&style=for-the-badge"></a>
 
 [![Node Version](https://img.shields.io/badge/node-%3E%3D20.0.0-brightgreen?logo=node.js)](https://nodejs.org) [![CI](https://github.com/agentlang-ai/agentlang/actions/workflows/ci.yml/badge.svg)](https://github.com/agentlang-ai/agentlang/actions/workflows/ci.yml)![License](https://img.shields.io/badge/License-Sustainable%20Use%20v1.0-blue.svg) [![npm downloads](https://img.shields.io/npm/dm/agentlang.svg)](https://www.npmjs.com/package/agentlang)
+
 <hr>
 
 ## Agentlang - Team as Code
+
 </div>
 
 Agentlang is a declarative DSL (built on TypeScript) for creating AI Agents and full-stack Agentic Apps. With Agentlang, you define, version, run, mentor, and monitor teams of AI agents, along with the app infrastructure they need: data model, workflows, RBAC, integrations, and UI. We refer to this approach - bringing together AI agent development and App development into a single coherent discipline - as Team-as-Code (our riff on IaC).
 
-* **For Devs and Non-Devs:** Code and vibe-code in your IDE, focusing on the business-logic of your app, not wiring. Alternatively, you can build, run, mentor and monitor your AI Team in Studio - our visual-builder (coming soon). Switch back-and-forth between the two modes seamlessly.
+- **For Devs and Non-Devs:** Code and vibe-code in your IDE, focusing on the business-logic of your app, not wiring. Alternatively, you can build, run, mentor and monitor your AI Team in Studio - our visual-builder (coming soon). Switch back-and-forth between the two modes seamlessly.
 
-* **Robust Integrations:** The Agentlang runtime ships with native integrations for LLMs, databases, vector DBs, and auth providers. Our connector architecture is built for the enterprise, with a rapidly growing catalog for systems like Salesforce, ServiceNow, HubSpot, Snowflake, and more. Also, because Agentlang compiles to Node.js (and runs in the browser), you can use any existing JavaScript library out of the box.
+- **Robust Integrations:** The Agentlang runtime ships with native integrations for LLMs, databases, vector DBs, and auth providers. Our connector architecture is built for the enterprise, with a rapidly growing catalog for systems like Salesforce, ServiceNow, HubSpot, Snowflake, and more. Also, because Agentlang compiles to Node.js (and runs in the browser), you can use any existing JavaScript library out of the box.
 
-* **Production-grade**: Under the hood, it’s all modern TypeScript—strong typing, tooling, testing, and CI/CD-friendly workflows—built for enterprise-class reliability, governance, and scale.
+- **Production-grade**: Under the hood, it’s all modern TypeScript—strong typing, tooling, testing, and CI/CD-friendly workflows—built for enterprise-class reliability, governance, and scale.
 
 Agentlang introduces two foundational innovations: [Agentic Reliability Modeling](#-agentic-reliability-modeling) and [AgentLang Ontology](#agentlang-ontology)
 
@@ -132,7 +133,6 @@ workflow ticketInProgress {
 }
 ```
 
-
 ### ✨ First-class AI Agents
 
 Agents and many concepts agents use are built-in language constructs.
@@ -328,8 +328,8 @@ What makes this model special is how seamlessly an agent can interact with it
 
 To get started with Agentlang Ontology, please see the [Agentlang Tutorial](https://docs.fractl.io/app) or explore the following example applications:
 
- * [Car Dealership](https://github.com/agentlang-ai/agentlang/tree/main/example/car_dealership)
- * [Customer Support System](https://github.com/agentlang-ai/agentlang/tree/main/example/customer_support_system)
+- [Car Dealership](https://github.com/agentlang-ai/agentlang/tree/main/example/car_dealership)
+- [Customer Support System](https://github.com/agentlang-ai/agentlang/tree/main/example/customer_support_system)
 
 ## 🚀 Getting Started
 
@@ -363,14 +363,7 @@ For contributors who want to build and develop Agentlang itself:
 ```shell
 # Install dependencies
 npm install
-
-OR
-
-# Install pnpm: https://pnpm.io/installation
-# Use pnpm
-pnpm install
 ```
-**Note**: If pnpm shows build script warnings, run `pnpm approve-builds` and approve esbuild and sqlite3.
 
 ### ⚡ Build
 

package/out/api/http.d.ts

@@ -1,4 +1,8 @@
+import { Express } from 'express';
+import { InstanceAttributes } from '../runtime/module.js';
 import { ApplicationSpec } from '../runtime/loader.js';
 import { Config } from '../runtime/state.js';
+export declare function createApp(appSpec: ApplicationSpec, config?: Config): Promise<Express>;
 export declare function startServer(appSpec: ApplicationSpec, port: number, host?: string, config?: Config): Promise<void>;
+export declare function patternFromAttributes(moduleName: string, recName: string, attrs: InstanceAttributes, entityFqName?: string): string;
 //# sourceMappingURL=http.d.ts.map

package/out/api/http.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"http.d.ts","sourceRoot":"","sources":["../../src/api/http.ts"],"names":[],"mappings":"AAwBA,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AA8BvD,OAAO,EAAE,MAAM,EAAE,MAAM,qBAAqB,CAAC;AAO7C,wBAAsB,WAAW,CAC/B,OAAO,EAAE,eAAe,EACxB,IAAI,EAAE,MAAM,EACZ,IAAI,CAAC,EAAE,MAAM,EACb,MAAM,CAAC,EAAE,MAAM,iBAgQhB"}
+{"version":3,"file":"http.d.ts","sourceRoot":"","sources":["../../src/api/http.ts"],"names":[],"mappings":"AACA,OAAgB,EAAE,OAAO,EAAqB,MAAM,SAAS,CAAC;AAE9D,OAAO,EAKL,kBAAkB,EAcnB,MAAM,sBAAsB,CAAC;AAG9B,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AA8BvD,OAAO,EAAE,MAAM,EAAE,MAAM,qBAAqB,CAAC;AAc7C,wBAAsB,SAAS,CAAC,OAAO,EAAE,eAAe,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAqU3F;AAED,wBAAsB,WAAW,CAC/B,OAAO,EAAE,eAAe,EACxB,IAAI,EAAE,MAAM,EACZ,IAAI,CAAC,EAAE,MAAM,EACb,MAAM,CAAC,EAAE,MAAM,iBAyBhB;AAuDD,wBAAgB,qBAAqB,CACnC,UAAU,EAAE,MAAM,EAClB,OAAO,EAAE,MAAM,EACf,KAAK,EAAE,kBAAkB,EACzB,YAAY,CAAC,EAAE,MAAM,GACpB,MAAM,CA8BR"}

package/out/api/http.js

@@ -1,7 +1,7 @@
 import chalk from 'chalk';
 import express from 'express';
 import * as path from 'path';
-import { getAllChildRelationships, getAllEntityNames, getAllEventNames, Instance, isBetweenRelationship, makeInstance, objectAsInstanceAttributes, fetchModule, getModuleNames, Record, fetchRefTarget, getAttributeNames, getAllBetweenRelationshipNames, linkInstancesEvent, } from '../runtime/module.js';
+import { getAllChildRelationships, getAllEntityNames, getAllEventNames, Instance, isBetweenRelationship, getRelationship, makeInstance, objectAsInstanceAttributes, fetchModule, getModuleNames, Record, fetchRefTarget, getAttributeNames, getAllBetweenRelationshipNames, linkInstancesEvent, } from '../runtime/module.js';
 import { isNodeEnv } from '../utils/runtime.js';
 import { parseAndEvaluateStatement } from '../runtime/interpreter.js';
 import { logger } from '../runtime/logger.js';
@@ -11,7 +11,11 @@ import { escapeFqName, forceAsEscapedName, forceAsFqName, isString, isStringNume
 import { BadRequestError, isPathAttribute, PathAttributeNameQuery, setEntityEndpointsUpdater, setEventEndpointsUpdater, setRelationshipEndpointsUpdater, UnauthorisedError, } from '../runtime/defs.js';
 import { evaluate } from '../runtime/interpreter.js';
 import { findFileByFilename, createFileRecord, deleteFileRecord, } from '../runtime/modules/files.js';
-export async function startServer(appSpec, port, host, config) {
+import { getOAuthAuthorizeUrl, exchangeOAuthCode, getIntegrationAccessToken, } from '../runtime/integration-client.js';
+import * as XLSX from 'xlsx';
+import { objectToQueryPattern } from '../language/parser.js';
+export async function createApp(appSpec, config) {
+    var _a;
     const app = express();
     app.use(express.json());
     // Add CORS middleware
@@ -123,6 +127,85 @@ export async function startServer(appSpec, port, host, config) {
     app.get('/meta', (req, res) => {
         handleMetaGet(req, res);
     });
+    app.post('/agentlang/QueryAsCsv', (req, res) => {
+        handleQueryAsCsvPost(req, res);
+    });
+    app.post('/agentlang/QueryAsXlsx', (req, res) => {
+        handleQueryAsXlsxPost(req, res);
+    });
+    // --- Built-in OAuth proxy ---
+    if ((_a = config === null || config === void 0 ? void 0 : config.integrations) === null || _a === void 0 ? void 0 : _a.oauth) {
+        const connections = config.integrations.connections;
+        // Resolve provider key (e.g. 'google_drive') to integration entity name
+        // (e.g. 'google-drive') by extracting from the config path.
+        function resolveIntegrationName(provider) {
+            const entry = connections[provider];
+            if (!entry)
+                return provider;
+            const configPath = typeof entry === 'string' ? entry : entry.config;
+            if (!configPath)
+                return provider;
+            return configPath.split('/')[0];
+        }
+        app.get('/agentlang/oauth/authorize-url', async (req, res) => {
+            try {
+                const provider = req.query.provider;
+                const redirectUri = req.query.redirectUri;
+                if (!provider || !redirectUri) {
+                    res.status(400).json({ error: 'provider and redirectUri query params are required' });
+                    return;
+                }
+                if (!connections[provider]) {
+                    res.status(400).json({ error: `Unknown provider: ${provider}` });
+                    return;
+                }
+                const result = await getOAuthAuthorizeUrl(resolveIntegrationName(provider), redirectUri);
+                res.json(result);
+            }
+            catch (err) {
+                logger.error(`OAuth authorize-url error: ${err}`);
+                res.status(500).json({ error: err.message || 'Failed to get authorization URL' });
+            }
+        });
+        app.post('/agentlang/oauth/exchange', async (req, res) => {
+            try {
+                const { provider, code, state } = req.body;
+                if (!provider || !code || !state) {
+                    res.status(400).json({ error: 'provider, code, and state are required in request body' });
+                    return;
+                }
+                if (!connections[provider]) {
+                    res.status(400).json({ error: `Unknown provider: ${provider}` });
+                    return;
+                }
+                const result = await exchangeOAuthCode(resolveIntegrationName(provider), code, state);
+                res.json(result);
+            }
+            catch (err) {
+                logger.error(`OAuth exchange error: ${err}`);
+                res.status(500).json({ error: err.message || 'Failed to exchange authorization code' });
+            }
+        });
+        app.get('/agentlang/oauth/access-token', async (req, res) => {
+            try {
+                const provider = req.query.provider;
+                if (!provider) {
+                    res.status(400).json({ error: 'provider query param is required' });
+                    return;
+                }
+                if (!connections[provider]) {
+                    res.status(400).json({ error: `Unknown provider: ${provider}` });
+                    return;
+                }
+                const result = await getIntegrationAccessToken(resolveIntegrationName(provider));
+                res.json(result);
+            }
+            catch (err) {
+                logger.error(`OAuth access-token error: ${err}`);
+                res.status(500).json({ error: err.message || 'Failed to get access token' });
+            }
+        });
+    }
     if (isNodeEnv && upload && uploadDir) {
         app.post('/uploadFile', upload.single('file'), (req, res) => {
             handleFileUpload(req, res, config);
@@ -201,15 +284,6 @@ export async function startServer(appSpec, port, host, config) {
             addBetweenHandlers(moduleName, n);
         });
     });
-    const cb = () => {
-        console.log(chalk.green(`Application ${chalk.bold(appName + ' version ' + appVersion)} started on port ${chalk.bold(port)}`));
-    };
-    if (host) {
-        app.listen(port, host, cb);
-    }
-    else {
-        app.listen(port, cb);
-    }
     setEventEndpointsUpdater((moduleName) => {
         const m = fetchModule(moduleName);
         const eventNames = m.getEventNames();
@@ -231,6 +305,27 @@ export async function startServer(appSpec, port, host, config) {
             addBetweenHandlers(moduleName, n);
         });
     });
+    return app;
+}
+export async function startServer(appSpec, port, host, config) {
+    const app = await createApp(appSpec, config);
+    const appName = appSpec.name;
+    const appVersion = appSpec.version;
+    // Expose port and host on globalThis so resolver code (e.g. integration-manager's
+    // auth-resolver) can make self-referencing HTTP calls to the correct address.
+    globalThis.__agentlang_port = port;
+    if (host) {
+        globalThis.__agentlang_host = host;
+    }
+    const cb = () => {
+        console.log(chalk.green(`Application ${chalk.bold(appName + ' version ' + appVersion)} started on port ${chalk.bold(port)}`));
+    };
+    if (host) {
+        app.listen(port, host, cb);
+    }
+    else {
+        app.listen(port, cb);
+    }
 }
 function ok(res) {
     return (value) => {
@@ -256,19 +351,62 @@ function internalError(res) {
         res.status(statusFromErrorType(reason)).send(reason.message);
     };
 }
-function patternFromAttributes(moduleName, recName, attrs) {
+function formatAttrValue(v, n) {
+    let av = isString(v) ? `"${v}"` : v;
+    if (av instanceof Object) {
+        av = JSON.stringify(av);
+    }
+    if (isPathAttribute(n)) {
+        av = escapeSepInPath(av);
+    }
+    return `${n} ${av}`;
+}
+function buildChildPattern(otherFqName, childObj) {
+    const childAttrs = Object.entries(childObj)
+        .map(([k, v]) => {
+        let av;
+        if (isString(v)) {
+            av = `"${v}"`;
+        }
+        else if (v instanceof Object) {
+            av = JSON.stringify(v);
+        }
+        else {
+            av = v;
+        }
+        return `${k} ${av}`;
+    })
+        .join(', ');
+    return `{${otherFqName} {${childAttrs}}, @upsert}`;
+}
+export function patternFromAttributes(moduleName, recName, attrs, entityFqName) {
     const attrsStrs = new Array();
+    const relPatterns = new Array();
     attrs.forEach((v, n) => {
-        let av = isString(v) ? `"${v}"` : v;
-        if (av instanceof Object) {
-            av = JSON.stringify(av);
-        }
-        if (isPathAttribute(n)) {
-            av = escapeSepInPath(av);
+        if (entityFqName) {
+            try {
+                if (isBetweenRelationship(n, moduleName)) {
+                    const rel = getRelationship(n, moduleName);
+                    const otherFqName = rel.getParentFqName() === entityFqName ? rel.getChildFqName() : rel.getParentFqName();
+                    const children = Array.isArray(v) ? v : [v];
+                    const childPatterns = children
+                        .map((child) => buildChildPattern(otherFqName, child))
+                        .join(', ');
+                    relPatterns.push(`${n} [${childPatterns}]`);
+                    return;
+                }
+            }
+            catch (_a) {
+                // Not a relationship — fall through to normal attribute handling
+            }
         }
-        attrsStrs.push(`${n} ${av}`);
+        attrsStrs.push(formatAttrValue(v, n));
     });
-    return `{${moduleName}/${recName} { ${attrsStrs.join(',\n')} }}`;
+    const entityPat = `{${moduleName}/${recName} {${attrsStrs.join(',\n')}}`;
+    if (relPatterns.length > 0) {
+        return `${entityPat}, ${relPatterns.join(', ')}}`;
+    }
+    return `${entityPat}}`;
 }
 function normalizeRequestPath(path, moduleName) {
     if (path.length <= 1) {
@@ -318,7 +456,7 @@ async function handleEventPost(moduleName, eventName, req, res) {
             return;
         }
         const inst = makeInstance(moduleName, eventName, objectAsInstanceAttributes(req.body)).setAuthContext(sessionInfo);
-        evaluate(inst, ok(res)).catch(internalError(res));
+        evaluate(inst).then(ok(res)).catch(internalError(res));
     }
     catch (err) {
         logger.error(err);
@@ -332,9 +470,10 @@ async function handleEntityPost(moduleName, entityName, req, res) {
             res.status(401).send('Authorization required');
             return;
         }
+        const entityFqName = makeFqName(moduleName, entityName);
         const pattern = req.params.path
             ? createChildPattern(moduleName, entityName, req)
-            : patternFromAttributes(moduleName, entityName, objectAsInstanceAttributes(req.body));
+            : patternFromAttributes(moduleName, entityName, objectAsInstanceAttributes(req.body), entityFqName);
         parseAndEvaluateStatement(pattern, sessionInfo.userId).then(ok(res)).catch(internalError(res));
     }
     catch (err) {
@@ -368,16 +507,24 @@ const joinTags = new Map()
     .set('@joinOn', '@join')
     .set('@leftJoinOn', '@left_join')
     .set('@rightJoinOn', '@right_join');
+const paginationTags = new Set(['@limit', '@offset']);
 function objectAsAttributesPattern(entityFqName, obj) {
     const attrs = new Array();
     let joinType;
     let joinOnAttr;
+    const paginationParts = new Array();
     Object.keys(obj).forEach(key => {
         const s = obj[key];
         if (joinTags.has(key)) {
             joinType = joinTags.get(key);
             joinOnAttr = s;
         }
+        else if (paginationTags.has(key)) {
+            const n = parseInt(s, 10);
+            if (!Number.isNaN(n) && Number.isInteger(n) && n >= 0) {
+                paginationParts.push(`${key}(${n})`);
+            }
+        }
         else {
             let v = s;
             if (!s.startsWith('"')) {
@@ -405,13 +552,19 @@ function objectAsAttributesPattern(entityFqName, obj) {
         });
         const intoPat = `@into {${intoSpec.join(', ')}}`;
         joinOnAttr = reverseJoin ? splitRefs(joinOnAttr)[1] : joinOnAttr;
+        const paginationStr = paginationParts.length > 0 ? `,\n${paginationParts.join(',\n')}` : '';
         return [
-            `${pat},\n${joinType} ${targetEntity} {${targetAttr}? ${entityFqName}.${joinOnAttr}}, \n${intoPat}`,
+            `${pat},\n${joinType} ${targetEntity} {${targetAttr}? ${entityFqName}.${joinOnAttr}}, \n${intoPat}${paginationStr}`,
             hasQueryAttrs,
+            '',
         ];
     }
     else {
-        return [pat, hasQueryAttrs];
+        return [
+            pat,
+            hasQueryAttrs,
+            paginationParts.length > 0 ? `,\n${paginationParts.join(',\n')}` : '',
+        ];
     }
 }
 function queryPatternFromPath(path, req) {
@@ -423,9 +576,9 @@ function queryPatternFromPath(path, req) {
     const fqName = `${moduleName}/${entityName}`;
     if (parts.length == 2 && id === undefined) {
         if (req.query && Object.keys(req.query).length > 0) {
-            const [pat, hasQueryAttrs] = objectAsAttributesPattern(fqName, req.query);
+            const [pat, hasQueryAttrs, paginationPat] = objectAsAttributesPattern(fqName, req.query);
             const n = hasQueryAttrs ? fqName : `${fqName}?`;
-            return `{${n} ${pat}}`;
+            return `{${n} ${pat}${paginationPat}}`;
         }
         else {
             return `{${fqName}? {}}`;
@@ -578,6 +731,66 @@ function normalizedResult(r) {
         return r;
     }
 }
+/**
+ * Converts eval result to an array of flat row objects for CSV/XLSX.
+ * Handles:
+ * - [{ "EntityName": { "attr": "attrval" } }, ...] -> one row per item, columns = Entity + attrs
+ * - [{ "attr": "attrval" }, ...] -> one row per item, columns = attrs
+ * - [[ { "EntityName": { ... } }, ... ]] -> unwrap single outer array, then one row per inner item
+ */
+function evalResultToRows(data) {
+    let items;
+    if (Array.isArray(data) && data.length === 1 && Array.isArray(data[0])) {
+        items = data[0];
+    }
+    else {
+        items = Array.isArray(data) ? data : [data];
+    }
+    return items.map((item) => {
+        if (item === null || typeof item !== 'object') {
+            return { value: item };
+        }
+        if (Array.isArray(item)) {
+            return { value: item };
+        }
+        const obj = item;
+        const keys = Object.keys(obj);
+        if (keys.length === 1) {
+            const [k] = keys;
+            const v = obj[k];
+            if (v !== null &&
+                typeof v === 'object' &&
+                !Array.isArray(v) &&
+                Object.prototype.toString.call(v) === '[object Object]') {
+                return Object.assign({}, v);
+            }
+        }
+        return Object.assign({}, obj);
+    });
+}
+/**
+ * Ensures cell value is stringifiable for CSV/XLSX (nested objects/arrays become JSON string).
+ */
+function cellValue(val) {
+    if (val === null || val === undefined)
+        return '';
+    if (typeof val === 'object')
+        return JSON.stringify(val);
+    return val;
+}
+/**
+ * Parses column names from the first instance and returns an array-of-arrays
+ * for the sheet: first row = column names, following rows = data. This ensures
+ * CSV/XLSX output has proper headers (col1, col2, ...) not 0, 1, 2, ...
+ */
+function rowsToSheetAoa(rows) {
+    if (rows.length === 0)
+        return [];
+    const columns = Object.keys(rows[0]);
+    const headerRow = columns;
+    const dataRows = rows.map(row => columns.map(col => cellValue(row[col])));
+    return [headerRow, ...dataRows];
+}
 async function handleMetaGet(req, res) {
     try {
         const sessionInfo = await verifyAuth('', '', req.headers.authorization);
@@ -781,6 +994,74 @@ async function handleMetaGet(req, res) {
         res.status(500).send(err.toString());
     }
 }
+async function handleQueryAsCsvPost(req, res) {
+    var _a, _b;
+    try {
+        const sessionInfo = await verifyAuth('', '', req.headers.authorization);
+        if (isNoSession(sessionInfo)) {
+            res.status(401).send('Authorization required');
+            return;
+        }
+        const q = (_a = req.body) === null || _a === void 0 ? void 0 : _a.q;
+        if (q === undefined) {
+            res.status(400).send('Missing or invalid pattern');
+            return;
+        }
+        const qs = objectToQueryPattern(q);
+        const result = await parseAndEvaluateStatement(qs, sessionInfo.userId);
+        const normalized = normalizedResult(result);
+        const rows = evalResultToRows(normalized);
+        const aoa = rowsToSheetAoa(rows);
+        const worksheet = XLSX.utils.aoa_to_sheet(aoa);
+        const workbook = XLSX.utils.book_new();
+        XLSX.utils.book_append_sheet(workbook, worksheet, 'Sheet1');
+        const buffer = XLSX.write(workbook, { type: 'buffer', bookType: 'csv' });
+        const filename = `eval-${Date.now()}.csv`;
+        res.setHeader('Content-Disposition', `attachment; filename="${filename}"`);
+        res.contentType('text/csv');
+        res.send(buffer);
+    }
+    catch (err) {
+        logger.error(err);
+        if (!res.headersSent) {
+            res.status(statusFromErrorType(err)).send((_b = err === null || err === void 0 ? void 0 : err.message) !== null && _b !== void 0 ? _b : err === null || err === void 0 ? void 0 : err.toString());
+        }
+    }
+}
+async function handleQueryAsXlsxPost(req, res) {
+    var _a, _b;
+    try {
+        const sessionInfo = await verifyAuth('', '', req.headers.authorization);
+        if (isNoSession(sessionInfo)) {
+            res.status(401).send('Authorization required');
+            return;
+        }
+        const q = (_a = req.body) === null || _a === void 0 ? void 0 : _a.q;
+        if (q === undefined) {
+            res.status(400).send('Missing or invalid pattern');
+            return;
+        }
+        const qs = objectToQueryPattern(q);
+        const result = await parseAndEvaluateStatement(qs, sessionInfo.userId);
+        const normalized = normalizedResult(result);
+        const rows = evalResultToRows(normalized);
+        const aoa = rowsToSheetAoa(rows);
+        const worksheet = XLSX.utils.aoa_to_sheet(aoa);
+        const workbook = XLSX.utils.book_new();
+        XLSX.utils.book_append_sheet(workbook, worksheet, 'Sheet1');
+        const buffer = XLSX.write(workbook, { type: 'buffer', bookType: 'xlsx' });
+        const filename = `eval-${Date.now()}.xlsx`;
+        res.setHeader('Content-Disposition', `attachment; filename="${filename}"`);
+        res.contentType('application/vnd.openxmlformats-officedocument.spreadsheetml.sheet');
+        res.send(buffer);
+    }
+    catch (err) {
+        logger.error(err);
+        if (!res.headersSent) {
+            res.status(statusFromErrorType(err)).send((_b = err === null || err === void 0 ? void 0 : err.message) !== null && _b !== void 0 ? _b : err === null || err === void 0 ? void 0 : err.toString());
+        }
+    }
+}
 async function handleFileUpload(req, res, config) {
     var _a;
     try {