npm - ai - Versions diffs - 5.0.183 → 5.0.184 - Mend

ai 5.0.183 → 5.0.184

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (14) hide show

package/CHANGELOG.md +6 -0
package/dist/index.d.mts +11 -2
package/dist/index.d.ts +11 -2
package/dist/index.js +45 -21
package/dist/index.js.map +1 -1
package/dist/index.mjs +45 -21
package/dist/index.mjs.map +1 -1
package/dist/internal/index.d.mts +21 -1
package/dist/internal/index.d.ts +21 -1
package/dist/internal/index.js +29 -17
package/dist/internal/index.js.map +1 -1
package/dist/internal/index.mjs +29 -17
package/dist/internal/index.mjs.map +1 -1
package/package.json +1 -1

package/CHANGELOG.md CHANGED Viewed

@@ -1,5 +1,11 @@
 # ai
+## 5.0.184
+### Patch Changes
+- cb911d2: fix(ai): add allowSystemInMessages option and warn by default when system messages are found in prompt or messages
 ## 5.0.183
 ### Patch Changes

package/dist/index.d.mts CHANGED Viewed

@@ -116,6 +116,15 @@ type Prompt = {
   System message to include in the prompt. Can be used with `prompt` or `messages`.
      */
     system?: string;
+    /**
+     * Whether system messages are allowed in the `prompt` or `messages` fields.
+     *
+     * When disabled, system messages must be provided through the `system`
+     * option. When unset, system messages are allowed with a warning.
+     *
+     * @default undefined
+     */
+    allowSystemInMessages?: boolean;
 } & ({
     /**
 A prompt. It can be either a text prompt or a list of messages.
@@ -1090,7 +1099,7 @@ If set and supported by the model, calls will generate deterministic results.
 @returns
 A result object that contains the generated text, the results of the tool calls, and additional information.
  */
-declare function generateText<TOOLS extends ToolSet, OUTPUT = never, OUTPUT_PARTIAL = never>({ model: modelArg, tools, toolChoice, system, prompt, messages, maxRetries: maxRetriesArg, abortSignal, headers, stopWhen, experimental_output: output, experimental_telemetry: telemetry, providerOptions, experimental_activeTools, activeTools, experimental_prepareStep, prepareStep, experimental_repairToolCall: repairToolCall, experimental_download: download, experimental_context, _internal: { generateId, currentDate, }, onStepFinish, ...settings }: CallSettings & Prompt & {
+declare function generateText<TOOLS extends ToolSet, OUTPUT = never, OUTPUT_PARTIAL = never>({ model: modelArg, tools, toolChoice, system, prompt, messages, allowSystemInMessages, maxRetries: maxRetriesArg, abortSignal, headers, stopWhen, experimental_output: output, experimental_telemetry: telemetry, providerOptions, experimental_activeTools, activeTools, experimental_prepareStep, prepareStep, experimental_repairToolCall: repairToolCall, experimental_download: download, experimental_context, _internal: { generateId, currentDate, }, onStepFinish, ...settings }: CallSettings & Prompt & {
     /**
 The language model to use.
      */
@@ -1329,7 +1338,7 @@ If set and supported by the model, calls will generate deterministic results.
 @return
 A result object for accessing different stream types and additional information.
  */
-declare function streamText<TOOLS extends ToolSet, OUTPUT = never, PARTIAL_OUTPUT = never>({ model, tools, toolChoice, system, prompt, messages, maxRetries, abortSignal, headers, stopWhen, experimental_output: output, experimental_telemetry: telemetry, prepareStep, providerOptions, experimental_activeTools, activeTools, experimental_repairToolCall: repairToolCall, experimental_transform: transform, experimental_download: download, includeRawChunks, onChunk, onError, onFinish, onAbort, onStepFinish, experimental_context, _internal: { now, generateId, currentDate, }, ...settings }: CallSettings & Prompt & {
+declare function streamText<TOOLS extends ToolSet, OUTPUT = never, PARTIAL_OUTPUT = never>({ model, tools, toolChoice, system, prompt, messages, allowSystemInMessages, maxRetries, abortSignal, headers, stopWhen, experimental_output: output, experimental_telemetry: telemetry, prepareStep, providerOptions, experimental_activeTools, activeTools, experimental_repairToolCall: repairToolCall, experimental_transform: transform, experimental_download: download, includeRawChunks, onChunk, onError, onFinish, onAbort, onStepFinish, experimental_context, _internal: { now, generateId, currentDate, }, ...settings }: CallSettings & Prompt & {
     /**
 The language model to use.
      */

package/dist/index.d.ts CHANGED Viewed

@@ -116,6 +116,15 @@ type Prompt = {
   System message to include in the prompt. Can be used with `prompt` or `messages`.
      */
     system?: string;
+    /**
+     * Whether system messages are allowed in the `prompt` or `messages` fields.
+     *
+     * When disabled, system messages must be provided through the `system`
+     * option. When unset, system messages are allowed with a warning.
+     *
+     * @default undefined
+     */
+    allowSystemInMessages?: boolean;
 } & ({
     /**
 A prompt. It can be either a text prompt or a list of messages.
@@ -1090,7 +1099,7 @@ If set and supported by the model, calls will generate deterministic results.
 @returns
 A result object that contains the generated text, the results of the tool calls, and additional information.
  */
-declare function generateText<TOOLS extends ToolSet, OUTPUT = never, OUTPUT_PARTIAL = never>({ model: modelArg, tools, toolChoice, system, prompt, messages, maxRetries: maxRetriesArg, abortSignal, headers, stopWhen, experimental_output: output, experimental_telemetry: telemetry, providerOptions, experimental_activeTools, activeTools, experimental_prepareStep, prepareStep, experimental_repairToolCall: repairToolCall, experimental_download: download, experimental_context, _internal: { generateId, currentDate, }, onStepFinish, ...settings }: CallSettings & Prompt & {
+declare function generateText<TOOLS extends ToolSet, OUTPUT = never, OUTPUT_PARTIAL = never>({ model: modelArg, tools, toolChoice, system, prompt, messages, allowSystemInMessages, maxRetries: maxRetriesArg, abortSignal, headers, stopWhen, experimental_output: output, experimental_telemetry: telemetry, providerOptions, experimental_activeTools, activeTools, experimental_prepareStep, prepareStep, experimental_repairToolCall: repairToolCall, experimental_download: download, experimental_context, _internal: { generateId, currentDate, }, onStepFinish, ...settings }: CallSettings & Prompt & {
     /**
 The language model to use.
      */
@@ -1329,7 +1338,7 @@ If set and supported by the model, calls will generate deterministic results.
 @return
 A result object for accessing different stream types and additional information.
  */
-declare function streamText<TOOLS extends ToolSet, OUTPUT = never, PARTIAL_OUTPUT = never>({ model, tools, toolChoice, system, prompt, messages, maxRetries, abortSignal, headers, stopWhen, experimental_output: output, experimental_telemetry: telemetry, prepareStep, providerOptions, experimental_activeTools, activeTools, experimental_repairToolCall: repairToolCall, experimental_transform: transform, experimental_download: download, includeRawChunks, onChunk, onError, onFinish, onAbort, onStepFinish, experimental_context, _internal: { now, generateId, currentDate, }, ...settings }: CallSettings & Prompt & {
+declare function streamText<TOOLS extends ToolSet, OUTPUT = never, PARTIAL_OUTPUT = never>({ model, tools, toolChoice, system, prompt, messages, allowSystemInMessages, maxRetries, abortSignal, headers, stopWhen, experimental_output: output, experimental_telemetry: telemetry, prepareStep, providerOptions, experimental_activeTools, activeTools, experimental_repairToolCall: repairToolCall, experimental_transform: transform, experimental_download: download, includeRawChunks, onChunk, onError, onFinish, onAbort, onStepFinish, experimental_context, _internal: { now, generateId, currentDate, }, ...settings }: CallSettings & Prompt & {
     /**
 The language model to use.
      */

package/dist/index.js CHANGED Viewed

@@ -778,7 +778,7 @@ function detectMediaType({
 var import_provider_utils2 = require("@ai-sdk/provider-utils");
 // src/version.ts
-var VERSION = true ? "5.0.183" : "0.0.0-test";
+var VERSION = true ? "5.0.184" : "0.0.0-test";
 // src/util/download/download.ts
 var download = async ({
@@ -1452,33 +1452,35 @@ var modelMessageSchema = import_v45.z.union([
 var coreMessageSchema = modelMessageSchema;
 // src/prompt/standardize-prompt.ts
-async function standardizePrompt(prompt) {
-  if (prompt.prompt == null && prompt.messages == null) {
+async function standardizePrompt({
+  allowSystemInMessages,
+  system,
+  prompt,
+  messages
+}) {
+  if (prompt == null && messages == null) {
     throw new import_provider19.InvalidPromptError({
       prompt,
       message: "prompt or messages must be defined"
     });
   }
-  if (prompt.prompt != null && prompt.messages != null) {
+  if (prompt != null && messages != null) {
     throw new import_provider19.InvalidPromptError({
       prompt,
       message: "prompt and messages cannot be defined at the same time"
     });
   }
-  if (prompt.system != null && typeof prompt.system !== "string") {
+  if (system != null && typeof system !== "string") {
     throw new import_provider19.InvalidPromptError({
       prompt,
       message: "system must be a string"
     });
   }
-  let messages;
-  if (prompt.prompt != null && typeof prompt.prompt === "string") {
-    messages = [{ role: "user", content: prompt.prompt }];
-  } else if (prompt.prompt != null && Array.isArray(prompt.prompt)) {
-    messages = prompt.prompt;
-  } else if (prompt.messages != null) {
-    messages = prompt.messages;
-  } else {
+  if (prompt != null && typeof prompt === "string") {
+    messages = [{ role: "user", content: prompt }];
+  } else if (prompt != null && Array.isArray(prompt)) {
+    messages = prompt;
+  } else if (messages == null) {
     throw new import_provider19.InvalidPromptError({
       prompt,
       message: "prompt or messages must be defined"
@@ -1490,6 +1492,19 @@ async function standardizePrompt(prompt) {
       message: "messages must not be empty"
     });
   }
+  if (messages.some((message) => message.role === "system")) {
+    if (allowSystemInMessages === false) {
+      throw new import_provider19.InvalidPromptError({
+        prompt,
+        message: "System messages are not allowed in the prompt or messages fields. Use the system option instead."
+      });
+    }
+    if (allowSystemInMessages === void 0) {
+      console.warn(
+        "AI SDK Warning: System messages in the prompt or messages fields can be a security risk because they may enable prompt injection attacks. Use the system option instead when possible. Set allowSystemInMessages to true to suppress this warning, or false to throw an error."
+      );
+    }
+  }
   const validationResult = await (0, import_provider_utils6.safeValidateTypes)({
     value: messages,
     schema: import_v46.z.array(modelMessageSchema)
@@ -1501,10 +1516,7 @@ async function standardizePrompt(prompt) {
       cause: validationResult.error
     });
   }
-  return {
-    messages,
-    system: prompt.system
-  };
+  return { messages, system };
 }
 // src/prompt/wrap-gateway-error.ts
@@ -2247,6 +2259,7 @@ async function generateText({
   system,
   prompt,
   messages,
+  allowSystemInMessages,
   maxRetries: maxRetriesArg,
   abortSignal,
   headers,
@@ -2288,7 +2301,8 @@ async function generateText({
   const initialPrompt = await standardizePrompt({
     system,
     prompt,
-    messages
+    messages,
+    allowSystemInMessages
   });
   const tracer = getTracer(telemetry);
   try {
@@ -4535,6 +4549,7 @@ function streamText({
   system,
   prompt,
   messages,
+  allowSystemInMessages,
   maxRetries,
   abortSignal,
   headers,
@@ -4574,6 +4589,7 @@ function streamText({
     system,
     prompt,
     messages,
+    allowSystemInMessages,
     tools,
     toolChoice,
     transforms: asArray(transform),
@@ -4672,6 +4688,7 @@ var DefaultStreamTextResult = class {
     system,
     prompt,
     messages,
+    allowSystemInMessages,
     tools,
     toolChoice,
     transforms,
@@ -5009,7 +5026,8 @@ var DefaultStreamTextResult = class {
           const initialPrompt = await standardizePrompt({
             system,
             prompt,
-            messages
+            messages,
+            allowSystemInMessages
           });
           const stepInputMessages = [
             ...initialPrompt.messages,
@@ -7030,6 +7048,7 @@ async function generateObject(options) {
     system,
     prompt,
     messages,
+    allowSystemInMessages,
     maxRetries: maxRetriesArg,
     abortSignal,
     headers,
@@ -7113,7 +7132,8 @@ async function generateObject(options) {
         const standardizedPrompt = await standardizePrompt({
           system,
           prompt,
-          messages
+          messages,
+          allowSystemInMessages
         });
         const promptMessages = await convertToLanguageModelPrompt({
           prompt: standardizedPrompt,
@@ -7432,6 +7452,7 @@ function streamObject(options) {
     system,
     prompt,
     messages,
+    allowSystemInMessages,
     maxRetries,
     abortSignal,
     headers,
@@ -7479,6 +7500,7 @@ function streamObject(options) {
     system,
     prompt,
     messages,
+    allowSystemInMessages,
     schemaName,
     schemaDescription,
     providerOptions,
@@ -7503,6 +7525,7 @@ var DefaultStreamObjectResult = class {
     system,
     prompt,
     messages,
+    allowSystemInMessages,
     schemaName,
     schemaDescription,
     providerOptions,
@@ -7571,7 +7594,8 @@ var DefaultStreamObjectResult = class {
         const standardizedPrompt = await standardizePrompt({
           system,
           prompt,
-          messages
+          messages,
+          allowSystemInMessages
         });
         const callOptions = {
           responseFormat: {