npm - alepha - Versions diffs - 0.20.6 → 0.20.7 - Mend

alepha 0.20.6 → 0.20.7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (243) hide show

package/AGENTS.md +0 -1
package/CLAUDE.md +0 -1
package/assets/agents-template.md +0 -1
package/dist/api/audits/index.browser.js +1 -0
package/dist/api/audits/index.browser.js.map +1 -1
package/dist/api/audits/index.d.ts +370 -355
package/dist/api/audits/index.d.ts.map +1 -1
package/dist/api/audits/index.js +1 -0
package/dist/api/audits/index.js.map +1 -1
package/dist/api/files/index.browser.js +1 -0
package/dist/api/files/index.browser.js.map +1 -1
package/dist/api/files/index.d.ts +179 -170
package/dist/api/files/index.d.ts.map +1 -1
package/dist/api/files/index.js +1 -0
package/dist/api/files/index.js.map +1 -1
package/dist/api/jobs/index.browser.js +7 -0
package/dist/api/jobs/index.browser.js.map +1 -1
package/dist/api/jobs/index.d.ts +271 -262
package/dist/api/jobs/index.d.ts.map +1 -1
package/dist/api/jobs/index.js +21 -3
package/dist/api/jobs/index.js.map +1 -1
package/dist/api/keys/index.d.ts +198 -192
package/dist/api/keys/index.d.ts.map +1 -1
package/dist/api/keys/index.js +1 -0
package/dist/api/keys/index.js.map +1 -1
package/dist/api/notifications/index.d.ts +246 -245
package/dist/api/notifications/index.d.ts.map +1 -1
package/dist/api/organizations/index.d.ts +100 -97
package/dist/api/organizations/index.d.ts.map +1 -1
package/dist/api/parameters/index.d.ts +323 -320
package/dist/api/parameters/index.d.ts.map +1 -1
package/dist/api/payments/index.d.ts +431 -376
package/dist/api/payments/index.d.ts.map +1 -1
package/dist/api/payments/index.js +202 -87
package/dist/api/payments/index.js.map +1 -1
package/dist/api/subscriptions/index.d.ts +1695 -0
package/dist/api/subscriptions/index.d.ts.map +1 -0
package/dist/api/subscriptions/index.js +1919 -0
package/dist/api/subscriptions/index.js.map +1 -0
package/dist/api/users/index.d.ts +863 -847
package/dist/api/users/index.d.ts.map +1 -1
package/dist/api/verifications/index.d.ts +126 -125
package/dist/api/verifications/index.d.ts.map +1 -1
package/dist/bucket/index.d.ts +3 -2
package/dist/bucket/index.d.ts.map +1 -1
package/dist/cache/core/index.d.ts +114 -4
package/dist/cache/core/index.d.ts.map +1 -1
package/dist/cache/core/index.js +181 -15
package/dist/cache/core/index.js.map +1 -1
package/dist/cache/core/index.workerd.js +181 -15
package/dist/cache/core/index.workerd.js.map +1 -1
package/dist/cache/database/index.d.ts +20 -19
package/dist/cache/database/index.d.ts.map +1 -1
package/dist/cache/redis/index.d.ts +3 -2
package/dist/cache/redis/index.d.ts.map +1 -1
package/dist/cli/core/index.d.ts +113 -129
package/dist/cli/core/index.d.ts.map +1 -1
package/dist/cli/core/index.js +75 -7
package/dist/cli/core/index.js.map +1 -1
package/dist/cli/devtools/index.d.ts +3 -2
package/dist/cli/devtools/index.d.ts.map +1 -1
package/dist/cli/platform/index.d.ts +346 -290
package/dist/cli/platform/index.d.ts.map +1 -1
package/dist/cli/platform/index.js +105 -6
package/dist/cli/platform/index.js.map +1 -1
package/dist/cli/vendor/index.d.ts +12 -11
package/dist/cli/vendor/index.d.ts.map +1 -1
package/dist/command/index.d.ts +5 -4
package/dist/command/index.d.ts.map +1 -1
package/dist/core/index.browser.js +1 -1
package/dist/core/index.browser.js.map +1 -1
package/dist/core/index.d.ts +119 -118
package/dist/core/index.d.ts.map +1 -1
package/dist/core/index.js +1 -1
package/dist/core/index.js.map +1 -1
package/dist/core/index.native.js +1 -1
package/dist/core/index.native.js.map +1 -1
package/dist/core/index.workerd.js +1 -1
package/dist/core/index.workerd.js.map +1 -1
package/dist/crypto/index.d.ts +3 -2
package/dist/crypto/index.d.ts.map +1 -1
package/dist/email/core/index.d.ts +3 -2
package/dist/email/core/index.d.ts.map +1 -1
package/dist/email/smtp/index.d.ts +7 -6
package/dist/email/smtp/index.d.ts.map +1 -1
package/dist/lock/core/index.d.ts +5 -4
package/dist/lock/core/index.d.ts.map +1 -1
package/dist/logger/index.d.ts +10 -9
package/dist/logger/index.d.ts.map +1 -1
package/dist/mcp/index.d.ts +9 -8
package/dist/mcp/index.d.ts.map +1 -1
package/dist/mcp/index.js +1 -1
package/dist/mcp/index.js.map +1 -1
package/dist/orm/core/index.browser.js +9 -3
package/dist/orm/core/index.browser.js.map +1 -1
package/dist/orm/core/index.bun.js +31 -10
package/dist/orm/core/index.bun.js.map +1 -1
package/dist/orm/core/index.d.ts +33 -14
package/dist/orm/core/index.d.ts.map +1 -1
package/dist/orm/core/index.js +31 -10
package/dist/orm/core/index.js.map +1 -1
package/dist/orm/postgres/index.d.ts +6 -5
package/dist/orm/postgres/index.d.ts.map +1 -1
package/dist/queue/core/index.d.ts +5 -4
package/dist/queue/core/index.d.ts.map +1 -1
package/dist/queue/redis/index.d.ts +3 -2
package/dist/queue/redis/index.d.ts.map +1 -1
package/dist/react/form/index.d.ts +5 -0
package/dist/react/form/index.d.ts.map +1 -1
package/dist/react/form/index.js +6 -4
package/dist/react/form/index.js.map +1 -1
package/dist/react/i18n/index.d.ts +2 -1
package/dist/react/i18n/index.d.ts.map +1 -1
package/dist/react/router/index.d.ts +206 -205
package/dist/react/router/index.d.ts.map +1 -1
package/dist/react/ui/index.d.ts +11 -11
package/dist/react/ui/index.d.ts.map +1 -1
package/dist/scheduler/index.d.ts +3 -2
package/dist/scheduler/index.d.ts.map +1 -1
package/dist/security/index.browser.js +29 -1
package/dist/security/index.browser.js.map +1 -1
package/dist/security/index.d.ts +82 -35
package/dist/security/index.d.ts.map +1 -1
package/dist/security/index.js +56 -3
package/dist/security/index.js.map +1 -1
package/dist/server/auth/index.d.ts +163 -158
package/dist/server/auth/index.d.ts.map +1 -1
package/dist/server/auth/index.js +16 -4
package/dist/server/auth/index.js.map +1 -1
package/dist/server/core/index.d.ts +35 -34
package/dist/server/core/index.d.ts.map +1 -1
package/dist/server/cors/index.d.ts +7 -6
package/dist/server/cors/index.d.ts.map +1 -1
package/dist/server/health/index.d.ts +16 -15
package/dist/server/health/index.d.ts.map +1 -1
package/dist/server/links/index.d.ts +51 -50
package/dist/server/links/index.d.ts.map +1 -1
package/dist/server/rate-limit/index.d.ts +6 -5
package/dist/server/rate-limit/index.d.ts.map +1 -1
package/dist/server/swagger/index.d.ts +2 -1
package/dist/server/swagger/index.d.ts.map +1 -1
package/dist/topic/redis/index.d.ts +3 -2
package/dist/topic/redis/index.d.ts.map +1 -1
package/package.json +16 -32
package/src/api/audits/entities/audits.ts +1 -0
package/src/api/files/entities/files.ts +1 -0
package/src/api/jobs/__tests__/$job.spec.ts +92 -40
package/src/api/jobs/entities/jobExecutionEntity.ts +1 -0
package/src/api/jobs/providers/JobProvider.ts +20 -5
package/src/api/jobs/schemas/jobConfigAtom.ts +5 -0
package/src/api/keys/entities/apiKeyEntity.ts +1 -0
package/src/api/payments/controllers/MockCheckoutController.ts +146 -0
package/src/api/payments/index.ts +3 -0
package/src/api/payments/providers/MemoryPaymentProvider.ts +9 -4
package/src/api/payments/providers/PaymentProvider.ts +25 -9
package/src/api/payments/services/PaymentService.ts +3 -0
package/src/api/subscriptions/__tests__/BillingService.spec.ts +218 -0
package/src/api/subscriptions/__tests__/SubscriptionService.spec.ts +278 -0
package/src/api/subscriptions/controllers/AdminSubscriptionController.ts +212 -0
package/src/api/subscriptions/controllers/SubscriptionController.ts +189 -0
package/src/api/subscriptions/entities/subscriptionEvents.ts +54 -0
package/src/api/subscriptions/entities/subscriptions.ts +68 -0
package/src/api/subscriptions/index.ts +133 -0
package/src/api/subscriptions/jobs/SubscriptionJobs.ts +382 -0
package/src/api/subscriptions/middleware/$requireLimit.ts +50 -0
package/src/api/subscriptions/middleware/$requirePlan.ts +49 -0
package/src/api/subscriptions/notifications/SubscriptionNotifications.ts +110 -0
package/src/api/subscriptions/schemas/cancelSubscriptionSchema.ts +8 -0
package/src/api/subscriptions/schemas/changePlanSchema.ts +9 -0
package/src/api/subscriptions/schemas/createSubscriptionSchema.ts +11 -0
package/src/api/subscriptions/schemas/entitlementsSchema.ts +21 -0
package/src/api/subscriptions/schemas/mrrSchema.ts +13 -0
package/src/api/subscriptions/schemas/planDefinitionSchema.ts +71 -0
package/src/api/subscriptions/schemas/planResourceSchema.ts +25 -0
package/src/api/subscriptions/schemas/subscriptionEventResourceSchema.ts +8 -0
package/src/api/subscriptions/schemas/subscriptionQuerySchema.ts +19 -0
package/src/api/subscriptions/schemas/subscriptionResourceSchema.ts +6 -0
package/src/api/subscriptions/schemas/subscriptionSettingsSchema.ts +32 -0
package/src/api/subscriptions/schemas/subscriptionStatsSchema.ts +23 -0
package/src/api/subscriptions/services/BillingService.ts +437 -0
package/src/api/subscriptions/services/SubscriptionConfig.ts +56 -0
package/src/api/subscriptions/services/SubscriptionService.ts +867 -0
package/src/api/subscriptions/services/UsageService.ts +118 -0
package/src/cache/core/__tests__/$cache.memory.spec.ts +450 -0
package/src/cache/core/__tests__/$cache.swr.spec.ts +394 -0
package/src/cache/core/index.ts +16 -0
package/src/cache/core/primitives/$cache.ts +347 -21
package/src/cli/core/tasks/BuildCloudflareTask.ts +16 -0
package/src/cli/core/templates/agentMd.ts +39 -4
package/src/cli/core/templates/biomeJson.ts +25 -1
package/src/cli/core/templates/saasAdminLayoutTsx.ts +2 -2
package/src/cli/platform/__tests__/CloudflareAdapter.spec.ts +117 -0
package/src/cli/platform/adapters/CloudflareAdapter.ts +104 -7
package/src/cli/platform/atoms/platformOptions.ts +13 -0
package/src/cli/platform/schemas/platform.ts +1 -0
package/src/cli/platform/services/CloudflareApi.ts +61 -0
package/src/cli/platform/services/PlatformOrchestrator.ts +9 -4
package/src/core/__tests__/$module.spec.ts +2 -2
package/src/core/primitives/$module.ts +4 -4
package/src/mcp/providers/McpServerProvider.ts +1 -1
package/src/orm/core/providers/DatabaseTypeProvider.ts +9 -3
package/src/orm/core/providers/drivers/DatabaseProvider.ts +1 -1
package/src/orm/core/schemas/insertSchema.ts +10 -2
package/src/orm/core/services/Repository.ts +27 -7
package/src/react/form/hooks/useFormState.ts +8 -1
package/src/react/form/index.ts +10 -1
package/src/react/form/services/FormModel.ts +9 -3
package/src/security/atoms/currentTenantAtom.ts +34 -0
package/src/security/index.browser.ts +1 -0
package/src/security/index.ts +12 -1
package/src/security/primitives/$issuer.ts +17 -1
package/src/security/providers/SecurityProvider.ts +37 -0
package/src/server/auth/__tests__/validateRedirectUri.spec.ts +78 -0
package/src/server/auth/providers/ServerAuthProvider.ts +21 -5
package/tsconfig.base.json +2 -1
package/dist/react/websocket/index.d.ts +0 -117
package/dist/react/websocket/index.d.ts.map +0 -1
package/dist/react/websocket/index.js +0 -108
package/dist/react/websocket/index.js.map +0 -1
package/dist/websocket/index.browser.js +0 -848
package/dist/websocket/index.browser.js.map +0 -1
package/dist/websocket/index.d.ts +0 -876
package/dist/websocket/index.d.ts.map +0 -1
package/dist/websocket/index.js +0 -1185
package/dist/websocket/index.js.map +0 -1
package/src/react/websocket/hooks/useRoom.tsx +0 -251
package/src/react/websocket/index.ts +0 -7
package/src/websocket/__tests__/$channel.spec.ts +0 -30
package/src/websocket/__tests__/$websocket-new.spec.ts +0 -195
package/src/websocket/__tests__/RoomManager.spec.ts +0 -146
package/src/websocket/__tests__/websocket-integration.spec.ts +0 -951
package/src/websocket/errors/WebSocketError.ts +0 -34
package/src/websocket/index.browser.ts +0 -25
package/src/websocket/index.shared.ts +0 -8
package/src/websocket/index.ts +0 -85
package/src/websocket/interfaces/WebSocketInterfaces.ts +0 -252
package/src/websocket/primitives/$channel.ts +0 -131
package/src/websocket/primitives/$websocket.ts +0 -107
package/src/websocket/providers/NodeWebSocketServerProvider.ts +0 -617
package/src/websocket/providers/WebSocketServerProvider.ts +0 -56
package/src/websocket/services/RoomManager.ts +0 -160
package/src/websocket/services/WebSocketClient.ts +0 -642
package/src/websocket/services/WebSocketTopicService.ts +0 -108

package/src/cache/core/primitives/$cache.ts CHANGED Viewed

@@ -66,10 +66,18 @@ export function $cache(options: any = {}): any {
   const mw: any = <T extends (...args: any[]) => any>(handler: T): T => {
     return (async (...args: any[]) => {
       const key = instance.key(...args);
-      const cached = await instance.get(key);
-      if (cached !== undefined) return cached;
-      const result = await handler(...args);
+      const read = await instance.read(key);
+      if (read.value !== undefined) {
+        if (read.stale) {
+          instance.scheduleRefresh(key, () => handler(...args));
+        }
+        return read.value;
+      }
+      const result = await instance.runSingleFlight(key, () =>
+        handler(...args),
+      );
       // Fire-and-forget — cache write failures must not break the handler result
       instance.set(key, result).catch(() => {});
       return result;
@@ -86,6 +94,34 @@ export function $cache(options: any = {}): any {
 // ---------------------------------------------------------------------------------------------------------------------
+/**
+ * Options for the in-memory L1 tier.
+ */
+export interface CacheMemoryTierOptions {
+  /**
+   * TTL for the in-memory tier. Should be ≤ the remote `ttl`.
+   * Bounds the cross-isolate staleness window after invalidation.
+   *
+   * @default min(ttl, 30s)
+   */
+  ttl?: DurationLike;
+  /**
+   * LRU bound — max entries kept in memory before eviction.
+   *
+   * @default 500
+   */
+  max?: number;
+  /**
+   * Also cache provider misses (`undefined`) in memory for this duration.
+   * Prevents hammering the remote tier on cold/unknown keys.
+   *
+   * @default off
+   */
+  negative?: DurationLike;
+}
 export interface CachePrimitiveOptions<
   TReturn = any,
   TParameter extends any[] = any[],
@@ -151,6 +187,35 @@ export interface CachePrimitiveOptions<
    * Reduces storage size by 60-80% for JSON payloads at the cost of CPU.
    */
   compress?: boolean;
+  /**
+   * Add an in-process L1 memory tier in front of `provider`.
+   *
+   * Reads check memory first, fall back to the provider on miss. Writes go
+   * to both tiers (write-through), so own-writes are immediately visible.
+   *
+   * Caveats:
+   * - Per-process only. Each Worker isolate / Node process has its own L1.
+   *   `invalidate()` clears the local L1 + the remote provider; other
+   *   processes keep their L1 until its TTL expires.
+   * - Use a short L1 TTL to bound the cross-isolate staleness window.
+   *
+   * @default off
+   */
+  memory?: true | CacheMemoryTierOptions;
+  /**
+   * Stale-while-revalidate window. After `ttl` expires, the cached value
+   * remains servable for `stale` longer; reads in this window return the
+   * stale value immediately and trigger ONE background refresh
+   * (single-flight per key).
+   *
+   * Requires a `handler` (primitive mode) OR middleware mode wrapping a
+   * handler — the cache needs to know how to recompute.
+   *
+   * @default off
+   */
+  stale?: DurationLike;
 }
 // ---------------------------------------------------------------------------------------------------------------------
@@ -186,6 +251,27 @@ declare module "alepha" {
 // ---------------------------------------------------------------------------------------------------------------------
+const DEFAULT_MEMORY_MAX = 500;
+const DEFAULT_MEMORY_TTL_MS = 30_000;
+const SWR_MARKER = "__swr" as const;
+type SwrEnvelope = {
+  [SWR_MARKER]: 1;
+  v: unknown;
+  f: number;
+};
+type L1Entry<T> = {
+  value: T | undefined;
+  expiresAt: number;
+  negative: boolean;
+};
+type ReadResult<T> = {
+  value: T | undefined;
+  stale: boolean;
+};
 export class CachePrimitive<
   TReturn = any,
   TParameter extends any[] = any[],
@@ -194,6 +280,46 @@ export class CachePrimitive<
   protected readonly dateTimeProvider = $inject(DateTimeProvider);
   public readonly provider = this.$provider();
+  protected readonly memoryStore?: Map<string, L1Entry<TReturn>>;
+  protected readonly memoryMax: number = DEFAULT_MEMORY_MAX;
+  protected readonly memoryTtlMs: number = 0;
+  protected readonly negativeTtlMs: number = 0;
+  protected readonly inflightRefreshes = new Map<string, Promise<TReturn>>();
+  constructor(
+    args: ConstructorParameters<
+      typeof Primitive<CachePrimitiveOptions<TReturn, TParameter>>
+    >[0],
+  ) {
+    super(args);
+    const mem = this.options.memory;
+    if (mem) {
+      this.memoryStore = new Map();
+      const memOpts: CacheMemoryTierOptions = mem === true ? {} : mem;
+      this.memoryMax = memOpts.max ?? DEFAULT_MEMORY_MAX;
+      // Default L1 TTL: min(remote ttl, 30s). If remote ttl is 0/infinite, use 30s.
+      if (memOpts.ttl !== undefined) {
+        this.memoryTtlMs = this.dateTimeProvider
+          .duration(memOpts.ttl)
+          .as("milliseconds");
+      } else {
+        const remoteTtlMs = this.options.ttl
+          ? this.dateTimeProvider.duration(this.options.ttl).as("milliseconds")
+          : 0;
+        this.memoryTtlMs =
+          remoteTtlMs > 0
+            ? Math.min(remoteTtlMs, DEFAULT_MEMORY_TTL_MS)
+            : DEFAULT_MEMORY_TTL_MS;
+      }
+      if (memOpts.negative !== undefined) {
+        this.negativeTtlMs = this.dateTimeProvider
+          .duration(memOpts.negative)
+          .as("milliseconds");
+      }
+    }
+  }
   public get container(): string {
     return (
       this.options.name ??
@@ -208,16 +334,18 @@ export class CachePrimitive<
     }
     const key = this.key(...args);
-    const cached = await this.get(key);
-    if (cached !== undefined) {
-      return cached;
+    const read = await this.read(key);
+    if (read.value !== undefined) {
+      if (read.stale) {
+        this.scheduleRefresh(key, () => handler(...args));
+      }
+      return read.value;
     }
-    const result = await handler(...args);
+    const result = await this.runSingleFlight(key, () => handler(...args));
     // note: when exception occurs, don't cache the result
     await this.set(key, result);
     return result;
   }
@@ -226,10 +354,29 @@ export class CachePrimitive<
   }
   public async incr(key: string, amount = 1): Promise<number> {
-    return this.provider.incr(this.container, key, amount);
+    const result = await this.provider.incr(this.container, key, amount);
+    // L1 is no longer authoritative after atomic incr on remote.
+    this.delL1(key);
+    return result;
   }
   public async invalidate(...keys: string[]): Promise<void> {
+    if (this.memoryStore) {
+      if (keys.length === 0) {
+        this.memoryStore.clear();
+      } else {
+        for (const key of keys) {
+          if (key.endsWith("*")) {
+            const prefix = key.slice(0, -1);
+            for (const k of this.memoryStore.keys()) {
+              if (k.startsWith(prefix)) this.memoryStore.delete(k);
+            }
+          } else {
+            this.memoryStore.delete(key);
+          }
+        }
+      }
+    }
     await this.provider.invalidateKeys(this.container, keys);
   }
@@ -246,41 +393,193 @@ export class CachePrimitive<
       return;
     }
-    const px = this.dateTimeProvider
+    const freshTtlMs = this.dateTimeProvider
       .duration(
         ttl ?? this.options.ttl ?? [this.settings.defaultTtl, "seconds"],
       )
       .as("milliseconds");
-    await this.provider.setTyped(this.container, key, value, {
-      ttl: px > 0 ? px : undefined,
+    const staleMs = this.options.stale
+      ? this.dateTimeProvider.duration(this.options.stale).as("milliseconds")
+      : 0;
+    const providerTtlMs = freshTtlMs > 0 ? freshTtlMs + staleMs : 0;
+    const now = this.dateTimeProvider.nowMillis();
+    const freshUntil = freshTtlMs > 0 ? now + freshTtlMs : 0;
+    const payload =
+      this.options.stale && freshTtlMs > 0
+        ? ({ [SWR_MARKER]: 1, v: value, f: freshUntil } satisfies SwrEnvelope)
+        : value;
+    await this.provider.setTyped(this.container, key, payload, {
+      ttl: providerTtlMs > 0 ? providerTtlMs : undefined,
       compress: this.options.compress,
     });
+    // Write-through to L1 (raw value, not wrapped).
+    this.setL1(key, {
+      value,
+      expiresAt:
+        this.memoryTtlMs > 0
+          ? now + this.memoryTtlMs
+          : Number.POSITIVE_INFINITY,
+      negative: false,
+    });
+    // A fresh write supersedes any pending refresh for this key.
+    this.inflightRefreshes.delete(key);
     await this.alepha.events.emit("cache:set", {
       container: this.container,
       key,
-      ttlMs: px > 0 ? px : undefined,
+      ttlMs: providerTtlMs > 0 ? providerTtlMs : undefined,
     });
   }
   public async get(key: string): Promise<TReturn | undefined> {
+    const read = await this.read(key);
+    return read.value;
+  }
+  /**
+   * Internal read that also reports whether the value is stale (SWR
+   * grace window). Middleware and `run()` use this to decide whether to
+   * schedule a background refresh.
+   */
+  public async read(key: string): Promise<ReadResult<TReturn>> {
     if (
       !this.alepha.isStarted() ||
       this.options.disabled ||
       !this.settings.enabled
     ) {
-      return undefined;
+      return { value: undefined, stale: false };
     }
-    const value = await this.provider.getTyped<TReturn>(this.container, key);
+    const now = this.dateTimeProvider.nowMillis();
+    // L1 check
+    if (this.memoryStore) {
+      const entry = this.memoryStore.get(key);
+      if (entry !== undefined) {
+        if (entry.expiresAt > now) {
+          // LRU touch
+          this.memoryStore.delete(key);
+          this.memoryStore.set(key, entry);
+          await this.alepha.events.emit("cache:hit", {
+            container: this.container,
+            key,
+          });
+          return {
+            value: entry.negative ? undefined : entry.value,
+            stale: false,
+          };
+        }
+        this.memoryStore.delete(key);
+      }
+    }
-    await this.alepha.events.emit(
-      value === undefined ? "cache:miss" : "cache:hit",
-      { container: this.container, key },
+    // L2 check
+    const raw = await this.provider.getTyped<TReturn | SwrEnvelope>(
+      this.container,
+      key,
     );
-    return value;
+    if (raw === undefined) {
+      // Negative caching
+      if (this.memoryStore && this.negativeTtlMs > 0) {
+        this.setL1(key, {
+          value: undefined,
+          expiresAt: now + this.negativeTtlMs,
+          negative: true,
+        });
+      }
+      await this.alepha.events.emit("cache:miss", {
+        container: this.container,
+        key,
+      });
+      return { value: undefined, stale: false };
+    }
+    let value: TReturn;
+    let stale = false;
+    if (this.isSwrEnvelope(raw)) {
+      value = raw.v as TReturn;
+      stale = raw.f > 0 && raw.f <= now;
+    } else {
+      value = raw as TReturn;
+    }
+    // Populate L1 (write-back from L2 read)
+    if (this.memoryStore && this.memoryTtlMs > 0) {
+      this.setL1(key, {
+        value,
+        expiresAt: now + this.memoryTtlMs,
+        negative: false,
+      });
+    }
+    await this.alepha.events.emit(stale ? "cache:stale" : "cache:hit", {
+      container: this.container,
+      key,
+    });
+    return { value, stale };
+  }
+  /**
+   * Run a handler under single-flight: concurrent callers for the same
+   * key share one in-flight promise.
+   */
+  public async runSingleFlight(
+    key: string,
+    handler: () => Promise<TReturn> | TReturn,
+  ): Promise<TReturn> {
+    const existing = this.inflightRefreshes.get(key);
+    if (existing) {
+      return existing;
+    }
+    const promise = (async () => {
+      try {
+        return await handler();
+      } finally {
+        this.inflightRefreshes.delete(key);
+      }
+    })();
+    this.inflightRefreshes.set(key, promise);
+    return promise;
+  }
+  /**
+   * Schedule a background refresh for a stale key. At most one refresh
+   * per key is in-flight at any time; failures are swallowed (the stale
+   * value keeps being served until expiry).
+   */
+  public scheduleRefresh(
+    key: string,
+    handler: () => Promise<TReturn> | TReturn,
+  ): void {
+    if (this.inflightRefreshes.has(key)) {
+      return;
+    }
+    const promise = (async () => {
+      try {
+        const result = await handler();
+        await this.set(key, result);
+        await this.alepha.events.emit("cache:revalidate", {
+          container: this.container,
+          key,
+        });
+        return result;
+      } finally {
+        this.inflightRefreshes.delete(key);
+      }
+    })();
+    promise.catch(() => {
+      // swallow: stale value keeps serving until expiry
+    });
+    this.inflightRefreshes.set(key, promise);
   }
   protected $provider(): CacheProvider {
@@ -294,6 +593,33 @@ export class CachePrimitive<
     return this.alepha.inject(this.options.provider);
   }
+  protected isSwrEnvelope(value: unknown): value is SwrEnvelope {
+    return (
+      value !== null &&
+      typeof value === "object" &&
+      (value as Record<string, unknown>)[SWR_MARKER] === 1 &&
+      "f" in (value as Record<string, unknown>) &&
+      "v" in (value as Record<string, unknown>)
+    );
+  }
+  protected setL1(key: string, entry: L1Entry<TReturn>): void {
+    if (!this.memoryStore) return;
+    if (this.memoryStore.has(key)) {
+      this.memoryStore.delete(key);
+    }
+    this.memoryStore.set(key, entry);
+    while (this.memoryStore.size > this.memoryMax) {
+      const first = this.memoryStore.keys().next().value;
+      if (first === undefined) break;
+      this.memoryStore.delete(first);
+    }
+  }
+  protected delL1(key: string): void {
+    this.memoryStore?.delete(key);
+  }
 }
 export interface CachePrimitiveFn<

package/src/cli/core/tasks/BuildCloudflareTask.ts CHANGED Viewed

@@ -99,6 +99,22 @@ export class BuildCloudflareTask extends BuildTask {
       return;
     }
+    if (domain.includes("*")) {
+      const zone = process.env.CLOUDFLARE_ZONE;
+      if (!zone) {
+        throw new Error(
+          `Wildcard domain "${domain}" requires CLOUDFLARE_ZONE to be set (the parent zone name, e.g. "alepha.dev").`,
+        );
+      }
+      wrangler.routes = [
+        {
+          pattern: domain.endsWith("/*") ? domain : `${domain}/*`,
+          zone_name: zone,
+        },
+      ];
+      return;
+    }
     wrangler.routes = [
       {
         pattern: domain,

package/src/cli/core/templates/agentMd.ts CHANGED Viewed

@@ -13,12 +13,47 @@ This is an **Alepha** project.
 ## Commands
 \`\`\`bash
-alepha lint      # Format and lint
-alepha typecheck # Type checking
-alepha test      # Run tests
-alepha build     # Build
+alepha lint              # Format and lint
+alepha typecheck         # Type checking
+alepha test              # Run tests
+alepha build             # Build
+alepha platform plan     # Show planned cloud topology (requires platform plugin)
+alepha platform up       # Provision + deploy to a configured environment
+alepha platform status   # Inspect deployed resources
 \`\`\`
+## Cloud deployment (Cloudflare Workers)
+Add the \`platform\` plugin to \`alepha.config.ts\` to manage cloud
+provisioning, deploy, secrets, and DB migrations end-to-end:
+\`\`\`ts
+import { defineConfig } from "alepha/cli/config";
+import { platform } from "alepha/cli/platform";
+export default defineConfig({
+  plugins: [
+    platform({
+      environments: {
+        production: {
+          adapter: "cloudflare",
+          domain: "yourapp.com",
+          // zone: "yourapp.com",     // required only for wildcard domains
+          // jurisdiction: "eu",       // optional: EU data residency
+        },
+      },
+    }),
+  ],
+});
+\`\`\`
+Then: \`alepha platform up --env production\` (auth via \`wrangler login\` on first run).
+Supported adapters: \`cloudflare\`, \`vercel\`. The Cloudflare adapter provisions
+D1 (or Hyperdrive when \`DATABASE_URL\` is postgres), KV, R2, Queues, and pushes
+secrets via \`wrangler secret bulk\`. Set \`build.target: "cloudflare"\` in
+\`alepha.config.ts\` if you only want the build artifact without the orchestrator.
 ## Documentation
 - Framework source: \`node_modules/alepha/src/\`

package/src/cli/core/templates/biomeJson.ts CHANGED Viewed

@@ -17,12 +17,36 @@ export const biomeJson = () =>
   "linter": {
     "enabled": true,
     "rules": {
-      "recommended": true
+      "recommended": true,
+      "a11y": {
+        "useFocusableInteractive": "off",
+        "useSemanticElements": "off",
+        "useKeyWithClickEvents": "off",
+        "useAriaPropsForRole": "off",
+        "noLabelWithoutControl": "off"
+      },
+      "correctness": {
+        "useExhaustiveDependencies": "off"
+      },
+      "suspicious": {
+        "noArrayIndexKey": "off",
+        "noExplicitAny": "off",
+        "noDocumentCookie": "off"
+      },
+      "style": {
+        "noNonNullAssertion": "off"
+      }
     },
     "domains": {
       "react": "recommended"
     }
   },
+  "css": {
+    "parser": {
+      "cssModules": false,
+      "tailwindDirectives": true
+    }
+  },
   "assist": {
     "actions": {
       "source": {

package/src/cli/core/templates/saasAdminLayoutTsx.ts CHANGED Viewed

@@ -8,10 +8,10 @@
  * `@/components/*` alias.
  */
 export const saasAdminLayoutTsx = () =>
-  `import { AppShell } from "@/components/app-shell";
+  `import { AppShell } from "@/components/app-shell/app-shell";
 import { Toaster } from "@/components/ui/sonner";
 import { TooltipProvider } from "@/components/ui/tooltip";
-import { DialogProvider } from "@/components/use-dialog";
+import { DialogProvider } from "@/components/use-dialog/use-dialog";
 import { NestedView, useRouterState } from "alepha/react/router";
 import { ShieldCheck, Users } from "lucide-react";