bulletin-deploy 0.6.8 → 0.6.9-rc.0

package/README.md

@@ -12,6 +12,8 @@ bulletin-deploy ./dist my-app00.dot
 
 Your site is live at `https://my-app00.dot.li`
 
+> **Stable vs release candidate.** `npm install -g bulletin-deploy` (and `@latest`) always resolves to the latest stable version — never an RC. Release candidates are published under the `rc` dist-tag and can be installed explicitly with `npm install -g bulletin-deploy@rc` (or a literal version pin like `@0.6.9-rc.0`). Only use RCs for testing.
+
 ## Prerequisites
 
 - **Node.js 22+**
@@ -134,7 +136,7 @@ If you see **"Requires Full Personhood verification"**, the deploy will fail ear
 | Variable | Default | Description |
 |---|---|---|
 | `BULLETIN_RPC` | `wss://paseo-bulletin-rpc.polkadot.io` | Bulletin chain WebSocket RPC |
-| `BULLETIN_DEPLOY_TELEMETRY` | `1` (enabled) | Set to `0` to disable Sentry telemetry |
+| `BULLETIN_DEPLOY_TELEMETRY` | _(off for external users, on for internal)_ | `1` to opt in, `0` to force off — see **Telemetry** below |
 | `BULLETIN_DEPLOY_UPDATE_CHECK` | `1` (enabled) | Set to `0` to disable version check on errors |
 | `DOTNS_STATUS` | `full` (testnet) / `none` (mainnet) | PoP level to self-grant before registration: `none`, `lite`, or `full` |
 | `IPFS_CID` | _(none)_ | Skip storage, use pre-existing CID |
@@ -221,7 +223,15 @@ Set `BULLETIN_DEPLOY_UPDATE_CHECK=0` to disable version checking.
 
 ## Telemetry
 
-Sentry telemetry is enabled by default for deploy observability. Set `BULLETIN_DEPLOY_TELEMETRY=0` to disable.
+Sentry telemetry is **off by default for external users**. It's automatically on for deploys originating from inside Parity — either Parity CI, or local development trees whose git origin points at `paritytech/*`, `w3f/*`, or `polkadot-fellows/*`.
+
+- `BULLETIN_DEPLOY_TELEMETRY=1` — explicit opt-in (useful if you want to help us debug an issue you're seeing).
+- `BULLETIN_DEPLOY_TELEMETRY=0` — force off regardless of context.
+
+Detection signals (OR'd together):
+1. `GITHUB_REPOSITORY` matches a known-internal org — Parity-owned CI workflow.
+2. `RUNNER_NAME` starts with `parity-` — Parity self-hosted runner.
+3. `git remote get-url origin` points at a known-internal org — internal local dev.
 
 What's tracked:
 - Deploy duration and success/failure

package/bin/bulletin-deploy

@@ -3,7 +3,7 @@
 import { deploy, DEFAULT_BULLETIN_RPC, DEFAULT_POOL_SIZE, NonRetryableError, EXIT_CODE_NO_RETRY } from "../dist/deploy.js";
 import { bootstrapPool } from "../dist/pool.js";
 import { VERSION } from "../dist/telemetry.js";
-import { handleFailedDeploy } from "../dist/version-check.js";
+import { handleFailedDeploy, preReleaseWarning } from "../dist/version-check.js";
 import { setDeployContext } from "../dist/bug-report.js";
 import * as fs from "fs";
 
@@ -48,6 +48,9 @@ Options:
   process.exit(0);
 }
 
+const rcWarning = preReleaseWarning(VERSION);
+if (rcWarning) console.error(rcWarning);
+
 try {
   if (flags.bootstrap) {
     const rpc = flags.rpc ?? process.env.BULLETIN_RPC ?? DEFAULT_BULLETIN_RPC;

package/dist/bug-report.d.ts

@@ -9,6 +9,10 @@ interface DeployContext {
     sentryTraceId?: string;
 }
 declare function setDeployContext(ctx: Partial<DeployContext>): void;
+declare function buildReportBody(error: Error): string;
+declare function buildTitle(error: Error): string;
+declare function buildLabels(error: Error): string[];
+declare function createGhIssue(title: string, body: string, labels: string[]): void;
 declare function offerBugReport(error: Error): Promise<void>;
 
-export { offerBugReport, setDeployContext };
+export { buildLabels, buildReportBody, buildTitle, createGhIssue, offerBugReport, setDeployContext };

package/dist/bug-report.js

@@ -2,10 +2,10 @@ import {
   classifyErrorArea,
   isInteractive,
   promptYesNo
-} from "./chunk-SYJ2L6RU.js";
+} from "./chunk-X7WJJEXW.js";
 import {
   VERSION
-} from "./chunk-SLARK556.js";
+} from "./chunk-3W2COGJ6.js";
 import "./chunk-QGM4M3NI.js";
 
 // src/bug-report.ts
@@ -63,6 +63,20 @@ function buildLabels(error) {
   if (area) labels.push(area);
   return labels;
 }
+function createGhIssue(title, body, labels) {
+  const args = [
+    "issue",
+    "create",
+    "--repo",
+    "paritytech/bulletin-deploy",
+    "--title",
+    title,
+    ...labels.flatMap((l) => ["--label", l]),
+    "--body-file",
+    "-"
+  ];
+  execFileSync("gh", args, { input: body, stdio: ["pipe", "inherit", "inherit"] });
+}
 async function offerBugReport(error) {
   if (!isInteractive()) return;
   const yes = await promptYesNo("\n   This looks like a bug. Open an issue with debug info? [Y/n] ");
@@ -72,22 +86,17 @@ async function offerBugReport(error) {
   const labels = buildLabels(error);
   if (hasGhCli()) {
     try {
-      const args = [
-        "issue",
-        "create",
-        "--repo",
-        "paritytech/bulletin-deploy",
-        "--title",
-        title,
-        ...labels.flatMap((l) => ["--label", l]),
-        "--body-file",
-        "-"
-      ];
-      execFileSync("gh", args, { input: body, stdio: ["pipe", "inherit", "inherit"] });
+      createGhIssue(title, body, labels);
       console.error("   Issue created.");
     } catch {
-      console.error("   Failed to create issue. Debug info below:\n");
-      printFallback(title, body, labels);
+      try {
+        console.error("   Retrying without labels...");
+        createGhIssue(title, body, []);
+        console.error("   Issue created (without labels).");
+      } catch {
+        console.error("   Failed to create issue. Debug info below:\n");
+        printFallback(title, body, labels);
+      }
     }
   } else {
     console.error("\n   gh CLI not found. Debug info below \u2014 paste into a new issue:\n");
@@ -103,6 +112,10 @@ function printFallback(title, body, labels) {
   console.error(body);
 }
 export {
+  buildLabels,
+  buildReportBody,
+  buildTitle,
+  createGhIssue,
   offerBugReport,
   setDeployContext
 };

package/dist/{chunk-SLARK556.js → chunk-3W2COGJ6.js}

@@ -1,12 +1,13 @@
 // src/telemetry.ts
 import { execSync } from "child_process";
+import { createHash } from "crypto";
 import * as fs from "fs";
 import * as path from "path";
 
 // package.json
 var package_default = {
   name: "bulletin-deploy",
-  version: "0.6.8",
+  version: "0.6.9-rc.0",
   private: false,
   repository: {
     type: "git",
@@ -70,7 +71,75 @@ var package_default = {
 // src/telemetry.ts
 var VERSION = package_default.version;
 var DEFAULT_DSN = "https://e021c025d79c4c3ade2862a11f13c40b@o4511059872841728.ingest.de.sentry.io/4511093597405264";
-var DISABLED = process.env.BULLETIN_DEPLOY_TELEMETRY === "0";
+var INTERNAL_ORG_RE = /^(paritytech|w3f|polkadot-fellows)\//i;
+function extractRepoSlug(url) {
+  return url.replace(/.*github\.com[:/]/, "").replace(/\.git$/, "");
+}
+function tryGitRemote() {
+  try {
+    return extractRepoSlug(execSync("git remote get-url origin", { encoding: "utf-8", stdio: ["pipe", "pipe", "pipe"] }).trim());
+  } catch {
+    return void 0;
+  }
+}
+function isInternalContextFromSignals(signals) {
+  if (INTERNAL_ORG_RE.test(signals.githubRepository ?? "")) return true;
+  if (signals.runnerName?.startsWith("parity-")) return true;
+  if (signals.gitRemote && INTERNAL_ORG_RE.test(signals.gitRemote)) return true;
+  return false;
+}
+function isInternalContext() {
+  return isInternalContextFromSignals({
+    githubRepository: process.env.GITHUB_REPOSITORY,
+    runnerName: process.env.RUNNER_NAME,
+    gitRemote: tryGitRemote()
+  });
+}
+var OPT_OUT = process.env.BULLETIN_DEPLOY_TELEMETRY === "0";
+var OPT_IN = process.env.BULLETIN_DEPLOY_TELEMETRY === "1";
+var DISABLED = OPT_OUT || !OPT_IN && !isInternalContext();
+var CONVENTIONAL_BRANCH_PREFIXES = /* @__PURE__ */ new Set([
+  "fix",
+  "feat",
+  "chore",
+  "docs",
+  "test",
+  "refactor",
+  "release",
+  "bump",
+  "perf",
+  "style",
+  "ci",
+  "build",
+  "revert"
+]);
+function scrubPaths(msg) {
+  if (!msg) return msg;
+  return msg.replace(/\/Users\/[^\/\s"'`]+/g, "/Users/<redacted>").replace(/\/home\/[^\/\s"'`]+/g, "/home/<redacted>");
+}
+function truncateAddress(ss58) {
+  if (!ss58) return ss58;
+  return ss58.length > 8 ? `${ss58.slice(0, 8)}\u2026` : ss58;
+}
+function sanitizeBranch(name) {
+  if (!name) return name;
+  const slash = name.indexOf("/");
+  if (slash === -1) return name;
+  const prefix = name.slice(0, slash).toLowerCase();
+  if (CONVENTIONAL_BRANCH_PREFIXES.has(prefix)) return name;
+  return name.slice(slash + 1);
+}
+function sanitizeRepo(slug) {
+  if (!slug) return slug;
+  if (INTERNAL_ORG_RE.test(slug)) return slug;
+  const slash = slug.indexOf("/");
+  if (slash === -1) {
+    return `ext/${createHash("sha256").update(slug).digest("hex").slice(0, 12)}`;
+  }
+  const org = slug.slice(0, slash);
+  const repo = slug.slice(slash + 1);
+  return `${org}/${createHash("sha256").update(repo).digest("hex").slice(0, 12)}`;
+}
 var Sentry = null;
 if (!DISABLED) {
   try {
@@ -84,19 +153,35 @@ function initTelemetry() {
     dsn: process.env.SENTRY_DSN || DEFAULT_DSN,
     release: `${package_default.name}@${VERSION}`,
     tracesSampleRate: 1,
-    environment: process.env.CI ? "ci" : "local"
+    environment: process.env.CI ? "ci" : "local",
+    // Sentry Node SDK captures os.hostname() by default, which leaks personal
+    // machine names (e.g. "Mac.fritz.box"). Override to something anonymous.
+    serverName: process.env.CI ? process.env.RUNNER_NAME ?? "ci" : "local",
+    beforeSend(event) {
+      if (event.server_name) event.server_name = process.env.CI ? process.env.RUNNER_NAME ?? "ci" : "local";
+      if (event.message) event.message = scrubPaths(event.message);
+      for (const ex of event.exception?.values ?? []) {
+        if (ex.value) ex.value = scrubPaths(ex.value);
+      }
+      for (const bc of event.breadcrumbs ?? []) {
+        if (bc.message) bc.message = scrubPaths(bc.message);
+      }
+      return event;
+    },
+    beforeSendTransaction(event) {
+      const spans = event.spans ?? [];
+      for (const span of spans) {
+        const attrs = span.data;
+        if (!attrs) continue;
+        for (const k of Object.keys(attrs)) {
+          const v = attrs[k];
+          if (typeof v === "string") attrs[k] = scrubPaths(v);
+        }
+      }
+      return event;
+    }
   });
 }
-function extractRepoSlug(url) {
-  return url.replace(/.*github\.com[:/]/, "").replace(/\.git$/, "");
-}
-function tryGitRemote() {
-  try {
-    return extractRepoSlug(execSync("git remote get-url origin", { encoding: "utf-8", stdio: ["pipe", "pipe", "pipe"] }).trim());
-  } catch {
-    return void 0;
-  }
-}
 function tryPackageJsonRepo() {
   try {
     const pkg = JSON.parse(fs.readFileSync(path.join(process.cwd(), "package.json"), "utf-8"));
@@ -128,17 +213,20 @@ function resolveRunnerType() {
 }
 function getDeployAttributes(domain) {
   return {
-    "deploy.repo": resolveRepo(domain),
-    "deploy.branch": process.env.GITHUB_HEAD_REF || process.env.GITHUB_REF_NAME || tryGitBranch(),
+    "deploy.repo": sanitizeRepo(resolveRepo(domain)),
+    "deploy.branch": sanitizeBranch(process.env.GITHUB_HEAD_REF || process.env.GITHUB_REF_NAME || tryGitBranch()),
     "deploy.source": process.env.CI ? "ci" : "local",
     "deploy.pr": process.env.GITHUB_PR_NUMBER || void 0,
     "deploy.tool_version": VERSION,
     "deploy.runner": resolveRunner(),
-    "deploy.runner_type": resolveRunnerType()
+    "deploy.runner_type": resolveRunnerType(),
+    // Seed "false" so successful spans form the %SAD denominator; the catch block and
+    // captureWarning flip it to "true" on friction.
+    "deploy.sad": "false"
   };
 }
 function isExpectedError(msg) {
-  return /personhood|owned by|owner mismatch|reserved for original|invalid domain label|not authorized for bulletin|insufficient balance/i.test(msg);
+  return /personhood|owned by|owner mismatch|reserved for original|invalid domain label|not authorized for bulletin|insufficient balance|quota exhausted|insufficient .* authorization/i.test(msg);
 }
 async function withSpan(op, description, attributes, fn) {
   if (!Sentry) return fn();
@@ -171,7 +259,7 @@ async function withDeploySpan(domain, fn) {
         const msg = error.message;
         span.setAttribute("deploy.status", "error");
         span.setAttribute("deploy.error", msg.slice(0, 200));
-        span.setAttribute("deploy.sad", true);
+        span.setAttribute("deploy.sad", "true");
         const isExpected = isExpectedError(msg);
         if (!isExpected) {
           span.setStatus({ code: 2, message: "internal_error" });
@@ -194,7 +282,7 @@ function captureWarning(message, context) {
     Sentry.addBreadcrumb({ level: "warning", message, data: context });
     Sentry.captureMessage(message, { level: "warning", extra: context });
     const root = Sentry.getRootSpan(Sentry.getActiveSpan());
-    if (root) root.setAttribute("deploy.sad", true);
+    if (root) root.setAttribute("deploy.sad", "true");
   } catch {
   }
 }
@@ -205,10 +293,17 @@ async function flush() {
 
 export {
   VERSION,
+  isInternalContextFromSignals,
+  isInternalContext,
+  scrubPaths,
+  truncateAddress,
+  sanitizeBranch,
+  sanitizeRepo,
   initTelemetry,
   resolveRepo,
   resolveRunner,
   resolveRunnerType,
+  getDeployAttributes,
   isExpectedError,
   withSpan,
   withDeploySpan,

package/dist/{chunk-LGPTJYA3.js → chunk-CUFLI45S.js}

@@ -55,13 +55,13 @@ async function fetchPoolAuthorizations(api, accounts) {
   );
   return results;
 }
-async function ensureAuthorized(api, address, bulletinRpc, label) {
+async function ensureAuthorized(api, address, bulletinRpc, label, minimum = { txs: TOPUP_THRESHOLD_TXS, bytes: TOPUP_THRESHOLD_BYTES }) {
   const auth = await api.query.TransactionStorage.Authorizations.getValue(
     Enum("Account", address)
   );
   const txsRemaining = auth ? BigInt(auth.extent.transactions) : 0n;
   const bytesRemaining = auth ? auth.extent.bytes : 0n;
-  if (txsRemaining >= TOPUP_THRESHOLD_TXS && bytesRemaining >= TOPUP_THRESHOLD_BYTES) {
+  if (txsRemaining >= minimum.txs && bytesRemaining >= minimum.bytes) {
     return;
   }
   console.log(`   Auto-authorizing ${label ?? "account"} (${address.slice(0, 8)}...)...`);

package/dist/{chunk-LVCOE5CC.js → chunk-IHFIWF2A.js}

@@ -4,7 +4,7 @@ import {
   TX_TIMEOUT_MS,
   fetchNonce,
   validateDomainLabel
-} from "./chunk-KHLH5WQY.js";
+} from "./chunk-WOHUOD3E.js";
 import {
   merkleizeJS
 } from "./chunk-GZ5UUECB.js";
@@ -13,7 +13,7 @@ import {
   ensureAuthorized,
   fetchPoolAuthorizations,
   selectAccount
-} from "./chunk-LGPTJYA3.js";
+} from "./chunk-CUFLI45S.js";
 import {
   VERSION,
   captureWarning,
@@ -21,9 +21,10 @@ import {
   resolveRunner,
   resolveRunnerType,
   setDeployAttribute,
+  truncateAddress,
   withDeploySpan,
   withSpan
-} from "./chunk-SLARK556.js";
+} from "./chunk-3W2COGJ6.js";
 
 // src/deploy.ts
 import { Buffer } from "buffer";
@@ -306,6 +307,12 @@ var NonRetryableError = class extends Error {
   }
 };
 var EXIT_CODE_NO_RETRY = 78;
+function friendlyChainError(msg) {
+  if (/"type":\s*"Invalid"[\s\S]*?"type":\s*"Payment"/i.test(msg)) {
+    return "authorization quota exhausted (Bulletin signed extension rejected the tx \u2014 signer is out of authorized txs or bytes)";
+  }
+  return msg;
+}
 var DEFAULT_BULLETIN_RPC = "wss://paseo-bulletin-rpc.polkadot.io";
 var DEFAULT_POOL_SIZE = 10;
 var BULLETIN_RPC = DEFAULT_BULLETIN_RPC;
@@ -414,7 +421,7 @@ async function getProvider() {
     }
     console.log(`   Using pool account ${selected.index}: ${selected.address}`);
     setDeployAttribute("deploy.signer.mode", "pool");
-    setDeployAttribute("deploy.pool.account", selected.address);
+    setDeployAttribute("deploy.pool.account", truncateAddress(selected.address));
     setDeployAttribute("deploy.pool.index", selected.index);
     return { client, unsafeApi, signer: selected.signer, ss58: selected.address };
   } catch (e) {
@@ -439,7 +446,7 @@ async function getDirectProvider(mnemonic) {
   }
   console.log(`   Authorization: ${txsRemaining} txs, ${Number(bytesRemaining) / 1e6}MB remaining`);
   setDeployAttribute("deploy.signer.mode", "direct");
-  setDeployAttribute("deploy.signer.address", ss58);
+  setDeployAttribute("deploy.signer.address", truncateAddress(ss58));
   return { client, unsafeApi, signer, ss58 };
 }
 var MAX_BEST_CHAIN_DROPS = 5;
@@ -503,7 +510,7 @@ function watchTransaction(tx, signer, txOpts, onSuccess, { label = "transaction"
       },
       error: (e) => {
         const msg = e?.message || String(e).slice(0, 500);
-        settle(reject)(new Error(`${label} subscription error: ${msg}`));
+        settle(reject)(new Error(`${label} subscription error: ${friendlyChainError(msg)}`));
       }
     });
   });
@@ -574,20 +581,21 @@ async function storeChunkedContent(chunks, { client: existingClient, unsafeApi:
     ownsClient = true;
   }
   const requiredTxs = BigInt(chunks.length + 1);
+  const requiredBytes = BigInt(totalBytes);
   const auth = await unsafeApi.query.TransactionStorage.Authorizations.getValue(
     Enum("Account", ss58)
   );
   const txsRemaining = auth ? BigInt(auth.extent.transactions) : 0n;
   const bytesRemaining = auth ? auth.extent.bytes : 0n;
-  if (txsRemaining < requiredTxs || bytesRemaining < BigInt(totalBytes)) {
+  if (txsRemaining < requiredTxs || bytesRemaining < requiredBytes) {
     console.log(`
    Account has insufficient authorization for this upload (need ${requiredTxs} txs / ${(totalBytes / 1e6).toFixed(1)}MB, have ${txsRemaining} txs / ${Number(bytesRemaining) / 1e6}MB)`);
     console.log(`   Attempting to re-authorize with Alice...`);
     try {
-      await ensureAuthorized(unsafeApi, ss58, BULLETIN_RPC);
+      await ensureAuthorized(unsafeApi, ss58, BULLETIN_RPC, void 0, { txs: requiredTxs, bytes: requiredBytes });
       console.log(`   Re-authorization successful`);
     } catch (e) {
-      throw new Error(`Re-authorization failed: ${e.message}`);
+      throw new NonRetryableError(`Account ${ss58} has insufficient Bulletin authorization quota and auto-authorization via Alice failed (${e.message}). Authorize the account on-chain, or run 'bulletin-deploy --bootstrap --mnemonic "..."' in a dev network.`);
     }
   }
   let reconnectionsUsed = 0;
@@ -689,7 +697,7 @@ async function storeChunkedContent(chunks, { client: existingClient, unsafeApi:
         }
       }
     }
-    setDeployAttribute("deploy.pool.account", ss58);
+    setDeployAttribute("deploy.pool.account", truncateAddress(ss58));
     console.log(`
    All ${chunks.length} chunks included in block`);
     console.log(`   Verifying chunk integrity...`);
@@ -786,15 +794,16 @@ async function merkleize(directoryPath, outputCarPath) {
 async function storeDirectory(directoryPath, provider = {}, password, jsMerkle) {
   let carContent;
   let ipfsCid;
+  const dirBasename = path.basename(directoryPath);
   if (jsMerkle) {
-    const result = await withSpan("deploy.merkleize", "1a. merkleize (js)", { "deploy.directory": directoryPath }, async () => {
+    const result = await withSpan("deploy.merkleize", "1a. merkleize (js)", { "deploy.directory": dirBasename }, async () => {
       return merkleizeJS(directoryPath);
     });
     carContent = result.carBytes;
     ipfsCid = result.cid;
   } else {
     const carPath = path.join(path.dirname(directoryPath), `${path.basename(directoryPath)}.car`);
-    const { cid } = await withSpan("deploy.merkleize", "1a. merkleize", { "deploy.directory": directoryPath }, async () => {
+    const { cid } = await withSpan("deploy.merkleize", "1a. merkleize", { "deploy.directory": dirBasename }, async () => {
       return merkleize(directoryPath, carPath);
     });
     ipfsCid = cid;
@@ -1006,6 +1015,7 @@ Or deploy with the original account, or use a different domain name.`);
 export {
   NonRetryableError,
   EXIT_CODE_NO_RETRY,
+  friendlyChainError,
   DEFAULT_BULLETIN_RPC,
   DEFAULT_POOL_SIZE,
   isConnectionError,

package/dist/{chunk-KHLH5WQY.js → chunk-WOHUOD3E.js}

@@ -1,7 +1,7 @@
 import {
   captureWarning,
   withSpan
-} from "./chunk-SLARK556.js";
+} from "./chunk-3W2COGJ6.js";
 
 // src/dotns.ts
 import crypto from "crypto";
@@ -414,7 +414,7 @@ var DotNS = class {
         return this;
       } catch (e) {
         lastError = e;
-        captureWarning("DotNS RPC endpoint failed, trying next", { endpoint: rpc, error: e.message, remainingEndpoints: endpoints.length - endpoints.indexOf(rpc) - 1 });
+        captureWarning("DotNS RPC endpoint failed, trying next", { endpoint: rpc, error: e.message?.slice(0, 200), remainingEndpoints: endpoints.length - endpoints.indexOf(rpc) - 1 });
         console.log(`   Failed to connect to ${rpc}: ${e.message}`);
         if (this.client) {
           try {

package/dist/{chunk-SYJ2L6RU.js → chunk-X7WJJEXW.js}

@@ -1,6 +1,6 @@
 import {
   VERSION
-} from "./chunk-SLARK556.js";
+} from "./chunk-3W2COGJ6.js";
 
 // src/version-check.ts
 import { execSync, execFileSync } from "child_process";
@@ -17,6 +17,19 @@ function compareSemver(a, b) {
   }
   return 0;
 }
+function isPreReleaseVersion(version) {
+  return version.includes("-");
+}
+function preReleaseWarning(version) {
+  if (!isPreReleaseVersion(version)) return null;
+  return [
+    "",
+    `\u26A0\uFE0F  Running bulletin-deploy ${version} (release candidate).`,
+    "   This version is not recommended for production deploys.",
+    "   For stable:  npm install -g bulletin-deploy@latest",
+    ""
+  ].join("\n");
+}
 async function fetchJson(url) {
   try {
     const controller = new AbortController();
@@ -55,12 +68,38 @@ function isInternalUser() {
 function isInteractive() {
   return Boolean(process.stdin.isTTY && !process.env.CI);
 }
-async function promptYesNo(question) {
-  const rl = createInterface({ input: process.stdin, output: process.stderr });
+async function promptYesNo(question, input) {
+  const stdin = input ?? process.stdin;
+  if (!input && !process.stdin.isTTY) return false;
+  const rl = createInterface({ input: stdin, output: process.stderr });
+  let answered = false;
   return new Promise((resolve) => {
+    rl.on("close", () => {
+      if (!answered) {
+        answered = true;
+        resolve(false);
+      }
+    });
     rl.question(question, (answer) => {
-      rl.close();
-      resolve(!answer || answer.toLowerCase().startsWith("y"));
+      if (answered) return;
+      const a = answer.trim().toLowerCase();
+      if (a === "" || a === "y" || a === "yes") {
+        answered = true;
+        rl.close();
+        resolve(true);
+      } else if (a === "n" || a === "no") {
+        answered = true;
+        rl.close();
+        resolve(false);
+      } else {
+        rl.question("   Please answer Y or N: ", (retry) => {
+          if (answered) return;
+          const r = retry.trim().toLowerCase();
+          answered = true;
+          rl.close();
+          resolve(r === "" || r === "y" || r === "yes");
+        });
+      }
     });
   });
 }
@@ -137,6 +176,8 @@ async function handleFailedDeploy(error) {
 
 export {
   compareSemver,
+  isPreReleaseVersion,
+  preReleaseWarning,
   isInternalUser,
   isInteractive,
   promptYesNo,

package/dist/deploy.d.ts

@@ -12,6 +12,7 @@ declare class NonRetryableError extends Error {
     constructor(message: string);
 }
 declare const EXIT_CODE_NO_RETRY = 78;
+declare function friendlyChainError(msg: string): string;
 interface ProviderResult {
     client: any;
     unsafeApi: any;
@@ -70,4 +71,4 @@ interface DeployOptions {
 }
 declare function deploy(content: DeployContent, domainName?: string | null, options?: DeployOptions): Promise<DeployResult>;
 
-export { DEFAULT_BULLETIN_RPC, DEFAULT_POOL_SIZE, type DeployContent, type DeployOptions, type DeployResult, ENCRYPT_KEY_LEN, ENCRYPT_MAGIC, ENCRYPT_NONCE_LEN, ENCRYPT_PBKDF2_ITERATIONS, ENCRYPT_SALT_LEN, ENCRYPT_TAG_LEN, EXIT_CODE_NO_RETRY, NonRetryableError, chunk, createCID, deploy, deriveRootSigner, encodeContenthash, encryptContent, hasIPFS, isConnectionError, merkleize, storeChunkedContent, storeDirectory, storeFile };
+export { DEFAULT_BULLETIN_RPC, DEFAULT_POOL_SIZE, type DeployContent, type DeployOptions, type DeployResult, ENCRYPT_KEY_LEN, ENCRYPT_MAGIC, ENCRYPT_NONCE_LEN, ENCRYPT_PBKDF2_ITERATIONS, ENCRYPT_SALT_LEN, ENCRYPT_TAG_LEN, EXIT_CODE_NO_RETRY, NonRetryableError, chunk, createCID, deploy, deriveRootSigner, encodeContenthash, encryptContent, friendlyChainError, hasIPFS, isConnectionError, merkleize, storeChunkedContent, storeDirectory, storeFile };

package/dist/deploy.js

@@ -15,17 +15,18 @@ import {
   deriveRootSigner,
   encodeContenthash,
   encryptContent,
+  friendlyChainError,
   hasIPFS,
   isConnectionError,
   merkleize,
   storeChunkedContent,
   storeDirectory,
   storeFile
-} from "./chunk-LVCOE5CC.js";
-import "./chunk-KHLH5WQY.js";
+} from "./chunk-IHFIWF2A.js";
+import "./chunk-WOHUOD3E.js";
 import "./chunk-GZ5UUECB.js";
-import "./chunk-LGPTJYA3.js";
-import "./chunk-SLARK556.js";
+import "./chunk-CUFLI45S.js";
+import "./chunk-3W2COGJ6.js";
 import "./chunk-QGM4M3NI.js";
 export {
   DEFAULT_BULLETIN_RPC,
@@ -44,6 +45,7 @@ export {
   deriveRootSigner,
   encodeContenthash,
   encryptContent,
+  friendlyChainError,
   hasIPFS,
   isConnectionError,
   merkleize,

package/dist/dotns.js

@@ -19,8 +19,8 @@ import {
   sanitizeDomainLabel,
   stripTrailingDigits,
   validateDomainLabel
-} from "./chunk-KHLH5WQY.js";
-import "./chunk-SLARK556.js";
+} from "./chunk-WOHUOD3E.js";
+import "./chunk-3W2COGJ6.js";
 import "./chunk-QGM4M3NI.js";
 export {
   CONNECTION_TIMEOUT_MS,

package/dist/index.js

@@ -1,9 +1,9 @@
 import {
   deploy
-} from "./chunk-LVCOE5CC.js";
+} from "./chunk-IHFIWF2A.js";
 import {
   DotNS
-} from "./chunk-KHLH5WQY.js";
+} from "./chunk-WOHUOD3E.js";
 import {
   merkleizeJS
 } from "./chunk-GZ5UUECB.js";
@@ -13,8 +13,8 @@ import {
   ensureAuthorized,
   fetchPoolAuthorizations,
   selectAccount
-} from "./chunk-LGPTJYA3.js";
-import "./chunk-SLARK556.js";
+} from "./chunk-CUFLI45S.js";
+import "./chunk-3W2COGJ6.js";
 import "./chunk-QGM4M3NI.js";
 export {
   DotNS,

package/dist/pool.d.ts

@@ -14,7 +14,11 @@ interface PoolAuthorization extends PoolAccount {
 declare function derivePoolAccounts(poolSize?: number, mnemonic?: string): PoolAccount[];
 declare function selectAccount(authorizations: PoolAuthorization[]): PoolAuthorization | null;
 declare function fetchPoolAuthorizations(api: any, accounts: PoolAccount[]): Promise<PoolAuthorization[]>;
-declare function ensureAuthorized(api: any, address: string, bulletinRpc: string, label?: string): Promise<void>;
+interface AuthorizationNeeds {
+    txs: bigint;
+    bytes: bigint;
+}
+declare function ensureAuthorized(api: any, address: string, bulletinRpc: string, label?: string, minimum?: AuthorizationNeeds): Promise<void>;
 declare function bootstrapPool(bulletinRpc: string, poolSize?: number, mnemonic?: string): Promise<void>;
 
-export { type PoolAccount, type PoolAuthorization, bootstrapPool, derivePoolAccounts, ensureAuthorized, fetchPoolAuthorizations, selectAccount };
+export { type AuthorizationNeeds, type PoolAccount, type PoolAuthorization, bootstrapPool, derivePoolAccounts, ensureAuthorized, fetchPoolAuthorizations, selectAccount };

package/dist/pool.js

@@ -4,7 +4,7 @@ import {
   ensureAuthorized,
   fetchPoolAuthorizations,
   selectAccount
-} from "./chunk-LGPTJYA3.js";
+} from "./chunk-CUFLI45S.js";
 import "./chunk-QGM4M3NI.js";
 export {
   bootstrapPool,

package/dist/telemetry.d.ts

@@ -1,8 +1,20 @@
 declare const VERSION: string;
+interface InternalContextSignals {
+    githubRepository?: string;
+    runnerName?: string;
+    gitRemote?: string;
+}
+declare function isInternalContextFromSignals(signals: InternalContextSignals): boolean;
+declare function isInternalContext(): boolean;
+declare function scrubPaths(msg: string): string;
+declare function truncateAddress(ss58: string | undefined): string | undefined;
+declare function sanitizeBranch(name: string | undefined): string | undefined;
+declare function sanitizeRepo(slug: string | undefined): string | undefined;
 declare function initTelemetry(): void;
 declare function resolveRepo(domain: string): string;
 declare function resolveRunner(): string;
 declare function resolveRunnerType(): string;
+declare function getDeployAttributes(domain: string): Record<string, string | number | boolean | undefined>;
 declare function isExpectedError(msg: string): boolean;
 declare function withSpan<T>(op: string, description: string, attributes: Record<string, string | number | boolean | undefined>, fn: () => T | Promise<T>): Promise<T>;
 declare function withDeploySpan<T>(domain: string, fn: () => T | Promise<T>): Promise<T>;
@@ -10,4 +22,4 @@ declare function setDeployAttribute(key: string, value: string | number | boolea
 declare function captureWarning(message: string, context?: Record<string, unknown>): void;
 declare function flush(): Promise<void>;
 
-export { VERSION, captureWarning, flush, initTelemetry, isExpectedError, resolveRepo, resolveRunner, resolveRunnerType, setDeployAttribute, withDeploySpan, withSpan };
+export { type InternalContextSignals, VERSION, captureWarning, flush, getDeployAttributes, initTelemetry, isExpectedError, isInternalContext, isInternalContextFromSignals, resolveRepo, resolveRunner, resolveRunnerType, sanitizeBranch, sanitizeRepo, scrubPaths, setDeployAttribute, truncateAddress, withDeploySpan, withSpan };

package/dist/telemetry.js

@@ -2,26 +2,40 @@ import {
   VERSION,
   captureWarning,
   flush,
+  getDeployAttributes,
   initTelemetry,
   isExpectedError,
+  isInternalContext,
+  isInternalContextFromSignals,
   resolveRepo,
   resolveRunner,
   resolveRunnerType,
+  sanitizeBranch,
+  sanitizeRepo,
+  scrubPaths,
   setDeployAttribute,
+  truncateAddress,
   withDeploySpan,
   withSpan
-} from "./chunk-SLARK556.js";
+} from "./chunk-3W2COGJ6.js";
 import "./chunk-QGM4M3NI.js";
 export {
   VERSION,
   captureWarning,
   flush,
+  getDeployAttributes,
   initTelemetry,
   isExpectedError,
+  isInternalContext,
+  isInternalContextFromSignals,
   resolveRepo,
   resolveRunner,
   resolveRunnerType,
+  sanitizeBranch,
+  sanitizeRepo,
+  scrubPaths,
   setDeployAttribute,
+  truncateAddress,
   withDeploySpan,
   withSpan
 };

package/dist/version-check.d.ts

@@ -1,3 +1,5 @@
+import { Readable } from 'node:stream';
+
 interface VersionInfo {
     latest: string;
     minimumFromRegistry: string | null;
@@ -5,9 +7,11 @@ interface VersionInfo {
     killSwitchMessage: string | null;
 }
 declare function compareSemver(a: string, b: string): number;
+declare function isPreReleaseVersion(version: string): boolean;
+declare function preReleaseWarning(version: string): string | null;
 declare function isInternalUser(): boolean;
 declare function isInteractive(): boolean;
-declare function promptYesNo(question: string): Promise<boolean>;
+declare function promptYesNo(question: string, input?: Readable): Promise<boolean>;
 declare function classifyErrorArea(msg: string): string | null;
 type VersionVerdict = {
     action: "forced_update";
@@ -28,4 +32,4 @@ type VersionVerdict = {
 declare function assessVersion(currentVersion: string, info: VersionInfo, internal: boolean): VersionVerdict;
 declare function handleFailedDeploy(error: Error): Promise<void>;
 
-export { type VersionVerdict, assessVersion, classifyErrorArea, compareSemver, handleFailedDeploy, isInteractive, isInternalUser, promptYesNo };
+export { type VersionVerdict, assessVersion, classifyErrorArea, compareSemver, handleFailedDeploy, isInteractive, isInternalUser, isPreReleaseVersion, preReleaseWarning, promptYesNo };

package/dist/version-check.js

@@ -5,9 +5,11 @@ import {
   handleFailedDeploy,
   isInteractive,
   isInternalUser,
+  isPreReleaseVersion,
+  preReleaseWarning,
   promptYesNo
-} from "./chunk-SYJ2L6RU.js";
-import "./chunk-SLARK556.js";
+} from "./chunk-X7WJJEXW.js";
+import "./chunk-3W2COGJ6.js";
 import "./chunk-QGM4M3NI.js";
 export {
   assessVersion,
@@ -16,5 +18,7 @@ export {
   handleFailedDeploy,
   isInteractive,
   isInternalUser,
+  isPreReleaseVersion,
+  preReleaseWarning,
   promptYesNo
 };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "bulletin-deploy",
-  "version": "0.6.8",
+  "version": "0.6.9-rc.0",
   "private": false,
   "repository": {
     "type": "git",