npm - cli-tunnel - Versions diffs - 1.3.1-beta.1 → 1.3.1-beta.2 - Mend

cli-tunnel 1.3.1-beta.1 → 1.3.1-beta.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/dist/index.js +12 -15
package/package.json +1 -1

package/dist/index.js CHANGED Viewed

@@ -187,7 +187,6 @@ setInterval(() => {
 }, 30000);
 // ─── Security: Redact secrets from replay events ────────────
 // ─── Bridge server ──────────────────────────────────────────
-const acpEventLog = [];
 const connections = new Map();
 let localResizeAt = 0; // Timestamp of last local terminal resize
 // #10: Session TTL enforcement — periodically close expired connections
@@ -526,12 +525,10 @@ wss.on('connection', (ws, req) => {
     // F-10: WS ping/pong heartbeat
     ws._isAlive = true;
     ws.on('pong', () => { ws._isAlive = true; });
-    // Replay history with secrets redacted (only if replay is enabled)
-    if (hasReplay) {
-        for (const event of acpEventLog) {
-            ws.send(JSON.stringify({ type: '_replay', data: redactSecrets(event) }));
-        }
-        ws.send(JSON.stringify({ type: '_replay_done' }));
+    // Replay: send accumulated PTY output as one bulk write
+    // xterm.js processes the full ANSI stream so cursor codes work correctly
+    if (hasReplay && replayBuffer.length > 0) {
+        ws.send(JSON.stringify({ type: 'pty', data: replayBuffer }));
     }
     ws.on('message', (data) => {
         // F-13: Enforce WS message rate limit (100 msg/sec)
@@ -587,19 +584,19 @@ setInterval(() => {
         ws.ping();
     }
 }, 30000);
-// F-12: Cap per-entry replay buffer size (64KB)
-const MAX_REPLAY_ENTRY_SIZE = 65536;
+// Replay buffer: store raw PTY bytes in a single rolling buffer
+// xterm.js processes the full stream on connect, so ANSI cursor codes work correctly
+const MAX_REPLAY_BYTES = 256 * 1024; // 256KB
+let replayBuffer = '';
 function broadcast(data) {
-    // F-01: Redact secrets from live broadcast (not just replay)
     const redacted = redactSecrets(data);
     const msg = JSON.stringify({ type: 'pty', data: redacted });
     if (hasReplay) {
-        // F-12: Cap per-entry size to prevent memory exhaustion
-        if (msg.length <= MAX_REPLAY_ENTRY_SIZE) {
-            acpEventLog.push(msg);
+        replayBuffer += redacted;
+        // Trim from the front if too large
+        if (replayBuffer.length > MAX_REPLAY_BYTES) {
+            replayBuffer = replayBuffer.slice(replayBuffer.length - MAX_REPLAY_BYTES);
         }
-        if (acpEventLog.length > 2000)
-            acpEventLog.splice(0, acpEventLog.length - 2000);
     }
     for (const [, ws] of connections) {
         if (ws.readyState === WebSocket.OPEN)

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "cli-tunnel",
-  "version": "1.3.1-beta.1",
+  "version": "1.3.1-beta.2",
   "description": "Tunnel any CLI app to your phone — PTY + devtunnel + xterm.js",
   "type": "module",
   "main": "dist/index.js",