npm - codepiper - Versions diffs - 0.1.0 - Mend

codepiper 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (149) hide show

package/.env.example +28 -0
package/CHANGELOG.md +10 -0
package/LEGAL_NOTICE.md +39 -0
package/LICENSE +21 -0
package/README.md +524 -0
package/package.json +90 -0
package/packages/cli/package.json +13 -0
package/packages/cli/src/commands/analytics.ts +157 -0
package/packages/cli/src/commands/attach.ts +299 -0
package/packages/cli/src/commands/audit.ts +50 -0
package/packages/cli/src/commands/auth.ts +261 -0
package/packages/cli/src/commands/daemon.ts +162 -0
package/packages/cli/src/commands/doctor.ts +303 -0
package/packages/cli/src/commands/env-set.ts +162 -0
package/packages/cli/src/commands/hook-forward.ts +268 -0
package/packages/cli/src/commands/keys.ts +77 -0
package/packages/cli/src/commands/kill.ts +19 -0
package/packages/cli/src/commands/logs.ts +419 -0
package/packages/cli/src/commands/model.ts +172 -0
package/packages/cli/src/commands/policy-set.ts +185 -0
package/packages/cli/src/commands/policy.ts +227 -0
package/packages/cli/src/commands/providers.ts +114 -0
package/packages/cli/src/commands/resize.ts +34 -0
package/packages/cli/src/commands/send.ts +184 -0
package/packages/cli/src/commands/sessions.ts +202 -0
package/packages/cli/src/commands/slash.ts +92 -0
package/packages/cli/src/commands/start.ts +243 -0
package/packages/cli/src/commands/stop.ts +19 -0
package/packages/cli/src/commands/tail.ts +137 -0
package/packages/cli/src/commands/workflow.ts +786 -0
package/packages/cli/src/commands/workspace.ts +127 -0
package/packages/cli/src/lib/api.ts +78 -0
package/packages/cli/src/lib/args.ts +72 -0
package/packages/cli/src/lib/format.ts +93 -0
package/packages/cli/src/main.ts +563 -0
package/packages/core/package.json +7 -0
package/packages/core/src/config.ts +30 -0
package/packages/core/src/errors.ts +38 -0
package/packages/core/src/eventBus.ts +56 -0
package/packages/core/src/eventBusAdapter.ts +143 -0
package/packages/core/src/index.ts +10 -0
package/packages/core/src/sqliteEventBus.ts +336 -0
package/packages/core/src/types.ts +63 -0
package/packages/daemon/package.json +11 -0
package/packages/daemon/src/api/analyticsRoutes.ts +343 -0
package/packages/daemon/src/api/authRoutes.ts +344 -0
package/packages/daemon/src/api/bodyLimit.ts +133 -0
package/packages/daemon/src/api/envSetRoutes.ts +170 -0
package/packages/daemon/src/api/gitRoutes.ts +409 -0
package/packages/daemon/src/api/hooks.ts +588 -0
package/packages/daemon/src/api/inputPolicy.ts +249 -0
package/packages/daemon/src/api/notificationRoutes.ts +532 -0
package/packages/daemon/src/api/policyRoutes.ts +234 -0
package/packages/daemon/src/api/policySetRoutes.ts +445 -0
package/packages/daemon/src/api/routeUtils.ts +28 -0
package/packages/daemon/src/api/routes.ts +1004 -0
package/packages/daemon/src/api/server.ts +1388 -0
package/packages/daemon/src/api/settingsRoutes.ts +367 -0
package/packages/daemon/src/api/sqliteErrors.ts +47 -0
package/packages/daemon/src/api/stt.ts +143 -0
package/packages/daemon/src/api/terminalRoutes.ts +200 -0
package/packages/daemon/src/api/validation.ts +287 -0
package/packages/daemon/src/api/validationRoutes.ts +174 -0
package/packages/daemon/src/api/workflowRoutes.ts +567 -0
package/packages/daemon/src/api/workspaceRoutes.ts +151 -0
package/packages/daemon/src/api/ws.ts +1588 -0
package/packages/daemon/src/auth/apiRateLimiter.ts +73 -0
package/packages/daemon/src/auth/authMiddleware.ts +305 -0
package/packages/daemon/src/auth/authService.ts +496 -0
package/packages/daemon/src/auth/rateLimiter.ts +137 -0
package/packages/daemon/src/config/pricing.ts +79 -0
package/packages/daemon/src/crypto/encryption.ts +196 -0
package/packages/daemon/src/db/db.ts +2745 -0
package/packages/daemon/src/db/index.ts +16 -0
package/packages/daemon/src/db/migrations.ts +182 -0
package/packages/daemon/src/db/policyDb.ts +349 -0
package/packages/daemon/src/db/schema.sql +408 -0
package/packages/daemon/src/db/workflowDb.ts +464 -0
package/packages/daemon/src/git/gitUtils.ts +544 -0
package/packages/daemon/src/index.ts +6 -0
package/packages/daemon/src/main.ts +525 -0
package/packages/daemon/src/notifications/pushNotifier.ts +369 -0
package/packages/daemon/src/providers/codexAppServerScaffold.ts +49 -0
package/packages/daemon/src/providers/registry.ts +111 -0
package/packages/daemon/src/providers/types.ts +82 -0
package/packages/daemon/src/sessions/auditLogger.ts +103 -0
package/packages/daemon/src/sessions/policyEngine.ts +165 -0
package/packages/daemon/src/sessions/policyMatcher.ts +114 -0
package/packages/daemon/src/sessions/policyTypes.ts +94 -0
package/packages/daemon/src/sessions/ptyProcess.ts +141 -0
package/packages/daemon/src/sessions/sessionManager.ts +1770 -0
package/packages/daemon/src/sessions/tmuxSession.ts +1073 -0
package/packages/daemon/src/sessions/transcriptManager.ts +110 -0
package/packages/daemon/src/sessions/transcriptParser.ts +149 -0
package/packages/daemon/src/sessions/transcriptTailer.ts +214 -0
package/packages/daemon/src/tracking/tokenTracker.ts +168 -0
package/packages/daemon/src/workflows/contextManager.ts +83 -0
package/packages/daemon/src/workflows/index.ts +31 -0
package/packages/daemon/src/workflows/resultExtractor.ts +118 -0
package/packages/daemon/src/workflows/waitConditionPoller.ts +131 -0
package/packages/daemon/src/workflows/workflowParser.ts +217 -0
package/packages/daemon/src/workflows/workflowRunner.ts +969 -0
package/packages/daemon/src/workflows/workflowTypes.ts +188 -0
package/packages/daemon/src/workflows/workflowValidator.ts +533 -0
package/packages/providers/claude-code/package.json +11 -0
package/packages/providers/claude-code/src/index.ts +7 -0
package/packages/providers/claude-code/src/overlaySettings.ts +198 -0
package/packages/providers/claude-code/src/provider.ts +311 -0
package/packages/web/dist/android-chrome-192x192.png +0 -0
package/packages/web/dist/android-chrome-512x512.png +0 -0
package/packages/web/dist/apple-touch-icon.png +0 -0
package/packages/web/dist/assets/AnalyticsPage-BIopKWRf.js +17 -0
package/packages/web/dist/assets/PoliciesPage-CjdLN3dl.js +11 -0
package/packages/web/dist/assets/SessionDetailPage-BtSA0V0M.js +179 -0
package/packages/web/dist/assets/SettingsPage-Dbbz4Ca5.js +37 -0
package/packages/web/dist/assets/WorkflowsPage-Dv6f3GgU.js +1 -0
package/packages/web/dist/assets/chart-vendor-DlOHLaCG.js +49 -0
package/packages/web/dist/assets/codicon-ngg6Pgfi.ttf +0 -0
package/packages/web/dist/assets/css.worker-BvV5MPou.js +93 -0
package/packages/web/dist/assets/editor.worker-CKy7Pnvo.js +26 -0
package/packages/web/dist/assets/html.worker-BLJhxQJQ.js +470 -0
package/packages/web/dist/assets/index-BbdhRfr2.css +1 -0
package/packages/web/dist/assets/index-hgphORiw.js +204 -0
package/packages/web/dist/assets/json.worker-usMZ-FED.js +58 -0
package/packages/web/dist/assets/monaco-core-B_19GPAS.css +1 -0
package/packages/web/dist/assets/monaco-core-DQ5Mk8AK.js +1234 -0
package/packages/web/dist/assets/monaco-react-DfZNWvtW.js +11 -0
package/packages/web/dist/assets/monacoSetup-DvBj52bT.js +1 -0
package/packages/web/dist/assets/pencil-Dbczxz59.js +11 -0
package/packages/web/dist/assets/react-vendor-B5MgMUHH.js +136 -0
package/packages/web/dist/assets/refresh-cw-B0MGsYPL.js +6 -0
package/packages/web/dist/assets/tabs-C8LsWiR5.js +1 -0
package/packages/web/dist/assets/terminal-vendor-Cs8KPbV3.js +9 -0
package/packages/web/dist/assets/terminal-vendor-LcAfv9l9.css +32 -0
package/packages/web/dist/assets/trash-2-Btlg0d4l.js +6 -0
package/packages/web/dist/assets/ts.worker-DGHjMaqB.js +67731 -0
package/packages/web/dist/favicon.ico +0 -0
package/packages/web/dist/icon.svg +1 -0
package/packages/web/dist/index.html +29 -0
package/packages/web/dist/manifest.json +29 -0
package/packages/web/dist/og-image.png +0 -0
package/packages/web/dist/originals/android-chrome-192x192.png +0 -0
package/packages/web/dist/originals/android-chrome-512x512.png +0 -0
package/packages/web/dist/originals/apple-touch-icon.png +0 -0
package/packages/web/dist/originals/favicon.ico +0 -0
package/packages/web/dist/piper.svg +1 -0
package/packages/web/dist/sounds/codepiper-soft-chime.wav +0 -0
package/packages/web/dist/sw.js +257 -0
package/scripts/postinstall-link-workspaces.mjs +58 -0

package/packages/daemon/src/auth/apiRateLimiter.ts ADDED Viewed

@@ -0,0 +1,73 @@
+/**
+ * Lightweight per-IP API rate limiter for HTTP/TCP requests.
+ *
+ * Uses a fixed time window with in-memory counters. Intended to mitigate
+ * accidental or malicious request floods against the browser-facing API.
+ */
+export interface ApiRateLimiterOptions {
+  maxRequests: number;
+  windowMs: number;
+  cleanupIntervalMs?: number;
+}
+export interface ApiRateLimitResult {
+  allowed: boolean;
+  retryAfterMs?: number;
+}
+interface ApiWindow {
+  count: number;
+  windowStart: number;
+}
+export class ApiRateLimiter {
+  private windows = new Map<string, ApiWindow>();
+  private cleanupTimer: ReturnType<typeof setInterval> | null = null;
+  private readonly cleanupIntervalMs: number;
+  constructor(private readonly options: ApiRateLimiterOptions) {
+    this.cleanupIntervalMs = options.cleanupIntervalMs ?? Math.max(5000, options.windowMs);
+    this.cleanupTimer = setInterval(() => this.cleanup(), this.cleanupIntervalMs);
+    if (this.cleanupTimer.unref) {
+      this.cleanupTimer.unref();
+    }
+  }
+  consume(key: string): ApiRateLimitResult {
+    const now = Date.now();
+    const existing = this.windows.get(key);
+    if (!existing || now - existing.windowStart >= this.options.windowMs) {
+      this.windows.set(key, { count: 1, windowStart: now });
+      return { allowed: true };
+    }
+    if (existing.count >= this.options.maxRequests) {
+      return {
+        allowed: false,
+        retryAfterMs: existing.windowStart + this.options.windowMs - now,
+      };
+    }
+    existing.count += 1;
+    return { allowed: true };
+  }
+  private cleanup(): void {
+    const now = Date.now();
+    for (const [key, windowState] of this.windows) {
+      if (now - windowState.windowStart >= this.options.windowMs) {
+        this.windows.delete(key);
+      }
+    }
+  }
+  destroy(): void {
+    if (this.cleanupTimer) {
+      clearInterval(this.cleanupTimer);
+      this.cleanupTimer = null;
+    }
+    this.windows.clear();
+  }
+}

package/packages/daemon/src/auth/authMiddleware.ts ADDED Viewed

@@ -0,0 +1,305 @@
+/**
+ * Authentication middleware for HTTP requests.
+ *
+ * Unix socket requests bypass auth (trusted local access).
+ * HTTP/TCP requests require a valid session token.
+ */
+import { isIP } from "node:net";
+import { hashToken } from "./authService";
+/** Routes that do not require authentication */
+const PUBLIC_ROUTES: Array<{ method: string; pattern: RegExp }> = [
+  { method: "GET", pattern: /^\/health$/ },
+  { method: "GET", pattern: /^\/version$/ },
+  { method: "GET", pattern: /^\/auth\/status$/ },
+  { method: "POST", pattern: /^\/auth\/setup$/ },
+  { method: "POST", pattern: /^\/auth\/login$/ },
+  { method: "POST", pattern: /^\/hooks\/claude$/ },
+];
+export function isPublicRoute(method: string, pathname: string): boolean {
+  return PUBLIC_ROUTES.some((r) => r.method === method && r.pattern.test(pathname));
+}
+/**
+ * Extract session token from request.
+ * Checks Authorization header first, then cookie.
+ */
+export function extractToken(req: Request): string | null {
+  // 1. Bearer token (must be 64-char hex)
+  const authHeader = req.headers.get("Authorization");
+  if (authHeader?.startsWith("Bearer ")) {
+    const token = authHeader.slice(7);
+    if (/^[a-f0-9]{64}$/.test(token)) {
+      return token;
+    }
+  }
+  // 2. Cookie
+  const cookieHeader = req.headers.get("Cookie");
+  if (cookieHeader) {
+    const match = cookieHeader.match(/codepiper_session=([a-f0-9]{64})/);
+    const cookieToken = match?.[1];
+    if (cookieToken) return cookieToken;
+  }
+  return null;
+}
+/**
+ * Extract token and hash it for DB lookup.
+ */
+export function extractAndHashToken(req: Request): string | null {
+  const token = extractToken(req);
+  if (!token) return null;
+  return hashToken(token);
+}
+/**
+ * Extract onboarding token from request cookies.
+ */
+export function extractOnboardingToken(req: Request): string | null {
+  const cookieHeader = req.headers.get("Cookie");
+  if (!cookieHeader) {
+    return null;
+  }
+  const match = cookieHeader.match(/codepiper_onboarding=([a-f0-9]{64})/);
+  const token = match?.[1];
+  if (!token) {
+    return null;
+  }
+  return token;
+}
+/**
+ * Extract onboarding token and hash it for DB lookup.
+ */
+export function extractAndHashOnboardingToken(req: Request): string | null {
+  const token = extractOnboardingToken(req);
+  if (!token) {
+    return null;
+  }
+  return hashToken(token);
+}
+/**
+ * Build Set-Cookie header for session token.
+ * Includes Secure flag when served over HTTPS to prevent cookie leakage.
+ */
+export function buildSessionCookie(token: string, maxAgeSeconds: number, isSecure = false): string {
+  const flags = [
+    `codepiper_session=${token}`,
+    "HttpOnly",
+    "SameSite=Strict",
+    "Path=/",
+    `Max-Age=${maxAgeSeconds}`,
+  ];
+  if (isSecure) {
+    flags.push("Secure");
+  }
+  return flags.join("; ");
+}
+/**
+ * Build Set-Cookie header for temporary onboarding token.
+ */
+export function buildOnboardingCookie(
+  token: string,
+  maxAgeSeconds: number,
+  isSecure = false
+): string {
+  const flags = [
+    `codepiper_onboarding=${token}`,
+    "HttpOnly",
+    "SameSite=Strict",
+    "Path=/",
+    `Max-Age=${maxAgeSeconds}`,
+  ];
+  if (isSecure) {
+    flags.push("Secure");
+  }
+  return flags.join("; ");
+}
+/**
+ * Build Set-Cookie header to clear the session cookie.
+ */
+export function buildClearSessionCookie(isSecure = false): string {
+  const flags = ["codepiper_session=", "HttpOnly", "SameSite=Strict", "Path=/", "Max-Age=0"];
+  if (isSecure) {
+    flags.push("Secure");
+  }
+  return flags.join("; ");
+}
+/**
+ * Build Set-Cookie header to clear the onboarding cookie.
+ */
+export function buildClearOnboardingCookie(isSecure = false): string {
+  const flags = ["codepiper_onboarding=", "HttpOnly", "SameSite=Strict", "Path=/", "Max-Age=0"];
+  if (isSecure) {
+    flags.push("Secure");
+  }
+  return flags.join("; ");
+}
+/**
+ * Determine whether auth cookies should include the Secure attribute.
+ *
+ * Secure cookies are required for HTTPS deployments. Local HTTP development remains
+ * supported by default, and operators can force secure cookies via env flag.
+ */
+export function shouldUseSecureCookies(req: Request): boolean {
+  if (process.env.CODEPIPER_FORCE_SECURE_COOKIES === "1") {
+    return true;
+  }
+  if (process.env.CODEPIPER_TRUST_PROXY_HEADERS === "1") {
+    const forwardedProtoHeader = req.headers.get("X-Forwarded-Proto");
+    if (forwardedProtoHeader) {
+      const normalized = forwardedProtoHeader.split(",")[0]?.trim().toLowerCase();
+      if (normalized === "https") {
+        return true;
+      }
+      if (normalized === "http") {
+        return false;
+      }
+    }
+    const forwardedHeader = req.headers.get("Forwarded");
+    if (forwardedHeader) {
+      const protoMatch = forwardedHeader.match(/(?:^|[;,]\s*)proto=(https|http)(?:$|[;,])/i);
+      if (protoMatch?.[1]) {
+        return protoMatch[1].toLowerCase() === "https";
+      }
+    }
+  }
+  try {
+    return new URL(req.url).protocol === "https:";
+  } catch {
+    return false;
+  }
+}
+/**
+ * Add security headers to a response.
+ */
+export function addSecurityHeaders(response: Response): Response {
+  const isDevelopment = process.env.NODE_ENV === "development";
+  const scriptSrc = isDevelopment
+    ? "script-src 'self' 'unsafe-inline' 'unsafe-eval'"
+    : "script-src 'self'";
+  const headers = new Headers(response.headers);
+  // API responses are real-time data — never cache them
+  headers.set("Cache-Control", "no-store");
+  headers.set("X-Content-Type-Options", "nosniff");
+  headers.set("X-Frame-Options", "DENY");
+  headers.set("Referrer-Policy", "strict-origin-when-cross-origin");
+  // Permissions-Policy: restrict access to sensitive browser APIs
+  headers.set("Permissions-Policy", "geolocation=(), microphone=(), camera=(), payment=(), usb=()");
+  headers.set(
+    "Content-Security-Policy",
+    [
+      "default-src 'self'",
+      // Development mode needs relaxed script policy for HMR and Monaco tooling.
+      // Production uses a strict script policy (no inline/eval).
+      scriptSrc,
+      "style-src 'self' 'unsafe-inline' https://fonts.googleapis.com",
+      "img-src 'self' data: blob:",
+      "font-src 'self' data: https://fonts.gstatic.com",
+      "connect-src 'self' ws://localhost:* wss://localhost:* ws://127.0.0.1:* wss://127.0.0.1:*",
+      "worker-src 'self' blob:",
+      "frame-ancestors 'none'",
+      "base-uri 'self'",
+      "form-action 'self'",
+    ].join("; ")
+  );
+  return new Response(response.body, {
+    status: response.status,
+    statusText: response.statusText,
+    headers,
+  });
+}
+export const MAX_BODY_SIZE = 1024 * 1024; // 1MB
+export const MAX_IMAGE_BODY_SIZE = 10 * 1024 * 1024 + 1024; // 10MB + multipart overhead
+function normalizeProxyIpCandidate(raw: string | null): string | null {
+  if (!raw) {
+    return null;
+  }
+  const trimmed = raw.trim();
+  if (!trimmed) {
+    return null;
+  }
+  if (isIP(trimmed) !== 0) {
+    return trimmed;
+  }
+  const bracketIpv6 = trimmed.match(/^\[([^\]]+)\](?::\d+)?$/);
+  if (bracketIpv6?.[1] && isIP(bracketIpv6[1]) !== 0) {
+    return bracketIpv6[1];
+  }
+  const ipv4WithPort = trimmed.match(/^(\d{1,3}(?:\.\d{1,3}){3}):\d+$/);
+  if (ipv4WithPort?.[1] && isIP(ipv4WithPort[1]) !== 0) {
+    return ipv4WithPort[1];
+  }
+  return null;
+}
+/**
+ * Check if request body is too large.
+ */
+export function isBodyTooLarge(req: Request): boolean {
+  const contentLength = Number(req.headers.get("content-length") || 0);
+  return contentLength > MAX_BODY_SIZE;
+}
+/**
+ * Check if image upload body is too large (higher limit for multipart image data).
+ */
+export function isImageBodyTooLarge(req: Request): boolean {
+  const contentLength = Number(req.headers.get("content-length") || 0);
+  return contentLength > MAX_IMAGE_BODY_SIZE;
+}
+/**
+ * Extract client IP from request.
+ * Only trusts X-Forwarded-For when explicitly configured with a trusted proxy.
+ * Falls back to connection IP or "127.0.0.1".
+ */
+export function getClientIp(
+  req: Request,
+  _server?: { requestIP?: (req: Request) => { address: string } | null }
+): string {
+  if (process.env.CODEPIPER_TRUST_PROXY_HEADERS === "1") {
+    const xForwardedFor = req.headers.get("X-Forwarded-For");
+    const forwardedCandidate = xForwardedFor ? (xForwardedFor.split(",")[0] ?? null) : null;
+    const forwardedIp = normalizeProxyIpCandidate(forwardedCandidate);
+    if (forwardedIp) {
+      return forwardedIp;
+    }
+    const xRealIp = normalizeProxyIpCandidate(req.headers.get("X-Real-IP"));
+    if (xRealIp) {
+      return xRealIp;
+    }
+  }
+  // Use the actual connection IP when available (Bun.serve provides this)
+  if (_server?.requestIP) {
+    const info = _server.requestIP(req);
+    if (info?.address) return info.address;
+  }
+  // Fallback — do NOT trust X-Forwarded-For by default (spoofable)
+  return "127.0.0.1";
+}