firebase-tools 15.20.0 → 15.21.0

package/lib/emulator/auth/cloudFunctions.js

@@ -1,7 +1,7 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.AuthCloudFunction = void 0;
-const uuid = require("uuid");
+const crypto_1 = require("crypto");
 const types_1 = require("../types");
 const emulatorLogger_1 = require("../emulatorLogger");
 const registry_1 = require("../registry");
@@ -32,7 +32,7 @@ class AuthCloudFunction {
     }
     createEventRequestBody(action, userInfoPayload) {
         return {
-            eventId: uuid.v4(),
+            eventId: (0, crypto_1.randomUUID)(),
             eventType: `providers/firebase.auth/eventTypes/user.${action}`,
             resource: {
                 name: `projects/${this.projectId}`,

package/lib/emulator/auth/operations.js

@@ -41,6 +41,14 @@ exports.authOperations = {
                 start: mfaSignInStart,
                 finalize: mfaSignInFinalize,
             },
+            passkeyEnrollment: {
+                start: passkeyEnrollmentStart,
+                finalize: passkeyEnrollmentFinalize,
+            },
+            passkeySignIn: {
+                start: passkeySignInStart,
+                finalize: passkeySignInFinalize,
+            },
         },
         projects: {
             createSessionCookie,
@@ -914,6 +922,10 @@ function setAccountInfoImpl(state, reqBody, { privileged = false, emulatorUrl =
         if (reqBody.deleteProvider?.includes(state_1.PROVIDER_PHONE)) {
             updates.phoneNumber = undefined;
         }
+        if (reqBody.deletePasskey) {
+            const deletePasskey = reqBody.deletePasskey;
+            updates.passkeyInfo = (user.passkeyInfo || []).filter((pk) => pk.credentialId && !deletePasskey.includes(pk.credentialId));
+        }
     }
     if (reqBody.linkProviderUserInfo) {
         (0, errors_1.assert)(reqBody.linkProviderUserInfo.providerId, "MISSING_PROVIDER_ID");
@@ -1574,16 +1586,90 @@ async function mfaSignInFinalize(state, reqBody) {
         refreshToken,
     };
 }
+function passkeyEnrollmentStart(state, reqBody) {
+    (0, errors_1.assert)(!state.disableAuth, "PROJECT_DISABLED");
+    (0, errors_1.assert)(reqBody.idToken, "MISSING_ID_TOKEN");
+    const { user } = parseIdToken(state, reqBody.idToken);
+    return {
+        credentialCreationOptions: {
+            rp: { name: "localhost", id: "localhost" },
+            user: {
+                id: Buffer.from(user.localId).toString("base64"),
+                name: user.email || "user@example.com",
+                displayName: user.displayName || "User",
+            },
+            challenge: Buffer.from(newRandomId(32)).toString("base64"),
+            pubKeyCredParams: [
+                { type: "public-key", alg: -7 },
+                { type: "public-key", alg: -257 },
+            ],
+            timeout: 60000,
+            attestation: "none",
+        },
+    };
+}
+function passkeyEnrollmentFinalize(state, reqBody) {
+    (0, errors_1.assert)(!state.disableAuth, "PROJECT_DISABLED");
+    (0, errors_1.assert)(reqBody.idToken, "MISSING_ID_TOKEN");
+    (0, errors_1.assert)(reqBody.authenticatorRegistrationResponse, "MISSING_AUTHENTICATOR_RESPONSE");
+    let { user } = parseIdToken(state, reqBody.idToken);
+    const credentialId = reqBody.authenticatorRegistrationResponse.id;
+    (0, errors_1.assert)(credentialId, "INVALID_CREDENTIAL_ID");
+    const isDuplicate = !!state.getUserByPasskeyCredentialId(credentialId);
+    (0, errors_1.assert)(!isDuplicate, "CREDENTIAL_ALREADY_IN_USE");
+    const newPasskey = {
+        credentialId,
+        name: reqBody.name || reqBody.displayName || "Unnamed Passkey",
+    };
+    const existing = user.passkeyInfo || [];
+    user = state.updateUserByLocalId(user.localId, {
+        passkeyInfo: [...existing, newPasskey],
+    });
+    const { idToken, refreshToken } = issueTokens(state, user, "passkey");
+    return {
+        localId: user.localId,
+        idToken,
+        refreshToken,
+    };
+}
+function passkeySignInStart(state) {
+    (0, errors_1.assert)(!state.disableAuth, "PROJECT_DISABLED");
+    return {
+        credentialRequestOptions: {
+            challenge: Buffer.from(newRandomId(32)).toString("base64"),
+            rpId: "localhost",
+            userVerification: "required",
+        },
+    };
+}
+function passkeySignInFinalize(state, reqBody) {
+    (0, errors_1.assert)(!state.disableAuth, "PROJECT_DISABLED");
+    (0, errors_1.assert)(reqBody.authenticatorAuthenticationResponse, "MISSING_AUTHENTICATOR_RESPONSE");
+    const credentialId = reqBody.authenticatorAuthenticationResponse.id;
+    (0, errors_1.assert)(credentialId, "INVALID_CREDENTIAL_ID");
+    let matchedUser = state.getUserByPasskeyCredentialId(credentialId);
+    (0, errors_1.assert)(matchedUser, "PASSKEY_CREDENTIAL_NOT_FOUND");
+    (0, errors_1.assert)(!matchedUser.disabled, "USER_DISABLED");
+    matchedUser = state.updateUserByLocalId(matchedUser.localId, {
+        lastLoginAt: Date.now().toString(),
+    });
+    const { idToken, refreshToken } = issueTokens(state, matchedUser, "passkey");
+    return {
+        idToken,
+        refreshToken,
+    };
+}
 function getConfig(state) {
     (0, errors_1.assert)(state instanceof state_1.AgentProjectState, "((Can only get top-level configurations on agent projects.))");
     return state.config;
 }
 function updateConfig(state, reqBody, ctx) {
     (0, errors_1.assert)(state instanceof state_1.AgentProjectState, "((Can only update top-level configurations on agent projects.))");
-    for (const event in reqBody.blockingFunctions?.triggers) {
-        if (Object.prototype.hasOwnProperty.call(reqBody.blockingFunctions.triggers, event)) {
+    const triggers = reqBody.blockingFunctions?.triggers ?? {};
+    for (const event in triggers) {
+        if (Object.prototype.hasOwnProperty.call(triggers, event)) {
             (0, errors_1.assert)(Object.values(state_1.BlockingFunctionEvents).includes(event), "INVALID_BLOCKING_FUNCTION : ((Event type is invalid.))");
-            (0, errors_1.assert)((0, utils_1.parseAbsoluteUri)(reqBody.blockingFunctions.triggers[event].functionUri), "INVALID_BLOCKING_FUNCTION : ((Expected an absolute URI with valid scheme and host.))");
+            (0, errors_1.assert)((0, utils_1.parseAbsoluteUri)(triggers[event].functionUri), "INVALID_BLOCKING_FUNCTION : ((Expected an absolute URI with valid scheme and host.))");
         }
     }
     return state.updateConfig(reqBody, ctx.params.query.updateMask);
@@ -1870,13 +1956,13 @@ function fakeFetchUserInfoFromIdp(providerId, claims, samlResponse) {
             });
             break;
         }
-        case providerId.match(/^saml\./)?.input:
+        case /^saml\./.exec(providerId)?.input:
             const nameId = samlResponse?.assertion?.subject?.nameId;
             response.email = nameId && (0, utils_1.isValidEmailAddress)(nameId) ? nameId : response.email;
             response.emailVerified = true;
             response.rawUserInfo = JSON.stringify(samlResponse?.assertion?.attributeStatements);
             break;
-        case providerId.match(/^oidc\./)?.input:
+        case /^oidc\./.exec(providerId)?.input:
         default:
             response.rawUserInfo = JSON.stringify(claims);
             break;
@@ -2271,11 +2357,15 @@ function generateBlockingFunctionJwt(state, event, url, timeoutMs, user, options
     });
     return jwtStr;
 }
+function assertBlockingFunctionsJwtPayload(payload) {
+    (0, errors_1.assert)(payload !== null && typeof payload === "object", "((Invalid blocking function jwt.))");
+    const p = payload;
+    (0, errors_1.assert)(typeof p.iss === "string", "((Invalid blocking function jwt, missing `iss` claim.))");
+    (0, errors_1.assert)(typeof p.aud === "string", "((Invalid blocking function jwt, missing `aud` claim.))");
+    (0, errors_1.assert)(p.user_record !== undefined, "((Invalid blocking function jwt, missing `user_record` claim.))");
+}
 function parseBlockingFunctionJwt(jwt) {
     const decoded = (0, jsonwebtoken_1.decode)(jwt, { json: true });
-    (0, errors_1.assert)(decoded, "((Invalid blocking function jwt.))");
-    (0, errors_1.assert)(decoded.iss, "((Invalid blocking function jwt, missing `iss` claim.))");
-    (0, errors_1.assert)(decoded.aud, "((Invalid blocking function jwt, missing `aud` claim.))");
-    (0, errors_1.assert)(decoded.user_record, "((Invalid blocking function jwt, missing `user_record` claim.))");
+    assertBlockingFunctionsJwtPayload(decoded);
     return decoded;
 }

package/lib/emulator/auth/state.js

@@ -21,6 +21,7 @@ class ProjectState {
         this.localIdForPhoneNumber = new Map();
         this.localIdsForProviderEmail = new Map();
         this.userIdForProviderRawId = new Map();
+        this.localIdForPasskeyCredentialId = new Map();
         this.oobs = new Map();
         this.verificationCodes = new Map();
         this.temporaryProofs = new Map();
@@ -83,9 +84,22 @@ class ProjectState {
         }
         const oldEmail = user.email;
         const oldPhoneNumber = user.phoneNumber;
+        const oldPasskeyInfo = user.passkeyInfo;
         for (const field of Object.keys(fields)) {
             (0, utils_1.mirrorFieldTo)(user, field, fields);
         }
+        if (fields.passkeyInfo) {
+            for (const pk of oldPasskeyInfo ?? []) {
+                if (pk.credentialId) {
+                    this.localIdForPasskeyCredentialId.delete(pk.credentialId);
+                }
+            }
+            for (const pk of fields.passkeyInfo) {
+                if (pk.credentialId) {
+                    this.localIdForPasskeyCredentialId.set(pk.credentialId, user.localId);
+                }
+            }
+        }
         if (oldEmail && oldEmail !== user.email) {
             this.localIdForEmail.delete(oldEmail);
         }
@@ -267,6 +281,13 @@ class ProjectState {
     getUserByLocalId(localId) {
         return this.users.get(localId);
     }
+    getUserByPasskeyCredentialId(credentialId) {
+        const localId = this.localIdForPasskeyCredentialId.get(credentialId);
+        if (!localId) {
+            return undefined;
+        }
+        return this.getUserByLocalIdAssertingExists(localId);
+    }
     createRefreshTokenFor(userInfo, provider, { extraClaims = {}, secondFactor, } = {}) {
         const localId = userInfo.localId;
         const refreshTokenRecord = {
@@ -343,6 +364,7 @@ class ProjectState {
         this.localIdForPhoneNumber.clear();
         this.localIdsForProviderEmail.clear();
         this.userIdForProviderRawId.clear();
+        this.localIdForPasskeyCredentialId.clear();
     }
     getUserCount() {
         return this.users.size;
@@ -400,6 +422,11 @@ class ProjectState {
                 this.removeProviderEmailForUser(info.email, user.localId);
             }
         }
+        for (const pk of user.passkeyInfo ?? []) {
+            if (pk.credentialId) {
+                this.localIdForPasskeyCredentialId.delete(pk.credentialId);
+            }
+        }
     }
 }
 exports.ProjectState = ProjectState;

package/lib/emulator/downloadableEmulatorInfo.json

@@ -54,36 +54,36 @@
     },
     "dataconnect": {
         "darwin": {
-            "version": "3.4.10",
-            "expectedSize": 32439760,
-            "expectedChecksum": "c3609b01993c1f66d340eda59fa31467",
-            "expectedChecksumSHA256": "257419922a81b4856b1ce7c1ac0684b4690a380072fe132d1960070f7d00941a",
-            "remoteUrl": "https://storage.googleapis.com/firemat-preview-drop/emulator/dataconnect-emulator-macos-amd64-v3.4.10",
-            "downloadPathRelativeToCacheDir": "dataconnect-emulator-3.4.10"
+            "version": "3.4.11",
+            "expectedSize": 32444112,
+            "expectedChecksum": "b7d6dfb69ff26d5952ad93bbb6b071c9",
+            "expectedChecksumSHA256": "66ef23bd048e7cb93dd7574ab92fbbdc66c82e7b72e38625d7a9f1f8b724532a",
+            "remoteUrl": "https://storage.googleapis.com/firemat-preview-drop/emulator/dataconnect-emulator-macos-amd64-v3.4.11",
+            "downloadPathRelativeToCacheDir": "dataconnect-emulator-3.4.11"
         },
         "darwin_arm64": {
-            "version": "3.4.10",
-            "expectedSize": 30571186,
-            "expectedChecksum": "fd17de6fb356a5e0c1c67ae7f4adfa08",
-            "expectedChecksumSHA256": "9c6da9eea98ee85b16b6e0c5075d1c757aaa252526470fbe63cfb915e3585361",
-            "remoteUrl": "https://storage.googleapis.com/firemat-preview-drop/emulator/dataconnect-emulator-macos-arm64-v3.4.10",
-            "downloadPathRelativeToCacheDir": "dataconnect-emulator-3.4.10"
+            "version": "3.4.11",
+            "expectedSize": 30587970,
+            "expectedChecksum": "ab0a05b2441ebdda9e04dc8d4dfd3118",
+            "expectedChecksumSHA256": "f22fa6b588644f112def735591f43f05b8864e5c2c2f2aff4a4e00c435f9f101",
+            "remoteUrl": "https://storage.googleapis.com/firemat-preview-drop/emulator/dataconnect-emulator-macos-arm64-v3.4.11",
+            "downloadPathRelativeToCacheDir": "dataconnect-emulator-3.4.11"
         },
         "win32": {
-            "version": "3.4.10",
-            "expectedSize": 32479744,
-            "expectedChecksum": "3ed78e5d74da96e89f385a64fa6151fc",
-            "expectedChecksumSHA256": "bc4bb887b5adbba5b916fa41a091f544aac70f35d5209c483fac90f89abb2c93",
-            "remoteUrl": "https://storage.googleapis.com/firemat-preview-drop/emulator/dataconnect-emulator-windows-amd64-v3.4.10",
-            "downloadPathRelativeToCacheDir": "dataconnect-emulator-3.4.10.exe"
+            "version": "3.4.11",
+            "expectedSize": 32483840,
+            "expectedChecksum": "211210d49b7595e229a2552f56c1d9d3",
+            "expectedChecksumSHA256": "dd88350a2f4fd77ccdc8dcf4b465edc6be08609d7c79a195a57febd9b31db6cd",
+            "remoteUrl": "https://storage.googleapis.com/firemat-preview-drop/emulator/dataconnect-emulator-windows-amd64-v3.4.11",
+            "downloadPathRelativeToCacheDir": "dataconnect-emulator-3.4.11.exe"
         },
         "linux": {
-            "version": "3.4.10",
-            "expectedSize": 31592632,
-            "expectedChecksum": "a003103017717ddc4ea9967d5820ea51",
-            "expectedChecksumSHA256": "50b22fdaf7bf1c30b5f331ef07a7f19c51309ca9c9897be426e86254e02b514c",
-            "remoteUrl": "https://storage.googleapis.com/firemat-preview-drop/emulator/dataconnect-emulator-linux-amd64-v3.4.10",
-            "downloadPathRelativeToCacheDir": "dataconnect-emulator-3.4.10"
+            "version": "3.4.11",
+            "expectedSize": 31600824,
+            "expectedChecksum": "73385ff19e1324724d01ad1577552fdd",
+            "expectedChecksumSHA256": "28870bff742c78221e7be4940d993189c56fc26f50fc2cc17afcf062c84dc439",
+            "remoteUrl": "https://storage.googleapis.com/firemat-preview-drop/emulator/dataconnect-emulator-linux-amd64-v3.4.11",
+            "downloadPathRelativeToCacheDir": "dataconnect-emulator-3.4.11"
         }
     }
 }

package/lib/emulator/functionsEmulatorShell.js

@@ -1,7 +1,7 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.FunctionsEmulatorShell = void 0;
-const uuid = require("uuid");
+const crypto_1 = require("crypto");
 const utils = require("../utils");
 const functionsEmulator_1 = require("./functionsEmulator");
 const logger_1 = require("../logger");
@@ -26,7 +26,7 @@ class FunctionsEmulatorShell {
             resource = resource.name;
         }
         return {
-            eventId: uuid.v4(),
+            eventId: (0, crypto_1.randomUUID)(),
             timestamp: new Date().toISOString(),
             eventType: eventTrigger.eventType,
             resource: resource,
@@ -39,7 +39,7 @@ class FunctionsEmulatorShell {
         const ce = {
             specversion: "1.0",
             datacontenttype: "application/json",
-            id: uuid.v4(),
+            id: (0, crypto_1.randomUUID)(),
             type: eventTrigger.eventType,
             time: new Date().toISOString(),
             source: "",
@@ -50,7 +50,7 @@ class FunctionsEmulatorShell {
         }
         else if (eventTrigger.eventType.startsWith("google.cloud.pubsub")) {
             ce.source = eventTrigger.eventFilters.topic;
-            data = { ...data, messageId: uuid.v4() };
+            data = { ...data, messageId: (0, crypto_1.randomUUID)() };
         }
         else if (eventTrigger.eventType.startsWith("google.cloud.firestore")) {
             ce.source = `projects/_/databases/(default)`;

package/lib/emulator/functionsRuntimeWorker.js

@@ -2,7 +2,7 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.RuntimeWorkerPool = exports.RuntimeWorker = exports.RuntimeWorkerState = void 0;
 const http = require("http");
-const uuid = require("uuid");
+const crypto_1 = require("crypto");
 const types_1 = require("./types");
 const events_1 = require("events");
 const emulatorLogger_1 = require("./emulatorLogger");
@@ -26,7 +26,7 @@ class RuntimeWorker {
         this.stateEvents = new events_1.EventEmitter();
         this.logListeners = [];
         this._state = RuntimeWorkerState.CREATED;
-        this.id = uuid.v4();
+        this.id = (0, crypto_1.randomUUID)();
         this.triggerKey = triggerId || FREE_WORKER_KEY;
         this.runtime = runtime;
         const childProc = this.runtime.process;

package/lib/emulator/pubsubEmulator.js

@@ -1,7 +1,7 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.PubsubEmulator = void 0;
-const uuid = require("uuid");
+const crypto_1 = require("crypto");
 const pubsub_1 = require("@google-cloud/pubsub");
 const downloadableEmulators = require("./downloadableEmulators");
 const emulatorLogger_1 = require("./emulatorLogger");
@@ -117,7 +117,7 @@ class PubsubEmulator {
     createLegacyEventRequestBody(topic, message) {
         return {
             context: {
-                eventId: uuid.v4(),
+                eventId: (0, crypto_1.randomUUID)(),
                 resource: {
                     service: "pubsub.googleapis.com",
                     name: `projects/${this.args.projectId}/topics/${topic}`,
@@ -147,7 +147,7 @@ class PubsubEmulator {
         };
         return {
             specversion: "1.0",
-            id: uuid.v4(),
+            id: (0, crypto_1.randomUUID)(),
             time: truncatedPublishTime,
             type: "google.cloud.pubsub.topic.v1.messagePublished",
             source: `//pubsub.googleapis.com/projects/${this.args.projectId}/topics/${topic}`,

package/lib/emulator/storage/apis/firebase.js

@@ -3,7 +3,7 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.createFirebaseEndpoints = createFirebaseEndpoints;
 const emulatorLogger_1 = require("../../emulatorLogger");
 const types_1 = require("../../types");
-const uuid = require("uuid");
+const crypto_1 = require("crypto");
 const metadata_1 = require("../metadata");
 const express_1 = require("express");
 const shared_1 = require("./shared");
@@ -157,7 +157,7 @@ function createFirebaseEndpoints(emulator) {
             if (!upload.metadata?.metadata?.firebaseStorageDownloadTokens) {
                 const customMetadata = {
                     ...(upload.metadata?.metadata || {}),
-                    firebaseStorageDownloadTokens: uuid.v4(),
+                    firebaseStorageDownloadTokens: (0, crypto_1.randomUUID)(),
                 };
                 upload.metadata = { ...(upload.metadata || {}), metadata: customMetadata };
             }

package/lib/emulator/storage/cloudFunctions.js

@@ -1,7 +1,7 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.StorageCloudFunctions = void 0;
-const uuid = require("uuid");
+const crypto_1 = require("crypto");
 const registry_1 = require("../registry");
 const types_1 = require("../types");
 const emulatorLogger_1 = require("../emulatorLogger");
@@ -77,7 +77,7 @@ class StorageCloudFunctions {
         }
         return {
             specversion: "1.0",
-            id: uuid.v4(),
+            id: (0, crypto_1.randomUUID)(),
             type: `google.cloud.storage.object.v1.${ceAction}`,
             source: `//storage.googleapis.com/projects/_/buckets/${objectMetadataPayload.bucket}/objects/${objectMetadataPayload.name}`,
             time,

package/lib/emulator/storage/metadata.js

@@ -2,7 +2,6 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.CloudStorageObjectMetadata = exports.CloudStorageObjectAccessControlMetadata = exports.CloudStorageBucketMetadata = exports.OutgoingFirebaseMetadata = exports.StoredFileMetadata = void 0;
 exports.toSerializedDate = toSerializedDate;
-const uuid = require("uuid");
 const crypto = require("crypto");
 const registry_1 = require("../registry");
 const types_1 = require("../types");
@@ -185,7 +184,7 @@ class StoredFileMetadata {
         }
     }
     addDownloadToken(shouldTrigger = true) {
-        this.downloadTokens = [...(this.downloadTokens || []), uuid.v4()];
+        this.downloadTokens = [...(this.downloadTokens || []), crypto.randomUUID()];
         this.update({}, shouldTrigger);
     }
     deleteDownloadToken(token) {

package/lib/emulator/storage/persistence.js

@@ -6,7 +6,7 @@ const promises_1 = require("node:fs/promises");
 const fs = require("fs");
 const fse = require("fs-extra");
 const path = require("path");
-const uuid = require("uuid");
+const crypto_1 = require("crypto");
 class Persistence {
     constructor(dirPath) {
         this._diskPathMap = new Map();
@@ -78,7 +78,7 @@ class Persistence {
         fse.copyFileSync(sourcePath, this.getDiskPath(newName));
     }
     generateNewDiskName() {
-        return uuid.v4();
+        return (0, crypto_1.randomUUID)();
     }
 }
 exports.Persistence = Persistence;

package/lib/emulator/storage/upload.js

@@ -1,7 +1,7 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.UploadService = exports.NotCancellableError = exports.UploadPreviouslyFinalizedError = exports.UploadNotActiveError = exports.UploadStatus = exports.UploadType = void 0;
-const uuid_1 = require("uuid");
+const crypto_1 = require("crypto");
 const errors_1 = require("./errors");
 var UploadType;
 (function (UploadType) {
@@ -58,7 +58,7 @@ class UploadService {
         return upload;
     }
     startOneShotUpload(request) {
-        const id = (0, uuid_1.v4)();
+        const id = (0, crypto_1.randomUUID)();
         const upload = {
             id,
             bucketId: request.bucketId,
@@ -74,7 +74,7 @@ class UploadService {
         return upload;
     }
     startResumableUpload(request) {
-        const id = (0, uuid_1.v4)();
+        const id = (0, crypto_1.randomUUID)();
         const upload = {
             id: id,
             bucketId: request.bucketId,

package/lib/env.js

@@ -22,23 +22,39 @@ function setFirebaseMcp(value) {
     isFirebaseMcpFlag = value;
 }
 function detectAIAgent() {
+    if (process.env.AI_AGENT) {
+        return process.env.AI_AGENT.trim();
+    }
     if (process.env.ANTIGRAVITY_AGENT)
         return "antigravity";
-    if (process.env.CLAUDECODE)
+    if (process.env.CLAUDECODE || process.env.CLAUDE_CODE)
         return "claude_code";
     if (process.env.CLINE_ACTIVE)
         return "cline";
-    if (process.env.CODEX_SANDBOX)
+    if (process.env.CODEX_SANDBOX || process.env.CODEX_CI || process.env.CODEX_THREAD_ID) {
         return "codex_cli";
-    if (process.env.CURSOR_AGENT)
+    }
+    if (process.env.CURSOR_AGENT ||
+        process.env.CURSOR_TRACE_ID ||
+        process.env.CURSOR_EXTENSION_HOST_ROLE === "agent-exec") {
         return "cursor";
+    }
     if (process.env.GEMINI_CLI)
         return "gemini_cli";
-    if (process.env.OPENCODE)
+    if (process.env.OPENCODE || process.env.OPENCODE_CLIENT)
         return "open_code";
     if (process.env.ANDROID_STUDIO_AGENT)
         return "android_studio_agent";
     if (process.env.KIRO_AGENT_PATH)
         return "kiro";
+    if (process.env.COPILOT_MODEL ||
+        process.env.COPILOT_ALLOW_ALL ||
+        process.env.COPILOT_GITHUB_TOKEN) {
+        return "github_copilot";
+    }
+    if (process.env.REPL_ID)
+        return "replit";
+    if (process.env.AUGMENT_AGENT)
+        return "augment";
     return "unknown";
 }

package/lib/experiments.js

@@ -9,7 +9,6 @@ exports.enableExperimentsFromCliEnvVariable = enableExperimentsFromCliEnvVariabl
 exports.assertEnabled = assertEnabled;
 exports.flushToDisk = flushToDisk;
 const colorette_1 = require("colorette");
-const leven = require("leven");
 const path_1 = require("path");
 const configstore_1 = require("./configstore");
 const error_1 = require("./error");
@@ -195,7 +194,7 @@ function experimentNameAutocorrect(malformed) {
     if (isValidExperiment(malformed)) {
         throw new error_1.FirebaseError("Assertion failed: experimentNameAutocorrect given actual experiment name", { exit: 2 });
     }
-    return Object.keys(exports.ALL_EXPERIMENTS).filter((name) => leven(name, malformed) < malformed.length * 0.4);
+    return Object.keys(exports.ALL_EXPERIMENTS).filter((name) => (0, utils_1.stringDistance)(name, malformed) < malformed.length * 0.4);
 }
 let localPreferencesCache = undefined;
 function localPreferences() {

package/lib/frameworks/angular/index.js

@@ -45,8 +45,9 @@ function init(setup, config) {
     return Promise.resolve();
 }
 async function build(dir, configuration) {
-    const { targets, serveOptimizedImages, locales, baseHref: baseUrl, ssr, } = await (0, utils_2.getBuildConfig)(dir, configuration);
+    const { targets, serveOptimizedImages, locales, baseHref: baseUrl, ssr, buildTargetOptions, } = await (0, utils_2.getBuildConfig)(dir, configuration);
     await (0, utils_1.warnIfCustomBuildScript)(dir, exports.name, DEFAULT_BUILD_SCRIPT);
+    await (0, utils_2.maybeWarnAngular22SsrSecurity)(dir, { ssr, buildTargetOptions });
     for (const target of targets) {
         const cli = (0, utils_1.getNodeModuleBin)("ng", dir);
         const result = (0, cross_spawn_1.sync)(cli, ["run", target], {
@@ -145,7 +146,7 @@ async function ɵcodegenFunctionsDirectory(sourceDir, destDir, configuration) {
     if (bundleDependencies) {
         const dependencies = {};
         for (const externalDependency of externalDependencies) {
-            const packageVersion = (0, utils_1.findDependency)(externalDependency)?.version;
+            const packageVersion = (0, utils_1.findDependency)(externalDependency, { cwd: sourceDir })?.version;
             if (packageVersion) {
                 dependencies[externalDependency] = packageVersion;
             }