gencow 0.1.152 → 0.1.153

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "gencow",
-  "version": "0.1.152",
+  "version": "0.1.153",
   "description": "Gencow — AI Backend Engine",
   "type": "module",
   "bin": {

package/server/index.js

@@ -20610,8 +20610,8 @@ var init_pdf = __esm({
         this._readCapability = Promise.withResolvers();
         this._headersCapability = Promise.withResolvers();
         const fs4 = process.getBuiltinModule("fs");
-        fs4.promises.lstat(this._url).then((stat4) => {
-          this._contentLength = stat4.size;
+        fs4.promises.lstat(this._url).then((stat5) => {
+          this._contentLength = stat5.size;
           this._setReadableStream(fs4.createReadStream(this._url));
           this._headersCapability.resolve();
         }, (error) => {
@@ -92788,7 +92788,9 @@ var getNodeRouteMetricsSnapshot = mod2.getNodeRouteMetricsSnapshot;
 var resetNodeRouteMetricsForTests = mod2.resetNodeRouteMetricsForTests;
 
 // ../server/src/server-platform-static-file.ts
-import { join as join2 } from "path";
+import { extname as extname2, join as join2 } from "path";
+import { brotliCompressSync, gzipSync } from "zlib";
+import { stat } from "fs/promises";
 
 // ../server/src/static-file-routing.ts
 import { extname, isAbsolute, relative as relative2, resolve as resolve7 } from "path";
@@ -92911,6 +92913,65 @@ async function resolveStaticFileRequest(params) {
 }
 
 // ../server/src/server-platform-static-file.ts
+var compressibleStaticExtensions = /* @__PURE__ */ new Set([
+  ".css",
+  ".csv",
+  ".htm",
+  ".html",
+  ".js",
+  ".json",
+  ".mjs",
+  ".svg",
+  ".txt",
+  ".wasm",
+  ".webmanifest",
+  ".xml"
+]);
+var encodedFileCache = /* @__PURE__ */ new Map();
+var encodedFileCacheTtlMs = 10 * 60 * 1e3;
+var encodedFileCacheMaxEntries = 240;
+function acceptsEncoding(value, encoding) {
+  const tokens = value.toLowerCase().split(",").map((part) => part.trim());
+  return tokens.some((token) => {
+    if (!token.startsWith(encoding)) return false;
+    const q = token.match(/;\s*q=([0-9.]+)/)?.[1];
+    return q === void 0 || Number(q) > 0;
+  });
+}
+function requestHeader(c, name) {
+  const direct = c?.req?.header?.(name);
+  if (typeof direct === "string") return direct;
+  const fromHeaders = c?.req?.headers?.get?.(name);
+  return typeof fromHeaders === "string" ? fromHeaders : "";
+}
+function preferredStaticEncoding(acceptEncoding, filePath) {
+  if (!compressibleStaticExtensions.has(extname2(filePath).toLowerCase())) return null;
+  if (acceptsEncoding(acceptEncoding, "br")) return "br";
+  if (acceptsEncoding(acceptEncoding, "gzip")) return "gzip";
+  return null;
+}
+function pruneEncodedFileCache(now = Date.now()) {
+  for (const [key, value] of encodedFileCache) {
+    if (now - value.createdAt > encodedFileCacheTtlMs) encodedFileCache.delete(key);
+  }
+  while (encodedFileCache.size > encodedFileCacheMaxEntries) {
+    const oldest = encodedFileCache.keys().next().value;
+    if (!oldest) break;
+    encodedFileCache.delete(oldest);
+  }
+}
+async function encodedStaticFile(filePath, encoding, originalSize) {
+  const stats = await stat(filePath).catch(() => null);
+  const cacheKey = `${filePath}:${stats?.mtimeMs ?? 0}:${originalSize}:${encoding}`;
+  pruneEncodedFileCache();
+  const cached = encodedFileCache.get(cacheKey);
+  if (cached) return cached.body;
+  const input = Buffer.from(await Bun.file(filePath).arrayBuffer());
+  const output = encoding === "br" ? brotliCompressSync(input) : gzipSync(input);
+  if (output.byteLength >= input.byteLength) return null;
+  encodedFileCache.set(cacheKey, { body: output, createdAt: Date.now() });
+  return output;
+}
 async function serveStaticFile(params) {
   const staticDir = join2(params.dataDir, "static");
   const resolution = await resolveStaticFileRequest({
@@ -92925,14 +92986,23 @@ async function serveStaticFile(params) {
   const file = Bun.file(resolution.filePath);
   const fileSize = file.size;
   const requestMethod = String(params.c?.req?.method ?? "").toUpperCase();
-  if (requestMethod !== "HEAD" && Number.isSafeInteger(fileSize) && fileSize > 0) {
-    params.recordBytes?.(fileSize);
+  const encoding = preferredStaticEncoding(requestHeader(params.c, "Accept-Encoding"), resolution.filePath);
+  const encodedBody = encoding && Number.isSafeInteger(fileSize) && fileSize > 0 ? await encodedStaticFile(resolution.filePath, encoding, fileSize) : null;
+  const responseBody = encodedBody ? new Uint8Array(encodedBody) : file;
+  const responseBytes = encodedBody?.byteLength ?? fileSize;
+  if (requestMethod !== "HEAD" && Number.isSafeInteger(responseBytes) && responseBytes > 0) {
+    params.recordBytes?.(responseBytes);
   }
   const headers = new Headers({ "Cache-Control": resolution.cacheControl });
-  if (Number.isSafeInteger(fileSize) && fileSize >= 0) {
-    headers.set("Content-Length", String(fileSize));
+  if (encodedBody && encoding) {
+    headers.set("Content-Encoding", encoding);
+    headers.set("Vary", "Accept-Encoding");
+  }
+  if (file.type) headers.set("Content-Type", file.type);
+  if (Number.isSafeInteger(responseBytes) && responseBytes >= 0) {
+    headers.set("Content-Length", String(responseBytes));
   }
-  return new Response(file, {
+  return new Response(requestMethod === "HEAD" ? null : responseBody, {
     headers
   });
 }
@@ -97200,7 +97270,7 @@ import { existsSync as existsSync6 } from "fs";
 import { resolve as resolve20 } from "path";
 
 // ../../node_modules/.pnpm/hono@4.12.18/node_modules/hono/dist/adapter/bun/serve-static.js
-import { stat } from "node:fs/promises";
+import { stat as stat2 } from "node:fs/promises";
 import { join as join3 } from "node:path";
 
 // ../../node_modules/.pnpm/hono@4.12.18/node_modules/hono/dist/utils/compress.js
@@ -97376,7 +97446,7 @@ var serveStatic2 = (options) => {
     const isDir = async (path3) => {
       let isDir2;
       try {
-        const stats = await stat(path3);
+        const stats = await stat2(path3);
         isDir2 = stats.isDirectory();
       } catch {
       }
@@ -97824,11 +97894,11 @@ async function loadStorageMeta(params) {
   try {
     const raw2 = await fs.readFile(`${filePath}.meta`, "utf-8");
     const parsed = JSON.parse(raw2);
-    const stat4 = await fs.stat(filePath);
+    const stat5 = await fs.stat(filePath);
     const meta = {
       id: params.storageId,
       name: typeof parsed.name === "string" ? parsed.name : params.storageId,
-      size: typeof parsed.size === "number" ? parsed.size : stat4.size,
+      size: typeof parsed.size === "number" ? parsed.size : stat5.size,
       type: typeof parsed.type === "string" ? parsed.type : "application/octet-stream",
       visibility: normalizeStorageVisibility(parsed.visibility),
       path: filePath
@@ -99214,6 +99284,9 @@ function isAuthorizedCronToken(token, internalToken, cronToken) {
   if (!token) return false;
   return Boolean(internalToken) && token === internalToken || Boolean(cronToken) && token === cronToken;
 }
+function canFallbackToStableSchedulerAction(action) {
+  return action.startsWith(`${WORKFLOW_RESUME_ACTION_PREFIX}.`);
+}
 function createInternalCronRouteHandler(params) {
   const logger2 = params.logger ?? console;
   return async (c) => {
@@ -99250,7 +99323,7 @@ function createInternalCronRouteHandler(params) {
         logger2.error(`[cron] /internal/cron/${action}: failed:`, message);
         return c.json({ ok: false, error: message }, 500);
       }
-      if (hasActionTokenMap) {
+      if (hasActionTokenMap && !canFallbackToStableSchedulerAction(action)) {
         logger2.warn(`[cron] /internal/cron/${action}: action token not found`);
         return c.json({ ok: false, error: `Action "${action}" not found` }, 404);
       }
@@ -109598,13 +109671,21 @@ function sanitizePublicAuthResponsePayload(payload, fallback = "Authentication f
   return sanitized;
 }
 
-// ../server/src/auth-session-cookies.ts
+// ../server/src/auth-session-resolution.ts
 function sessionTokenToCookieHeader(sessionToken) {
   return [
     `better-auth.session_token=${sessionToken}`,
     `__Secure-better-auth.session_token=${sessionToken}`
   ].join("; ");
 }
+function decodeCookieToken(value) {
+  try {
+    const decoded = decodeURIComponent(value);
+    return decoded || null;
+  } catch {
+    return null;
+  }
+}
 function extractSessionTokenFromCookieHeader(cookieHeader) {
   return extractSessionTokensFromCookieHeader(cookieHeader)[0] ?? null;
 }
@@ -109613,7 +109694,8 @@ function extractSessionTokensFromCookieHeader(cookieHeader) {
   const pattern = /(?:^|;\s*)(?:__Secure-)?better-auth\.session_token=([^;]+)/g;
   let match2;
   while ((match2 = pattern.exec(cookieHeader)) !== null) {
-    tokens.push(decodeURIComponent(match2[1]));
+    const token = decodeCookieToken(match2[1]);
+    if (token) tokens.push(token);
   }
   return tokens;
 }
@@ -109637,6 +109719,37 @@ function sessionCreatedAtMs(session2) {
   }
   return 0;
 }
+async function resolveRequestSession(input) {
+  if (input.authorizationHeader?.startsWith("Bearer ")) {
+    const sessionToken2 = input.authorizationHeader.substring(7);
+    const session3 = await input.getSession(new Headers({ cookie: sessionTokenToCookieHeader(sessionToken2) }));
+    return { session: session3, sessionToken: sessionToken2 };
+  }
+  const cookieHeader = input.cookieHeader ?? "";
+  const sessionTokens = [...new Set(extractSessionTokensFromCookieHeader(cookieHeader))];
+  if (sessionTokens.length <= 1) {
+    const session3 = await input.getSession(buildSessionLookupHeaders(input.headers, cookieHeader));
+    return { session: session3, sessionToken: sessionTokens[0] ?? null };
+  }
+  const resolved = await Promise.all(
+    sessionTokens.map(async (sessionToken2, index) => {
+      try {
+        const session3 = await input.getSession(buildSessionLookupHeadersForToken(input.headers, sessionToken2));
+        return session3 ? { session: session3, sessionToken: sessionToken2, index } : null;
+      } catch {
+        return null;
+      }
+    })
+  );
+  const valid = resolved.filter((candidate) => candidate !== null);
+  if (valid.length === 0) return { session: null, sessionToken: null };
+  valid.sort((a, b) => {
+    const createdDelta = sessionCreatedAtMs(b.session) - sessionCreatedAtMs(a.session);
+    return createdDelta || a.index - b.index;
+  });
+  const { session: session2, sessionToken } = valid[0];
+  return { session: session2, sessionToken };
+}
 
 // ../server/src/auth-oauth-invite-reservation.ts
 import { createHash as createHash7, randomUUID as randomUUID2 } from "crypto";
@@ -111046,29 +111159,12 @@ async function issueJWT(user2) {
   return { token, expires_in: JWT_EXPIRES_IN_SEC };
 }
 async function resolveSessionFromRequest(c) {
-  const authHeader = c.req.header("Authorization");
-  if (authHeader?.startsWith("Bearer ")) {
-    const sessionToken = authHeader.substring(7);
-    const session2 = await authInstance.api.getSession({
-      headers: new Headers({ cookie: sessionTokenToCookieHeader(sessionToken) })
-    });
-    return { session: session2, sessionToken };
-  }
-  const cookieHeader = c.req.header("cookie") || "";
-  const sessionTokens = [...new Set(extractSessionTokensFromCookieHeader(cookieHeader))];
-  if (sessionTokens.length <= 1) {
-    const session2 = await authInstance.api.getSession({
-      headers: buildSessionLookupHeaders(c.req.raw.headers, cookieHeader)
-    });
-    return { session: session2, sessionToken: sessionTokens[0] ?? null };
-  }
-  const resolved = (await Promise.all(
-    sessionTokens.map(
-      (sessionToken) => authInstance.api.getSession({ headers: buildSessionLookupHeadersForToken(c.req.raw.headers, sessionToken) }).then((session2) => session2 ? { session: session2, sessionToken } : null).catch(() => null)
-    )
-  )).filter(Boolean);
-  if (resolved.length === 0) return { session: null, sessionToken: null };
-  return resolved.sort((a, b) => sessionCreatedAtMs(b.session) - sessionCreatedAtMs(a.session))[0];
+  return resolveRequestSession({
+    authorizationHeader: c.req.header("Authorization"),
+    cookieHeader: c.req.header("cookie"),
+    headers: c.req.raw.headers,
+    getSession: (headers) => authInstance.api.getSession({ headers })
+  });
 }
 async function getSessionFromRequest(c) {
   return (await resolveSessionFromRequest(c)).session;