job-pro 1.0.86 → 1.0.88

package/dist/apply.js

@@ -1164,13 +1164,17 @@ export async function executeCdpRealBrowser(staged, session, target) {
     if (target.kind === "dry-run") {
         return { ok: false, posted_to: "dry-run (no network)", message: "dry-run requested — no HTTP call fired", steps: [] };
     }
-    if (target.kind === "upstream" && !session) {
+    // Non-anon adapters need session.json (the SPA's login cookies); anon
+    // multipart adapters (Greenhouse/Lever boards) can fire the apply form
+    // without a session — the DOM walker handles those too.
+    const needsSession = staged.submit_kind !== "multipart-anon";
+    if (target.kind === "upstream" && needsSession && !session) {
         return {
             ok: false,
             posted_to: staged.apply_url,
-            message: "executeCdpRealBrowser requires session.json (the SPA's login cookies need to be in " +
-                "the puppeteer browser before navigation). Capture via extension/, drop under " +
-                "~/.jobpro/<adapter>.session.json.",
+            message: "executeCdpRealBrowser requires session.json for non-anon adapters " +
+                "(the SPA's login cookies need to be in the puppeteer browser before " +
+                "navigation). Run `job-pro extension` to capture one.",
             steps: [],
         };
     }

package/dist/index.js

@@ -235,6 +235,9 @@ VERBS (same surface for every company)
                                     --debug-submit-to <url>    verify wire format
                                     --debug-submit             ↑ shorthand → httpbin.org/post
                                     --really-submit            actually fire (env-gated)
+                                    --via-cdp                  drive a puppeteer browser through
+                                                               the SPA's apply form (DOM-based,
+                                                               bypasses API body-shape uncertainty)
                                     --allow-stale-session      bypass 30-day session-age gate
   memory list | get <k> | set k=v | event <kind> [payload] | clear
 
@@ -484,6 +487,7 @@ async function runCompany(adapter, company, rawArgs) {
     }
     if (verb === "apply") {
         const reallySubmit = args.includes("--really-submit");
+        const viaCdp = args.includes("--via-cdp");
         const printForm = args.includes("--print-form");
         const schemaOnly = args.includes("--schema");
         const interactive = args.includes("--interactive");
@@ -793,14 +797,24 @@ async function runCompany(adapter, company, rawArgs) {
             }
             // Family executors: each takes (staged, session, target) and returns
             // a MultiStepResult. All gate on session.json existing.
-            const familyExecutor = kind === "feishu-3-step" ? executeFeishu3Step :
-                kind === "moka-aes" ? executeMokaApply :
-                    kind === "beisen-wecruit" ? executeBeisenWecruit :
-                        kind === "beisen-italent" ? executeBeisenITalent :
-                            kind === "cdp-real-browser" ? executeCdpRealBrowser :
-                                null;
+            // --via-cdp forces the puppeteer DOM-driven path for any adapter,
+            // bypassing the API endpoint and any body-shape uncertainty. The
+            // CDP executor walks the SPA's apply form like a human: click
+            // "投递", fill name/email/phone, upload resume, click submit.
+            // Slower + needs Chrome, but reliable when API is uncertain.
+            const familyExecutor = viaCdp ? executeCdpRealBrowser :
+                kind === "feishu-3-step" ? executeFeishu3Step :
+                    kind === "moka-aes" ? executeMokaApply :
+                        kind === "beisen-wecruit" ? executeBeisenWecruit :
+                            kind === "beisen-italent" ? executeBeisenITalent :
+                                kind === "cdp-real-browser" ? executeCdpRealBrowser :
+                                    null;
             if (familyExecutor) {
-                if (!session) {
+                // --via-cdp on multipart-anon (xpeng/weride/hoyoverse) doesn't
+                // need a session — Greenhouse/Lever forms accept anon submits.
+                // The CDP executor's own check is relaxed for multipart-anon.
+                const sessionRequired = !(viaCdp && kind === "multipart-anon");
+                if (sessionRequired && !session) {
                     return emit({
                         ok: false,
                         source: company,
@@ -865,9 +879,10 @@ async function runCompany(adapter, company, rawArgs) {
                     post_id: postId,
                     mode: "really-submit-blocked",
                     staged,
-                    message: `no captured session at ~/.jobpro/${company}.session.json. Install the ` +
-                        `extension/ directory in Chrome, log into the careers site, click Export, ` +
-                        `then mv ~/Downloads/jobpro/${company}.session.json ~/.jobpro/`,
+                    message: `no captured session at ~/.jobpro/${company}.session.json. Run ` +
+                        `\`job-pro extension\` for the bundled MV3 path + Chrome install ` +
+                        `walkthrough; log into the careers site, click Export, then ` +
+                        `mv ~/Downloads/jobpro/${company}.session.json ~/.jobpro/`,
                 }, compact);
             }
             if (!isAnonMultipart) {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "job-pro",
-  "version": "1.0.86",
+  "version": "1.0.88",
   "description": "Query Chinese big-tech campus recruiting + auto-apply from your terminal. 50 companies, all 50 live (46 via official APIs, 4 via Liepin third-party fallback). 45/50 with end-to-end verified apply endpoints; 5 structurally-external (Liepin IM × 4 + Unitree WeChat). No signup, no token, no server.",
   "homepage": "https://job.ha7ch.com",
   "repository": "https://github.com/HA7CH/job-pro",