manifest 5.24.0 → 5.24.2

package/README.md

@@ -57,6 +57,7 @@ Manifest is available in cloud and local versions. While both versions install t
 - You don't want the telemetry data to move from your computer
 - You don’t need multi-device access
 - You don't want to subscribe to a cloud service
+- You are using a local model like Ollama
 
 If you don't know which version to choose, start with the **cloud version**.
 

package/dist/backend/analytics/controllers/agent-analytics.controller.js

@@ -21,6 +21,7 @@ const agent_analytics_service_1 = require("../services/agent-analytics.service")
 const range_query_dto_1 = require("../../common/dto/range-query.dto");
 const agent_cache_interceptor_1 = require("../../common/interceptors/agent-cache.interceptor");
 const cache_constants_1 = require("../../common/constants/cache.constants");
+const product_telemetry_1 = require("../../common/utils/product-telemetry");
 let AgentAnalyticsController = class AgentAnalyticsController {
     analytics;
     constructor(analytics) {
@@ -29,7 +30,12 @@ let AgentAnalyticsController = class AgentAnalyticsController {
     async getUsage(query, req) {
         const range = query.range ?? '24h';
         const ctx = req.ingestionContext;
-        return this.analytics.getUsage(range, ctx);
+        const usage = await this.analytics.getUsage(range, ctx);
+        return {
+            ...usage,
+            agentName: ctx.agentName,
+            telemetryId: (0, product_telemetry_1.hashForTelemetry)(ctx.userId),
+        };
     }
     async getCosts(query, req) {
         const range = query.range ?? '7d';

package/dist/backend/analytics/controllers/agents.controller.js

@@ -14,6 +14,7 @@ var __param = (this && this.__param) || function (paramIndex, decorator) {
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.AgentsController = void 0;
 const common_1 = require("@nestjs/common");
+const typeorm_1 = require("typeorm");
 const cache_manager_1 = require("@nestjs/cache-manager");
 const config_1 = require("@nestjs/config");
 const timeseries_queries_service_1 = require("../services/timeseries-queries.service");
@@ -52,12 +53,21 @@ let AgentsController = class AgentsController {
             throw new common_1.BadRequestException('Agent name produces an empty slug');
         }
         const displayName = body.name.trim();
-        const result = await this.apiKeyGenerator.onboardAgent({
-            tenantName: user.id,
-            agentName: slug,
-            displayName,
-            email: user.email,
-        });
+        let result;
+        try {
+            result = await this.apiKeyGenerator.onboardAgent({
+                tenantName: user.id,
+                agentName: slug,
+                displayName,
+                email: user.email,
+            });
+        }
+        catch (error) {
+            if (error instanceof typeorm_1.QueryFailedError && /unique|duplicate/i.test(error.message)) {
+                throw new common_1.ConflictException(`Agent "${slug}" already exists`);
+            }
+            throw error;
+        }
         (0, product_telemetry_1.trackCloudEvent)('agent_created', user.id, { agent_name: slug });
         return {
             agent: { id: result.agentId, name: slug, display_name: displayName },

package/dist/backend/common/utils/product-telemetry.js

@@ -2,6 +2,7 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.getMachineId = getMachineId;
 exports.trackEvent = trackEvent;
+exports.hashForTelemetry = hashForTelemetry;
 exports.trackCloudEvent = trackCloudEvent;
 const crypto_1 = require("crypto");
 const os_1 = require("os");
@@ -34,13 +35,15 @@ function trackEvent(event, properties) {
         ...properties,
     });
 }
+function hashForTelemetry(id) {
+    return (0, crypto_1.createHash)('sha256').update(id).digest('hex').slice(0, 16);
+}
 function trackCloudEvent(event, tenantId, properties) {
     if (isOptedOut())
         return;
-    const hashedTenant = (0, crypto_1.createHash)('sha256').update(tenantId).digest('hex').slice(0, 16);
     const version = getPackageVersion();
     (0, posthog_sender_1.sendToPostHog)(event, {
-        distinct_id: hashedTenant,
+        distinct_id: hashForTelemetry(tenantId),
         os: (0, os_1.platform)(),
         os_version: (0, os_1.release)(),
         node_version: process.versions.node,

package/dist/backend/common/utils/sql-dialect.js

@@ -18,13 +18,12 @@ function timestampType() {
     return process.env['MANIFEST_MODE'] === 'local' ? 'datetime' : 'timestamp';
 }
 function timestampDefault() {
-    return process.env['MANIFEST_MODE'] === 'local'
-        ? () => 'CURRENT_TIMESTAMP'
-        : () => 'NOW()';
+    return process.env['MANIFEST_MODE'] === 'local' ? () => 'CURRENT_TIMESTAMP' : () => 'NOW()';
 }
 function computeCutoff(interval) {
     const ms = intervalToMs(interval);
-    return new Date(Date.now() - ms).toISOString();
+    const cutoff = new Date(Date.now() - ms);
+    return formatLocalIso(cutoff);
 }
 function intervalToMs(interval) {
     const match = interval.match(/^(\d+)\s+(hour|hours|day|days)$/);
@@ -37,12 +36,13 @@ function intervalToMs(interval) {
     return unit.startsWith('hour') ? n * 3600_000 : n * 86400_000;
 }
 function sqlNow() {
-    return new Date().toISOString();
+    return formatLocalIso(new Date());
 }
 function sqlHourBucket(col, dialect) {
-    return dialect === 'sqlite'
-        ? `strftime('%Y-%m-%dT%H:00:00', ${col})`
-        : `to_char(date_trunc('hour', ${col}), 'YYYY-MM-DD"T"HH24:MI:SS')`;
+    if (dialect === 'sqlite') {
+        return `strftime('%Y-%m-%dT%H:00:00', ${col})`;
+    }
+    return `to_char(date_trunc('hour', ${col}), 'YYYY-MM-DD"T"HH24:MI:SS')`;
 }
 function sqlDateBucket(col, dialect) {
     return dialect === 'sqlite'
@@ -61,8 +61,11 @@ function portableSql(sql, dialect) {
     return sql.replace(/\$\d+/g, '?');
 }
 function sqlCastInterval(paramName, dialect) {
-    return dialect === 'sqlite'
-        ? `:${paramName}`
-        : `CAST(:${paramName} AS interval)`;
+    return dialect === 'sqlite' ? `:${paramName}` : `CAST(:${paramName} AS interval)`;
+}
+function formatLocalIso(d) {
+    const pad = (n) => String(n).padStart(2, '0');
+    return (`${d.getFullYear()}-${pad(d.getMonth() + 1)}-${pad(d.getDate())}` +
+        `T${pad(d.getHours())}:${pad(d.getMinutes())}:${pad(d.getSeconds())}`);
 }
 //# sourceMappingURL=sql-dialect.js.map

package/dist/backend/database/migrations/1772960000000-PurgeNonCuratedModels.js

@@ -3,8 +3,12 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.PurgeNonCuratedModels1772960000000 = void 0;
 const CURATED_MODELS = [
     'claude-opus-4-6',
+    'claude-sonnet-4-6',
     'claude-sonnet-4-5-20250929',
+    'claude-opus-4-5-20251101',
+    'claude-opus-4-1-20250805',
     'claude-sonnet-4-20250514',
+    'claude-opus-4-20250514',
     'claude-haiku-4-5-20251001',
     'gpt-4o',
     'gpt-4o-mini',

package/dist/backend/database/seed-models.js

@@ -2,7 +2,8 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.SEED_MODELS = void 0;
 exports.SEED_MODELS = [
-    ['claude-opus-4-6', 'Anthropic', 0.000015, 0.000075, 200000, true, true, 'Claude Opus 4.6'],
+    ['claude-opus-4-6', 'Anthropic', 0.000005, 0.000025, 200000, true, true, 'Claude Opus 4.6'],
+    ['claude-sonnet-4-6', 'Anthropic', 0.000003, 0.000015, 200000, true, true, 'Claude Sonnet 4.6'],
     [
         'claude-sonnet-4-5-20250929',
         'Anthropic',
@@ -13,6 +14,26 @@ exports.SEED_MODELS = [
         true,
         'Claude Sonnet 4.5',
     ],
+    [
+        'claude-opus-4-5-20251101',
+        'Anthropic',
+        0.000015,
+        0.000075,
+        200000,
+        true,
+        true,
+        'Claude Opus 4.5',
+    ],
+    [
+        'claude-opus-4-1-20250805',
+        'Anthropic',
+        0.000015,
+        0.000075,
+        200000,
+        true,
+        true,
+        'Claude Opus 4.1',
+    ],
     [
         'claude-sonnet-4-20250514',
         'Anthropic',
@@ -23,6 +44,7 @@ exports.SEED_MODELS = [
         true,
         'Claude Sonnet 4',
     ],
+    ['claude-opus-4-20250514', 'Anthropic', 0.000015, 0.000075, 200000, true, true, 'Claude Opus 4'],
     [
         'claude-haiku-4-5-20251001',
         'Anthropic',
@@ -100,8 +122,8 @@ exports.SEED_MODELS = [
     [
         'anthropic/claude-opus-4-6',
         'OpenRouter',
-        0.000015,
-        0.000075,
+        0.000005,
+        0.000025,
         200000,
         true,
         true,

package/dist/backend/model-prices/model-name-normalizer.js

@@ -3,12 +3,19 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.stripProviderPrefix = stripProviderPrefix;
 exports.stripDateSuffix = stripDateSuffix;
 exports.buildAliasMap = buildAliasMap;
+exports.normalizeDots = normalizeDots;
 exports.resolveModelName = resolveModelName;
 const KNOWN_ALIASES = [
     ['claude-opus-4', 'claude-opus-4-6'],
     ['claude-sonnet-4.5', 'claude-sonnet-4-5-20250929'],
+    ['claude-sonnet-4-5', 'claude-sonnet-4-5-20250929'],
+    ['claude-opus-4-5', 'claude-opus-4-5-20251101'],
+    ['claude-opus-4-1', 'claude-opus-4-1-20250805'],
+    ['claude-sonnet-4-0', 'claude-sonnet-4-20250514'],
+    ['claude-opus-4-0', 'claude-opus-4-20250514'],
     ['claude-sonnet-4', 'claude-sonnet-4-20250514'],
     ['claude-haiku-4.5', 'claude-haiku-4-5-20251001'],
+    ['claude-haiku-4-5', 'claude-haiku-4-5-20251001'],
     ['deepseek-v3', 'deepseek-chat'],
     ['deepseek-chat-v3-0324', 'deepseek-chat'],
     ['deepseek-r1', 'deepseek-reasoner'],
@@ -67,6 +74,9 @@ function buildAliasMap(canonicalNames) {
     }
     return map;
 }
+function normalizeDots(name) {
+    return name.replace(/\./g, '-');
+}
 function resolveModelName(name, aliasMap) {
     const exact = aliasMap.get(name);
     if (exact)
@@ -81,6 +91,18 @@ function resolveModelName(name, aliasMap) {
         if (fromNoDate)
             return fromNoDate;
     }
+    const dotNorm = normalizeDots(stripped);
+    if (dotNorm !== stripped) {
+        const fromDotNorm = aliasMap.get(dotNorm);
+        if (fromDotNorm)
+            return fromDotNorm;
+        const dotNormNoDate = stripDateSuffix(dotNorm);
+        if (dotNormNoDate !== dotNorm) {
+            const fromDotNormNoDate = aliasMap.get(dotNormNoDate);
+            if (fromDotNormNoDate)
+                return fromDotNormNoDate;
+        }
+    }
     return undefined;
 }
 //# sourceMappingURL=model-name-normalizer.js.map

package/dist/backend/notifications/emails/threshold-alert.js

@@ -17,9 +17,10 @@ function formatTimestamp(raw) {
     return `${monthName} ${dayNum}, ${timePart}`;
 }
 function formatValue(value, metric) {
+    const num = Number(value);
     if (metric === 'cost')
-        return `$${value.toFixed(4)}`;
-    return value.toLocaleString();
+        return `$${num.toLocaleString(undefined, { minimumFractionDigits: 2, maximumFractionDigits: 2 })}`;
+    return num.toLocaleString(undefined, { maximumFractionDigits: 0 });
 }
 function ThresholdAlertEmail(props) {
     const { agentName, metricType, threshold, actualValue, period, timestamp, agentUrl, logoUrl = 'https://app.manifest.build/manifest-logo.png', alertType = 'hard', periodResetDate, } = props;

package/dist/backend/otlp/guards/otlp-auth.guard.js

@@ -26,6 +26,7 @@ let OtlpAuthGuard = OtlpAuthGuard_1 = class OtlpAuthGuard {
     keyRepo;
     logger = new common_1.Logger(OtlpAuthGuard_1.name);
     cache = new Map();
+    devContext = null;
     CACHE_TTL_MS = 5 * 60 * 1000;
     MAX_CACHE_SIZE = 10_000;
     cleanupTimer;
@@ -42,7 +43,9 @@ let OtlpAuthGuard = OtlpAuthGuard_1 = class OtlpAuthGuard {
     async canActivate(context) {
         const request = context.switchToHttp().getRequest();
         const authHeader = request.headers['authorization'];
-        const isLocal = process.env['MANIFEST_MODE'] === 'local' && LOOPBACK_IPS.has(request.ip ?? '');
+        const isLoopback = LOOPBACK_IPS.has(request.ip ?? '');
+        const isLocal = process.env['MANIFEST_MODE'] === 'local' && isLoopback;
+        const isDevLoopback = process.env['NODE_ENV'] === 'development' && isLoopback;
         if (!authHeader && isLocal) {
             request.ingestionContext = {
                 tenantId: local_mode_constants_1.LOCAL_TENANT_ID,
@@ -52,6 +55,13 @@ let OtlpAuthGuard = OtlpAuthGuard_1 = class OtlpAuthGuard {
             };
             return true;
         }
+        if (!authHeader && isDevLoopback) {
+            const devCtx = await this.resolveDevContext();
+            if (devCtx) {
+                request.ingestionContext = devCtx;
+                return true;
+            }
+        }
         if (!authHeader) {
             this.logger.warn(`OTLP request without auth from ${request.ip}`);
             throw new common_1.UnauthorizedException('Authorization header required');
@@ -70,6 +80,13 @@ let OtlpAuthGuard = OtlpAuthGuard_1 = class OtlpAuthGuard {
                 };
                 return true;
             }
+            if (isDevLoopback) {
+                const devCtx = await this.resolveDevContext();
+                if (devCtx) {
+                    request.ingestionContext = devCtx;
+                    return true;
+                }
+            }
             throw new common_1.UnauthorizedException('Invalid API key format');
         }
         const cached = this.cache.get(token);
@@ -127,6 +144,25 @@ let OtlpAuthGuard = OtlpAuthGuard_1 = class OtlpAuthGuard {
     clearCache() {
         this.cache.clear();
     }
+    async resolveDevContext() {
+        if (this.devContext && this.devContext.expiresAt > Date.now()) {
+            return this.devContext.context;
+        }
+        const keyRecord = await this.keyRepo.findOne({
+            where: { is_active: true },
+            relations: ['agent', 'tenant'],
+        });
+        if (!keyRecord)
+            return null;
+        const ctx = {
+            tenantId: keyRecord.tenant_id,
+            agentId: keyRecord.agent_id,
+            agentName: keyRecord.agent.name,
+            userId: keyRecord.tenant.name,
+        };
+        this.devContext = { context: ctx, expiresAt: Date.now() + this.CACHE_TTL_MS };
+        return ctx;
+    }
     evictExpired() {
         const now = Date.now();
         for (const [key, entry] of this.cache) {

package/dist/backend/otlp/otlp.controller.js

@@ -91,9 +91,6 @@ let OtlpController = OtlpController_1 = class OtlpController {
             if (this.seenAgents.has(ctx.agentId))
                 return;
             this.seenAgents.add(ctx.agentId);
-            (0, product_telemetry_1.trackCloudEvent)('plugin_registered', ctx.userId, {
-                source: 'backend',
-            });
             (0, product_telemetry_1.trackCloudEvent)('first_telemetry_received', ctx.userId, {
                 agent_id_hash: ctx.agentId.slice(0, 8),
             });

package/dist/backend/routing/proxy/google-adapter.js

@@ -4,6 +4,47 @@ exports.toGoogleRequest = toGoogleRequest;
 exports.fromGoogleResponse = fromGoogleResponse;
 exports.transformGoogleStreamChunk = transformGoogleStreamChunk;
 const crypto_1 = require("crypto");
+const UNSUPPORTED_SCHEMA_FIELDS = new Set([
+    'patternProperties',
+    'additionalProperties',
+    '$schema',
+    '$id',
+    '$ref',
+    '$defs',
+    'definitions',
+    'allOf',
+    'anyOf',
+    'oneOf',
+    'not',
+    'if',
+    'then',
+    'else',
+    'dependentSchemas',
+    'dependentRequired',
+    'unevaluatedProperties',
+    'unevaluatedItems',
+    'contentMediaType',
+    'contentEncoding',
+    'examples',
+    'default',
+    'const',
+    'title',
+]);
+function sanitizeSchema(schema, isPropertiesMap = false) {
+    if (schema === null || schema === undefined || typeof schema !== 'object') {
+        return schema;
+    }
+    if (Array.isArray(schema)) {
+        return schema.map((item) => sanitizeSchema(item));
+    }
+    const result = {};
+    for (const [key, value] of Object.entries(schema)) {
+        if (!isPropertiesMap && UNSUPPORTED_SCHEMA_FIELDS.has(key))
+            continue;
+        result[key] = sanitizeSchema(value, key === 'properties');
+    }
+    return result;
+}
 function mapRole(role) {
     if (role === 'assistant')
         return 'model';
@@ -64,7 +105,7 @@ function convertTools(tools) {
         return {
             name: fn.name,
             description: fn.description,
-            parameters: fn.parameters,
+            parameters: fn.parameters ? sanitizeSchema(fn.parameters) : undefined,
         };
     })
         .filter(Boolean);

package/dist/backend/routing/proxy/proxy.service.js

@@ -173,11 +173,11 @@ let ProxyService = ProxyService_1 = class ProxyService {
         if (!exceeded)
             return;
         const fmt = exceeded.metricType === 'cost'
-            ? `$${exceeded.actual.toFixed(2)}`
-            : exceeded.actual.toLocaleString();
+            ? `$${Number(exceeded.actual).toLocaleString(undefined, { minimumFractionDigits: 2, maximumFractionDigits: 2 })}`
+            : Number(exceeded.actual).toLocaleString(undefined, { maximumFractionDigits: 0 });
         const threshFmt = exceeded.metricType === 'cost'
-            ? `$${exceeded.threshold.toFixed(2)}`
-            : exceeded.threshold.toLocaleString();
+            ? `$${Number(exceeded.threshold).toLocaleString(undefined, { minimumFractionDigits: 2, maximumFractionDigits: 2 })}`
+            : Number(exceeded.threshold).toLocaleString(undefined, { maximumFractionDigits: 0 });
         throw new common_1.HttpException({
             error: {
                 message: `Limit exceeded: ${exceeded.metricType} usage (${fmt}) exceeds ${threshFmt} per ${exceeded.period}`,
@@ -192,16 +192,15 @@ let ProxyService = ProxyService_1 = class ProxyService {
             .slice(-SCORING_RECENT_MESSAGES);
     }
     detectHeartbeat(scoringMessages) {
-        return scoringMessages.some((m) => {
-            if (m.role !== 'user')
-                return false;
-            if (typeof m.content === 'string')
-                return m.content.includes('HEARTBEAT_OK');
-            if (Array.isArray(m.content)) {
-                return m.content.some((p) => p.type === 'text' && typeof p.text === 'string' && p.text.includes('HEARTBEAT_OK'));
-            }
+        const lastUser = [...scoringMessages].reverse().find((m) => m.role === 'user');
+        if (!lastUser)
             return false;
-        });
+        if (typeof lastUser.content === 'string')
+            return lastUser.content.includes('HEARTBEAT_OK');
+        if (Array.isArray(lastUser.content)) {
+            return lastUser.content.some((p) => p.type === 'text' && typeof p.text === 'string' && p.text.includes('HEARTBEAT_OK'));
+        }
+        return false;
     }
     async forwardToProvider(provider, apiKey, model, body, stream, sessionKey, signal, authType) {
         const extraHeaders = {};

package/dist/backend/routing/resolve.controller.js

@@ -21,6 +21,7 @@ const otlp_auth_guard_1 = require("../otlp/guards/otlp-auth.guard");
 const resolve_service_1 = require("./resolve.service");
 const routing_service_1 = require("./routing.service");
 const resolve_request_dto_1 = require("./dto/resolve-request.dto");
+const product_telemetry_1 = require("../common/utils/product-telemetry");
 class SubscriptionProviderItem {
     provider;
 }
@@ -55,8 +56,13 @@ let ResolveController = class ResolveController {
         const { agentId, userId } = req.ingestionContext;
         let registered = 0;
         for (const item of body.providers) {
-            await this.routingService.upsertProvider(agentId, userId, item.provider, undefined, 'subscription');
-            registered++;
+            const { isNew } = await this.routingService.registerSubscriptionProvider(agentId, userId, item.provider);
+            if (isNew) {
+                (0, product_telemetry_1.trackCloudEvent)('routing_provider_connected', userId, {
+                    provider: `${item.provider} (Subscription)`,
+                });
+                registered++;
+            }
         }
         return { registered };
     }

package/dist/backend/routing/routing.controller.js

@@ -62,8 +62,9 @@ let RoutingController = class RoutingController {
         }
         const { provider: result, isNew } = await this.routingService.upsertProvider(agent.id, user.id, body.provider, body.apiKey, body.authType);
         if (isNew) {
+            const providerLabel = body.authType === 'subscription' ? `${body.provider} (Subscription)` : body.provider;
             (0, product_telemetry_1.trackCloudEvent)('routing_provider_connected', user.id, {
-                provider: body.provider,
+                provider: providerLabel,
             });
         }
         return {

package/dist/backend/routing/routing.service.js

@@ -69,6 +69,9 @@ let RoutingService = RoutingService_1 = class RoutingService {
             existing.is_active = true;
             existing.updated_at = new Date().toISOString();
             await this.providerRepo.save(existing);
+            if (effectiveAuthType === 'api_key') {
+                await this.deactivateSubscriptionForProvider(agentId, provider);
+            }
             await this.autoAssign.recalculate(agentId);
             this.routingCache.invalidateAgent(agentId);
             return { provider: existing, isNew: false };
@@ -86,10 +89,51 @@ let RoutingService = RoutingService_1 = class RoutingService {
             updated_at: new Date().toISOString(),
         });
         await this.providerRepo.insert(record);
+        if (effectiveAuthType === 'api_key') {
+            await this.deactivateSubscriptionForProvider(agentId, provider);
+        }
         await this.autoAssign.recalculate(agentId);
         this.routingCache.invalidateAgent(agentId);
         return { provider: record, isNew: true };
     }
+    async registerSubscriptionProvider(agentId, userId, provider) {
+        const existing = await this.providerRepo.findOne({
+            where: { agent_id: agentId, provider, auth_type: 'subscription' },
+        });
+        if (existing)
+            return { isNew: false };
+        const hasApiKey = await this.providerRepo.findOne({
+            where: { agent_id: agentId, provider, auth_type: 'api_key', is_active: true },
+        });
+        if (hasApiKey)
+            return { isNew: false };
+        const record = Object.assign(new user_provider_entity_1.UserProvider(), {
+            id: (0, crypto_1.randomUUID)(),
+            user_id: userId,
+            agent_id: agentId,
+            provider,
+            auth_type: 'subscription',
+            api_key_encrypted: null,
+            key_prefix: null,
+            is_active: true,
+            connected_at: new Date().toISOString(),
+            updated_at: new Date().toISOString(),
+        });
+        await this.providerRepo.insert(record);
+        await this.autoAssign.recalculate(agentId);
+        this.routingCache.invalidateAgent(agentId);
+        return { isNew: true };
+    }
+    async deactivateSubscriptionForProvider(agentId, provider) {
+        const sub = await this.providerRepo.findOne({
+            where: { agent_id: agentId, provider, auth_type: 'subscription', is_active: true },
+        });
+        if (!sub)
+            return;
+        sub.is_active = false;
+        sub.updated_at = new Date().toISOString();
+        await this.providerRepo.save(sub);
+    }
     async removeProvider(agentId, provider, authType) {
         const where = { agent_id: agentId, provider };
         if (authType)