oc-chatgpt-multi-auth 5.3.0 → 5.3.2

package/package.json

@@ -1,106 +1,106 @@
-{
-  "name": "oc-chatgpt-multi-auth",
-  "version": "5.3.0",
-  "description": "Multi-account rotation plugin for ChatGPT Plus/Pro (OAuth / Codex backend)",
-  "main": "./dist/index.js",
-  "types": "./dist/index.d.ts",
-  "type": "module",
-  "license": "MIT",
-  "author": "Numman Ali",
-  "repository": {
-    "type": "git",
-    "url": "git+https://github.com/ndycode/oc-chatgpt-multi-auth.git"
-  },
-  "keywords": [
-    "opencode",
-    "openai",
-    "codex",
-    "chatgpt",
-    "oauth",
-    "gpt-5",
-    "plugin",
-    "auth",
-    "chatgpt-plus",
-    "chatgpt-pro",
-    "multi-account"
-  ],
-  "homepage": "https://github.com/ndycode/oc-chatgpt-multi-auth#readme",
-  "bugs": {
-    "url": "https://github.com/ndycode/oc-chatgpt-multi-auth/issues"
-  },
-  "scripts": {
-    "build": "tsc && node scripts/copy-oauth-success.js",
-    "typecheck": "tsc --noEmit",
-    "lint": "npm run lint:ts && npm run lint:scripts",
-    "lint:ts": "eslint . --ext .ts",
-    "lint:scripts": "eslint scripts --ext .js",
-    "lint:fix": "npm run lint:ts:fix && npm run lint:scripts:fix",
-    "lint:ts:fix": "eslint . --ext .ts --fix",
-    "lint:scripts:fix": "eslint scripts --ext .js --fix",
-    "test": "vitest run",
-    "test:watch": "vitest",
-    "test:ui": "vitest --ui",
-    "test:coverage": "vitest run --coverage",
-    "coverage": "vitest run --coverage",
-    "audit:prod": "npm audit --omit=dev --audit-level=high",
-    "audit:all": "npm audit --audit-level=high",
-    "audit:dev:allowlist": "node scripts/audit-dev-allowlist.js",
-    "audit:ci": "npm run audit:prod && npm run audit:dev:allowlist",
-    "prepublishOnly": "npm run build",
-    "prepare": "husky"
-  },
-  "bin": {
-    "oc-chatgpt-multi-auth": "scripts/install-opencode-codex-auth.js"
-  },
-  "files": [
-    "dist/",
-    "assets/",
-    "config/",
-    "scripts/",
-    "README.md",
-    "LICENSE"
-  ],
-  "lint-staged": {
-    "*.ts": [
-      "eslint --max-warnings=0 --fix --no-warn-ignored"
-    ],
-    "scripts/**/*.js": [
-      "eslint --max-warnings=0 --fix --no-warn-ignored"
-    ]
-  },
-  "engines": {
-    "node": ">=18.0.0"
-  },
-  "peerDependencies": {
-    "typescript": "^5"
-  },
-  "devDependencies": {
-    "@fast-check/vitest": "^0.2.4",
-    "@opencode-ai/sdk": "^1.2.10",
-    "@types/node": "^25.3.0",
-    "@typescript-eslint/eslint-plugin": "^8.56.0",
-    "@typescript-eslint/parser": "^8.56.0",
-    "@vitest/coverage-v8": "^4.0.18",
-    "@vitest/ui": "^4.0.18",
-    "eslint": "^10.0.0",
-    "fast-check": "^4.5.3",
-    "husky": "^9.1.7",
-    "lint-staged": "^16.2.7",
-    "typescript": "^5.9.3",
-    "typescript-language-server": "^5.1.3",
-    "vitest": "^4.0.18"
-  },
-  "dependencies": {
-    "@openauthjs/openauth": "^0.4.3",
-    "@opencode-ai/plugin": "^1.2.9",
-    "hono": "^4.12.0",
-    "zod": "^4.3.6"
-  },
-  "overrides": {
-    "hono": "^4.12.0",
-    "vite": "^7.3.1",
-    "@typescript-eslint/typescript-estree": {
-      "minimatch": "^9.0.5"
-    }
-  }
-}
+{
+  "name": "oc-chatgpt-multi-auth",
+  "version": "5.3.2",
+  "description": "Multi-account rotation plugin for ChatGPT Plus/Pro (OAuth / Codex backend)",
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "type": "module",
+  "license": "MIT",
+  "author": "Numman Ali",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/ndycode/oc-chatgpt-multi-auth.git"
+  },
+  "keywords": [
+    "opencode",
+    "openai",
+    "codex",
+    "chatgpt",
+    "oauth",
+    "gpt-5",
+    "plugin",
+    "auth",
+    "chatgpt-plus",
+    "chatgpt-pro",
+    "multi-account"
+  ],
+  "homepage": "https://github.com/ndycode/oc-chatgpt-multi-auth#readme",
+  "bugs": {
+    "url": "https://github.com/ndycode/oc-chatgpt-multi-auth/issues"
+  },
+  "scripts": {
+    "build": "tsc && node scripts/copy-oauth-success.js",
+    "typecheck": "tsc --noEmit",
+    "lint": "npm run lint:ts && npm run lint:scripts",
+    "lint:ts": "eslint . --ext .ts",
+    "lint:scripts": "eslint scripts --ext .js",
+    "lint:fix": "npm run lint:ts:fix && npm run lint:scripts:fix",
+    "lint:ts:fix": "eslint . --ext .ts --fix",
+    "lint:scripts:fix": "eslint scripts --ext .js --fix",
+    "test": "vitest run",
+    "test:watch": "vitest",
+    "test:ui": "vitest --ui",
+    "test:coverage": "vitest run --coverage",
+    "coverage": "vitest run --coverage",
+    "audit:prod": "npm audit --omit=dev --audit-level=high",
+    "audit:all": "npm audit --audit-level=high",
+    "audit:dev:allowlist": "node scripts/audit-dev-allowlist.js",
+    "audit:ci": "npm run audit:prod && npm run audit:dev:allowlist",
+    "prepublishOnly": "npm run build",
+    "prepare": "husky"
+  },
+  "bin": {
+    "oc-chatgpt-multi-auth": "scripts/install-opencode-codex-auth.js"
+  },
+  "files": [
+    "dist/",
+    "assets/",
+    "config/",
+    "scripts/",
+    "README.md",
+    "LICENSE"
+  ],
+  "lint-staged": {
+    "*.ts": [
+      "eslint --max-warnings=0 --fix --no-warn-ignored"
+    ],
+    "scripts/**/*.js": [
+      "eslint --max-warnings=0 --fix --no-warn-ignored"
+    ]
+  },
+  "engines": {
+    "node": ">=18.0.0"
+  },
+  "peerDependencies": {
+    "typescript": "^5"
+  },
+  "devDependencies": {
+    "@fast-check/vitest": "^0.2.4",
+    "@opencode-ai/sdk": "^1.2.10",
+    "@types/node": "^25.3.0",
+    "@typescript-eslint/eslint-plugin": "^8.56.0",
+    "@typescript-eslint/parser": "^8.56.0",
+    "@vitest/coverage-v8": "^4.0.18",
+    "@vitest/ui": "^4.0.18",
+    "eslint": "^10.0.0",
+    "fast-check": "^4.5.3",
+    "husky": "^9.1.7",
+    "lint-staged": "^16.2.7",
+    "typescript": "^5.9.3",
+    "typescript-language-server": "^5.1.3",
+    "vitest": "^4.0.18"
+  },
+  "dependencies": {
+    "@openauthjs/openauth": "^0.4.3",
+    "@opencode-ai/plugin": "^1.2.9",
+    "hono": "^4.12.0",
+    "zod": "^4.3.6"
+  },
+  "overrides": {
+    "hono": "^4.12.0",
+    "vite": "^7.3.1",
+    "@typescript-eslint/typescript-estree": {
+      "minimatch": "^9.0.5"
+    }
+  }
+}

package/scripts/audit-dev-allowlist.js

@@ -1,114 +1,114 @@
-#!/usr/bin/env node
-
-import { execSync } from "node:child_process";
-
-const ALLOWED_HIGH_OR_CRITICAL_PACKAGES = new Set([
-	"eslint",
-	"ajv",
-	"@eslint-community/eslint-utils",
-	"@typescript-eslint/eslint-plugin",
-	"@typescript-eslint/parser",
-	"@typescript-eslint/type-utils",
-	"@typescript-eslint/typescript-estree",
-	"@typescript-eslint/utils",
-	"minimatch",
-]);
-
-function summarizeVia(via) {
-	if (!Array.isArray(via)) return [];
-	return via
-		.map((item) => {
-			if (typeof item === "string") return item;
-			if (!item || typeof item !== "object") return "unknown";
-			const name = typeof item.name === "string" ? item.name : "unknown";
-			const range = typeof item.range === "string" ? item.range : "";
-			return range ? `${name}:${range}` : name;
-		})
-		.slice(0, 5);
-}
-
-let rawAuditOutput = "";
-try {
-	rawAuditOutput = execSync("npm audit --json", {
-		encoding: "utf8",
-		stdio: ["ignore", "pipe", "pipe"],
-	}).trim();
-} catch (error) {
-	const execError = error;
-	const stdout =
-		execError &&
-		typeof execError === "object" &&
-		"stdout" in execError &&
-		typeof execError.stdout === "string"
-			? execError.stdout
-			: "";
-	const stderr =
-		execError &&
-		typeof execError === "object" &&
-		"stderr" in execError &&
-		typeof execError.stderr === "string"
-			? execError.stderr
-			: "";
-	rawAuditOutput = stdout.trim() || stderr.trim();
-}
-
-if (!rawAuditOutput) {
-	console.error("Failed to read npm audit JSON output.");
-	process.exit(1);
-}
-
-let auditJson;
-try {
-	auditJson = JSON.parse(rawAuditOutput.replace(/^\uFEFF/, ""));
-} catch (error) {
-	console.error("Failed to parse npm audit JSON output.");
-	console.error(error instanceof Error ? error.message : String(error));
-	process.exit(1);
-}
-
-const vulnerabilities =
-	auditJson && typeof auditJson === "object" && auditJson.vulnerabilities && typeof auditJson.vulnerabilities === "object"
-		? auditJson.vulnerabilities
-		: {};
-
-const unexpected = [];
-const allowlisted = [];
-
-for (const [name, details] of Object.entries(vulnerabilities)) {
-	if (!details || typeof details !== "object") continue;
-	const severity = typeof details.severity === "string" ? details.severity : "unknown";
-	if (severity !== "high" && severity !== "critical") continue;
-
-	const entry = {
-		name,
-		severity,
-		via: summarizeVia(details.via),
-		fixAvailable: details.fixAvailable ?? false,
-	};
-
-	if (ALLOWED_HIGH_OR_CRITICAL_PACKAGES.has(name)) {
-		allowlisted.push(entry);
-		continue;
-	}
-	unexpected.push(entry);
-}
-
-if (unexpected.length > 0) {
-	console.error("Unexpected high/critical vulnerabilities detected in dev dependency audit:");
-	for (const entry of unexpected) {
-		console.error(
-			`- ${entry.name} (${entry.severity}) via ${entry.via.join(", ") || "unknown"} fixAvailable=${String(entry.fixAvailable)}`,
-		);
-	}
-	process.exit(1);
-}
-
-if (allowlisted.length > 0) {
-	console.warn("Allowlisted high/critical dev vulnerabilities detected:");
-	for (const entry of allowlisted) {
-		console.warn(
-			`- ${entry.name} (${entry.severity}) via ${entry.via.join(", ") || "unknown"} fixAvailable=${String(entry.fixAvailable)}`,
-		);
-	}
-	console.warn("No unexpected high/critical vulnerabilities found.");
-}
+#!/usr/bin/env node
+
+import { execSync } from "node:child_process";
+
+const ALLOWED_HIGH_OR_CRITICAL_PACKAGES = new Set([
+	"eslint",
+	"ajv",
+	"@eslint-community/eslint-utils",
+	"@typescript-eslint/eslint-plugin",
+	"@typescript-eslint/parser",
+	"@typescript-eslint/type-utils",
+	"@typescript-eslint/typescript-estree",
+	"@typescript-eslint/utils",
+	"minimatch",
+]);
+
+function summarizeVia(via) {
+	if (!Array.isArray(via)) return [];
+	return via
+		.map((item) => {
+			if (typeof item === "string") return item;
+			if (!item || typeof item !== "object") return "unknown";
+			const name = typeof item.name === "string" ? item.name : "unknown";
+			const range = typeof item.range === "string" ? item.range : "";
+			return range ? `${name}:${range}` : name;
+		})
+		.slice(0, 5);
+}
+
+let rawAuditOutput = "";
+try {
+	rawAuditOutput = execSync("npm audit --json", {
+		encoding: "utf8",
+		stdio: ["ignore", "pipe", "pipe"],
+	}).trim();
+} catch (error) {
+	const execError = error;
+	const stdout =
+		execError &&
+		typeof execError === "object" &&
+		"stdout" in execError &&
+		typeof execError.stdout === "string"
+			? execError.stdout
+			: "";
+	const stderr =
+		execError &&
+		typeof execError === "object" &&
+		"stderr" in execError &&
+		typeof execError.stderr === "string"
+			? execError.stderr
+			: "";
+	rawAuditOutput = stdout.trim() || stderr.trim();
+}
+
+if (!rawAuditOutput) {
+	console.error("Failed to read npm audit JSON output.");
+	process.exit(1);
+}
+
+let auditJson;
+try {
+	auditJson = JSON.parse(rawAuditOutput.replace(/^\uFEFF/, ""));
+} catch (error) {
+	console.error("Failed to parse npm audit JSON output.");
+	console.error(error instanceof Error ? error.message : String(error));
+	process.exit(1);
+}
+
+const vulnerabilities =
+	auditJson && typeof auditJson === "object" && auditJson.vulnerabilities && typeof auditJson.vulnerabilities === "object"
+		? auditJson.vulnerabilities
+		: {};
+
+const unexpected = [];
+const allowlisted = [];
+
+for (const [name, details] of Object.entries(vulnerabilities)) {
+	if (!details || typeof details !== "object") continue;
+	const severity = typeof details.severity === "string" ? details.severity : "unknown";
+	if (severity !== "high" && severity !== "critical") continue;
+
+	const entry = {
+		name,
+		severity,
+		via: summarizeVia(details.via),
+		fixAvailable: details.fixAvailable ?? false,
+	};
+
+	if (ALLOWED_HIGH_OR_CRITICAL_PACKAGES.has(name)) {
+		allowlisted.push(entry);
+		continue;
+	}
+	unexpected.push(entry);
+}
+
+if (unexpected.length > 0) {
+	console.error("Unexpected high/critical vulnerabilities detected in dev dependency audit:");
+	for (const entry of unexpected) {
+		console.error(
+			`- ${entry.name} (${entry.severity}) via ${entry.via.join(", ") || "unknown"} fixAvailable=${String(entry.fixAvailable)}`,
+		);
+	}
+	process.exit(1);
+}
+
+if (allowlisted.length > 0) {
+	console.warn("Allowlisted high/critical dev vulnerabilities detected:");
+	for (const entry of allowlisted) {
+		console.warn(
+			`- ${entry.name} (${entry.severity}) via ${entry.via.join(", ") || "unknown"} fixAvailable=${String(entry.fixAvailable)}`,
+		);
+	}
+	console.warn("No unexpected high/critical vulnerabilities found.");
+}

package/scripts/copy-oauth-success.js

@@ -1,37 +1,37 @@
-import { promises as fs } from "node:fs";
-import { dirname, join, resolve } from "node:path";
-import { fileURLToPath } from "node:url";
-
-const __filename = fileURLToPath(import.meta.url);
-const __dirname = dirname(__filename);
-
-function normalizePathForCompare(path) {
-	const resolved = resolve(path);
-	return process.platform === "win32" ? resolved.toLowerCase() : resolved;
-}
-
-function getDefaultPaths() {
-	const src = join(__dirname, "..", "lib", "oauth-success.html");
-	const dest = join(__dirname, "..", "dist", "lib", "oauth-success.html");
-	return { src, dest };
-}
-
-export async function copyOAuthSuccessHtml(options = {}) {
-	const defaults = getDefaultPaths();
-	const src = options.src ?? defaults.src;
-	const dest = options.dest ?? defaults.dest;
-
-	await fs.mkdir(dirname(dest), { recursive: true });
-	await fs.copyFile(src, dest);
-
-	return { src, dest };
-}
-
-const isDirectRun = (() => {
-	if (!process.argv[1]) return false;
-	return normalizePathForCompare(process.argv[1]) === normalizePathForCompare(__filename);
-})();
-
-if (isDirectRun) {
-	await copyOAuthSuccessHtml();
-}
+import { promises as fs } from "node:fs";
+import { dirname, join, resolve } from "node:path";
+import { fileURLToPath } from "node:url";
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = dirname(__filename);
+
+function normalizePathForCompare(path) {
+	const resolved = resolve(path);
+	return process.platform === "win32" ? resolved.toLowerCase() : resolved;
+}
+
+function getDefaultPaths() {
+	const src = join(__dirname, "..", "lib", "oauth-success.html");
+	const dest = join(__dirname, "..", "dist", "lib", "oauth-success.html");
+	return { src, dest };
+}
+
+export async function copyOAuthSuccessHtml(options = {}) {
+	const defaults = getDefaultPaths();
+	const src = options.src ?? defaults.src;
+	const dest = options.dest ?? defaults.dest;
+
+	await fs.mkdir(dirname(dest), { recursive: true });
+	await fs.copyFile(src, dest);
+
+	return { src, dest };
+}
+
+const isDirectRun = (() => {
+	if (!process.argv[1]) return false;
+	return normalizePathForCompare(process.argv[1]) === normalizePathForCompare(__filename);
+})();
+
+if (isDirectRun) {
+	await copyOAuthSuccessHtml();
+}