opensteer 0.8.0 → 0.8.2

package/dist/cli/bin.cjs

@@ -78,6 +78,38 @@ async function clearChromeSingletonEntries(userDataDir) {
     )
   );
 }
+async function sanitizeChromeProfile(userDataDir) {
+  if (!fs.existsSync(userDataDir)) {
+    return;
+  }
+  const entries = await promises.readdir(userDataDir).catch(() => []);
+  const profileDirs = entries.filter(
+    (entry) => entry === "Default" || /^Profile \d+$/i.test(entry)
+  );
+  await Promise.all(profileDirs.map((dir) => sanitizeProfilePreferences(userDataDir, dir)));
+}
+async function sanitizeProfilePreferences(userDataDir, profileDir) {
+  const prefsPath = path6.join(userDataDir, profileDir, "Preferences");
+  if (!fs.existsSync(prefsPath)) {
+    return;
+  }
+  try {
+    const raw = await promises.readFile(prefsPath, "utf8");
+    const prefs = JSON.parse(raw);
+    const profile = prefs.profile ?? {};
+    if (profile.exit_type === "Normal" && profile.exited_cleanly === true) {
+      return;
+    }
+    profile.exit_type = "Normal";
+    profile.exited_cleanly = true;
+    prefs.profile = profile;
+    await promises.writeFile(prefsPath, JSON.stringify(prefs), "utf8");
+    await promises.rm(path6.join(userDataDir, profileDir, "Secure Preferences"), { force: true }).catch(
+      () => void 0
+    );
+  } catch {
+  }
+}
 var PROCESS_LIST_MAX_BUFFER_BYTES2 = 16 * 1024 * 1024;
 var PS_COMMAND_ENV2 = { ...process.env, LC_ALL: "C" };
 var WINDOWS_PROGRAM_FILES = process.env.PROGRAMFILES ?? "C:\\Program Files";
@@ -873,6 +905,7 @@ async function createBrowserProfileSnapshot(input) {
     ...profileDirectory === void 0 ? {} : { selectedProfileDirectory: profileDirectory }
   });
   await clearChromeSingletonEntries(targetUserDataDir);
+  await sanitizeChromeProfile(targetUserDataDir);
 }
 async function copyRootLevelEntries(input) {
   const entries = await promises.readdir(input.sourceUserDataDir).catch(() => []);
@@ -936,68 +969,88 @@ function generateStealthInitScript(profile) {
   const encodedProfile = JSON.stringify(profile);
   return `(() => {
   const profile = ${encodedProfile};
-  const define = (target, key, value) => {
-    Object.defineProperty(target, key, {
+
+  // --- navigator.webdriver safety net ---
+  // --disable-blink-features=AutomationControlled handles this at the flag level
+  // and CDP handles it at the protocol level, but some Chrome builds still leak
+  // webdriver=true when --remote-debugging-port is active.
+  if (navigator.webdriver === true) {
+    Object.defineProperty(Navigator.prototype, 'webdriver', {
       configurable: true,
-      get: typeof value === "function" ? value : () => value,
+      get: function() { return false; },
     });
-  };
-  define(Navigator.prototype, 'webdriver', false);
-  define(Navigator.prototype, 'platform', profile.platform === 'macos' ? 'MacIntel' : profile.platform === 'windows' ? 'Win32' : 'Linux x86_64');
-  define(Navigator.prototype, 'userAgent', profile.userAgent);
-  define(Navigator.prototype, 'language', profile.locale);
-  define(Navigator.prototype, 'languages', [profile.locale, 'en']);
-  define(Navigator.prototype, 'maxTouchPoints', profile.maxTouchPoints);
-  define(window, 'devicePixelRatio', profile.devicePixelRatio);
-  define(window.screen, 'width', profile.screenResolution.width);
-  define(window.screen, 'height', profile.screenResolution.height);
-  define(window.screen, 'availWidth', profile.screenResolution.width);
-  define(window.screen, 'availHeight', profile.screenResolution.height - 40);
-  if (document.fonts && typeof document.fonts.check === 'function') {
-    const originalCheck = document.fonts.check.bind(document.fonts);
-    document.fonts.check = function(font, text) {
-      const family = String(font).match(/["']([^"']+)["']/)?.[1] || String(font).split(/s+/).at(-1);
-      if (family && profile.fonts.includes(family)) {
-        return true;
-      }
-      return originalCheck(font, text);
-    };
   }
-  const seedNoise = (seed, input) => {
-    const value = Math.sin(seed + input * 12.9898) * 43758.5453;
+
+  // --- CDP Runtime.enable leak defense ---
+  var _wrap = function(name) {
+    var orig = console[name];
+    if (typeof orig !== 'function') return;
+    console[name] = new Proxy(orig, {
+      apply: function(target, thisArg, args) {
+        for (var i = 0; i < args.length; i++) {
+          if (args[i] instanceof Error) {
+            var d = Object.getOwnPropertyDescriptor(args[i], 'stack');
+            if (d && typeof d.get === 'function') return undefined;
+          }
+        }
+        return Reflect.apply(target, thisArg, args);
+      },
+    });
+  };
+  ['debug', 'log', 'info', 'error', 'warn', 'trace', 'dir'].forEach(_wrap);
+
+  // --- Canvas fingerprint noise ---
+  var seedNoise = function(seed, input) {
+    var value = Math.sin(seed + input * 12.9898) * 43758.5453;
     return value - Math.floor(value);
   };
   if (HTMLCanvasElement.prototype.toDataURL) {
-    const originalToDataURL = HTMLCanvasElement.prototype.toDataURL;
-    HTMLCanvasElement.prototype.toDataURL = function(...args) {
-      const context = this.getContext('2d');
+    var originalToDataURL = HTMLCanvasElement.prototype.toDataURL;
+    HTMLCanvasElement.prototype.toDataURL = function() {
+      var context = this.getContext('2d');
       if (context) {
-        const x = Math.min(1, Math.max(0, this.width - 1));
-        const y = Math.min(1, Math.max(0, this.height - 1));
-        const imageData = context.getImageData(x, y, 1, 1);
+        var x = Math.min(1, Math.max(0, this.width - 1));
+        var y = Math.min(1, Math.max(0, this.height - 1));
+        var imageData = context.getImageData(x, y, 1, 1);
         imageData.data[0] = Math.max(0, Math.min(255, imageData.data[0] + Math.floor(seedNoise(profile.canvasNoiseSeed, 1) * 2)));
         context.putImageData(imageData, x, y);
       }
-      return originalToDataURL.apply(this, args);
+      return originalToDataURL.apply(this, arguments);
     };
   }
+
+  // --- WebGL vendor/renderer spoofing ---
   if (typeof WebGLRenderingContext !== 'undefined') {
-    const originalGetParameter = WebGLRenderingContext.prototype.getParameter;
+    var originalGetParameter = WebGLRenderingContext.prototype.getParameter;
     WebGLRenderingContext.prototype.getParameter = function(parameter) {
       if (parameter === 37445) return profile.webglVendor;
       if (parameter === 37446) return profile.webglRenderer;
       return originalGetParameter.call(this, parameter);
     };
   }
+
+  // --- AudioBuffer fingerprint noise ---
   if (typeof AudioBuffer !== 'undefined' && typeof AnalyserNode !== 'undefined') {
-    const originalGetFloatFrequencyData = AnalyserNode.prototype.getFloatFrequencyData;
+    var originalGetFloatFrequencyData = AnalyserNode.prototype.getFloatFrequencyData;
     AnalyserNode.prototype.getFloatFrequencyData = function(array) {
       originalGetFloatFrequencyData.call(this, array);
-      for (let index = 0; index < array.length; index += 16) {
+      for (var index = 0; index < array.length; index += 16) {
         array[index] += (seedNoise(profile.audioNoiseSeed, index) - 0.5) * 0.0001;
       }
     };
   }
+
+  // --- Font availability spoofing ---
+  if (document.fonts && typeof document.fonts.check === 'function') {
+    var originalCheck = document.fonts.check.bind(document.fonts);
+    document.fonts.check = function(font, text) {
+      var family = String(font).match(/["']([^"']+)["']/)?.[1] || String(font).split(/\\s+/).at(-1);
+      if (family && profile.fonts.includes(family)) {
+        return true;
+      }
+      return originalCheck(font, text);
+    };
+  }
 })();`;
 }
 
@@ -1043,25 +1096,95 @@ var STEALTH_INIT_SCRIPT = `(() => {
   ['debug', 'log', 'info', 'error', 'warn', 'trace', 'dir'].forEach(_wrap);
 })();`;
 async function injectBrowserStealthScripts(context, input = {}) {
+  if (input.profile !== void 0 && input.page !== void 0) {
+    await applyCdpStealthOverrides(context, input.page, input.profile);
+  }
   if (typeof context.addInitScript === "function") {
     await context.addInitScript({
       content: input.profile === void 0 ? STEALTH_INIT_SCRIPT : generateStealthInitScript(input.profile)
     });
   }
 }
+function buildUserAgentMetadata(profile) {
+  const majorVersion = profile.browserVersion.split(".")[0] ?? "136";
+  const brands = [
+    { brand: "Chromium", version: majorVersion },
+    ...profile.browserBrand === "edge" ? [{ brand: "Microsoft Edge", version: majorVersion }] : [{ brand: "Google Chrome", version: majorVersion }],
+    { brand: "Not-A.Brand", version: "99" }
+  ];
+  const fullVersionList = [
+    { brand: "Chromium", version: profile.browserVersion },
+    ...profile.browserBrand === "edge" ? [{ brand: "Microsoft Edge", version: profile.browserVersion }] : [{ brand: "Google Chrome", version: profile.browserVersion }],
+    { brand: "Not-A.Brand", version: "99.0.0.0" }
+  ];
+  const platformMap = {
+    macos: { platform: "macOS", platformVersion: "14.4.0", architecture: "arm" },
+    windows: { platform: "Windows", platformVersion: "15.0.0", architecture: "x86" },
+    linux: { platform: "Linux", platformVersion: "6.5.0", architecture: "x86" }
+  };
+  const platformInfo = platformMap[profile.platform] ?? platformMap.linux;
+  return {
+    brands,
+    fullVersionList,
+    platform: platformInfo.platform,
+    platformVersion: platformInfo.platformVersion,
+    architecture: platformInfo.architecture,
+    model: "",
+    mobile: false,
+    bitness: "64",
+    wow64: false
+  };
+}
+async function applyCdpStealthOverrides(context, page, profile) {
+  const contextWithCdp = context;
+  if (typeof contextWithCdp.newCDPSession !== "function") {
+    return;
+  }
+  let cdp;
+  try {
+    cdp = await contextWithCdp.newCDPSession(page);
+  } catch {
+    return;
+  }
+  try {
+    const platformString = profile.platform === "macos" ? "MacIntel" : profile.platform === "windows" ? "Win32" : "Linux x86_64";
+    await cdp.send("Network.setUserAgentOverride", {
+      userAgent: profile.userAgent,
+      acceptLanguage: `${profile.locale},en;q=0.9`,
+      platform: platformString,
+      userAgentMetadata: buildUserAgentMetadata(profile)
+    });
+    await cdp.send("Emulation.setDeviceMetricsOverride", {
+      width: profile.viewport.width,
+      height: profile.viewport.height,
+      deviceScaleFactor: profile.devicePixelRatio,
+      mobile: false,
+      screenWidth: profile.screenResolution.width,
+      screenHeight: profile.screenResolution.height
+    });
+    await cdp.send("Emulation.setLocaleOverride", {
+      locale: profile.locale
+    }).catch(() => void 0);
+    await cdp.send("Emulation.setTimezoneOverride", {
+      timezoneId: profile.timezoneId
+    }).catch(() => void 0);
+    await cdp.detach();
+  } catch {
+  }
+}
 
 // src/local-browser/stealth-profiles.ts
 var PROFILE_PRESETS = [
   {
     platform: "macos",
     browserBrand: "chrome",
-    browserVersion: "133.0.6943.99",
-    userAgent: "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.6943.99 Safari/537.36",
+    browserVersion: "136.0.7103.93",
+    userAgent: "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36",
     viewport: { width: 1440, height: 900 },
     screenResolution: { width: 1512, height: 982 },
     devicePixelRatio: 2,
     maxTouchPoints: 0,
-    webglVendor: "Apple Inc.",
+    webglVendor: "Apple",
     webglRenderer: "Apple M2",
     fonts: ["SF Pro Text", "Helvetica Neue", "Arial", "Menlo", "Apple Color Emoji"],
     locale: "en-US",
@@ -1070,8 +1193,8 @@ var PROFILE_PRESETS = [
   {
     platform: "windows",
     browserBrand: "chrome",
-    browserVersion: "133.0.6943.99",
-    userAgent: "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.6943.99 Safari/537.36",
+    browserVersion: "136.0.7103.93",
+    userAgent: "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36",
     viewport: { width: 1536, height: 864 },
     screenResolution: { width: 1920, height: 1080 },
     devicePixelRatio: 1.25,
@@ -1085,8 +1208,8 @@ var PROFILE_PRESETS = [
   {
     platform: "windows",
     browserBrand: "edge",
-    browserVersion: "133.0.3065.82",
-    userAgent: "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.3065.82",
+    browserVersion: "136.0.3240.50",
+    userAgent: "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36 Edg/136.0.3240.50",
     viewport: { width: 1536, height: 864 },
     screenResolution: { width: 1920, height: 1080 },
     devicePixelRatio: 1.25,
@@ -1100,8 +1223,8 @@ var PROFILE_PRESETS = [
   {
     platform: "linux",
     browserBrand: "chrome",
-    browserVersion: "133.0.6943.99",
-    userAgent: "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.6943.99 Safari/537.36",
+    browserVersion: "136.0.7103.93",
+    userAgent: "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36",
     viewport: { width: 1366, height: 768 },
     screenResolution: { width: 1366, height: 768 },
     devicePixelRatio: 1,
@@ -9771,7 +9894,8 @@ var OpensteerBrowserManager = class {
     await clearChromeSingletonEntries(userDataDir);
     const launched = await launchOwnedBrowser({
       userDataDir,
-      ...this.launchOptions === void 0 ? {} : { launch: this.launchOptions }
+      ...this.launchOptions === void 0 ? {} : { launch: this.launchOptions },
+      ...this.contextOptions?.viewport === void 0 ? {} : { viewport: this.contextOptions.viewport }
     });
     try {
       return await this.createAttachedEngine({
@@ -9819,7 +9943,8 @@ var OpensteerBrowserManager = class {
       await this.ensurePersistentBrowserManifest(workspace);
       const launched = await launchOwnedBrowser({
         userDataDir: workspace.browserUserDataDir,
-        ...this.launchOptions === void 0 ? {} : { launch: this.launchOptions }
+        ...this.launchOptions === void 0 ? {} : { launch: this.launchOptions },
+        ...this.contextOptions?.viewport === void 0 ? {} : { viewport: this.contextOptions.viewport }
       });
       const liveRecord = {
         mode: "persistent",
@@ -9854,13 +9979,13 @@ var OpensteerBrowserManager = class {
       if (!context) {
         throw new Error("Connected browser did not expose a Chromium browser context.");
       }
+      const page = input.freshTab || context.pages()[0] === void 0 ? await context.newPage() : context.pages()[0];
+      await page.bringToFront?.();
       const stealthProfile = resolveStealthProfile(this.contextOptions?.stealthProfile);
       await injectBrowserStealthScripts(
         context,
-        stealthProfile === void 0 ? {} : { profile: stealthProfile }
+        stealthProfile === void 0 ? {} : { profile: stealthProfile, page }
       );
-      const page = input.freshTab || context.pages()[0] === void 0 ? await context.newPage() : context.pages()[0];
-      await page.bringToFront?.();
       const engine = await enginePlaywright.createPlaywrightBrowserCoreEngine({
         browser,
         attachedContext: context,
@@ -10046,8 +10171,9 @@ async function resolveAttachEndpoint(browser) {
 async function launchOwnedBrowser(input) {
   await ensureDirectory(input.userDataDir);
   await clearChromeSingletonEntries(input.userDataDir);
+  await sanitizeChromeProfile(input.userDataDir);
   const executablePath = resolveChromeExecutablePath(input.launch?.executablePath);
-  const args = buildChromeArgs(input.userDataDir, input.launch);
+  const args = buildChromeArgs(input.userDataDir, input.launch, input.viewport);
   const child = child_process.spawn(executablePath, args, {
     stdio: ["ignore", "ignore", "pipe"],
     detached: process.platform !== "win32"
@@ -10074,7 +10200,8 @@ async function launchOwnedBrowser(input) {
     executablePath
   };
 }
-function buildChromeArgs(userDataDir, launch) {
+function buildChromeArgs(userDataDir, launch, viewport) {
+  const isHeadless = launch?.headless ?? true;
   const args = [
     "--remote-debugging-port=0",
     "--no-first-run",
@@ -10088,17 +10215,25 @@ function buildChromeArgs(userDataDir, launch) {
     "--disable-popup-blocking",
     "--disable-prompt-on-repost",
     "--disable-sync",
+    "--disable-infobars",
     "--disable-features=Translate",
     "--enable-features=NetworkService,NetworkServiceInProcess",
     "--password-store=basic",
     "--use-mock-keychain",
     `--user-data-dir=${userDataDir}`
   ];
-  if (launch?.headless ?? true) {
+  if (isHeadless) {
     args.push("--headless=new");
-    if (!(launch?.args ?? []).some((entry) => entry.startsWith("--window-size"))) {
-      args.push("--window-size=1280,800");
-    }
+  }
+  const hasUserWindowSize = (launch?.args ?? []).some(
+    (entry) => entry.startsWith("--window-size")
+  );
+  if (!hasUserWindowSize) {
+    const width = viewport?.width ?? 1440;
+    const height = viewport?.height ?? 900;
+    args.push(
+      isHeadless ? `--window-size=${String(width)},${String(height)}` : `--window-size=${String(width)},${String(height + 150)}`
+    );
   }
   args.push(...launch?.args ?? []);
   return args;
@@ -18194,8 +18329,8 @@ async function isExecutable(candidate) {
 }
 async function readDirSafe(directory) {
   try {
-    const { readdir: readdir3 } = await import('fs/promises');
-    return await readdir3(directory);
+    const { readdir: readdir4 } = await import('fs/promises');
+    return await readdir4(directory);
   } catch {
     return [];
   }