npm - promptfoo - Versions diffs - 0.119.13 → 0.119.14 - Mend

promptfoo 0.119.13 → 0.119.14

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (131) hide show

package/dist/package.json +28 -26
package/dist/src/app/assets/index-eJ2lMe94.js +51 -0
package/dist/src/app/assets/{source-map-support-Bnh0UQ2S.js → source-map-support-1v4oeb7P.js} +1 -1
package/dist/src/app/assets/sync-CtLQRuC1.js +1 -0
package/dist/src/app/assets/{vendor-charts-T60Uk0Z3.js → vendor-charts-DnVv66VV.js} +1 -1
package/dist/src/app/assets/{vendor-markdown-DLig-KJh.js → vendor-markdown-DCpQIyMA.js} +1 -1
package/dist/src/app/assets/{vendor-mui-core-5BLaiG3c.js → vendor-mui-core-Boqnpf9f.js} +1 -1
package/dist/src/app/assets/{vendor-mui-icons-fn39Fu2e.js → vendor-mui-icons-B8MqoVbj.js} +1 -1
package/dist/src/app/assets/vendor-mui-x-CGSS6QHF.js +45 -0
package/dist/src/app/assets/{vendor-utils-DYBMEuwX.js → vendor-utils-DdfHIEy8.js} +1 -1
package/dist/src/app/index.html +7 -7
package/dist/src/assertions/guardrails.d.ts +1 -1
package/dist/src/assertions/guardrails.js +18 -9
package/dist/src/assertions/index.d.ts +1 -1
package/dist/src/assertions/index.js +9 -3
package/dist/src/assertions/searchRubric.d.ts +3 -0
package/dist/src/assertions/searchRubric.js +18 -0
package/dist/src/commands/eval.js +1 -1
package/dist/src/commands/modelScan.d.ts +7 -1
package/dist/src/commands/modelScan.js +121 -59
package/dist/src/database/index.d.ts +6 -0
package/dist/src/database/index.js +11 -0
package/dist/src/database/tables.d.ts +46 -24
package/dist/src/envars.d.ts +17 -0
package/dist/src/generated/constants.js +1 -1
package/dist/src/logger.d.ts +5 -0
package/dist/src/logger.js +28 -0
package/dist/src/main.js +17 -6
package/dist/src/matchers.d.ts +1 -0
package/dist/src/matchers.js +80 -0
package/dist/src/models/eval.d.ts +2 -1
package/dist/src/models/eval.js +44 -2
package/dist/src/prompts/grading.d.ts +1 -0
package/dist/src/prompts/grading.js +26 -1
package/dist/src/prompts/index.d.ts +1 -0
package/dist/src/prompts/index.js +4 -1
package/dist/src/providers/adaline.gateway.js +2 -2
package/dist/src/providers/anthropic/defaults.d.ts +1 -1
package/dist/src/providers/anthropic/defaults.js +15 -0
package/dist/src/providers/azure/chat.d.ts +3 -1
package/dist/src/providers/azure/chat.js +16 -3
package/dist/src/providers/azure/defaults.js +660 -141
package/dist/src/providers/azure/responses.d.ts +5 -0
package/dist/src/providers/azure/responses.js +33 -4
package/dist/src/providers/azure/types.d.ts +4 -0
package/dist/src/providers/bedrock/agents.d.ts +1 -1
package/dist/src/providers/bedrock/agents.js +2 -2
package/dist/src/providers/bedrock/base.d.ts +40 -0
package/dist/src/providers/bedrock/base.js +171 -0
package/dist/src/providers/bedrock/converse.d.ts +146 -0
package/dist/src/providers/bedrock/converse.js +1044 -0
package/dist/src/providers/bedrock/index.d.ts +1 -34
package/dist/src/providers/bedrock/index.js +4 -159
package/dist/src/providers/bedrock/knowledgeBase.d.ts +1 -1
package/dist/src/providers/bedrock/knowledgeBase.js +2 -2
package/dist/src/providers/bedrock/nova-sonic.d.ts +2 -1
package/dist/src/providers/bedrock/nova-sonic.js +2 -2
package/dist/src/providers/claude-agent-sdk.d.ts +58 -1
package/dist/src/providers/claude-agent-sdk.js +22 -1
package/dist/src/providers/defaults.js +4 -0
package/dist/src/providers/github/defaults.js +6 -6
package/dist/src/providers/google/types.d.ts +25 -0
package/dist/src/providers/google/util.d.ts +2 -0
package/dist/src/providers/google/vertex.js +78 -22
package/dist/src/providers/{groq.d.ts → groq/chat.d.ts} +26 -20
package/dist/src/providers/groq/chat.js +79 -0
package/dist/src/providers/groq/index.d.ts +5 -0
package/dist/src/providers/groq/index.js +24 -0
package/dist/src/providers/groq/responses.d.ts +106 -0
package/dist/src/providers/groq/responses.js +64 -0
package/dist/src/providers/groq/types.d.ts +44 -0
package/dist/src/providers/groq/types.js +3 -0
package/dist/src/providers/groq/util.d.ts +15 -0
package/dist/src/providers/groq/util.js +28 -0
package/dist/src/providers/mcp/client.d.ts +8 -0
package/dist/src/providers/mcp/client.js +60 -10
package/dist/src/providers/mcp/types.d.ts +21 -0
package/dist/src/providers/openai/chatkit-pool.d.ts +114 -0
package/dist/src/providers/openai/chatkit-pool.js +548 -0
package/dist/src/providers/openai/chatkit-types.d.ts +73 -0
package/dist/src/providers/openai/chatkit-types.js +3 -0
package/dist/src/providers/openai/chatkit.d.ts +76 -0
package/dist/src/providers/openai/chatkit.js +879 -0
package/dist/src/providers/openai/codex-sdk.d.ts +109 -0
package/dist/src/providers/openai/codex-sdk.js +346 -0
package/dist/src/providers/openai/defaults.d.ts +2 -0
package/dist/src/providers/openai/defaults.js +10 -4
package/dist/src/providers/registry.js +48 -9
package/dist/src/providers/responses/types.d.ts +1 -1
package/dist/src/providers/sagemaker.d.ts +2 -2
package/dist/src/providers/webSearchUtils.d.ts +17 -0
package/dist/src/providers/webSearchUtils.js +169 -0
package/dist/src/providers/xai/chat.d.ts +61 -0
package/dist/src/providers/xai/chat.js +68 -3
package/dist/src/providers/xai/responses.d.ts +189 -0
package/dist/src/providers/xai/responses.js +268 -0
package/dist/src/redteam/constants/plugins.d.ts +1 -1
package/dist/src/redteam/constants/plugins.js +1 -1
package/dist/src/redteam/constants/strategies.d.ts +1 -1
package/dist/src/redteam/constants/strategies.js +1 -0
package/dist/src/redteam/plugins/vlguard.d.ts +53 -4
package/dist/src/redteam/plugins/vlguard.js +362 -46
package/dist/src/redteam/providers/constants.d.ts +2 -2
package/dist/src/redteam/providers/constants.js +2 -2
package/dist/src/redteam/providers/crescendo/index.d.ts +1 -1
package/dist/src/redteam/providers/crescendo/index.js +5 -3
package/dist/src/redteam/providers/hydra/index.js +1 -1
package/dist/src/server/routes/modelAudit.js +4 -4
package/dist/src/share.js +4 -2
package/dist/src/telemetry.js +44 -8
package/dist/src/types/env.d.ts +3 -0
package/dist/src/types/env.js +1 -0
package/dist/src/types/index.d.ts +896 -615
package/dist/src/types/index.js +1 -0
package/dist/src/types/providers.d.ts +1 -0
package/dist/src/types/tracing.d.ts +3 -0
package/dist/src/util/database.d.ts +6 -4
package/dist/src/util/file.js +6 -4
package/dist/src/util/modelAuditCliParser.d.ts +4 -4
package/dist/src/util/xlsx.js +52 -26
package/dist/src/validators/providers.d.ts +142 -122
package/dist/src/validators/providers.js +4 -6
package/dist/src/validators/redteam.d.ts +36 -28
package/dist/src/validators/redteam.js +9 -3
package/dist/tsconfig.tsbuildinfo +1 -1
package/package.json +28 -26
package/dist/drizzle/CLAUDE.md +0 -65
package/dist/src/app/assets/index-DifT6VGT.js +0 -51
package/dist/src/app/assets/sync-Oo-W_Rbj.js +0 -1
package/dist/src/app/assets/vendor-mui-x-C2xF-yiO.js +0 -45
package/dist/src/providers/groq.js +0 -48

package/dist/src/providers/openai/chatkit.js ADDED Viewed

@@ -0,0 +1,879 @@
+"use strict";
+/**
+ * OpenAI ChatKit Provider
+ *
+ * Evaluates ChatKit workflows deployed via Agent Builder using Playwright
+ * to interact with the ChatKit web component.
+ *
+ * ChatKit workflows created in OpenAI's Agent Builder don't expose a direct
+ * REST API for sending messages. Instead, they require interaction through
+ * the ChatKit web component, which this provider automates using Playwright.
+ *
+ * Prerequisites:
+ *   - Playwright installed: npm install playwright && npx playwright install chromium
+ *   - OPENAI_API_KEY environment variable set
+ *
+ * Usage:
+ *   providers:
+ *     - id: openai:chatkit:wf_68ffb83dbfc88190a38103c2bb9f421003f913035dbdb131
+ *       config:
+ *         version: '3'           # Optional: workflow version
+ *         timeout: 120000        # Optional: response timeout in ms (default: 120000)
+ *         headless: true         # Optional: run browser headless (default: true)
+ *
+ * Performance Notes:
+ *   - Each evaluation spawns a browser instance, so it's slower than REST APIs
+ *   - For reliable results, use --max-concurrency 1 to avoid resource contention
+ *   - First test may be slower due to browser launch and ChatKit initialization
+ *
+ * Troubleshooting:
+ *   - "Playwright not found": Run `npx playwright install chromium`
+ *   - Timeout errors: Increase timeout config or use --max-concurrency 1
+ *   - Empty responses: The workflow may not generate text for some inputs
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.OpenAiChatKitProvider = void 0;
+const playwright_1 = require("playwright");
+const http = __importStar(require("http"));
+const logger_1 = __importDefault(require("../../logger"));
+const providerRegistry_1 = require("../providerRegistry");
+const index_1 = require("./index");
+const chatkit_pool_1 = require("./chatkit-pool");
+// Configuration constants
+const DEFAULT_TIMEOUT_MS = 120000;
+const DEFAULT_MAX_APPROVALS = 5;
+const DEFAULT_POOL_SIZE = 4;
+const CHATKIT_READY_TIMEOUT_MS = 60000;
+const DOM_SETTLE_DELAY_MS = 2000;
+const APPROVAL_PROCESS_DELAY_MS = 500;
+const APPROVAL_CLICK_DELAY_MS = 1000;
+const RESPONSE_EXTRACT_RETRY_DELAY_MS = 500;
+// Note: MIN_RESPONSE_LENGTH (20), MIN_MESSAGE_LENGTH (30), MAX_INIT_ATTEMPTS (100),
+// and INIT_POLL_INTERVAL_MS (100) are hardcoded in the HTML template string
+// and in DOM evaluation functions where constants cannot be easily passed.
+/**
+ * Check if a URL is from OpenAI's CDN by parsing the hostname.
+ * This is more secure than substring matching which could be bypassed.
+ */
+function isOpenAICdnUrl(url) {
+    try {
+        const parsed = new URL(url);
+        return parsed.hostname === 'cdn.platform.openai.com';
+    }
+    catch {
+        return false;
+    }
+}
+/**
+ * Validate workflowId format to prevent script injection
+ */
+function validateWorkflowId(workflowId) {
+    if (!workflowId || !/^wf_[a-zA-Z0-9]+$/.test(workflowId)) {
+        throw new Error(`Invalid workflowId format: ${workflowId}. Expected format: wf_<alphanumeric>`);
+    }
+}
+/**
+ * Validate version format to prevent script injection
+ */
+function validateVersion(version) {
+    if (!/^[a-zA-Z0-9._-]+$/.test(version)) {
+        throw new Error(`Invalid version format: ${version}. Only alphanumeric, dot, dash, and underscore allowed.`);
+    }
+}
+/**
+ * Validate userId format to prevent script injection
+ */
+function validateUserId(userId) {
+    if (!/^[a-zA-Z0-9._@-]+$/.test(userId)) {
+        throw new Error(`Invalid userId format: ${userId}. Only alphanumeric, dot, dash, underscore, and @ allowed.`);
+    }
+}
+/**
+ * Generate the HTML page that hosts the ChatKit component
+ */
+function generateChatKitHTML(apiKey, workflowId, version, userId) {
+    // Validate inputs to prevent script injection
+    validateWorkflowId(workflowId);
+    if (version) {
+        validateVersion(version);
+    }
+    // userId is required - caller must provide it (constructor ensures this)
+    if (!userId) {
+        throw new Error('userId is required for ChatKit HTML generation');
+    }
+    validateUserId(userId);
+    const versionClause = version ? `, version: '${version}'` : '';
+    return `<!DOCTYPE html>
+<html>
+<head>
+  <meta charset="utf-8">
+  <title>ChatKit Eval</title>
+</head>
+<body>
+  <openai-chatkit id="chatkit"></openai-chatkit>
+  <script src="https://cdn.platform.openai.com/deployments/chatkit/chatkit.js"></script>
+  <script>
+    window.__state = { ready: false, responses: [], threadId: null, error: null };
+    async function init() {
+      const chatkit = document.getElementById('chatkit');
+      // Wait for element to be ready
+      let attempts = 0;
+      while (typeof chatkit.setOptions !== 'function' && attempts < 100) {
+        await new Promise(r => setTimeout(r, 100));
+        attempts++;
+      }
+      if (typeof chatkit.setOptions !== 'function') {
+        window.__state.error = 'ChatKit component failed to initialize';
+        return;
+      }
+      let cachedSecret = null;
+      chatkit.setOptions({
+        api: {
+          getClientSecret: async (existing) => {
+            if (existing) return existing;
+            if (cachedSecret) return cachedSecret;
+            const res = await fetch('https://api.openai.com/v1/chatkit/sessions', {
+              method: 'POST',
+              headers: {
+                'Authorization': 'Bearer ${apiKey}',
+                'Content-Type': 'application/json',
+                'OpenAI-Beta': 'chatkit_beta=v1'
+              },
+              body: JSON.stringify({
+                workflow: { id: '${workflowId}'${versionClause} },
+                user: '${userId}'
+              })
+            });
+            if (!res.ok) {
+              const text = await res.text();
+              throw new Error('Session failed: ' + res.status + ' ' + text);
+            }
+            const data = await res.json();
+            cachedSecret = data.client_secret;
+            return cachedSecret;
+          }
+        },
+        header: { enabled: false },
+        history: { enabled: false },
+      });
+      chatkit.addEventListener('chatkit.ready', () => {
+        window.__state.ready = true;
+      });
+      chatkit.addEventListener('chatkit.error', (e) => {
+        window.__state.error = e.detail.error?.message || 'Unknown error';
+      });
+      chatkit.addEventListener('chatkit.thread.change', (e) => {
+        window.__state.threadId = e.detail.threadId;
+      });
+      chatkit.addEventListener('chatkit.response.end', () => {
+        window.__state.responses.push({ timestamp: Date.now() });
+      });
+      window.__chatkit = chatkit;
+    }
+    init().catch(e => {
+      window.__state.error = e.message;
+    });
+  </script>
+</body>
+</html>`;
+}
+/**
+ * Extract assistant response text from the ChatKit iframe
+ * Uses retry logic since DOM may still be updating after response.end event
+ */
+async function extractResponseFromFrame(page, maxRetries = 3) {
+    for (let attempt = 0; attempt < maxRetries; attempt++) {
+        const frames = page.frames();
+        for (const frame of frames) {
+            const url = frame.url();
+            if (isOpenAICdnUrl(url)) {
+                try {
+                    const result = await frame.evaluate(() => {
+                        // Helper to check if element is likely a user message
+                        const isUserMessage = (el) => {
+                            const className = el.className?.toString().toLowerCase() || '';
+                            const role = el.getAttribute('data-role') || '';
+                            const testId = el.getAttribute('data-testid') || '';
+                            return className.includes('user') || role === 'user' || testId.includes('user');
+                        };
+                        // Helper to check if element is an assistant message
+                        const isAssistantMessage = (el) => {
+                            const className = el.className?.toString().toLowerCase() || '';
+                            const role = el.getAttribute('data-role') || '';
+                            const testId = el.getAttribute('data-testid') || '';
+                            return (className.includes('assistant') ||
+                                role === 'assistant' ||
+                                testId.includes('assistant'));
+                        };
+                        // Try assistant-specific selectors first - these are most reliable
+                        const assistantSelectors = [
+                            '[data-testid="assistant-message"]',
+                            '[data-role="assistant"]',
+                            '[class*="assistant"]:not([class*="user"])',
+                        ];
+                        for (const sel of assistantSelectors) {
+                            const els = document.querySelectorAll(sel);
+                            if (els.length > 0) {
+                                const lastEl = els[els.length - 1];
+                                const text = lastEl.textContent?.trim() || '';
+                                // Accept any non-empty assistant message (removed length requirement)
+                                if (text.length > 0) {
+                                    return { text, source: sel, isAssistant: true };
+                                }
+                            }
+                        }
+                        // Look for message containers and find messages
+                        // Collect both user and assistant messages to identify the last assistant one
+                        const allMessages = document.querySelectorAll('[class*="message"]');
+                        const messages = [];
+                        allMessages.forEach((msg) => {
+                            const text = msg.textContent?.trim() || '';
+                            if (text.length > 0) {
+                                messages.push({
+                                    text,
+                                    isUser: isUserMessage(msg),
+                                    isAssistant: isAssistantMessage(msg),
+                                });
+                            }
+                        });
+                        // Find the last non-user message (assistant messages)
+                        for (let i = messages.length - 1; i >= 0; i--) {
+                            if (!messages[i].isUser && messages[i].text.length > 0) {
+                                return { text: messages[i].text, source: 'last-non-user', isAssistant: true };
+                            }
+                        }
+                        // Try markdown content (often contains the formatted response)
+                        const markdown = document.querySelectorAll('.markdown, [class*="markdown"]');
+                        if (markdown.length > 0) {
+                            // Find markdown that's not inside a user message
+                            for (let i = markdown.length - 1; i >= 0; i--) {
+                                const el = markdown[i];
+                                let parent = el.parentElement;
+                                let inUserArea = false;
+                                while (parent && parent !== document.body) {
+                                    if (isUserMessage(parent)) {
+                                        inUserArea = true;
+                                        break;
+                                    }
+                                    parent = parent.parentElement;
+                                }
+                                if (!inUserArea) {
+                                    const text = el.textContent?.trim() || '';
+                                    if (text.length > 0) {
+                                        return { text, source: 'markdown', isAssistant: true };
+                                    }
+                                }
+                            }
+                        }
+                        // Try response-specific containers
+                        const responseContainers = document.querySelectorAll('[class*="response"], [class*="reply"], [class*="answer"]');
+                        for (let i = responseContainers.length - 1; i >= 0; i--) {
+                            const container = responseContainers[i];
+                            if (!isUserMessage(container)) {
+                                const text = container.textContent?.trim() || '';
+                                if (text.length > 0) {
+                                    return { text, source: 'response-container', isAssistant: true };
+                                }
+                            }
+                        }
+                        // Fallback: look for the last div that's not in a user message area
+                        // Prefer shorter texts to avoid grabbing the entire page
+                        const divs = Array.from(document.querySelectorAll('div'));
+                        const candidateDivs = [];
+                        for (const div of divs) {
+                            const text = div.textContent?.trim() || '';
+                            if (text.length > 0 && text.length < 5000 && !isUserMessage(div)) {
+                                // Check parent chain for user indicators
+                                let parent = div.parentElement;
+                                let inUserArea = false;
+                                while (parent && parent !== document.body) {
+                                    if (isUserMessage(parent)) {
+                                        inUserArea = true;
+                                        break;
+                                    }
+                                    parent = parent.parentElement;
+                                }
+                                if (!inUserArea) {
+                                    candidateDivs.push({ text, el: div });
+                                }
+                            }
+                        }
+                        // Sort by length and prefer medium-length texts (likely actual responses)
+                        // Avoid very short (labels) and very long (containers with multiple messages)
+                        if (candidateDivs.length > 0) {
+                            // Find divs that don't contain other message-like elements
+                            const leafDivs = candidateDivs.filter((d) => d.el.querySelectorAll('[class*="message"]').length === 0);
+                            if (leafDivs.length > 0) {
+                                // Return the last leaf div (most recent)
+                                return { text: leafDivs[leafDivs.length - 1].text, source: 'leaf-div' };
+                            }
+                            // Otherwise return the last candidate
+                            return { text: candidateDivs[candidateDivs.length - 1].text, source: 'fallback-div' };
+                        }
+                        // Last resort: full body text
+                        return { text: document.body?.textContent?.trim() || '', source: 'body' };
+                    });
+                    if (result.text && result.text.length > 0) {
+                        // Clean up the response - remove Cloudflare scripts and other noise
+                        let cleaned = result.text.replace(/\(function\(\)\{.*?\}\)\(\);?/gs, '').trim();
+                        // Remove "You said:" prefix and everything after it if it looks like user echo
+                        // This pattern matches "You said:" followed by any text
+                        const youSaidMatch = cleaned.match(/^You said:([\s\S]*)/i);
+                        if (youSaidMatch) {
+                            // The entire response is just echoing the user - this means we got the wrong element
+                            // Return empty to trigger retry or indicate no real response
+                            logger_1.default.debug('[ChatKitProvider] Detected user echo, discarding', {
+                                preview: cleaned.substring(0, 100),
+                            });
+                            // Don't return the echo - continue to retry or return empty
+                            cleaned = '';
+                        }
+                        // Also check for "You said:" appearing anywhere in the text and remove it
+                        cleaned = cleaned.replace(/You said:[\s\S]*/gi, '').trim();
+                        // Don't strip JSON if it's the only response - it might be intentional
+                        // Only strip if there's substantial text after the JSON
+                        const jsonMatch = cleaned.match(/^(\{[^}]+\})\s+(.+)/s);
+                        if (jsonMatch && jsonMatch[2].trim().length > 50) {
+                            cleaned = jsonMatch[2].trim();
+                        }
+                        if (cleaned.length > 0) {
+                            logger_1.default.debug('[ChatKitProvider] Extracted response', {
+                                source: result.source,
+                                length: cleaned.length,
+                                preview: cleaned.substring(0, 100),
+                            });
+                            return cleaned;
+                        }
+                        // If we got here with no cleaned text but had original text,
+                        // the extraction found only user content - return empty to retry
+                        logger_1.default.debug('[ChatKitProvider] No assistant content found after cleaning', {
+                            originalLength: result.text.length,
+                            source: result.source,
+                        });
+                    }
+                }
+                catch (e) {
+                    logger_1.default.debug('[ChatKitProvider] Could not access frame', { url, error: e, attempt });
+                }
+            }
+        }
+        // Wait before retry
+        if (attempt < maxRetries - 1) {
+            await page.waitForTimeout(RESPONSE_EXTRACT_RETRY_DELAY_MS);
+        }
+    }
+    return '';
+}
+/**
+ * Handle workflow approval steps by clicking approve/reject buttons.
+ * Returns true if an approval was handled, false if no approval found.
+ */
+async function handleApproval(page, action) {
+    const frames = page.frames();
+    for (const frame of frames) {
+        const url = frame.url();
+        if (isOpenAICdnUrl(url)) {
+            try {
+                // Look for approval buttons in the ChatKit iframe
+                const buttonText = action === 'auto-approve' ? 'Approve' : 'Reject';
+                const buttonSelectors = [
+                    `button:has-text("${buttonText}")`,
+                    `[role="button"]:has-text("${buttonText}")`,
+                    `[data-testid="${buttonText.toLowerCase()}-button"]`,
+                ];
+                for (const selector of buttonSelectors) {
+                    const button = await frame.$(selector);
+                    if (button) {
+                        const isVisible = await button.isVisible();
+                        if (isVisible) {
+                            logger_1.default.debug('[ChatKitProvider] Found approval button, clicking', {
+                                action,
+                                selector,
+                            });
+                            await button.click();
+                            // Wait for the approval to be processed
+                            await page.waitForTimeout(APPROVAL_CLICK_DELAY_MS);
+                            return true;
+                        }
+                    }
+                }
+                // Alternative: Look for approval UI patterns in the DOM
+                const hasApproval = await frame.evaluate((btnText) => {
+                    const buttons = Array.from(document.querySelectorAll('button, [role="button"]'));
+                    const approveBtn = buttons.find((b) => b.textContent?.toLowerCase().includes(btnText.toLowerCase()));
+                    if (approveBtn && approveBtn instanceof HTMLElement) {
+                        approveBtn.click();
+                        return true;
+                    }
+                    return false;
+                }, buttonText);
+                if (hasApproval) {
+                    logger_1.default.debug('[ChatKitProvider] Clicked approval button via evaluate', { action });
+                    await page.waitForTimeout(APPROVAL_CLICK_DELAY_MS);
+                    return true;
+                }
+            }
+            catch (e) {
+                logger_1.default.debug('[ChatKitProvider] Error checking for approval buttons', { error: e });
+            }
+        }
+    }
+    return false;
+}
+/**
+ * Process approvals until none remain or max reached.
+ * Returns the number of approvals processed.
+ */
+async function processApprovals(page, approvalHandling, maxApprovals, timeout) {
+    if (approvalHandling === 'skip') {
+        return 0;
+    }
+    let approvalCount = 0;
+    while (approvalCount < maxApprovals) {
+        // Small delay to let UI settle
+        await page.waitForTimeout(APPROVAL_PROCESS_DELAY_MS);
+        const handled = await handleApproval(page, approvalHandling);
+        if (!handled) {
+            break;
+        }
+        approvalCount++;
+        logger_1.default.debug('[ChatKitProvider] Processed approval', {
+            count: approvalCount,
+            max: maxApprovals,
+        });
+        // Wait for next response after approval
+        try {
+            await page.waitForFunction((prevCount) => window.__state?.responses?.length > prevCount, approvalCount, { timeout: timeout / 2 });
+            // Let DOM settle after new response
+            await page.waitForTimeout(DOM_SETTLE_DELAY_MS);
+        }
+        catch {
+            // Timeout waiting for response after approval - might be final response
+            break;
+        }
+    }
+    return approvalCount;
+}
+class OpenAiChatKitProvider extends index_1.OpenAiGenericProvider {
+    static getDefaultUserId() {
+        if (!OpenAiChatKitProvider.defaultUserId) {
+            // Generate once per process to ensure template consistency
+            OpenAiChatKitProvider.defaultUserId = `promptfoo-eval-${Date.now()}`;
+        }
+        return OpenAiChatKitProvider.defaultUserId;
+    }
+    constructor(workflowId, options = {}) {
+        super(workflowId, options);
+        this.browser = null;
+        this.context = null;
+        this.page = null;
+        this.server = null;
+        this.serverPort = 0;
+        this.initialized = false;
+        // Default poolSize to PROMPTFOO_MAX_CONCURRENCY env var if set, otherwise DEFAULT_POOL_SIZE
+        const envPoolSize = process.env.PROMPTFOO_MAX_CONCURRENCY
+            ? parseInt(process.env.PROMPTFOO_MAX_CONCURRENCY, 10)
+            : NaN;
+        const defaultPoolSize = Number.isNaN(envPoolSize) ? DEFAULT_POOL_SIZE : envPoolSize;
+        this.chatKitConfig = {
+            workflowId: options.config?.workflowId || workflowId,
+            version: options.config?.version,
+            // Use consistent default userId to ensure template stability during concurrent execution
+            userId: options.config?.userId || OpenAiChatKitProvider.getDefaultUserId(),
+            timeout: options.config?.timeout || DEFAULT_TIMEOUT_MS,
+            headless: options.config?.headless ?? true,
+            serverPort: options.config?.serverPort || 0,
+            usePool: options.config?.usePool ?? true, // Pool mode by default for better performance
+            poolSize: options.config?.poolSize ?? defaultPoolSize,
+            approvalHandling: options.config?.approvalHandling ?? 'auto-approve',
+            maxApprovals: options.config?.maxApprovals ?? DEFAULT_MAX_APPROVALS,
+            stateful: options.config?.stateful ?? false,
+        };
+    }
+    id() {
+        const version = this.chatKitConfig.version ? `:${this.chatKitConfig.version}` : '';
+        return `openai:chatkit:${this.chatKitConfig.workflowId}${version}`;
+    }
+    toString() {
+        return `[OpenAI ChatKit Provider ${this.chatKitConfig.workflowId}]`;
+    }
+    /**
+     * Initialize the browser and ChatKit page
+     */
+    async initialize() {
+        if (this.initialized) {
+            return;
+        }
+        const apiKey = this.getApiKey();
+        if (!apiKey) {
+            throw new Error('OpenAI API key is required for ChatKit provider');
+        }
+        const workflowId = this.chatKitConfig.workflowId;
+        if (!workflowId) {
+            throw new Error('ChatKit workflowId is required');
+        }
+        logger_1.default.debug('[ChatKitProvider] Initializing', {
+            workflowId,
+            version: this.chatKitConfig.version,
+        });
+        // Create HTTP server to serve the ChatKit HTML
+        const html = generateChatKitHTML(apiKey, workflowId, this.chatKitConfig.version, this.chatKitConfig.userId);
+        this.server = http.createServer((_req, res) => {
+            res.writeHead(200, { 'Content-Type': 'text/html' });
+            res.end(html);
+        });
+        await new Promise((resolve, reject) => {
+            this.server.once('error', (err) => {
+                reject(new Error(`Failed to start ChatKit server: ${err.message}`));
+            });
+            this.server.listen(this.chatKitConfig.serverPort, () => {
+                const address = this.server.address();
+                this.serverPort = typeof address === 'object' ? address?.port || 0 : 0;
+                logger_1.default.debug('[ChatKitProvider] Server started', { port: this.serverPort });
+                resolve();
+            });
+        });
+        // Launch browser with helpful error for missing Playwright
+        try {
+            this.browser = await playwright_1.chromium.launch({
+                headless: this.chatKitConfig.headless,
+            });
+        }
+        catch (launchError) {
+            const errorMessage = launchError instanceof Error ? launchError.message : String(launchError);
+            if (errorMessage.includes("Executable doesn't exist") ||
+                errorMessage.includes('browserType.launch')) {
+                throw new Error('Playwright browser not installed. Run: npx playwright install chromium\n' +
+                    `Original error: ${errorMessage}`);
+            }
+            throw launchError;
+        }
+        this.context = await this.browser.newContext({
+            viewport: { width: 800, height: 600 },
+        });
+        this.page = await this.context.newPage();
+        // Navigate to our HTML page
+        await this.page.goto(`http://localhost:${this.serverPort}`, {
+            waitUntil: 'domcontentloaded',
+        });
+        // Wait for ChatKit to be ready
+        logger_1.default.debug('[ChatKitProvider] Waiting for ChatKit ready');
+        await this.page.waitForFunction(() => window.__state?.ready === true, {
+            timeout: CHATKIT_READY_TIMEOUT_MS,
+        });
+        this.initialized = true;
+        // Register for cleanup on process exit (non-pool mode only)
+        // Pool mode has its own cleanup mechanism
+        if (!this.chatKitConfig.usePool) {
+            providerRegistry_1.providerRegistry.register(this);
+        }
+        logger_1.default.debug('[ChatKitProvider] Initialized successfully');
+    }
+    /**
+     * Shutdown method for providerRegistry cleanup
+     */
+    async shutdown() {
+        await this.cleanup();
+    }
+    /**
+     * Clean up browser resources
+     */
+    async cleanup() {
+        if (this.context) {
+            await this.context.close();
+            this.context = null;
+            this.page = null;
+        }
+        if (this.browser) {
+            await this.browser.close();
+            this.browser = null;
+        }
+        if (this.server) {
+            this.server.close();
+            this.server = null;
+        }
+        this.initialized = false;
+    }
+    /**
+     * Call the ChatKit workflow with the given prompt
+     */
+    async callApi(prompt, _context, _callApiOptions) {
+        // Stateful mode requires sequential processing, so disable pool mode
+        const usePool = this.chatKitConfig.usePool && !this.chatKitConfig.stateful;
+        logger_1.default.debug('[ChatKitProvider] Starting call', {
+            prompt: prompt.substring(0, 100),
+            workflowId: this.chatKitConfig.workflowId,
+            usePool,
+            stateful: this.chatKitConfig.stateful,
+        });
+        // Use pool-based execution for better concurrency (not available in stateful mode)
+        if (usePool) {
+            return this.callApiWithPool(prompt);
+        }
+        const startTime = Date.now();
+        try {
+            await this.initialize();
+            if (!this.page) {
+                throw new Error('Browser page not initialized');
+            }
+            // For stateful mode, don't reload the page to maintain conversation state
+            // For non-stateful mode, refresh to get clean state for each evaluation
+            if (!this.chatKitConfig.stateful) {
+                await this.page.reload({ waitUntil: 'domcontentloaded' });
+                // Wait for ChatKit to be ready again after reload
+                await this.page.waitForFunction(() => window.__state?.ready === true, {
+                    timeout: CHATKIT_READY_TIMEOUT_MS,
+                });
+            }
+            // For stateful mode, check if this is a follow-up message (responses already exist)
+            // Use newThread: false for follow-ups to continue the conversation
+            const responseCount = await this.page.evaluate(() => window.__state?.responses?.length || 0);
+            const isFollowUp = this.chatKitConfig.stateful && responseCount > 0;
+            logger_1.default.debug('[ChatKitProvider] Sending message', {
+                stateful: this.chatKitConfig.stateful,
+                isFollowUp,
+                responseCount,
+            });
+            // Send the message
+            await this.page.evaluate(({ text, newThread }) => {
+                return window.__chatkit.sendUserMessage({
+                    text,
+                    newThread,
+                });
+            }, { text: prompt, newThread: !isFollowUp });
+            // Wait for response - in stateful mode, wait for a NEW response
+            logger_1.default.debug('[ChatKitProvider] Waiting for response');
+            const expectedResponseCount = responseCount + 1;
+            await this.page.waitForFunction((expected) => window.__state?.responses?.length >= expected, expectedResponseCount, { timeout: this.chatKitConfig.timeout });
+            // Allow DOM to settle - ChatKit iframe needs time to render the response
+            await this.page.waitForTimeout(DOM_SETTLE_DELAY_MS);
+            // Handle any approval steps in the workflow
+            const approvalsHandled = await processApprovals(this.page, this.chatKitConfig.approvalHandling ?? 'auto-approve', this.chatKitConfig.maxApprovals ?? DEFAULT_MAX_APPROVALS, this.chatKitConfig.timeout ?? DEFAULT_TIMEOUT_MS);
+            if (approvalsHandled > 0) {
+                logger_1.default.debug('[ChatKitProvider] Processed approvals', { count: approvalsHandled });
+            }
+            // Extract response from iframe
+            const responseText = await extractResponseFromFrame(this.page);
+            // Get thread ID
+            const threadId = await this.page.evaluate(() => window.__state.threadId);
+            // Get final response count for turn tracking
+            const finalResponseCount = await this.page.evaluate(() => window.__state?.responses?.length || 0);
+            const latencyMs = Date.now() - startTime;
+            logger_1.default.debug('[ChatKitProvider] Response received', {
+                threadId,
+                textLength: responseText.length,
+                turnNumber: finalResponseCount,
+                latencyMs,
+            });
+            return {
+                output: responseText,
+                cached: false, // ChatKit responses are never cached (browser-based)
+                latencyMs,
+                // Use sessionId for consistency with HTTP provider's stateful handling
+                sessionId: threadId,
+                // Token usage not available from ChatKit, but track request count
+                tokenUsage: { numRequests: 1 },
+                metadata: {
+                    workflowId: this.chatKitConfig.workflowId,
+                    version: this.chatKitConfig.version,
+                    stateful: this.chatKitConfig.stateful,
+                    turnNumber: finalResponseCount,
+                },
+            };
+        }
+        catch (error) {
+            const errorMessage = error instanceof Error ? error.message : String(error);
+            logger_1.default.error('[ChatKitProvider] Call failed', { error: errorMessage });
+            // Check for ChatKit-specific errors in page state
+            if (this.page) {
+                try {
+                    const stateError = await this.page.evaluate(() => window.__state?.error);
+                    if (stateError) {
+                        return {
+                            error: `ChatKit workflow error: ${stateError}`,
+                        };
+                    }
+                }
+                catch {
+                    // Page may be in bad state, continue with general error
+                }
+            }
+            // Provide helpful error messages for common issues
+            if (errorMessage.includes('Timeout') || errorMessage.includes('timeout')) {
+                return {
+                    error: `ChatKit response timeout after ${this.chatKitConfig.timeout}ms. ` +
+                        'Try increasing timeout in config or use --max-concurrency 1 for more reliable results.',
+                };
+            }
+            if (errorMessage.includes('API key')) {
+                return {
+                    error: 'OpenAI API key is required. Set OPENAI_API_KEY environment variable.',
+                };
+            }
+            if (errorMessage.includes('Playwright') || errorMessage.includes('browser')) {
+                return {
+                    error: `Browser error: ${errorMessage}. Ensure Playwright is installed: npx playwright install chromium`,
+                };
+            }
+            return {
+                error: `ChatKit provider error: ${errorMessage}`,
+            };
+        }
+    }
+    /**
+     * Pool-based callApi for better concurrency support.
+     * Uses a shared browser with multiple contexts instead of separate browsers.
+     */
+    async callApiWithPool(prompt) {
+        const apiKey = this.getApiKey();
+        if (!apiKey) {
+            return {
+                error: 'OpenAI API key is required. Set OPENAI_API_KEY environment variable.',
+            };
+        }
+        const workflowId = this.chatKitConfig.workflowId;
+        if (!workflowId) {
+            return {
+                error: 'ChatKit workflowId is required',
+            };
+        }
+        // Get or create the pool
+        const pool = chatkit_pool_1.ChatKitBrowserPool.getInstance({
+            maxConcurrency: this.chatKitConfig.poolSize,
+            headless: this.chatKitConfig.headless,
+        });
+        // Generate a unique template key for this workflow configuration
+        // This ensures different workflows get isolated pages in the pool
+        const templateKey = chatkit_pool_1.ChatKitBrowserPool.generateTemplateKey(workflowId, this.chatKitConfig.version, this.chatKitConfig.userId);
+        // Register the HTML template for this workflow
+        const html = generateChatKitHTML(apiKey, workflowId, this.chatKitConfig.version, this.chatKitConfig.userId);
+        pool.setTemplate(templateKey, html);
+        let pooledPage = null;
+        const startTime = Date.now();
+        try {
+            // Acquire a page from the pool for this specific template
+            pooledPage = await pool.acquirePage(templateKey);
+            const page = pooledPage.page;
+            logger_1.default.debug('[ChatKitProvider] Acquired page from pool', {
+                stats: pool.getStats(),
+            });
+            // Send the message
+            await page.evaluate((text) => {
+                return window.__chatkit.sendUserMessage({
+                    text,
+                    newThread: true,
+                });
+            }, prompt);
+            // Wait for response
+            await page.waitForFunction(() => window.__state?.responses?.length > 0, {
+                timeout: this.chatKitConfig.timeout,
+            });
+            // Allow DOM to settle
+            await page.waitForTimeout(DOM_SETTLE_DELAY_MS);
+            // Handle any approval steps in the workflow
+            const approvalsHandled = await processApprovals(page, this.chatKitConfig.approvalHandling ?? 'auto-approve', this.chatKitConfig.maxApprovals ?? DEFAULT_MAX_APPROVALS, this.chatKitConfig.timeout ?? DEFAULT_TIMEOUT_MS);
+            if (approvalsHandled > 0) {
+                logger_1.default.debug('[ChatKitProvider] Pool processed approvals', { count: approvalsHandled });
+            }
+            // Extract response from iframe
+            const responseText = await extractResponseFromFrame(page);
+            // Get thread ID
+            const threadId = await page.evaluate(() => window.__state.threadId);
+            const latencyMs = Date.now() - startTime;
+            logger_1.default.debug('[ChatKitProvider] Pool response received', {
+                threadId,
+                textLength: responseText.length,
+                latencyMs,
+            });
+            return {
+                output: responseText,
+                cached: false, // ChatKit responses are never cached (browser-based)
+                latencyMs,
+                // Use sessionId for consistency with HTTP provider's stateful handling
+                sessionId: threadId,
+                // Token usage not available from ChatKit, but track request count
+                tokenUsage: { numRequests: 1 },
+                metadata: {
+                    workflowId: this.chatKitConfig.workflowId,
+                    version: this.chatKitConfig.version,
+                    poolMode: true,
+                },
+            };
+        }
+        catch (error) {
+            const errorMessage = error instanceof Error ? error.message : String(error);
+            logger_1.default.error('[ChatKitProvider] Pool call failed', { error: errorMessage });
+            if (errorMessage.includes('Timeout') || errorMessage.includes('timeout')) {
+                return {
+                    error: `ChatKit response timeout after ${this.chatKitConfig.timeout}ms. ` +
+                        'Try increasing timeout or reducing concurrency.',
+                };
+            }
+            return {
+                error: `ChatKit provider error: ${errorMessage}`,
+            };
+        }
+        finally {
+            // Release the page back to the pool
+            if (pooledPage) {
+                await pool.releasePage(pooledPage);
+            }
+        }
+    }
+}
+exports.OpenAiChatKitProvider = OpenAiChatKitProvider;
+// Static userId for consistent template keys across concurrent evaluations
+OpenAiChatKitProvider.defaultUserId = null;
+//# sourceMappingURL=chatkit.js.map