sandbox 3.2.0 → 3.2.2

package/dist/{app-Cil_fM4x.mjs → app-COo3Oifc.mjs}

@@ -8,7 +8,7 @@ import tty, { isatty } from "node:tty";
 import createDebugger from "debug";
 import { promisify, stripVTControlCharacters } from "node:util";
 import { Buffer as Buffer$1 } from "node:buffer";
-import path from "node:path";
+import Path from "node:path";
 import { fileURLToPath } from "node:url";
 import childProcess, { execFile } from "node:child_process";
 import fs, { constants, writeFile } from "node:fs/promises";
@@ -19,7 +19,7 @@ import { EOL } from "os";
 import { z } from "zod/v4";
 import { z as z$1 } from "zod";
 import retry from "async-retry";
-import { APIError, Sandbox, Snapshot } from "@vercel/sandbox";
+import { APIError, Sandbox, Snapshot, StreamError } from "@vercel/sandbox";
 import { WebSocket } from "ws";
 import { setTimeout as setTimeout$1 } from "node:timers/promises";
 import * as tty$1 from "tty";
@@ -1994,7 +1994,7 @@ var require_parser = /* @__PURE__ */ __commonJS({ "../../node_modules/.pnpm/cmd-
 	};
 	Object.defineProperty(exports, "__esModule", { value: true });
 	exports.parse = parse$2;
-	const debug$7 = (0, __importDefault$1(__require("debug")).default)("cmd-ts:parser");
+	const debug$9 = (0, __importDefault$1(__require("debug")).default)("cmd-ts:parser");
 	/**
 	* Create an AST from a token list
 	*
@@ -2002,14 +2002,14 @@ var require_parser = /* @__PURE__ */ __commonJS({ "../../node_modules/.pnpm/cmd-
 	* @param forceFlag Keys to force as flag. {@see ForceFlag} to read more about it.
 	*/
 	function parse$2(tokens, forceFlag) {
-		if (debug$7.enabled) {
+		if (debug$9.enabled) {
 			const registered = {
 				shortFlags: [...forceFlag.forceFlagShortNames],
 				longFlags: [...forceFlag.forceFlagLongNames],
 				shortOptions: [...forceFlag.forceOptionShortNames],
 				longOptions: [...forceFlag.forceOptionLongNames]
 			};
-			debug$7("Registered:", JSON.stringify(registered));
+			debug$9("Registered:", JSON.stringify(registered));
 		}
 		const nodes = [];
 		let index = 0;
@@ -2140,9 +2140,9 @@ var require_parser = /* @__PURE__ */ __commonJS({ "../../node_modules/.pnpm/cmd-
 			}
 			index++;
 		}
-		if (debug$7.enabled) {
+		if (debug$9.enabled) {
 			const objectNodes = nodes.map((node) => ({ [node.type]: node.raw }));
-			debug$7("Parsed items:", JSON.stringify(objectNodes));
+			debug$9("Parsed items:", JSON.stringify(objectNodes));
 		}
 		return nodes;
 	}
@@ -4477,8 +4477,8 @@ async function defaultBrowser() {
 //#endregion
 //#region ../../node_modules/.pnpm/open@10.2.0/node_modules/open/index.js
 const execFile$1 = promisify(childProcess.execFile);
-const __dirname = path.dirname(fileURLToPath(import.meta.url));
-const localXdgOpenPath = path.join(__dirname, "xdg-open");
+const __dirname = Path.dirname(fileURLToPath(import.meta.url));
+const localXdgOpenPath = Path.join(__dirname, "xdg-open");
 const { platform: platform$1, arch } = process$1;
 /**
 Get the default browser name in Windows from WSL.
@@ -6752,7 +6752,7 @@ function _usingCtx() {
 //#region src/commands/login.ts
 var import_cjs$26 = /* @__PURE__ */ __toESM(require_cjs());
 init_source();
-const debug$6 = createDebugger("sandbox:login");
+const debug$8 = createDebugger("sandbox:login");
 const login = import_cjs$26.command({
 	name: "login",
 	description: "Log in to the Sandbox CLI",
@@ -6794,13 +6794,13 @@ const login = import_cjs$26.command({
 				oauth
 			})) switch (event._tag) {
 				case "Timeout":
-					debug$6(`Connection timeout. Slowing down, polling every ${event.newInterval / 1e3}s...`);
+					debug$8(`Connection timeout. Slowing down, polling every ${event.newInterval / 1e3}s...`);
 					break;
 				case "SlowDown":
-					debug$6(`Authorization server requests to slow down. Polling every ${event.newInterval / 1e3}s...`);
+					debug$8(`Authorization server requests to slow down. Polling every ${event.newInterval / 1e3}s...`);
 					break;
 				case "Response":
-					debug$6("Device Access Token response:", await event.response.text());
+					debug$8("Device Access Token response:", await event.response.text());
 					break;
 				case "Error":
 					error = event.error;
@@ -6974,7 +6974,7 @@ var require_dist = /* @__PURE__ */ __commonJS({ "../../node_modules/.pnpm/@verce
 var import_cjs$25 = /* @__PURE__ */ __toESM(require_cjs());
 init_source();
 var import_dist = require_dist();
-const debug$5 = createDebugger("sandbox:args:auth");
+const debug$7 = createDebugger("sandbox:args:auth");
 /**
 * Timestamp (ms epoch) of the most recent auto-login. Used to identify
 * tokens so that the first 401/403 against a freshly-issued token can be
@@ -7000,14 +7000,14 @@ const token = import_cjs$25.option({
 			if (process.env.VERCEL_OIDC_TOKEN) try {
 				return await (0, import_dist.getVercelOidcToken)();
 			} catch (cause) {
-				debug$5(`Failed to get or refresh OIDC token: ${getMessage(cause)}`);
+				debug$7(`Failed to get or refresh OIDC token: ${getMessage(cause)}`);
 				console.warn(source_default.yellow(`${source_default.bold("warn:")} failed to get or refresh OIDC token, using personal token authentication.`));
 			}
 			try {
 				return await (0, import_dist.getVercelToken)();
 			} catch (error) {
 				if (error instanceof import_dist.AccessTokenMissingError || error instanceof import_dist.RefreshAccessTokenFailedError) {
-					debug$5(`CLI token unavailable (${error.name}), prompting for login...`);
+					debug$7(`CLI token unavailable (${error.name}), prompting for login...`);
 					console.warn(source_default.yellow(`${source_default.bold("notice:")} Your session has expired. Please log in again.`));
 					await login.handler({});
 					try {
@@ -7064,7 +7064,7 @@ const ProjectConfiguration = jsonCodec(z.object({
 }));
 function readProjectConfiguration(cwd) {
 	try {
-		const pathname = path.join(cwd, ".vercel", "project.json");
+		const pathname = Path.join(cwd, ".vercel", "project.json");
 		const string$2 = fs$1.readFileSync(pathname, "utf8");
 		return ProjectConfiguration.decode(string$2);
 	} catch {
@@ -7074,18 +7074,18 @@ function readProjectConfiguration(cwd) {
 
 //#endregion
 //#region src/util/infer-scope.ts
-const debug$4 = createDebugger("sandbox:scope");
+const debug$6 = createDebugger("sandbox:scope");
 async function inferScope$1({ token: token$1, team: team$1 }) {
 	const jwt = z.jwt().safeParse(token$1);
 	if (jwt.success) {
-		debug$4("trying to infer scope from OIDC JWT");
+		debug$6("trying to infer scope from OIDC JWT");
 		const data = await inferFromJwt(jwt.data);
-		debug$4("Using scope from OIDC JWT", data);
+		debug$6("Using scope from OIDC JWT", data);
 		return data;
 	}
 	const projectJson = readProjectConfiguration(process.cwd());
 	if (projectJson) {
-		debug$4("Using scope from project configuration", {
+		debug$6("Using scope from project configuration", {
 			owner: projectJson.orgId,
 			project: projectJson.projectId
 		});
@@ -7094,12 +7094,12 @@ async function inferScope$1({ token: token$1, team: team$1 }) {
 			project: projectJson.projectId
 		};
 	}
-	debug$4("trying to infer scope from API token", {
+	debug$6("trying to infer scope from API token", {
 		token: token$1,
 		team: team$1
 	});
 	const fromToken = await inferFromToken(token$1, team$1);
-	debug$4("Using scope from API token", fromToken);
+	debug$6("Using scope from API token", fromToken);
 	return fromToken;
 }
 const JwtSchema = z.object({
@@ -7137,7 +7137,7 @@ async function inferFromToken(token$1, requestedTeam) {
 
 //#endregion
 //#region src/util/fresh-auth-retry.ts
-const debug$3 = createDebugger("sandbox:fresh-auth-retry");
+const debug$5 = createDebugger("sandbox:fresh-auth-retry");
 /**
 * Run an async operation, transparently retrying on 401/403 when the auth
 * token was just acquired via auto-login.
@@ -7149,7 +7149,7 @@ async function withFreshAuthRetry(factory) {
 		} catch (error) {
 			const status = getAuthFailureStatus(error);
 			if (status !== void 0 && isTokenFresh()) {
-				debug$3(`fresh-auth retry attempt ${attempt} (status ${status})`);
+				debug$5(`fresh-auth retry attempt ${attempt} (status ${status})`);
 				throw error;
 			}
 			bail(error);
@@ -7177,6 +7177,7 @@ function getAuthFailureStatus(error) {
 //#region src/args/scope.ts
 var import_cjs$24 = /* @__PURE__ */ __toESM(require_cjs());
 init_source();
+const debug$4 = createDebugger("sandbox:scope");
 const project = import_cjs$24.option({
 	long: "project",
 	type: {
@@ -7249,12 +7250,13 @@ const scope = {
 			projectSlug = scope$1.projectSlug;
 			teamSlug = scope$1.ownerSlug;
 		} catch (err$1) {
+			debug$4("scope inference failed: %O", err$1);
 			return {
 				_tag: "error",
 				error: { errors: [{
 					nodes,
 					message: [
-						`Could not determine team/project scope: ${err$1.message}.`,
+						`Could not determine team/project scope.${err$1 instanceof NotOk ? ` ${err$1.response.responseText}` : ""}`,
 						`${source_default.bold("hint:")} Specify explicitly with --scope TEAM_SLUG --project PROJECT_NAME, or set VERCEL_OIDC_TOKEN.`,
 						"╰▶ Docs: https://vercel.com/docs/sandbox"
 					].join("\n")
@@ -7286,7 +7288,7 @@ const scope = {
 
 //#endregion
 //#region package.json
-var version = "3.2.0";
+var version = "3.2.2";
 
 //#endregion
 //#region src/error.ts
@@ -7299,8 +7301,90 @@ var StyledError = class extends Error {
 };
 
 //#endregion
-//#region src/client.ts
+//#region src/util/format-error.ts
 init_source();
+const debug$3 = createDebugger("sandbox:errors");
+const ApiErrorResponse = z$1.object({ error: z$1.object({ message: z$1.string() }) });
+/**
+* Formats an {@link APIError} into a {@link StyledError} with the pretty
+* multi-line layout used across the CLI.
+*/
+async function formatApiError(error) {
+	const tmpPath = await writeResponseToTemp(error);
+	const status = error.response.status;
+	return new StyledError([
+		ApiErrorResponse.safeParse(error.json).data?.error.message ?? getErrorMessage(status),
+		`├▶ requested url: ${error.response.url}`,
+		`├▶ status code: ${status} ${error.response.statusText}`,
+		`╰▶ ${source_default.bold("hint:")} the full response buffer is stored in ${source_default.italic(tmpPath)}`
+	].join("\n"), error);
+}
+function getErrorMessage(status) {
+	if (status === 400) return "Sandbox API request failed: the request was invalid (400). Check the command arguments and try again.";
+	if (status === 401 || status === 403) return "Sandbox API request failed due to authentication. Check your token or run `sandbox login`.";
+	if (status === 404) return "Sandbox API request failed: resource not found.";
+	if (status === 429) return "Sandbox API rate limit exceeded (429). Please wait and try again.";
+	if (status >= 500) return "Sandbox API responded with a server error. Please try again.";
+	return "Sandbox API request failed.";
+}
+async function writeResponseToTemp({ response, text }) {
+	const unique = [process.pid, process.hrtime.bigint()].map((x) => x.toString(36)).join("");
+	const tmpPath = Path.join(tmpdir(), `sandbox-cli-response-${unique}.http`);
+	const buffers = [];
+	buffers.push(Buffer.from(`${response.url}\r\n`));
+	buffers.push(Buffer.from(`${response.status} ${response.statusText}\r\n`));
+	for (const [key, value] of response.headers) buffers.push(Buffer.from(`${key}: ${value}\r\n`));
+	buffers.push(Buffer.from(`\r\n`));
+	if (text) buffers.push(Buffer.from(text));
+	await writeFile(tmpPath, Buffer.concat(buffers));
+	return tmpPath;
+}
+/**
+* Detects network-level timeouts when talking to the Sandbox API.
+*/
+function isApiTimeoutError(error) {
+	if (!error || typeof error !== "object") return false;
+	const e = error;
+	if (e.name === "TimeoutError" || e.name === "AbortError") return true;
+	if (e.code === "ETIMEDOUT") return true;
+	const causeCode = e.cause?.code;
+	if (causeCode === "UND_ERR_CONNECT_TIMEOUT" || causeCode === "UND_ERR_HEADERS_TIMEOUT") return true;
+	if (e.name === "TypeError" && e.message === "fetch failed") return isApiTimeoutError(e.cause);
+	return false;
+}
+function formatApiTimeoutError(error) {
+	return new StyledError(["The request to the Sandbox API timed out.", `╰▶ ${source_default.bold("hint:")} check your network connection and try again.`].join("\n"), error);
+}
+function formatStreamError(error) {
+	return new StyledError([
+		"The sandbox stream was interrupted.",
+		`├▶ code: ${error.code}`,
+		`├▶ session: ${error.sessionId}`,
+		`╰▶ ${source_default.bold("hint:")} the sandbox may have stopped. Resume or recreate it and try again.`
+	].join("\n"), error);
+}
+/**
+* Single funnel for every error that reaches the CLI's top-level catch.
+*/
+async function printTopLevelError(e) {
+	const styled = await toStyledError(e);
+	console.error();
+	if (styled) console.error(styled.message);
+	else {
+		console.error(source_default.red(e instanceof Error ? e.message : String(e)));
+		if (debug$3.enabled) console.error(e);
+	}
+}
+async function toStyledError(e) {
+	if (e instanceof StyledError) return e;
+	if (e instanceof APIError) return formatApiError(e);
+	if (e instanceof StreamError) return formatStreamError(e);
+	if (isApiTimeoutError(e)) return formatApiTimeoutError(e);
+	return null;
+}
+
+//#endregion
+//#region src/client.ts
 /**
 * A {@link Sandbox} wrapper that adds user-agent headers and error handling.
 */
@@ -7349,39 +7433,10 @@ async function withErrorHandling(factory) {
 	try {
 		return await withFreshAuthRetry(factory);
 	} catch (error) {
-		if (error instanceof APIError) return await handleApiError(error);
+		if (error instanceof APIError) throw await formatApiError(error);
 		throw error;
 	}
 }
-async function handleApiError(error) {
-	const tmpPath = await writeResponseToTemp(error);
-	const status = error.response.status;
-	throw new StyledError([
-		ApiErrorResponse.safeParse(error.json).data?.error.message ?? getErrorMessage(status),
-		`├▶ requested url: ${error.response.url}`,
-		`├▶ status code: ${status} ${error.response.statusText}`,
-		`╰▶ ${source_default.bold("hint:")} the full response buffer is stored in ${source_default.italic(tmpPath)}`
-	].join("\n"), error);
-}
-const ApiErrorResponse = z$1.object({ error: z$1.object({ message: z$1.string() }) });
-function getErrorMessage(status) {
-	if (status === 401 || status === 403) return "Sandbox API request failed due to authentication. Check your token or run `sandbox login`.";
-	if (status === 404) return "Sandbox API request failed: resource not found.";
-	if (status >= 500) return "Sandbox API responded with a server error. Please try again.";
-	return "Sandbox API request failed.";
-}
-async function writeResponseToTemp({ response, text }) {
-	const unique = [process.pid, process.hrtime.bigint()].map((x) => x.toString(36)).join("");
-	const tmpPath = path.join(tmpdir(), `sandbox-cli-response-${unique}.http`);
-	const buffers = [];
-	buffers.push(Buffer.from(`${response.url}\r\n`));
-	buffers.push(Buffer.from(`${response.status} ${response.statusText}\r\n`));
-	for (const [key, value] of response.headers) buffers.push(Buffer.from(`${key}: ${value}\r\n`));
-	buffers.push(Buffer.from(`\r\n`));
-	if (text) buffers.push(Buffer.from(text));
-	await writeFile(tmpPath, Buffer.concat(buffers));
-	return tmpPath;
-}
 
 //#endregion
 //#region src/args/snapshot-id.ts
@@ -10781,8 +10836,8 @@ init_source();
 const parseLocalOrRemotePath = async (input) => {
 	const parts = input.split(":");
 	if (parts.length === 2) {
-		const [id, path$1] = parts;
-		if (!id || !path$1) throw new Error([
+		const [id, path] = parts;
+		if (!id || !path) throw new Error([
 			`Invalid copy path format: "${input}".`,
 			`${source_default.bold("hint:")} Expected format: SANDBOX_NAME:PATH (e.g., my-sandbox:/home/user/file.txt).`,
 			"╰▶ Local paths should not contain colons."
@@ -10790,7 +10845,7 @@ const parseLocalOrRemotePath = async (input) => {
 		return {
 			type: "remote",
 			sandboxName: await sandboxName.from(id),
-			path: path$1
+			path
 		};
 	}
 	return {
@@ -10834,7 +10889,7 @@ const cp = import_cjs$8.command({
 		}
 		if (!sourceFile) {
 			if (source.type === "remote") {
-				const dir = path.dirname(source.path);
+				const dir = Path.dirname(source.path);
 				spinner.fail([`File not found: ${source.path} in sandbox ${source.sandboxName}.`, `${source_default.bold("hint:")} Verify the file path exists using \`sandbox exec ${source.sandboxName} ls ${dir}\`.`].join("\n"));
 			} else spinner.fail(`Source file (${source.path}) not found.`);
 			return;
@@ -11996,5 +12051,5 @@ const app = (opts) => (0, import_cjs.subcommands)({
 });
 
 //#endregion
-export { source_exports as a, init_source as i, StyledError as n, require_cjs as r, app as t };
-//# sourceMappingURL=app-Cil_fM4x.mjs.map
+export { source_exports as a, init_source as i, printTopLevelError as n, require_cjs as r, app as t };
+//# sourceMappingURL=app-COo3Oifc.mjs.map