siluzan-tso-cli 1.1.8-beta.5 → 1.1.8-beta.6

package/README.md

@@ -20,7 +20,7 @@ siluzan-tso init -d /path/to/skills  # 写入自定义目录
 siluzan-tso init --force             # 强制覆盖已存在文件
 ```
 
-> **注意**：当前为测试版（1.1.8-beta.5），供内部测试使用。正式发布后安装命令将改为 `npm install -g siluzan-tso-cli`。
+> **注意**：当前为测试版（1.1.8-beta.6），供内部测试使用。正式发布后安装命令将改为 `npm install -g siluzan-tso-cli`。
 
 | 助手 | 建议 `--ai` |
 |------|-------------|

package/dist/index.js

@@ -1970,11 +1970,11 @@ import * as path from "path";
 import * as os from "os";
 import * as https from "https";
 import * as http from "http";
-import * as os2 from "os";
 var import_semver = __toESM(require_semver2(), 1);
 import * as fs2 from "fs";
 import * as path2 from "path";
 import { fileURLToPath } from "url";
+import * as os2 from "os";
 var SILUZAN_DIR = path.join(os.homedir(), ".siluzan");
 var CONFIG_FILE = path.join(SILUZAN_DIR, "config.json");
 function readStr(raw, key) {
@@ -2087,6 +2087,110 @@ function rawRequest(url, options) {
     req.end();
   });
 }
+function redactSensitive(input) {
+  let output = input;
+  output = output.replace(/(Bearer\s+)[^\s",]+/gi, "$1***");
+  output = output.replace(
+    /("?(?:apiKey|authToken|accessToken|refreshToken|token|authorization)"?\s*[:=]\s*"?)([^"\s,}]+)/gi,
+    "$1***"
+  );
+  return output;
+}
+async function apiFetch(url, config, options = {}, verbose = false) {
+  const method = options.method ?? "GET";
+  const authHeaders = config.apiKey ? { "x-api-key": config.apiKey } : { Authorization: `Bearer ${config.authToken}` };
+  const reqHeaders = {
+    "Content-Type": "application/json",
+    "Accept-Language": "zh-CN",
+    ...authHeaders,
+    // dataPermission 仅 TSO 使用；CSO 未设置时为空字符串，服务端忽略该头
+    Datapermission: config.dataPermission ?? "",
+    ...options.headers ?? {}
+  };
+  const body = typeof options.body === "string" ? options.body : void 0;
+  const res = await rawRequest(url, {
+    method,
+    headers: reqHeaders,
+    body
+  });
+  const text = res.text;
+  if (res.status < 200 || res.status >= 300) {
+    const detail = verbose ? `\uFF1A${redactSensitive(text).slice(0, 300)}` : "";
+    throw new Error(`HTTP ${res.status}${detail}`);
+  }
+  if (!text.trim()) return null;
+  try {
+    return JSON.parse(text);
+  } catch {
+    if (verbose) {
+      console.error(`  \u26A0\uFE0F  \u54CD\u5E94\u975E JSON\uFF0C\u539F\u59CB\u5185\u5BB9\uFF1A${redactSensitive(text).slice(0, 200)}`);
+    }
+    return text;
+  }
+}
+async function apiFetchWithHeaders(url, config, options = {}, verbose = false) {
+  const method = options.method ?? "GET";
+  const authHeaders = config.apiKey ? { "x-api-key": config.apiKey } : { Authorization: `Bearer ${config.authToken}` };
+  const reqHeaders = {
+    "Content-Type": "application/json",
+    "Accept-Language": "zh-CN",
+    ...authHeaders,
+    Datapermission: config.dataPermission ?? "",
+    ...options.headers ?? {}
+  };
+  const body = typeof options.body === "string" ? options.body : void 0;
+  const res = await rawRequest(url, { method, headers: reqHeaders, body });
+  const text = res.text;
+  if (res.status < 200 || res.status >= 300) {
+    const detail = verbose ? `\uFF1A${redactSensitive(text).slice(0, 300)}` : "";
+    throw new Error(`HTTP ${res.status}${detail}`);
+  }
+  let data;
+  if (!text.trim()) {
+    data = null;
+  } else {
+    try {
+      data = JSON.parse(text);
+    } catch {
+      data = text;
+    }
+  }
+  return { data, headers: res.headers };
+}
+function getCurrentVersion(importMetaUrl) {
+  try {
+    const __dirname3 = path2.dirname(fileURLToPath(importMetaUrl));
+    const pkgPath = path2.join(__dirname3, "..", "package.json");
+    const pkg = JSON.parse(fs2.readFileSync(pkgPath, "utf8"));
+    return pkg.version ?? "0.0.0";
+  } catch {
+    return "0.0.0";
+  }
+}
+function npmDistTagForCurrentVersion(version) {
+  const v = version.trim().replace(/^v/i, "");
+  return /^\d+\.\d+\.\d+$/.test(v) ? "latest" : "beta";
+}
+function npmMinRequiredTagForBuildEnv(buildEnv) {
+  return buildEnv === "test" ? "min-required-beta" : "min-required";
+}
+function isNewer(a, b) {
+  return import_semver.default.gt(b, a) === true;
+}
+async function fetchNpmVersion(pkgName, tag, timeoutMs = 4e3) {
+  try {
+    const url = `https://registry.npmjs.org/${pkgName}/${tag}`;
+    const controller = new AbortController();
+    const timer = setTimeout(() => controller.abort(), timeoutMs);
+    const res = await fetch(url, { signal: controller.signal });
+    clearTimeout(timer);
+    if (!res.ok) return null;
+    const data = await res.json();
+    return data.version ?? null;
+  } catch {
+    return null;
+  }
+}
 var DEFAULT_SENTRY_DSN = "https://bafcf42aab6fe7b485310619ae041b5e@o4510436169285632.ingest.us.sentry.io/4511103054708736";
 function isSentryDisabled() {
   return process.env.SILUZAN_SENTRY_DISABLED === "1" || process.env.SILUZAN_SENTRY_DISABLED === "true";
@@ -2126,11 +2230,6 @@ function redactCliArgvForSentry(argv) {
   }
   return out.join(" ");
 }
-function isApiTrackingEnabled() {
-  const v = process.env.SILUZAN_SENTRY_TRACKING?.trim().toLowerCase();
-  if (v === "0" || v === "false" || v === "off" || v === "no") return false;
-  return true;
-}
 function setSiluzanCliMeta(name, version) {
   cliMeta = { name, version };
   if (sentryReady) {
@@ -2219,178 +2318,6 @@ function inferSiluzanRuntimeEnvironment(requestUrl) {
     return "production";
   }
 }
-function breadcrumbUrl(requestUrl) {
-  try {
-    const u = new URL(requestUrl);
-    return `${u.origin}${u.pathname}`;
-  } catch {
-    return requestUrl.slice(0, 120);
-  }
-}
-function trackingPathParts(requestUrl) {
-  try {
-    const u = new URL(requestUrl);
-    return { host: u.hostname.toLowerCase(), pathname: u.pathname || "/" };
-  } catch {
-    return { host: "unknown", pathname: "/" };
-  }
-}
-var SENSITIVE_QUERY_KEYS = /* @__PURE__ */ new Set([
-  "token",
-  "password",
-  "api_key",
-  "apikey",
-  "key",
-  "secret",
-  "authorization",
-  "auth"
-]);
-function redactUrlForTracking(url) {
-  try {
-    const u = new URL(url);
-    const q = new URLSearchParams(u.search);
-    const out = new URLSearchParams();
-    for (const [k, v] of q.entries()) {
-      out.set(k, SENSITIVE_QUERY_KEYS.has(k.toLowerCase()) ? "[REDACTED]" : v);
-    }
-    const qs = out.toString();
-    return `${u.origin}${u.pathname}${qs ? `?${qs}` : ""}`;
-  } catch {
-    return url.slice(0, 800);
-  }
-}
-function redactTrackingHeaders(h) {
-  const out = {};
-  for (const [k, v] of Object.entries(h)) {
-    const low = k.toLowerCase();
-    if (low === "authorization" || low === "x-api-key") {
-      out[k] = "[REDACTED]";
-    } else if (v.length > 2e3) {
-      out[k] = `${v.slice(0, 500)}\u2026[truncated ${v.length} chars]`;
-    } else {
-      out[k] = v;
-    }
-  }
-  return out;
-}
-var SENSITIVE_JSON_KEY = /* @__PURE__ */ new Set([
-  "password",
-  "token",
-  "apikey",
-  "api_key",
-  "authorization",
-  "authtoken",
-  "accesstoken",
-  "refreshtoken",
-  "secret",
-  "client_secret",
-  "privatekey",
-  "private_key"
-]);
-function deepRedactJson(value, depth) {
-  if (depth > 14) return "[MAX_DEPTH]";
-  if (value === null || typeof value !== "object") return value;
-  if (Array.isArray(value)) {
-    return value.map((v) => deepRedactJson(v, depth + 1));
-  }
-  const o = value;
-  const out = {};
-  for (const [k, v] of Object.entries(o)) {
-    const low = k.toLowerCase().replace(/_/g, "");
-    if (SENSITIVE_JSON_KEY.has(low) || low.includes("password") || low.includes("secret")) {
-      out[k] = "[REDACTED]";
-    } else {
-      out[k] = deepRedactJson(v, depth + 1);
-    }
-  }
-  return out;
-}
-function redactPlainTextSnippet(input) {
-  let s = input;
-  s = s.replace(/(Bearer\s+)[^\s'",}]+/gi, "$1***");
-  s = s.replace(
-    /("?(?:apiKey|authToken|accessToken|refreshToken|token|password)"?\s*[:=]\s*"?)([^"\s,}]{4,})/gi,
-    "$1***"
-  );
-  return s;
-}
-function trackingBodyMaxChars() {
-  const n = Number(process.env.SILUZAN_SENTRY_BODY_MAX);
-  if (Number.isFinite(n) && n > 256) return Math.min(n, 5e5);
-  return 12e3;
-}
-function trackingOmitBodies() {
-  const v = process.env.SILUZAN_SENTRY_NO_API_BODY?.trim().toLowerCase();
-  return v === "1" || v === "true" || v === "yes";
-}
-function formatTrackingBody(raw) {
-  if (trackingOmitBodies()) return "[omitted: SILUZAN_SENTRY_NO_API_BODY]";
-  if (raw === void 0 || raw === "") return "";
-  const max = trackingBodyMaxChars();
-  let text;
-  try {
-    const parsed = JSON.parse(raw);
-    text = JSON.stringify(deepRedactJson(parsed, 0));
-  } catch {
-    text = redactPlainTextSnippet(raw);
-  }
-  if (text.length > max) {
-    return `${text.slice(0, max)}\u2026[truncated ${text.length} chars]`;
-  }
-  return text;
-}
-async function reportSiluzanApiCall(payload) {
-  if (isSentryDisabled() || !getDsn() || !isApiTrackingEnabled()) return;
-  try {
-    const okInit = await ensureSentryInitialized(payload.url);
-    if (!okInit) return;
-    const Sentry = await import("@sentry/node");
-    const { host, pathname } = trackingPathParts(payload.url);
-    const siluzanEnv = inferSiluzanRuntimeEnvironment(payload.url);
-    const authType = payload.config.apiKey ? "apiKey" : "token";
-    const statusOk = payload.status >= 200 && payload.status < 300;
-    Sentry.captureMessage(
-      `siluzan.cli.api ${payload.method} ${host}${pathname} \u2192 ${payload.status}`,
-      {
-        level: statusOk ? "info" : "warning",
-        tags: {
-          siluzan_tracking: "api",
-          cli: cliMeta.name,
-          cli_version: cliMeta.version,
-          http_method: payload.method,
-          http_host: host,
-          http_status: String(payload.status),
-          siluzan_env: siluzanEnv,
-          auth_type: authType
-        },
-        fingerprint: [
-          "siluzan-cli-api",
-          cliMeta.name,
-          payload.method,
-          host,
-          pathname,
-          statusOk ? "2xx" : payload.status >= 500 ? "5xx" : "4xx"
-        ],
-        contexts: {
-          siluzan_cli: {
-            command: cliInvocation || "(pre-action \u672A\u6CE8\u518C\u6216\u5148\u4E8E parse \u53D1\u8D77\u8BF7\u6C42)"
-          },
-          siluzan_request: {
-            url: redactUrlForTracking(payload.url),
-            method: payload.method,
-            headers: redactTrackingHeaders(payload.reqHeaders),
-            body: formatTrackingBody(payload.requestBody)
-          },
-          siluzan_response: {
-            status: payload.status,
-            body: formatTrackingBody(payload.responseText)
-          }
-        }
-      }
-    );
-  } catch {
-  }
-}
 function cacheKeyForUser(mainOrigin, config) {
   const cred = config.apiKey ? `k:${config.apiKey}` : `t:${config.authToken}`;
   return `${mainOrigin}\0${cred}`;
@@ -2478,147 +2405,6 @@ function refreshSiluzanUser(apiBase, config) {
     }
   })();
 }
-async function prepareSiluzanSentryForApiFetch(url, config, options) {
-  if (isSentryDisabled()) return;
-  if (!getDsn()) return;
-  try {
-    const ok = await ensureSentryInitialized(url);
-    if (!ok) return;
-    const Sentry = await import("@sentry/node");
-    const method = options.method ?? "GET";
-    const siluzanEnv = inferSiluzanRuntimeEnvironment(url);
-    const authType = config.apiKey ? "apiKey" : "token";
-    Sentry.addBreadcrumb({
-      category: "siluzan.api",
-      type: "http",
-      level: "info",
-      message: `${method} ${breadcrumbUrl(url)}`,
-      data: {
-        siluzan_env: siluzanEnv,
-        auth_type: authType
-      }
-    });
-    const mainOrigin = deriveMainApiOriginFromRequestUrl(url);
-    if (mainOrigin) {
-      scheduleUserContext(mainOrigin, config);
-    }
-  } catch {
-  }
-}
-function redactSensitive(input) {
-  let output = input;
-  output = output.replace(/(Bearer\s+)[^\s",]+/gi, "$1***");
-  output = output.replace(
-    /("?(?:apiKey|authToken|accessToken|refreshToken|token|authorization)"?\s*[:=]\s*"?)([^"\s,}]+)/gi,
-    "$1***"
-  );
-  return output;
-}
-async function apiFetch(url, config, options = {}, verbose = false) {
-  const method = options.method ?? "GET";
-  const authHeaders = config.apiKey ? { "x-api-key": config.apiKey } : { Authorization: `Bearer ${config.authToken}` };
-  const reqHeaders = {
-    "Content-Type": "application/json",
-    "Accept-Language": "zh-CN",
-    ...authHeaders,
-    // dataPermission 仅 TSO 使用；CSO 未设置时为空字符串，服务端忽略该头
-    Datapermission: config.dataPermission ?? "",
-    ...options.headers ?? {}
-  };
-  const body = typeof options.body === "string" ? options.body : void 0;
-  const res = await rawRequest(url, {
-    method,
-    headers: reqHeaders,
-    body
-  });
-  const text = res.text;
-  if (res.status < 200 || res.status >= 300) {
-    const detail = verbose ? `\uFF1A${redactSensitive(text).slice(0, 300)}` : "";
-    throw new Error(`HTTP ${res.status}${detail}`);
-  }
-  if (!text.trim()) return null;
-  try {
-    return JSON.parse(text);
-  } catch {
-    if (verbose) {
-      console.error(`  \u26A0\uFE0F  \u54CD\u5E94\u975E JSON\uFF0C\u539F\u59CB\u5185\u5BB9\uFF1A${redactSensitive(text).slice(0, 200)}`);
-    }
-    return text;
-  }
-}
-async function apiFetchWithHeaders(url, config, options = {}, verbose = false) {
-  await prepareSiluzanSentryForApiFetch(url, config, options);
-  const method = options.method ?? "GET";
-  const authHeaders = config.apiKey ? { "x-api-key": config.apiKey } : { Authorization: `Bearer ${config.authToken}` };
-  const reqHeaders = {
-    "Content-Type": "application/json",
-    "Accept-Language": "zh-CN",
-    ...authHeaders,
-    Datapermission: config.dataPermission ?? "",
-    ...options.headers ?? {}
-  };
-  const body = typeof options.body === "string" ? options.body : void 0;
-  const res = await rawRequest(url, { method, headers: reqHeaders, body });
-  const text = res.text;
-  await reportSiluzanApiCall({
-    url,
-    config,
-    method,
-    reqHeaders,
-    requestBody: body,
-    status: res.status,
-    responseText: text
-  });
-  if (res.status < 200 || res.status >= 300) {
-    const detail = verbose ? `\uFF1A${redactSensitive(text).slice(0, 300)}` : "";
-    throw new Error(`HTTP ${res.status}${detail}`);
-  }
-  let data;
-  if (!text.trim()) {
-    data = null;
-  } else {
-    try {
-      data = JSON.parse(text);
-    } catch {
-      data = text;
-    }
-  }
-  return { data, headers: res.headers };
-}
-function getCurrentVersion(importMetaUrl) {
-  try {
-    const __dirname3 = path2.dirname(fileURLToPath(importMetaUrl));
-    const pkgPath = path2.join(__dirname3, "..", "package.json");
-    const pkg = JSON.parse(fs2.readFileSync(pkgPath, "utf8"));
-    return pkg.version ?? "0.0.0";
-  } catch {
-    return "0.0.0";
-  }
-}
-function npmDistTagForCurrentVersion(version) {
-  const v = version.trim().replace(/^v/i, "");
-  return /^\d+\.\d+\.\d+$/.test(v) ? "latest" : "beta";
-}
-function npmMinRequiredTagForBuildEnv(buildEnv) {
-  return buildEnv === "test" ? "min-required-beta" : "min-required";
-}
-function isNewer(a, b) {
-  return import_semver.default.gt(b, a) === true;
-}
-async function fetchNpmVersion(pkgName, tag, timeoutMs = 4e3) {
-  try {
-    const url = `https://registry.npmjs.org/${pkgName}/${tag}`;
-    const controller = new AbortController();
-    const timer = setTimeout(() => controller.abort(), timeoutMs);
-    const res = await fetch(url, { signal: controller.signal });
-    clearTimeout(timer);
-    if (!res.ok) return null;
-    const data = await res.json();
-    return data.version ?? null;
-  } catch {
-    return null;
-  }
-}
 
 // src/utils/version.ts
 import * as fs3 from "fs";

package/dist/skill/_meta.json

@@ -1,5 +1,5 @@
 {
   "slug": "siluzan-tso",
-  "version": "1.1.8-beta.5",
-  "publishedAt": 1775716200188
+  "version": "1.1.8-beta.6",
+  "publishedAt": 1775717054893
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "siluzan-tso-cli",
-  "version": "1.1.8-beta.5",
+  "version": "1.1.8-beta.6",
   "description": "Siluzan 广告账户管理 CLI — 查询账户、余额、消耗数据，管理绑定关系与充值。",
   "type": "module",
   "bin": {