npm - sootsim - Versions diffs - 0.1.85 → 0.1.87 - Mend

sootsim 0.1.85 → 0.1.87

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (146) hide show

package/dist-lib/host/fetch-proxy-handler.cjs CHANGED Viewed

@@ -1,4 +1,4 @@
-/*! sootsim v0.1.85 | (c) 2026 Tamagui LLC | Proprietary — see LICENSE */
+/*! sootsim v0.1.87 | (c) 2026 Tamagui LLC | Proprietary — see LICENSE */
 let __sootsim_import_meta_url = ''; try { __sootsim_import_meta_url = require('url').pathToFileURL(__filename).href; } catch {}
 "use strict";
 var __create = Object.create;
@@ -32,6 +32,7 @@ var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: tru
 // src/host/fetch-proxy-handler.ts
 var fetch_proxy_handler_exports = {};
 __export(fetch_proxy_handler_exports, {
+  buildAppApiProxyHeaders: () => buildAppApiProxyHeaders,
   buildFetchProxyHeaders: () => buildFetchProxyHeaders,
   handleAppApiRequest: () => handleAppApiRequest,
   handleFetchProxyRequest: () => handleFetchProxyRequest,
@@ -97,6 +98,14 @@ var FETCH_PROXY_CORS_HEADERS = {
   "access-control-expose-headers": "*",
   "access-control-max-age": "3600"
 };
+var APP_API_HEADER_REWRITES = /* @__PURE__ */ new Set([
+  "host",
+  "origin",
+  "referer",
+  "sec-fetch-site",
+  "sec-fetch-mode",
+  "sec-fetch-dest"
+]);
 function applyFetchProxyCors(res) {
   for (const [key, value] of Object.entries(FETCH_PROXY_CORS_HEADERS)) {
     res.setHeader(key, value);
@@ -129,6 +138,18 @@ function buildFetchProxyHeaders(reqHeaders, targetUrl) {
   );
   return headers;
 }
+function buildAppApiProxyHeaders(reqHeaders, targetUrl) {
+  const headers = {};
+  for (const [key, value] of Object.entries(reqHeaders)) {
+    if (!value) continue;
+    if (APP_API_HEADER_REWRITES.has(key.toLowerCase())) continue;
+    headers[key] = value;
+  }
+  headers.host = targetUrl.host;
+  headers.origin = targetUrl.origin;
+  headers.referer = `${targetUrl.origin}/`;
+  return headers;
+}
 function isFetchProxyRequestUrl(rawUrl) {
   return rawUrl?.startsWith("/__fetch-proxy?") || rawUrl?.startsWith("/__proxy?") || false;
 }
@@ -239,9 +260,7 @@ function handleAppApiRequest(req, res) {
     return true;
   }
   const transport = targetUrl.protocol === "https:" ? import_https.default : import_http.default;
-  const fwdHeaders = { ...req.headers };
-  delete fwdHeaders.host;
-  fwdHeaders.host = targetUrl.host;
+  const fwdHeaders = buildAppApiProxyHeaders(req.headers, targetUrl);
   const proxyReq = transport.request(
     {
       hostname: targetUrl.hostname,
@@ -273,6 +292,7 @@ function handleAppApiRequest(req, res) {
 }
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
+  buildAppApiProxyHeaders,
   buildFetchProxyHeaders,
   handleAppApiRequest,
   handleFetchProxyRequest,

package/dist-lib/host/fetch-proxy-overrides.cjs CHANGED Viewed

@@ -1,4 +1,4 @@
-/*! sootsim v0.1.85 | (c) 2026 Tamagui LLC | Proprietary — see LICENSE */
+/*! sootsim v0.1.87 | (c) 2026 Tamagui LLC | Proprietary — see LICENSE */
 let __sootsim_import_meta_url = ''; try { __sootsim_import_meta_url = require('url').pathToFileURL(__filename).href; } catch {}
 "use strict";
 var __defProp = Object.defineProperty;

package/dist-lib/host/fetch-proxy-overrides.mjs ADDED Viewed

@@ -0,0 +1,33 @@
+/*! sootsim v0.1.87 | (c) 2026 Tamagui LLC | Proprietary — see LICENSE */
+// src/host/fetch-proxy-overrides.ts
+var FETCH_PROXY_BROWSER_USER_AGENT = "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36";
+var HOST_HEADER_OVERRIDES = [
+  {
+    hostSuffix: "uniswap.org",
+    headers: {
+      origin: "https://app.uniswap.org",
+      referer: "https://app.uniswap.org/"
+    }
+  }
+];
+function headerOverridesFor(hostname) {
+  const host = hostname.toLowerCase();
+  for (const override of HOST_HEADER_OVERRIDES) {
+    if (host === override.hostSuffix || host.endsWith(`.${override.hostSuffix}`)) {
+      return override.headers;
+    }
+  }
+  return {};
+}
+function getFetchProxyTargetHeaders(targetUrl) {
+  return {
+    "accept-encoding": "identity",
+    "user-agent": FETCH_PROXY_BROWSER_USER_AGENT,
+    ...headerOverridesFor(targetUrl.hostname)
+  };
+}
+export {
+  FETCH_PROXY_BROWSER_USER_AGENT,
+  getFetchProxyTargetHeaders
+};

package/dist-lib/host/websocket-proxy.cjs ADDED Viewed

@@ -0,0 +1,207 @@
+/*! sootsim v0.1.87 | (c) 2026 Tamagui LLC | Proprietary — see LICENSE */
+let __sootsim_import_meta_url = ''; try { __sootsim_import_meta_url = require('url').pathToFileURL(__filename).href; } catch {}
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+// src/host/websocket-proxy.ts
+var websocket_proxy_exports = {};
+__export(websocket_proxy_exports, {
+  WEBSOCKET_PROXY_PATH: () => WEBSOCKET_PROXY_PATH,
+  handleWebSocketProxyUpgrade: () => handleWebSocketProxyUpgrade,
+  isWebSocketProxyRequestUrl: () => isWebSocketProxyRequestUrl
+});
+module.exports = __toCommonJS(websocket_proxy_exports);
+var import_ws = require("ws");
+var WEBSOCKET_PROXY_PATH = "/__websocket-proxy";
+var STRIP_UPSTREAM_HEADERS = /* @__PURE__ */ new Set([
+  "host",
+  "connection",
+  "upgrade",
+  "transfer-encoding",
+  "content-length",
+  "sec-websocket-accept",
+  "sec-websocket-extensions",
+  "sec-websocket-key",
+  "sec-websocket-protocol",
+  "sec-websocket-version"
+]);
+function rejectUpgrade(socket, status, message) {
+  try {
+    socket.write(
+      `HTTP/1.1 ${status} ${message}\r
+Connection: close\r
+Content-Type: text/plain\r
+Content-Length: ${message.length}\r
+\r
+${message}`
+    );
+  } catch {
+  }
+  socket.destroy();
+}
+function isSameOriginUpgrade(req) {
+  const origin = req.headers.origin;
+  const host = req.headers.host;
+  if (!origin || !host) return false;
+  try {
+    return new URL(origin).host === host;
+  } catch {
+    return false;
+  }
+}
+function decodeProxyHeaders(encoded) {
+  if (!encoded) return {};
+  const base64 = encoded.replace(/-/g, "+").replace(/_/g, "/");
+  const padded = base64 + "=".repeat((4 - base64.length % 4) % 4);
+  const parsed = JSON.parse(Buffer.from(padded, "base64").toString("utf8"));
+  if (!parsed || typeof parsed !== "object" || Array.isArray(parsed)) return {};
+  const headers = {};
+  for (const [key, value] of Object.entries(parsed)) {
+    if (value == null) continue;
+    if (STRIP_UPSTREAM_HEADERS.has(key.toLowerCase())) continue;
+    headers[key] = Array.isArray(value) ? value.join(", ") : String(value);
+  }
+  return headers;
+}
+function getDefaultWebSocketOrigin(targetUrl) {
+  const origin = new URL(targetUrl.href);
+  origin.protocol = targetUrl.protocol === "wss:" ? "https:" : "http:";
+  return origin.origin;
+}
+function getRequestedProtocols(req) {
+  const header = req.headers["sec-websocket-protocol"];
+  const value = Array.isArray(header) ? header.join(",") : header || "";
+  return value.split(",").map((part) => part.trim()).filter(Boolean);
+}
+function safeClose(ws, code, reason) {
+  if (ws.readyState === import_ws.WebSocket.CLOSED || ws.readyState === import_ws.WebSocket.CLOSING) {
+    return;
+  }
+  try {
+    ws.close(code, reason);
+  } catch {
+    ws.terminate();
+  }
+}
+function connectProxyPair(clientWs, upstream) {
+  let closing = false;
+  const closeBoth = (source, target, code, reason) => {
+    if (closing) return;
+    closing = true;
+    safeClose(target, code, reason.toString());
+    if (source.readyState === import_ws.WebSocket.OPEN) {
+      safeClose(source, code, reason.toString());
+    }
+  };
+  clientWs.on("message", (data, isBinary) => {
+    if (upstream.readyState === import_ws.WebSocket.OPEN) {
+      upstream.send(data, { binary: isBinary });
+    }
+  });
+  upstream.on("message", (data, isBinary) => {
+    if (clientWs.readyState === import_ws.WebSocket.OPEN) {
+      clientWs.send(data, { binary: isBinary });
+    }
+  });
+  clientWs.on("close", (code, reason) => closeBoth(clientWs, upstream, code, reason));
+  upstream.on("close", (code, reason) => closeBoth(upstream, clientWs, code, reason));
+  clientWs.on("error", () => safeClose(upstream, 1011, "proxy client error"));
+  upstream.on("error", () => safeClose(clientWs, 1011, "upstream websocket error"));
+}
+function createUpstreamWebSocket(targetUrl, protocols, headers) {
+  const upstreamHeaders = { ...headers };
+  if (!Object.keys(upstreamHeaders).some((key) => key.toLowerCase() === "origin")) {
+    upstreamHeaders.origin = getDefaultWebSocketOrigin(targetUrl);
+  }
+  return new import_ws.WebSocket(targetUrl.href, protocols, {
+    headers: upstreamHeaders
+  });
+}
+function isWebSocketProxyRequestUrl(rawUrl) {
+  if (!rawUrl) return false;
+  try {
+    return new URL(rawUrl, "http://localhost").pathname === WEBSOCKET_PROXY_PATH;
+  } catch {
+    return false;
+  }
+}
+function handleWebSocketProxyUpgrade(req, socket, head) {
+  if (!isWebSocketProxyRequestUrl(req.url)) return false;
+  if (!isSameOriginUpgrade(req)) {
+    rejectUpgrade(socket, 403, "forbidden websocket proxy origin");
+    return true;
+  }
+  let targetUrl;
+  let headers;
+  try {
+    const requestUrl = new URL(req.url || "/", "http://localhost");
+    const target = requestUrl.searchParams.get("url");
+    if (!target) {
+      rejectUpgrade(socket, 400, "missing websocket proxy url");
+      return true;
+    }
+    targetUrl = new URL(target);
+    if (targetUrl.protocol !== "ws:" && targetUrl.protocol !== "wss:") {
+      rejectUpgrade(socket, 400, "invalid websocket proxy protocol");
+      return true;
+    }
+    headers = decodeProxyHeaders(requestUrl.searchParams.get("headers"));
+  } catch {
+    rejectUpgrade(socket, 400, "invalid websocket proxy request");
+    return true;
+  }
+  const protocols = getRequestedProtocols(req);
+  const upstream = createUpstreamWebSocket(targetUrl, protocols, headers);
+  let completed = false;
+  socket.once("close", () => {
+    if (!completed) upstream.terminate();
+  });
+  upstream.once("open", () => {
+    if (completed) return;
+    completed = true;
+    const selectedProtocol = upstream.protocol;
+    const proxyServer = new import_ws.WebSocketServer({
+      noServer: true,
+      clientTracking: false,
+      handleProtocols(requestedProtocols) {
+        return selectedProtocol || requestedProtocols.values().next().value || false;
+      }
+    });
+    proxyServer.handleUpgrade(req, socket, head, (clientWs) => {
+      connectProxyPair(clientWs, upstream);
+    });
+  });
+  upstream.once("error", () => {
+    if (completed) return;
+    completed = true;
+    rejectUpgrade(socket, 502, "upstream websocket error");
+  });
+  upstream.once("close", () => {
+    if (completed) return;
+    completed = true;
+    rejectUpgrade(socket, 502, "upstream websocket closed");
+  });
+  return true;
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  WEBSOCKET_PROXY_PATH,
+  handleWebSocketProxyUpgrade,
+  isWebSocketProxyRequestUrl
+});

package/dist-lib/index.cjs CHANGED Viewed

@@ -1,4 +1,4 @@
-/*! sootsim v0.1.85 | (c) 2026 Tamagui LLC | Proprietary — see LICENSE */
+/*! sootsim v0.1.87 | (c) 2026 Tamagui LLC | Proprietary — see LICENSE */
 let __sootsim_import_meta_url = ''; try { __sootsim_import_meta_url = require('url').pathToFileURL(__filename).href; } catch {}
 "use strict";
 var __create = Object.create;

package/dist-lib/metro.cjs CHANGED Viewed

@@ -1,4 +1,4 @@
-/*! sootsim v0.1.85 | (c) 2026 Tamagui LLC | Proprietary — see LICENSE */
+/*! sootsim v0.1.87 | (c) 2026 Tamagui LLC | Proprietary — see LICENSE */
 let __sootsim_import_meta_url = ''; try { __sootsim_import_meta_url = require('url').pathToFileURL(__filename).href; } catch {}
 "use strict";
 var __create = Object.create;

package/dist-lib/profiles.cjs CHANGED Viewed

@@ -1,4 +1,4 @@
-/*! sootsim v0.1.85 | (c) 2026 Tamagui LLC | Proprietary — see LICENSE */
+/*! sootsim v0.1.87 | (c) 2026 Tamagui LLC | Proprietary — see LICENSE */
 let __sootsim_import_meta_url = ''; try { __sootsim_import_meta_url = require('url').pathToFileURL(__filename).href; } catch {}
 "use strict";
 var __create = Object.create;

package/dist-lib/render-mode.cjs CHANGED Viewed

@@ -1,4 +1,4 @@
-/*! sootsim v0.1.85 | (c) 2026 Tamagui LLC | Proprietary — see LICENSE */
+/*! sootsim v0.1.87 | (c) 2026 Tamagui LLC | Proprietary — see LICENSE */
 let __sootsim_import_meta_url = ''; try { __sootsim_import_meta_url = require('url').pathToFileURL(__filename).href; } catch {}
 "use strict";
 var __defProp = Object.defineProperty;

package/dist-lib/scripts/demo-app-registry.cjs CHANGED Viewed

@@ -1,4 +1,4 @@
-/*! sootsim v0.1.85 | (c) 2026 Tamagui LLC | Proprietary — see LICENSE */
+/*! sootsim v0.1.87 | (c) 2026 Tamagui LLC | Proprietary — see LICENSE */
 let __sootsim_import_meta_url = ''; try { __sootsim_import_meta_url = require('url').pathToFileURL(__filename).href; } catch {}
 "use strict";
 var __defProp = Object.defineProperty;
@@ -593,11 +593,22 @@ var APPS = [
     // be holding pglite locks on ~/takeout/.orez (soot can attach takeout as
     // a project and spin up its own orez against the same data dir).
     readyTimeoutMs: 24e4,
+    managedPorts: (p) => {
+      const offset = p - 8081;
+      return [5433 + offset, 4848 + offset, 9200 + offset];
+    },
     command: (p) => ({
-      cmd: "bun lite",
+      cmd: "bun lite:demo",
       env: {
+        TAKEOUT_ENV_MODE: "development",
         PORT_OFFSET: String(p - 8081),
-        OREZ_DATA_DIR: `${HOME}/.cache/sootsim-demo/takeout-orez`
+        OREZ_DATA_DIR: `${HOME}/.cache/sootsim-demo/takeout-orez`,
+        VITE_DEMO_MODE: "1",
+        ZERO_APP_ID: "takeout",
+        ZERO_APP_PUBLICATIONS: "zero_takeout",
+        ZERO_CVR_MAX_CONNS: "4",
+        ZERO_NUM_SYNC_WORKERS: "2",
+        ZERO_UPSTREAM_MAX_CONNS: "8"
       }
     })
   },

package/dist-lib/scripts/dev-server-scanner.cjs CHANGED Viewed

@@ -1,4 +1,4 @@
-/*! sootsim v0.1.85 | (c) 2026 Tamagui LLC | Proprietary — see LICENSE */
+/*! sootsim v0.1.87 | (c) 2026 Tamagui LLC | Proprietary — see LICENSE */
 let __sootsim_import_meta_url = ''; try { __sootsim_import_meta_url = require('url').pathToFileURL(__filename).href; } catch {}
 "use strict";
 var __create = Object.create;
@@ -663,11 +663,22 @@ var APPS = [
     // be holding pglite locks on ~/takeout/.orez (soot can attach takeout as
     // a project and spin up its own orez against the same data dir).
     readyTimeoutMs: 24e4,
+    managedPorts: (p) => {
+      const offset = p - 8081;
+      return [5433 + offset, 4848 + offset, 9200 + offset];
+    },
     command: (p) => ({
-      cmd: "bun lite",
+      cmd: "bun lite:demo",
       env: {
+        TAKEOUT_ENV_MODE: "development",
         PORT_OFFSET: String(p - 8081),
-        OREZ_DATA_DIR: `${HOME}/.cache/sootsim-demo/takeout-orez`
+        OREZ_DATA_DIR: `${HOME}/.cache/sootsim-demo/takeout-orez`,
+        VITE_DEMO_MODE: "1",
+        ZERO_APP_ID: "takeout",
+        ZERO_APP_PUBLICATIONS: "zero_takeout",
+        ZERO_CVR_MAX_CONNS: "4",
+        ZERO_NUM_SYNC_WORKERS: "2",
+        ZERO_UPSTREAM_MAX_CONNS: "8"
       }
     })
   },