npm - whale-code - Versions diffs - 6.4.0 - Mend

whale-code 6.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (319) hide show

package/README.md +95 -0
package/bin/swag-agent.js +9 -0
package/bin/swagmanager-mcp.js +321 -0
package/dist/cli/app.d.ts +26 -0
package/dist/cli/app.js +64 -0
package/dist/cli/chat/AgentSelector.d.ts +14 -0
package/dist/cli/chat/AgentSelector.js +14 -0
package/dist/cli/chat/ChatApp.d.ts +9 -0
package/dist/cli/chat/ChatApp.js +267 -0
package/dist/cli/chat/ChatInput.d.ts +39 -0
package/dist/cli/chat/ChatInput.js +509 -0
package/dist/cli/chat/MarkdownText.d.ts +10 -0
package/dist/cli/chat/MarkdownText.js +20 -0
package/dist/cli/chat/MessageList.d.ts +37 -0
package/dist/cli/chat/MessageList.js +80 -0
package/dist/cli/chat/ModelSelector.d.ts +20 -0
package/dist/cli/chat/ModelSelector.js +73 -0
package/dist/cli/chat/RewindViewer.d.ts +26 -0
package/dist/cli/chat/RewindViewer.js +185 -0
package/dist/cli/chat/StoreSelector.d.ts +14 -0
package/dist/cli/chat/StoreSelector.js +24 -0
package/dist/cli/chat/StreamingText.d.ts +12 -0
package/dist/cli/chat/StreamingText.js +12 -0
package/dist/cli/chat/SubagentPanel.d.ts +45 -0
package/dist/cli/chat/SubagentPanel.js +110 -0
package/dist/cli/chat/TeamPanel.d.ts +21 -0
package/dist/cli/chat/TeamPanel.js +42 -0
package/dist/cli/chat/ToolIndicator.d.ts +25 -0
package/dist/cli/chat/ToolIndicator.js +436 -0
package/dist/cli/chat/hooks/useAgentLoop.d.ts +39 -0
package/dist/cli/chat/hooks/useAgentLoop.js +382 -0
package/dist/cli/chat/hooks/useSlashCommands.d.ts +37 -0
package/dist/cli/chat/hooks/useSlashCommands.js +387 -0
package/dist/cli/commands/config-cmd.d.ts +10 -0
package/dist/cli/commands/config-cmd.js +99 -0
package/dist/cli/commands/doctor.d.ts +14 -0
package/dist/cli/commands/doctor.js +172 -0
package/dist/cli/commands/init.d.ts +16 -0
package/dist/cli/commands/init.js +278 -0
package/dist/cli/commands/mcp.d.ts +12 -0
package/dist/cli/commands/mcp.js +162 -0
package/dist/cli/login/LoginApp.d.ts +7 -0
package/dist/cli/login/LoginApp.js +157 -0
package/dist/cli/print-mode.d.ts +31 -0
package/dist/cli/print-mode.js +202 -0
package/dist/cli/serve-mode.d.ts +37 -0
package/dist/cli/serve-mode.js +636 -0
package/dist/cli/services/agent-definitions.d.ts +25 -0
package/dist/cli/services/agent-definitions.js +91 -0
package/dist/cli/services/agent-events.d.ts +178 -0
package/dist/cli/services/agent-events.js +175 -0
package/dist/cli/services/agent-loop.d.ts +90 -0
package/dist/cli/services/agent-loop.js +762 -0
package/dist/cli/services/agent-worker-base.d.ts +97 -0
package/dist/cli/services/agent-worker-base.js +220 -0
package/dist/cli/services/auth-service.d.ts +30 -0
package/dist/cli/services/auth-service.js +160 -0
package/dist/cli/services/background-processes.d.ts +126 -0
package/dist/cli/services/background-processes.js +318 -0
package/dist/cli/services/browser-auth.d.ts +24 -0
package/dist/cli/services/browser-auth.js +180 -0
package/dist/cli/services/claude-md-loader.d.ts +16 -0
package/dist/cli/services/claude-md-loader.js +58 -0
package/dist/cli/services/config-store.d.ts +47 -0
package/dist/cli/services/config-store.js +79 -0
package/dist/cli/services/debug-log.d.ts +10 -0
package/dist/cli/services/debug-log.js +52 -0
package/dist/cli/services/error-logger.d.ts +58 -0
package/dist/cli/services/error-logger.js +269 -0
package/dist/cli/services/file-history.d.ts +21 -0
package/dist/cli/services/file-history.js +83 -0
package/dist/cli/services/format-server-response.d.ts +16 -0
package/dist/cli/services/format-server-response.js +440 -0
package/dist/cli/services/git-context.d.ts +11 -0
package/dist/cli/services/git-context.js +66 -0
package/dist/cli/services/hooks.d.ts +85 -0
package/dist/cli/services/hooks.js +258 -0
package/dist/cli/services/interactive-tools.d.ts +125 -0
package/dist/cli/services/interactive-tools.js +260 -0
package/dist/cli/services/keybinding-manager.d.ts +52 -0
package/dist/cli/services/keybinding-manager.js +115 -0
package/dist/cli/services/local-tools.d.ts +22 -0
package/dist/cli/services/local-tools.js +697 -0
package/dist/cli/services/lsp-manager.d.ts +18 -0
package/dist/cli/services/lsp-manager.js +717 -0
package/dist/cli/services/mcp-client.d.ts +48 -0
package/dist/cli/services/mcp-client.js +157 -0
package/dist/cli/services/memory-manager.d.ts +16 -0
package/dist/cli/services/memory-manager.js +57 -0
package/dist/cli/services/model-manager.d.ts +18 -0
package/dist/cli/services/model-manager.js +71 -0
package/dist/cli/services/model-router.d.ts +26 -0
package/dist/cli/services/model-router.js +149 -0
package/dist/cli/services/permission-modes.d.ts +13 -0
package/dist/cli/services/permission-modes.js +43 -0
package/dist/cli/services/rewind.d.ts +84 -0
package/dist/cli/services/rewind.js +194 -0
package/dist/cli/services/ripgrep.d.ts +28 -0
package/dist/cli/services/ripgrep.js +138 -0
package/dist/cli/services/sandbox.d.ts +29 -0
package/dist/cli/services/sandbox.js +97 -0
package/dist/cli/services/server-tools.d.ts +61 -0
package/dist/cli/services/server-tools.js +543 -0
package/dist/cli/services/session-persistence.d.ts +23 -0
package/dist/cli/services/session-persistence.js +99 -0
package/dist/cli/services/subagent-worker.d.ts +19 -0
package/dist/cli/services/subagent-worker.js +41 -0
package/dist/cli/services/subagent.d.ts +47 -0
package/dist/cli/services/subagent.js +647 -0
package/dist/cli/services/system-prompt.d.ts +7 -0
package/dist/cli/services/system-prompt.js +198 -0
package/dist/cli/services/team-lead.d.ts +73 -0
package/dist/cli/services/team-lead.js +512 -0
package/dist/cli/services/team-state.d.ts +77 -0
package/dist/cli/services/team-state.js +398 -0
package/dist/cli/services/teammate.d.ts +31 -0
package/dist/cli/services/teammate.js +689 -0
package/dist/cli/services/telemetry.d.ts +61 -0
package/dist/cli/services/telemetry.js +209 -0
package/dist/cli/services/tools/agent-tools.d.ts +14 -0
package/dist/cli/services/tools/agent-tools.js +347 -0
package/dist/cli/services/tools/file-ops.d.ts +15 -0
package/dist/cli/services/tools/file-ops.js +487 -0
package/dist/cli/services/tools/search-tools.d.ts +8 -0
package/dist/cli/services/tools/search-tools.js +186 -0
package/dist/cli/services/tools/shell-exec.d.ts +10 -0
package/dist/cli/services/tools/shell-exec.js +168 -0
package/dist/cli/services/tools/task-manager.d.ts +28 -0
package/dist/cli/services/tools/task-manager.js +209 -0
package/dist/cli/services/tools/web-tools.d.ts +11 -0
package/dist/cli/services/tools/web-tools.js +395 -0
package/dist/cli/setup/SetupApp.d.ts +9 -0
package/dist/cli/setup/SetupApp.js +191 -0
package/dist/cli/shared/MatrixIntro.d.ts +4 -0
package/dist/cli/shared/MatrixIntro.js +83 -0
package/dist/cli/shared/Theme.d.ts +74 -0
package/dist/cli/shared/Theme.js +127 -0
package/dist/cli/shared/WhaleBanner.d.ts +10 -0
package/dist/cli/shared/WhaleBanner.js +12 -0
package/dist/cli/shared/markdown.d.ts +21 -0
package/dist/cli/shared/markdown.js +756 -0
package/dist/cli/status/StatusApp.d.ts +4 -0
package/dist/cli/status/StatusApp.js +105 -0
package/dist/cli/stores/StoreApp.d.ts +7 -0
package/dist/cli/stores/StoreApp.js +81 -0
package/dist/index.d.ts +15 -0
package/dist/index.js +538 -0
package/dist/local-agent/connection.d.ts +48 -0
package/dist/local-agent/connection.js +332 -0
package/dist/local-agent/discovery.d.ts +18 -0
package/dist/local-agent/discovery.js +146 -0
package/dist/local-agent/executor.d.ts +34 -0
package/dist/local-agent/executor.js +241 -0
package/dist/local-agent/index.d.ts +14 -0
package/dist/local-agent/index.js +198 -0
package/dist/node/adapters/base.d.ts +35 -0
package/dist/node/adapters/base.js +10 -0
package/dist/node/adapters/discord.d.ts +29 -0
package/dist/node/adapters/discord.js +299 -0
package/dist/node/adapters/email.d.ts +23 -0
package/dist/node/adapters/email.js +218 -0
package/dist/node/adapters/imessage.d.ts +17 -0
package/dist/node/adapters/imessage.js +118 -0
package/dist/node/adapters/slack.d.ts +26 -0
package/dist/node/adapters/slack.js +259 -0
package/dist/node/adapters/sms.d.ts +23 -0
package/dist/node/adapters/sms.js +161 -0
package/dist/node/adapters/telegram.d.ts +17 -0
package/dist/node/adapters/telegram.js +101 -0
package/dist/node/adapters/webchat.d.ts +27 -0
package/dist/node/adapters/webchat.js +160 -0
package/dist/node/adapters/whatsapp.d.ts +28 -0
package/dist/node/adapters/whatsapp.js +230 -0
package/dist/node/cli.d.ts +2 -0
package/dist/node/cli.js +325 -0
package/dist/node/config.d.ts +17 -0
package/dist/node/config.js +31 -0
package/dist/node/runtime.d.ts +50 -0
package/dist/node/runtime.js +351 -0
package/dist/server/handlers/__test-utils__/mock-supabase.d.ts +11 -0
package/dist/server/handlers/__test-utils__/mock-supabase.js +393 -0
package/dist/server/handlers/analytics.d.ts +17 -0
package/dist/server/handlers/analytics.js +266 -0
package/dist/server/handlers/api-keys.d.ts +6 -0
package/dist/server/handlers/api-keys.js +221 -0
package/dist/server/handlers/billing.d.ts +33 -0
package/dist/server/handlers/billing.js +272 -0
package/dist/server/handlers/browser.d.ts +10 -0
package/dist/server/handlers/browser.js +517 -0
package/dist/server/handlers/catalog.d.ts +99 -0
package/dist/server/handlers/catalog.js +976 -0
package/dist/server/handlers/comms.d.ts +254 -0
package/dist/server/handlers/comms.js +588 -0
package/dist/server/handlers/creations.d.ts +6 -0
package/dist/server/handlers/creations.js +479 -0
package/dist/server/handlers/crm.d.ts +89 -0
package/dist/server/handlers/crm.js +538 -0
package/dist/server/handlers/discovery.d.ts +6 -0
package/dist/server/handlers/discovery.js +288 -0
package/dist/server/handlers/embeddings.d.ts +92 -0
package/dist/server/handlers/embeddings.js +197 -0
package/dist/server/handlers/enrichment.d.ts +8 -0
package/dist/server/handlers/enrichment.js +768 -0
package/dist/server/handlers/image-gen.d.ts +6 -0
package/dist/server/handlers/image-gen.js +409 -0
package/dist/server/handlers/inventory.d.ts +319 -0
package/dist/server/handlers/inventory.js +447 -0
package/dist/server/handlers/kali.d.ts +10 -0
package/dist/server/handlers/kali.js +210 -0
package/dist/server/handlers/llm-providers.d.ts +6 -0
package/dist/server/handlers/llm-providers.js +673 -0
package/dist/server/handlers/local-agent.d.ts +6 -0
package/dist/server/handlers/local-agent.js +118 -0
package/dist/server/handlers/meta-ads.d.ts +111 -0
package/dist/server/handlers/meta-ads.js +2279 -0
package/dist/server/handlers/nodes.d.ts +33 -0
package/dist/server/handlers/nodes.js +699 -0
package/dist/server/handlers/operations.d.ts +138 -0
package/dist/server/handlers/operations.js +131 -0
package/dist/server/handlers/platform.d.ts +23 -0
package/dist/server/handlers/platform.js +227 -0
package/dist/server/handlers/supply-chain.d.ts +19 -0
package/dist/server/handlers/supply-chain.js +327 -0
package/dist/server/handlers/transcription.d.ts +17 -0
package/dist/server/handlers/transcription.js +121 -0
package/dist/server/handlers/video-gen.d.ts +6 -0
package/dist/server/handlers/video-gen.js +466 -0
package/dist/server/handlers/voice.d.ts +8 -0
package/dist/server/handlers/voice.js +1146 -0
package/dist/server/handlers/workflow-steps.d.ts +86 -0
package/dist/server/handlers/workflow-steps.js +2349 -0
package/dist/server/handlers/workflows.d.ts +7 -0
package/dist/server/handlers/workflows.js +989 -0
package/dist/server/index.d.ts +1 -0
package/dist/server/index.js +2427 -0
package/dist/server/lib/batch-client.d.ts +80 -0
package/dist/server/lib/batch-client.js +467 -0
package/dist/server/lib/code-worker-pool.d.ts +31 -0
package/dist/server/lib/code-worker-pool.js +224 -0
package/dist/server/lib/code-worker.d.ts +1 -0
package/dist/server/lib/code-worker.js +188 -0
package/dist/server/lib/compaction-service.d.ts +32 -0
package/dist/server/lib/compaction-service.js +162 -0
package/dist/server/lib/logger.d.ts +19 -0
package/dist/server/lib/logger.js +46 -0
package/dist/server/lib/otel.d.ts +38 -0
package/dist/server/lib/otel.js +126 -0
package/dist/server/lib/pg-rate-limiter.d.ts +21 -0
package/dist/server/lib/pg-rate-limiter.js +86 -0
package/dist/server/lib/prompt-sanitizer.d.ts +37 -0
package/dist/server/lib/prompt-sanitizer.js +177 -0
package/dist/server/lib/provider-capabilities.d.ts +85 -0
package/dist/server/lib/provider-capabilities.js +190 -0
package/dist/server/lib/provider-failover.d.ts +74 -0
package/dist/server/lib/provider-failover.js +210 -0
package/dist/server/lib/rate-limiter.d.ts +39 -0
package/dist/server/lib/rate-limiter.js +147 -0
package/dist/server/lib/server-agent-loop.d.ts +107 -0
package/dist/server/lib/server-agent-loop.js +667 -0
package/dist/server/lib/server-subagent.d.ts +78 -0
package/dist/server/lib/server-subagent.js +203 -0
package/dist/server/lib/session-checkpoint.d.ts +51 -0
package/dist/server/lib/session-checkpoint.js +145 -0
package/dist/server/lib/ssrf-guard.d.ts +13 -0
package/dist/server/lib/ssrf-guard.js +240 -0
package/dist/server/lib/supabase-client.d.ts +7 -0
package/dist/server/lib/supabase-client.js +78 -0
package/dist/server/lib/template-resolver.d.ts +31 -0
package/dist/server/lib/template-resolver.js +215 -0
package/dist/server/lib/utils.d.ts +16 -0
package/dist/server/lib/utils.js +147 -0
package/dist/server/local-agent-gateway.d.ts +82 -0
package/dist/server/local-agent-gateway.js +426 -0
package/dist/server/providers/anthropic.d.ts +20 -0
package/dist/server/providers/anthropic.js +199 -0
package/dist/server/providers/bedrock.d.ts +20 -0
package/dist/server/providers/bedrock.js +194 -0
package/dist/server/providers/gemini.d.ts +24 -0
package/dist/server/providers/gemini.js +486 -0
package/dist/server/providers/openai.d.ts +24 -0
package/dist/server/providers/openai.js +522 -0
package/dist/server/providers/registry.d.ts +32 -0
package/dist/server/providers/registry.js +58 -0
package/dist/server/providers/shared.d.ts +32 -0
package/dist/server/providers/shared.js +124 -0
package/dist/server/providers/types.d.ts +92 -0
package/dist/server/providers/types.js +12 -0
package/dist/server/proxy-handlers.d.ts +6 -0
package/dist/server/proxy-handlers.js +89 -0
package/dist/server/tool-router.d.ts +149 -0
package/dist/server/tool-router.js +803 -0
package/dist/server/validation.d.ts +24 -0
package/dist/server/validation.js +301 -0
package/dist/server/worker.d.ts +19 -0
package/dist/server/worker.js +201 -0
package/dist/setup.d.ts +8 -0
package/dist/setup.js +181 -0
package/dist/shared/agent-core.d.ts +157 -0
package/dist/shared/agent-core.js +534 -0
package/dist/shared/anthropic-types.d.ts +105 -0
package/dist/shared/anthropic-types.js +7 -0
package/dist/shared/api-client.d.ts +90 -0
package/dist/shared/api-client.js +379 -0
package/dist/shared/constants.d.ts +33 -0
package/dist/shared/constants.js +80 -0
package/dist/shared/sse-parser.d.ts +26 -0
package/dist/shared/sse-parser.js +259 -0
package/dist/shared/tool-dispatch.d.ts +52 -0
package/dist/shared/tool-dispatch.js +191 -0
package/dist/shared/types.d.ts +72 -0
package/dist/shared/types.js +7 -0
package/dist/updater.d.ts +25 -0
package/dist/updater.js +140 -0
package/dist/webchat/widget.d.ts +0 -0
package/dist/webchat/widget.js +397 -0
package/package.json +95 -0
package/src/cli/services/builtin-skills/commit.md +19 -0
package/src/cli/services/builtin-skills/review-pr.md +21 -0
package/src/cli/services/builtin-skills/review.md +18 -0

package/dist/server/lib/otel.d.ts ADDED Viewed

@@ -0,0 +1,38 @@
+/**
+ * lib/otel.ts — OpenTelemetry SDK setup for workflow engine observability
+ *
+ * Phase 3.3: Adds distributed tracing spans for step execution, tool calls, LLM calls.
+ * Exports to any OTLP-compatible collector (Jaeger, Grafana Tempo, Honeycomb, etc.)
+ *
+ * Configuration:
+ *   OTEL_EXPORTER_OTLP_ENDPOINT — Collector endpoint (e.g., http://localhost:4318)
+ *   OTEL_SERVICE_NAME — Service name (default: "whale-workflow-engine")
+ *   OTEL_ENABLED — Set to "true" to enable (disabled by default)
+ *
+ * Backward compatible: If OTEL is not enabled, all functions are no-ops.
+ */
+export interface SpanContext {
+    end: (attrs?: Record<string, unknown>) => void;
+    setError: (err: Error | string) => void;
+    setAttribute: (key: string, value: string | number | boolean) => void;
+    addEvent: (name: string, attrs?: Record<string, unknown>) => void;
+}
+/**
+ * Initialize OpenTelemetry SDK. Call once at startup.
+ * No-op if OTEL_ENABLED !== "true".
+ */
+export declare function initOtel(): Promise<void>;
+/**
+ * Graceful shutdown — flush pending spans.
+ */
+export declare function shutdownOtel(): Promise<void>;
+/**
+ * Start a new span for tracking an operation.
+ * Returns a SpanContext that wraps the OTEL span API.
+ * If OTEL is disabled, returns a no-op.
+ */
+export declare function startSpan(name: string, attributes?: Record<string, string | number | boolean>): SpanContext;
+/**
+ * Convenience: wrap an async function in a span.
+ */
+export declare function withSpan<T>(name: string, attributes: Record<string, string | number | boolean>, fn: (span: SpanContext) => Promise<T>): Promise<T>;

package/dist/server/lib/otel.js ADDED Viewed

@@ -0,0 +1,126 @@
+/**
+ * lib/otel.ts — OpenTelemetry SDK setup for workflow engine observability
+ *
+ * Phase 3.3: Adds distributed tracing spans for step execution, tool calls, LLM calls.
+ * Exports to any OTLP-compatible collector (Jaeger, Grafana Tempo, Honeycomb, etc.)
+ *
+ * Configuration:
+ *   OTEL_EXPORTER_OTLP_ENDPOINT — Collector endpoint (e.g., http://localhost:4318)
+ *   OTEL_SERVICE_NAME — Service name (default: "whale-workflow-engine")
+ *   OTEL_ENABLED — Set to "true" to enable (disabled by default)
+ *
+ * Backward compatible: If OTEL is not enabled, all functions are no-ops.
+ */
+const OTEL_ENABLED = process.env.OTEL_ENABLED === "true";
+const OTEL_ENDPOINT = process.env.OTEL_EXPORTER_OTLP_ENDPOINT || "";
+const SERVICE_NAME = process.env.OTEL_SERVICE_NAME || "whale-workflow-engine";
+// Lazy-loaded SDK references
+let _tracer = null;
+let _sdk = null;
+/**
+ * Initialize OpenTelemetry SDK. Call once at startup.
+ * No-op if OTEL_ENABLED !== "true".
+ */
+export async function initOtel() {
+    if (!OTEL_ENABLED || !OTEL_ENDPOINT)
+        return;
+    try {
+        // @ts-ignore — optional runtime dependency, gracefully handled by try/catch
+        const { NodeSDK } = await import("@opentelemetry/sdk-node");
+        // @ts-ignore
+        const { OTLPTraceExporter } = await import("@opentelemetry/exporter-trace-otlp-http");
+        // @ts-ignore
+        const { Resource } = await import("@opentelemetry/resources");
+        // @ts-ignore
+        const { ATTR_SERVICE_NAME } = await import("@opentelemetry/semantic-conventions");
+        // @ts-ignore
+        const { trace } = await import("@opentelemetry/api");
+        const exporter = new OTLPTraceExporter({ url: `${OTEL_ENDPOINT}/v1/traces` });
+        _sdk = new NodeSDK({
+            resource: new Resource({ [ATTR_SERVICE_NAME]: SERVICE_NAME }),
+            traceExporter: exporter,
+        });
+        _sdk.start();
+        _tracer = trace.getTracer(SERVICE_NAME);
+        console.log(`[otel] initialized — exporting to ${OTEL_ENDPOINT}`);
+    }
+    catch (err) {
+        console.warn("[otel] Failed to initialize (SDK not installed?):", err.message);
+        // Non-fatal — all functions remain no-ops
+    }
+}
+/**
+ * Graceful shutdown — flush pending spans.
+ */
+export async function shutdownOtel() {
+    if (_sdk) {
+        try {
+            await _sdk.shutdown();
+        }
+        catch { /* ignore */ }
+    }
+}
+/** No-op span for when OTEL is disabled */
+const noopSpan = {
+    end: () => { },
+    setError: () => { },
+    setAttribute: () => { },
+    addEvent: () => { },
+};
+/**
+ * Start a new span for tracking an operation.
+ * Returns a SpanContext that wraps the OTEL span API.
+ * If OTEL is disabled, returns a no-op.
+ */
+export function startSpan(name, attributes) {
+    if (!_tracer)
+        return noopSpan;
+    try {
+        const span = _tracer.startSpan(name, {
+            attributes: attributes || {},
+        });
+        return {
+            end: (attrs) => {
+                if (attrs) {
+                    for (const [k, v] of Object.entries(attrs)) {
+                        if (typeof v === "string" || typeof v === "number" || typeof v === "boolean") {
+                            span.setAttribute(k, v);
+                        }
+                    }
+                }
+                span.end();
+            },
+            setError: (err) => {
+                span.setStatus({ code: 2 /* ERROR */, message: typeof err === "string" ? err : err.message });
+                if (err instanceof Error) {
+                    span.recordException(err);
+                }
+            },
+            setAttribute: (key, value) => {
+                span.setAttribute(key, value);
+            },
+            addEvent: (eventName, attrs) => {
+                span.addEvent(eventName, attrs);
+            },
+        };
+    }
+    catch {
+        return noopSpan;
+    }
+}
+/**
+ * Convenience: wrap an async function in a span.
+ */
+export async function withSpan(name, attributes, fn) {
+    const span = startSpan(name, attributes);
+    try {
+        const result = await fn(span);
+        span.end();
+        return result;
+    }
+    catch (err) {
+        span.setError(err);
+        span.end();
+        throw err;
+    }
+}

package/dist/server/lib/pg-rate-limiter.d.ts ADDED Viewed

@@ -0,0 +1,21 @@
+/**
+ * lib/pg-rate-limiter.ts — PostgreSQL-backed rate limiter
+ *
+ * Phase 3.4: Token bucket rate limiting backed by Postgres for cross-process consistency.
+ * Survives deploys and works across multiple Fly.io instances.
+ *
+ * Uses the in-memory limiter as a fast first-pass, then falls back to DB
+ * as the cross-process source of truth.
+ */
+import type { SupabaseClient } from "@supabase/supabase-js";
+export interface RateLimitResult {
+    allowed: boolean;
+    remaining: number;
+    retryAfterSeconds: number;
+}
+/**
+ * Check rate limit using in-memory cache first, then DB for authoritative check.
+ * The in-memory check prevents unnecessary DB round-trips for clearly-allowed requests.
+ */
+export declare function checkRateLimit(supabase: SupabaseClient, key: string, maxTokens?: number, refillRate?: number, // tokens per second
+cost?: number): Promise<RateLimitResult>;

package/dist/server/lib/pg-rate-limiter.js ADDED Viewed

@@ -0,0 +1,86 @@
+/**
+ * lib/pg-rate-limiter.ts — PostgreSQL-backed rate limiter
+ *
+ * Phase 3.4: Token bucket rate limiting backed by Postgres for cross-process consistency.
+ * Survives deploys and works across multiple Fly.io instances.
+ *
+ * Uses the in-memory limiter as a fast first-pass, then falls back to DB
+ * as the cross-process source of truth.
+ */
+// Fast in-memory first-pass cache
+const memoryBuckets = new Map();
+/**
+ * Check rate limit using in-memory cache first, then DB for authoritative check.
+ * The in-memory check prevents unnecessary DB round-trips for clearly-allowed requests.
+ */
+export async function checkRateLimit(supabase, key, maxTokens = 100, refillRate = 1, // tokens per second
+cost = 1) {
+    // Fast path: in-memory check
+    const memResult = checkMemoryLimit(key, maxTokens, refillRate, cost);
+    if (!memResult.allowed) {
+        return memResult; // Definitely rate limited
+    }
+    // Authoritative check via DB RPC
+    try {
+        const { data, error } = await supabase.rpc("check_rate_limit", {
+            p_key: key,
+            p_max_tokens: maxTokens,
+            p_refill_rate: refillRate,
+            p_cost: cost,
+        });
+        if (error) {
+            // DB unavailable — fall back to memory-only
+            return memResult;
+        }
+        const row = Array.isArray(data) ? data[0] : data;
+        if (!row)
+            return memResult;
+        // Sync memory cache with DB state
+        const bucket = memoryBuckets.get(key);
+        if (bucket) {
+            bucket.tokens = Number(row.remaining);
+            bucket.lastRefill = Date.now();
+        }
+        return {
+            allowed: row.allowed,
+            remaining: Number(row.remaining),
+            retryAfterSeconds: Number(row.retry_after_seconds || 0),
+        };
+    }
+    catch {
+        // DB call failed — use memory result
+        return memResult;
+    }
+}
+/**
+ * In-memory only rate limit check (no DB call).
+ * Use this for high-frequency checks where DB latency is unacceptable.
+ */
+function checkMemoryLimit(key, maxTokens, refillRate, cost) {
+    const now = Date.now();
+    let bucket = memoryBuckets.get(key);
+    if (!bucket) {
+        bucket = { tokens: maxTokens, lastRefill: now, maxTokens, refillRate };
+        memoryBuckets.set(key, bucket);
+    }
+    // Refill tokens
+    const elapsed = (now - bucket.lastRefill) / 1000;
+    bucket.tokens = Math.min(bucket.maxTokens, bucket.tokens + elapsed * bucket.refillRate);
+    bucket.lastRefill = now;
+    if (bucket.tokens >= cost) {
+        bucket.tokens -= cost;
+        return { allowed: true, remaining: bucket.tokens, retryAfterSeconds: 0 };
+    }
+    const retryAfter = Math.ceil((cost - bucket.tokens) / bucket.refillRate);
+    return { allowed: false, remaining: bucket.tokens, retryAfterSeconds: retryAfter };
+}
+// Cleanup stale memory buckets every 5 minutes
+setInterval(() => {
+    const now = Date.now();
+    const staleMs = 300_000; // 5 minutes
+    for (const [key, bucket] of memoryBuckets) {
+        if (now - bucket.lastRefill > staleMs) {
+            memoryBuckets.delete(key);
+        }
+    }
+}, 300_000);

package/dist/server/lib/prompt-sanitizer.d.ts ADDED Viewed

@@ -0,0 +1,37 @@
+/**
+ * Prompt Sanitizer — prevents injection attacks in user-provided system prompts
+ * and tool descriptions.
+ *
+ * Detects and strips:
+ * - Prompt injection markers (</system>, <|im_start|>, [INST], <<SYS>>, etc.)
+ * - Role confusion attempts (Human:/Assistant: turn markers)
+ * - Unicode control characters (zero-width spaces, RTL overrides, etc.)
+ * - Excessive length (>50,000 chars)
+ * - Repeated special characters (>100 in a row)
+ *
+ * No external dependencies — regex only.
+ */
+export interface SanitizeResult {
+    sanitized: string;
+    warnings: string[];
+}
+/**
+ * Sanitize a user-provided system prompt to prevent injection attacks.
+ * Returns the cleaned prompt and an array of warnings for anything modified.
+ */
+export declare function sanitizeSystemPrompt(prompt: string): SanitizeResult;
+/**
+ * Validate that system prompt blocks follow Anthropic's expected format.
+ * Each block must be `{ type: "text", text: string }` with optional `cache_control`.
+ */
+export declare function validateSystemPromptStructure(blocks: unknown[]): boolean;
+/**
+ * Sanitize a tool description field to prevent injection via tool definitions.
+ * Same injection pattern detection as system prompts, with a 4096-char cap.
+ */
+export declare function sanitizeToolDescription(desc: string): string;
+/**
+ * Sanitize a system prompt and log any warnings. Use this at integration points
+ * where you want automatic structured logging of modifications.
+ */
+export declare function sanitizeAndLog(prompt: string, source: string, context?: Record<string, unknown>): string;

package/dist/server/lib/prompt-sanitizer.js ADDED Viewed

@@ -0,0 +1,177 @@
+/**
+ * Prompt Sanitizer — prevents injection attacks in user-provided system prompts
+ * and tool descriptions.
+ *
+ * Detects and strips:
+ * - Prompt injection markers (</system>, <|im_start|>, [INST], <<SYS>>, etc.)
+ * - Role confusion attempts (Human:/Assistant: turn markers)
+ * - Unicode control characters (zero-width spaces, RTL overrides, etc.)
+ * - Excessive length (>50,000 chars)
+ * - Repeated special characters (>100 in a row)
+ *
+ * No external dependencies — regex only.
+ */
+import { createLogger } from "./logger.js";
+const log = createLogger("prompt-sanitizer");
+// ============================================================================
+// CONSTANTS
+// ============================================================================
+const MAX_SYSTEM_PROMPT_LENGTH = 50_000;
+const MAX_TOOL_DESCRIPTION_LENGTH = 4_096;
+const MAX_REPEATED_CHARS = 100;
+// ============================================================================
+// INJECTION PATTERNS
+// ============================================================================
+/** Patterns that attempt to break out of system prompt context or impersonate roles. */
+const INJECTION_PATTERNS = [
+    // XML/markup-style prompt boundaries
+    { pattern: /<\/system>/gi, label: "</system> tag" },
+    { pattern: /<system>/gi, label: "<system> tag" },
+    { pattern: /<\/assistant>/gi, label: "</assistant> tag" },
+    { pattern: /<\/user>/gi, label: "</user> tag" },
+    { pattern: /<\/human>/gi, label: "</human> tag" },
+    // OpenAI ChatML markers
+    { pattern: /<\|im_start\|>/gi, label: "<|im_start|> marker" },
+    { pattern: /<\|im_end\|>/gi, label: "<|im_end|> marker" },
+    { pattern: /<\|im_sep\|>/gi, label: "<|im_sep|> marker" },
+    { pattern: /<\|endoftext\|>/gi, label: "<|endoftext|> marker" },
+    // Llama/Mistral instruction markers
+    { pattern: /\[INST\]/gi, label: "[INST] marker" },
+    { pattern: /\[\/INST\]/gi, label: "[/INST] marker" },
+    { pattern: /<<SYS>>/gi, label: "<<SYS>> marker" },
+    { pattern: /<<\/SYS>>/gi, label: "<</SYS>> marker" },
+    // Anthropic turn markers (only match when they look like turn boundaries)
+    { pattern: /\n\nHuman:/g, label: "Human: turn marker" },
+    { pattern: /\n\nAssistant:/g, label: "Assistant: turn marker" },
+    { pattern: /^Human:/gm, label: "Human: at line start" },
+    { pattern: /^Assistant:/gm, label: "Assistant: at line start" },
+];
+/**
+ * Unicode control character ranges to strip.
+ * Includes zero-width spaces, joiners, RTL/LTR overrides, and other invisible chars.
+ * Preserves normal whitespace (tab, newline, carriage return, space).
+ */
+const UNICODE_CONTROL_REGEX = /[\u0000-\u0008\u000B\u000C\u000E-\u001F\u007F-\u009F\u200B-\u200F\u2028-\u202E\u2060-\u2069\uFEFF\uFFF9-\uFFFB]/g;
+/** Repeated special character pattern (>100 of the same non-alphanumeric char) */
+const REPEATED_SPECIAL_REGEX = /([^\w\s])\1{100,}/g;
+/**
+ * Sanitize a user-provided system prompt to prevent injection attacks.
+ * Returns the cleaned prompt and an array of warnings for anything modified.
+ */
+export function sanitizeSystemPrompt(prompt) {
+    const warnings = [];
+    if (!prompt || typeof prompt !== "string") {
+        return { sanitized: "", warnings: ["Empty or non-string prompt provided"] };
+    }
+    let sanitized = prompt;
+    // 1. Strip Unicode control characters
+    const controlMatches = sanitized.match(UNICODE_CONTROL_REGEX);
+    if (controlMatches) {
+        warnings.push(`Stripped ${controlMatches.length} Unicode control character(s)`);
+        sanitized = sanitized.replace(UNICODE_CONTROL_REGEX, "");
+    }
+    // 2. Detect and strip injection patterns
+    for (const { pattern, label } of INJECTION_PATTERNS) {
+        // Reset lastIndex for global regexes
+        pattern.lastIndex = 0;
+        const matches = sanitized.match(pattern);
+        if (matches) {
+            warnings.push(`Stripped ${matches.length} instance(s) of ${label}`);
+            pattern.lastIndex = 0;
+            sanitized = sanitized.replace(pattern, "");
+        }
+    }
+    // 3. Truncate repeated special characters
+    const repeatedMatches = sanitized.match(REPEATED_SPECIAL_REGEX);
+    if (repeatedMatches) {
+        warnings.push(`Truncated ${repeatedMatches.length} sequence(s) of >100 repeated special characters`);
+        sanitized = sanitized.replace(REPEATED_SPECIAL_REGEX, (match, char) => {
+            return char.repeat(MAX_REPEATED_CHARS);
+        });
+    }
+    // 4. Enforce length limit
+    if (sanitized.length > MAX_SYSTEM_PROMPT_LENGTH) {
+        warnings.push(`Truncated system prompt from ${sanitized.length} to ${MAX_SYSTEM_PROMPT_LENGTH} characters`);
+        sanitized = sanitized.substring(0, MAX_SYSTEM_PROMPT_LENGTH);
+    }
+    return { sanitized, warnings };
+}
+// ============================================================================
+// VALIDATE SYSTEM PROMPT STRUCTURE
+// ============================================================================
+/**
+ * Validate that system prompt blocks follow Anthropic's expected format.
+ * Each block must be `{ type: "text", text: string }` with optional `cache_control`.
+ */
+export function validateSystemPromptStructure(blocks) {
+    if (!Array.isArray(blocks))
+        return false;
+    for (const block of blocks) {
+        if (!block || typeof block !== "object")
+            return false;
+        const b = block;
+        // Must have type: "text"
+        if (b.type !== "text")
+            return false;
+        // Must have text as string
+        if (typeof b.text !== "string")
+            return false;
+        // Only allowed fields: type, text, cache_control
+        const allowedFields = new Set(["type", "text", "cache_control"]);
+        for (const key of Object.keys(b)) {
+            if (!allowedFields.has(key))
+                return false;
+        }
+        // If cache_control present, validate its shape
+        if (b.cache_control !== undefined) {
+            if (!b.cache_control || typeof b.cache_control !== "object")
+                return false;
+            const cc = b.cache_control;
+            if (cc.type !== "ephemeral")
+                return false;
+        }
+    }
+    return true;
+}
+// ============================================================================
+// SANITIZE TOOL DESCRIPTION
+// ============================================================================
+/**
+ * Sanitize a tool description field to prevent injection via tool definitions.
+ * Same injection pattern detection as system prompts, with a 4096-char cap.
+ */
+export function sanitizeToolDescription(desc) {
+    if (!desc || typeof desc !== "string")
+        return "";
+    let sanitized = desc;
+    // Strip Unicode control characters
+    sanitized = sanitized.replace(UNICODE_CONTROL_REGEX, "");
+    // Strip injection patterns
+    for (const { pattern } of INJECTION_PATTERNS) {
+        pattern.lastIndex = 0;
+        sanitized = sanitized.replace(pattern, "");
+    }
+    // Truncate repeated special characters
+    sanitized = sanitized.replace(REPEATED_SPECIAL_REGEX, (match, char) => {
+        return char.repeat(MAX_REPEATED_CHARS);
+    });
+    // Enforce length limit
+    if (sanitized.length > MAX_TOOL_DESCRIPTION_LENGTH) {
+        sanitized = sanitized.substring(0, MAX_TOOL_DESCRIPTION_LENGTH);
+    }
+    return sanitized;
+}
+// ============================================================================
+// CONVENIENCE: SANITIZE AND LOG
+// ============================================================================
+/**
+ * Sanitize a system prompt and log any warnings. Use this at integration points
+ * where you want automatic structured logging of modifications.
+ */
+export function sanitizeAndLog(prompt, source, context) {
+    const { sanitized, warnings } = sanitizeSystemPrompt(prompt);
+    if (warnings.length > 0) {
+        log.warn({ source, warnings, originalLength: prompt.length, sanitizedLength: sanitized.length, ...context }, `System prompt sanitized: ${warnings.length} modification(s)`);
+    }
+    return sanitized;
+}

package/dist/server/lib/provider-capabilities.d.ts ADDED Viewed

@@ -0,0 +1,85 @@
+/**
+ * Provider Capability Matrix — static feature map for intelligent request routing.
+ *
+ * Each provider declares which features it supports. This enables:
+ * - Pre-flight checks before sending a request to a provider
+ * - Capability-aware failover (don't fail over to a provider that can't handle the request)
+ * - Intelligent routing (pick the best provider for a given request shape)
+ */
+import type { ModelProvider } from "../../shared/constants.js";
+export interface ProviderCapabilities {
+    /** Can process images (vision) */
+    vision: boolean;
+    /** Can process PDF documents natively */
+    pdf: boolean;
+    /** Supports computer_use tool */
+    computerUse: boolean;
+    /** Can execute code natively (e.g. code interpreter) */
+    codeExecution: boolean;
+    /** Supports SSE streaming */
+    streaming: boolean;
+    /** Supports batch processing API */
+    batchApi: boolean;
+    /** Supports source citations */
+    citations: boolean;
+    /** Supports extended thinking / reasoning */
+    thinking: boolean;
+    /** Supports function calling / tool use */
+    toolUse: boolean;
+    /** Supports prompt caching */
+    caching: boolean;
+    /** Supports server-side context management (edits, compaction) */
+    contextManagement: boolean;
+    /** Maximum context window in tokens */
+    maxContextTokens: number;
+    /** Maximum output tokens */
+    maxOutputTokens: number;
+}
+/** Features that can be required for a request (boolean capabilities only) */
+export type CapabilityFeature = {
+    [K in keyof ProviderCapabilities]: ProviderCapabilities[K] extends boolean ? K : never;
+}[keyof ProviderCapabilities];
+/** Request shape used to determine the best provider */
+export interface RequestCapabilityRequirements {
+    hasImages?: boolean;
+    hasPdf?: boolean;
+    needsBatch?: boolean;
+    needsCitations?: boolean;
+    needsComputerUse?: boolean;
+    needsCodeExecution?: boolean;
+    needsThinking?: boolean;
+    needsContextManagement?: boolean;
+    minContextTokens?: number;
+    minOutputTokens?: number;
+}
+/**
+ * Get the full capability set for a provider.
+ * Returns a defensive copy so callers can't mutate the static map.
+ */
+export declare function getCapabilities(provider: ModelProvider): ProviderCapabilities;
+/**
+ * Check if a provider supports a specific boolean feature.
+ */
+export declare function supportsFeature(provider: ModelProvider, feature: CapabilityFeature): boolean;
+/**
+ * Find all providers that support a given boolean feature.
+ * Returns provider names sorted with anthropic first (default preference).
+ */
+export declare function findProvidersWithCapability(feature: CapabilityFeature): ModelProvider[];
+/**
+ * Determine the best provider for a request based on its capability requirements.
+ *
+ * Strategy:
+ * 1. Filter to providers that satisfy ALL required capabilities
+ * 2. Prefer Anthropic as default
+ * 3. Among remaining candidates, prefer the one with the largest context window
+ *
+ * Returns "anthropic" as fallback if no provider matches all requirements
+ * (better to attempt than to hard-fail — the provider will return a clear error).
+ */
+export declare function getBestProviderForRequest(request: RequestCapabilityRequirements, excludeProviders?: Set<string>): ModelProvider;
+/**
+ * Check if a provider can handle a request with the given requirements.
+ * Returns true if all requirements are met.
+ */
+export declare function canProviderHandleRequest(provider: ModelProvider, requirements: RequestCapabilityRequirements): boolean;