diff --git a/.agents/skills/agent-browser/SKILL.md b/.agents/skills/agent-browser/SKILL.md new file mode 100644 index 00000000..89275797 --- /dev/null +++ b/.agents/skills/agent-browser/SKILL.md @@ -0,0 +1,690 @@ +--- +name: agent-browser +description: Browser automation CLI for AI agents. Use when the user needs to interact with websites, including navigating pages, filling forms, clicking buttons, taking screenshots, extracting data, testing web apps, or automating any browser task. Triggers include requests to "open a website", "fill out a form", "click a button", "take a screenshot", "scrape data from a page", "test this web app", "login to a site", "automate browser actions", or any task requiring programmatic web interaction. +allowed-tools: Bash(npx agent-browser:*), Bash(agent-browser:*) +--- + +# Browser Automation with agent-browser + +The CLI uses Chrome/Chromium via CDP directly. Install via `npm i -g agent-browser`, `brew install agent-browser`, or `cargo install agent-browser`. Run `agent-browser install` to download Chrome. Run `agent-browser upgrade` to update to the latest version. + +## Core Workflow + +Every browser automation follows this pattern: + +1. **Navigate**: `agent-browser open ` +2. **Snapshot**: `agent-browser snapshot -i` (get element refs like `@e1`, `@e2`) +3. **Interact**: Use refs to click, fill, select +4. **Re-snapshot**: After navigation or DOM changes, get fresh refs + +```bash +agent-browser open https://example.com/form +agent-browser snapshot -i +# Output: @e1 [input type="email"], @e2 [input type="password"], @e3 [button] "Submit" + +agent-browser fill @e1 "user@example.com" +agent-browser fill @e2 "password123" +agent-browser click @e3 +agent-browser wait --load networkidle +agent-browser snapshot -i # Check result +``` + +## Command Chaining + +Commands can be chained with `&&` in a single shell invocation. The browser persists between commands via a background daemon, so chaining is safe and more efficient than separate calls. + +```bash +# Chain open + wait + snapshot in one call +agent-browser open https://example.com && agent-browser wait --load networkidle && agent-browser snapshot -i + +# Chain multiple interactions +agent-browser fill @e1 "user@example.com" && agent-browser fill @e2 "password123" && agent-browser click @e3 + +# Navigate and capture +agent-browser open https://example.com && agent-browser wait --load networkidle && agent-browser screenshot page.png +``` + +**When to chain:** Use `&&` when you don't need to read the output of an intermediate command before proceeding (e.g., open + wait + screenshot). Run commands separately when you need to parse the output first (e.g., snapshot to discover refs, then interact using those refs). + +## Handling Authentication + +When automating a site that requires login, choose the approach that fits: + +**Option 1: Import auth from the user's browser (fastest for one-off tasks)** + +```bash +# Connect to the user's running Chrome (they're already logged in) +agent-browser --auto-connect state save ./auth.json +# Use that auth state +agent-browser --state ./auth.json open https://app.example.com/dashboard +``` + +State files contain session tokens in plaintext -- add to `.gitignore` and delete when no longer needed. Set `AGENT_BROWSER_ENCRYPTION_KEY` for encryption at rest. + +**Option 2: Persistent profile (simplest for recurring tasks)** + +```bash +# First run: login manually or via automation +agent-browser --profile ~/.myapp open https://app.example.com/login +# ... fill credentials, submit ... + +# All future runs: already authenticated +agent-browser --profile ~/.myapp open https://app.example.com/dashboard +``` + +**Option 3: Session name (auto-save/restore cookies + localStorage)** + +```bash +agent-browser --session-name myapp open https://app.example.com/login +# ... login flow ... +agent-browser close # State auto-saved + +# Next time: state auto-restored +agent-browser --session-name myapp open https://app.example.com/dashboard +``` + +**Option 4: Auth vault (credentials stored encrypted, login by name)** + +```bash +echo "$PASSWORD" | agent-browser auth save myapp --url https://app.example.com/login --username user --password-stdin +agent-browser auth login myapp +``` + +`auth login` navigates with `load` and then waits for login form selectors to appear before filling/clicking, which is more reliable on delayed SPA login screens. + +**Option 5: State file (manual save/load)** + +```bash +# After logging in: +agent-browser state save ./auth.json +# In a future session: +agent-browser state load ./auth.json +agent-browser open https://app.example.com/dashboard +``` + +See [references/authentication.md](references/authentication.md) for OAuth, 2FA, cookie-based auth, and token refresh patterns. + +## Essential Commands + +```bash +# Navigation +agent-browser open # Navigate (aliases: goto, navigate) +agent-browser close # Close browser + +# Snapshot +agent-browser snapshot -i # Interactive elements with refs (recommended) +agent-browser snapshot -s "#selector" # Scope to CSS selector + +# Interaction (use @refs from snapshot) +agent-browser click @e1 # Click element +agent-browser click @e1 --new-tab # Click and open in new tab +agent-browser fill @e2 "text" # Clear and type text +agent-browser type @e2 "text" # Type without clearing +agent-browser select @e1 "option" # Select dropdown option +agent-browser check @e1 # Check checkbox +agent-browser press Enter # Press key +agent-browser keyboard type "text" # Type at current focus (no selector) +agent-browser keyboard inserttext "text" # Insert without key events +agent-browser scroll down 500 # Scroll page +agent-browser scroll down 500 --selector "div.content" # Scroll within a specific container + +# Get information +agent-browser get text @e1 # Get element text +agent-browser get url # Get current URL +agent-browser get title # Get page title +agent-browser get cdp-url # Get CDP WebSocket URL + +# Wait +agent-browser wait @e1 # Wait for element +agent-browser wait --load networkidle # Wait for network idle +agent-browser wait --url "**/page" # Wait for URL pattern +agent-browser wait 2000 # Wait milliseconds +agent-browser wait --text "Welcome" # Wait for text to appear (substring match) +agent-browser wait --fn "!document.body.innerText.includes('Loading...')" # Wait for text to disappear +agent-browser wait "#spinner" --state hidden # Wait for element to disappear + +# Downloads +agent-browser download @e1 ./file.pdf # Click element to trigger download +agent-browser wait --download ./output.zip # Wait for any download to complete +agent-browser --download-path ./downloads open # Set default download directory + +# Network +agent-browser network requests # Inspect tracked requests +agent-browser network requests --type xhr,fetch # Filter by resource type +agent-browser network requests --method POST # Filter by HTTP method +agent-browser network requests --status 2xx # Filter by status (200, 2xx, 400-499) +agent-browser network request # View full request/response detail +agent-browser network route "**/api/*" --abort # Block matching requests +agent-browser network har start # Start HAR recording +agent-browser network har stop ./capture.har # Stop and save HAR file + +# Viewport & Device Emulation +agent-browser set viewport 1920 1080 # Set viewport size (default: 1280x720) +agent-browser set viewport 1920 1080 2 # 2x retina (same CSS size, higher res screenshots) +agent-browser set device "iPhone 14" # Emulate device (viewport + user agent) + +# Capture +agent-browser screenshot # Screenshot to temp dir +agent-browser screenshot --full # Full page screenshot +agent-browser screenshot --annotate # Annotated screenshot with numbered element labels +agent-browser screenshot --screenshot-dir ./shots # Save to custom directory +agent-browser screenshot --screenshot-format jpeg --screenshot-quality 80 +agent-browser pdf output.pdf # Save as PDF + +# Clipboard +agent-browser clipboard read # Read text from clipboard +agent-browser clipboard write "Hello, World!" # Write text to clipboard +agent-browser clipboard copy # Copy current selection +agent-browser clipboard paste # Paste from clipboard + +# Diff (compare page states) +agent-browser diff snapshot # Compare current vs last snapshot +agent-browser diff snapshot --baseline before.txt # Compare current vs saved file +agent-browser diff screenshot --baseline before.png # Visual pixel diff +agent-browser diff url # Compare two pages +agent-browser diff url --wait-until networkidle # Custom wait strategy +agent-browser diff url --selector "#main" # Scope to element +``` + +## Batch Execution + +Execute multiple commands in a single invocation by piping a JSON array of string arrays to `batch`. This avoids per-command process startup overhead when running multi-step workflows. + +```bash +echo '[ + ["open", "https://example.com"], + ["snapshot", "-i"], + ["click", "@e1"], + ["screenshot", "result.png"] +]' | agent-browser batch --json + +# Stop on first error +agent-browser batch --bail < commands.json +``` + +Use `batch` when you have a known sequence of commands that don't depend on intermediate output. Use separate commands or `&&` chaining when you need to parse output between steps (e.g., snapshot to discover refs, then interact). + +## Common Patterns + +### Form Submission + +```bash +agent-browser open https://example.com/signup +agent-browser snapshot -i +agent-browser fill @e1 "Jane Doe" +agent-browser fill @e2 "jane@example.com" +agent-browser select @e3 "California" +agent-browser check @e4 +agent-browser click @e5 +agent-browser wait --load networkidle +``` + +### Authentication with Auth Vault (Recommended) + +```bash +# Save credentials once (encrypted with AGENT_BROWSER_ENCRYPTION_KEY) +# Recommended: pipe password via stdin to avoid shell history exposure +echo "pass" | agent-browser auth save github --url https://github.com/login --username user --password-stdin + +# Login using saved profile (LLM never sees password) +agent-browser auth login github + +# List/show/delete profiles +agent-browser auth list +agent-browser auth show github +agent-browser auth delete github +``` + +`auth login` waits for username/password/submit selectors before interacting, with a timeout tied to the default action timeout. + +### Authentication with State Persistence + +```bash +# Login once and save state +agent-browser open https://app.example.com/login +agent-browser snapshot -i +agent-browser fill @e1 "$USERNAME" +agent-browser fill @e2 "$PASSWORD" +agent-browser click @e3 +agent-browser wait --url "**/dashboard" +agent-browser state save auth.json + +# Reuse in future sessions +agent-browser state load auth.json +agent-browser open https://app.example.com/dashboard +``` + +### Session Persistence + +```bash +# Auto-save/restore cookies and localStorage across browser restarts +agent-browser --session-name myapp open https://app.example.com/login +# ... login flow ... +agent-browser close # State auto-saved to ~/.agent-browser/sessions/ + +# Next time, state is auto-loaded +agent-browser --session-name myapp open https://app.example.com/dashboard + +# Encrypt state at rest +export AGENT_BROWSER_ENCRYPTION_KEY=$(openssl rand -hex 32) +agent-browser --session-name secure open https://app.example.com + +# Manage saved states +agent-browser state list +agent-browser state show myapp-default.json +agent-browser state clear myapp +agent-browser state clean --older-than 7 +``` + +### Working with Iframes + +Iframe content is automatically inlined in snapshots. Refs inside iframes carry frame context, so you can interact with them directly. + +```bash +agent-browser open https://example.com/checkout +agent-browser snapshot -i +# @e1 [heading] "Checkout" +# @e2 [Iframe] "payment-frame" +# @e3 [input] "Card number" +# @e4 [input] "Expiry" +# @e5 [button] "Pay" + +# Interact directly — no frame switch needed +agent-browser fill @e3 "4111111111111111" +agent-browser fill @e4 "12/28" +agent-browser click @e5 + +# To scope a snapshot to one iframe: +agent-browser frame @e2 +agent-browser snapshot -i # Only iframe content +agent-browser frame main # Return to main frame +``` + +### Data Extraction + +```bash +agent-browser open https://example.com/products +agent-browser snapshot -i +agent-browser get text @e5 # Get specific element text +agent-browser get text body > page.txt # Get all page text + +# JSON output for parsing +agent-browser snapshot -i --json +agent-browser get text @e1 --json +``` + +### Parallel Sessions + +```bash +agent-browser --session site1 open https://site-a.com +agent-browser --session site2 open https://site-b.com + +agent-browser --session site1 snapshot -i +agent-browser --session site2 snapshot -i + +agent-browser session list +``` + +### Connect to Existing Chrome + +```bash +# Auto-discover running Chrome with remote debugging enabled +agent-browser --auto-connect open https://example.com +agent-browser --auto-connect snapshot + +# Or with explicit CDP port +agent-browser --cdp 9222 snapshot +``` + +Auto-connect discovers Chrome via `DevToolsActivePort`, common debugging ports (9222, 9229), and falls back to a direct WebSocket connection if HTTP-based CDP discovery fails. + +### Color Scheme (Dark Mode) + +```bash +# Persistent dark mode via flag (applies to all pages and new tabs) +agent-browser --color-scheme dark open https://example.com + +# Or via environment variable +AGENT_BROWSER_COLOR_SCHEME=dark agent-browser open https://example.com + +# Or set during session (persists for subsequent commands) +agent-browser set media dark +``` + +### Viewport & Responsive Testing + +```bash +# Set a custom viewport size (default is 1280x720) +agent-browser set viewport 1920 1080 +agent-browser screenshot desktop.png + +# Test mobile-width layout +agent-browser set viewport 375 812 +agent-browser screenshot mobile.png + +# Retina/HiDPI: same CSS layout at 2x pixel density +# Screenshots stay at logical viewport size, but content renders at higher DPI +agent-browser set viewport 1920 1080 2 +agent-browser screenshot retina.png + +# Device emulation (sets viewport + user agent in one step) +agent-browser set device "iPhone 14" +agent-browser screenshot device.png +``` + +The `scale` parameter (3rd argument) sets `window.devicePixelRatio` without changing CSS layout. Use it when testing retina rendering or capturing higher-resolution screenshots. + +### Visual Browser (Debugging) + +```bash +agent-browser --headed open https://example.com +agent-browser highlight @e1 # Highlight element +agent-browser inspect # Open Chrome DevTools for the active page +agent-browser record start demo.webm # Record session +agent-browser profiler start # Start Chrome DevTools profiling +agent-browser profiler stop trace.json # Stop and save profile (path optional) +``` + +Use `AGENT_BROWSER_HEADED=1` to enable headed mode via environment variable. Browser extensions work in both headed and headless mode. + +### Local Files (PDFs, HTML) + +```bash +# Open local files with file:// URLs +agent-browser --allow-file-access open file:///path/to/document.pdf +agent-browser --allow-file-access open file:///path/to/page.html +agent-browser screenshot output.png +``` + +### iOS Simulator (Mobile Safari) + +```bash +# List available iOS simulators +agent-browser device list + +# Launch Safari on a specific device +agent-browser -p ios --device "iPhone 16 Pro" open https://example.com + +# Same workflow as desktop - snapshot, interact, re-snapshot +agent-browser -p ios snapshot -i +agent-browser -p ios tap @e1 # Tap (alias for click) +agent-browser -p ios fill @e2 "text" +agent-browser -p ios swipe up # Mobile-specific gesture + +# Take screenshot +agent-browser -p ios screenshot mobile.png + +# Close session (shuts down simulator) +agent-browser -p ios close +``` + +**Requirements:** macOS with Xcode, Appium (`npm install -g appium && appium driver install xcuitest`) + +**Real devices:** Works with physical iOS devices if pre-configured. Use `--device ""` where UDID is from `xcrun xctrace list devices`. + +## Security + +All security features are opt-in. By default, agent-browser imposes no restrictions on navigation, actions, or output. + +### Content Boundaries (Recommended for AI Agents) + +Enable `--content-boundaries` to wrap page-sourced output in markers that help LLMs distinguish tool output from untrusted page content: + +```bash +export AGENT_BROWSER_CONTENT_BOUNDARIES=1 +agent-browser snapshot +# Output: +# --- AGENT_BROWSER_PAGE_CONTENT nonce= origin=https://example.com --- +# [accessibility tree] +# --- END_AGENT_BROWSER_PAGE_CONTENT nonce= --- +``` + +### Domain Allowlist + +Restrict navigation to trusted domains. Wildcards like `*.example.com` also match the bare domain `example.com`. Sub-resource requests, WebSocket, and EventSource connections to non-allowed domains are also blocked. Include CDN domains your target pages depend on: + +```bash +export AGENT_BROWSER_ALLOWED_DOMAINS="example.com,*.example.com" +agent-browser open https://example.com # OK +agent-browser open https://malicious.com # Blocked +``` + +### Action Policy + +Use a policy file to gate destructive actions: + +```bash +export AGENT_BROWSER_ACTION_POLICY=./policy.json +``` + +Example `policy.json`: + +```json +{ "default": "deny", "allow": ["navigate", "snapshot", "click", "scroll", "wait", "get"] } +``` + +Auth vault operations (`auth login`, etc.) bypass action policy but domain allowlist still applies. + +### Output Limits + +Prevent context flooding from large pages: + +```bash +export AGENT_BROWSER_MAX_OUTPUT=50000 +``` + +## Diffing (Verifying Changes) + +Use `diff snapshot` after performing an action to verify it had the intended effect. This compares the current accessibility tree against the last snapshot taken in the session. + +```bash +# Typical workflow: snapshot -> action -> diff +agent-browser snapshot -i # Take baseline snapshot +agent-browser click @e2 # Perform action +agent-browser diff snapshot # See what changed (auto-compares to last snapshot) +``` + +For visual regression testing or monitoring: + +```bash +# Save a baseline screenshot, then compare later +agent-browser screenshot baseline.png +# ... time passes or changes are made ... +agent-browser diff screenshot --baseline baseline.png + +# Compare staging vs production +agent-browser diff url https://staging.example.com https://prod.example.com --screenshot +``` + +`diff snapshot` output uses `+` for additions and `-` for removals, similar to git diff. `diff screenshot` produces a diff image with changed pixels highlighted in red, plus a mismatch percentage. + +## Timeouts and Slow Pages + +The default timeout is 25 seconds. This can be overridden with the `AGENT_BROWSER_DEFAULT_TIMEOUT` environment variable (value in milliseconds). For slow websites or large pages, use explicit waits instead of relying on the default timeout: + +```bash +# Wait for network activity to settle (best for slow pages) +agent-browser wait --load networkidle + +# Wait for a specific element to appear +agent-browser wait "#content" +agent-browser wait @e1 + +# Wait for a specific URL pattern (useful after redirects) +agent-browser wait --url "**/dashboard" + +# Wait for a JavaScript condition +agent-browser wait --fn "document.readyState === 'complete'" + +# Wait a fixed duration (milliseconds) as a last resort +agent-browser wait 5000 +``` + +When dealing with consistently slow websites, use `wait --load networkidle` after `open` to ensure the page is fully loaded before taking a snapshot. If a specific element is slow to render, wait for it directly with `wait ` or `wait @ref`. + +## Session Management and Cleanup + +When running multiple agents or automations concurrently, always use named sessions to avoid conflicts: + +```bash +# Each agent gets its own isolated session +agent-browser --session agent1 open site-a.com +agent-browser --session agent2 open site-b.com + +# Check active sessions +agent-browser session list +``` + +Always close your browser session when done to avoid leaked processes: + +```bash +agent-browser close # Close default session +agent-browser --session agent1 close # Close specific session +``` + +If a previous session was not closed properly, the daemon may still be running. Use `agent-browser close` to clean it up before starting new work. + +To auto-shutdown the daemon after a period of inactivity (useful for ephemeral/CI environments): + +```bash +AGENT_BROWSER_IDLE_TIMEOUT_MS=60000 agent-browser open example.com +``` + +## Ref Lifecycle (Important) + +Refs (`@e1`, `@e2`, etc.) are invalidated when the page changes. Always re-snapshot after: + +- Clicking links or buttons that navigate +- Form submissions +- Dynamic content loading (dropdowns, modals) + +```bash +agent-browser click @e5 # Navigates to new page +agent-browser snapshot -i # MUST re-snapshot +agent-browser click @e1 # Use new refs +``` + +## Annotated Screenshots (Vision Mode) + +Use `--annotate` to take a screenshot with numbered labels overlaid on interactive elements. Each label `[N]` maps to ref `@eN`. This also caches refs, so you can interact with elements immediately without a separate snapshot. + +```bash +agent-browser screenshot --annotate +# Output includes the image path and a legend: +# [1] @e1 button "Submit" +# [2] @e2 link "Home" +# [3] @e3 textbox "Email" +agent-browser click @e2 # Click using ref from annotated screenshot +``` + +Use annotated screenshots when: + +- The page has unlabeled icon buttons or visual-only elements +- You need to verify visual layout or styling +- Canvas or chart elements are present (invisible to text snapshots) +- You need spatial reasoning about element positions + +## Semantic Locators (Alternative to Refs) + +When refs are unavailable or unreliable, use semantic locators: + +```bash +agent-browser find text "Sign In" click +agent-browser find label "Email" fill "user@test.com" +agent-browser find role button click --name "Submit" +agent-browser find placeholder "Search" type "query" +agent-browser find testid "submit-btn" click +``` + +## JavaScript Evaluation (eval) + +Use `eval` to run JavaScript in the browser context. **Shell quoting can corrupt complex expressions** -- use `--stdin` or `-b` to avoid issues. + +```bash +# Simple expressions work with regular quoting +agent-browser eval 'document.title' +agent-browser eval 'document.querySelectorAll("img").length' + +# Complex JS: use --stdin with heredoc (RECOMMENDED) +agent-browser eval --stdin <<'EVALEOF' +JSON.stringify( + Array.from(document.querySelectorAll("img")) + .filter(i => !i.alt) + .map(i => ({ src: i.src.split("/").pop(), width: i.width })) +) +EVALEOF + +# Alternative: base64 encoding (avoids all shell escaping issues) +agent-browser eval -b "$(echo -n 'Array.from(document.querySelectorAll("a")).map(a => a.href)' | base64)" +``` + +**Why this matters:** When the shell processes your command, inner double quotes, `!` characters (history expansion), backticks, and `$()` can all corrupt the JavaScript before it reaches agent-browser. The `--stdin` and `-b` flags bypass shell interpretation entirely. + +**Rules of thumb:** + +- Single-line, no nested quotes -> regular `eval 'expression'` with single quotes is fine +- Nested quotes, arrow functions, template literals, or multiline -> use `eval --stdin <<'EVALEOF'` +- Programmatic/generated scripts -> use `eval -b` with base64 + +## Configuration File + +Create `agent-browser.json` in the project root for persistent settings: + +```json +{ + "headed": true, + "proxy": "http://localhost:8080", + "profile": "./browser-data" +} +``` + +Priority (lowest to highest): `~/.agent-browser/config.json` < `./agent-browser.json` < env vars < CLI flags. Use `--config ` or `AGENT_BROWSER_CONFIG` env var for a custom config file (exits with error if missing/invalid). All CLI options map to camelCase keys (e.g., `--executable-path` -> `"executablePath"`). Boolean flags accept `true`/`false` values (e.g., `--headed false` overrides config). Extensions from user and project configs are merged, not replaced. + +## Deep-Dive Documentation + +| Reference | When to Use | +| -------------------------------------------------------------------- | --------------------------------------------------------- | +| [references/commands.md](references/commands.md) | Full command reference with all options | +| [references/snapshot-refs.md](references/snapshot-refs.md) | Ref lifecycle, invalidation rules, troubleshooting | +| [references/session-management.md](references/session-management.md) | Parallel sessions, state persistence, concurrent scraping | +| [references/authentication.md](references/authentication.md) | Login flows, OAuth, 2FA handling, state reuse | +| [references/video-recording.md](references/video-recording.md) | Recording workflows for debugging and documentation | +| [references/profiling.md](references/profiling.md) | Chrome DevTools profiling for performance analysis | +| [references/proxy-support.md](references/proxy-support.md) | Proxy configuration, geo-testing, rotating proxies | + +## Browser Engine Selection + +Use `--engine` to choose a local browser engine. The default is `chrome`. + +```bash +# Use Lightpanda (fast headless browser, requires separate install) +agent-browser --engine lightpanda open example.com + +# Via environment variable +export AGENT_BROWSER_ENGINE=lightpanda +agent-browser open example.com + +# With custom binary path +agent-browser --engine lightpanda --executable-path /path/to/lightpanda open example.com +``` + +Supported engines: + +- `chrome` (default) -- Chrome/Chromium via CDP +- `lightpanda` -- Lightpanda headless browser via CDP (10x faster, 10x less memory than Chrome) + +Lightpanda does not support `--extension`, `--profile`, `--state`, or `--allow-file-access`. Install Lightpanda from https://lightpanda.io/docs/open-source/installation. + +## Ready-to-Use Templates + +| Template | Description | +| ------------------------------------------------------------------------ | ----------------------------------- | +| [templates/form-automation.sh](templates/form-automation.sh) | Form filling with validation | +| [templates/authenticated-session.sh](templates/authenticated-session.sh) | Login once, reuse state | +| [templates/capture-workflow.sh](templates/capture-workflow.sh) | Content extraction with screenshots | + +```bash +./templates/form-automation.sh https://example.com/form +./templates/authenticated-session.sh https://app.example.com/login +./templates/capture-workflow.sh https://example.com ./output +``` diff --git a/.agents/skills/agent-browser/references/authentication.md b/.agents/skills/agent-browser/references/authentication.md new file mode 100644 index 00000000..d5b86a77 --- /dev/null +++ b/.agents/skills/agent-browser/references/authentication.md @@ -0,0 +1,306 @@ +# Authentication Patterns + +Login flows, session persistence, OAuth, 2FA, and authenticated browsing. + +**Related**: [session-management.md](session-management.md) for state persistence details, [SKILL.md](../SKILL.md) for quick start. + +## Contents + +- [Import Auth from Your Browser](#import-auth-from-your-browser) +- [Persistent Profiles](#persistent-profiles) +- [Session Persistence](#session-persistence) +- [Basic Login Flow](#basic-login-flow) +- [Saving Authentication State](#saving-authentication-state) +- [Restoring Authentication](#restoring-authentication) +- [OAuth / SSO Flows](#oauth--sso-flows) +- [Two-Factor Authentication](#two-factor-authentication) +- [HTTP Basic Auth](#http-basic-auth) +- [Cookie-Based Auth](#cookie-based-auth) +- [Token Refresh Handling](#token-refresh-handling) +- [Security Best Practices](#security-best-practices) + +## Import Auth from Your Browser + +The fastest way to authenticate is to reuse cookies from a Chrome session you are already logged into. + +**Step 1: Start Chrome with remote debugging** + +```bash +# macOS +"/Applications/Google Chrome.app/Contents/MacOS/Google Chrome" --remote-debugging-port=9222 + +# Linux +google-chrome --remote-debugging-port=9222 + +# Windows +"C:\Program Files\Google\Chrome\Application\chrome.exe" --remote-debugging-port=9222 +``` + +Log in to your target site(s) in this Chrome window as you normally would. + +> **Security note:** `--remote-debugging-port` exposes full browser control on localhost. Any local process can connect and read cookies, execute JS, etc. Only use on trusted machines and close Chrome when done. + +**Step 2: Grab the auth state** + +```bash +# Auto-discover the running Chrome and save its cookies + localStorage +agent-browser --auto-connect state save ./my-auth.json +``` + +**Step 3: Reuse in automation** + +```bash +# Load auth at launch +agent-browser --state ./my-auth.json open https://app.example.com/dashboard + +# Or load into an existing session +agent-browser state load ./my-auth.json +agent-browser open https://app.example.com/dashboard +``` + +This works for any site, including those with complex OAuth flows, SSO, or 2FA -- as long as Chrome already has valid session cookies. + +> **Security note:** State files contain session tokens in plaintext. Add them to `.gitignore`, delete when no longer needed, and set `AGENT_BROWSER_ENCRYPTION_KEY` for encryption at rest. See [Security Best Practices](#security-best-practices). + +**Tip:** Combine with `--session-name` so the imported auth auto-persists across restarts: + +```bash +agent-browser --session-name myapp state load ./my-auth.json +# From now on, state is auto-saved/restored for "myapp" +``` + +## Persistent Profiles + +Use `--profile` to point agent-browser at a Chrome user data directory. This persists everything (cookies, IndexedDB, service workers, cache) across browser restarts without explicit save/load: + +```bash +# First run: login once +agent-browser --profile ~/.myapp-profile open https://app.example.com/login +# ... complete login flow ... + +# All subsequent runs: already authenticated +agent-browser --profile ~/.myapp-profile open https://app.example.com/dashboard +``` + +Use different paths for different projects or test users: + +```bash +agent-browser --profile ~/.profiles/admin open https://app.example.com +agent-browser --profile ~/.profiles/viewer open https://app.example.com +``` + +Or set via environment variable: + +```bash +export AGENT_BROWSER_PROFILE=~/.myapp-profile +agent-browser open https://app.example.com/dashboard +``` + +## Session Persistence + +Use `--session-name` to auto-save and restore cookies + localStorage by name, without managing files: + +```bash +# Auto-saves state on close, auto-restores on next launch +agent-browser --session-name twitter open https://twitter.com +# ... login flow ... +agent-browser close # state saved to ~/.agent-browser/sessions/ + +# Next time: state is automatically restored +agent-browser --session-name twitter open https://twitter.com +``` + +Encrypt state at rest: + +```bash +export AGENT_BROWSER_ENCRYPTION_KEY=$(openssl rand -hex 32) +agent-browser --session-name secure open https://app.example.com +``` + +## Basic Login Flow + +```bash +# Navigate to login page +agent-browser open https://app.example.com/login +agent-browser wait --load networkidle + +# Get form elements +agent-browser snapshot -i +# Output: @e1 [input type="email"], @e2 [input type="password"], @e3 [button] "Sign In" + +# Fill credentials +agent-browser fill @e1 "user@example.com" +agent-browser fill @e2 "password123" + +# Submit +agent-browser click @e3 +agent-browser wait --load networkidle + +# Verify login succeeded +agent-browser get url # Should be dashboard, not login +``` + +## Saving Authentication State + +After logging in, save state for reuse: + +```bash +# Login first (see above) +agent-browser open https://app.example.com/login +agent-browser snapshot -i +agent-browser fill @e1 "user@example.com" +agent-browser fill @e2 "password123" +agent-browser click @e3 +agent-browser wait --url "**/dashboard" + +# Save authenticated state +agent-browser state save ./auth-state.json +``` + +## Restoring Authentication + +Skip login by loading saved state: + +```bash +# Load saved auth state +agent-browser state load ./auth-state.json + +# Navigate directly to protected page +agent-browser open https://app.example.com/dashboard + +# Verify authenticated +agent-browser snapshot -i +``` + +## OAuth / SSO Flows + +For OAuth redirects: + +```bash +# Start OAuth flow +agent-browser open https://app.example.com/auth/google + +# Handle redirects automatically +agent-browser wait --url "**/accounts.google.com**" +agent-browser snapshot -i + +# Fill Google credentials +agent-browser fill @e1 "user@gmail.com" +agent-browser click @e2 # Next button +agent-browser wait 2000 +agent-browser snapshot -i +agent-browser fill @e3 "password" +agent-browser click @e4 # Sign in + +# Wait for redirect back +agent-browser wait --url "**/app.example.com**" +agent-browser state save ./oauth-state.json +``` + +## Two-Factor Authentication + +Handle 2FA with manual intervention: + +```bash +# Login with credentials +agent-browser open https://app.example.com/login --headed # Show browser +agent-browser snapshot -i +agent-browser fill @e1 "user@example.com" +agent-browser fill @e2 "password123" +agent-browser click @e3 + +# Wait for user to complete 2FA manually +echo "Complete 2FA in the browser window..." +agent-browser wait --url "**/dashboard" --timeout 120000 + +# Save state after 2FA +agent-browser state save ./2fa-state.json +``` + +## HTTP Basic Auth + +For sites using HTTP Basic Authentication: + +```bash +# Set credentials before navigation +agent-browser set credentials username password + +# Navigate to protected resource +agent-browser open https://protected.example.com/api +``` + +## Cookie-Based Auth + +Manually set authentication cookies: + +```bash +# Set auth cookie +agent-browser cookies set session_token "abc123xyz" + +# Navigate to protected page +agent-browser open https://app.example.com/dashboard +``` + +## Token Refresh Handling + +For sessions with expiring tokens: + +```bash +#!/bin/bash +# Wrapper that handles token refresh + +STATE_FILE="./auth-state.json" + +# Try loading existing state +if [[ -f "$STATE_FILE" ]]; then + agent-browser state load "$STATE_FILE" + agent-browser open https://app.example.com/dashboard + + # Check if session is still valid + URL=$(agent-browser get url) + if [[ "$URL" == *"/login"* ]]; then + echo "Session expired, re-authenticating..." + # Perform fresh login + agent-browser snapshot -i + agent-browser fill @e1 "$USERNAME" + agent-browser fill @e2 "$PASSWORD" + agent-browser click @e3 + agent-browser wait --url "**/dashboard" + agent-browser state save "$STATE_FILE" + fi +else + # First-time login + agent-browser open https://app.example.com/login + # ... login flow ... +fi +``` + +## Security Best Practices + +1. **Never commit state files** - They contain session tokens + + ```bash + echo "*.auth-state.json" >> .gitignore + ``` + +2. **Use environment variables for credentials** + + ```bash + agent-browser fill @e1 "$APP_USERNAME" + agent-browser fill @e2 "$APP_PASSWORD" + ``` + +3. **Clean up after automation** + + ```bash + agent-browser cookies clear + rm -f ./auth-state.json + ``` + +4. **Use short-lived sessions for CI/CD** + ```bash + # Don't persist state in CI + agent-browser open https://app.example.com/login + # ... login and perform actions ... + agent-browser close # Session ends, nothing persisted + ``` diff --git a/.agents/skills/agent-browser/references/commands.md b/.agents/skills/agent-browser/references/commands.md new file mode 100644 index 00000000..198f3152 --- /dev/null +++ b/.agents/skills/agent-browser/references/commands.md @@ -0,0 +1,293 @@ +# Command Reference + +Complete reference for all agent-browser commands. For quick start and common patterns, see SKILL.md. + +## Navigation + +```bash +agent-browser open # Navigate to URL (aliases: goto, navigate) + # Supports: https://, http://, file://, about:, data:// + # Auto-prepends https:// if no protocol given +agent-browser back # Go back +agent-browser forward # Go forward +agent-browser reload # Reload page +agent-browser close # Close browser (aliases: quit, exit) +agent-browser connect 9222 # Connect to browser via CDP port +``` + +## Snapshot (page analysis) + +```bash +agent-browser snapshot # Full accessibility tree +agent-browser snapshot -i # Interactive elements only (recommended) +agent-browser snapshot -c # Compact output +agent-browser snapshot -d 3 # Limit depth to 3 +agent-browser snapshot -s "#main" # Scope to CSS selector +``` + +## Interactions (use @refs from snapshot) + +```bash +agent-browser click @e1 # Click +agent-browser click @e1 --new-tab # Click and open in new tab +agent-browser dblclick @e1 # Double-click +agent-browser focus @e1 # Focus element +agent-browser fill @e2 "text" # Clear and type +agent-browser type @e2 "text" # Type without clearing +agent-browser press Enter # Press key (alias: key) +agent-browser press Control+a # Key combination +agent-browser keydown Shift # Hold key down +agent-browser keyup Shift # Release key +agent-browser hover @e1 # Hover +agent-browser check @e1 # Check checkbox +agent-browser uncheck @e1 # Uncheck checkbox +agent-browser select @e1 "value" # Select dropdown option +agent-browser select @e1 "a" "b" # Select multiple options +agent-browser scroll down 500 # Scroll page (default: down 300px) +agent-browser scrollintoview @e1 # Scroll element into view (alias: scrollinto) +agent-browser drag @e1 @e2 # Drag and drop +agent-browser upload @e1 file.pdf # Upload files +``` + +## Get Information + +```bash +agent-browser get text @e1 # Get element text +agent-browser get html @e1 # Get innerHTML +agent-browser get value @e1 # Get input value +agent-browser get attr @e1 href # Get attribute +agent-browser get title # Get page title +agent-browser get url # Get current URL +agent-browser get cdp-url # Get CDP WebSocket URL +agent-browser get count ".item" # Count matching elements +agent-browser get box @e1 # Get bounding box +agent-browser get styles @e1 # Get computed styles (font, color, bg, etc.) +``` + +## Check State + +```bash +agent-browser is visible @e1 # Check if visible +agent-browser is enabled @e1 # Check if enabled +agent-browser is checked @e1 # Check if checked +``` + +## Screenshots and PDF + +```bash +agent-browser screenshot # Save to temporary directory +agent-browser screenshot path.png # Save to specific path +agent-browser screenshot --full # Full page +agent-browser pdf output.pdf # Save as PDF +``` + +## Video Recording + +```bash +agent-browser record start ./demo.webm # Start recording +agent-browser click @e1 # Perform actions +agent-browser record stop # Stop and save video +agent-browser record restart ./take2.webm # Stop current + start new +``` + +## Wait + +```bash +agent-browser wait @e1 # Wait for element +agent-browser wait 2000 # Wait milliseconds +agent-browser wait --text "Success" # Wait for text (or -t) +agent-browser wait --url "**/dashboard" # Wait for URL pattern (or -u) +agent-browser wait --load networkidle # Wait for network idle (or -l) +agent-browser wait --fn "window.ready" # Wait for JS condition (or -f) +``` + +## Mouse Control + +```bash +agent-browser mouse move 100 200 # Move mouse +agent-browser mouse down left # Press button +agent-browser mouse up left # Release button +agent-browser mouse wheel 100 # Scroll wheel +``` + +## Semantic Locators (alternative to refs) + +```bash +agent-browser find role button click --name "Submit" +agent-browser find text "Sign In" click +agent-browser find text "Sign In" click --exact # Exact match only +agent-browser find label "Email" fill "user@test.com" +agent-browser find placeholder "Search" type "query" +agent-browser find alt "Logo" click +agent-browser find title "Close" click +agent-browser find testid "submit-btn" click +agent-browser find first ".item" click +agent-browser find last ".item" click +agent-browser find nth 2 "a" hover +``` + +## Browser Settings + +```bash +agent-browser set viewport 1920 1080 # Set viewport size +agent-browser set viewport 1920 1080 2 # 2x retina (same CSS size, higher res screenshots) +agent-browser set device "iPhone 14" # Emulate device +agent-browser set geo 37.7749 -122.4194 # Set geolocation (alias: geolocation) +agent-browser set offline on # Toggle offline mode +agent-browser set headers '{"X-Key":"v"}' # Extra HTTP headers +agent-browser set credentials user pass # HTTP basic auth (alias: auth) +agent-browser set media dark # Emulate color scheme +agent-browser set media light reduced-motion # Light mode + reduced motion +``` + +## Cookies and Storage + +```bash +agent-browser cookies # Get all cookies +agent-browser cookies set name value # Set cookie +agent-browser cookies clear # Clear cookies +agent-browser storage local # Get all localStorage +agent-browser storage local key # Get specific key +agent-browser storage local set k v # Set value +agent-browser storage local clear # Clear all +``` + +## Network + +```bash +agent-browser network route # Intercept requests +agent-browser network route --abort # Block requests +agent-browser network route --body '{}' # Mock response +agent-browser network unroute [url] # Remove routes +agent-browser network requests # View tracked requests +agent-browser network requests --filter api # Filter requests +``` + +## Tabs and Windows + +```bash +agent-browser tab # List tabs +agent-browser tab new [url] # New tab +agent-browser tab 2 # Switch to tab by index +agent-browser tab close # Close current tab +agent-browser tab close 2 # Close tab by index +agent-browser window new # New window +``` + +## Frames + +```bash +agent-browser frame "#iframe" # Switch to iframe by CSS selector +agent-browser frame @e3 # Switch to iframe by element ref +agent-browser frame main # Back to main frame +``` + +### Iframe support + +Iframes are detected automatically during snapshots. When the main-frame snapshot runs, `Iframe` nodes are resolved and their content is inlined beneath the iframe element in the output (one level of nesting; iframes within iframes are not expanded). + +```bash +agent-browser snapshot -i +# @e3 [Iframe] "payment-frame" +# @e4 [input] "Card number" +# @e5 [button] "Pay" + +# Interact directly — refs inside iframes already work +agent-browser fill @e4 "4111111111111111" +agent-browser click @e5 + +# Or switch frame context for scoped snapshots +agent-browser frame @e3 # Switch using element ref +agent-browser snapshot -i # Snapshot scoped to that iframe +agent-browser frame main # Return to main frame +``` + +The `frame` command accepts: + +- **Element refs** — `frame @e3` resolves the ref to an iframe element +- **CSS selectors** — `frame "#payment-iframe"` finds the iframe by selector +- **Frame name/URL** — matches against the browser's frame tree + +## Dialogs + +```bash +agent-browser dialog accept [text] # Accept dialog +agent-browser dialog dismiss # Dismiss dialog +``` + +## JavaScript + +```bash +agent-browser eval "document.title" # Simple expressions only +agent-browser eval -b "" # Any JavaScript (base64 encoded) +agent-browser eval --stdin # Read script from stdin +``` + +Use `-b`/`--base64` or `--stdin` for reliable execution. Shell escaping with nested quotes and special characters is error-prone. + +```bash +# Base64 encode your script, then: +agent-browser eval -b "ZG9jdW1lbnQucXVlcnlTZWxlY3RvcignW3NyYyo9Il9uZXh0Il0nKQ==" + +# Or use stdin with heredoc for multiline scripts: +cat <<'EOF' | agent-browser eval --stdin +const links = document.querySelectorAll('a'); +Array.from(links).map(a => a.href); +EOF +``` + +## State Management + +```bash +agent-browser state save auth.json # Save cookies, storage, auth state +agent-browser state load auth.json # Restore saved state +``` + +## Global Options + +```bash +agent-browser --session ... # Isolated browser session +agent-browser --json ... # JSON output for parsing +agent-browser --headed ... # Show browser window (not headless) +agent-browser --full ... # Full page screenshot (-f) +agent-browser --cdp ... # Connect via Chrome DevTools Protocol +agent-browser -p ... # Cloud browser provider (--provider) +agent-browser --proxy ... # Use proxy server +agent-browser --proxy-bypass # Hosts to bypass proxy +agent-browser --headers ... # HTTP headers scoped to URL's origin +agent-browser --executable-path

# Custom browser executable +agent-browser --extension ... # Load browser extension (repeatable) +agent-browser --ignore-https-errors # Ignore SSL certificate errors +agent-browser --help # Show help (-h) +agent-browser --version # Show version (-V) +agent-browser --help # Show detailed help for a command +``` + +## Debugging + +```bash +agent-browser --headed open example.com # Show browser window +agent-browser --cdp 9222 snapshot # Connect via CDP port +agent-browser connect 9222 # Alternative: connect command +agent-browser console # View console messages +agent-browser console --clear # Clear console +agent-browser errors # View page errors +agent-browser errors --clear # Clear errors +agent-browser highlight @e1 # Highlight element +agent-browser inspect # Open Chrome DevTools for this session +agent-browser trace start # Start recording trace +agent-browser trace stop trace.zip # Stop and save trace +agent-browser profiler start # Start Chrome DevTools profiling +agent-browser profiler stop trace.json # Stop and save profile +``` + +## Environment Variables + +```bash +AGENT_BROWSER_SESSION="mysession" # Default session name +AGENT_BROWSER_EXECUTABLE_PATH="/path/chrome" # Custom browser path +AGENT_BROWSER_EXTENSIONS="/ext1,/ext2" # Comma-separated extension paths +AGENT_BROWSER_PROVIDER="browserbase" # Cloud browser provider +AGENT_BROWSER_STREAM_PORT="9223" # WebSocket streaming port +AGENT_BROWSER_HOME="/path/to/agent-browser" # Custom install location +``` diff --git a/.agents/skills/agent-browser/references/profiling.md b/.agents/skills/agent-browser/references/profiling.md new file mode 100644 index 00000000..bd47eaa0 --- /dev/null +++ b/.agents/skills/agent-browser/references/profiling.md @@ -0,0 +1,120 @@ +# Profiling + +Capture Chrome DevTools performance profiles during browser automation for performance analysis. + +**Related**: [commands.md](commands.md) for full command reference, [SKILL.md](../SKILL.md) for quick start. + +## Contents + +- [Basic Profiling](#basic-profiling) +- [Profiler Commands](#profiler-commands) +- [Categories](#categories) +- [Use Cases](#use-cases) +- [Output Format](#output-format) +- [Viewing Profiles](#viewing-profiles) +- [Limitations](#limitations) + +## Basic Profiling + +```bash +# Start profiling +agent-browser profiler start + +# Perform actions +agent-browser navigate https://example.com +agent-browser click "#button" +agent-browser wait 1000 + +# Stop and save +agent-browser profiler stop ./trace.json +``` + +## Profiler Commands + +```bash +# Start profiling with default categories +agent-browser profiler start + +# Start with custom trace categories +agent-browser profiler start --categories "devtools.timeline,v8.execute,blink.user_timing" + +# Stop profiling and save to file +agent-browser profiler stop ./trace.json +``` + +## Categories + +The `--categories` flag accepts a comma-separated list of Chrome trace categories. Default categories include: + +- `devtools.timeline` -- standard DevTools performance traces +- `v8.execute` -- time spent running JavaScript +- `blink` -- renderer events +- `blink.user_timing` -- `performance.mark()` / `performance.measure()` calls +- `latencyInfo` -- input-to-latency tracking +- `renderer.scheduler` -- task scheduling and execution +- `toplevel` -- broad-spectrum basic events + +Several `disabled-by-default-*` categories are also included for detailed timeline, call stack, and V8 CPU profiling data. + +## Use Cases + +### Diagnosing Slow Page Loads + +```bash +agent-browser profiler start +agent-browser navigate https://app.example.com +agent-browser wait --load networkidle +agent-browser profiler stop ./page-load-profile.json +``` + +### Profiling User Interactions + +```bash +agent-browser navigate https://app.example.com +agent-browser profiler start +agent-browser click "#submit" +agent-browser wait 2000 +agent-browser profiler stop ./interaction-profile.json +``` + +### CI Performance Regression Checks + +```bash +#!/bin/bash +agent-browser profiler start +agent-browser navigate https://app.example.com +agent-browser wait --load networkidle +agent-browser profiler stop "./profiles/build-${BUILD_ID}.json" +``` + +## Output Format + +The output is a JSON file in Chrome Trace Event format: + +```json +{ + "traceEvents": [ + { "cat": "devtools.timeline", "name": "RunTask", "ph": "X", "ts": 12345, "dur": 100, ... }, + ... + ], + "metadata": { + "clock-domain": "LINUX_CLOCK_MONOTONIC" + } +} +``` + +The `metadata.clock-domain` field is set based on the host platform (Linux or macOS). On Windows it is omitted. + +## Viewing Profiles + +Load the output JSON file in any of these tools: + +- **Chrome DevTools**: Performance panel > Load profile (Ctrl+Shift+I > Performance) +- **Perfetto UI**: https://ui.perfetto.dev/ -- drag and drop the JSON file +- **Trace Viewer**: `chrome://tracing` in any Chromium browser + +## Limitations + +- Only works with Chromium-based browsers (Chrome, Edge). Not supported on Firefox or WebKit. +- Trace data accumulates in memory while profiling is active (capped at 5 million events). Stop profiling promptly after the area of interest. +- Data collection on stop has a 30-second timeout. If the browser is unresponsive, the stop command may fail. diff --git a/.agents/skills/agent-browser/references/proxy-support.md b/.agents/skills/agent-browser/references/proxy-support.md new file mode 100644 index 00000000..e86a8fe3 --- /dev/null +++ b/.agents/skills/agent-browser/references/proxy-support.md @@ -0,0 +1,194 @@ +# Proxy Support + +Proxy configuration for geo-testing, rate limiting avoidance, and corporate environments. + +**Related**: [commands.md](commands.md) for global options, [SKILL.md](../SKILL.md) for quick start. + +## Contents + +- [Basic Proxy Configuration](#basic-proxy-configuration) +- [Authenticated Proxy](#authenticated-proxy) +- [SOCKS Proxy](#socks-proxy) +- [Proxy Bypass](#proxy-bypass) +- [Common Use Cases](#common-use-cases) +- [Verifying Proxy Connection](#verifying-proxy-connection) +- [Troubleshooting](#troubleshooting) +- [Best Practices](#best-practices) + +## Basic Proxy Configuration + +Use the `--proxy` flag or set proxy via environment variable: + +```bash +# Via CLI flag +agent-browser --proxy "http://proxy.example.com:8080" open https://example.com + +# Via environment variable +export HTTP_PROXY="http://proxy.example.com:8080" +agent-browser open https://example.com + +# HTTPS proxy +export HTTPS_PROXY="https://proxy.example.com:8080" +agent-browser open https://example.com + +# Both +export HTTP_PROXY="http://proxy.example.com:8080" +export HTTPS_PROXY="http://proxy.example.com:8080" +agent-browser open https://example.com +``` + +## Authenticated Proxy + +For proxies requiring authentication: + +```bash +# Include credentials in URL +export HTTP_PROXY="http://username:password@proxy.example.com:8080" +agent-browser open https://example.com +``` + +## SOCKS Proxy + +```bash +# SOCKS5 proxy +export ALL_PROXY="socks5://proxy.example.com:1080" +agent-browser open https://example.com + +# SOCKS5 with auth +export ALL_PROXY="socks5://user:pass@proxy.example.com:1080" +agent-browser open https://example.com +``` + +## Proxy Bypass + +Skip proxy for specific domains using `--proxy-bypass` or `NO_PROXY`: + +```bash +# Via CLI flag +agent-browser --proxy "http://proxy.example.com:8080" --proxy-bypass "localhost,*.internal.com" open https://example.com + +# Via environment variable +export NO_PROXY="localhost,127.0.0.1,.internal.company.com" +agent-browser open https://internal.company.com # Direct connection +agent-browser open https://external.com # Via proxy +``` + +## Common Use Cases + +### Geo-Location Testing + +```bash +#!/bin/bash +# Test site from different regions using geo-located proxies + +PROXIES=( + "http://us-proxy.example.com:8080" + "http://eu-proxy.example.com:8080" + "http://asia-proxy.example.com:8080" +) + +for proxy in "${PROXIES[@]}"; do + export HTTP_PROXY="$proxy" + export HTTPS_PROXY="$proxy" + + region=$(echo "$proxy" | grep -oP '^\w+-\w+') + echo "Testing from: $region" + + agent-browser --session "$region" open https://example.com + agent-browser --session "$region" screenshot "./screenshots/$region.png" + agent-browser --session "$region" close +done +``` + +### Rotating Proxies for Scraping + +```bash +#!/bin/bash +# Rotate through proxy list to avoid rate limiting + +PROXY_LIST=( + "http://proxy1.example.com:8080" + "http://proxy2.example.com:8080" + "http://proxy3.example.com:8080" +) + +URLS=( + "https://site.com/page1" + "https://site.com/page2" + "https://site.com/page3" +) + +for i in "${!URLS[@]}"; do + proxy_index=$((i % ${#PROXY_LIST[@]})) + export HTTP_PROXY="${PROXY_LIST[$proxy_index]}" + export HTTPS_PROXY="${PROXY_LIST[$proxy_index]}" + + agent-browser open "${URLS[$i]}" + agent-browser get text body > "output-$i.txt" + agent-browser close + + sleep 1 # Polite delay +done +``` + +### Corporate Network Access + +```bash +#!/bin/bash +# Access internal sites via corporate proxy + +export HTTP_PROXY="http://corpproxy.company.com:8080" +export HTTPS_PROXY="http://corpproxy.company.com:8080" +export NO_PROXY="localhost,127.0.0.1,.company.com" + +# External sites go through proxy +agent-browser open https://external-vendor.com + +# Internal sites bypass proxy +agent-browser open https://intranet.company.com +``` + +## Verifying Proxy Connection + +```bash +# Check your apparent IP +agent-browser open https://httpbin.org/ip +agent-browser get text body +# Should show proxy's IP, not your real IP +``` + +## Troubleshooting + +### Proxy Connection Failed + +```bash +# Test proxy connectivity first +curl -x http://proxy.example.com:8080 https://httpbin.org/ip + +# Check if proxy requires auth +export HTTP_PROXY="http://user:pass@proxy.example.com:8080" +``` + +### SSL/TLS Errors Through Proxy + +Some proxies perform SSL inspection. If you encounter certificate errors: + +```bash +# For testing only - not recommended for production +agent-browser open https://example.com --ignore-https-errors +``` + +### Slow Performance + +```bash +# Use proxy only when necessary +export NO_PROXY="*.cdn.com,*.static.com" # Direct CDN access +``` + +## Best Practices + +1. **Use environment variables** - Don't hardcode proxy credentials +2. **Set NO_PROXY appropriately** - Avoid routing local traffic through proxy +3. **Test proxy before automation** - Verify connectivity with simple requests +4. **Handle proxy failures gracefully** - Implement retry logic for unstable proxies +5. **Rotate proxies for large scraping jobs** - Distribute load and avoid bans diff --git a/.agents/skills/agent-browser/references/session-management.md b/.agents/skills/agent-browser/references/session-management.md new file mode 100644 index 00000000..0297e9db --- /dev/null +++ b/.agents/skills/agent-browser/references/session-management.md @@ -0,0 +1,194 @@ +# Session Management + +Multiple isolated browser sessions with state persistence and concurrent browsing. + +**Related**: [authentication.md](authentication.md) for login patterns, [SKILL.md](../SKILL.md) for quick start. + +## Contents + +- [Named Sessions](#named-sessions) +- [Session Isolation Properties](#session-isolation-properties) +- [Session State Persistence](#session-state-persistence) +- [Common Patterns](#common-patterns) +- [Default Session](#default-session) +- [Session Cleanup](#session-cleanup) +- [Best Practices](#best-practices) + +## Named Sessions + +Use `--session` flag to isolate browser contexts: + +```bash +# Session 1: Authentication flow +agent-browser --session auth open https://app.example.com/login + +# Session 2: Public browsing (separate cookies, storage) +agent-browser --session public open https://example.com + +# Commands are isolated by session +agent-browser --session auth fill @e1 "user@example.com" +agent-browser --session public get text body +``` + +## Session Isolation Properties + +Each session has independent: + +- Cookies +- LocalStorage / SessionStorage +- IndexedDB +- Cache +- Browsing history +- Open tabs + +## Session State Persistence + +### Save Session State + +```bash +# Save cookies, storage, and auth state +agent-browser state save /path/to/auth-state.json +``` + +### Load Session State + +```bash +# Restore saved state +agent-browser state load /path/to/auth-state.json + +# Continue with authenticated session +agent-browser open https://app.example.com/dashboard +``` + +### State File Contents + +```json +{ + "cookies": [...], + "localStorage": {...}, + "sessionStorage": {...}, + "origins": [...] +} +``` + +## Common Patterns + +### Authenticated Session Reuse + +```bash +#!/bin/bash +# Save login state once, reuse many times + +STATE_FILE="/tmp/auth-state.json" + +# Check if we have saved state +if [[ -f "$STATE_FILE" ]]; then + agent-browser state load "$STATE_FILE" + agent-browser open https://app.example.com/dashboard +else + # Perform login + agent-browser open https://app.example.com/login + agent-browser snapshot -i + agent-browser fill @e1 "$USERNAME" + agent-browser fill @e2 "$PASSWORD" + agent-browser click @e3 + agent-browser wait --load networkidle + + # Save for future use + agent-browser state save "$STATE_FILE" +fi +``` + +### Concurrent Scraping + +```bash +#!/bin/bash +# Scrape multiple sites concurrently + +# Start all sessions +agent-browser --session site1 open https://site1.com & +agent-browser --session site2 open https://site2.com & +agent-browser --session site3 open https://site3.com & +wait + +# Extract from each +agent-browser --session site1 get text body > site1.txt +agent-browser --session site2 get text body > site2.txt +agent-browser --session site3 get text body > site3.txt + +# Cleanup +agent-browser --session site1 close +agent-browser --session site2 close +agent-browser --session site3 close +``` + +### A/B Testing Sessions + +```bash +# Test different user experiences +agent-browser --session variant-a open "https://app.com?variant=a" +agent-browser --session variant-b open "https://app.com?variant=b" + +# Compare +agent-browser --session variant-a screenshot /tmp/variant-a.png +agent-browser --session variant-b screenshot /tmp/variant-b.png +``` + +## Default Session + +When `--session` is omitted, commands use the default session: + +```bash +# These use the same default session +agent-browser open https://example.com +agent-browser snapshot -i +agent-browser close # Closes default session +``` + +## Session Cleanup + +```bash +# Close specific session +agent-browser --session auth close + +# List active sessions +agent-browser session list +``` + +## Best Practices + +### 1. Name Sessions Semantically + +```bash +# GOOD: Clear purpose +agent-browser --session github-auth open https://github.com +agent-browser --session docs-scrape open https://docs.example.com + +# AVOID: Generic names +agent-browser --session s1 open https://github.com +``` + +### 2. Always Clean Up + +```bash +# Close sessions when done +agent-browser --session auth close +agent-browser --session scrape close +``` + +### 3. Handle State Files Securely + +```bash +# Don't commit state files (contain auth tokens!) +echo "*.auth-state.json" >> .gitignore + +# Delete after use +rm /tmp/auth-state.json +``` + +### 4. Timeout Long Sessions + +```bash +# Set timeout for automated scripts +timeout 60 agent-browser --session long-task get text body +``` diff --git a/.agents/skills/agent-browser/references/snapshot-refs.md b/.agents/skills/agent-browser/references/snapshot-refs.md new file mode 100644 index 00000000..e3929ea7 --- /dev/null +++ b/.agents/skills/agent-browser/references/snapshot-refs.md @@ -0,0 +1,222 @@ +# Snapshot and Refs + +Compact element references that reduce context usage dramatically for AI agents. + +**Related**: [commands.md](commands.md) for full command reference, [SKILL.md](../SKILL.md) for quick start. + +## Contents + +- [How Refs Work](#how-refs-work) +- [Snapshot Command](#the-snapshot-command) +- [Using Refs](#using-refs) +- [Ref Lifecycle](#ref-lifecycle) +- [Best Practices](#best-practices) +- [Ref Notation Details](#ref-notation-details) +- [Troubleshooting](#troubleshooting) + +## How Refs Work + +Traditional approach: + +``` +Full DOM/HTML → AI parses → CSS selector → Action (~3000-5000 tokens) +``` + +agent-browser approach: + +``` +Compact snapshot → @refs assigned → Direct interaction (~200-400 tokens) +``` + +## The Snapshot Command + +```bash +# Basic snapshot (shows page structure) +agent-browser snapshot + +# Interactive snapshot (-i flag) - RECOMMENDED +agent-browser snapshot -i +``` + +### Snapshot Output Format + +``` +Page: Example Site - Home +URL: https://example.com + +@e1 [header] + @e2 [nav] + @e3 [a] "Home" + @e4 [a] "Products" + @e5 [a] "About" + @e6 [button] "Sign In" + +@e7 [main] + @e8 [h1] "Welcome" + @e9 [form] + @e10 [input type="email"] placeholder="Email" + @e11 [input type="password"] placeholder="Password" + @e12 [button type="submit"] "Log In" + +@e13 [footer] + @e14 [a] "Privacy Policy" +``` + +## Using Refs + +Once you have refs, interact directly: + +```bash +# Click the "Sign In" button +agent-browser click @e6 + +# Fill email input +agent-browser fill @e10 "user@example.com" + +# Fill password +agent-browser fill @e11 "password123" + +# Submit the form +agent-browser click @e12 +``` + +## Ref Lifecycle + +**IMPORTANT**: Refs are invalidated when the page changes! + +```bash +# Get initial snapshot +agent-browser snapshot -i +# @e1 [button] "Next" + +# Click triggers page change +agent-browser click @e1 + +# MUST re-snapshot to get new refs! +agent-browser snapshot -i +# @e1 [h1] "Page 2" ← Different element now! +``` + +## Best Practices + +### 1. Always Snapshot Before Interacting + +```bash +# CORRECT +agent-browser open https://example.com +agent-browser snapshot -i # Get refs first +agent-browser click @e1 # Use ref + +# WRONG +agent-browser open https://example.com +agent-browser click @e1 # Ref doesn't exist yet! +``` + +### 2. Re-Snapshot After Navigation + +```bash +agent-browser click @e5 # Navigates to new page +agent-browser snapshot -i # Get new refs +agent-browser click @e1 # Use new refs +``` + +### 3. Re-Snapshot After Dynamic Changes + +```bash +agent-browser click @e1 # Opens dropdown +agent-browser snapshot -i # See dropdown items +agent-browser click @e7 # Select item +``` + +### 4. Snapshot Specific Regions + +For complex pages, snapshot specific areas: + +```bash +# Snapshot just the form +agent-browser snapshot @e9 +``` + +## Ref Notation Details + +``` +@e1 [tag type="value"] "text content" placeholder="hint" +│ │ │ │ │ +│ │ │ │ └─ Additional attributes +│ │ │ └─ Visible text +│ │ └─ Key attributes shown +│ └─ HTML tag name +└─ Unique ref ID +``` + +### Common Patterns + +``` +@e1 [button] "Submit" # Button with text +@e2 [input type="email"] # Email input +@e3 [input type="password"] # Password input +@e4 [a href="/page"] "Link Text" # Anchor link +@e5 [select] # Dropdown +@e6 [textarea] placeholder="Message" # Text area +@e7 [div class="modal"] # Container (when relevant) +@e8 [img alt="Logo"] # Image +@e9 [checkbox] checked # Checked checkbox +@e10 [radio] selected # Selected radio +``` + +## Iframes + +Snapshots automatically detect and inline iframe content. When the main-frame snapshot runs, each `Iframe` node is resolved and its child accessibility tree is included directly beneath it in the output. Refs assigned to elements inside iframes carry frame context, so interactions like `click`, `fill`, and `type` work without manually switching frames. + +```bash +agent-browser snapshot -i +# @e1 [heading] "Checkout" +# @e2 [Iframe] "payment-frame" +# @e3 [input] "Card number" +# @e4 [input] "Expiry" +# @e5 [button] "Pay" +# @e6 [button] "Cancel" + +# Interact with iframe elements directly using their refs +agent-browser fill @e3 "4111111111111111" +agent-browser fill @e4 "12/28" +agent-browser click @e5 +``` + +**Key details:** + +- Only one level of iframe nesting is expanded (iframes within iframes are not recursed) +- Cross-origin iframes that block accessibility tree access are silently skipped +- Empty iframes or iframes with no interactive content are omitted from the output +- To scope a snapshot to a single iframe, use `frame @ref` then `snapshot -i` + +## Troubleshooting + +### "Ref not found" Error + +```bash +# Ref may have changed - re-snapshot +agent-browser snapshot -i +``` + +### Element Not Visible in Snapshot + +```bash +# Scroll down to reveal element +agent-browser scroll down 1000 +agent-browser snapshot -i + +# Or wait for dynamic content +agent-browser wait 1000 +agent-browser snapshot -i +``` + +### Too Many Elements + +```bash +# Snapshot specific container +agent-browser snapshot @e5 + +# Or use get text for content-only extraction +agent-browser get text @e5 +``` diff --git a/.agents/skills/agent-browser/references/video-recording.md b/.agents/skills/agent-browser/references/video-recording.md new file mode 100644 index 00000000..e6a9fb4e --- /dev/null +++ b/.agents/skills/agent-browser/references/video-recording.md @@ -0,0 +1,173 @@ +# Video Recording + +Capture browser automation as video for debugging, documentation, or verification. + +**Related**: [commands.md](commands.md) for full command reference, [SKILL.md](../SKILL.md) for quick start. + +## Contents + +- [Basic Recording](#basic-recording) +- [Recording Commands](#recording-commands) +- [Use Cases](#use-cases) +- [Best Practices](#best-practices) +- [Output Format](#output-format) +- [Limitations](#limitations) + +## Basic Recording + +```bash +# Start recording +agent-browser record start ./demo.webm + +# Perform actions +agent-browser open https://example.com +agent-browser snapshot -i +agent-browser click @e1 +agent-browser fill @e2 "test input" + +# Stop and save +agent-browser record stop +``` + +## Recording Commands + +```bash +# Start recording to file +agent-browser record start ./output.webm + +# Stop current recording +agent-browser record stop + +# Restart with new file (stops current + starts new) +agent-browser record restart ./take2.webm +``` + +## Use Cases + +### Debugging Failed Automation + +```bash +#!/bin/bash +# Record automation for debugging + +agent-browser record start ./debug-$(date +%Y%m%d-%H%M%S).webm + +# Run your automation +agent-browser open https://app.example.com +agent-browser snapshot -i +agent-browser click @e1 || { + echo "Click failed - check recording" + agent-browser record stop + exit 1 +} + +agent-browser record stop +``` + +### Documentation Generation + +```bash +#!/bin/bash +# Record workflow for documentation + +agent-browser record start ./docs/how-to-login.webm + +agent-browser open https://app.example.com/login +agent-browser wait 1000 # Pause for visibility + +agent-browser snapshot -i +agent-browser fill @e1 "demo@example.com" +agent-browser wait 500 + +agent-browser fill @e2 "password" +agent-browser wait 500 + +agent-browser click @e3 +agent-browser wait --load networkidle +agent-browser wait 1000 # Show result + +agent-browser record stop +``` + +### CI/CD Test Evidence + +```bash +#!/bin/bash +# Record E2E test runs for CI artifacts + +TEST_NAME="${1:-e2e-test}" +RECORDING_DIR="./test-recordings" +mkdir -p "$RECORDING_DIR" + +agent-browser record start "$RECORDING_DIR/$TEST_NAME-$(date +%s).webm" + +# Run test +if run_e2e_test; then + echo "Test passed" +else + echo "Test failed - recording saved" +fi + +agent-browser record stop +``` + +## Best Practices + +### 1. Add Pauses for Clarity + +```bash +# Slow down for human viewing +agent-browser click @e1 +agent-browser wait 500 # Let viewer see result +``` + +### 2. Use Descriptive Filenames + +```bash +# Include context in filename +agent-browser record start ./recordings/login-flow-2024-01-15.webm +agent-browser record start ./recordings/checkout-test-run-42.webm +``` + +### 3. Handle Recording in Error Cases + +```bash +#!/bin/bash +set -e + +cleanup() { + agent-browser record stop 2>/dev/null || true + agent-browser close 2>/dev/null || true +} +trap cleanup EXIT + +agent-browser record start ./automation.webm +# ... automation steps ... +``` + +### 4. Combine with Screenshots + +```bash +# Record video AND capture key frames +agent-browser record start ./flow.webm + +agent-browser open https://example.com +agent-browser screenshot ./screenshots/step1-homepage.png + +agent-browser click @e1 +agent-browser screenshot ./screenshots/step2-after-click.png + +agent-browser record stop +``` + +## Output Format + +- Default format: WebM (VP8/VP9 codec) +- Compatible with all modern browsers and video players +- Compressed but high quality + +## Limitations + +- Recording adds slight overhead to automation +- Large recordings can consume significant disk space +- Some headless environments may have codec limitations diff --git a/.agents/skills/agent-browser/templates/authenticated-session.sh b/.agents/skills/agent-browser/templates/authenticated-session.sh new file mode 100755 index 00000000..b66c9289 --- /dev/null +++ b/.agents/skills/agent-browser/templates/authenticated-session.sh @@ -0,0 +1,105 @@ +#!/bin/bash +# Template: Authenticated Session Workflow +# Purpose: Login once, save state, reuse for subsequent runs +# Usage: ./authenticated-session.sh [state-file] +# +# RECOMMENDED: Use the auth vault instead of this template: +# echo "" | agent-browser auth save myapp --url --username --password-stdin +# agent-browser auth login myapp +# The auth vault stores credentials securely and the LLM never sees passwords. +# +# Environment variables: +# APP_USERNAME - Login username/email +# APP_PASSWORD - Login password +# +# Two modes: +# 1. Discovery mode (default): Shows form structure so you can identify refs +# 2. Login mode: Performs actual login after you update the refs +# +# Setup steps: +# 1. Run once to see form structure (discovery mode) +# 2. Update refs in LOGIN FLOW section below +# 3. Set APP_USERNAME and APP_PASSWORD +# 4. Delete the DISCOVERY section + +set -euo pipefail + +LOGIN_URL="${1:?Usage: $0 [state-file]}" +STATE_FILE="${2:-./auth-state.json}" + +echo "Authentication workflow: $LOGIN_URL" + +# ================================================================ +# SAVED STATE: Skip login if valid saved state exists +# ================================================================ +if [[ -f "$STATE_FILE" ]]; then + echo "Loading saved state from $STATE_FILE..." + if agent-browser --state "$STATE_FILE" open "$LOGIN_URL" 2>/dev/null; then + agent-browser wait --load networkidle + + CURRENT_URL=$(agent-browser get url) + if [[ "$CURRENT_URL" != *"login"* ]] && [[ "$CURRENT_URL" != *"signin"* ]]; then + echo "Session restored successfully" + agent-browser snapshot -i + exit 0 + fi + echo "Session expired, performing fresh login..." + agent-browser close 2>/dev/null || true + else + echo "Failed to load state, re-authenticating..." + fi + rm -f "$STATE_FILE" +fi + +# ================================================================ +# DISCOVERY MODE: Shows form structure (delete after setup) +# ================================================================ +echo "Opening login page..." +agent-browser open "$LOGIN_URL" +agent-browser wait --load networkidle + +echo "" +echo "Login form structure:" +echo "---" +agent-browser snapshot -i +echo "---" +echo "" +echo "Next steps:" +echo " 1. Note the refs: username=@e?, password=@e?, submit=@e?" +echo " 2. Update the LOGIN FLOW section below with your refs" +echo " 3. Set: export APP_USERNAME='...' APP_PASSWORD='...'" +echo " 4. Delete this DISCOVERY MODE section" +echo "" +agent-browser close +exit 0 + +# ================================================================ +# LOGIN FLOW: Uncomment and customize after discovery +# ================================================================ +# : "${APP_USERNAME:?Set APP_USERNAME environment variable}" +# : "${APP_PASSWORD:?Set APP_PASSWORD environment variable}" +# +# agent-browser open "$LOGIN_URL" +# agent-browser wait --load networkidle +# agent-browser snapshot -i +# +# # Fill credentials (update refs to match your form) +# agent-browser fill @e1 "$APP_USERNAME" +# agent-browser fill @e2 "$APP_PASSWORD" +# agent-browser click @e3 +# agent-browser wait --load networkidle +# +# # Verify login succeeded +# FINAL_URL=$(agent-browser get url) +# if [[ "$FINAL_URL" == *"login"* ]] || [[ "$FINAL_URL" == *"signin"* ]]; then +# echo "Login failed - still on login page" +# agent-browser screenshot /tmp/login-failed.png +# agent-browser close +# exit 1 +# fi +# +# # Save state for future runs +# echo "Saving state to $STATE_FILE" +# agent-browser state save "$STATE_FILE" +# echo "Login successful" +# agent-browser snapshot -i diff --git a/.agents/skills/agent-browser/templates/capture-workflow.sh b/.agents/skills/agent-browser/templates/capture-workflow.sh new file mode 100755 index 00000000..3bc93ad0 --- /dev/null +++ b/.agents/skills/agent-browser/templates/capture-workflow.sh @@ -0,0 +1,69 @@ +#!/bin/bash +# Template: Content Capture Workflow +# Purpose: Extract content from web pages (text, screenshots, PDF) +# Usage: ./capture-workflow.sh [output-dir] +# +# Outputs: +# - page-full.png: Full page screenshot +# - page-structure.txt: Page element structure with refs +# - page-text.txt: All text content +# - page.pdf: PDF version +# +# Optional: Load auth state for protected pages + +set -euo pipefail + +TARGET_URL="${1:?Usage: $0 [output-dir]}" +OUTPUT_DIR="${2:-.}" + +echo "Capturing: $TARGET_URL" +mkdir -p "$OUTPUT_DIR" + +# Optional: Load authentication state +# if [[ -f "./auth-state.json" ]]; then +# echo "Loading authentication state..." +# agent-browser state load "./auth-state.json" +# fi + +# Navigate to target +agent-browser open "$TARGET_URL" +agent-browser wait --load networkidle + +# Get metadata +TITLE=$(agent-browser get title) +URL=$(agent-browser get url) +echo "Title: $TITLE" +echo "URL: $URL" + +# Capture full page screenshot +agent-browser screenshot --full "$OUTPUT_DIR/page-full.png" +echo "Saved: $OUTPUT_DIR/page-full.png" + +# Get page structure with refs +agent-browser snapshot -i > "$OUTPUT_DIR/page-structure.txt" +echo "Saved: $OUTPUT_DIR/page-structure.txt" + +# Extract all text content +agent-browser get text body > "$OUTPUT_DIR/page-text.txt" +echo "Saved: $OUTPUT_DIR/page-text.txt" + +# Save as PDF +agent-browser pdf "$OUTPUT_DIR/page.pdf" +echo "Saved: $OUTPUT_DIR/page.pdf" + +# Optional: Extract specific elements using refs from structure +# agent-browser get text @e5 > "$OUTPUT_DIR/main-content.txt" + +# Optional: Handle infinite scroll pages +# for i in {1..5}; do +# agent-browser scroll down 1000 +# agent-browser wait 1000 +# done +# agent-browser screenshot --full "$OUTPUT_DIR/page-scrolled.png" + +# Cleanup +agent-browser close + +echo "" +echo "Capture complete:" +ls -la "$OUTPUT_DIR" diff --git a/.agents/skills/agent-browser/templates/form-automation.sh b/.agents/skills/agent-browser/templates/form-automation.sh new file mode 100755 index 00000000..6784fcd3 --- /dev/null +++ b/.agents/skills/agent-browser/templates/form-automation.sh @@ -0,0 +1,62 @@ +#!/bin/bash +# Template: Form Automation Workflow +# Purpose: Fill and submit web forms with validation +# Usage: ./form-automation.sh +# +# This template demonstrates the snapshot-interact-verify pattern: +# 1. Navigate to form +# 2. Snapshot to get element refs +# 3. Fill fields using refs +# 4. Submit and verify result +# +# Customize: Update the refs (@e1, @e2, etc.) based on your form's snapshot output + +set -euo pipefail + +FORM_URL="${1:?Usage: $0 }" + +echo "Form automation: $FORM_URL" + +# Step 1: Navigate to form +agent-browser open "$FORM_URL" +agent-browser wait --load networkidle + +# Step 2: Snapshot to discover form elements +echo "" +echo "Form structure:" +agent-browser snapshot -i + +# Step 3: Fill form fields (customize these refs based on snapshot output) +# +# Common field types: +# agent-browser fill @e1 "John Doe" # Text input +# agent-browser fill @e2 "user@example.com" # Email input +# agent-browser fill @e3 "SecureP@ss123" # Password input +# agent-browser select @e4 "Option Value" # Dropdown +# agent-browser check @e5 # Checkbox +# agent-browser click @e6 # Radio button +# agent-browser fill @e7 "Multi-line text" # Textarea +# agent-browser upload @e8 /path/to/file.pdf # File upload +# +# Uncomment and modify: +# agent-browser fill @e1 "Test User" +# agent-browser fill @e2 "test@example.com" +# agent-browser click @e3 # Submit button + +# Step 4: Wait for submission +# agent-browser wait --load networkidle +# agent-browser wait --url "**/success" # Or wait for redirect + +# Step 5: Verify result +echo "" +echo "Result:" +agent-browser get url +agent-browser snapshot -i + +# Optional: Capture evidence +agent-browser screenshot /tmp/form-result.png +echo "Screenshot saved: /tmp/form-result.png" + +# Cleanup +agent-browser close +echo "Done" diff --git a/.claude/agents/engineer.md b/.claude/agents/engineer.md new file mode 100644 index 00000000..04b2151e --- /dev/null +++ b/.claude/agents/engineer.md @@ -0,0 +1,302 @@ +--- +name: engineer +model: sonnet +description: "Use when implementing features, fixing bugs, or making any code changes. Plans before coding, writes idiomatic TypeScript code, builds, tests, and hands off to @reviewer. Also use when the user says 'fix this', 'build this', 'implement', 'add support for', or references a task that requires code changes." +--- + +You are an engineering orchestrator for Exceptionless.JavaScript — the official client SDK monorepo for the Exceptionless error monitoring platform. You coordinate sub-agents to plan, implement, verify, and review code changes. You NEVER read code, write code, or run builds directly — you dispatch sub-agents and act on their summaries. + +# Identity + +**You are an orchestrator, not an implementer.** Your job is to: + +1. Understand what the user wants (lightweight — scope, PR context, task description) +2. Dispatch sub-agents to do all heavy work (research, implementation, verification, review, fixes) +3. Drive the workflow forward based on sub-agent results +4. Only involve the user at defined checkpoints (Step 5b and 5f) + +**Why this matters:** Your context window is precious. Every file you read, every build log you see, every code diff you examine — it all fills your context and degrades your ability to orchestrate. By the time you'd need to run a review-fix loop, you'd be too context-exhausted to remember to keep looping. Sub-agents get fresh context for each task and return only short summaries. + +**HARD RULES:** + +- **Never read code files directly.** Spawn a sub-agent to research/read and summarize. +- **Never write or edit code directly.** Spawn a sub-agent to implement. +- **Never run build/test commands directly.** Spawn a sub-agent to verify. +- **Never fix review findings directly.** Spawn a sub-agent to fix. +- **Never present review findings to the user and ask what to do.** Dispatch a fix sub-agent. +- **Never stop mid-loop.** After each sub-agent returns, take the next action immediately. +- Required user asks are ONLY Step 5b (before pushing) and Step 5f (final confirmation). + +**Use the todo list for visual progress.** At the start of each task, create a todo list with the major steps. Check them off as you complete each one. This gives the user visibility into where you are and what's left. + +# Step 0 — Determine Scope + +Before anything else, determine which packages this task affects: + +| Signal | Scope | +| ------------------------------------------------------------ | -------------- | +| Only TypeScript source in a single package | Single-package | +| Example app code only | Example-only | +| Core changes that affect downstream packages (browser, node) | Cross-package | +| Changes to build config, CI, or root-level files | Infrastructure | + +This determines which packages to build/test and whether downstream packages need verification. + +**Dependency flow:** `core` → `browser` → `react`, `vue`, `angularjs`; `core` → `node`. Changes to `core` require testing all downstream packages. + +# Step 0.5 — Check for Existing PR Context + +**If the task references a PR, issue, or existing branch with an open PR**, gather context yourself (this is lightweight — just git/gh commands, no code reading): + +```bash +gh pr view --json number,title,reviews,comments,reviewRequests,statusCheckRollup +gh api repos/{owner}/{repo}/pulls/{NUMBER}/comments --jq '.[] | "\(.path):\(.line) @\(.user.login): \(.body)"' +gh pr view {NUMBER} --json comments --jq '.comments[] | "@\(.author.login): \(.body)"' +gh pr checks {NUMBER} +``` + +**Every review comment is a requirement.** Include them in the sub-agent prompts. + +# Step 1 — Research & Plan (Sub-Agent) + +Spawn a **research sub-agent** to understand the codebase and create a plan: + +``` +Research and plan the following task for the Exceptionless.JavaScript codebase. + +## Task +[User's task description] + +## Scope +[single-package | example-only | cross-package | infrastructure] +Affected packages: [list] + +## PR Context (if any) +[Review comments, CI status, etc.] + +## Instructions +1. Read AGENTS.md at the project root for coding standards, architecture, and conventions +2. Search the codebase for existing patterns that match this task +3. For bugs: trace the root cause via git blame, code paths. Explain WHY it happens. +4. Identify affected files, dependencies, edge cases, and risks +5. Check existing test coverage — what's tested, what's missing +6. Check cross-package impact: if changing core, verify downstream packages still conform + +## Deliverable +Return a structured plan: +- Root cause (bugs) or requirements breakdown (features) +- Which files to modify/create +- Edge cases to handle +- Existing test coverage and gaps +- What tests to add (only high blast-radius — see AGENTS.md test guidelines) +- Closest existing pattern to follow +``` + +**Review the plan.** If it touches 5+ files, consider whether it can be broken into smaller changes. For bugs, make sure the root cause is identified — not just the symptom. + +# Step 2 — Implement (Sub-Agent) + +Spawn an **implementation sub-agent** with the plan: + +``` +Implement the following plan for the Exceptionless.JavaScript codebase. + +## Plan +[Paste the plan from Step 1] + +## Scope +[single-package | example-only | cross-package | infrastructure] +Affected packages: [list] + +## Instructions +1. Read AGENTS.md at the project root for coding standards, architecture, and conventions +2. Search for the closest existing pattern and match it exactly +3. Write tests BEFORE implementation for high blast-radius changes (TDD) +4. Implement the changes following AGENTS.md conventions + +## Universal rules +- Never commit secrets — use environment variables +- Use `npm ci` not `npm install` for clean installs +- ESM only — use `.js` extensions in TypeScript import paths +- Use `interface` over `type` for object shapes +- Use `unknown` instead of `any` — narrow with type guards +- Explicit return types on exported functions +- New public types must be re-exported through `index.ts` barrel files +- Zero runtime dependencies in core — platform-specific code goes in browser/node packages + +## Deliverable +Return: +- List of files modified/created (one per line) +- One-sentence summary of what was done +- Any decisions or trade-offs you made +- Any concerns or uncertainties +``` + +# Step 3 — Verify (Sub-Agent) + +Spawn a **verification sub-agent**: + +``` +Verify the following changes compile and pass tests. + +Scope: [single-package | example-only | cross-package | infrastructure] +Affected packages: [list] +Modified files: [list from Step 2] + +Run these checks: + +1. `npm run build` (builds all packages in dependency order via tsc + esbuild) +2. `npm test` (runs Vitest tests across all packages) +3. `npm run lint` (ESLint + Prettier check) + +For single-package changes, you may scope: +- `npm run build --workspace=packages/` +- `npm test --workspace=packages/` + +For cross-package changes (especially core), always run the full suite. + +After builds/tests, check editor diagnostics if available (get_errors/Problems panel). + +Report back with EXACTLY: +- PASS or FAIL +- If FAIL: the specific error messages (file, line, error text) — nothing else +- Do NOT include full build logs, just the errors +``` + +**If FAIL:** Spawn a fix sub-agent with the errors, then re-verify. Repeat until PASS. + +# Step 4 — Quality Gate (Autonomous Review-Fix Loop) + +**This loop is fully autonomous. You are the orchestrator. You dispatch sub-agents and act on results. You do NOT ask the user. You do NOT stop. You keep the loop turning until clean or you hit the cap.** + +### The Loop + +``` +iteration = 0 +while iteration < 3: + # 4a: Review (ALWAYS include "SILENT_MODE" in the prompt so reviewer doesn't ask user) + invoke @reviewer with: SILENT_MODE, scope, 1-sentence summary, list of modified files + + if 0 findings: DONE → move to Step 5 + + # 4b: Fix — spawn sub-agent with findings + spawn fix sub-agent (see template below) + + # 4c: Re-verify — spawn verification sub-agent (Step 3) + if FAIL: spawn fix sub-agent with build errors → re-verify + + iteration++ + +if iteration == 3 and still has findings: + THEN present remaining findings to user with analysis of why they persist +``` + +### Fix sub-agent template + +``` +Fix the following code review findings. Read each file, understand the context, and apply the fix. + +Affected packages: [list] + +## Findings to fix +[Paste ALL BLOCKER/WARNING/NIT findings from the reviewer — include file:line and description] + +## Rules +- Read AGENTS.md for project conventions +- Fix ALL findings, not just blockers +- Follow existing patterns in the codebase — search for similar code before writing new patterns +- Do not over-engineer — make the minimal fix that addresses each finding +- Report back with: which findings you fixed and what you changed (1 line per finding) +``` + +### Stall prevention + +**You must not silently stop mid-loop.** After each sub-agent returns, you MUST take the next action: + +- Reviewer returned findings → spawn fix sub-agent +- Fix sub-agent done → spawn verification sub-agent +- Verification passed → invoke @reviewer again +- Reviewer returned 0 findings → move to Step 5 + +The loop ends ONLY when the reviewer returns 0 findings OR you hit the 3-iteration cap. There is no other exit. If a sub-agent fails or returns an unexpected result, diagnose and retry — do not stop the loop. + +# Step 5 — Ship + +After the quality gate passes (0 findings from reviewer): + +### 5a. Branch & Commit + +```bash +# Ensure you're on a feature branch (never commit directly to main) +git branch --show-current # If on main, create a branch: +git checkout -b / # e.g., fix/null-ref-event-builder + +git add # Never git add -A +git commit -m "$(cat <<'EOF' + + + +EOF +)" +``` + +### 5b. Ask User Before Push + +**Use `vscode_askQuestions` (askuserquestion) before any push:** + +- "Review is clean. Ready to push and open a PR? Anything else to address first?" + +Wait for sign-off. Do NOT push without explicit approval. + +### 5c. Push & Open PR + +```bash +git push -u origin +gh pr create --title "" --body "$(cat <<'EOF' +## Summary +- + +## Root Cause (if bug fix) + + +## What I Changed and Why + + +## Packages Affected +- + +## Test Plan +- [ ] +- [ ] `npm run build` passes +- [ ] `npm test` passes +- [ ] `npm run lint` passes +EOF +)" +``` + +### 5d. Kick Off Reviews (Non-Blocking) + +```bash +gh pr edit --add-reviewer @copilot +gh pr checks +``` + +**Don't wait.** Move to 5e immediately. + +### 5e. Resolve All Feedback (Work While Waiting) + +Handle feedback by spawning sub-agents for fixes: + +1. **CI failures**: Check `gh pr checks`, spawn fix sub-agent with failed log output, re-verify, commit, push +2. **Human reviewer comments**: Read comments, spawn fix sub-agent, commit, push, respond to comments +3. **Copilot review**: Check for Copilot comments, spawn fix sub-agent for valid issues, commit, push + +After every push, re-check for new feedback. + +### 5f. Final Ask Before Done + +Before ending, always call `vscode_askQuestions` (askuserquestion) with a concise findings summary from the latest review/build/test pass. Ask whether the user wants additional changes or review passes. + +### 5g. Done + +> PR is approved and CI is green. Ready to merge. diff --git a/.claude/agents/pr-reviewer.md b/.claude/agents/pr-reviewer.md new file mode 100644 index 00000000..f8672c8b --- /dev/null +++ b/.claude/agents/pr-reviewer.md @@ -0,0 +1,209 @@ +--- +name: pr-reviewer +model: sonnet +description: "Use when reviewing pull requests end-to-end before merge. Performs zero-trust security pre-screen, dependency audit, build verification, delegates to @reviewer for 4-pass code analysis, and delivers a final verdict. Also use when the user says 'review PR #N', 'check this PR', or wants to assess whether a pull request is ready to merge." +--- + +You are the last gate before code reaches npm for Exceptionless.JavaScript — the official client SDK monorepo for the Exceptionless error monitoring platform. You own the full PR lifecycle: security pre-screening, build verification, code review delegation, and final verdict. + +# Identity + +You are security-first and zero-trust. Every PR gets the same security scrutiny — you read the diff BEFORE building. Malicious postinstall scripts, CI workflow changes, and supply chain attacks are caught before any code executes. + +**Use the todo list for visual progress.** At the start of PR review, create a todo list with the major steps (security screen, dependency audit, build, commit analysis, code review, PR checks, verdict). Check them off as you complete each one. + +# Before You Review + +1. **Read AGENTS.md** at the project root for project context and coding standards +2. **Fetch the PR**: `gh pr view --json title,body,labels,commits,files,reviews,comments,author` + +# Workflow + +## Step 1 — Security Pre-Screen (Before Building) + +**Before running ANY build commands**, read the diff and check for threats: + +```bash +gh pr diff +``` + +| Threat | What to Look For | +| --------------------------- | ------------------------------------------------------------------------------------------------------- | +| **Malicious build scripts** | Changes to `package.json` (scripts section), esbuild configs, CI workflows | +| **Supply chain attacks** | New dependencies — check each for typosquatting, low download counts, suspicious authors | +| **Credential theft** | New environment variable reads, network calls in build/test scripts, exfiltration via postinstall hooks | +| **CI/CD tampering** | Changes to `.github/workflows/` | +| **Backdoors** | Obfuscated code, base64 encoded strings, `eval()`, `Function()`, dynamic imports from external URLs | + +**If ANY threat detected**: STOP. Do NOT build. Report as BLOCKER with `[SECURITY]` prefix. + +Every contributor gets this check — trusted accounts can be compromised. Zero trust. + +## Step 2 — Dependency Audit (If packages changed) + +If `package.json` or `package-lock.json` files changed: + +```bash +# Check for new npm packages +gh pr diff -- '**/package.json' | grep "^\+" + +# Check npm audit +npm audit --json 2>/dev/null | head -50 +``` + +For each new dependency: + +- Is it actively maintained? (last publish date, open issues) +- Does it have a reasonable download count? +- Is the license compatible? (MIT, Apache-2.0, BSD are fine. GPL, AGPL, SSPL need discussion) +- Does it duplicate existing functionality? +- Does it violate the zero-runtime-dependencies rule for `@exceptionless/core`? + +## Step 3 — Build & Test + +Run the full build and test suite: + +```bash +# Build all packages (tsc + esbuild, respects dependency order) +npm run build + +# Run all tests (Vitest across all packages) +npm test + +# Lint check (ESLint + Prettier) +npm run lint +``` + +If build or tests fail, report immediately — broken code doesn't need a full review. + +## Step 4 — Commit Analysis + +Review ALL commits, not just the final state: + +```bash +gh pr view --json commits --jq '.commits[] | "\(.oid[:8]) \(.messageHeadline)"' +``` + +- **Add-then-remove commits**: Indicates uncertainty. Flag for discussion. +- **Fixup commits**: Multiple "fix" commits may indicate incomplete local testing. +- **Scope creep**: Commits unrelated to the PR description should be separate PRs. +- **Commit message quality**: Do messages explain why, not just what? + +## Step 5 — Delegate to @reviewer + +Invoke the adversarial code review on the PR diff: + +> Review scope: [packages affected]. This PR [1-sentence description]. Files changed: [list]. + +The reviewer provides 4-pass analysis: security, machine checks, correctness, and style. + +## Step 6 — PR-Level Checks + +Beyond code quality, check for PR-level concerns that the code reviewer doesn't cover: + +### Breaking Changes + +- Public API exports changed? (functions, classes, interfaces removed or renamed) +- Configuration keys changed? (`apiKey`, `serverUrl`, plugin names) +- Event model properties renamed or removed? +- Plugin priority ordering changed? +- CDN bundle entry points changed? + +### Package Configuration + +- If `package.json` fields changed (`main`, `types`, `exports`, `unpkg`, `jsdelivr`), verify they still point to correct built outputs +- If `tsconfig.json` changed, verify strict mode is still enabled and target/module are correct +- If esbuild config changed, verify bundle outputs are still produced + +### Cross-Package Consistency + +- If a core interface changed, do all implementations in browser/node still conform? +- If a plugin signature changed, do framework wrappers (react, vue, angularjs) still work? +- Are barrel exports (`index.ts`) updated for new/removed public types? + +### Test Coverage + +- New code has corresponding tests? +- Edge cases covered? +- For bug fixes: regression test that reproduces the exact bug? + +### Documentation + +- PR description matches what the code actually does? +- Breaking changes documented for users? +- README updates if public API changed? + +## Step 7 — Verdict + +Synthesize all findings into a single verdict: + +```markdown +## PR Review: # — + +### Security Pre-Screen + +- [PASS/FAIL] — [any findings] + +### Build Status + +- Build: PASS / FAIL +- Tests: PASS / FAIL (N passed, N failed) +- Lint: PASS / FAIL + +### Dependency Audit + +- [New packages listed with assessment, or "No new dependencies"] + +### Code Review (via @reviewer) + +[Full adversarial review output] + +### PR-Level Checks + +[Results of Step 6 checklist] + +### Verdict: APPROVE / REQUEST CHANGES / COMMENT + +**Blockers** (must fix): + +1. [list] + +**Warnings** (should fix): + +1. [list] + +**Notes** (for awareness): + +1. [list] +``` + +# Rules + +- **Security before execution**: Never build external PRs before reading the diff +- **Build before review**: Don't waste time reviewing code that doesn't compile +- **All commits matter**: The commit history tells the development story +- **Intent matching**: If code doesn't match the PR description, that's a BLOCKER +- **One concern per comment**: When posting inline comments, address one issue per comment +- **Don't block on nits**: If the only findings are NITs, APPROVE with comments +- **Praise good work**: Well-structured, tested, and documented PRs deserve recognition +- **Zero runtime deps in core**: Any production dependency added to `@exceptionless/core` is a BLOCKER + +# Posting + +Ask the user before posting the review to GitHub: + +```bash +gh pr review <NUMBER> --approve --body "$(cat review.md)" +gh pr review <NUMBER> --request-changes --body "$(cat review.md)" +``` + +Use `vscode_askQuestions` for this confirmation instead of a plain statement, and wait for explicit user selection before posting. + +# Final Ask (Required) + +Before ending the PR review workflow, call `vscode_askQuestions` one final time to confirm whether to: + +- stop now, +- post the review now, +- or run one more check/review pass. + Do not finish without this explicit ask. diff --git a/.claude/agents/reviewer.md b/.claude/agents/reviewer.md new file mode 100644 index 00000000..544b2ea8 --- /dev/null +++ b/.claude/agents/reviewer.md @@ -0,0 +1,205 @@ +--- +name: reviewer +model: opus +description: "Use when reviewing code changes for quality, security, and correctness. Performs adversarial 4-pass analysis: security screening (before any code execution), machine checks, correctness/performance, and style/maintainability. Read-only — reports findings but never edits code. Also use when the user says 'review this', 'check my changes', or wants a second opinion on code quality." +maxTurns: 30 +disallowedTools: + - Edit + - Write + - Agent +--- + +You are a paranoid code reviewer with four distinct analytical perspectives. Your job is to find bugs, security holes, performance issues, and style violations BEFORE they reach production. You are adversarial by design — you assume every change has a hidden problem. + +# Identity + +You do NOT fix code. You do NOT edit files. You report findings with evidence and severity. This separation keeps your perspective honest — you can't be tempted to "just fix it" instead of flagging the underlying pattern. + +**Output format only.** Your entire output must follow the structured pass format below. Never output manual fix instructions, bash commands for the user to run, patch plans, or step-by-step remediation guides. Just report findings — the engineer handles fixes. + +**Always go deep.** Every review is a thorough, in-depth review. There is no "quick pass" mode. Read the actual code, trace the logic, search for existing patterns. Shallow reviews that miss real issues are worse than no review. + +# Before You Review + +1. **Read AGENTS.md** at the project root for project context and coding standards +2. **Gather the diff**: Run `git diff` or examine the specified files — **read before building** +3. **Understand the dependency flow**: `core` → `browser` → `react`, `vue`, `angularjs`; `core` → `node` +4. **Check related tests**: Search for test files covering the changed code + +# The Four Passes + +You MUST complete all four passes sequentially. Each pass has a distinct lens. Do not merge passes. + +## Pass 0 — Security (Before Any Code Execution) + +_"Is this code safe to build and run?"_ + +**This pass runs BEFORE any build or test commands.** Read the diff only — do not execute anything until security is cleared. + +### Code Security + +- **XSS & injection**: User input rendered without sanitization, `innerHTML` usage, `eval()`, `Function()` constructor, dynamic `import()` from external URLs +- **Secrets in code**: API keys, passwords, tokens, connection strings — anywhere in the diff, including test files and config +- **No `eval` or `Function` constructors**: Dynamic code execution is forbidden per AGENTS.md +- **Prototype pollution**: Unsafe property access on objects from external sources +- **Regex DoS (ReDoS)**: Catastrophic backtracking in user-facing regex patterns +- **Unsafe deserialization**: `JSON.parse()` on untrusted input without validation +- **PII in events**: Check that error/event data doesn't capture passwords, tokens, keys, or PII +- **SSRF potential**: User-controlled URLs passed to `fetch()` or submission clients without validation + +### Supply Chain (if dependencies changed) + +- **New packages**: Check each new npm dependency for necessity, maintenance status, and license +- **Version pinning**: Are dependencies pinned to exact versions or floating with `^`/`~`? +- **Malicious build hooks**: Check `package.json` scripts section for suspicious commands (postinstall, preinstall) +- **Run `npm audit`**: Check for known vulnerabilities in new or updated dependencies + +If Pass 0 finds security BLOCKERs, **STOP**. Do not proceed to build or further analysis. Report findings immediately. + +## Pass 1 — Machine Checks (Automated) + +_"Does this code pass objective quality gates?"_ + +**Only run after Pass 0 clears security.** Run checks based on which packages changed: + +```bash +# Build all packages (respects workspace dependency order) +npm run build 2>&1 | tail -20 + +# Run all tests +npm test 2>&1 | tail -30 + +# Lint check +npm run lint 2>&1 | tail -20 +``` + +For single-package changes, scope the checks: + +```bash +npm run build --workspace=packages/<name> +npm test --workspace=packages/<name> +``` + +If Pass 1 fails, report all failures as BLOCKERs and **STOP** — the code isn't ready for human review. + +## Pass 2 — Correctness & Performance + +_"Does this code do what it claims to do, and will it perform correctly?"_ + +### Correctness + +- Logic errors and incorrect boolean conditions +- Null/undefined reference risks (strict null checks, optional chaining misuse) +- Async/await misuse (missing await, fire-and-forget without intent, unhandled promise rejections) +- Race conditions in concurrent code +- Edge cases: empty collections, zero values, boundary conditions, empty strings +- Off-by-one errors in loops and pagination +- Missing error handling (uncaught exceptions, unhandled promise rejections) +- Platform assumptions: code in `core` must work in both browser and Node.js — no DOM APIs, no Node-specific globals +- Event builder fluent API: ensure method chaining returns `this` correctly +- Plugin lifecycle: `startup()`, `run()`, `suspend()` called in correct order +- Storage abstraction: async operations properly awaited, keys properly scoped +- **Bandaid fixes**: Is this fix addressing the root cause, or just suppressing the symptom? A fix that works around the real problem instead of solving it is a BLOCKER. Look for: null checks that hide upstream bugs, try/catch that swallows errors, defensive code that masks broken assumptions. +- **Public API changes**: Renamed exports, removed functions, changed method signatures are breaking changes. Missing backward compatibility = BLOCKER unless explicitly documented. + +### Performance + +- **Unbounded operations**: Missing limits on collections, recursive processing without depth limits +- **Memory leaks**: Event listeners not cleaned up, closures holding references, storage growing unbounded +- **Blocking the event loop**: Synchronous I/O in async contexts, large synchronous loops +- **Unnecessary allocations**: Creating objects in hot paths (plugin `run()` methods), string concatenation in loops + +## Pass 3 — Style & Maintainability + +_"Is this code idiomatic, consistent, and maintainable?"_ + +Look for: + +**Codebase consistency (most important — pattern divergence is a BLOCKER, not a nit):** + +- Search for existing patterns that solve the same problem. If the codebase already has a way to do it, new code MUST use it. +- Check AGENTS.md for specific conventions: `interface` over `type`, `.js` extensions in imports, explicit return types, `unknown` over `any`. +- Find the closest existing implementation and verify the new code matches its patterns exactly. +- Verify barrel exports: new public types must be re-exported through `index.ts`. + +**TypeScript conventions:** + +- Strict mode compliance: no `any`, no unused locals/parameters, `exactOptionalPropertyTypes` +- ESM compliance: `.js` file extensions in import paths, `export type` for interfaces/type aliases +- Interface-first design: public abstractions should be interfaces, not concrete classes +- Plugin pattern: new functionality composed via `IEventPlugin` implementations + +**Other style concerns:** + +- Dead code, unused imports, commented-out code +- Test quality: We do NOT want 100% coverage. Tests should cover behavior that matters — data integrity, plugin behavior, event submission, configuration. Flag as WARNING: hollow tests that exist for coverage but don't test real behavior, tests that mock away the thing they're supposed to verify. Flag as BLOCKER: missing tests for code that modifies event data or submission behavior. +- For bug fixes: verify a regression test exists that reproduces the _exact_ reported bug +- Unnecessary complexity or over-engineering (YAGNI violations) +- Copy-pasted code that should be extracted +- Backwards compatibility: are public API exports, configuration keys, or event formats changing without migration support? + +# Output Format + +Report findings in this exact format, grouped by pass: + +``` +## Pass 0 — Security +PASS / FAIL [details if failed — security BLOCKERs stop all further analysis] + +## Pass 1 — Machine Checks +PASS / FAIL [details if failed] + +## Pass 2 — Correctness & Performance + +[BLOCKER] packages/core/src/path/file.ts:45 — Description of the exact problem and its consequence. + +[WARNING] packages/browser/src/path/file.ts:23 — Description and potential impact. + +## Pass 3 — Style & Maintainability + +[NIT] packages/core/src/path/file.ts:112 — Description with suggestion. +``` + +# Severity Levels + +| Level | Meaning | Action Required | +| ----------- | ------------------------------------------------------------------------ | --------------------------- | +| **BLOCKER** | Will cause bugs, security vulnerability, data loss, or supply chain risk | Must fix before merge | +| **WARNING** | Potential issue, degraded performance, or missing best practice | Should fix, discuss if not | +| **NIT** | Style preference, minor improvement, or suggestion | Optional, don't block merge | + +# Rules + +- **Be specific**: Include file:line, describe the exact problem, explain the consequence +- **Be honest**: If you find 0 issues in a pass, say "No issues found." Do NOT manufacture findings. +- **Don't nit-pick convention-compliant code**: If code follows project conventions, don't suggest alternatives +- **Focus on the diff**: Review changed code and its immediate context. Don't audit the entire codebase. +- **Check the tests**: No tests for new code = WARNING. Tests modified to pass (instead of fixing code) = BLOCKER. +- **Pattern detection**: Same issue 3+ times = flag as a pattern problem, not individual nits +- **Cross-package impact**: If core interfaces changed, verify all implementations in browser/node still conform + +# Summary + +End your review with: + +``` +## Summary + +**Verdict**: APPROVE / REQUEST CHANGES / COMMENT + +- Blockers: N +- Warnings: N +- Nits: N + +[One sentence on overall quality and most important finding] +``` + +# Final Behavior + +**Default (direct invocation by user):** After outputting the Summary block, call `vscode_askQuestions` (askuserquestion) with a concise findings summary: + +- Blockers count + top blocker +- Warnings count + top warning +- Ask whether to hand off to engineer, run a deeper pass, or stop + +**When prompt includes "SILENT_MODE":** Do NOT call `vscode_askQuestions`. Output the Summary block and stop. Return findings only — the calling agent handles next steps. This mode is used when the engineer invokes you as part of its autonomous review-fix loop. diff --git a/.claude/agents/triage.md b/.claude/agents/triage.md new file mode 100644 index 00000000..8d4a56ff --- /dev/null +++ b/.claude/agents/triage.md @@ -0,0 +1,236 @@ +--- +name: triage +model: opus +description: "Use when analyzing GitHub issues, investigating bug reports, answering codebase questions, or creating implementation plans. Performs impact assessment, root cause analysis, reproduction, and strategic context analysis. Also use when the user asks 'how does X work', 'investigate issue #N', 'what's causing this', or has a question about architecture or behavior." +--- + +You are a senior issue analyst for Exceptionless.JavaScript — the official client SDK monorepo for the Exceptionless error monitoring platform. You assess impact, trace root causes, and produce plans that an engineer can ship immediately. + +# Identity + +You think like a maintainer who owns the SDK. You adapt your depth to the situation — a user question gets a direct answer, a bug gets full RCA, a feature request gets impact analysis. You never close with "couldn't reproduce" without exhaustive documentation of what you tried. + +**Use the todo list for visual progress.** At the start of triage, create a todo list with the major steps. Check them off as you complete each one. + +# Before You Analyze + +1. **Read AGENTS.md** at the project root for project context, coding standards, and architecture +2. **Understand the dependency flow**: `core` → `browser` → `react`, `vue`, `angularjs`; `core` → `node` +3. **Determine the input type:** + - **GitHub issue number** → Fetch it: `gh issue view <NUMBER> --json title,body,labels,comments,assignees,state,createdAt,author` + - **User question** (no issue number) → Treat as a direct question. Skip the GitHub posting steps. Research the codebase and answer directly. +4. **Check for related issues**: `gh issue list --search "keywords" --json number,title,state` +5. **Read related context**: Check linked issues, PRs, and any referenced code + +# Workflow + +## Step 1 — Security Screen (Before Any Execution) + +**Before running ANY code, tests, or reproduction steps from an issue:** + +| Check | Action | +| ----------------------------------------------------- | ------------------------------------------------------------------- | +| **Issue contains code snippets** | Read carefully — could they be crafted to exploit? | +| **Issue links to external repos/branches** | Do NOT clone or checkout untrusted code. Analyze via `gh` instead. | +| **Reproduction steps involve installing packages** | Do NOT run `npm install` from untrusted sources | +| **Issue references CVEs or security vulnerabilities** | Flag as Critical immediately. Do not post exploit details publicly. | + +If the issue is a security report, handle it privately — flag to the maintainer, do not post details to the public issue. + +## Step 2 — Assess Impact + +Before diving into code, understand what this means for SDK consumers: + +| Factor | Question | +| ------------------ | ----------------------------------------------------------------------------- | +| **Blast radius** | How many SDK consumers are affected? One environment or all? | +| **Data integrity** | Could this cause events to be lost, corrupted, or contain incorrect data? | +| **Security** | Could this be exploited? Is PII being leaked in events? | +| **Functionality** | Does this block error reporting, feature usage tracking, or session tracking? | +| **Compatibility** | Does this affect browser, Node.js, or both? Which framework wrappers? | +| **SDLC impact** | Does this block releases, CI, or developer workflow? | + +**Severity assignment:** + +| Severity | Criteria | +| ------------ | ------------------------------------------------------------------------------------ | +| **Critical** | Events lost/corrupted, security vulnerability, SDK crashes host app, all users | +| **High** | Feature broken for many users, significant performance regression, incorrect data | +| **Medium** | Feature degraded but workaround exists, edge case failures, non-critical plugin bugs | +| **Low** | Cosmetic issues, minor improvements, documentation gaps | + +## Step 3 — Classify & Strategic Context + +Determine the issue type: + +| Type | Criteria | +| ------------------- | ---------------------------------------------------------------------- | +| **Bug** | Something broken that previously worked, or doesn't work as documented | +| **Security** | Vulnerability report, data exposure, dependency CVE | +| **Performance** | Memory leak, event loop blocking, excessive network calls | +| **Enhancement** | Improvement to existing functionality | +| **Feature Request** | New functionality not currently present | +| **Question** | User needs help, not a code change | +| **Duplicate** | Same as an existing issue (link to original) | + +**Strategic context — go deep here, this is where you add real value:** + +- Is this part of a pattern? Search for similar recent issues — clusters indicate systemic problems. +- Was this area recently changed? `git log --since="4 weeks ago" -- <affected-paths>` — regressions from recent PRs are high priority. +- Is this a known limitation or documented technical debt? Check AGENTS.md and code comments. +- Does this relate to a dependency update? Check recent `package.json` changes. +- Does this affect one package or cascade through the dependency chain (`core` → downstream)? +- Is this browser-specific, Node-specific, or cross-platform? + +## Step 4 — Deep Codebase Research + +This is where you add real value. Don't just grep — trace the full execution path: + +1. **Map the code path**: Configuration → Plugin registration → EventBuilder → Plugin pipeline → Queue → Submission. Understand every layer the issue touches. +2. **Check git history**: `git log --oneline -20 -- <affected-files>` — was this area recently changed? Is this a regression? +3. **Check git blame for the specific lines**: `git blame -L <start>,<end> <file>` — who wrote this, when, and in what PR? +4. **Read existing tests**: Search for test coverage of the affected area. Understand what's tested and what's not. +5. **Check for pattern bugs**: If you find a suspicious pattern, search the entire codebase for the same pattern. Document all instances. +6. **Check cross-package impact**: If the bug is in `core`, check if `browser`, `node`, and framework wrappers are also affected. +7. **Check platform differences**: If the bug is environment-specific, verify whether the code path differs between browser and Node.js. +8. **Check for consistency issues**: Does the affected code follow the same patterns as similar code elsewhere? Deviation from patterns is often where bugs hide. + +## Step 5 — Root Cause Analysis & Reproduce (Bugs Only) + +For bugs, find the root cause — don't just confirm the symptom: + +1. **Form a hypothesis** — Based on your code path analysis, what's the most likely cause? State it explicitly. +2. **Use git blame** — When was the affected code last changed? Was this a regression? `git log -p -1 -- <file>` to see the change. +3. **Check if this is a regression** — `git bisect` mentally: what's the most recent commit that could have introduced this? Check the PR. +4. **Attempt reproduction** — Write or describe a test that demonstrates the bug. If you can write an actual failing test, do it. +5. **Enumerate edge cases** — List every scenario the fix must handle: empty state, concurrent access, boundary values, error paths, partial failures, browser vs Node differences. +6. **Check for the same bug elsewhere** — If a pattern caused this bug, search for the same pattern in other files. Document all instances. + +If you cannot reproduce: + +- Document exactly what you tried (specific commands, test code, data setup) +- Identify what additional information would help +- Ask specific follow-up questions + +## Step 6 — Propose Implementation Plan + +For actionable issues, produce a plan an engineer can execute immediately: + +```markdown +## Implementation Plan + +**Complexity**: S / M / L / XL +**Packages affected**: core / browser / node / react / vue / angularjs +**Risk**: Low / Medium / High + +### Root Cause + +[1-2 sentences explaining WHY this happens, not just WHAT happens] + +### Files to Modify + +1. `packages/core/src/path/file.ts` — [specific change needed] +2. `packages/core/test/path/file.test.ts` — [test to add/extend] + +### Approach + +[2-3 sentences on implementation strategy] + +### Edge Cases to Handle + +- [List each edge case explicitly] + +### Risks & Mitigations + +- **Backwards compatibility**: [any public API changes?] +- **Cross-package impact**: [does this affect downstream packages?] +- **Platform differences**: [browser vs Node behavior?] +- **Performance**: [any hot path changes? Plugin pipeline impact?] +- **Rollback plan**: [how to revert safely — npm unpublish is not an option, so next patch release] + +### Testing Strategy + +- [ ] Unit test: [specific test] +- [ ] Cross-package test: [verify downstream packages still work] +- [ ] Manual verification: [what to check] +``` + +## Step 7 — Present Findings & Get Direction + +**Do not jump straight to action.** Present your findings first and ask the user what they'd like to do next. The goal is to make sure we do the right thing based on the user's judgment. + +**If triaging a GitHub issue:** + +1. Present your findings to the user (classification, severity, impact, root cause, implementation plan) +2. Thank the reporter for filing the issue +3. Ask the user to review your findings and choose next steps before posting anything to GitHub +4. Only post the triage comment to GitHub after the user confirms the direction + +When posting (after user approval): + +```bash +gh issue comment <NUMBER> --body "$(cat <<'EOF' +**Classification**: Bug | **Severity**: [Critical/High/Medium/Low] +**Impact**: [Who is affected and how] +**Root Cause**: [1-2 sentences with `file:line` references] + +### Analysis +[What you found during code path tracing] + +### Reproduction +[Steps or test code that reproduces the bug] + +### Implementation Plan +[Your Step 6 plan] + +### Related +- [Links to related issues, similar patterns found elsewhere] + +--- +Thank you for reporting this issue! If you have any additional information, reproduction steps, or context that could help, please don't hesitate to share — it's always valuable. +EOF +)" + +# Apply labels +gh issue edit <NUMBER> --add-label "bug,severity:high" +``` + +**If answering a user question**, present your findings conversationally. Include code references and links but skip the formal report structure — just answer the question directly with the depth of your research. + +# Rules + +- **Security first** — screen for malicious content before executing anything from an issue +- **Impact first, code second** — always assess business impact before diving into implementation details +- **Link to code** — every claim references specific files and line numbers +- **Be actionable** — every report ends with a clear next step +- **Don't over-assume** — if ambiguous, ask questions. Don't build plans on assumptions. +- **Check for duplicates** — search existing issues before triaging +- **Complexity honesty** — if it touches plugin pipeline, cross-package interfaces, or storage abstractions, it's at least M +- **Consistency matters** — note if the affected code diverges from established patterns. Pattern deviation is often where bugs originate. +- **Security issues** — if you discover a security vulnerability during triage, flag it as Critical immediately and do not discuss publicly until fixed +- **Platform awareness** — always consider whether the issue is browser-specific, Node-specific, or affects both + +# Handoff + +After posting the triage comment: + +- **Actionable bug/enhancement** → Suggest: `@engineer` to implement the proposed plan +- **Security vulnerability** → Flag to maintainer immediately, do not post details publicly +- **Needs more info** → Wait for reporter response +- **Duplicate** → Close with `gh issue close <NUMBER> --reason "not planned" --comment "Duplicate of #[OTHER]"` + +# Final Ask (Required) + +Before ending triage, always call `vscode_askQuestions` (askuserquestion) with the following: + +1. **Thank the user** for reporting/raising the issue +2. **Present your recommended next steps** as options and ask which direction to go: + - Deeper analysis on any specific area + - Hand off to `@engineer` to implement the proposed plan + - Adjust severity or priority + - Request more information from the reporter + - Any other follow-up +3. **Ask if they have additional context** — "Do you have any additional information or context that might help with this issue?" +4. **Ask what to triage next** — "Is there another issue you'd like me to triage?" + +Do not end with findings alone — always confirm next action and prompt for the next issue. diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json index e80dc3a7..46499eaa 100644 --- a/.devcontainer/devcontainer.json +++ b/.devcontainer/devcontainer.json @@ -2,17 +2,14 @@ "name": "Exceptionless.JavaScript", "image": "mcr.microsoft.com/vscode/devcontainers/typescript-node:latest", "extensions": [ - "andys8.jest-snippets", "dbaeumer.vscode-eslint", "editorconfig.editorconfig", "esbenp.prettier-vscode", - "firsttris.vscode-jest-runner", - "hbenl.vscode-test-explorer", "juancasanova.awesometypescriptproblemmatcher", - "ritwickdey.liveserver", "ryanluker.vscode-coverage-gutters", - "streetsidesoftware.code-spell-checker" + "streetsidesoftware.code-spell-checker", + "vitest.explorer" ], "forwardPorts": [3000], - "postCreateCommand": "npm install", + "postCreateCommand": "npm ci" } diff --git a/.eslintrc.js b/.eslintrc.js deleted file mode 100644 index c0e21798..00000000 --- a/.eslintrc.js +++ /dev/null @@ -1,49 +0,0 @@ -module.exports = { - root: true, - env: { - browser: true, - es6: true, - node: true - }, - extends: [ - "eslint:recommended", - "plugin:import/typescript", - "plugin:@typescript-eslint/eslint-recommended", - "plugin:@typescript-eslint/recommended", - "plugin:@typescript-eslint/recommended-requiring-type-checking", - ], - globals: { - MutationObserver: "readonly", - SharedArrayBuffer: "readonly", - Atomics: "readonly", - BigInt: "readonly", - BigInt64Array: "readonly", - BigUint64Array: "readonly", - }, - parser: "@typescript-eslint/parser", - parserOptions: { - ecmaVersion: 2020, - sourceType: "module", - project: ["./tsconfig.eslint.json"], - tsconfigRootDir: __dirname - }, - plugins: [ - "@typescript-eslint", - "import", - "jest" - ], - ignorePatterns: [ - "dist", - "node_modules", - "example" - ], - rules: { - "@typescript-eslint/no-inferrable-types": "off", - "@typescript-eslint/no-unsafe-assignment": "off", - "@typescript-eslint/no-unsafe-call": "off", - "@typescript-eslint/no-unsafe-member-access": "off", - "@typescript-eslint/no-unsafe-return": "off", - "@typescript-eslint/no-redundant-type-constituents": "off", - "@typescript-eslint/restrict-plus-operands": "off", - } -}; diff --git a/.gitattributes b/.gitattributes new file mode 100644 index 00000000..6704eb6c --- /dev/null +++ b/.gitattributes @@ -0,0 +1,3 @@ +# Auto detect text files and perform LF normalization +* text=auto eol=lf +*.sh text eol=lf diff --git a/.github/FUNDING.yml b/.github/FUNDING.yml new file mode 100644 index 00000000..25f88763 --- /dev/null +++ b/.github/FUNDING.yml @@ -0,0 +1 @@ +github: exceptionless diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 1b6c7ef8..59489999 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -1,5 +1,9 @@ name: Build -on: [ push, pull_request ] +on: [push, pull_request] + +permissions: + contents: read + packages: write jobs: build: @@ -11,34 +15,65 @@ jobs: - macos-latest - windows-latest node_version: - - 18 + - 24 name: Node ${{ matrix.node_version }} on ${{ matrix.os }} steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@v6 with: fetch-depth: 0 - name: Build Reason - run: "echo ref: ${{github.ref}} event: ${{github.event_name}}" + shell: bash + run: | + branch=${GITHUB_REF##*/}. + if [[ "$branch" = "main." ]]; then + branch="" + elif [[ "$branch" = "master." ]]; then + branch="" + elif [[ "${GITHUB_REF}" = refs/tags* ]]; then + branch="" + elif [[ "${GITHUB_REF}" = refs/pull* ]]; then + branch="" + fi + echo "GIT_BRANCH_SUFFIX=$branch" >> $GITHUB_ENV + echo "ref: $GITHUB_REF event: $GITHUB_EVENT_NAME branch_suffix: $branch" - name: Setup Node.js environment - uses: actions/setup-node@v3 + uses: actions/setup-node@v6 with: node-version: ${{ matrix.node_version }} - registry-url: 'https://registry.npmjs.org' - - name: Install latest NPM - run: npm install -g npm@9 - - name: Set Min Version - uses: Stelzi79/action-minver@3.0.1 - id: version + registry-url: "https://registry.npmjs.org" + - name: Cache node_modules + uses: actions/cache@v5 with: - minimum-major-minor: 2.0 - tag-prefix: v + path: node_modules + key: ${{ matrix.node_version }}-${{ runner.os }}-node-modules-${{ hashFiles('package-lock.json') }} + - name: Setup .NET SDK for MinVer + uses: actions/setup-dotnet@v5 + with: + dotnet-version: "10.0.x" - name: Build Version + id: version + shell: bash run: | + dotnet tool install --global minver-cli --version 7.0.0 + version=$(minver --tag-prefix v --default-pre-release-identifiers "preview.${GIT_BRANCH_SUFFIX}0" --minimum-major-minor 3.0) + + # If on a non-main branch, insert branch name before the height (last numeric segment) + if [ -n "$GIT_BRANCH_SUFFIX" ]; then + branch_name="${GIT_BRANCH_SUFFIX%.}" + if [[ "$version" != *"$branch_name"* ]]; then + version=$(echo "$version" | sed -E "s/\.([0-9]+)$/.${GIT_BRANCH_SUFFIX}\1/") + fi + fi + + echo "version=$version" >> $GITHUB_OUTPUT + echo "Version: $version" + echo "### Version: $version" >> $GITHUB_STEP_SUMMARY + npm install --global replace-in-files-cli - replace-in-files --string="3.0.0-dev" --replacement=${{steps.version.outputs.version}} packages/core/src/configuration/Configuration.ts - replace-in-files --string="3.0.0-dev" --replacement=${{steps.version.outputs.version}} **/package*.json - npm install + replace-in-files --string="3.0.0-dev" --replacement=$version packages/core/src/configuration/Configuration.ts + replace-in-files --string="3.0.0-dev" --replacement=$version **/package*.json + npm ci - name: Build run: npm run build - name: Lint @@ -51,14 +86,19 @@ jobs: env: NODE_AUTH_TOKEN: ${{secrets.NPM_TOKEN}} - name: Setup GitHub CI Node.js environment - if: github.event_name != 'pull_request' && matrix.os == 'ubuntu-latest' - uses: actions/setup-node@v2 + if: github.event_name != 'pull_request' && startsWith(github.ref, 'refs/heads/') && matrix.os == 'ubuntu-latest' && contains(steps.version.outputs.version, '-') + uses: actions/setup-node@v6 with: node-version: ${{ matrix.node_version }} - registry-url: 'https://npm.pkg.github.com' - scope: '@exceptionless' + registry-url: "https://npm.pkg.github.com" + scope: "@exceptionless" - name: Push GitHub CI Packages - if: github.event_name != 'pull_request' && matrix.os == 'ubuntu-latest' - run: npm publish --workspaces --access public + if: github.event_name != 'pull_request' && startsWith(github.ref, 'refs/heads/') && matrix.os == 'ubuntu-latest' && contains(steps.version.outputs.version, '-') + shell: bash + run: | + TAG_BRANCH="${GIT_BRANCH_SUFFIX%.}" + TAG_BRANCH="${TAG_BRANCH:-main}" + TAG_BRANCH="${TAG_BRANCH//\//-}" + npm publish --workspaces --access public --tag "ci-${TAG_BRANCH}" || true env: NODE_AUTH_TOKEN: ${{secrets.GITHUB_TOKEN}} diff --git a/.gitignore b/.gitignore index 6d114876..b139f739 100644 --- a/.gitignore +++ b/.gitignore @@ -12,3 +12,5 @@ packages/node/test-data yarn.lock .exceptionless + +example/nextjs/.next/ diff --git a/.npmrc b/.npmrc new file mode 100644 index 00000000..521a9f7c --- /dev/null +++ b/.npmrc @@ -0,0 +1 @@ +legacy-peer-deps=true diff --git a/.prettierignore b/.prettierignore new file mode 100644 index 00000000..dbdb46f6 --- /dev/null +++ b/.prettierignore @@ -0,0 +1,8 @@ +.DS_Store +.agents +node_modules +minver +example/svelte-kit/.svelte-kit + +# Ignore files for PNPM, NPM and YARN +package-lock.json diff --git a/.prettierrc b/.prettierrc new file mode 100644 index 00000000..a4937b33 --- /dev/null +++ b/.prettierrc @@ -0,0 +1,4 @@ +{ + "printWidth": 160, + "trailingComma": "none" +} diff --git a/.vscode/extensions.json b/.vscode/extensions.json index 7905ddec..cf4dd799 100644 --- a/.vscode/extensions.json +++ b/.vscode/extensions.json @@ -1,15 +1,12 @@ { "recommendations": [ - "andys8.jest-snippets", "davidanson.vscode-markdownlint", "dbaeumer.vscode-eslint", "editorconfig.editorconfig", "esbenp.prettier-vscode", - "firsttris.vscode-jest-runner", - "hbenl.vscode-test-explorer", "juancasanova.awesometypescriptproblemmatcher", - "ritwickdey.liveserver", "ryanluker.vscode-coverage-gutters", - "streetsidesoftware.code-spell-checker" + "streetsidesoftware.code-spell-checker", + "vitest.explorer" ] } diff --git a/.vscode/launch.json b/.vscode/launch.json index 80c3ca13..356f770f 100644 --- a/.vscode/launch.json +++ b/.vscode/launch.json @@ -7,24 +7,20 @@ "request": "launch", "preLaunchTask": "npm: build", "cwd": "${workspaceRoot}/example/express", - "skipFiles": [ - "<node_internals>/**" - ], + "skipFiles": ["<node_internals>/**"], "type": "pwa-node" }, { "name": "Test", "request": "launch", "type": "node", - "program": "${workspaceFolder}/node_modules/.bin/jest", - "args": [ - "--runInBand" - ], + "program": "${workspaceFolder}/node_modules/.bin/vitest", + "args": ["--run"], "console": "integratedTerminal", "internalConsoleOptions": "neverOpen", "disableOptimisticBPs": true, "windows": { - "program": "${workspaceFolder}/node_modules/jest/bin/jest", + "program": "${workspaceFolder}/node_modules/vitest/vitest.mjs" }, "cwd": "${workspaceRoot}" }, @@ -32,15 +28,13 @@ "name": "Test Current File", "request": "launch", "type": "node", - "program": "${workspaceFolder}/node_modules/.bin/jest", - "args": [ - "${fileBasenameNoExtension}", - ], + "program": "${workspaceFolder}/node_modules/.bin/vitest", + "args": ["--run", "${fileBasenameNoExtension}"], "console": "integratedTerminal", "internalConsoleOptions": "neverOpen", "disableOptimisticBPs": true, "windows": { - "program": "${workspaceFolder}/node_modules/jest/bin/jest", + "program": "${workspaceFolder}/node_modules/vitest/vitest.mjs" }, "cwd": "${workspaceRoot}" } diff --git a/.vscode/settings.json b/.vscode/settings.json index fa7b1fdf..ed5599ac 100644 --- a/.vscode/settings.json +++ b/.vscode/settings.json @@ -9,7 +9,7 @@ "test-data": true }, "search.exclude": { - "**/node_modules": true, + "**/node_modules": true }, "prettier.eslintIntegration": true, "javascript.preferences.quoteStyle": "double", @@ -35,10 +35,6 @@ "vitejs", "webcompat" ], - "eslint.validate": [ - "javascript", - "typescript" - ], - "deno.enable": false, - "jest.jestCommandLine": "npm test --" + "eslint.validate": ["javascript", "typescript"], + "deno.enable": false } diff --git a/AGENTS.md b/AGENTS.md new file mode 100644 index 00000000..d1684d4c --- /dev/null +++ b/AGENTS.md @@ -0,0 +1,392 @@ +# Agent Guidelines for Exceptionless.JavaScript + +You are an expert TypeScript/JavaScript engineer working on Exceptionless.JavaScript, the official client SDK monorepo for the [Exceptionless](https://exceptionless.com) error and event monitoring platform. This is an npm workspaces monorepo containing 6 library packages and 5 example apps. Your changes must maintain backward compatibility, cross-package consistency, and correctness across browser and Node.js environments. Approach each task methodically: research existing patterns, make surgical changes, and validate thoroughly. + +**Craftsmanship Mindset**: Every line of code should be intentional, readable, and maintainable. Write code you'd be proud to have reviewed by senior engineers. Prefer simplicity over cleverness. When in doubt, favor explicitness and clarity. + +## Repository Overview + +Exceptionless.JavaScript provides client SDKs for sending errors, logs, feature usages, and other events to an Exceptionless server: + +- **Core** (`@exceptionless/core`) — Event building, configuration, plugin system, queues, storage, submission +- **Browser** (`@exceptionless/browser`) — Browser-specific error handling, request info, lifecycle plugins +- **Node** (`@exceptionless/node`) — Node.js error handling, file-based storage, process lifecycle +- **React** (`@exceptionless/react`) — React error boundary component +- **Vue** (`@exceptionless/vue`) — Vue plugin wrapper +- **AngularJS** (`@exceptionless/angularjs`) — AngularJS module wrapper + +Design principles: **interface-first**, **plugin architecture**, **zero runtime dependencies in core**, **platform-specific extensions**, **ESM-first with CDN bundles**. + +## Quick Start + +```bash +# Install dependencies (use ci for clean installs) +npm ci + +# Build all packages (respects workspace dependency order) +npm run build + +# Run all tests +npm test + +# Lint (ESLint + Prettier check) +npm run lint + +# Auto-format with Prettier +npm run format + +# Clean all build outputs +npm run clean + +# Build + watch a specific package +npm run watch --workspace=packages/core +``` + +## Project Structure + +```text +packages/ +├── core/ # Core library — events, configuration, plugins, queues, storage, submission +│ ├── src/ +│ │ ├── configuration/ # Configuration class, SettingsManager +│ │ ├── lastReferenceIdManager/ +│ │ ├── logging/ # ILog, ConsoleLog, NullLog +│ │ ├── models/ # Event, ErrorInfo, RequestInfo, UserInfo, etc. +│ │ ├── plugins/ # IEventPlugin interface, EventPluginManager, default plugins +│ │ ├── queue/ # IEventQueue, DefaultEventQueue +│ │ ├── storage/ # IStorage, InMemoryStorage, LocalStorage +│ │ ├── submission/ # ISubmissionClient, DefaultSubmissionClient +│ │ ├── EventBuilder.ts # Fluent event builder API +│ │ ├── ExceptionlessClient.ts # Main client class +│ │ ├── Utils.ts # Shared utility functions +│ │ └── index.ts # Barrel export +│ └── test/ +├── browser/ # Browser client — extends core with browser-specific plugins +│ ├── src/ +│ │ ├── plugins/ # BrowserErrorPlugin, GlobalHandlerPlugin, etc. +│ │ ├── BrowserExceptionlessClient.ts +│ │ └── index.ts +│ └── test/ +├── node/ # Node.js client — extends core with Node-specific plugins and storage +│ ├── src/ +│ │ ├── plugins/ +│ │ ├── storage/ +│ │ ├── NodeExceptionlessClient.ts +│ │ └── index.ts +│ └── test/ +├── react/ # React error boundary wrapper +│ └── src/ +│ ├── ExceptionlessErrorBoundary.tsx +│ └── index.ts +├── vue/ # Vue plugin wrapper +│ └── src/ +│ └── index.ts +└── angularjs/ # AngularJS module wrapper + └── src/ + └── index.ts +example/ +├── browser/ # Vanilla JS browser sample +├── express/ # Express.js server sample +├── react/ # React + Vite sample +├── svelte-kit/ # SvelteKit sample +└── vue/ # Vue + Vite sample +``` + +### Dependency Flow + +```text +core → browser → react + → vue + → angularjs +core → node +``` + +All framework packages (`react`, `vue`, `angularjs`) depend on `browser`, which depends on `core`. The `node` package depends directly on `core`. + +## Coding Standards + +### Style & Formatting + +- Run `npm run format` (Prettier) to auto-format code +- Run `npm run lint` (ESLint + Prettier check) to verify +- Match existing file style; minimize diffs +- No code comments unless necessary—code should be self-explanatory + +### TypeScript + +- **Strict mode**: All packages use `"strict": true` with `exactOptionalPropertyTypes`, `noImplicitAny`, `noUnusedLocals`, `noUnusedParameters` +- **Target**: ES2022 with ESNext modules +- **Prefer `interface` over `type`** for object shapes +- **Use modern features**: optional chaining (`?.`), nullish coalescing (`??`), `async`/`await` over raw promises +- **Explicit return types** on exported functions +- **No `any`**: Use `unknown` and narrow with type guards + +### Module System + +- **ESM only**: All packages use `"type": "module"` in `package.json` +- **File extensions in imports**: Use `.js` extensions in TypeScript import paths (e.g., `import { Foo } from "./Foo.js"`) +- **Barrel exports**: Each package has an `index.ts` that re-exports all public API +- **Type-only exports**: Use `export type { ... }` for interfaces and type aliases + +### Architecture Patterns + +- **Interface-first design**: Core abstractions are interfaces (`IEventPlugin`, `IStorage`, `IEventQueue`, `ISubmissionClient`, `ILog`) +- **Plugin architecture**: Functionality is composed via `IEventPlugin` implementations registered on `Configuration` +- **Platform extension**: Browser and Node packages extend `ExceptionlessClient` with platform-specific plugins and services +- **Framework wrappers**: React, Vue, and AngularJS packages wrap the browser client with framework-specific integration patterns +- **Zero runtime dependencies in core**: The core package has no production `dependencies` +- **CDN bundles**: Each package produces esbuild bundles (`dist/index.bundle.js`, `dist/index.bundle.min.js`) for unpkg/jsdelivr + +### Code Quality + +- Write complete, runnable code—no placeholders, TODOs, or `// existing code...` comments +- Follow SOLID, DRY principles; remove unused code and parameters +- Clear, descriptive naming; prefer explicit over clever +- One primary type/class per file +- Keep files focused on a single responsibility + +### Common Patterns + +```typescript +// Plugin implementation +export class MyPlugin implements IEventPlugin { + priority = 50; + name = "MyPlugin"; + + async startup(context: PluginContext): Promise<void> { + /* ... */ + } + async run(context: EventPluginContext): Promise<void> { + /* ... */ + } +} + +// Fluent event builder +client.createLog("source", "message", "info").addTags("tag1", "tag2").setUserIdentity("user@example.com").submit(); + +// Configuration +const client = new ExceptionlessClient(); +await client.startup((config) => { + config.apiKey = "API_KEY_HERE"; + config.serverUrl = "https://localhost:5200"; + config.addPlugin(new MyPlugin()); +}); +``` + +### Key Interfaces + +```typescript +// Plugin lifecycle +interface IEventPlugin { + priority?: number; + name?: string; + startup?(context: PluginContext): Promise<void>; + suspend?(context: PluginContext): Promise<void>; + run?(context: EventPluginContext): Promise<void>; +} + +// Storage abstraction +interface IStorage { + length(): Promise<number>; + clear(): Promise<void>; + getItem(key: string): Promise<string | null>; + setItem(key: string, value: string): Promise<void>; + removeItem(key: string): Promise<void>; + key(index: number): Promise<string | null>; + keys(): Promise<string[]>; +} + +// Submission abstraction +interface ISubmissionClient { + getSettings(version: number): Promise<Response<ServerSettings>>; + submitEvents(events: Event[]): Promise<Response>; + submitUserDescription(referenceId: string, description: UserDescription): Promise<Response>; + submitHeartbeat(sessionIdOrUserId: string, closeSession: boolean): Promise<Response>; +} +``` + +## Making Changes + +### Before Starting + +1. **Gather context**: Read related files across packages, understand the dependency flow +2. **Research patterns**: Search for existing usages of the code you're modifying +3. **Understand completely**: Know the problem, side effects, and edge cases before coding +4. **Plan the approach**: Choose the simplest solution that satisfies all requirements +5. **Check cross-package impact**: Changes to `core` affect all downstream packages + +### Pre-Implementation Analysis + +Before writing any implementation code, think critically: + +1. **What could go wrong?** Consider browser vs Node differences, async timing, null/undefined edge cases +2. **What are the failure modes?** Network failures, storage unavailable, plugin errors +3. **What assumptions am I making?** Validate each assumption against the codebase +4. **Is this the root cause?** Don't fix symptoms—trace to the core problem +5. **Is there existing code that does this?** Search before creating new utilities +6. **Does this work in both browser and Node?** Core code must be platform-agnostic + +### Test-First Development + +**Always write or extend tests before implementing changes:** + +1. **Find existing tests first**: Search `test/` directories in the relevant package +2. **Extend existing test files**: Add test cases to existing `describe` blocks when possible +3. **Write failing tests**: Create tests that demonstrate the bug or missing feature +4. **Implement the fix**: Write minimal code to make tests pass +5. **Refactor**: Clean up while keeping tests green +6. **Verify edge cases**: Add tests for boundary conditions and error paths + +### While Coding + +- **Minimize diffs**: Change only what's necessary, preserve formatting and structure +- **Preserve behavior**: Don't break existing functionality or change semantics unintentionally +- **Build incrementally**: Run `npm run build` after each logical change to catch type errors early +- **Test continuously**: Run `npm test` (or `npm test --workspace=packages/core`) to verify correctness +- **Match style**: Follow the patterns in surrounding code exactly +- **Fix issues you find**: If you discover a correctness issue—whether pre-existing or introduced by your changes—fix it. If the fix is trivial, just do it. If it's non-trivial, present the issue and a proposed plan to the user. + +### Validation + +Before marking work complete, verify: + +1. **Builds successfully**: `npm run build` exits with code 0 +2. **All tests pass**: `npm test` shows no failures +3. **Lint passes**: `npm run lint` shows no errors +4. **API compatibility**: Public API changes are intentional and backward-compatible +5. **Exports updated**: New public types are re-exported through `index.ts` barrel files +6. **Cross-package consistency**: If you changed an interface in `core`, verify all implementations still conform +7. **Breaking changes flagged**: Clearly identify any breaking changes for review + +## Testing + +### Framework + +- **Vitest** as the test runner +- **`vitest`** for imports (`describe`, `test`, `expect`, `beforeEach`, `afterEach`) +- **jsdom** test environment for browser packages, **node** for the node package +- **vitest.config.ts** at root defines test projects for each package + +### Test Structure + +Tests live in `test/` directories within each package, mirroring the `src/` structure: + +```text +packages/core/test/ +├── ExceptionlessClient.test.ts +├── Utils.test.ts +├── helpers.ts # Shared test utilities +├── configuration/ +├── plugins/ +├── queue/ +├── storage/ +└── submission/ +``` + +### Writing Tests + +Follow the Arrange-Act-Assert pattern: + +```typescript +import { describe, test, expect } from "vitest"; + +import { ExceptionlessClient } from "../src/ExceptionlessClient.js"; + +describe("ExceptionlessClient", () => { + test("should use event reference ids", async () => { + // Arrange + const client = new ExceptionlessClient(); + client.config.apiKey = "UNIT_TEST_API_KEY"; + + // Act + const context = await client.submitException(createException()); + + // Assert + expect(context.event.reference_id).not.toBeUndefined(); + }); +}); +``` + +### Test Naming + +Use descriptive names that explain the scenario: + +- `"should use event reference ids"` +- `"should cancel event with known bot"` +- `"should handle null input gracefully"` + +### Running Tests + +```bash +# All tests across all packages +npm test + +# Tests for a specific package +npm test --workspace=packages/core +npm test --workspace=packages/browser + +# Watch mode for a specific package +npm run test:watch --workspace=packages/core + +# Run tests matching a pattern +npx vitest --run --testNamePattern="ExceptionlessClient" +``` + +### Test Principles (FIRST) + +- **Fast**: Tests execute quickly with no network calls +- **Isolated**: No dependencies on external services or execution order +- **Repeatable**: Consistent results every run +- **Self-checking**: Tests validate their own outcomes +- **Timely**: Write tests alongside code + +## Build System + +### Per-Package Build + +Each package runs two build steps: + +1. **`tsc`**: Compiles TypeScript → JavaScript with declarations (`.js` + `.d.ts` + `.js.map`) +2. **`esbuild`**: Bundles into single files for CDN distribution (`index.bundle.js`, `index.bundle.min.js`) + +### Build Order + +npm workspaces respects dependency order. `npm run build` at the root builds packages in topological order: `core` first, then `browser`/`node`, then `react`/`vue`/`angularjs`. + +### Package Outputs + +Each package publishes: + +```json +{ + "main": "dist/index.js", + "types": "dist/index.d.ts", + "unpkg": "dist/index.bundle.min.js", + "jsdelivr": "dist/index.bundle.min.js", + "exports": { ".": "./dist/index.js" } +} +``` + +## Security + +- **Validate all inputs**: Check for null, undefined, empty strings at public API boundaries +- **Sanitize external data**: Never trust data from network responses or storage +- **No sensitive data in events**: Don't capture passwords, tokens, keys, or PII +- **Use secure defaults**: Default to HTTPS for server URLs +- **Follow OWASP guidelines**: Review [OWASP Top 10](https://owasp.org/www-project-top-ten/) +- **Dependency security**: Run `npm audit` before adding dependencies; minimize dependency count +- **No `eval` or `Function` constructors**: Avoid dynamic code execution + +## Debugging + +1. **Reproduce** with minimal steps using an example app +2. **Check the plugin pipeline**: Enable `ConsoleLog` to trace event processing +3. **Understand** the root cause before fixing +4. **Test** the fix thoroughly across affected packages +5. **Verify** in both browser and Node environments when the change is in `core` + +## Resources + +- [README.md](README.md) — Overview, installation, and usage +- [example/](example/) — Sample applications for each platform +- [Exceptionless](https://exceptionless.com) — The error monitoring platform these SDKs target diff --git a/README.md b/README.md index 819be068..dc9962d7 100644 --- a/README.md +++ b/README.md @@ -3,14 +3,13 @@ [![Build status](https://github.com/Exceptionless/Exceptionless.JavaScript/workflows/Build/badge.svg)](https://github.com/Exceptionless/Exceptionless.JavaScript/actions) [![Discord](https://img.shields.io/discord/715744504891703319)](https://discord.gg/6HxgFCx) [![NPM version](https://img.shields.io/npm/v/@exceptionless/core.svg)](https://www.npmjs.org/package/@exceptionless/core) -[![Donate](https://img.shields.io/badge/donorbox-donate-blue.svg)](https://donorbox.org/exceptionless?recurring=true) The definition of the word exceptionless is: to be without exception. Exceptionless provides real-time error reporting for your JavaScript applications in the browser or in Node.js. It organizes the gathered information into simple actionable data that will help your app become exceptionless! ## Browser You can install the npm package via `npm install @exceptionless/browser --save` -or via cdn [`https://unpkg.com/@exceptionless/browser](https://unpkg.com/@exceptionless/browser). +or via cdn [`https://unpkg.com/@exceptionless/browser`](https://unpkg.com/@exceptionless/browser). Next, you just need to call startup during your apps startup to automatically capture unhandled errors. @@ -22,7 +21,7 @@ await Exceptionless.startup((c) => { c.setUserIdentity("12345678", "Blake"); // set some default data - c.defaultData["mydata"] = { + c.defaultData["mydata"] = { myGreeting: "Hello World" }; @@ -77,9 +76,9 @@ Use one of the following methods to install Exceptionless into your browser appl ##### CDN - Add the following script tag at the very beginning of your page: +Add the following script tag at the very beginning of your page: - ```html +```html <script type="module"> import { Exceptionless } from "https://unpkg.com/@exceptionless/browser"; @@ -87,20 +86,20 @@ Use one of the following methods to install Exceptionless into your browser appl c.apiKey = "API_KEY_HERE"; }); </script> - ``` +``` ##### npm - 1. Install the package by running `npm install @exceptionless/browser --save`. - 2. Import Exceptionless and call startup during app startup. +1. Install the package by running `npm install @exceptionless/browser --save`. +2. Import Exceptionless and call startup during app startup. - ```js - import { Exceptionless } from "@exceptionless/browser"; +```js +import { Exceptionless } from "@exceptionless/browser"; - await Exceptionless.startup((c) => { - c.apiKey = "API_KEY_HERE"; - }); - ``` +await Exceptionless.startup((c) => { + c.apiKey = "API_KEY_HERE"; +}); +``` #### Node.js @@ -109,13 +108,13 @@ Use this method to install Exceptionless into your Node application: 1. Install the package by running `npm install @exceptionless/node --save`. 2. Import the Exceptionless module in your application: - ```js - import { Exceptionless } from "@exceptionless/node"; +```js +import { Exceptionless } from "@exceptionless/node"; - await Exceptionless.startup((c) => { - c.apiKey = "API_KEY_HERE"; - }); - ``` +await Exceptionless.startup((c) => { + c.apiKey = "API_KEY_HERE"; +}); +``` ### Configuring the client @@ -249,28 +248,28 @@ If you find a bug or want to contribute a feature, feel free to create a pull re 1. Clone this repository: - ```sh - git clone https://github.com/exceptionless/Exceptionless.JavaScript.git - ``` + ```sh + git clone https://github.com/exceptionless/Exceptionless.JavaScript.git + ``` 2. Install [Node.js](https://nodejs.org). Node is used for building and testing purposes. 3. Install the development dependencies using [npm](https://www.npmjs.com). - ```sh - npm install - ``` + ```sh + npm install + ``` 4. Build the project by running the following command. - ```sh - npm run build - ``` + ```sh + npm run build + ``` 5. Test the project by running the following command. - ```sh - npm test - ``` + ```sh + npm test + ``` ## Thanks diff --git a/eslint.config.mjs b/eslint.config.mjs new file mode 100644 index 00000000..050591c9 --- /dev/null +++ b/eslint.config.mjs @@ -0,0 +1,45 @@ +import eslint from "@eslint/js"; +import { defineConfig } from "eslint/config"; +import eslintConfigPrettier from "eslint-config-prettier"; +import vitest from "@vitest/eslint-plugin"; +import tseslint from "typescript-eslint"; + +export default defineConfig( + { ignores: ["**/dist/", "**/node_modules/", ".agents/", "example/"] }, + eslint.configs.recommended, + { + extends: tseslint.configs.recommendedTypeChecked, + languageOptions: { + parserOptions: { + projectService: { + allowDefaultProject: ["eslint.config.mjs"] + }, + tsconfigRootDir: import.meta.dirname + } + }, + rules: { + "@typescript-eslint/no-inferrable-types": "off", + "@typescript-eslint/no-unsafe-assignment": "off", + "@typescript-eslint/no-unsafe-call": "off", + "@typescript-eslint/no-unsafe-member-access": "off", + "@typescript-eslint/no-unsafe-return": "off", + "@typescript-eslint/no-redundant-type-constituents": "off", + "@typescript-eslint/no-duplicate-type-constituents": "off", + "@typescript-eslint/restrict-plus-operands": "off", + "@typescript-eslint/no-unused-vars": "error", + "@typescript-eslint/no-unused-expressions": ["error", { allowShortCircuit: true }], + "@typescript-eslint/no-misused-promises": ["error", { checksVoidReturn: false }] + } + }, + eslintConfigPrettier, + { + files: ["**/test/**/*.ts"], + plugins: vitest.configs.recommended.plugins, + rules: { + ...vitest.configs.recommended.rules, + "vitest/valid-title": "off", + "vitest/valid-describe-callback": "off", + "vitest/no-done-callback": "warn" + } + } +); diff --git a/example/browser/index.html b/example/browser/index.html index a067c442..9da74706 100644 --- a/example/browser/index.html +++ b/example/browser/index.html @@ -1,4 +1,4 @@ -<!DOCTYPE html> +<!doctype html> <html> <head lang="en"> <meta charset="UTF-8" /> @@ -33,7 +33,7 @@ <h1>Benchmark</h1> <button id="prune-large-object-benchmark">Prune Large Object (1000 times)</button> <h2>Client Logs</h2> - <textarea id="logs" rows="30" style="width: 100%;"></textarea> + <textarea id="logs" rows="30" style="width: 100%"></textarea> <script type="module" src="index.js"></script> </body> diff --git a/example/browser/index.js b/example/browser/index.js index 36232f38..df524fbb 100644 --- a/example/browser/index.js +++ b/example/browser/index.js @@ -25,8 +25,8 @@ await Exceptionless.startup((c) => { myPassword: "123456", customValue: "Password", value: { - Password: "123456", - }, + Password: "123456" + } }; c.defaultTags.push("Example", "JavaScript"); @@ -38,85 +38,62 @@ const registerEventHandlers = () => { for (const element of elements) { element.addEventListener("click", (event) => { const level = event.target.attributes["data-level"]?.value; - Exceptionless.submitLog( - "sendEvents", - `This is a log message with level: ${level || "<no log level>"}`, - level - ); + Exceptionless.submitLog("sendEvents", `This is a log message with level: ${level || "<no log level>"}`, level); }); } - document - .querySelector("#submit-error-log-with-error") - .addEventListener("click", async () => { - const builder = Exceptionless.createLog("Button Click", "Error Log with Error"); - builder.context.setException(new Error("test")); - await builder.submit(); - }); - - document - .querySelector("#throw-browser-extension-error") - .addEventListener("click", () => { - const error = new Error("A Browser Extension Error"); - error.stack = "at <anonymous>() in chrome-extension://bmagokdooijbeehmkpknfglimnifench/firebug-lite.js:line 9716:col 29" - - throw error; - }); - - document - .querySelector("#throw-custom-error") - .addEventListener("click", () => { - throw new CustomError("A Custom Error", 500); - }); - - document - .querySelector("#throw-division-by-zero-error") - .addEventListener("click", () => { - divide(10, 0); - }); - - document - .querySelector("#throw-index-out-of-range") - .addEventListener("click", () => { - throwIndexOutOfRange(); - }); - - document - .querySelector("#throw-index-out-of-range-custom-stacking") - .addEventListener("click", () => { - throwIndexOutOfRange(1, true); - }); - - document - .querySelector("#throw-string-error") - .addEventListener("click", () => { - throwStringError(); - }); - - document - .querySelector("#throw-ignored-error") - .addEventListener("click", () => { - throw new MediaError("An Ignored Exception Type"); - }); - - document - .querySelector("#throw-jquery-ajax-error") - .addEventListener("click", () => { - $.ajax("http://notexistenturlthrowserror", { - type: "POST", - success: (data, textStatus, jqXHR) => { - console.log({ message: "jQuery.ajax.success", data, textStatus, jqXHR }); - }, - error: (jqXHR, textStatus, errorThrown) => { - console.log({ message: "jQuery.ajax.error", jqXHR, textStatus, errorThrown }); - } - }); + document.querySelector("#submit-error-log-with-error").addEventListener("click", async () => { + const builder = Exceptionless.createLog("Button Click", "Error Log with Error"); + builder.context.setException(new Error("test")); + await builder.submit(); + }); + + document.querySelector("#throw-browser-extension-error").addEventListener("click", () => { + const error = new Error("A Browser Extension Error"); + error.stack = "at <anonymous>() in chrome-extension://bmagokdooijbeehmkpknfglimnifench/firebug-lite.js:line 9716:col 29"; + + throw error; + }); + + document.querySelector("#throw-custom-error").addEventListener("click", () => { + throw new CustomError("A Custom Error", 500); + }); + + document.querySelector("#throw-division-by-zero-error").addEventListener("click", () => { + divide(10, 0); + }); + + document.querySelector("#throw-index-out-of-range").addEventListener("click", () => { + throwIndexOutOfRange(); + }); + + document.querySelector("#throw-index-out-of-range-custom-stacking").addEventListener("click", () => { + throwIndexOutOfRange(1, true); + }); + + document.querySelector("#throw-string-error").addEventListener("click", () => { + throwStringError(); + }); + + document.querySelector("#throw-ignored-error").addEventListener("click", () => { + throw new MediaError("An Ignored Exception Type"); + }); + + document.querySelector("#throw-jquery-ajax-error").addEventListener("click", () => { + $.ajax("http://notexistenturlthrowserror", { + type: "POST", + success: (data, textStatus, jqXHR) => { + console.log({ message: "jQuery.ajax.success", data, textStatus, jqXHR }); + }, + error: (jqXHR, textStatus, errorThrown) => { + console.log({ message: "jQuery.ajax.error", jqXHR, textStatus, errorThrown }); + } }); + }); - document - .querySelector("#throw-promise-unhandled-rejection") - .addEventListener("click", () => { - const promiseFn = () => new Promise(function (_, reject) { + document.querySelector("#throw-promise-unhandled-rejection").addEventListener("click", () => { + const promiseFn = () => + new Promise(function (_, reject) { switch (Math.floor(Math.random() * 5)) { case 0: reject(0); @@ -135,100 +112,94 @@ const registerEventHandlers = () => { } }); - promiseFn(); - }); - - document - .querySelector("#config-settings-log") - .addEventListener("click", () => { - Exceptionless.config.services.log.info( - JSON.stringify(Exceptionless.config.settings) - ); - }); - - document - .querySelector("#prune-large-object-benchmark") - .addEventListener("click", () => { - const data = { - str: "hello", - num: 123, - bool: true, - nullVal: null, - undefinedVal: undefined, - arr: [ - "foo", - 42, - { - prop1: "bar", - prop2: true, - prop3: [ - 1, - 2, - { - nestedProp1: "baz", - nestedProp2: false, - nestedObj: {} - } - ] - } - ], - person: { - name: "John", - age: 30, - address: { - street: "123 Main St", - city: "Anytown", - state: "TX", - country: { - name: "United States", - region: { - north: { - name: "North Region", - states: ["New York", "Vermont", "New Hampshire", "Maine"] - }, - south: { - name: "South Region", - states: ["Texas", "Florida", "Georgia", "North Carolina"] - }, - east: { - name: "East Region", - states: ["New York", "Massachusetts", "Connecticut", "New Jersey"] - }, - west: { - name: "West Region", - states: ["California", "Oregon", "Washington", "Arizona"] - } + promiseFn(); + }); + + document.querySelector("#config-settings-log").addEventListener("click", () => { + Exceptionless.config.services.log.info(JSON.stringify(Exceptionless.config.settings)); + }); + + document.querySelector("#prune-large-object-benchmark").addEventListener("click", () => { + const data = { + str: "hello", + num: 123, + bool: true, + nullVal: null, + undefinedVal: undefined, + arr: [ + "foo", + 42, + { + prop1: "bar", + prop2: true, + prop3: [ + 1, + 2, + { + nestedProp1: "baz", + nestedProp2: false, + nestedObj: {} + } + ] + } + ], + person: { + name: "John", + age: 30, + address: { + street: "123 Main St", + city: "Anytown", + state: "TX", + country: { + name: "United States", + region: { + north: { + name: "North Region", + states: ["New York", "Vermont", "New Hampshire", "Maine"] + }, + south: { + name: "South Region", + states: ["Texas", "Florida", "Georgia", "North Carolina"] + }, + east: { + name: "East Region", + states: ["New York", "Massachusetts", "Connecticut", "New Jersey"] + }, + west: { + name: "West Region", + states: ["California", "Oregon", "Washington", "Arizona"] } } } - }, - func: function (x) { - return x * 2; - }, - date: new Date(), - regex: /foo(bar)?/i, - symbol: Symbol("my symbol"), - bigint: 9007199254740991n, - map: new Map([ - [{ id: 1 }, "value associated with an object key"], - ["string key", "value associated with a string key"], - [123, "value associated with a number key"], - [Symbol("symbol key"), "value associated with a symbol key"] - ]), - set: new Set(["foo", 42, { prop: "value" }]) - }; - - const { log } = Exceptionless.config.services; - log.info("Starting pruning of large object"); - - const start = performance.now(); - for (let i = 0; i < 1000; i++) { - prune(data, 3); - } - const end = performance.now(); + } + }, + func: function (x) { + return x * 2; + }, + date: new Date(), + regex: /foo(bar)?/i, + symbol: Symbol("my symbol"), + bigint: 9007199254740991n, + map: new Map([ + [{ id: 1 }, "value associated with an object key"], + ["string key", "value associated with a string key"], + [123, "value associated with a number key"], + [Symbol("symbol key"), "value associated with a symbol key"] + ]), + set: new Set(["foo", 42, { prop: "value" }]) + }; + + const { log } = Exceptionless.config.services; + log.info("Starting pruning of large object"); + + const start = performance.now(); + for (let i = 0; i < 1000; i++) { + prune(data, 3); + } + const end = performance.now(); - log.info(`Pruning large object took ${end - start} milliseconds`); - }); + log.info(`Pruning large object took ${end - start} milliseconds`); + }); }; async function throwIndexOutOfRange(indexer, withCustomStacking) { @@ -237,15 +208,13 @@ async function throwIndexOutOfRange(indexer, withCustomStacking) { } catch (e) { if (withCustomStacking) { if (Math.random() < 0.5) { - await Exceptionless.createException(e) - .setManualStackingKey("MyCustomStackingKey") - .submit(); + await Exceptionless.createException(e).setManualStackingKey("MyCustomStackingKey").submit(); } else { await Exceptionless.createException(e) .setManualStackingInfo( { File: "index.js", - Function: "throwIndexOutOfRange", + Function: "throwIndexOutOfRange" }, "Custom Index Out Of Range Exception" ) @@ -290,7 +259,7 @@ class CustomError extends Error { } if (document.readyState === "loading") { - document.addEventListener('DOMContentLoaded', registerEventHandlers); + document.addEventListener("DOMContentLoaded", registerEventHandlers); } else { registerEventHandlers(); } diff --git a/example/browser/package.json b/example/browser/package.json index 41fdeda7..e2fe82d5 100644 --- a/example/browser/package.json +++ b/example/browser/package.json @@ -12,6 +12,6 @@ }, "dependencies": { "@exceptionless/browser": "3.0.0-dev", - "jquery": "^3.7.1" + "jquery": "^4.0.0" } } diff --git a/example/browser/text-area-logger.js b/example/browser/text-area-logger.js index a0982828..6d20ae04 100644 --- a/example/browser/text-area-logger.js +++ b/example/browser/text-area-logger.js @@ -39,7 +39,7 @@ export class TextAreaLogger { if (this.element) { this.element.innerHTML += `\n${formattedMessage}`; } else { - this.messageBuffer.push(formattedMessage) + this.messageBuffer.push(formattedMessage); } } } diff --git a/example/express/app.js b/example/express/app.js index 57824799..b89a849c 100644 --- a/example/express/app.js +++ b/example/express/app.js @@ -1,7 +1,5 @@ -import express from "express"; -const app = express(); - import { Exceptionless, KnownEventDataKeys } from "@exceptionless/node"; +import express from "express"; await Exceptionless.startup((c) => { c.apiKey = "LhhP1C9gijpSKCslHHCvwdSIz298twx271nTest"; @@ -22,11 +20,12 @@ await Exceptionless.startup((c) => { myPassword: "123456", customValue: "Password", value: { - Password: "123456", + Password: "123456" } }; }); +const app = express(); app.get("/", async (req, res) => { await Exceptionless.submitLog("loading index content"); res.send("Hello World!"); @@ -45,9 +44,7 @@ app.get("/trycatch", async (req, res) => { try { throw new Error("Caught in try/catch"); } catch (error) { - await Exceptionless.createException(error) - .setContextProperty(KnownEventDataKeys.RequestInfo, req) - .submit(); + await Exceptionless.createException(error).setContextProperty(KnownEventDataKeys.RequestInfo, req).submit(); res.status(500).send("Error caught in try/catch"); } @@ -55,12 +52,10 @@ app.get("/trycatch", async (req, res) => { app.use(async (err, req, res, next) => { if (res.headersSent) { - return next(err) + return next(err); } - await Exceptionless.createUnhandledException(err, "express") - .setContextProperty(KnownEventDataKeys.RequestInfo, req) - .submit(); + await Exceptionless.createUnhandledException(err, "express").setContextProperty(KnownEventDataKeys.RequestInfo, req).submit(); res.status(500).send("Something broke!"); }); diff --git a/example/express/package.json b/example/express/package.json index 4a542671..1a05cb81 100644 --- a/example/express/package.json +++ b/example/express/package.json @@ -15,7 +15,7 @@ "access": "restricted" }, "dependencies": { - "express": "^4.18.2", + "express": "^5.2.1", "@exceptionless/node": "3.0.0-dev" } } diff --git a/example/nextjs/README.md b/example/nextjs/README.md new file mode 100644 index 00000000..0155b247 --- /dev/null +++ b/example/nextjs/README.md @@ -0,0 +1,52 @@ +## Exceptionless for Next.js + +This example is a very small App Router site that shows the Exceptionless integration shape we want for a Next.js app: simple setup, rich metadata, and clear client/server error coverage. + +- `instrumentation-client.js` for browser startup and navigation logging +- `instrumentation.js` for server startup and `onRequestError` +- `app/error.jsx` for route-level client render failures +- `app/global-error.jsx` for root-level client render failures +- `app/api/demo/route.js` for explicit server-side logging from a route handler + +### What it covers + +- Manual client logs with structured data +- Handled client exceptions submitted from a `try`/`catch` +- Unhandled client promise rejections captured by the browser global handler +- A client transition crash that lands in `app/error.jsx` +- A server route log enriched with request headers, IP, path, query string, and JSON body +- An unhandled route handler error captured by `onRequestError` +- A server component render error captured by `onRequestError` + +### Why it is shaped this way + +This sticks to the native Next.js file boundaries instead of inventing another framework layer: + +- `instrumentation-client.js` is where client-side monitoring starts before the app becomes interactive. +- `instrumentation.js` and `onRequestError` are where uncaught server render, route handler, server action, and proxy errors are captured. +- `app/error.jsx` and `app/global-error.jsx` stay responsible for client render failures inside the App Router. +- Route handlers submit logs directly with `Exceptionless.createLog(...)`, the environment module memoizes `Exceptionless.startup(...)`, and the server flushes with `Exceptionless.processQueue()` when needed. + +### Vercel-specific notes + +- The server helper flushes the Exceptionless queue explicitly. That matters for short-lived serverless runtimes where a background timer may not get enough time to send queued events. +- The route handler uses `after()` so normal server logs flush after the response is sent. +- The example imports `@exceptionless/browser` and `@exceptionless/node` directly and uses the default Next.js bundler behavior, which is Turbopack on Next 16. +- Because this is a workspace example, you still need the root `npm run build` step before starting it locally so the SDK packages have fresh `dist/` output. +- If we later package this for production ergonomics, the clean split is likely a very thin `@exceptionless/nextjs` helper for framework hooks plus an optional `@exceptionless/vercel` add-on for `@vercel/otel`, deployment metadata, and queue-flush helpers. + +### Environment variables + +Set the env vars you want the example to use: + +- `NEXT_PUBLIC_EXCEPTIONLESS_API_KEY` +- `NEXT_PUBLIC_EXCEPTIONLESS_SERVER_URL` +- `EXCEPTIONLESS_API_KEY` +- `EXCEPTIONLESS_SERVER_URL` + +### Run locally + +1. `npm install` +2. `npm run build` +3. `cd example/nextjs` +4. `npm run dev` diff --git a/example/nextjs/app/api/demo/route.js b/example/nextjs/app/api/demo/route.js new file mode 100644 index 00000000..e9d91b18 --- /dev/null +++ b/example/nextjs/app/api/demo/route.js @@ -0,0 +1,30 @@ +import { after } from "next/server"; + +import { startup } from "../../../lib/exceptionless-server.js"; +import { buildRequestContextFromRequest } from "../../../lib/next-request.js"; + +export async function POST(request) { + const parsedBody = await request.json().catch(() => ({})); + const body = typeof parsedBody === "object" && parsedBody !== null ? parsedBody : { value: parsedBody }; + const mode = typeof body.mode === "string" ? body.mode : "log"; + + if (mode === "error") { + throw new Error("Route handler crash from the Exceptionless Next.js demo"); + } + + const { Exceptionless, KnownEventDataKeys } = await startup(); + + const builder = Exceptionless.createLog("nextjs.route", "Route handler log from the demo page", "info").addTags("route-handler"); + builder.setContextProperty(KnownEventDataKeys.RequestInfo, buildRequestContextFromRequest(request, body)); + await builder.submit(); + + after(async () => { + const { Exceptionless } = await startup(); + await Exceptionless.processQueue(); + }); + + return Response.json({ + ok: true, + message: "Server route log submitted. The queue will flush in next/after()." + }); +} diff --git a/example/nextjs/app/error.jsx b/example/nextjs/app/error.jsx new file mode 100644 index 00000000..315571ce --- /dev/null +++ b/example/nextjs/app/error.jsx @@ -0,0 +1,43 @@ +"use client"; + +import Link from "next/link"; +import { useEffect } from "react"; + +import { Exceptionless, startup } from "../lib/exceptionless-browser.js"; + +export default function ErrorPage({ error, reset }) { + useEffect(() => { + if (!error.digest) { + void (async () => { + try { + await startup(); + await Exceptionless.createException(error).addTags("error-boundary").setProperty("handledBy", "app/error.jsx").submit(); + } catch (submitError) { + console.error("Exceptionless route boundary capture failed", submitError); + } + })(); + } + }, [error]); + + return ( + <main className="error-shell"> + <section className="panel error-card"> + <div className="panel-body"> + <p className="eyebrow">Route Error Boundary</p> + <h1>Something inside this route broke.</h1> + <p> + Client-only render errors are submitted here. Server-rendered failures already have a digest and are captured by `instrumentation.js` through + `onRequestError`. + </p> + <div className="error-actions"> + <button type="button" onClick={() => reset()}> + Retry this route + </button> + <Link href="/">Back to the example</Link> + </div> + {error.digest ? <p className="error-digest">Server digest: {error.digest}</p> : null} + </div> + </section> + </main> + ); +} diff --git a/example/nextjs/app/global-error.jsx b/example/nextjs/app/global-error.jsx new file mode 100644 index 00000000..e738eaba --- /dev/null +++ b/example/nextjs/app/global-error.jsx @@ -0,0 +1,46 @@ +"use client"; + +import Link from "next/link"; +import { useEffect } from "react"; + +import { Exceptionless, startup } from "../lib/exceptionless-browser.js"; + +export default function GlobalError({ error, reset }) { + useEffect(() => { + if (!error.digest) { + void (async () => { + try { + await startup(); + await Exceptionless.createException(error).addTags("error-boundary").setProperty("handledBy", "app/global-error.jsx").submit(); + } catch (submitError) { + console.error("Exceptionless global boundary capture failed", submitError); + } + })(); + } + }, [error]); + + return ( + <html lang="en"> + <body> + <main className="error-shell"> + <section className="panel error-card"> + <div className="panel-body"> + <p className="eyebrow">Global Error Boundary</p> + <h1>The root layout failed.</h1> + <p> + This is the last-resort client boundary for the App Router. In normal server-rendered failures we still prefer the richer `onRequestError` path. + </p> + <div className="error-actions"> + <button type="button" onClick={() => reset()}> + Retry the app shell + </button> + <Link href="/">Back to the example</Link> + </div> + {error.digest ? <p className="error-digest">Server digest: {error.digest}</p> : null} + </div> + </section> + </main> + </body> + </html> + ); +} diff --git a/example/nextjs/app/globals.css b/example/nextjs/app/globals.css new file mode 100644 index 00000000..4eb0870c --- /dev/null +++ b/example/nextjs/app/globals.css @@ -0,0 +1,249 @@ +:root { + color-scheme: light; + --bg: #f4efe7; + --surface: rgba(255, 255, 255, 0.78); + --surface-strong: rgba(255, 255, 255, 0.94); + --border: rgba(23, 29, 43, 0.12); + --text: #1b2130; + --muted: #5d6779; + --accent: #0f766e; + --accent-soft: rgba(15, 118, 110, 0.1); + --danger: #b42318; + --shadow: 0 20px 50px rgba(38, 45, 61, 0.12); +} + +* { + box-sizing: border-box; +} + +html, +body { + margin: 0; + min-height: 100%; + font-family: "Geist", "IBM Plex Sans", "Avenir Next", system-ui, sans-serif; + background: + radial-gradient(circle at top left, rgba(15, 118, 110, 0.14), transparent 35%), + radial-gradient(circle at top right, rgba(210, 84, 30, 0.12), transparent 30%), var(--bg); + color: var(--text); +} + +body { + line-height: 1.5; +} + +a { + color: inherit; +} + +button { + font: inherit; +} + +.page { + width: min(1120px, calc(100vw - 32px)); + margin: 0 auto; + padding: 48px 0 64px; +} + +.hero { + display: grid; + gap: 16px; + margin-bottom: 28px; +} + +.eyebrow { + margin: 0; + color: var(--accent); + font-size: 0.85rem; + font-weight: 700; + letter-spacing: 0.08em; + text-transform: uppercase; +} + +.hero h1, +.error-shell h1 { + margin: 0; + max-width: 12ch; + font-size: clamp(2.8rem, 7vw, 5.4rem); + line-height: 0.95; + letter-spacing: -0.05em; +} + +.hero p, +.error-shell p { + margin: 0; + max-width: 70ch; + color: var(--muted); + font-size: 1.02rem; +} + +.hero-meta { + display: flex; + flex-wrap: wrap; + gap: 12px; +} + +.hero-meta span { + display: inline-flex; + align-items: center; + gap: 8px; + padding: 8px 12px; + border: 1px solid var(--border); + border-radius: 999px; + background: rgba(255, 255, 255, 0.55); + color: var(--muted); + font-size: 0.92rem; +} + +.demo-grid { + display: grid; + gap: 20px; + grid-template-columns: minmax(0, 1.2fr) minmax(280px, 0.8fr); +} + +.panel { + border: 1px solid var(--border); + border-radius: 24px; + background: var(--surface); + backdrop-filter: blur(10px); + box-shadow: var(--shadow); +} + +.panel-body { + padding: 24px; +} + +.panel h2 { + margin: 0 0 8px; + font-size: 1.3rem; + letter-spacing: -0.03em; +} + +.panel p { + margin: 0; + color: var(--muted); +} + +.button-grid { + display: grid; + gap: 12px; + margin-top: 18px; +} + +.button-grid button, +.button-grid a { + display: flex; + width: 100%; + justify-content: space-between; + align-items: center; + gap: 16px; + padding: 14px 16px; + border: 1px solid var(--border); + border-radius: 18px; + background: var(--surface-strong); + color: inherit; + cursor: pointer; + text-decoration: none; + transition: + transform 160ms ease, + border-color 160ms ease, + box-shadow 160ms ease; +} + +.button-grid button:hover, +.button-grid a:hover { + transform: translateY(-1px); + border-color: rgba(15, 118, 110, 0.3); + box-shadow: 0 12px 28px rgba(30, 34, 45, 0.09); +} + +.button-grid button:disabled { + opacity: 0.7; + cursor: progress; + transform: none; +} + +.button-label { + display: grid; + gap: 3px; + text-align: left; +} + +.button-label strong { + font-size: 0.98rem; +} + +.button-label span { + color: var(--muted); + font-size: 0.9rem; +} + +.button-arrow { + color: var(--accent); + font-size: 1.2rem; +} + +.status { + margin-top: 18px; + padding: 14px 16px; + border-radius: 18px; + background: var(--accent-soft); + color: var(--text); +} + +.status strong { + display: block; + margin-bottom: 4px; + font-size: 0.95rem; +} + +.note-list { + margin: 18px 0 0; + padding-left: 18px; + color: var(--muted); +} + +.note-list li + li { + margin-top: 10px; +} + +.error-shell { + min-height: 100vh; + display: grid; + place-items: center; + padding: 24px; +} + +.error-card { + width: min(620px, 100%); +} + +.error-actions { + display: flex; + flex-wrap: wrap; + gap: 12px; + margin-top: 22px; +} + +.error-actions button, +.error-actions a { + padding: 12px 16px; + border: 1px solid var(--border); + border-radius: 14px; + background: var(--surface-strong); + color: inherit; + text-decoration: none; + cursor: pointer; +} + +.error-digest { + margin-top: 14px; + color: var(--muted); + font-size: 0.92rem; +} + +@media (max-width: 900px) { + .demo-grid { + grid-template-columns: 1fr; + } +} diff --git a/example/nextjs/app/layout.jsx b/example/nextjs/app/layout.jsx new file mode 100644 index 00000000..04740dab --- /dev/null +++ b/example/nextjs/app/layout.jsx @@ -0,0 +1,14 @@ +import "./globals.css"; + +export const metadata = { + title: "Exceptionless for Next.js", + description: "A small reference app for Exceptionless client and server monitoring in Next.js." +}; + +export default function RootLayout({ children }) { + return ( + <html lang="en"> + <body>{children}</body> + </html> + ); +} diff --git a/example/nextjs/app/page.jsx b/example/nextjs/app/page.jsx new file mode 100644 index 00000000..cefcc686 --- /dev/null +++ b/example/nextjs/app/page.jsx @@ -0,0 +1,42 @@ +import ClientDemoPanel from "../components/ClientDemoPanel.jsx"; + +export default function HomePage() { + const deploymentTarget = process.env.VERCEL_ENV ?? "local"; + + return ( + <main className="page"> + <section className="hero"> + <p className="eyebrow">Exceptionless for Next.js</p> + <h1>Client and server monitoring for Next.js.</h1> + <p> + This reference app keeps the setup small, but still captures the important Exceptionless signals across browser and server paths: logs, handled + errors, unhandled errors, request metadata, and App Router error boundaries. + </p> + <div className="hero-meta"> + <span>Deployment target: {deploymentTarget}</span> + <span>App Router reference integration</span> + </div> + </section> + + <section className="demo-grid"> + <ClientDemoPanel /> + + <aside className="panel"> + <div className="panel-body"> + <h2>What the integration covers</h2> + <p> + The client path uses browser startup plus route boundaries. The server path uses `onRequestError`, explicit queue flushes, and a small request + adapter so Exceptionless can attach rich request metadata to the same event builders we already use elsewhere. + </p> + <ul className="note-list"> + <li>`instrumentation-client.js` starts Exceptionless before the app becomes interactive and logs route transitions.</li> + <li>`app/error.jsx` captures client-side render failures, but skips digest-backed server render errors to avoid duplicates.</li> + <li>`instrumentation.js` registers the node client once per server instance and captures uncaught render and route errors.</li> + <li>`app/api/demo/route.js` shows explicit server logging with request metadata plus `after()` for a Vercel-friendly flush.</li> + </ul> + </div> + </aside> + </section> + </main> + ); +} diff --git a/example/nextjs/app/server-component-error/page.jsx b/example/nextjs/app/server-component-error/page.jsx new file mode 100644 index 00000000..a52d196a --- /dev/null +++ b/example/nextjs/app/server-component-error/page.jsx @@ -0,0 +1,5 @@ +export const dynamic = "force-dynamic"; + +export default function ServerComponentErrorPage() { + throw new Error("Server component crash from the Exceptionless Next.js demo"); +} diff --git a/example/nextjs/components/ClientDemoPanel.jsx b/example/nextjs/components/ClientDemoPanel.jsx new file mode 100644 index 00000000..b73583c2 --- /dev/null +++ b/example/nextjs/components/ClientDemoPanel.jsx @@ -0,0 +1,156 @@ +"use client"; + +import Link from "next/link"; +import { useState, useTransition } from "react"; + +import { Exceptionless, startup } from "../lib/exceptionless-browser.js"; + +export default function ClientDemoPanel() { + const [status, setStatus] = useState("Ready. Pick any path below to generate client or server telemetry."); + const [pending, startTransition] = useTransition(); + + async function sendClientLog() { + setStatus("Submitting a structured client log..."); + + await startup(); + + await Exceptionless.createLog("nextjs.client", "Client log from the demo page", "info") + .addTags("manual-log") + .setProperty("currentUrl", window.location.href) + .setProperty("timezone", Intl.DateTimeFormat().resolvedOptions().timeZone) + .submit(); + + setStatus("Client log submitted."); + } + + async function sendHandledClientError() { + setStatus("Submitting a handled client error..."); + + try { + throw new Error("Handled client error from the Exceptionless Next.js demo"); + } catch (error) { + await startup(); + + await Exceptionless.createException(error) + .addTags("handled-error") + .setProperty("handledBy", "ClientDemoPanel.handleTryCatch") + .setProperty("currentUrl", window.location.href) + .submit(); + } + + setStatus("Handled client error submitted."); + } + + function triggerUnhandledRejection() { + setStatus("Triggered an unhandled promise rejection. The browser global handler should capture it."); + Promise.reject(new Error("Unhandled promise rejection from the Exceptionless Next.js demo")); + } + + function triggerBoundaryCrash() { + setStatus("Crashing the route boundary..."); + + startTransition(() => { + throw new Error("Client transition crash from the Exceptionless Next.js demo"); + }); + } + + async function callServerRoute(mode) { + setStatus(mode === "error" ? "Triggering a route handler crash..." : "Submitting a route handler log..."); + + const response = await fetch("/api/demo", { + method: "POST", + headers: { + "content-type": "application/json" + }, + body: JSON.stringify({ + mode, + triggeredFrom: "ClientDemoPanel", + currentUrl: window.location.href, + timezone: Intl.DateTimeFormat().resolvedOptions().timeZone + }) + }); + + if (!response.ok) { + setStatus(`Route handler error triggered with HTTP ${response.status}. The server onRequestError hook should capture it.`); + return; + } + + const payload = await response.json(); + setStatus(payload.message); + } + + return ( + <section className="panel"> + <div className="panel-body"> + <h2>Try the integration</h2> + <p> + The first four buttons stay in the browser. The next two go through a real Next route handler. The link at the bottom opens a route that throws during + server rendering. + </p> + + <div className="button-grid"> + <button type="button" onClick={() => void sendClientLog()} disabled={pending}> + <span className="button-label"> + <strong>Send client log</strong> + <span>Manual log event with URL and timezone metadata.</span> + </span> + <span className="button-arrow">+</span> + </button> + + <button type="button" onClick={() => void sendHandledClientError()} disabled={pending}> + <span className="button-label"> + <strong>Send handled client error</strong> + <span>Manual exception capture from a local try/catch block.</span> + </span> + <span className="button-arrow">+</span> + </button> + + <button type="button" onClick={triggerUnhandledRejection} disabled={pending}> + <span className="button-label"> + <strong>Trigger unhandled rejection</strong> + <span>Exercises the browser global handler installed during startup.</span> + </span> + <span className="button-arrow">!</span> + </button> + + <button type="button" onClick={triggerBoundaryCrash} disabled={pending}> + <span className="button-label"> + <strong>Crash the route boundary</strong> + <span>Throws inside a transition so `app/error.jsx` catches it.</span> + </span> + <span className="button-arrow">!</span> + </button> + + <button type="button" onClick={() => void callServerRoute("log")} disabled={pending}> + <span className="button-label"> + <strong>Send server route log</strong> + <span>Hits `/api/demo` and enriches the log with request data.</span> + </span> + <span className="button-arrow">+</span> + </button> + + <button type="button" onClick={() => void callServerRoute("error")} disabled={pending}> + <span className="button-label"> + <strong>Trigger route handler error</strong> + <span>Throws in `/api/demo` so `instrumentation.js` captures it.</span> + </span> + <span className="button-arrow">!</span> + </button> + + <Link href="/server-component-error" prefetch={false}> + <span className="button-label"> + <strong>Open the server component error route</strong> + <span>Exercises the App Router render path and `onRequestError`.</span> + </span> + <span className="button-arrow">→</span> + </Link> + </div> + + <div className="status"> + <strong>Latest status</strong> + <span>{status}</span> + </div> + </div> + </section> + ); +} diff --git a/example/nextjs/instrumentation-client.js b/example/nextjs/instrumentation-client.js new file mode 100644 index 00000000..224c4294 --- /dev/null +++ b/example/nextjs/instrumentation-client.js @@ -0,0 +1,23 @@ +import { Exceptionless, startup } from "./lib/exceptionless-browser.js"; + +void startup().catch((error) => { + console.error("Exceptionless browser startup failed", error); +}); + +export function onRouterTransitionStart(url, navigationType) { + void recordRouterTransitionStart(url, navigationType); +} + +async function recordRouterTransitionStart(url, navigationType) { + try { + await startup(); + + await Exceptionless.createLog("nextjs.navigation", "Route transition started", "info") + .addTags("navigation") + .setProperty("navigationType", navigationType) + .setProperty("url", url) + .submit(); + } catch (error) { + console.error("Exceptionless navigation tracking failed", error); + } +} diff --git a/example/nextjs/instrumentation.js b/example/nextjs/instrumentation.js new file mode 100644 index 00000000..28da1f81 --- /dev/null +++ b/example/nextjs/instrumentation.js @@ -0,0 +1,35 @@ +import { buildRequestContextFromOnRequestError } from "./lib/next-request.js"; + +export async function register() { + if (process.env.NEXT_RUNTIME !== "nodejs") { + return; + } + + const { startup } = await import("./lib/exceptionless-server.js"); + await startup(); +} + +export async function onRequestError(error, request, context) { + if (process.env.NEXT_RUNTIME !== "nodejs") { + return; + } + + const { startup } = await import("./lib/exceptionless-server.js"); + const digest = typeof error === "object" && error !== null && "digest" in error ? error.digest : undefined; + + const { Exceptionless, KnownEventDataKeys, toError } = await startup(); + + const builder = Exceptionless.createUnhandledException(toError(error), `nextjs.${context.routeType}`).addTags("on-request-error"); + + builder.setContextProperty(KnownEventDataKeys.RequestInfo, buildRequestContextFromOnRequestError(request)); + builder.setProperty("digest", digest); + builder.setProperty("routePath", context.routePath); + builder.setProperty("routeType", context.routeType); + builder.setProperty("routerKind", context.routerKind); + builder.setProperty("renderSource", context.renderSource); + builder.setProperty("renderType", context.renderType); + builder.setProperty("revalidateReason", context.revalidateReason); + + await builder.submit(); + await Exceptionless.processQueue(); +} diff --git a/example/nextjs/lib/exceptionless-browser.js b/example/nextjs/lib/exceptionless-browser.js new file mode 100644 index 00000000..64a152cd --- /dev/null +++ b/example/nextjs/lib/exceptionless-browser.js @@ -0,0 +1,52 @@ +import { Exceptionless, KnownEventDataKeys } from "@exceptionless/browser"; + +export { Exceptionless }; + +let startupPromise; + +export function startup() { + startupPromise ??= Exceptionless.startup((config) => { + if (process.env.NEXT_PUBLIC_EXCEPTIONLESS_API_KEY) { + config.apiKey = process.env.NEXT_PUBLIC_EXCEPTIONLESS_API_KEY; + } + + if (process.env.NEXT_PUBLIC_EXCEPTIONLESS_SERVER_URL) { + config.serverUrl = process.env.NEXT_PUBLIC_EXCEPTIONLESS_SERVER_URL; + } + + if (process.env.NODE_ENV !== "production") { + config.useDebugLogger(); + } + + config.addDataExclusions("authorization", "cookie", "password", "set-cookie", "token"); + config.defaultTags.push("Example", "nextjs", "client"); + config.addPlugin({ + priority: 90, + name: "NextEnvironmentInfoPlugin", + run(context) { + const eventData = context.event.data ?? {}; + context.event.data = eventData; + + const environment = + typeof eventData[KnownEventDataKeys.EnvironmentInfo] === "object" && eventData[KnownEventDataKeys.EnvironmentInfo] !== null + ? eventData[KnownEventDataKeys.EnvironmentInfo] + : {}; + const environmentData = typeof environment.data === "object" && environment.data !== null ? environment.data : {}; + + eventData[KnownEventDataKeys.EnvironmentInfo] = { + ...environment, + data: { + ...environmentData, + framework: "Next.js", + router: "App Router", + runtime: "browser" + } + }; + + return Promise.resolve(); + } + }); + }); + + return startupPromise; +} diff --git a/example/nextjs/lib/exceptionless-server.js b/example/nextjs/lib/exceptionless-server.js new file mode 100644 index 00000000..941ef68d --- /dev/null +++ b/example/nextjs/lib/exceptionless-server.js @@ -0,0 +1,60 @@ +import { Exceptionless, KnownEventDataKeys, toError } from "@exceptionless/node"; + +export { Exceptionless, KnownEventDataKeys, toError }; + +let startupPromise; + +export async function startup() { + startupPromise ??= Exceptionless.startup((config) => { + const apiKey = (process.env.EXCEPTIONLESS_API_KEY || process.env.NEXT_PUBLIC_EXCEPTIONLESS_API_KEY || "").trim(); + if (apiKey) { + config.apiKey = apiKey; + } + + const serverUrl = (process.env.EXCEPTIONLESS_SERVER_URL || process.env.NEXT_PUBLIC_EXCEPTIONLESS_SERVER_URL || "").trim(); + if (serverUrl) { + config.serverUrl = serverUrl; + } + + if (process.env.NODE_ENV !== "production") { + config.useDebugLogger(); + } + + config.addDataExclusions("authorization", "cookie", "password", "set-cookie", "token"); + config.defaultTags.push("Example", "nextjs", "server"); + config.addPlugin({ + priority: 90, + name: "NextEnvironmentInfoPlugin", + run(context) { + const eventData = context.event.data ?? {}; + context.event.data = eventData; + + const environment = + typeof eventData[KnownEventDataKeys.EnvironmentInfo] === "object" && eventData[KnownEventDataKeys.EnvironmentInfo] !== null + ? eventData[KnownEventDataKeys.EnvironmentInfo] + : {}; + const environmentData = typeof environment.data === "object" && environment.data !== null ? environment.data : {}; + + eventData[KnownEventDataKeys.EnvironmentInfo] = { + ...environment, + data: { + ...environmentData, + framework: "Next.js", + router: "App Router", + runtime: "nodejs", + ...((process.env.VERCEL_ENV ?? process.env.NODE_ENV) ? { deployment: process.env.VERCEL_ENV ?? process.env.NODE_ENV } : {}), + ...(process.env.VERCEL_REGION ? { region: process.env.VERCEL_REGION } : {}), + ...(process.env.VERCEL_URL ? { url: process.env.VERCEL_URL } : {}), + ...(process.env.VERCEL_GIT_COMMIT_SHA ? { commit: process.env.VERCEL_GIT_COMMIT_SHA } : {}) + } + }; + + return Promise.resolve(); + } + }); + }); + + await startupPromise; + + return { Exceptionless, KnownEventDataKeys, toError }; +} diff --git a/example/nextjs/lib/next-request.js b/example/nextjs/lib/next-request.js new file mode 100644 index 00000000..8e5d0ce9 --- /dev/null +++ b/example/nextjs/lib/next-request.js @@ -0,0 +1,56 @@ +export function buildRequestContextFromRequest(request, body) { + return buildRequestContext({ + method: request.method, + pathOrUrl: request.url, + headers: request.headers, + body + }); +} + +export function buildRequestContextFromOnRequestError(request) { + return buildRequestContext({ + method: request.method, + pathOrUrl: request.path, + headers: request.headers + }); +} + +export function buildRequestContext({ method, pathOrUrl, headers, body }) { + const normalizedHeaders = normalizeHeaders(headers); + const origin = getOrigin(normalizedHeaders); + const url = new URL(pathOrUrl, origin); + + return { + method, + secure: url.protocol === "https:", + ip: getClientIp(normalizedHeaders), + hostname: url.hostname, + path: url.pathname, + headers: normalizedHeaders, + params: Object.fromEntries(url.searchParams.entries()), + body + }; +} + +function normalizeHeaders(headers) { + if (headers instanceof Headers) { + return Object.fromEntries(Array.from(headers.entries()).map(([key, value]) => [key.toLowerCase(), value])); + } + + return Object.fromEntries(Object.entries(headers).map(([key, value]) => [key.toLowerCase(), Array.isArray(value) ? value.join(", ") : String(value)])); +} + +function getOrigin(headers) { + const host = headers["x-forwarded-host"] ?? headers.host ?? "localhost"; + const protocol = headers["x-forwarded-proto"] ?? "http"; + return `${protocol}://${host}`; +} + +function getClientIp(headers) { + const forwardedFor = headers["x-forwarded-for"]; + if (forwardedFor) { + return forwardedFor.split(",")[0]?.trim() ?? ""; + } + + return headers["x-real-ip"] ?? ""; +} diff --git a/example/nextjs/package.json b/example/nextjs/package.json new file mode 100644 index 00000000..d050a307 --- /dev/null +++ b/example/nextjs/package.json @@ -0,0 +1,21 @@ +{ + "name": "nextjs-example", + "private": true, + "version": "3.0.0-dev", + "scripts": { + "dev": "next dev", + "build": "next build", + "start": "next start" + }, + "dependencies": { + "@exceptionless/browser": "3.0.0-dev", + "@exceptionless/node": "3.0.0-dev", + "next": "^16.2.1", + "react": "^19.2.4", + "react-dom": "^19.2.4" + }, + "type": "module", + "publishConfig": { + "access": "restricted" + } +} diff --git a/example/nextjs/test/next-request.test.js b/example/nextjs/test/next-request.test.js new file mode 100644 index 00000000..7a5a527c --- /dev/null +++ b/example/nextjs/test/next-request.test.js @@ -0,0 +1,73 @@ +import { describe, expect, test } from "vitest"; + +import { buildRequestContextFromOnRequestError, buildRequestContextFromRequest } from "../lib/next-request.js"; + +describe("next request adapter", () => { + test("builds request info from a web request", () => { + const request = new Request("https://demo.exceptionless.dev/api/demo?mode=log&ref=homepage", { + method: "POST", + headers: { + "content-type": "application/json", + "user-agent": "Vitest Browser", + "x-forwarded-for": "203.0.113.10, 10.0.0.5" + } + }); + + const result = buildRequestContextFromRequest(request, { + mode: "log", + triggeredFrom: "test" + }); + + expect(result).toEqual({ + method: "POST", + secure: true, + ip: "203.0.113.10", + hostname: "demo.exceptionless.dev", + path: "/api/demo", + headers: { + "content-type": "application/json", + "user-agent": "Vitest Browser", + "x-forwarded-for": "203.0.113.10, 10.0.0.5" + }, + params: { + mode: "log", + ref: "homepage" + }, + body: { + mode: "log", + triggeredFrom: "test" + } + }); + }); + + test("builds request info from the onRequestError payload", () => { + const result = buildRequestContextFromOnRequestError({ + path: "/server-component-error?from=test", + method: "GET", + headers: { + host: "localhost:3000", + "user-agent": "Vitest Server", + "x-forwarded-proto": "https", + "x-real-ip": "127.0.0.1" + } + }); + + expect(result).toEqual({ + method: "GET", + secure: true, + ip: "127.0.0.1", + hostname: "localhost", + path: "/server-component-error", + headers: { + host: "localhost:3000", + "user-agent": "Vitest Server", + "x-forwarded-proto": "https", + "x-real-ip": "127.0.0.1" + }, + params: { + from: "test" + }, + body: undefined + }); + }); +}); diff --git a/example/react/README.md b/example/react/README.md index 6612e012..c667d694 100644 --- a/example/react/README.md +++ b/example/react/README.md @@ -1,15 +1,15 @@ -## Exceptionless React Example +## Exceptionless React Example -This example shows how to use the `@exceptionless/react` package. There is both a class component example (App.js) and a function component example with hooks (HooksExampleApp.js). +This example shows how to use the `@exceptionless/react` package. There is both a class component example (App.js) and a function component example with hooks (HooksExampleApp.js). -The package includes [error boundary support](https://reactjs.org/docs/error-boundaries.html) which means uncaught errors inside your components will automatically be sent to Exceptionless. +The package includes [error boundary support](https://reactjs.org/docs/error-boundaries.html) which means uncaught errors inside your components will automatically be sent to Exceptionless. -To run locally, follow these steps: +To run locally, follow these steps: -1. `git clone https://github.com/exceptionless/Exceptionless.JavaScript` +1. `git clone https://github.com/exceptionless/Exceptionless.JavaScript` 2. `cd Exceptionless.Javascript` -3. `npm install` +3. `npm install` 4. `cd example/react` -5. `npm start` +5. `npm start` -Reference the main `@exceptionless/react` [README](../../packages/react/README.md) here when building your own React app. +Reference the main `@exceptionless/react` [README](../../packages/react/README.md) here when building your own React app. diff --git a/example/react/public/index.html b/example/react/index.html similarity index 55% rename from example/react/public/index.html rename to example/react/index.html index aa069f27..a12035c4 100644 --- a/example/react/public/index.html +++ b/example/react/index.html @@ -1,29 +1,17 @@ -<!DOCTYPE html> +<!doctype html> <html lang="en"> <head> <meta charset="utf-8" /> - <link rel="icon" href="%PUBLIC_URL%/favicon.ico" /> + <link rel="icon" href="/favicon.ico" /> <meta name="viewport" content="width=device-width, initial-scale=1" /> <meta name="theme-color" content="#000000" /> - <meta - name="description" - content="Web site created using create-react-app" - /> - <link rel="apple-touch-icon" href="%PUBLIC_URL%/logo192.png" /> + <meta name="description" content="Web site created using create-react-app" /> + <link rel="apple-touch-icon" href="/logo192.png" />  - <link rel="manifest" href="%PUBLIC_URL%/manifest.json" /> -  + <link rel="manifest" href="/manifest.json" /> <title>React App @@ -39,5 +27,6 @@ To begin the development, run `npm start` or `yarn start`. To create a production bundle, use `npm run build` or `yarn build`. --> + diff --git a/example/react/package.json b/example/react/package.json index 4bd8fdc7..a6a8500f 100644 --- a/example/react/package.json +++ b/example/react/package.json @@ -3,14 +3,13 @@ "private": true, "version": "3.0.0-dev", "scripts": { - "start": "react-scripts start", - "build": "react-scripts build", - "eject": "react-scripts eject" + "start": "vite", + "build": "vite build", + "preview": "vite preview" }, "eslintConfig": { "extends": [ - "react-app", - "react-app/jest" + "react-app" ] }, "browserslist": { @@ -26,17 +25,17 @@ ] }, "devDependencies": { - "@testing-library/jest-dom": "^6.1.3", - "@testing-library/react": "^14.0.0", - "@testing-library/user-event": "^14.4.3", - "react-scripts": "^5.0.1" + "@testing-library/react": "^16.3.2", + "@testing-library/user-event": "^14.6.1", + "@vitejs/plugin-react": "^6.0.1", + "vite": "^8.0.2" }, "dependencies": { "@exceptionless/react": "3.0.0-dev", - "react": "^18.2.0", - "react-dom": "^18.2.0", - "web-vitals": "^3.4.0" + "react": "^19.2.4", + "react-dom": "^19.2.4" }, + "type": "module", "publishConfig": { "access": "restricted" } diff --git a/example/react/src/App.js b/example/react/src/App.jsx similarity index 64% rename from example/react/src/App.js rename to example/react/src/App.jsx index 242a9f5c..b98186e3 100644 --- a/example/react/src/App.js +++ b/example/react/src/App.jsx @@ -1,9 +1,6 @@ import React, { Component } from "react"; import "./App.css"; -import { - Exceptionless, - ExceptionlessErrorBoundary, -} from "@exceptionless/react"; +import { Exceptionless, ExceptionlessErrorBoundary } from "@exceptionless/react"; class App extends Component { constructor(props) { @@ -11,7 +8,7 @@ class App extends Component { this.state = { error: false, message: "", - errorInfo: "", + errorInfo: "" }; } async componentDidMount() { @@ -58,38 +55,23 @@ class App extends Component {

Exceptionless React Sample

- By pressing the button below, an uncaught error will be thrown - inside your component. This will automatically be sent to - Exceptionless. -

- +

By pressing the button below, an uncaught error will be thrown inside your component. This will automatically be sent to Exceptionless.

- Throw an uncaught error and make sure Exceptionless tracks it. -

- +

Throw an uncaught error and make sure Exceptionless tracks it.

- The following buttons simulated handled events outside the - component. -

The following buttons simulated handled events outside the component.

{this.state.message && (

- Message sent to Exceptionless:{" "} - {this.state.message} + Message sent to Exceptionless: {this.state.message}

)} {this.state.errorInfo && (

- Error message sent to Exceptionless:{" "} - {this.state.errorInfo} + Error message sent to Exceptionless: {this.state.errorInfo}

)}

@@ -100,11 +82,7 @@ class App extends Component { }; render() { - return ( - - {this.renderExample()} - - ); + return {this.renderExample()}; } } diff --git a/example/react/src/HooksExampleApp.js b/example/react/src/HooksExampleApp.js index a6e6c83f..02297eb1 100644 --- a/example/react/src/HooksExampleApp.js +++ b/example/react/src/HooksExampleApp.js @@ -1,9 +1,6 @@ import React, { useEffect, useState } from "react"; import "./App.css"; -import { - Exceptionless, - ExceptionlessErrorBoundary, -} from "@exceptionless/react"; +import { Exceptionless, ExceptionlessErrorBoundary } from "@exceptionless/react"; const HooksExampleApp = () => { const [error, setError] = useState(false); @@ -46,16 +43,9 @@ const HooksExampleApp = () => {

Exceptionless React Sample

- By pressing the button below, an uncaught error will be thrown - inside your component. This will automatically be sent to - Exceptionless. -

By pressing the button below, an uncaught error will be thrown inside your component. This will automatically be sent to Exceptionless.

- The following buttons simulated handled events outside the - component. -

The following buttons simulated handled events outside the component.

@@ -65,9 +55,7 @@ const HooksExampleApp = () => { } }; - return ( - {renderExample()} - ); + return {renderExample()}; }; export default HooksExampleApp; diff --git a/example/react/src/index.css b/example/react/src/index.css index ec2585e8..79c5d0b5 100644 --- a/example/react/src/index.css +++ b/example/react/src/index.css @@ -1,13 +1,11 @@ body { margin: 0; - font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', 'Roboto', 'Oxygen', - 'Ubuntu', 'Cantarell', 'Fira Sans', 'Droid Sans', 'Helvetica Neue', - sans-serif; + font-family: + -apple-system, BlinkMacSystemFont, "Segoe UI", "Roboto", "Oxygen", "Ubuntu", "Cantarell", "Fira Sans", "Droid Sans", "Helvetica Neue", sans-serif; -webkit-font-smoothing: antialiased; -moz-osx-font-smoothing: grayscale; } code { - font-family: source-code-pro, Menlo, Monaco, Consolas, 'Courier New', - monospace; + font-family: source-code-pro, Menlo, Monaco, Consolas, "Courier New", monospace; } diff --git a/example/react/src/index.js b/example/react/src/index.js deleted file mode 100644 index 2d212261..00000000 --- a/example/react/src/index.js +++ /dev/null @@ -1,19 +0,0 @@ -import React from 'react'; -import { createRoot } from 'react-dom/client'; -import './index.css'; -import App from './App'; -import reportWebVitals from './reportWebVitals'; - -const container = document.getElementById('root'); -const root = createRoot(container); - -root.render( - - - -); - -// If you want to start measuring performance in your app, pass a function -// to log results (for example: reportWebVitals(console.log)) -// or send to an analytics endpoint. Learn more: https://bit.ly/CRA-vitals -reportWebVitals(); diff --git a/example/react/src/index.jsx b/example/react/src/index.jsx new file mode 100644 index 00000000..2d72d610 --- /dev/null +++ b/example/react/src/index.jsx @@ -0,0 +1,13 @@ +import React from "react"; +import { createRoot } from "react-dom/client"; +import "./index.css"; +import App from "./App"; + +const container = document.getElementById("root"); +const root = createRoot(container); + +root.render( + + + +); diff --git a/example/react/src/reportWebVitals.js b/example/react/src/reportWebVitals.js deleted file mode 100644 index 5253d3ad..00000000 --- a/example/react/src/reportWebVitals.js +++ /dev/null @@ -1,13 +0,0 @@ -const reportWebVitals = onPerfEntry => { - if (onPerfEntry && onPerfEntry instanceof Function) { - import('web-vitals').then(({ getCLS, getFID, getFCP, getLCP, getTTFB }) => { - getCLS(onPerfEntry); - getFID(onPerfEntry); - getFCP(onPerfEntry); - getLCP(onPerfEntry); - getTTFB(onPerfEntry); - }); - } -}; - -export default reportWebVitals; diff --git a/example/react/src/setupTests.js b/example/react/src/setupTests.js deleted file mode 100644 index 8f2609b7..00000000 --- a/example/react/src/setupTests.js +++ /dev/null @@ -1,5 +0,0 @@ -// jest-dom adds custom jest matchers for asserting on DOM nodes. -// allows you to do things like: -// expect(element).toHaveTextContent(/react/i) -// learn more: https://github.com/testing-library/jest-dom -import '@testing-library/jest-dom'; diff --git a/example/react/vite.config.js b/example/react/vite.config.js new file mode 100644 index 00000000..8af32310 --- /dev/null +++ b/example/react/vite.config.js @@ -0,0 +1,11 @@ +import { defineConfig } from "vite"; +import react from "@vitejs/plugin-react"; + +export default defineConfig({ + base: "", + plugins: [react()], + server: { + open: true, + port: 5174 + } +}); diff --git a/example/svelte-kit/README.md b/example/svelte-kit/README.md index 06152b8e..27acad82 100644 --- a/example/svelte-kit/README.md +++ b/example/svelte-kit/README.md @@ -1,4 +1,4 @@ -## Exceptionless Svelte Kit Example +## Exceptionless Svelte Kit Example This example shows how to use the `@exceptionless/browser` package for client side Svelte Kit and `@exceptionless/node` for server side Svelte Kit. These is both a client side error hook `hooks.client.js` and a server side error hook `hooks.server.js`. diff --git a/example/svelte-kit/jsconfig.json b/example/svelte-kit/jsconfig.json index fe45e13f..f1da068b 100644 --- a/example/svelte-kit/jsconfig.json +++ b/example/svelte-kit/jsconfig.json @@ -1,17 +1,17 @@ { - "extends": "./.svelte-kit/tsconfig.json", - "compilerOptions": { - "allowJs": true, - "checkJs": true, - "esModuleInterop": true, - "forceConsistentCasingInFileNames": true, - "resolveJsonModule": true, - "skipLibCheck": true, - "sourceMap": true, - "strict": true - } - // Path aliases are handled by https://kit.svelte.dev/docs/configuration#alias and https://kit.svelte.dev/docs/configuration#files - // - // If you want to overwrite includes/excludes, make sure to copy over the relevant includes/excludes - // from the referenced tsconfig.json - TypeScript does not merge them in + "extends": "./.svelte-kit/tsconfig.json", + "compilerOptions": { + "allowJs": true, + "checkJs": true, + "esModuleInterop": true, + "forceConsistentCasingInFileNames": true, + "resolveJsonModule": true, + "skipLibCheck": true, + "sourceMap": true, + "strict": true + } + // Path aliases are handled by https://kit.svelte.dev/docs/configuration#alias and https://kit.svelte.dev/docs/configuration#files + // + // If you want to overwrite includes/excludes, make sure to copy over the relevant includes/excludes + // from the referenced tsconfig.json - TypeScript does not merge them in } diff --git a/example/svelte-kit/package.json b/example/svelte-kit/package.json index fa5dd692..7a435ce3 100644 --- a/example/svelte-kit/package.json +++ b/example/svelte-kit/package.json @@ -13,12 +13,14 @@ "@exceptionless/browser": "3.0.0-dev" }, "devDependencies": { - "@sveltejs/adapter-auto": "^2.1.0", - "@sveltejs/kit": "^1.24.1", - "svelte": "^4.2.0", - "svelte-check": "^3.5.1", - "typescript": "^5.1.6", - "vite": "^4.4.9" + "@sveltejs/adapter-auto": "^7.0.1", + "@sveltejs/kit": "^2.55.0", + "@sveltejs/vite-plugin-svelte": "^7.0.0", + "svelte": "^5.55.0", + "svelte-check": "^4.4.5", + "typescript": "^6.0.2", + "vite": "^8.0.2", + "vitest": "^4.1.1" }, "type": "module", "publishConfig": { diff --git a/example/svelte-kit/src/app.d.ts b/example/svelte-kit/src/app.d.ts index f59b884c..899c7e8f 100644 --- a/example/svelte-kit/src/app.d.ts +++ b/example/svelte-kit/src/app.d.ts @@ -1,12 +1,12 @@ // See https://kit.svelte.dev/docs/types#app // for information about these interfaces declare global { - namespace App { - // interface Error {} - // interface Locals {} - // interface PageData {} - // interface Platform {} - } + namespace App { + // interface Error {} + // interface Locals {} + // interface PageData {} + // interface Platform {} + } } export {}; diff --git a/example/svelte-kit/src/app.html b/example/svelte-kit/src/app.html index effe0d0d..b009ee26 100644 --- a/example/svelte-kit/src/app.html +++ b/example/svelte-kit/src/app.html @@ -1,12 +1,12 @@ - + - - - - - %sveltekit.head% - - -

%sveltekit.body%

- + + + + + %sveltekit.head% + + +

%sveltekit.body%

+ diff --git a/example/svelte-kit/src/hooks.client.js b/example/svelte-kit/src/hooks.client.js index 45c767dc..e4a2e49c 100644 --- a/example/svelte-kit/src/hooks.client.js +++ b/example/svelte-kit/src/hooks.client.js @@ -1,6 +1,6 @@ import { Exceptionless, toError } from "@exceptionless/browser"; -Exceptionless.startup(c => { +Exceptionless.startup((c) => { c.apiKey = "LhhP1C9gijpSKCslHHCvwdSIz298twx271nTest"; c.serverUrl = "https://localhost:5100"; c.useDebugLogger(); @@ -9,7 +9,9 @@ Exceptionless.startup(c => { }); /** @type {import('@sveltejs/kit').HandleClientError} */ -export async function handleError({ error, event }) { - console.log('client error handler'); - await Exceptionless.submitException(toError(error)); +export async function handleError({ error, event, message, status }) { + console.warn({ error, event, message, source: "client error handler", status }); + await Exceptionless.createException(toError(error ?? message)) + .setProperty("status", status) + .submit(); } diff --git a/example/svelte-kit/src/hooks.server.js b/example/svelte-kit/src/hooks.server.js index 99c879e6..822bc091 100644 --- a/example/svelte-kit/src/hooks.server.js +++ b/example/svelte-kit/src/hooks.server.js @@ -1,6 +1,6 @@ import { Exceptionless, toError } from "@exceptionless/node"; -Exceptionless.startup(c => { +Exceptionless.startup((c) => { c.apiKey = "LhhP1C9gijpSKCslHHCvwdSIz298twx271nTest"; c.serverUrl = "https://localhost:5100"; c.useDebugLogger(); diff --git a/example/svelte-kit/src/routes/+page.svelte b/example/svelte-kit/src/routes/+page.svelte index aa5cf276..595ad69e 100644 --- a/example/svelte-kit/src/routes/+page.svelte +++ b/example/svelte-kit/src/routes/+page.svelte @@ -1,12 +1,12 @@