feat: Introduce A2A lifecycle management, add type safety to ComfyUI and stream handling, and update various handlers and translators.

Author: diegosouzapw

open-sse/config/codexInstructions.ts

@@ -55,7 +55,7 @@ When you are running with \`approval_policy == on-request\`, and sandboxing enab
 - You are about to take a potentially destructive action such as an \`rm\` or \`git reset\` that the user did not explicitly ask for
 - (for all of these, you should weigh alternative paths that do not require approval)
 
-When \`sandbox_mode\` is set to read-only, you'll need to request approval for any command that isn't a read.
+When \`sandbox_mode\` is set to read-only, you'll need to request approval for each command that isn't a read.
 
 You will be told what filesystem sandboxing, network sandboxing, and approval mode are active in a developer or user message. If you are not told about this, assume that you are running with workspace-write, network sandboxing enabled, and approval on-failure.
 
@@ -68,7 +68,7 @@ When requesting approval to execute a command that will require escalated privil
 ## Special user requests
 
 - If the user makes a simple request (such as asking for the time) which you can fulfill by running a terminal command (such as \`date\`), you should do so.
-- If the user asks for a "review", default to a code review mindset: prioritise identifying bugs, risks, behavioural regressions, and missing tests. Findings must be the primary focus of the response - keep summaries or overviews brief and only after enumerating the issues. Present findings first (ordered by severity with file/line references), follow with open questions or assumptions, and offer a change-summary only as a secondary detail. If no findings are discovered, state that explicitly and mention any residual risks or testing gaps.
+- If the user asks for a "review", default to a code review mindset: prioritise identifying bugs, risks, behavioural regressions, and missing tests. Findings must be the primary focus of the response - keep summaries or overviews brief and only after enumerating the issues. Present findings first (ordered by severity with file/line references), follow with open questions or assumptions, and offer a change-summary only as a secondary detail. If no findings are discovered, state that explicitly and mention residual risks or testing gaps.
 
 ## Frontend tasks
 When doing frontend design tasks, avoid collapsing into "AI slop" or safe, average-looking layouts.

open-sse/config/imageRegistry.ts

@@ -157,7 +157,7 @@ export function parseImageModel(modelStr) {
     }
   }
 
-  // No provider prefix — try to find the model in any provider
+  // No provider prefix — try to find the model in every provider
   for (const [providerId, config] of Object.entries(IMAGE_PROVIDERS)) {
     if (config.models.some((m) => m.id === modelStr)) {
       return { provider: providerId, model: modelStr };

open-sse/config/registryUtils.ts

@@ -37,7 +37,7 @@ export function parseModelFromRegistry<P extends BaseProvider>(
     }
   }
 
-  // No provider prefix — try to find the model in any provider
+  // No provider prefix — try to find the model in every provider
   for (const [providerId, config] of Object.entries(registry)) {
     if (config.models.some((m) => m.id === modelStr)) {
       return { provider: providerId, model: modelStr };

open-sse/executors/antigravity.ts

@@ -5,7 +5,7 @@ import { PROVIDERS, OAUTH_ENDPOINTS, HTTP_STATUS } from "../config/constants.ts"
 const MAX_RETRY_AFTER_MS = 10000;
 
 /**
- * Strip any provider prefix (e.g. "antigravity/model" → "model").
+ * Strip provider prefixes (e.g. "antigravity/model" → "model").
  * Ensures the model name sent to the upstream API never contains a routing prefix.
  */
 function cleanModelName(model: string): string {

open-sse/executors/base.ts

@@ -1,15 +1,64 @@
 import { HTTP_STATUS, FETCH_TIMEOUT_MS } from "../config/constants.ts";
 
+type JsonRecord = Record<string, unknown>;
+
+type ProviderConfig = {
+  id?: string;
+  baseUrl?: string;
+  baseUrls?: string[];
+  headers?: Record<string, string>;
+};
+
+type ProviderCredentials = {
+  accessToken?: string;
+  apiKey?: string;
+  expiresAt?: string;
+  providerSpecificData?: JsonRecord;
+};
+
+type ExecutorLog = {
+  debug?: (tag: string, message: string) => void;
+  warn?: (tag: string, message: string) => void;
+};
+
+type ExecuteInput = {
+  model: string;
+  body: unknown;
+  stream: boolean;
+  credentials: ProviderCredentials;
+  signal?: AbortSignal | null;
+  log?: ExecutorLog | null;
+};
+
+function mergeAbortSignals(primary: AbortSignal, secondary: AbortSignal): AbortSignal {
+  const controller = new AbortController();
+
+  const abortBoth = () => {
+    if (!controller.signal.aborted) {
+      controller.abort();
+    }
+  };
+
+  if (primary.aborted || secondary.aborted) {
+    abortBoth();
+    return controller.signal;
+  }
+
+  primary.addEventListener("abort", abortBoth, { once: true });
+  secondary.addEventListener("abort", abortBoth, { once: true });
+  return controller.signal;
+}
+
 /**
  * BaseExecutor - Base class for provider executors.
  * Implements the Strategy pattern: subclasses override specific methods
  * (buildUrl, buildHeaders, transformRequest, etc.) for each provider.
  */
 export class BaseExecutor {
-  provider: any;
-  config: any;
+  provider: string;
+  config: ProviderConfig;
 
-  constructor(provider: any, config: any) {
+  constructor(provider: string, config: ProviderConfig) {
     this.provider = provider;
     this.config = config;
   }
@@ -26,9 +75,19 @@ export class BaseExecutor {
     return this.getBaseUrls().length || 1;
   }
 
-  buildUrl(model, stream, urlIndex = 0, credentials = null) {
+  buildUrl(
+    model: string,
+    stream: boolean,
+    urlIndex = 0,
+    credentials: ProviderCredentials | null = null
+  ) {
+    void model;
+    void stream;
     if (this.provider?.startsWith?.("openai-compatible-")) {
-      const baseUrl = credentials?.providerSpecificData?.baseUrl || "https://api.openai.com/v1";
+      const baseUrl =
+        typeof credentials?.providerSpecificData?.baseUrl === "string"
+          ? credentials.providerSpecificData.baseUrl
+          : "https://api.openai.com/v1";
       const normalized = baseUrl.replace(/\/$/, "");
       const path = this.provider.includes("responses") ? "/responses" : "/chat/completions";
       return `${normalized}${path}`;
@@ -37,8 +96,8 @@ export class BaseExecutor {
     return baseUrls[urlIndex] || baseUrls[0] || this.config.baseUrl;
   }
 
-  buildHeaders(credentials, stream = true) {
-    const headers = {
+  buildHeaders(credentials: ProviderCredentials, stream = true): Record<string, string> {
+    const headers: Record<string, string> = {
       "Content-Type": "application/json",
       ...this.config.headers,
     };
@@ -70,32 +129,42 @@ export class BaseExecutor {
   }
 
   // Override in subclass for provider-specific transformations
-  transformRequest(model, body, stream, credentials) {
+  transformRequest(
+    model: string,
+    body: unknown,
+    stream: boolean,
+    credentials: ProviderCredentials
+  ): unknown {
+    void model;
+    void stream;
+    void credentials;
     return body;
   }
 
-  shouldRetry(status, urlIndex) {
+  shouldRetry(status: number, urlIndex: number) {
     return status === HTTP_STATUS.RATE_LIMITED && urlIndex + 1 < this.getFallbackCount();
   }
 
   // Override in subclass for provider-specific refresh
-  async refreshCredentials(credentials, log) {
+  async refreshCredentials(credentials: ProviderCredentials, log: ExecutorLog | null) {
+    void credentials;
+    void log;
     return null;
   }
 
-  needsRefresh(credentials) {
+  needsRefresh(credentials: ProviderCredentials) {
     if (!credentials.expiresAt) return false;
     const expiresAtMs = new Date(credentials.expiresAt).getTime();
     return expiresAtMs - Date.now() < 5 * 60 * 1000;
   }
 
-  parseError(response, bodyText) {
+  parseError(response: Response, bodyText: string) {
     return { status: response.status, message: bodyText || `HTTP ${response.status}` };
   }
 
-  async execute({ model, body, stream, credentials, signal, log }) {
+  async execute({ model, body, stream, credentials, signal, log }: ExecuteInput) {
     const fallbackCount = this.getFallbackCount();
-    let lastError = null;
+    let lastError: unknown = null;
     let lastStatus = 0;
 
     for (let urlIndex = 0; urlIndex < fallbackCount; urlIndex++) {
@@ -109,10 +178,10 @@ export class BaseExecutor {
         const timeoutSignal = !stream ? AbortSignal.timeout(FETCH_TIMEOUT_MS) : null;
         const combinedSignal =
           signal && timeoutSignal
-            ? AbortSignal.any([signal, timeoutSignal])
+            ? mergeAbortSignals(signal, timeoutSignal)
             : signal || timeoutSignal;
 
-        const fetchOptions: Record<string, any> = {
+        const fetchOptions: RequestInit = {
           method: "POST",
           headers,
           body: JSON.stringify(transformedBody),
@@ -130,15 +199,16 @@ export class BaseExecutor {
         return { response, url, headers, transformedBody };
       } catch (error) {
         // Distinguish timeout errors from other abort errors
-        if (error.name === "TimeoutError") {
+        const err = error instanceof Error ? error : new Error(String(error));
+        if (err.name === "TimeoutError") {
           log?.warn?.("TIMEOUT", `Fetch timeout after ${FETCH_TIMEOUT_MS}ms on ${url}`);
         }
-        lastError = error;
+        lastError = err;
         if (urlIndex + 1 < fallbackCount) {
           log?.debug?.("RETRY", `Error on ${url}, trying fallback ${urlIndex + 1}`);
           continue;
         }
-        throw error;
+        throw err;
       }
     }
 

open-sse/executors/cursor.ts

@@ -1,4 +1,4 @@
-declare var EdgeRuntime: any;
+declare const EdgeRuntime: string | undefined;
 /**
  * CursorExecutor — Handles communication with the Cursor IDE API.
  *
@@ -121,13 +121,19 @@ function createErrorResponse(jsonError) {
   );
 }
 
+type CursorHttpResponse = {
+  status: number;
+  headers: Record<string, unknown>;
+  body: Buffer;
+};
+
 export class CursorExecutor extends BaseExecutor {
   constructor() {
     super("cursor", PROVIDERS.cursor);
   }
 
   buildUrl() {
-    return `${this.config.baseUrl}${this.config.chatPath}`;
+    return `${this.config.baseUrl}${this.config.chatPath || ""}`;
   }
 
   // Jyh cipher checksum for Cursor API authentication
@@ -217,7 +223,12 @@ export class CursorExecutor extends BaseExecutor {
     return generateCursorBody(messages, model, tools, reasoningEffort);
   }
 
-  async makeFetchRequest(url, headers, body, signal) {
+  async makeFetchRequest(
+    url: string,
+    headers: Record<string, string>,
+    body: Uint8Array,
+    signal?: AbortSignal
+  ): Promise<CursorHttpResponse> {
     const response = await fetch(url, {
       method: "POST",
       headers,
@@ -227,17 +238,22 @@ export class CursorExecutor extends BaseExecutor {
 
     return {
       status: response.status,
-      headers: Object.fromEntries((response.headers as any).entries()),
+      headers: Object.fromEntries(response.headers.entries()),
       body: Buffer.from(await response.arrayBuffer()),
     };
   }
 
-  makeHttp2Request(url, headers, body, signal) {
+  makeHttp2Request(
+    url: string,
+    headers: Record<string, string>,
+    body: Uint8Array,
+    signal?: AbortSignal
+  ): Promise<CursorHttpResponse> {
     if (!http2) {
       throw new Error("http2 module not available");
     }
 
-    return new Promise((resolve, reject) => {
+    return new Promise<CursorHttpResponse>((resolve, reject) => {
       const urlObj = new URL(url);
       const client = http2.connect(`https://${urlObj.host}`);
       const chunks = [];
@@ -262,7 +278,10 @@ export class CursorExecutor extends BaseExecutor {
       req.on("end", () => {
         client.close();
         resolve({
-          status: responseHeaders[":status"],
+          status:
+            typeof responseHeaders[":status"] === "number"
+              ? responseHeaders[":status"]
+              : Number(responseHeaders[":status"] || HTTP_STATUS.SERVER_ERROR),
           headers: responseHeaders,
           body: Buffer.concat(chunks),
         });
@@ -291,7 +310,7 @@ export class CursorExecutor extends BaseExecutor {
     const transformedBody = this.transformRequest(model, body, stream, credentials);
 
     try {
-      const response: any = http2
+      const response: CursorHttpResponse = http2
         ? await this.makeHttp2Request(url, headers, transformedBody, signal)
         : await this.makeFetchRequest(url, headers, transformedBody, signal);
 
@@ -459,7 +478,8 @@ export class CursorExecutor extends BaseExecutor {
 
     console.log(`[CURSOR BUFFER] Final toolCalls count: ${toolCalls.length}`);
 
-    const message: Record<string, any> = { role: "assistant",
+    const message: Record<string, unknown> = {
+      role: "assistant",
       content: totalContent || null,
     };
 

open-sse/executors/default.ts

@@ -74,7 +74,7 @@ export class DefaultExecutor extends BaseExecutor {
 
   /**
    * For compatible providers, ensure the model name sent upstream
-   * is the clean model name without any internal routing prefix.
+   * is the clean model name without internal routing prefixes.
    * e.g. "openapi-chat-anti/claude-opus-4-6-thinking" → "claude-opus-4-6-thinking"
    */
   transformRequest(model, body, stream, credentials) {

open-sse/executors/iflow.ts

@@ -2,6 +2,11 @@ import crypto from "crypto";
 import { BaseExecutor } from "./base.ts";
 import { PROVIDERS } from "../config/constants.ts";
 
+type IFlowCredentials = {
+  apiKey?: string;
+  accessToken?: string;
+};
+
 /**
  * IFlowExecutor - Executor for iFlow API with HMAC-SHA256 signature.
  *
@@ -41,7 +46,7 @@ export class IFlowExecutor extends BaseExecutor {
    * Build headers with iFlow-specific HMAC-SHA256 signature.
    * Includes session-id, x-iflow-timestamp, and x-iflow-signature.
    */
-  buildHeaders(credentials: any, stream = true) {
+  buildHeaders(credentials: IFlowCredentials, stream = true) {
     // Generate session ID and timestamp
     const sessionID = `session-${crypto.randomUUID()}`;
     const timestamp = Date.now();
@@ -82,14 +87,26 @@ export class IFlowExecutor extends BaseExecutor {
   /**
    * Build URL for iFlow API — uses baseUrl directly.
    */
-  buildUrl(model: string, stream: boolean, urlIndex = 0, credentials: any = null) {
+  buildUrl(
+    model: string,
+    stream: boolean,
+    urlIndex = 0,
+    credentials: IFlowCredentials | null = null
+  ) {
+    void model;
+    void stream;
+    void urlIndex;
+    void credentials;
     return this.config.baseUrl;
   }
 
   /**
    * Transform request body (passthrough for iFlow).
    */
-  transformRequest(model: string, body: any, stream: boolean, credentials: any) {
+  transformRequest(model: string, body: unknown, stream: boolean, credentials: IFlowCredentials) {
+    void model;
+    void stream;
+    void credentials;
     return body;
   }
 }