fix(eve): verify remote Vercel credentials

[ruiconti]

Description

Remote dev and eval clients could attach ambient Vercel credentials based only on a non-local URL. That proved remoteness, not ownership. This PR makes verified Vercel deployment identity the prerequisite for ambient credentials.

What

• Resolve the exact HTTPS origin through Vercel before installing ambient credentials.
• Bind refreshed OIDC and automation-bypass credentials to that verified origin.
• Stop credential-bearing clients from following redirects.
• Route remote dev and eval clients through the same verified-client boundary.
• Preserve EVE_EVAL_AUTH_TOKEN as an explicit bearer override.
• Ensure Vercel E2E setup materializes .vercel/project.json, which the verification boundary reads.

The deployment resolved from the target URL is authoritative. A failed lookup leaves the client anonymous.

Scope

This is the security foundation only. It does not add project selection or the TUI authentication flow.

Stack

1. fix(eve): verify remote Vercel credentials #109 — verified remote credentials
2. feat(eve): search team-scoped Vercel projects #110 — team-scoped project selection
3. feat(eve): recover remote TUI authentication #111 — remote TUI authentication recovery

Verification

• Workspace typecheck, lint, format, build, invariant checks, unit tests, integration tests, and scenario tests passed on the rebased stack.
• Focused tests cover origin verification, refresh behavior, redirects, credential gating, and remote eval clients.
• Includes documentation and a patch changeset.

PR Checklist

• I ran the relevant checks from CONTRIBUTING.md
• I added tests and documentation where relevant
• I added a changeset
• Every commit has a DCO sign-off

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
eve-docs	Ready	Preview, Comment, Open in v0	Jun 19, 2026 3:35pm

[github-actions]

Bundle + Package Summary: apps/fixtures/weather-agent

Key takeaways

• No notable deltas vs main (bfc7191).

Delta vs main (bfc7191)

Area	Metric	Baseline	Current	Delta
Package	Packed tarball	3.23 MB	3.23 MB	+3.4 kB ⚠️
Package	Unpacked publish size	11.58 MB	11.59 MB	+9.8 kB ⚠️
Package	Installed footprint	51.79 MB	51.80 MB	+9.8 kB ⚠️
Package	Published files	2163	2171	+8
Package	Installed files	5368	5376	+8
Runtime	Unique function payloads	2	2	0
Runtime	Total function bytes	9.34 MB	9.34 MB	-176 B ✅
Runtime	Public routes	9	9	0

Changed function payloads vs main (bfc7191) (2)

Function	Status	Baseline	Current	Delta	Route changes
functions/__server.func	changed	3.86 MB	3.86 MB	-144 B ✅	none
functions/.well-known/workflow/v1/flow.func	changed	5.47 MB	5.47 MB	-32 B ✅	none

Build Metadata

• Preset: vercel
• Nitro: nitro@3.0.260610-beta
• Output directory: apps/fixtures/weather-agent/.vercel/output
• Build metadata timestamp: 2026-06-19T15:35:18.932Z
• Route aliases: 9 public, 1 internal (10 total aliases)
• Vercel routes in config: 10
• Severity legend: 🔴 dominant/large, 🟠 notable, 🟡 watch, ⚪ small

Package Drill-Down

Package Details

• Package: eve@0.11.7
• Package directory: packages/eve
• Tarball: 3.23 MB (eve-0.11.7.tgz)
• Unpacked payload: 11.59 MB across 2171 published files
• Installed footprint: 51.80 MB across 5376 installed files
• Installed root package: 10.48 MB
• Installed dependencies: 41.32 MB
• Runtime dependencies: 1
• Peer dependencies: 12 (11 optional)

Installed footprint is measured from an isolated temporary npm install of the packed tarball.

Heavy installed dependencies

• @rolldown/binding-linux-x64-gnu: 20.61 MB (39.8%)
• eve: 10.48 MB (20.2%)
• ai: 6.20 MB (12.0%)
• zod: 4.97 MB (9.6%)
• nitro: 2.41 MB (4.6%)

Publish payload breakdown

Published file size
🟠 dist/src/compiled/experimental-ai-sdk-code-mo... [#####...................] 1.51 MB 13.0%
🟡 dist/src/compiled/@workflow/core/runtime.js      [##......................] 775.4 kB 6.7%
🟡 dist/src/compiled/@vercel/sandbox/index.js       [##......................] 632.0 kB 5.5%
🟡 dist/src/compiled/@chat-adapter/slack/index.js   [#.......................] 436.9 kB 3.8%
🟡 dist/src/compiled/_chunks/workflow/attribute-... [#.......................] 370.9 kB 3.2%
🔴 Other published files                            [########################] 7.87 MB 67.9%

Installed footprint breakdown

Installed package size
🔴 @rolldown/binding-linux-x64-gnu [########################] 20.61 MB 39.8%
🔴 eve                             [############............] 10.48 MB 20.2%
🔴 ai                              [#######.................] 6.20 MB 12.0%
🟠 zod                             [######..................] 4.97 MB 9.6%
🟠 nitro                           [###.....................] 2.41 MB 4.6%
🟡 rolldown                        [#.......................] 771.0 kB 1.5%
🔴 Other installed packages        [#######.................] 6.37 MB 12.3%

Runtime dependencies (1)

Package	Range	Notes
nitro	3.0.260610-beta

Peer dependencies (12)

Package	Range	Notes
@opentelemetry/api	^1.0.0	optional peer
@sveltejs/kit	^2.0.0	optional peer
ai	catalog:
braintrust	^3.0.0	optional peer
just-bash	^3.0.0	optional peer
microsandbox	^0.5.0	optional peer
next	^16.0.0	optional peer
nuxt	^4.0.0	optional peer
react	^19.0.0	optional peer
svelte	^5.0.0	optional peer
vite	^8.0.0	optional peer
vue	^3.5.0	optional peer

Function Drill-Down

Payload Size Graph

Unique function payload size and share of total
🔴 functions/.well-known/workflow/v1/flow.func     [########################] 5.47 MB 58.6%
🔴 functions/__server.func                         [#################.......] 3.86 MB 41.4%

Top Function Payloads

🟠 functions/.well-known/workflow/v1/flow.func • 1 public route • 5.47 MB

Metric	Value
Public routes	/.well-known/workflow/v1/flow
Runtime	nodejs24.x
Handler	index.mjs
Payload	5.47 MB
Function files	5.47 MB across 27 files
Traced dependencies	0 B
Signal	🟠 Bundled file __eve_nitro_handler__.mjs is 1.50 MB (27.5%)

🟠 🔎 Dependency Analysis

📦 Bundled files:

Bundled file size
🟠 __eve_nitro_handler__.mjs              [########################] 1.50 MB 27.5%
🟠 _chunks/runtime.mjs                    [###############.........] 958.4 kB 17.5%
🟡 _chunks/sandbox.mjs                    [############............] 766.0 kB 14.0%
🟡 _chunks/attribute-changes-Bi5DLT8S.mjs [########................] 472.2 kB 8.6%
🟡 _chunks/dist-DTchiX0N.mjs              [#######.................] 460.6 kB 8.4%
🟠 Other bundled files                    [#####################...] 1.31 MB 24.0%

🧾 Vercel Config

{
  "handler": "index.mjs",
  "launcherType": "Nodejs",
  "shouldAddHelpers": false,
  "supportsResponseStreaming": true,
  "runtime": "nodejs24.x",
  "environment": {
    "NODE_OPTIONS": "--experimental-require-module",
    "WORKFLOW_QUEUE_NAMESPACE": "eve"
  },
  "maxDuration": "max",
  "experimentalTriggers": [
    {
      "type": "queue/v2beta",
      "topic": "__eve_wkf_workflow_*",
      "consumer": "default",
      "retryAfterSeconds": 5,
      "initialDelaySeconds": 0
    }
  ]
}

---

🟠 functions/__server.func • 8 public routes, 1 internal alias • 3.86 MB

Metric	Value
Public routes	/ /eve/v1/callback/[token] /eve/v1/connections/[name]/callback/[token] /eve/v1/health /eve/v1/info /eve/v1/session /eve/v1/session/[sessionId] /eve/v1/session/[sessionId]/stream
Internal aliases	/__server
Runtime	nodejs24.x
Handler	index.mjs
Payload	3.86 MB
Function files	3.86 MB across 21 files
Traced dependencies	0 B
Signal	🟠 Bundled file index.mjs is 1.40 MB (36.3%)

🟠 🔎 Dependency Analysis

📦 Bundled files:

Bundled file size
🟠 index.mjs                              [########################] 1.40 MB 36.3%
🟠 _chunks/runtime.mjs                    [###############.........] 875.8 kB 22.7%
🟠 _chunks/sandbox.mjs                    [#############...........] 766.0 kB 19.8%
🟡 _chunks/attribute-changes-Bi5DLT8S.mjs [########................] 448.5 kB 11.6%
⚪ _libs/zod.mjs                          [##......................] 114.2 kB 3.0%
🟡 Other bundled files                    [####....................] 258.8 kB 6.7%

🧾 Vercel Config

{
  "handler": "index.mjs",
  "launcherType": "Nodejs",
  "shouldAddHelpers": false,
  "supportsResponseStreaming": true,
  "runtime": "nodejs24.x"
}

[vercel]

An http:// URL pointing at a real Vercel deployment causes resolveVerifiedRemoteDevelopmentClientOptions to throw an unhandled origin-mismatch error that crashes the whole command instead of degrading to an anonymous client.