npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@loom-loyalty/meridian-runtime-cloudflare

v0.6.4

Published

Cloudflare Workers + Durable Objects reference adapter for the Meridian protocol. Implements the six stable runtime primitives. See specs/core/RUNTIME-SPEC.md.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

nsteffannsteffan

Keywords

Readme

@loom-loyalty/meridian-runtime-cloudflare

Cloudflare Workers + Durable Objects reference runtime for the Meridian protocol.

Deploy to Cloudflare Workers

One-click deploy drops the cf-hyperdrive-postgres example onto your account. After the deploy lands, follow DEPLOY.md for the Hyperdrive + Postgres binding setup (~5 minutes). For a bare-minimum scaffold without Postgres, run pnpm dlx @loom-loyalty/meridian-cli init instead.

Status

v0.1, pre-1.0. All six stable runtime primitives (lifecycle, state, scheduling, transport, resources, observability) are implemented, covered by the conformance suite, and verified on real Cloudflare Workers by the E2E (Cloudflare) workflow on every push to main.

M4 shipped: bearer auth, /admin/* routes, AgentCard securitySchemes, the meridian CLI. M6 shipped: opt-in multi-tenancy hooks (see Tenancy below).

Adopters who deploy without configuring auth: { bearer } or a reverse proxy should keep the worker URL private or put it behind Cloudflare Access.

Install

pnpm add @loom-loyalty/meridian-runtime-cloudflare @loom-loyalty/meridian-types

Minimum viable worker

// src/worker.ts
import {
  createMeridianWorker,
  defineAgent,
  AgentDurableObject,
  RegistryDurableObject,
} from "@loom-loyalty/meridian-runtime-cloudflare";

const monitor = defineAgent({
  id: "pg-query-optimizer-prod",
  domain: "infrastructure",
  async onSpawn(ctx) {
    await ctx.state.save("started-at", Date.now());
    // Kick off a periodic check.
    await ctx.schedule.cron("*/15 * * * *");
  },
  async onSchedule(ctx) {
    // Your scheduled work here — read Postgres, emit feedback, etc.
  },
});

export default createMeridianWorker({
  agents: [monitor],
  agentCard: {
    name: "infra-monitoring",
    description: "Meridian runtime for infrastructure monitoring agents",
  },
});

// Re-export DO classes so wrangler can bind them.
export { AgentDurableObject, RegistryDurableObject };
# wrangler.toml (see wrangler.toml.example for the full template)
name = "infra-monitoring"
main = "src/worker.ts"
compatibility_date = "2024-11-06"
compatibility_flags = ["nodejs_compat"]

[[durable_objects.bindings]]
name = "AGENT"
class_name = "AgentDurableObject"

[[durable_objects.bindings]]
name = "REGISTRY"
class_name = "RegistryDurableObject"

[[migrations]]
tag = "v1"
new_sqlite_classes = ["AgentDurableObject", "RegistryDurableObject"]

[observability]
enabled = true
head_sampling_rate = 1.0

HTTP surface exposed by createMeridianWorker

| Method | Path | Purpose | | ------ | ------------------------------ | ------------------------------------------------------ | | GET | / | Health check | | GET | /.well-known/agent-card.json | A2A-shaped discovery (empty securitySchemes in v0.1) | | POST | /agents/:id/spawn | {domain} → AgentHandle | | GET | /agents/:id | AgentHandle | | DELETE | /agents/:id | Terminate (204) | | POST | /agents/:id/messages | {to, payload: base64} → MessageReceipt | | POST | /agents/:id/broadcast | {selector?, payload: base64} → BroadcastReceipt | | GET | /agents/:id/inbox | Snapshot (does not clear) | | POST | /agents/:id/inbox/drain | Pull-and-clear |

Message payloads are Uint8Array on the wire protocol; the HTTP surface base64-encodes them in JSON bodies / responses. Every MRD-CF-* error surfaces as a JSON {error: {code, category, message, retryable, docUrl}} with the matching HTTP status.

Custom routes

Pass config.routes to add or shadow routes — useful for monitoring endpoints or pre-M4 auth wrappers:

createMeridianWorker({
  agents: [monitor],
  routes: {
    "GET /healthz": (req, env) => new Response("ok"),
  },
});

Adopter unit tests — createTestRuntime()

The in-memory runtime implements the same primitive contract as the CF adapter. Adopter unit tests exercise agent hooks + business logic with millisecond setup, no Miniflare boot:

import { createTestRuntime } from "@loom-loyalty/meridian-runtime-cloudflare/testing";

it("my agent emits feedback on schedule", async () => {
  const rt = createTestRuntime();
  const agent = rt.agent("my-agent");
  await agent.spawn({ id: "my-agent", domain: "test" });
  // ...
});

CI runs the conformance suite against both the Miniflare-backed adapter and createTestRuntime() — divergence is a red build, so adopters can trust that passing locally means passing on CF.

Tenancy

Multi-tenancy is opt-in. When createMeridianWorker is called without a tenancy config, the worker runs single-tenant — all agents share one global namespace, matching pre-M6 behavior. When tenancy.authorizer is set, every request is mapped to a tenantId and the runtime scopes storage + listings per tenant.

import {
  createMeridianWorker,
  type TenantAuthorizer,
} from "@loom-loyalty/meridian-runtime-cloudflare";

class JwtTenantAuthorizer implements TenantAuthorizer {
  async resolveTenantId(req: Request): Promise<string> {
    const token = req.headers.get("authorization")?.replace(/^Bearer /i, "");
    const { tid } = await verifyJwt(token);
    return tid;
  }
}

export default createMeridianWorker({
  agents: [...],
  tenancy: { authorizer: new JwtTenantAuthorizer() },
});

Server-enforced isolation invariants (when tenancy is on)

  1. DO namespacing. env.AGENT.idFromName("${tenantId}::${agentId}") — same agentId under two tenants maps to two distinct DOs with their own SQLite storage, alarm schedules, and inbox state.
  2. Registry scoping. Each tenant gets its own RegistryDurableObject shard keyed ${tenantId}::default. registry.list() returns zero cross-tenant leakage by construction.
  3. Cross-agent send containment. When agent A sends to "B", the target DO is resolved under A's own tenantId (stored in meta at spawn). Sending into another tenant's namespace is impossible from adopter code.
  4. Broadcast containment. Same as (2) — broadcasts query the sender's tenant-scoped registry and fan out only to agents registered there.
  5. Admin route scoping. GET /admin/domains + GET /admin/agents/:id resolve tenantId via the authorizer before reading. A tenant-B caller asking about tenant-A's agent gets 404 MRD-CF-LC-002.
  6. Spawn body cannot spoof tenant. The worker forces the authorizer-resolved tenantId onto the spawn config; any value an adopter tries to stuff into the request body is ignored.
  7. Handle carries tenantId. Multi-tenant AgentHandle responses include tenantId. Single-tenant handles omit it.

Out of scope for v0.1

These belong to multi-tenant operators (Shuttle and similar) and are intentionally NOT in the reference runtime:

  • Tenant provisioning flow (who creates a tenant, how billing activates)
  • Cross-region routing
  • Spawn-bomb rate limiting per tenant
  • Tenant-level backup/export
  • Aggregate TenantLimits.maxCostUsd caps across agents (per-agent ResourceLimits already enforced; tenant aggregation lands in v0.1.5)

Hyperdrive caveat

If multi-tenant agents share a single Hyperdrive binding, they share connection pool state. For strict per-tenant isolation on the DB side, provision a Hyperdrive per tenant or gate DB access through a per-tenant credential broker (see packages/integration-proxy roadmap entry).

License

Apache 2.0.