Home
Python
TSpython3 has its own set of WASM-runtime-level divergences from Python Mirage’s subprocess model. See Python for the full list.Node
1. fs-monkey only patches CJS require('fs'), not ESM node:fs
The problem. patchNodeFs() routes fs calls through the workspace VFS so that third-party libraries “just work” against mounted paths. It works by replacing require.cache’s fs entry (a CJS-only mechanism). ESM is fundamentally different:
import { readFile } from 'node:fs/promises'resolves at parse time to V8’s internal binding.- There is no public hook to replace that binding after the fact.
- Loader hooks (
--loader=…) could intercept the resolution, but they’re a build-time decision, not a runtime monkey-patch.
with Workspace() as ws: swaps builtins.open and sys.modules["os"]: one set of mutable globals, one patch point, works for every caller.
Workarounds.
- Use FUSE instead
- Use Mirage's VFS API directly
- Restrict your code to CJS
If you want ESM-imported
node:fs to see your mounted data, expose the workspace as a real filesystem. Mount FUSE, then every fs call, ESM or CJS, goes through the kernel.node:fs through the workspace would remove the ESM limitation, at the cost of forcing consumers to opt into the loader (node --loader @struktoai/mirage-node/loader main.mjs). Not planned currently.
2. FUSE files from API-backed resources cap at 100 MiB
The problem. API-backed resources (Trello, Linear, Slack, MongoDB, etc.) returnstat.size = null because the byte size isn’t known until the API has been called. Python passes direct_io=True to libfuse at mount time so the kernel ignores reported size and issues read() until it returns 0 (Slack’s daily history can be tens of MB and it just works).
@zkochan/fuse-native doesn’t expose direct_io. There’s no per-file flag (the open C bridge can only return fh, not modify fuse_file_info.direct_io), and the -o direct_io mount option is rejected by macFUSE/libosxfuse and crashes the channel. So when Mirage’s FUSE layer hits a size=null file, it has to report some non-zero size to make the kernel issue reads, otherwise cat board.json would print empty.
We report a 100 MiB sentinel. The read handler returns 0 past the actual data length, so cat, wc -c, and friends correctly see EOF for files smaller than the sentinel. Files larger than 100 MiB get truncated.
What this means in practice.
ls -l shows 100M for any unfetched API-backed file. Once a file has been opened, the real size is cached and subsequent ls -l shows the actual byte count.
The cap exists because Node’s fs/promises.readFile allocates a Buffer of the reported size and decodes it as utf-8 at the end; V8’s string length limit is ~512 MiB, so a larger sentinel throws RangeError: Invalid string length (which is what you’d hit before any real read).
Knock-on effect for JSON files. Because the kernel zero-pads the unread tail of the 100 MiB buffer, JSON.parse(readFile(...)) on a FUSE-mounted JSON file fails at the first byte right after the real payload with SyntaxError: Unexpected non-whitespace character after JSON. Streaming tools (cat, grep, head, wc -c, jq) stop at EOF and are unaffected; only consumers that decode the full buffer as UTF-8 and then parse it choke on the padding. MongoDB’s FUSE-exposed schema.json, database.json, and documents.jsonl are the most visible cases, see TS MongoDB → FUSE caveat for workarounds.
Why Python doesn’t hit this. Python’s mfusepy accepts direct_io=True and passes it to libfuse2 as a mount option. macFUSE supports it through that path even though it rejects the same option from @zkochan/fuse-native’s option string. With direct_io enabled, the kernel doesn’t care what size getattr reports.
Workarounds.
- Read via the VFS API
- Process incrementally
The Mirage VFS doesn’t go through FUSE at all (no sentinel, no truncation). Use this for any file that might exceed 100 MiB.
@zkochan/fuse-native’s C bridge to set info->direct_io = 1 in the open callback (a one-line change applied via pnpm patch). That achieves Python parity and removes the 100 MiB cap entirely. Tracked but not yet implemented.
Browser
The browser SDK runs entirely in-page: no kernel, no subprocesses, no Nodefs. That removes the Node sections above (neither FUSE nor fs-monkey apply) but introduces its own constraints.
1. No FUSE
Browsers can’t mount filesystems. A workspace withfuseMounts throws on construction. Use ws.execute(...) (virtual executor) and ws.fs.readFile/writeFile instead. Every builtin (cat, grep, jq, awk, python3, etc.) is reimplemented in-process, so most agent code paths work unchanged from Node.
2. OPFS quotas and persistence
OPFSResource writes through the Origin Private File System. Two things to know:
- Storage quota. The browser sets per-origin quotas (typically a fraction of free disk, single-digit GB on most setups). Hitting it raises
QuotaExceededError. Callnavigator.storage.estimate()to inspect. - Eviction. Origins that aren’t persisted can be cleared by the browser under storage pressure. For long-lived workspaces, request
navigator.storage.persist()early.
3. CORS for HTTP-backed resources
Mounts that hit third-party APIs (S3, GitHub, Linear, etc.) makefetch calls from the page. Anything not configured to allow your origin via CORS will fail with the usual browser error. Workarounds:
- Browser-native auth flows. Resources like Box, Dropbox, GDrive, GDocs ship PKCE OAuth examples that work entirely in-browser.
- Pre-signed URLs. For S3/R2/GCS, generate pre-signed URLs server-side and pass them in. The Mirage browser examples include a Vite dev-server
presignerplugin as reference. - Same-origin proxy. Stand up a tiny proxy on your own domain that forwards to the upstream API with the right auth headers.
4. Python writes need JSPI
The Python FS shim (open() against mounted paths) flushes writes back through an async bridge. That requires JSPI. Reads of preloaded files still work without it, but close() on a write throws RuntimeError: Cannot stack switch.
- Chrome / Edge 137+ (May 2025): works out of the box.
- Firefox: behind
javascript.options.wasm_js_promise_integration. - Safari: not yet shipped.
5. No SSH, Postgres, MongoDB, LanceDB, Email, FUSE peers
These resources are only exposed by@struktoai/mirage-node because their drivers are Node-only. Importing them from @struktoai/mirage-browser is a build error. For browser apps, route those reads through your backend (or use the HTTP-driver variants where they exist, e.g. MongoDB via the bundled mongo-proxy in the examples).
Quick reference
| Scenario | Runtime | Status |
|---|---|---|
patchNodeFs() with require('fs') (CJS) | Node | ✅ works |
patchNodeFs() with import from 'node:fs' (ESM) | Node | ❌ silently bypassed; use FUSE or the VFS API |
FUSE cat of a Trello/Linear/Slack file ≤ 100 MiB | Node | ✅ works |
FUSE cat of an API-backed file > 100 MiB | Node | ❌ truncated; use ws.fs.readFile or ws.execute('cat …') |
ws.execute(...) virtual builtins | Browser | ✅ works |
Workspace({ fuseMounts }) | Browser | ❌ throws; not supported |
| OPFS reads/writes within quota | Browser | ✅ works |
| OPFS over quota | Browser | ❌ QuotaExceededError; check navigator.storage.estimate() |
| HTTP-backed resources without CORS allow-list | Browser | ❌ blocked; use PKCE, presigned URLs, or a same-origin proxy |
Python open() writes back through mount | Browser | ✅ with JSPI (Chrome 137+); ❌ otherwise |
@struktoai/mirage-node-only resources (SSH, Postgres, MongoDB, LanceDB, Email, FUSE) | Browser | ❌ Node-only drivers |
fs patching or large API-backed FUSE reads, consider whether the Python SDK fits better for that specific piece. The Browser limitations are by design (no kernel, no subprocess), so the workarounds there are about choosing the right runtime for the task.