Provider Plugin Manifest
open-sse/config/providerPluginManifest.ts defines the JSON-safe provider
plugin contract. open-sse/config/providerPluginManifestRegistry.ts binds that
contract to the current provider registry for sidecars such as Bifrost,
CLIProxyAPI, or a future Go/Rust router. The TypeScript registry remains the
source of truth, but sidecars can consume the manifest without importing
executor code, OAuth defaults, headers, or process environment state.
The same manifest is available over HTTP at
GET /api/v1/provider-plugin-manifest for sidecars that run out-of-process.
OmniRoute advertises that URL to Bifrost and CLIProxyAPI via the
X-OmniRoute-Provider-Manifest-Url request header. Set
OMNIROUTE_PROVIDER_MANIFEST_URL when the sidecar needs a public or container
network URL instead of the local request origin.
Goal
Move provider metadata toward a plugin contract so the hot request path can eventually be owned by a lower-latency sidecar while OmniRoute keeps the TypeScript route as the policy gate and fallback. The manifest is additive: it does not change request routing by itself.
Contract
The manifest contains:
- provider id and alias
- upstream format and executor name
- auth type, auth header, and optional auth prefix
- static endpoint metadata
- sidecar eligibility and explicit reasons when a provider should stay on TS
- JSON-safe model metadata such as context length, vision/reasoning flags, and unsupported params
- capability tags including
apikey,oauth,custom-executor,passthrough-models,responses, andsidecar-candidate
The manifest intentionally excludes:
- OAuth client secrets and default secret values
- runtime environment resolution
- request headers and public credential helpers
- dynamic URL builders
- executor functions
- session pool internals
Sidecar Use
Sidecars should treat sidecar.eligible as a conservative candidate signal, not
as an unconditional routing decision. The first import target should be
API-key, static-endpoint providers using the default executor. Providers with
custom web executors, OAuth/session flows, dynamic URL builders, or pool config
stay on the TypeScript fallback path until a sidecar implements equivalent
behavior and telemetry proves parity.
Suggested migration phases:
- Generate and validate the provider plugin manifest from the TS registry.
- Teach Bifrost or CLIProxyAPI to import the manifest for API-key/static providers.
- Route eligible providers through the sidecar behind
OMNIROUTE_RELAY_BACKENDwhile keeping TS fallback enabled. - Promote providers only when success rate, p99 latency, streaming behavior, and unsupported-param handling match the TS path.
- Add sidecar-native plugins for custom executors one provider family at a time.
Why Not Embed Providers Directly In Next
The Next frontend should not own provider execution. It should call the API boundary. The backend can then decide whether to use the TypeScript executor, Bifrost, CLIProxyAPI, or a future native sidecar. This keeps request signing, allowlist checks, DB policy, and fallback behavior centralized before any sidecar handoff.