@action-llama/action-llama 0.18.5 → 0.18.6

package/dist/credentials/builtins/x-twitter-api.js.map

@@ -1 +1 @@
-{"version":3,"file":"x-twitter-api.js","sourceRoot":"","sources":["../../../src/credentials/builtins/x-twitter-api.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,qBAAqB,EAAE,MAAM,2BAA2B,CAAC;AAElE,MAAM,WAAW,GAAyB;IACxC,EAAE,EAAE,eAAe;IACnB,KAAK,EAAE,6BAA6B;IACpC,WAAW,EAAE,mDAAmD;IAChE,OAAO,EAAE,6CAA6C;IACtD,MAAM,EAAE;QACN,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE,SAAS,EAAE,WAAW,EAAE,sCAAsC,EAAE,MAAM,EAAE,IAAI,EAAE;QACxG,EAAE,IAAI,EAAE,YAAY,EAAE,KAAK,EAAE,YAAY,EAAE,WAAW,EAAE,yCAAyC,EAAE,MAAM,EAAE,IAAI,EAAE;QACjH,EAAE,IAAI,EAAE,cAAc,EAAE,KAAK,EAAE,cAAc,EAAE,WAAW,EAAE,0CAA0C,EAAE,MAAM,EAAE,IAAI,EAAE;QACtH,EAAE,IAAI,EAAE,cAAc,EAAE,KAAK,EAAE,cAAc,EAAE,WAAW,EAAE,uDAAuD,EAAE,MAAM,EAAE,IAAI,EAAE;QACnI,EAAE,IAAI,EAAE,qBAAqB,EAAE,KAAK,EAAE,qBAAqB,EAAE,WAAW,EAAE,8DAA8D,EAAE,MAAM,EAAE,IAAI,EAAE;KACzJ;IACD,OAAO,EAAE;QACP,OAAO,EAAE,WAAW;QACpB,UAAU,EAAE,cAAc;QAC1B,YAAY,EAAE,gBAAgB;QAC9B,YAAY,EAAE,gBAAgB;QAC9B,mBAAmB,EAAE,uBAAuB;KAC7C;IACD,YAAY,EAAE,kHAAkH;IAEhI,KAAK,CAAC,QAAQ,CAAC,MAAM;QACnB,MAAM,qBAAqB,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;QACjD,OAAO,IAAI,CAAC;IACd,CAAC;CACF,CAAC;AAEF,eAAe,WAAW,CAAC"}
+{"version":3,"file":"x-twitter-api.js","sourceRoot":"","sources":["../../../src/credentials/builtins/x-twitter-api.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,qBAAqB,EAAE,MAAM,2BAA2B,CAAC;AAElE,MAAM,WAAW,GAAyB;IACxC,EAAE,EAAE,eAAe;IACnB,KAAK,EAAE,6BAA6B;IACpC,WAAW,EAAE,6DAA6D;IAC1E,OAAO,EAAE,6CAA6C;IACtD,MAAM,EAAE;QACN,EAAE,IAAI,EAAE,cAAc,EAAE,KAAK,EAAE,cAAc,EAAE,WAAW,EAAE,iDAAiD,EAAE,MAAM,EAAE,IAAI,EAAE;QAC7H,EAAE,IAAI,EAAE,iBAAiB,EAAE,KAAK,EAAE,iBAAiB,EAAE,WAAW,EAAE,oDAAoD,EAAE,MAAM,EAAE,IAAI,EAAE;QACtI,EAAE,IAAI,EAAE,cAAc,EAAE,KAAK,EAAE,cAAc,EAAE,WAAW,EAAE,uDAAuD,EAAE,MAAM,EAAE,IAAI,EAAE;KACpI;IACD,OAAO,EAAE;QACP,YAAY,EAAE,gBAAgB;QAC9B,eAAe,EAAE,mBAAmB;QACpC,YAAY,EAAE,gBAAgB;KAC/B;IACD,YAAY,EAAE,iFAAiF;IAE/F,KAAK,CAAC,QAAQ,CAAC,MAAM;QACnB,MAAM,qBAAqB,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;QACjD,OAAO,IAAI,CAAC;IACd,CAAC;CACF,CAAC;AAEF,eAAe,WAAW,CAAC"}

package/dist/credentials/builtins/x-twitter-user-oauth1.d.ts

@@ -0,0 +1,4 @@
+import type { CredentialDefinition } from "../schema.js";
+declare const xTwitterUserOauth1: CredentialDefinition;
+export default xTwitterUserOauth1;
+//# sourceMappingURL=x-twitter-user-oauth1.d.ts.map

package/dist/credentials/builtins/x-twitter-user-oauth1.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"x-twitter-user-oauth1.d.ts","sourceRoot":"","sources":["../../../src/credentials/builtins/x-twitter-user-oauth1.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,oBAAoB,EAAE,MAAM,cAAc,CAAC;AAEzD,QAAA,MAAM,kBAAkB,EAAE,oBAczB,CAAC;AAEF,eAAe,kBAAkB,CAAC"}

package/dist/credentials/builtins/x-twitter-user-oauth1.js

@@ -0,0 +1,17 @@
+const xTwitterUserOauth1 = {
+    id: "x_twitter_user_oauth1",
+    label: "X (Twitter) User OAuth 1.0a Tokens",
+    description: "OAuth 1.0a user-context tokens for a bot account (required for Account Activity API subscriptions)",
+    helpUrl: "https://developer.x.com/en/portal/dashboard",
+    fields: [
+        { name: "access_token", label: "Access Token", description: "OAuth 1.0a Access Token from the bot user's 'Keys and tokens' tab", secret: true },
+        { name: "access_token_secret", label: "Access Token Secret", description: "OAuth 1.0a Access Token Secret from the bot user's 'Keys and tokens' tab", secret: true },
+    ],
+    envVars: {
+        access_token: "X_ACCESS_TOKEN",
+        access_token_secret: "X_ACCESS_TOKEN_SECRET",
+    },
+    agentContext: "`X_ACCESS_TOKEN`, `X_ACCESS_TOKEN_SECRET` — OAuth 1.0a user-context auth for X API (Account Activity API)",
+};
+export default xTwitterUserOauth1;
+//# sourceMappingURL=x-twitter-user-oauth1.js.map

package/dist/credentials/builtins/x-twitter-user-oauth1.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"x-twitter-user-oauth1.js","sourceRoot":"","sources":["../../../src/credentials/builtins/x-twitter-user-oauth1.ts"],"names":[],"mappings":"AAEA,MAAM,kBAAkB,GAAyB;IAC/C,EAAE,EAAE,uBAAuB;IAC3B,KAAK,EAAE,oCAAoC;IAC3C,WAAW,EAAE,oGAAoG;IACjH,OAAO,EAAE,6CAA6C;IACtD,MAAM,EAAE;QACN,EAAE,IAAI,EAAE,cAAc,EAAE,KAAK,EAAE,cAAc,EAAE,WAAW,EAAE,mEAAmE,EAAE,MAAM,EAAE,IAAI,EAAE;QAC/I,EAAE,IAAI,EAAE,qBAAqB,EAAE,KAAK,EAAE,qBAAqB,EAAE,WAAW,EAAE,0EAA0E,EAAE,MAAM,EAAE,IAAI,EAAE;KACrK;IACD,OAAO,EAAE;QACP,YAAY,EAAE,gBAAgB;QAC9B,mBAAmB,EAAE,uBAAuB;KAC7C;IACD,YAAY,EAAE,2GAA2G;CAC1H,CAAC;AAEF,eAAe,kBAAkB,CAAC"}

package/dist/credentials/builtins/x-twitter-user-oauth2.d.ts

@@ -0,0 +1,4 @@
+import type { CredentialDefinition } from "../schema.js";
+declare const xTwitterUserOauth2: CredentialDefinition;
+export default xTwitterUserOauth2;
+//# sourceMappingURL=x-twitter-user-oauth2.d.ts.map

package/dist/credentials/builtins/x-twitter-user-oauth2.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"x-twitter-user-oauth2.d.ts","sourceRoot":"","sources":["../../../src/credentials/builtins/x-twitter-user-oauth2.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,oBAAoB,EAAE,MAAM,cAAc,CAAC;AAqJzD,QAAA,MAAM,kBAAkB,EAAE,oBAiEzB,CAAC;AAEF,eAAe,kBAAkB,CAAC"}

package/dist/credentials/builtins/x-twitter-user-oauth2.js

@@ -0,0 +1,195 @@
+import { createHash, randomBytes } from "crypto";
+import { createServer } from "http";
+import { password, confirm } from "@inquirer/prompts";
+/** Scopes required for Account Activity API subscriptions and DMs */
+const OAUTH2_SCOPES = "dm.read dm.write tweet.read users.read offline.access";
+const AUTHORIZE_URL = "https://x.com/i/oauth2/authorize";
+const TOKEN_URL = "https://api.x.com/2/oauth2/token";
+/** Fixed port for the OAuth callback server — must match the redirect URI registered in the X console */
+const CALLBACK_PORT = 3829;
+const CALLBACK_URI = `http://localhost:${CALLBACK_PORT}/callback`;
+/**
+ * Run the OAuth 2.0 PKCE flow by starting a temporary local HTTP server,
+ * opening the browser for user authorization, and exchanging the code for tokens.
+ */
+async function runPkceFlow(clientId, clientSecret) {
+    // Generate PKCE code verifier and challenge
+    const codeVerifier = randomBytes(32).toString("base64url");
+    const codeChallenge = createHash("sha256").update(codeVerifier).digest("base64url");
+    const state = randomBytes(16).toString("hex");
+    return new Promise((resolve, reject) => {
+        const connections = new Set();
+        const server = createServer((req, res) => {
+            const url = new URL(req.url ?? "/", "http://localhost");
+            if (url.pathname !== "/callback") {
+                res.writeHead(404);
+                res.end();
+                return;
+            }
+            const code = url.searchParams.get("code");
+            const returnedState = url.searchParams.get("state");
+            const error = url.searchParams.get("error");
+            if (error) {
+                res.writeHead(200, { "Content-Type": "text/html" });
+                res.end("<html><body><h2>Authorization failed</h2><p>You can close this tab.</p></body></html>");
+                shutdown();
+                reject(new Error(`OAuth 2.0 authorization error: ${error}`));
+                return;
+            }
+            if (!code || returnedState !== state) {
+                res.writeHead(400, { "Content-Type": "text/html" });
+                res.end("<html><body><h2>Invalid callback</h2><p>Missing code or state mismatch.</p></body></html>");
+                shutdown();
+                reject(new Error("OAuth 2.0 callback: missing code or state mismatch"));
+                return;
+            }
+            res.writeHead(200, { "Content-Type": "text/html" });
+            res.end("<html><body><h2>Authorization successful!</h2><p>You can close this tab and return to the terminal.</p></body></html>");
+            // Exchange authorization code for tokens (30-second deadline)
+            const basicAuth = Buffer.from(`${clientId}:${clientSecret}`).toString("base64");
+            fetch(TOKEN_URL, {
+                method: "POST",
+                headers: {
+                    "Content-Type": "application/x-www-form-urlencoded",
+                    Authorization: `Basic ${basicAuth}`,
+                },
+                body: new URLSearchParams({
+                    grant_type: "authorization_code",
+                    code,
+                    redirect_uri: CALLBACK_URI,
+                    code_verifier: codeVerifier,
+                }),
+            })
+                .then(async (tokenRes) => {
+                if (!tokenRes.ok) {
+                    const body = await tokenRes.text();
+                    throw new Error(`Token exchange failed (${tokenRes.status}): ${body}`);
+                }
+                return tokenRes.json();
+            })
+                .then((data) => {
+                shutdown();
+                if (!data.access_token) {
+                    reject(new Error("Token exchange response missing access_token"));
+                    return;
+                }
+                resolve({
+                    accessToken: data.access_token,
+                    refreshToken: data.refresh_token ?? "",
+                });
+            })
+                .catch((err) => {
+                shutdown();
+                reject(err);
+            });
+        });
+        server.on("connection", (sock) => {
+            connections.add(sock);
+            sock.on("close", () => connections.delete(sock));
+        });
+        function shutdown() {
+            for (const sock of connections)
+                sock.destroy();
+            server.close();
+        }
+        server.listen(CALLBACK_PORT, "127.0.0.1", () => {
+            const params = new URLSearchParams({
+                response_type: "code",
+                client_id: clientId,
+                redirect_uri: CALLBACK_URI,
+                scope: OAUTH2_SCOPES,
+                state,
+                code_challenge: codeChallenge,
+                code_challenge_method: "S256",
+            });
+            const authUrl = `${AUTHORIZE_URL}?${params}`;
+            console.log(`\n  Opening browser for X authorization...`);
+            console.log(`  If it doesn't open, visit:\n  ${authUrl}\n`);
+            // Open browser (best-effort)
+            import("child_process").then(({ exec }) => {
+                const cmd = process.platform === "darwin" ? "open" : process.platform === "win32" ? "start" : "xdg-open";
+                exec(`${cmd} "${authUrl}"`);
+            });
+        });
+        // Timeout after 2 minutes
+        setTimeout(() => {
+            shutdown();
+            reject(new Error("OAuth 2.0 authorization timed out (2 minutes)"));
+        }, 120_000);
+    });
+}
+/** Validate the access token by calling the /2/users/me endpoint */
+async function validateAccessToken(accessToken) {
+    const res = await fetch("https://api.x.com/2/users/me", {
+        headers: { Authorization: `Bearer ${accessToken}` },
+    });
+    if (!res.ok) {
+        const body = await res.text();
+        throw new Error(`X OAuth 2.0 token validation failed (${res.status}): ${body}`);
+    }
+    const data = (await res.json());
+    if (data.data?.username) {
+        console.log(`  Authenticated as @${data.data.username}`);
+    }
+}
+const xTwitterUserOauth2 = {
+    id: "x_twitter_user_oauth2",
+    label: "X (Twitter) User OAuth 2.0 Credentials",
+    description: "OAuth 2.0 PKCE credentials for user-context authentication (DMs, tweets, Account Activity subscriptions)",
+    helpUrl: "https://developer.x.com/en/portal/dashboard",
+    fields: [
+        { name: "client_id", label: "Client ID", description: "OAuth 2.0 Client ID from the 'Keys and tokens' tab in the X Developer Portal", secret: true },
+        { name: "client_secret", label: "Client Secret", description: "OAuth 2.0 Client Secret from the 'Keys and tokens' tab in the X Developer Portal", secret: true },
+        { name: "access_token", label: "Access Token", description: "OAuth 2.0 user access token (obtained via PKCE flow)", secret: true },
+        { name: "refresh_token", label: "Refresh Token", description: "OAuth 2.0 refresh token for obtaining new access tokens", secret: true },
+    ],
+    envVars: {
+        client_id: "X_OAUTH2_CLIENT_ID",
+        client_secret: "X_OAUTH2_CLIENT_SECRET",
+        access_token: "X_OAUTH2_ACCESS_TOKEN",
+        refresh_token: "X_OAUTH2_REFRESH_TOKEN",
+    },
+    agentContext: "`X_OAUTH2_ACCESS_TOKEN`, `X_OAUTH2_REFRESH_TOKEN`, `X_OAUTH2_CLIENT_ID`, `X_OAUTH2_CLIENT_SECRET` — OAuth 2.0 user-context auth for X API v2 (DMs, tweets, Account Activity subscriptions)",
+    async prompt(existing) {
+        if (existing?.access_token && existing?.client_id) {
+            const reuse = await confirm({
+                message: "Found existing X OAuth 2.0 credentials. Use them?",
+                default: true,
+            });
+            if (reuse)
+                return { values: existing };
+        }
+        console.log(`\n  X (Twitter) User OAuth 2.0 Credentials`);
+        console.log(`  OAuth 2.0 PKCE flow for user-context auth (DMs, Account Activity subscriptions)`);
+        console.log(`  → https://developer.x.com/en/portal/dashboard\n`);
+        console.log(`  Add this exact Callback URI in your app's OAuth 2.0 settings:`);
+        console.log(`  ${CALLBACK_URI}\n`);
+        const clientId = await password({
+            message: "X OAuth 2.0 — Client ID:",
+            mask: "*",
+            validate: (v) => (v.trim().length > 0 ? true : "Client ID is required"),
+        });
+        const clientSecret = await password({
+            message: "X OAuth 2.0 — Client Secret:",
+            mask: "*",
+            validate: (v) => (v.trim().length > 0 ? true : "Client Secret is required"),
+        });
+        console.log(`\n  Starting OAuth 2.0 PKCE flow to obtain user access token...`);
+        console.log(`  Requested scopes: ${OAUTH2_SCOPES}\n`);
+        const { accessToken, refreshToken } = await runPkceFlow(clientId.trim(), clientSecret.trim());
+        return {
+            values: {
+                client_id: clientId.trim(),
+                client_secret: clientSecret.trim(),
+                access_token: accessToken,
+                refresh_token: refreshToken,
+            },
+        };
+    },
+    async validate(values) {
+        await validateAccessToken(values.access_token);
+        return true;
+    },
+};
+export default xTwitterUserOauth2;
+//# sourceMappingURL=x-twitter-user-oauth2.js.map

package/dist/credentials/builtins/x-twitter-user-oauth2.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"x-twitter-user-oauth2.js","sourceRoot":"","sources":["../../../src/credentials/builtins/x-twitter-user-oauth2.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AACjD,OAAO,EAAE,YAAY,EAAE,MAAM,MAAM,CAAC;AAEpC,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,MAAM,mBAAmB,CAAC;AAEtD,qEAAqE;AACrE,MAAM,aAAa,GAAG,uDAAuD,CAAC;AAE9E,MAAM,aAAa,GAAG,kCAAkC,CAAC;AACzD,MAAM,SAAS,GAAG,kCAAkC,CAAC;AACrD,yGAAyG;AACzG,MAAM,aAAa,GAAG,IAAI,CAAC;AAC3B,MAAM,YAAY,GAAG,oBAAoB,aAAa,WAAW,CAAC;AAElE;;;GAGG;AACH,KAAK,UAAU,WAAW,CAAC,QAAgB,EAAE,YAAoB;IAC/D,4CAA4C;IAC5C,MAAM,YAAY,GAAG,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;IAC3D,MAAM,aAAa,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;IACpF,MAAM,KAAK,GAAG,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;IAE9C,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,MAAM,WAAW,GAAG,IAAI,GAAG,EAAwB,CAAC;QACpD,MAAM,MAAM,GAAG,YAAY,CAAC,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;YACvC,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,GAAG,IAAI,GAAG,EAAE,kBAAkB,CAAC,CAAC;YACxD,IAAI,GAAG,CAAC,QAAQ,KAAK,WAAW,EAAE,CAAC;gBACjC,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;gBACnB,GAAG,CAAC,GAAG,EAAE,CAAC;gBACV,OAAO;YACT,CAAC;YAED,MAAM,IAAI,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;YAC1C,MAAM,aAAa,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;YACpD,MAAM,KAAK,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;YAE5C,IAAI,KAAK,EAAE,CAAC;gBACV,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,WAAW,EAAE,CAAC,CAAC;gBACpD,GAAG,CAAC,GAAG,CAAC,uFAAuF,CAAC,CAAC;gBACjG,QAAQ,EAAE,CAAC;gBACX,MAAM,CAAC,IAAI,KAAK,CAAC,kCAAkC,KAAK,EAAE,CAAC,CAAC,CAAC;gBAC7D,OAAO;YACT,CAAC;YAED,IAAI,CAAC,IAAI,IAAI,aAAa,KAAK,KAAK,EAAE,CAAC;gBACrC,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,WAAW,EAAE,CAAC,CAAC;gBACpD,GAAG,CAAC,GAAG,CAAC,2FAA2F,CAAC,CAAC;gBACrG,QAAQ,EAAE,CAAC;gBACX,MAAM,CAAC,IAAI,KAAK,CAAC,oDAAoD,CAAC,CAAC,CAAC;gBACxE,OAAO;YACT,CAAC;YAED,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,WAAW,EAAE,CAAC,CAAC;YACpD,GAAG,CAAC,GAAG,CAAC,uHAAuH,CAAC,CAAC;YAEjI,8DAA8D;YAC9D,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,QAAQ,IAAI,YAAY,EAAE,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;YAChF,KAAK,CAAC,SAAS,EAAE;gBACf,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE;oBACP,cAAc,EAAE,mCAAmC;oBACnD,aAAa,EAAE,SAAS,SAAS,EAAE;iBACpC;gBACD,IAAI,EAAE,IAAI,eAAe,CAAC;oBACxB,UAAU,EAAE,oBAAoB;oBAChC,IAAI;oBACJ,YAAY,EAAE,YAAY;oBAC1B,aAAa,EAAE,YAAY;iBAC5B,CAAC;aACH,CAAC;iBACC,IAAI,CAAC,KAAK,EAAE,QAAQ,EAAE,EAAE;gBACvB,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;oBACjB,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;oBACnC,MAAM,IAAI,KAAK,CAAC,0BAA0B,QAAQ,CAAC,MAAM,MAAM,IAAI,EAAE,CAAC,CAAC;gBACzE,CAAC;gBACD,OAAO,QAAQ,CAAC,IAAI,EAAE,CAAC;YACzB,CAAC,CAAC;iBACD,IAAI,CAAC,CAAC,IAAS,EAAE,EAAE;gBAClB,QAAQ,EAAE,CAAC;gBACX,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,CAAC;oBACvB,MAAM,CAAC,IAAI,KAAK,CAAC,8CAA8C,CAAC,CAAC,CAAC;oBAClE,OAAO;gBACT,CAAC;gBACD,OAAO,CAAC;oBACN,WAAW,EAAE,IAAI,CAAC,YAAY;oBAC9B,YAAY,EAAE,IAAI,CAAC,aAAa,IAAI,EAAE;iBACvC,CAAC,CAAC;YACL,CAAC,CAAC;iBACD,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE;gBACb,QAAQ,EAAE,CAAC;gBACX,MAAM,CAAC,GAAG,CAAC,CAAC;YACd,CAAC,CAAC,CAAC;QACP,CAAC,CAAC,CAAC;QAEH,MAAM,CAAC,EAAE,CAAC,YAAY,EAAE,CAAC,IAAI,EAAE,EAAE;YAC/B,WAAW,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;YACtB,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE,CAAC,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC;QACnD,CAAC,CAAC,CAAC;QAEH,SAAS,QAAQ;YACf,KAAK,MAAM,IAAI,IAAI,WAAW;gBAAE,IAAI,CAAC,OAAO,EAAE,CAAC;YAC/C,MAAM,CAAC,KAAK,EAAE,CAAC;QACjB,CAAC;QAED,MAAM,CAAC,MAAM,CAAC,aAAa,EAAE,WAAW,EAAE,GAAG,EAAE;YAC7C,MAAM,MAAM,GAAG,IAAI,eAAe,CAAC;gBACjC,aAAa,EAAE,MAAM;gBACrB,SAAS,EAAE,QAAQ;gBACnB,YAAY,EAAE,YAAY;gBAC1B,KAAK,EAAE,aAAa;gBACpB,KAAK;gBACL,cAAc,EAAE,aAAa;gBAC7B,qBAAqB,EAAE,MAAM;aAC9B,CAAC,CAAC;YAEH,MAAM,OAAO,GAAG,GAAG,aAAa,IAAI,MAAM,EAAE,CAAC;YAC7C,OAAO,CAAC,GAAG,CAAC,4CAA4C,CAAC,CAAC;YAC1D,OAAO,CAAC,GAAG,CAAC,mCAAmC,OAAO,IAAI,CAAC,CAAC;YAE5D,6BAA6B;YAC7B,MAAM,CAAC,eAAe,CAAC,CAAC,IAAI,CAAC,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE;gBACxC,MAAM,GAAG,GAAG,OAAO,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,KAAK,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,UAAU,CAAC;gBACzG,IAAI,CAAC,GAAG,GAAG,KAAK,OAAO,GAAG,CAAC,CAAC;YAC9B,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;QAEH,0BAA0B;QAC1B,UAAU,CAAC,GAAG,EAAE;YACd,QAAQ,EAAE,CAAC;YACX,MAAM,CAAC,IAAI,KAAK,CAAC,+CAA+C,CAAC,CAAC,CAAC;QACrE,CAAC,EAAE,OAAO,CAAC,CAAC;IACd,CAAC,CAAC,CAAC;AACL,CAAC;AAED,oEAAoE;AACpE,KAAK,UAAU,mBAAmB,CAAC,WAAmB;IACpD,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,8BAA8B,EAAE;QACtD,OAAO,EAAE,EAAE,aAAa,EAAE,UAAU,WAAW,EAAE,EAAE;KACpD,CAAC,CAAC;IACH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;QACZ,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;QAC9B,MAAM,IAAI,KAAK,CAAC,wCAAwC,GAAG,CAAC,MAAM,MAAM,IAAI,EAAE,CAAC,CAAC;IAClF,CAAC;IACD,MAAM,IAAI,GAAG,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,CAAqC,CAAC;IACpE,IAAI,IAAI,CAAC,IAAI,EAAE,QAAQ,EAAE,CAAC;QACxB,OAAO,CAAC,GAAG,CAAC,uBAAuB,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC,CAAC;IAC3D,CAAC;AACH,CAAC;AAED,MAAM,kBAAkB,GAAyB;IAC/C,EAAE,EAAE,uBAAuB;IAC3B,KAAK,EAAE,wCAAwC;IAC/C,WAAW,EAAE,0GAA0G;IACvH,OAAO,EAAE,6CAA6C;IACtD,MAAM,EAAE;QACN,EAAE,IAAI,EAAE,WAAW,EAAE,KAAK,EAAE,WAAW,EAAE,WAAW,EAAE,8EAA8E,EAAE,MAAM,EAAE,IAAI,EAAE;QACpJ,EAAE,IAAI,EAAE,eAAe,EAAE,KAAK,EAAE,eAAe,EAAE,WAAW,EAAE,kFAAkF,EAAE,MAAM,EAAE,IAAI,EAAE;QAChK,EAAE,IAAI,EAAE,cAAc,EAAE,KAAK,EAAE,cAAc,EAAE,WAAW,EAAE,sDAAsD,EAAE,MAAM,EAAE,IAAI,EAAE;QAClI,EAAE,IAAI,EAAE,eAAe,EAAE,KAAK,EAAE,eAAe,EAAE,WAAW,EAAE,yDAAyD,EAAE,MAAM,EAAE,IAAI,EAAE;KACxI;IACD,OAAO,EAAE;QACP,SAAS,EAAE,oBAAoB;QAC/B,aAAa,EAAE,wBAAwB;QACvC,YAAY,EAAE,uBAAuB;QACrC,aAAa,EAAE,wBAAwB;KACxC;IACD,YAAY,EAAE,4LAA4L;IAE1M,KAAK,CAAC,MAAM,CAAC,QAAQ;QACnB,IAAI,QAAQ,EAAE,YAAY,IAAI,QAAQ,EAAE,SAAS,EAAE,CAAC;YAClD,MAAM,KAAK,GAAG,MAAM,OAAO,CAAC;gBAC1B,OAAO,EAAE,mDAAmD;gBAC5D,OAAO,EAAE,IAAI;aACd,CAAC,CAAC;YACH,IAAI,KAAK;gBAAE,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC;QACzC,CAAC;QAED,OAAO,CAAC,GAAG,CAAC,4CAA4C,CAAC,CAAC;QAC1D,OAAO,CAAC,GAAG,CAAC,mFAAmF,CAAC,CAAC;QACjG,OAAO,CAAC,GAAG,CAAC,mDAAmD,CAAC,CAAC;QACjE,OAAO,CAAC,GAAG,CAAC,iEAAiE,CAAC,CAAC;QAC/E,OAAO,CAAC,GAAG,CAAC,KAAK,YAAY,IAAI,CAAC,CAAC;QAEnC,MAAM,QAAQ,GAAG,MAAM,QAAQ,CAAC;YAC9B,OAAO,EAAE,0BAA0B;YACnC,IAAI,EAAE,GAAG;YACT,QAAQ,EAAE,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,uBAAuB,CAAC;SAChF,CAAC,CAAC;QAEH,MAAM,YAAY,GAAG,MAAM,QAAQ,CAAC;YAClC,OAAO,EAAE,8BAA8B;YACvC,IAAI,EAAE,GAAG;YACT,QAAQ,EAAE,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,2BAA2B,CAAC;SACpF,CAAC,CAAC;QAEH,OAAO,CAAC,GAAG,CAAC,iEAAiE,CAAC,CAAC;QAC/E,OAAO,CAAC,GAAG,CAAC,uBAAuB,aAAa,IAAI,CAAC,CAAC;QAEtD,MAAM,EAAE,WAAW,EAAE,YAAY,EAAE,GAAG,MAAM,WAAW,CAAC,QAAQ,CAAC,IAAI,EAAE,EAAE,YAAY,CAAC,IAAI,EAAE,CAAC,CAAC;QAE9F,OAAO;YACL,MAAM,EAAE;gBACN,SAAS,EAAE,QAAQ,CAAC,IAAI,EAAE;gBAC1B,aAAa,EAAE,YAAY,CAAC,IAAI,EAAE;gBAClC,YAAY,EAAE,WAAW;gBACzB,aAAa,EAAE,YAAY;aAC5B;SACF,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,MAAM;QACnB,MAAM,mBAAmB,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;QAC/C,OAAO,IAAI,CAAC;IACd,CAAC;CACF,CAAC;AAEF,eAAe,kBAAkB,CAAC"}

package/dist/credentials/prompter.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"prompter.d.ts","sourceRoot":"","sources":["../../src/credentials/prompter.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,oBAAoB,EAAE,sBAAsB,EAAE,MAAM,aAAa,CAAC;AAUhF;;;;;;;;;;GAUG;AACH,wBAAsB,gBAAgB,CACpC,GAAG,EAAE,oBAAoB,EACzB,QAAQ,GAAE,MAAkB,GAC3B,OAAO,CAAC,sBAAsB,GAAG,SAAS,CAAC,CA2C7C"}
+{"version":3,"file":"prompter.d.ts","sourceRoot":"","sources":["../../src/credentials/prompter.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,oBAAoB,EAAE,sBAAsB,EAAE,MAAM,aAAa,CAAC;AAUhF;;;;;;;;;;GAUG;AACH,wBAAsB,gBAAgB,CACpC,GAAG,EAAE,oBAAoB,EACzB,QAAQ,GAAE,MAAkB,GAC3B,OAAO,CAAC,sBAAsB,GAAG,SAAS,CAAC,CAwE7C"}

package/dist/credentials/prompter.js

@@ -25,12 +25,37 @@ export async function promptCredential(def, instance = "default") {
     }
     // Default field-by-field prompting
     if (existing) {
-        const reuse = await confirm({
-            message: `Found existing ${def.label}. Use it?`,
-            default: true,
-        });
-        if (reuse)
-            return { values: existing };
+        // Check for missing optional fields that were added after initial setup
+        const missingOptional = def.fields.filter((f) => f.optional && !(f.name in existing));
+        if (missingOptional.length === 0) {
+            const reuse = await confirm({
+                message: `Found existing ${def.label}. Use it?`,
+                default: true,
+            });
+            if (reuse)
+                return { values: existing };
+        }
+        else {
+            const reuse = await confirm({
+                message: `Found existing ${def.label} (${missingOptional.length} new optional field${missingOptional.length > 1 ? "s" : ""} available). Keep existing and add new fields?`,
+                default: true,
+            });
+            if (reuse) {
+                const values = { ...existing };
+                console.log();
+                for (const field of missingOptional) {
+                    const prompt = field.secret ? password : input;
+                    const value = await prompt({
+                        message: `${def.label} — ${field.label} (optional):`,
+                        mask: field.secret ? "*" : undefined,
+                    });
+                    if (value.trim()) {
+                        values[field.name] = value.trim();
+                    }
+                }
+                return { values };
+            }
+        }
     }
     // Show context
     console.log(`\n  ${def.label}: ${def.description}`);
@@ -42,11 +67,15 @@ export async function promptCredential(def, instance = "default") {
     for (const field of def.fields) {
         const prompt = field.secret ? password : input;
         const value = await prompt({
-            message: `${def.label} — ${field.label}:`,
+            message: `${def.label} — ${field.label}${field.optional ? " (optional)" : ""}:`,
             mask: field.secret ? "*" : undefined,
-            validate: (v) => (v.trim().length > 0 ? true : `${field.label} is required`),
+            validate: field.optional
+                ? undefined
+                : (v) => (v.trim().length > 0 ? true : `${field.label} is required`),
         });
-        values[field.name] = value.trim();
+        if (value.trim()) {
+            values[field.name] = value.trim();
+        }
     }
     // Validate if validator is defined
     if (def.validate) {

package/dist/credentials/prompter.js.map

@@ -1 +1 @@
-{"version":3,"file":"prompter.js","sourceRoot":"","sources":["../../src/credentials/prompter.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,QAAQ,EAAE,OAAO,EAAE,MAAM,mBAAmB,CAAC;AAE7D,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAEhE;;GAEG;AACH,KAAK,UAAU,kBAAkB,CAAC,GAAyB,EAAE,QAAgB;IAC3E,OAAO,MAAM,oBAAoB,CAAC,GAAG,CAAC,EAAE,EAAE,QAAQ,CAAC,CAAC;AACtD,CAAC;AAED;;;;;;;;;;GAUG;AACH,MAAM,CAAC,KAAK,UAAU,gBAAgB,CACpC,GAAyB,EACzB,WAAmB,SAAS;IAE5B,MAAM,QAAQ,GAAG,MAAM,kBAAkB,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC;IAEzD,6CAA6C;IAC7C,IAAI,GAAG,CAAC,MAAM,EAAE,CAAC;QACf,OAAO,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;IAC9B,CAAC;IAED,mCAAmC;IACnC,IAAI,QAAQ,EAAE,CAAC;QACb,MAAM,KAAK,GAAG,MAAM,OAAO,CAAC;YAC1B,OAAO,EAAE,kBAAkB,GAAG,CAAC,KAAK,WAAW;YAC/C,OAAO,EAAE,IAAI;SACd,CAAC,CAAC;QACH,IAAI,KAAK;YAAE,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC;IACzC,CAAC;IAED,eAAe;IACf,OAAO,CAAC,GAAG,CAAC,OAAO,GAAG,CAAC,KAAK,KAAK,GAAG,CAAC,WAAW,EAAE,CAAC,CAAC;IACpD,IAAI,GAAG,CAAC,OAAO,EAAE,CAAC;QAChB,OAAO,CAAC,GAAG,CAAC,OAAO,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;IACpC,CAAC;IACD,OAAO,CAAC,GAAG,EAAE,CAAC;IAEd,MAAM,MAAM,GAA2B,EAAE,CAAC;IAE1C,KAAK,MAAM,KAAK,IAAI,GAAG,CAAC,MAAM,EAAE,CAAC;QAC/B,MAAM,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC;QAC/C,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC;YACzB,OAAO,EAAE,GAAG,GAAG,CAAC,KAAK,MAAM,KAAK,CAAC,KAAK,GAAG;YACzC,IAAI,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS;YACpC,QAAQ,EAAE,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,KAAK,CAAC,KAAK,cAAc,CAAC;SAC9E,CAAC,CAAC;QACV,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC,IAAI,EAAE,CAAC;IACpC,CAAC;IAED,mCAAmC;IACnC,IAAI,GAAG,CAAC,QAAQ,EAAE,CAAC;QACjB,OAAO,CAAC,GAAG,CAAC,cAAc,GAAG,CAAC,KAAK,KAAK,CAAC,CAAC;QAC1C,MAAM,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;IAC7B,CAAC;IAED,OAAO,EAAE,MAAM,EAAE,CAAC;AACpB,CAAC"}
+{"version":3,"file":"prompter.js","sourceRoot":"","sources":["../../src/credentials/prompter.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,QAAQ,EAAE,OAAO,EAAE,MAAM,mBAAmB,CAAC;AAE7D,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAEhE;;GAEG;AACH,KAAK,UAAU,kBAAkB,CAAC,GAAyB,EAAE,QAAgB;IAC3E,OAAO,MAAM,oBAAoB,CAAC,GAAG,CAAC,EAAE,EAAE,QAAQ,CAAC,CAAC;AACtD,CAAC;AAED;;;;;;;;;;GAUG;AACH,MAAM,CAAC,KAAK,UAAU,gBAAgB,CACpC,GAAyB,EACzB,WAAmB,SAAS;IAE5B,MAAM,QAAQ,GAAG,MAAM,kBAAkB,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC;IAEzD,6CAA6C;IAC7C,IAAI,GAAG,CAAC,MAAM,EAAE,CAAC;QACf,OAAO,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;IAC9B,CAAC;IAED,mCAAmC;IACnC,IAAI,QAAQ,EAAE,CAAC;QACb,wEAAwE;QACxE,MAAM,eAAe,GAAG,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,IAAI,QAAQ,CAAC,CAAC,CAAC;QAEtF,IAAI,eAAe,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACjC,MAAM,KAAK,GAAG,MAAM,OAAO,CAAC;gBAC1B,OAAO,EAAE,kBAAkB,GAAG,CAAC,KAAK,WAAW;gBAC/C,OAAO,EAAE,IAAI;aACd,CAAC,CAAC;YACH,IAAI,KAAK;gBAAE,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC;QACzC,CAAC;aAAM,CAAC;YACN,MAAM,KAAK,GAAG,MAAM,OAAO,CAAC;gBAC1B,OAAO,EAAE,kBAAkB,GAAG,CAAC,KAAK,KAAK,eAAe,CAAC,MAAM,sBAAsB,eAAe,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,gDAAgD;gBAC1K,OAAO,EAAE,IAAI;aACd,CAAC,CAAC;YACH,IAAI,KAAK,EAAE,CAAC;gBACV,MAAM,MAAM,GAAG,EAAE,GAAG,QAAQ,EAAE,CAAC;gBAC/B,OAAO,CAAC,GAAG,EAAE,CAAC;gBACd,KAAK,MAAM,KAAK,IAAI,eAAe,EAAE,CAAC;oBACpC,MAAM,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC;oBAC/C,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC;wBACzB,OAAO,EAAE,GAAG,GAAG,CAAC,KAAK,MAAM,KAAK,CAAC,KAAK,cAAc;wBACpD,IAAI,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS;qBAC9B,CAAC,CAAC;oBACV,IAAI,KAAK,CAAC,IAAI,EAAE,EAAE,CAAC;wBACjB,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC,IAAI,EAAE,CAAC;oBACpC,CAAC;gBACH,CAAC;gBACD,OAAO,EAAE,MAAM,EAAE,CAAC;YACpB,CAAC;QACH,CAAC;IACH,CAAC;IAED,eAAe;IACf,OAAO,CAAC,GAAG,CAAC,OAAO,GAAG,CAAC,KAAK,KAAK,GAAG,CAAC,WAAW,EAAE,CAAC,CAAC;IACpD,IAAI,GAAG,CAAC,OAAO,EAAE,CAAC;QAChB,OAAO,CAAC,GAAG,CAAC,OAAO,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;IACpC,CAAC;IACD,OAAO,CAAC,GAAG,EAAE,CAAC;IAEd,MAAM,MAAM,GAA2B,EAAE,CAAC;IAE1C,KAAK,MAAM,KAAK,IAAI,GAAG,CAAC,MAAM,EAAE,CAAC;QAC/B,MAAM,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC;QAC/C,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC;YACzB,OAAO,EAAE,GAAG,GAAG,CAAC,KAAK,MAAM,KAAK,CAAC,KAAK,GAAG,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC,CAAC,EAAE,GAAG;YAC/E,IAAI,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS;YACpC,QAAQ,EAAE,KAAK,CAAC,QAAQ;gBACtB,CAAC,CAAC,SAAS;gBACX,CAAC,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,KAAK,CAAC,KAAK,cAAc,CAAC;SACxE,CAAC,CAAC;QACV,IAAI,KAAK,CAAC,IAAI,EAAE,EAAE,CAAC;YACjB,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC,IAAI,EAAE,CAAC;QACpC,CAAC;IACH,CAAC;IAED,mCAAmC;IACnC,IAAI,GAAG,CAAC,QAAQ,EAAE,CAAC;QACjB,OAAO,CAAC,GAAG,CAAC,cAAc,GAAG,CAAC,KAAK,KAAK,CAAC,CAAC;QAC1C,MAAM,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;IAC7B,CAAC;IAED,OAAO,EAAE,MAAM,EAAE,CAAC;AACpB,CAAC"}

package/dist/credentials/schema.d.ts

@@ -3,6 +3,7 @@ export interface CredentialField {
     label: string;
     description: string;
     secret: boolean;
+    optional?: boolean;
 }
 export interface CredentialPromptResult {
     values: Record<string, string>;

package/dist/credentials/schema.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"schema.d.ts","sourceRoot":"","sources":["../../src/credentials/schema.ts"],"names":[],"mappings":"AAIA,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,OAAO,CAAC;CACjB;AAED,MAAM,WAAW,sBAAsB;IACrC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC/B,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CAClC;AAED,MAAM,WAAW,oBAAoB;IACnC,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;IACpB,OAAO,CAAC,EAAE,MAAM,CAAC;IAGjB,MAAM,EAAE,eAAe,EAAE,CAAC;IAG1B,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAKjC,YAAY,CAAC,EAAE,MAAM,CAAC;IAKtB,QAAQ,CAAC,EAAE,CAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,KAAK,OAAO,CAAC,OAAO,CAAC,CAAC;IAKhE,MAAM,CAAC,EAAE,CAAC,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,KAAK,OAAO,CAAC,sBAAsB,GAAG,SAAS,CAAC,CAAC;CAC7F"}
+{"version":3,"file":"schema.d.ts","sourceRoot":"","sources":["../../src/credentials/schema.ts"],"names":[],"mappings":"AAIA,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,OAAO,CAAC;IAChB,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AAED,MAAM,WAAW,sBAAsB;IACrC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC/B,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CAClC;AAED,MAAM,WAAW,oBAAoB;IACnC,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;IACpB,OAAO,CAAC,EAAE,MAAM,CAAC;IAGjB,MAAM,EAAE,eAAe,EAAE,CAAC;IAG1B,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAKjC,YAAY,CAAC,EAAE,MAAM,CAAC;IAKtB,QAAQ,CAAC,EAAE,CAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,KAAK,OAAO,CAAC,OAAO,CAAC,CAAC;IAKhE,MAAM,CAAC,EAAE,CAAC,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,KAAK,OAAO,CAAC,sBAAsB,GAAG,SAAS,CAAC,CAAC;CAC7F"}

package/dist/docker/host-user-runtime.d.ts

@@ -0,0 +1,35 @@
+/**
+ * HostUserRuntime — runs agents as a separate OS user via `sudo -u`.
+ *
+ * Provides lightweight isolation without Docker:
+ *  - Agent process runs as a dedicated OS user (can't access operator credentials)
+ *  - Credentials staged to a temp dir, path passed via AL_CREDENTIALS_PATH
+ *  - Working directory: /tmp/al-runs/<instance-id>/ (chowned to agent user)
+ *  - Logs written to /tmp/al-runs/<instance-id>.log (owned by scheduler)
+ *  - No image builds, no containers, no Docker dependency
+ */
+import type { Runtime, RuntimeLaunchOpts, RuntimeCredentials, RunningAgent } from "./runtime.js";
+export declare class HostUserRuntime implements Runtime {
+    readonly needsGateway = false;
+    private runAs;
+    private processes;
+    private runAgentNames;
+    constructor(runAs?: string);
+    isAgentRunning(agentName: string): Promise<boolean>;
+    listRunningAgents(): Promise<RunningAgent[]>;
+    prepareCredentials(credRefs: string[]): Promise<RuntimeCredentials>;
+    cleanupCredentials(creds: RuntimeCredentials): void;
+    launch(opts: RuntimeLaunchOpts): Promise<string>;
+    streamLogs(runId: string, onLine: (line: string) => void, onStderr?: (text: string) => void): {
+        stop: () => void;
+    };
+    waitForExit(runId: string, timeoutSeconds: number): Promise<number>;
+    kill(runId: string): Promise<void>;
+    remove(runId: string): Promise<void>;
+    fetchLogs(agentName: string, limit: number): Promise<string[]>;
+    followLogs(_agentName: string, _onLine: (line: string) => void, _onStderr?: (text: string) => void): {
+        stop: () => void;
+    };
+    getTaskUrl(): string | null;
+}
+//# sourceMappingURL=host-user-runtime.d.ts.map

package/dist/docker/host-user-runtime.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"host-user-runtime.d.ts","sourceRoot":"","sources":["../../src/docker/host-user-runtime.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAUH,OAAO,KAAK,EACV,OAAO,EAAE,iBAAiB,EAAE,kBAAkB,EAC5B,YAAY,EAC/B,MAAM,cAAc,CAAC;AAkCtB,qBAAa,eAAgB,YAAW,OAAO;IAC7C,QAAQ,CAAC,YAAY,SAAS;IAE9B,OAAO,CAAC,KAAK,CAAS;IACtB,OAAO,CAAC,SAAS,CAAmC;IACpD,OAAO,CAAC,aAAa,CAA6B;gBAEtC,KAAK,GAAE,MAAmB;IAIhC,cAAc,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAOnD,iBAAiB,IAAI,OAAO,CAAC,YAAY,EAAE,CAAC;IAe5C,kBAAkB,CAAC,QAAQ,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,kBAAkB,CAAC;IAoDzE,kBAAkB,CAAC,KAAK,EAAE,kBAAkB,GAAG,IAAI;IAM7C,MAAM,CAAC,IAAI,EAAE,iBAAiB,GAAG,OAAO,CAAC,MAAM,CAAC;IA6DtD,UAAU,CACR,KAAK,EAAE,MAAM,EACb,MAAM,EAAE,CAAC,IAAI,EAAE,MAAM,KAAK,IAAI,EAC9B,QAAQ,CAAC,EAAE,CAAC,IAAI,EAAE,MAAM,KAAK,IAAI,GAChC;QAAE,IAAI,EAAE,MAAM,IAAI,CAAA;KAAE;IA4BvB,WAAW,CAAC,KAAK,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IA+B7D,IAAI,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAalC,MAAM,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAQpC,SAAS,CAAC,SAAS,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;IAwBpE,UAAU,CACR,UAAU,EAAE,MAAM,EAClB,OAAO,EAAE,CAAC,IAAI,EAAE,MAAM,KAAK,IAAI,EAC/B,SAAS,CAAC,EAAE,CAAC,IAAI,EAAE,MAAM,KAAK,IAAI,GACjC;QAAE,IAAI,EAAE,MAAM,IAAI,CAAA;KAAE;IAKvB,UAAU,IAAI,MAAM,GAAG,IAAI;CAG5B"}