@action-llama/action-llama 0.27.4 → 0.28.0

package/dist/transport/docker-exec.d.ts

@@ -0,0 +1,41 @@
+/**
+ * DockerExecTransport — executes commands inside a running Docker container
+ * via `docker exec -i`, maintaining a persistent shell session.
+ *
+ * Shell state (cwd, env vars) persists across exec() calls because all commands
+ * run in the same bash process. File I/O uses `docker cp` for efficient batch
+ * transfers without framing issues.
+ */
+import type { Transport, ExecResult, ExecOptions } from "./transport.js";
+export interface DockerExecTransportOpts {
+    /** The Docker container name or ID to connect to. */
+    container: string;
+    /** User to run as inside the container. Default: undefined (container default). */
+    user?: string;
+    /** Initial working directory. Default: "/" */
+    cwd?: string;
+}
+export declare class DockerExecTransport implements Transport {
+    private opts;
+    private container;
+    private shell;
+    private ready;
+    private buffer;
+    private user?;
+    private _closed;
+    constructor(opts: DockerExecTransportOpts);
+    /** Start the persistent shell session. Must be called before exec(). */
+    connect(): Promise<void>;
+    /**
+     * Wait for a delimiter to appear in the stdout buffer.
+     * Returns the output that appeared before the delimiter.
+     * Also parses the exit code from the delimiter line.
+     */
+    private waitForDelimiter;
+    exec(command: string, options?: ExecOptions): Promise<ExecResult>;
+    readFiles(paths: string[]): Promise<Map<string, Buffer>>;
+    private readSingleFile;
+    writeFiles(files: Map<string, Buffer>): Promise<void>;
+    close(): Promise<void>;
+}
+//# sourceMappingURL=docker-exec.d.ts.map

package/dist/transport/docker-exec.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"docker-exec.d.ts","sourceRoot":"","sources":["../../src/transport/docker-exec.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAOH,OAAO,KAAK,EAAE,SAAS,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,gBAAgB,CAAC;AAYzE,MAAM,WAAW,uBAAuB;IACtC,qDAAqD;IACrD,SAAS,EAAE,MAAM,CAAC;IAClB,mFAAmF;IACnF,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,8CAA8C;IAC9C,GAAG,CAAC,EAAE,MAAM,CAAC;CACd;AAED,qBAAa,mBAAoB,YAAW,SAAS;IAQvC,OAAO,CAAC,IAAI;IAPxB,OAAO,CAAC,SAAS,CAAS;IAC1B,OAAO,CAAC,KAAK,CAA6B;IAC1C,OAAO,CAAC,KAAK,CAAS;IACtB,OAAO,CAAC,MAAM,CAAM;IACpB,OAAO,CAAC,IAAI,CAAC,CAAS;IACtB,OAAO,CAAC,OAAO,CAAS;gBAEJ,IAAI,EAAE,uBAAuB;IAKjD,wEAAwE;IAClE,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;IAmC9B;;;;OAIG;IACH,OAAO,CAAC,gBAAgB;IAyClB,IAAI,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,WAAW,GAAG,OAAO,CAAC,UAAU,CAAC;IA2EjE,SAAS,CAAC,KAAK,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;YAmEhD,cAAc;IAiBtB,UAAU,CAAC,KAAK,EAAE,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,GAAG,OAAO,CAAC,IAAI,CAAC;IA+DrD,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;CAc7B"}

package/dist/transport/docker-exec.js

@@ -0,0 +1,331 @@
+/**
+ * DockerExecTransport — executes commands inside a running Docker container
+ * via `docker exec -i`, maintaining a persistent shell session.
+ *
+ * Shell state (cwd, env vars) persists across exec() calls because all commands
+ * run in the same bash process. File I/O uses `docker cp` for efficient batch
+ * transfers without framing issues.
+ */
+import { spawn, execFileSync } from "child_process";
+import { randomBytes } from "crypto";
+import { mkdtempSync, writeFileSync, readFileSync, readdirSync, rmSync, mkdirSync } from "fs";
+import { join, dirname, basename } from "path";
+import { tmpdir } from "os";
+/** How long to wait for the shell to become ready after spawning (ms). */
+const SHELL_READY_TIMEOUT_MS = 10_000;
+/** Default command execution timeout (ms). */
+const DEFAULT_EXEC_TIMEOUT_MS = 300_000;
+/** Generate a unique delimiter that won't appear in command output. */
+function makeDelimiter() {
+    return `__AL_DELIM_${randomBytes(8).toString("hex")}__`;
+}
+export class DockerExecTransport {
+    opts;
+    container;
+    shell = null;
+    ready = false;
+    buffer = "";
+    user;
+    _closed = false;
+    constructor(opts) {
+        this.opts = opts;
+        this.container = opts.container;
+        this.user = opts.user;
+    }
+    /** Start the persistent shell session. Must be called before exec(). */
+    async connect() {
+        const args = ["exec", "-i"];
+        if (this.user) {
+            args.push("-u", this.user);
+        }
+        args.push(this.container, "bash", "--norc", "--noprofile");
+        this.shell = spawn("docker", args, {
+            stdio: ["pipe", "pipe", "pipe"],
+        });
+        // Absorb EPIPE on stdin — the spawned process may exit before we write to it
+        // (e.g. container not found, Docker daemon unreachable, or mocked Docker).
+        this.shell.stdin.on("error", () => { });
+        this.shell.stdout.on("data", (chunk) => {
+            this.buffer += chunk.toString();
+        });
+        this.shell.on("exit", () => {
+            this.ready = false;
+        });
+        // Wait for shell to be ready by sending a probe command
+        const readyDelim = makeDelimiter();
+        this.shell.stdin.write(`echo "${readyDelim} $?"\n`);
+        await this.waitForDelimiter(readyDelim, SHELL_READY_TIMEOUT_MS);
+        this.ready = true;
+        // Set initial cwd if specified
+        if (this.opts.cwd) {
+            await this.exec(`cd ${shellQuote(this.opts.cwd)}`);
+        }
+    }
+    /**
+     * Wait for a delimiter to appear in the stdout buffer.
+     * Returns the output that appeared before the delimiter.
+     * Also parses the exit code from the delimiter line.
+     */
+    waitForDelimiter(delimiter, timeoutMs) {
+        return new Promise((resolve, reject) => {
+            const timer = setTimeout(() => {
+                clearInterval(poll);
+                reject(new Error(`Timed out waiting for shell response (${timeoutMs}ms)`));
+            }, timeoutMs);
+            const check = () => {
+                if (this._closed) {
+                    clearTimeout(timer);
+                    clearInterval(poll);
+                    reject(new Error("Transport closed"));
+                    return;
+                }
+                const idx = this.buffer.indexOf(delimiter);
+                if (idx === -1)
+                    return;
+                // Find the end of the delimiter line
+                const lineEnd = this.buffer.indexOf("\n", idx);
+                if (lineEnd === -1)
+                    return;
+                const output = this.buffer.slice(0, idx);
+                const delimLine = this.buffer.slice(idx, lineEnd);
+                this.buffer = this.buffer.slice(lineEnd + 1);
+                clearTimeout(timer);
+                clearInterval(poll);
+                // Parse exit code from delimiter line: "__AL_DELIM_xxx__ 0"
+                const match = delimLine.match(/\s+(\d+)\s*$/);
+                const exitCode = match ? parseInt(match[1], 10) : 0;
+                resolve({ output, exitCode });
+            };
+            const poll = setInterval(check, 10);
+            // Check immediately in case data already arrived
+            check();
+        });
+    }
+    async exec(command, options) {
+        if (!this.shell || !this.ready) {
+            throw new Error("Transport not connected. Call connect() first.");
+        }
+        const delimiter = makeDelimiter();
+        let stderr = "";
+        // Capture stderr for this command
+        const stderrHandler = (chunk) => {
+            stderr += chunk.toString();
+        };
+        this.shell.stderr.on("data", stderrHandler);
+        // Set up abort handling
+        let aborted = false;
+        const onAbort = () => {
+            aborted = true;
+            // Send Ctrl+C to the shell to interrupt the running command
+            this.shell?.stdin?.write("\x03\n");
+        };
+        if (options?.signal) {
+            if (options.signal.aborted) {
+                this.shell?.stderr?.removeListener("data", stderrHandler);
+                return { stdout: "", stderr: "Aborted", exitCode: 130 };
+            }
+            options.signal.addEventListener("abort", onAbort, { once: true });
+        }
+        const timeoutMs = options?.timeout ?? DEFAULT_EXEC_TIMEOUT_MS;
+        // Set up streaming if onData callback provided
+        let streamingInterval;
+        let lastStreamedIdx = 0;
+        if (options?.onData) {
+            streamingInterval = setInterval(() => {
+                if (this.buffer.length > lastStreamedIdx) {
+                    const newData = this.buffer.slice(lastStreamedIdx);
+                    // Don't stream past a delimiter if one appeared
+                    const delimIdx = newData.indexOf("__AL_DELIM_");
+                    const safeData = delimIdx >= 0 ? newData.slice(0, delimIdx) : newData;
+                    if (safeData.length > 0) {
+                        options.onData(Buffer.from(safeData));
+                        lastStreamedIdx += safeData.length;
+                    }
+                }
+            }, 50);
+        }
+        try {
+            // Send the command, then send the delimiter probe.
+            // The delimiter line echoes the exit code of the command ($?).
+            this.shell.stdin.write(`${command}\necho "${delimiter} $?"\n`);
+            const { output, exitCode } = await this.waitForDelimiter(delimiter, timeoutMs);
+            return {
+                stdout: output.trimEnd(),
+                stderr: stderr.trimEnd(),
+                exitCode: aborted ? 130 : exitCode,
+            };
+        }
+        catch (err) {
+            if (aborted) {
+                return { stdout: "", stderr: "Aborted", exitCode: 130 };
+            }
+            throw err;
+        }
+        finally {
+            this.shell?.stderr?.removeListener("data", stderrHandler);
+            if (options?.signal) {
+                options.signal.removeEventListener("abort", onAbort);
+            }
+            if (streamingInterval)
+                clearInterval(streamingInterval);
+        }
+    }
+    async readFiles(paths) {
+        const result = new Map();
+        if (paths.length === 0)
+            return result;
+        if (paths.length === 1) {
+            return this.readSingleFile(paths[0]);
+        }
+        // Batch read: tar on the container → docker cp the tar → extract locally
+        const tmpDir = mkdtempSync(join(tmpdir(), "al-read-"));
+        try {
+            const tarName = `al-batch-${randomBytes(4).toString("hex")}.tar`;
+            const remoteTar = `/tmp/${tarName}`;
+            // Create tar on container (ignoring missing files, using absolute paths)
+            const pathArgs = paths.map(p => shellQuote(p)).join(" ");
+            execFileSync("docker", [
+                "exec", this.container,
+                "bash", "-c", `tar cf ${remoteTar} --ignore-failed-read -P ${pathArgs} 2>/dev/null; true`,
+            ], {
+                timeout: 30_000,
+                stdio: ["pipe", "pipe", "pipe"],
+            });
+            // Copy tar to local
+            execFileSync("docker", ["cp", `${this.container}:${remoteTar}`, join(tmpDir, "batch.tar")], {
+                timeout: 30_000,
+            });
+            // Clean up tar on container
+            execFileSync("docker", ["exec", this.container, "rm", "-f", remoteTar], {
+                timeout: 5_000,
+                stdio: ["pipe", "pipe", "pipe"],
+            });
+            // Extract locally (with -P to preserve absolute paths)
+            execFileSync("tar", ["xf", join(tmpDir, "batch.tar"), "-P", "-C", tmpDir], {
+                timeout: 30_000,
+            });
+            // Read extracted files — tar with -P preserves the full path under tmpDir
+            for (const path of paths) {
+                const localPath = join(tmpDir, path);
+                try {
+                    result.set(path, readFileSync(localPath));
+                }
+                catch {
+                    // File wasn't in the tar (didn't exist on container)
+                }
+            }
+        }
+        catch {
+            // Fallback: read files one by one
+            for (const path of paths) {
+                try {
+                    const single = await this.readSingleFile(path);
+                    const content = single.get(path);
+                    if (content)
+                        result.set(path, content);
+                }
+                catch {
+                    // Skip missing files
+                }
+            }
+        }
+        finally {
+            rmSync(tmpDir, { recursive: true, force: true });
+        }
+        return result;
+    }
+    async readSingleFile(path) {
+        const result = new Map();
+        const tmpDir = mkdtempSync(join(tmpdir(), "al-read-"));
+        try {
+            execFileSync("docker", ["cp", `${this.container}:${path}`, join(tmpDir, "file")], {
+                timeout: 30_000,
+                stdio: ["pipe", "pipe", "pipe"],
+            });
+            result.set(path, readFileSync(join(tmpDir, "file")));
+        }
+        catch {
+            // File not found — omit from result
+        }
+        finally {
+            rmSync(tmpDir, { recursive: true, force: true });
+        }
+        return result;
+    }
+    async writeFiles(files) {
+        if (files.size === 0)
+            return;
+        const tmpDir = mkdtempSync(join(tmpdir(), "al-write-"));
+        try {
+            if (files.size === 1) {
+                const [[path, content]] = [...files.entries()];
+                // Ensure parent directory exists on container
+                const dir = dirname(path);
+                if (dir !== "/" && dir !== ".") {
+                    execFileSync("docker", ["exec", this.container, "mkdir", "-p", dir], {
+                        timeout: 10_000,
+                        stdio: ["pipe", "pipe", "pipe"],
+                    });
+                }
+                const localPath = join(tmpDir, basename(path));
+                writeFileSync(localPath, content);
+                execFileSync("docker", ["cp", localPath, `${this.container}:${path}`], {
+                    timeout: 30_000,
+                });
+                return;
+            }
+            // Batch write: create a tar locally → docker cp to container → extract
+            for (const [path, content] of files) {
+                const localPath = join(tmpDir, "payload", path);
+                mkdirSync(dirname(localPath), { recursive: true });
+                writeFileSync(localPath, content);
+            }
+            // Create tar preserving absolute paths.
+            // List top-level entries explicitly (not ".") to avoid a "." entry in the
+            // tar that maps to "/" on extract and fails with permission errors when
+            // the container user is non-root.
+            const tarPath = join(tmpDir, "batch.tar");
+            const payloadDir = join(tmpDir, "payload");
+            const topEntries = readdirSync(payloadDir);
+            execFileSync("tar", ["cf", tarPath, "-P", "-C", payloadDir, ...topEntries], {
+                timeout: 30_000,
+            });
+            // Copy tar to container
+            const remoteTar = `/tmp/al-batch-${randomBytes(4).toString("hex")}.tar`;
+            execFileSync("docker", ["cp", tarPath, `${this.container}:${remoteTar}`], {
+                timeout: 30_000,
+            });
+            // Extract on container and clean up
+            execFileSync("docker", [
+                "exec", this.container,
+                "bash", "-c", `tar xf ${remoteTar} -P -C / && rm -f ${remoteTar}`,
+            ], {
+                timeout: 30_000,
+                stdio: ["pipe", "pipe", "pipe"],
+            });
+        }
+        finally {
+            rmSync(tmpDir, { recursive: true, force: true });
+        }
+    }
+    async close() {
+        this._closed = true;
+        if (this.shell) {
+            this.ready = false;
+            try {
+                this.shell.stdin?.write("exit\n");
+                this.shell.stdin?.end();
+            }
+            catch {
+                // stdin may already be closed
+            }
+            this.shell.kill();
+            this.shell = null;
+        }
+    }
+}
+/** Escape a string for use in a shell command. */
+function shellQuote(s) {
+    return `'${s.replace(/'/g, "'\\''")}'`;
+}
+//# sourceMappingURL=docker-exec.js.map

package/dist/transport/docker-exec.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"docker-exec.js","sourceRoot":"","sources":["../../src/transport/docker-exec.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,KAAK,EAAE,YAAY,EAAqB,MAAM,eAAe,CAAC;AACvE,OAAO,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AACrC,OAAO,EAAE,WAAW,EAAE,aAAa,EAAE,YAAY,EAAE,WAAW,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,IAAI,CAAC;AAC9F,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,MAAM,CAAC;AAC/C,OAAO,EAAE,MAAM,EAAE,MAAM,IAAI,CAAC;AAG5B,0EAA0E;AAC1E,MAAM,sBAAsB,GAAG,MAAM,CAAC;AACtC,8CAA8C;AAC9C,MAAM,uBAAuB,GAAG,OAAO,CAAC;AAExC,uEAAuE;AACvE,SAAS,aAAa;IACpB,OAAO,cAAc,WAAW,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC;AAC1D,CAAC;AAWD,MAAM,OAAO,mBAAmB;IAQV;IAPZ,SAAS,CAAS;IAClB,KAAK,GAAwB,IAAI,CAAC;IAClC,KAAK,GAAG,KAAK,CAAC;IACd,MAAM,GAAG,EAAE,CAAC;IACZ,IAAI,CAAU;IACd,OAAO,GAAG,KAAK,CAAC;IAExB,YAAoB,IAA6B;QAA7B,SAAI,GAAJ,IAAI,CAAyB;QAC/C,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC;QAChC,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC,IAAI,CAAC;IACxB,CAAC;IAED,wEAAwE;IACxE,KAAK,CAAC,OAAO;QACX,MAAM,IAAI,GAAG,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;QAC5B,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC;YACd,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC;QAC7B,CAAC;QACD,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,MAAM,EAAE,QAAQ,EAAE,aAAa,CAAC,CAAC;QAE3D,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC,QAAQ,EAAE,IAAI,EAAE;YACjC,KAAK,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC;SAChC,CAAC,CAAC;QAEH,6EAA6E;QAC7E,2EAA2E;QAC3E,IAAI,CAAC,KAAK,CAAC,KAAM,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE,GAAE,CAAC,CAAC,CAAC;QAExC,IAAI,CAAC,KAAK,CAAC,MAAO,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAa,EAAE,EAAE;YAC9C,IAAI,CAAC,MAAM,IAAI,KAAK,CAAC,QAAQ,EAAE,CAAC;QAClC,CAAC,CAAC,CAAC;QAEH,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,MAAM,EAAE,GAAG,EAAE;YACzB,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;QACrB,CAAC,CAAC,CAAC;QAEH,wDAAwD;QACxD,MAAM,UAAU,GAAG,aAAa,EAAE,CAAC;QACnC,IAAI,CAAC,KAAK,CAAC,KAAM,CAAC,KAAK,CAAC,SAAS,UAAU,QAAQ,CAAC,CAAC;QACrD,MAAM,IAAI,CAAC,gBAAgB,CAAC,UAAU,EAAE,sBAAsB,CAAC,CAAC;QAChE,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC;QAElB,+BAA+B;QAC/B,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC;YAClB,MAAM,IAAI,CAAC,IAAI,CAAC,MAAM,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QACrD,CAAC;IACH,CAAC;IAED;;;;OAIG;IACK,gBAAgB,CAAC,SAAiB,EAAE,SAAiB;QAC3D,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACrC,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,EAAE;gBAC5B,aAAa,CAAC,IAAI,CAAC,CAAC;gBACpB,MAAM,CAAC,IAAI,KAAK,CAAC,yCAAyC,SAAS,KAAK,CAAC,CAAC,CAAC;YAC7E,CAAC,EAAE,SAAS,CAAC,CAAC;YAEd,MAAM,KAAK,GAAG,GAAG,EAAE;gBACjB,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;oBACjB,YAAY,CAAC,KAAK,CAAC,CAAC;oBACpB,aAAa,CAAC,IAAI,CAAC,CAAC;oBACpB,MAAM,CAAC,IAAI,KAAK,CAAC,kBAAkB,CAAC,CAAC,CAAC;oBACtC,OAAO;gBACT,CAAC;gBACD,MAAM,GAAG,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;gBAC3C,IAAI,GAAG,KAAK,CAAC,CAAC;oBAAE,OAAO;gBAEvB,qCAAqC;gBACrC,MAAM,OAAO,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;gBAC/C,IAAI,OAAO,KAAK,CAAC,CAAC;oBAAE,OAAO;gBAE3B,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;gBACzC,MAAM,SAAS,GAAG,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;gBAClD,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,GAAG,CAAC,CAAC,CAAC;gBAE7C,YAAY,CAAC,KAAK,CAAC,CAAC;gBACpB,aAAa,CAAC,IAAI,CAAC,CAAC;gBAEpB,4DAA4D;gBAC5D,MAAM,KAAK,GAAG,SAAS,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC;gBAC9C,MAAM,QAAQ,GAAG,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;gBAEpD,OAAO,CAAC,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC,CAAC;YAChC,CAAC,CAAC;YAEF,MAAM,IAAI,GAAG,WAAW,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;YACpC,iDAAiD;YACjD,KAAK,EAAE,CAAC;QACV,CAAC,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,OAAe,EAAE,OAAqB;QAC/C,IAAI,CAAC,IAAI,CAAC,KAAK,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC;YAC/B,MAAM,IAAI,KAAK,CAAC,gDAAgD,CAAC,CAAC;QACpE,CAAC;QAED,MAAM,SAAS,GAAG,aAAa,EAAE,CAAC;QAClC,IAAI,MAAM,GAAG,EAAE,CAAC;QAEhB,kCAAkC;QAClC,MAAM,aAAa,GAAG,CAAC,KAAa,EAAE,EAAE;YACtC,MAAM,IAAI,KAAK,CAAC,QAAQ,EAAE,CAAC;QAC7B,CAAC,CAAC;QACF,IAAI,CAAC,KAAK,CAAC,MAAO,CAAC,EAAE,CAAC,MAAM,EAAE,aAAa,CAAC,CAAC;QAE7C,wBAAwB;QACxB,IAAI,OAAO,GAAG,KAAK,CAAC;QACpB,MAAM,OAAO,GAAG,GAAG,EAAE;YACnB,OAAO,GAAG,IAAI,CAAC;YACf,4DAA4D;YAC5D,IAAI,CAAC,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC,QAAQ,CAAC,CAAC;QACrC,CAAC,CAAC;QACF,IAAI,OAAO,EAAE,MAAM,EAAE,CAAC;YACpB,IAAI,OAAO,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;gBAC3B,IAAI,CAAC,KAAK,EAAE,MAAM,EAAE,cAAc,CAAC,MAAM,EAAE,aAAa,CAAC,CAAC;gBAC1D,OAAO,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,EAAE,SAAS,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAC;YAC1D,CAAC;YACD,OAAO,CAAC,MAAM,CAAC,gBAAgB,CAAC,OAAO,EAAE,OAAO,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC;QACpE,CAAC;QAED,MAAM,SAAS,GAAG,OAAO,EAAE,OAAO,IAAI,uBAAuB,CAAC;QAE9D,+CAA+C;QAC/C,IAAI,iBAA6D,CAAC;QAClE,IAAI,eAAe,GAAG,CAAC,CAAC;QACxB,IAAI,OAAO,EAAE,MAAM,EAAE,CAAC;YACpB,iBAAiB,GAAG,WAAW,CAAC,GAAG,EAAE;gBACnC,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,GAAG,eAAe,EAAE,CAAC;oBACzC,MAAM,OAAO,GAAG,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC;oBACnD,gDAAgD;oBAChD,MAAM,QAAQ,GAAG,OAAO,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC;oBAChD,MAAM,QAAQ,GAAG,QAAQ,IAAI,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,QAAQ,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC;oBACtE,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;wBACxB,OAAO,CAAC,MAAO,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC;wBACvC,eAAe,IAAI,QAAQ,CAAC,MAAM,CAAC;oBACrC,CAAC;gBACH,CAAC;YACH,CAAC,EAAE,EAAE,CAAC,CAAC;QACT,CAAC;QAED,IAAI,CAAC;YACH,mDAAmD;YACnD,+DAA+D;YAC/D,IAAI,CAAC,KAAK,CAAC,KAAM,CAAC,KAAK,CAAC,GAAG,OAAO,WAAW,SAAS,QAAQ,CAAC,CAAC;YAEhE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,IAAI,CAAC,gBAAgB,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC;YAE/E,OAAO;gBACL,MAAM,EAAE,MAAM,CAAC,OAAO,EAAE;gBACxB,MAAM,EAAE,MAAM,CAAC,OAAO,EAAE;gBACxB,QAAQ,EAAE,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,QAAQ;aACnC,CAAC;QACJ,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,IAAI,OAAO,EAAE,CAAC;gBACZ,OAAO,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,EAAE,SAAS,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAC;YAC1D,CAAC;YACD,MAAM,GAAG,CAAC;QACZ,CAAC;gBAAS,CAAC;YACT,IAAI,CAAC,KAAK,EAAE,MAAM,EAAE,cAAc,CAAC,MAAM,EAAE,aAAa,CAAC,CAAC;YAC1D,IAAI,OAAO,EAAE,MAAM,EAAE,CAAC;gBACpB,OAAO,CAAC,MAAM,CAAC,mBAAmB,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;YACvD,CAAC;YACD,IAAI,iBAAiB;gBAAE,aAAa,CAAC,iBAAiB,CAAC,CAAC;QAC1D,CAAC;IACH,CAAC;IAED,KAAK,CAAC,SAAS,CAAC,KAAe;QAC7B,MAAM,MAAM,GAAG,IAAI,GAAG,EAAkB,CAAC;QACzC,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,MAAM,CAAC;QAEtC,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACvB,OAAO,IAAI,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;QACvC,CAAC;QAED,yEAAyE;QACzE,MAAM,MAAM,GAAG,WAAW,CAAC,IAAI,CAAC,MAAM,EAAE,EAAE,UAAU,CAAC,CAAC,CAAC;QACvD,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,YAAY,WAAW,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,MAAM,CAAC;YACjE,MAAM,SAAS,GAAG,QAAQ,OAAO,EAAE,CAAC;YAEpC,yEAAyE;YACzE,MAAM,QAAQ,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACzD,YAAY,CAAC,QAAQ,EAAE;gBACrB,MAAM,EAAE,IAAI,CAAC,SAAS;gBACtB,MAAM,EAAE,IAAI,EAAE,UAAU,SAAS,4BAA4B,QAAQ,oBAAoB;aAC1F,EAAE;gBACD,OAAO,EAAE,MAAM;gBACf,KAAK,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC;aAChC,CAAC,CAAC;YAEH,oBAAoB;YACpB,YAAY,CAAC,QAAQ,EAAE,CAAC,IAAI,EAAE,GAAG,IAAI,CAAC,SAAS,IAAI,SAAS,EAAE,EAAE,IAAI,CAAC,MAAM,EAAE,WAAW,CAAC,CAAC,EAAE;gBAC1F,OAAO,EAAE,MAAM;aAChB,CAAC,CAAC;YAEH,4BAA4B;YAC5B,YAAY,CAAC,QAAQ,EAAE,CAAC,MAAM,EAAE,IAAI,CAAC,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,SAAS,CAAC,EAAE;gBACtE,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC;aAChC,CAAC,CAAC;YAEH,uDAAuD;YACvD,YAAY,CAAC,KAAK,EAAE,CAAC,IAAI,EAAE,IAAI,CAAC,MAAM,EAAE,WAAW,CAAC,EAAE,IAAI,EAAE,IAAI,EAAE,MAAM,CAAC,EAAE;gBACzE,OAAO,EAAE,MAAM;aAChB,CAAC,CAAC;YAEH,0EAA0E;YAC1E,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;gBACzB,MAAM,SAAS,GAAG,IAAI,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;gBACrC,IAAI,CAAC;oBACH,MAAM,CAAC,GAAG,CAAC,IAAI,EAAE,YAAY,CAAC,SAAS,CAAC,CAAC,CAAC;gBAC5C,CAAC;gBAAC,MAAM,CAAC;oBACP,qDAAqD;gBACvD,CAAC;YACH,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,kCAAkC;YAClC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;gBACzB,IAAI,CAAC;oBACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC;oBAC/C,MAAM,OAAO,GAAG,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;oBACjC,IAAI,OAAO;wBAAE,MAAM,CAAC,GAAG,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;gBACzC,CAAC;gBAAC,MAAM,CAAC;oBACP,qBAAqB;gBACvB,CAAC;YACH,CAAC;QACH,CAAC;gBAAS,CAAC;YACT,MAAM,CAAC,MAAM,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QACnD,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAEO,KAAK,CAAC,cAAc,CAAC,IAAY;QACvC,MAAM,MAAM,GAAG,IAAI,GAAG,EAAkB,CAAC;QACzC,MAAM,MAAM,GAAG,WAAW,CAAC,IAAI,CAAC,MAAM,EAAE,EAAE,UAAU,CAAC,CAAC,CAAC;QACvD,IAAI,CAAC;YACH,YAAY,CAAC,QAAQ,EAAE,CAAC,IAAI,EAAE,GAAG,IAAI,CAAC,SAAS,IAAI,IAAI,EAAE,EAAE,IAAI,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,EAAE;gBAChF,OAAO,EAAE,MAAM;gBACf,KAAK,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC;aAChC,CAAC,CAAC;YACH,MAAM,CAAC,GAAG,CAAC,IAAI,EAAE,YAAY,CAAC,IAAI,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC;QACvD,CAAC;QAAC,MAAM,CAAC;YACP,oCAAoC;QACtC,CAAC;gBAAS,CAAC;YACT,MAAM,CAAC,MAAM,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QACnD,CAAC;QACD,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,KAAK,CAAC,UAAU,CAAC,KAA0B;QACzC,IAAI,KAAK,CAAC,IAAI,KAAK,CAAC;YAAE,OAAO;QAE7B,MAAM,MAAM,GAAG,WAAW,CAAC,IAAI,CAAC,MAAM,EAAE,EAAE,WAAW,CAAC,CAAC,CAAC;QAExD,IAAI,CAAC;YACH,IAAI,KAAK,CAAC,IAAI,KAAK,CAAC,EAAE,CAAC;gBACrB,MAAM,CAAC,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;gBAE/C,8CAA8C;gBAC9C,MAAM,GAAG,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;gBAC1B,IAAI,GAAG,KAAK,GAAG,IAAI,GAAG,KAAK,GAAG,EAAE,CAAC;oBAC/B,YAAY,CAAC,QAAQ,EAAE,CAAC,MAAM,EAAE,IAAI,CAAC,SAAS,EAAE,OAAO,EAAE,IAAI,EAAE,GAAG,CAAC,EAAE;wBACnE,OAAO,EAAE,MAAM;wBACf,KAAK,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC;qBAChC,CAAC,CAAC;gBACL,CAAC;gBAED,MAAM,SAAS,GAAG,IAAI,CAAC,MAAM,EAAE,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC;gBAC/C,aAAa,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;gBAClC,YAAY,CAAC,QAAQ,EAAE,CAAC,IAAI,EAAE,SAAS,EAAE,GAAG,IAAI,CAAC,SAAS,IAAI,IAAI,EAAE,CAAC,EAAE;oBACrE,OAAO,EAAE,MAAM;iBAChB,CAAC,CAAC;gBACH,OAAO;YACT,CAAC;YAED,uEAAuE;YACvE,KAAK,MAAM,CAAC,IAAI,EAAE,OAAO,CAAC,IAAI,KAAK,EAAE,CAAC;gBACpC,MAAM,SAAS,GAAG,IAAI,CAAC,MAAM,EAAE,SAAS,EAAE,IAAI,CAAC,CAAC;gBAChD,SAAS,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;gBACnD,aAAa,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;YACpC,CAAC;YAED,wCAAwC;YACxC,0EAA0E;YAC1E,wEAAwE;YACxE,kCAAkC;YAClC,MAAM,OAAO,GAAG,IAAI,CAAC,MAAM,EAAE,WAAW,CAAC,CAAC;YAC1C,MAAM,UAAU,GAAG,IAAI,CAAC,MAAM,EAAE,SAAS,CAAC,CAAC;YAC3C,MAAM,UAAU,GAAG,WAAW,CAAC,UAAU,CAAC,CAAC;YAC3C,YAAY,CAAC,KAAK,EAAE,CAAC,IAAI,EAAE,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,UAAU,EAAE,GAAG,UAAU,CAAC,EAAE;gBAC1E,OAAO,EAAE,MAAM;aAChB,CAAC,CAAC;YAEH,wBAAwB;YACxB,MAAM,SAAS,GAAG,iBAAiB,WAAW,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,MAAM,CAAC;YACxE,YAAY,CAAC,QAAQ,EAAE,CAAC,IAAI,EAAE,OAAO,EAAE,GAAG,IAAI,CAAC,SAAS,IAAI,SAAS,EAAE,CAAC,EAAE;gBACxE,OAAO,EAAE,MAAM;aAChB,CAAC,CAAC;YAEH,oCAAoC;YACpC,YAAY,CAAC,QAAQ,EAAE;gBACrB,MAAM,EAAE,IAAI,CAAC,SAAS;gBACtB,MAAM,EAAE,IAAI,EAAE,UAAU,SAAS,qBAAqB,SAAS,EAAE;aAClE,EAAE;gBACD,OAAO,EAAE,MAAM;gBACf,KAAK,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC;aAChC,CAAC,CAAC;QACL,CAAC;gBAAS,CAAC;YACT,MAAM,CAAC,MAAM,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QACnD,CAAC;IACH,CAAC;IAED,KAAK,CAAC,KAAK;QACT,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC;QACpB,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;YACnB,IAAI,CAAC;gBACH,IAAI,CAAC,KAAK,CAAC,KAAK,EAAE,KAAK,CAAC,QAAQ,CAAC,CAAC;gBAClC,IAAI,CAAC,KAAK,CAAC,KAAK,EAAE,GAAG,EAAE,CAAC;YAC1B,CAAC;YAAC,MAAM,CAAC;gBACP,8BAA8B;YAChC,CAAC;YACD,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC;YAClB,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC;QACpB,CAAC;IACH,CAAC;CACF;AAED,kDAAkD;AAClD,SAAS,UAAU,CAAC,CAAS;IAC3B,OAAO,IAAI,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,OAAO,CAAC,GAAG,CAAC;AACzC,CAAC"}

package/dist/transport/host-user.d.ts

@@ -0,0 +1,37 @@
+/**
+ * HostUserTransport — executes commands as a different OS user via `sudo -u`,
+ * maintaining a persistent shell session.
+ *
+ * File I/O uses direct filesystem access since we're on the same machine —
+ * files are read/written as root (the scheduler process) then chowned to
+ * the target user.
+ */
+import type { Transport, ExecResult, ExecOptions } from "./transport.js";
+export interface HostUserTransportOpts {
+    /** OS user to run commands as. */
+    user: string;
+    /** Additional OS groups. */
+    groups?: string[];
+    /** Initial working directory. Default: user's home dir. */
+    cwd?: string;
+}
+export declare class HostUserTransport implements Transport {
+    private opts;
+    private shell;
+    private ready;
+    private buffer;
+    private uid?;
+    private gid?;
+    constructor(opts: HostUserTransportOpts);
+    /** Start the persistent shell as the target user. Must be called before exec(). */
+    connect(): Promise<void>;
+    /**
+     * Wait for a delimiter to appear in the stdout buffer.
+     */
+    private waitForDelimiter;
+    exec(command: string, options?: ExecOptions): Promise<ExecResult>;
+    readFiles(paths: string[]): Promise<Map<string, Buffer>>;
+    writeFiles(files: Map<string, Buffer>): Promise<void>;
+    close(): Promise<void>;
+}
+//# sourceMappingURL=host-user.d.ts.map

package/dist/transport/host-user.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"host-user.d.ts","sourceRoot":"","sources":["../../src/transport/host-user.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AASH,OAAO,KAAK,EAAE,SAAS,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,gBAAgB,CAAC;AAYzE,MAAM,WAAW,qBAAqB;IACpC,kCAAkC;IAClC,IAAI,EAAE,MAAM,CAAC;IACb,4BAA4B;IAC5B,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;IAClB,2DAA2D;IAC3D,GAAG,CAAC,EAAE,MAAM,CAAC;CACd;AAED,qBAAa,iBAAkB,YAAW,SAAS;IAOrC,OAAO,CAAC,IAAI;IANxB,OAAO,CAAC,KAAK,CAA6B;IAC1C,OAAO,CAAC,KAAK,CAAS;IACtB,OAAO,CAAC,MAAM,CAAM;IACpB,OAAO,CAAC,GAAG,CAAC,CAAS;IACrB,OAAO,CAAC,GAAG,CAAC,CAAS;gBAED,IAAI,EAAE,qBAAqB;IAE/C,mFAAmF;IAC7E,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;IAwC9B;;OAEG;IACH,OAAO,CAAC,gBAAgB;IAgClB,IAAI,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,WAAW,GAAG,OAAO,CAAC,UAAU,CAAC;IAqEjE,SAAS,CAAC,KAAK,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAgBxD,UAAU,CAAC,KAAK,EAAE,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,GAAG,OAAO,CAAC,IAAI,CAAC;IAsBrD,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;CAa7B"}

package/dist/transport/host-user.js

@@ -0,0 +1,232 @@
+/**
+ * HostUserTransport — executes commands as a different OS user via `sudo -u`,
+ * maintaining a persistent shell session.
+ *
+ * File I/O uses direct filesystem access since we're on the same machine —
+ * files are read/written as root (the scheduler process) then chowned to
+ * the target user.
+ */
+import { spawn } from "child_process";
+import { randomBytes } from "crypto";
+import { readFileSync, writeFileSync, mkdirSync, chownSync, statSync, } from "fs";
+import { dirname } from "path";
+/** How long to wait for the shell to become ready after spawning (ms). */
+const SHELL_READY_TIMEOUT_MS = 10_000;
+/** Default command execution timeout (ms). */
+const DEFAULT_EXEC_TIMEOUT_MS = 300_000;
+/** Generate a unique delimiter that won't appear in command output. */
+function makeDelimiter() {
+    return `__AL_DELIM_${randomBytes(8).toString("hex")}__`;
+}
+export class HostUserTransport {
+    opts;
+    shell = null;
+    ready = false;
+    buffer = "";
+    uid;
+    gid;
+    constructor(opts) {
+        this.opts = opts;
+    }
+    /** Start the persistent shell as the target user. Must be called before exec(). */
+    async connect() {
+        const args = ["-u", this.opts.user, "--", "bash", "--norc", "--noprofile"];
+        // If groups are specified, use sg or newgrp — but sudo -u is simpler
+        // Groups are set via the user's OS group membership, not per-command
+        this.shell = spawn("sudo", args, {
+            stdio: ["pipe", "pipe", "pipe"],
+        });
+        this.shell.stdout.on("data", (chunk) => {
+            this.buffer += chunk.toString();
+        });
+        this.shell.on("exit", () => {
+            this.ready = false;
+        });
+        // Wait for shell to be ready
+        const readyDelim = makeDelimiter();
+        this.shell.stdin.write(`echo "${readyDelim} $?"\n`);
+        await this.waitForDelimiter(readyDelim, SHELL_READY_TIMEOUT_MS);
+        this.ready = true;
+        // Resolve the user's uid/gid for file ownership
+        try {
+            const { stdout } = await this.exec("id -u");
+            this.uid = parseInt(stdout.trim(), 10);
+            const { stdout: gidStr } = await this.exec("id -g");
+            this.gid = parseInt(gidStr.trim(), 10);
+        }
+        catch {
+            // Non-critical — files won't be chowned if we can't resolve uid/gid
+        }
+        // Set initial cwd if specified
+        if (this.opts.cwd) {
+            await this.exec(`cd ${shellQuote(this.opts.cwd)}`);
+        }
+    }
+    /**
+     * Wait for a delimiter to appear in the stdout buffer.
+     */
+    waitForDelimiter(delimiter, timeoutMs) {
+        return new Promise((resolve, reject) => {
+            const timer = setTimeout(() => {
+                clearInterval(poll);
+                reject(new Error(`Timed out waiting for shell response (${timeoutMs}ms)`));
+            }, timeoutMs);
+            const check = () => {
+                const idx = this.buffer.indexOf(delimiter);
+                if (idx === -1)
+                    return;
+                const lineEnd = this.buffer.indexOf("\n", idx);
+                if (lineEnd === -1)
+                    return;
+                const output = this.buffer.slice(0, idx);
+                const delimLine = this.buffer.slice(idx, lineEnd);
+                this.buffer = this.buffer.slice(lineEnd + 1);
+                clearTimeout(timer);
+                clearInterval(poll);
+                const match = delimLine.match(/\s+(\d+)\s*$/);
+                const exitCode = match ? parseInt(match[1], 10) : 0;
+                resolve({ output, exitCode });
+            };
+            const poll = setInterval(check, 10);
+            check();
+        });
+    }
+    async exec(command, options) {
+        if (!this.shell || !this.ready) {
+            throw new Error("Transport not connected. Call connect() first.");
+        }
+        const delimiter = makeDelimiter();
+        let stderr = "";
+        const stderrHandler = (chunk) => {
+            stderr += chunk.toString();
+        };
+        this.shell.stderr.on("data", stderrHandler);
+        // Abort handling
+        let aborted = false;
+        const onAbort = () => {
+            aborted = true;
+            this.shell?.stdin?.write("\x03\n");
+        };
+        if (options?.signal) {
+            if (options.signal.aborted) {
+                this.shell.stderr.removeListener("data", stderrHandler);
+                return { stdout: "", stderr: "Aborted", exitCode: 130 };
+            }
+            options.signal.addEventListener("abort", onAbort, { once: true });
+        }
+        const timeoutMs = options?.timeout ?? DEFAULT_EXEC_TIMEOUT_MS;
+        // Streaming
+        let streamingInterval;
+        let lastStreamedIdx = 0;
+        if (options?.onData) {
+            streamingInterval = setInterval(() => {
+                if (this.buffer.length > lastStreamedIdx) {
+                    const newData = this.buffer.slice(lastStreamedIdx);
+                    const delimIdx = newData.indexOf("__AL_DELIM_");
+                    const safeData = delimIdx >= 0 ? newData.slice(0, delimIdx) : newData;
+                    if (safeData.length > 0) {
+                        options.onData(Buffer.from(safeData));
+                        lastStreamedIdx += safeData.length;
+                    }
+                }
+            }, 50);
+        }
+        try {
+            this.shell.stdin.write(`${command}\necho "${delimiter} $?"\n`);
+            const { output, exitCode } = await this.waitForDelimiter(delimiter, timeoutMs);
+            return {
+                stdout: output.trimEnd(),
+                stderr: stderr.trimEnd(),
+                exitCode: aborted ? 130 : exitCode,
+            };
+        }
+        catch (err) {
+            if (aborted) {
+                return { stdout: "", stderr: "Aborted", exitCode: 130 };
+            }
+            throw err;
+        }
+        finally {
+            this.shell.stderr.removeListener("data", stderrHandler);
+            if (options?.signal) {
+                options.signal.removeEventListener("abort", onAbort);
+            }
+            if (streamingInterval)
+                clearInterval(streamingInterval);
+        }
+    }
+    async readFiles(paths) {
+        const result = new Map();
+        if (paths.length === 0)
+            return result;
+        // Direct filesystem read — the scheduler process can read any file
+        for (const path of paths) {
+            try {
+                result.set(path, readFileSync(path));
+            }
+            catch {
+                // Skip missing files
+            }
+        }
+        return result;
+    }
+    async writeFiles(files) {
+        if (files.size === 0)
+            return;
+        for (const [path, content] of files) {
+            const dir = dirname(path);
+            if (dir !== "/" && dir !== ".") {
+                mkdirSync(dir, { recursive: true });
+                // Chown directory to target user
+                if (this.uid != null && this.gid != null) {
+                    try {
+                        chownRecursiveNew(dir, this.uid, this.gid);
+                    }
+                    catch { /* best effort */ }
+                }
+            }
+            writeFileSync(path, content);
+            // Chown file to target user so they can read/write it
+            if (this.uid != null && this.gid != null) {
+                try {
+                    chownSync(path, this.uid, this.gid);
+                }
+                catch { /* best effort */ }
+            }
+        }
+    }
+    async close() {
+        if (this.shell) {
+            this.ready = false;
+            try {
+                this.shell.stdin?.write("exit\n");
+                this.shell.stdin?.end();
+            }
+            catch {
+                // stdin may already be closed
+            }
+            this.shell.kill();
+            this.shell = null;
+        }
+    }
+}
+/** Escape a string for use in a shell command. */
+function shellQuote(s) {
+    return `'${s.replace(/'/g, "'\\''")}'`;
+}
+/**
+ * Recursively chown newly created directories up to an existing parent.
+ * Only chowns directories that were created by mkdirSync (newly created).
+ */
+function chownRecursiveNew(dir, uid, gid) {
+    try {
+        const stat = statSync(dir);
+        if (stat.uid !== uid) {
+            chownSync(dir, uid, gid);
+        }
+    }
+    catch {
+        // Directory doesn't exist or inaccessible
+    }
+}
+//# sourceMappingURL=host-user.js.map