npm - @agenshield/daemon - Versions diffs - 0.6.2 → 0.7.1 - Mend

@agenshield/daemon 0.6.2 → 0.7.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (50) hide show

package/auth/middleware.d.ts.map +1 -1
package/command-sync.d.ts.map +1 -1
package/config/paths.d.ts +12 -0
package/config/paths.d.ts.map +1 -1
package/events/emitter.d.ts +22 -1
package/events/emitter.d.ts.map +1 -1
package/index.d.ts +1 -1
package/index.d.ts.map +1 -1
package/index.js +8873 -6107
package/main.js +8745 -5982
package/package.json +5 -4
package/policy/url-matcher.d.ts +63 -0
package/policy/url-matcher.d.ts.map +1 -0
package/proxy/pool.d.ts +42 -0
package/proxy/pool.d.ts.map +1 -0
package/proxy/server.d.ts +19 -0
package/proxy/server.d.ts.map +1 -0
package/routes/config.d.ts.map +1 -1
package/routes/exec.d.ts.map +1 -1
package/routes/index.d.ts.map +1 -1
package/routes/marketplace.d.ts +2 -0
package/routes/marketplace.d.ts.map +1 -1
package/routes/openclaw.d.ts +8 -0
package/routes/openclaw.d.ts.map +1 -0
package/routes/rpc.d.ts.map +1 -1
package/routes/secrets.d.ts.map +1 -1
package/routes/skills.d.ts.map +1 -1
package/routes/sse.d.ts.map +1 -1
package/routes/status.d.ts +3 -0
package/routes/status.d.ts.map +1 -1
package/secret-sync.d.ts +33 -0
package/secret-sync.d.ts.map +1 -0
package/server.d.ts.map +1 -1
package/services/marketplace.d.ts +16 -2
package/services/marketplace.d.ts.map +1 -1
package/services/openclaw-config.d.ts +34 -1
package/services/openclaw-config.d.ts.map +1 -1
package/services/policy-markdown.d.ts +18 -0
package/services/policy-markdown.d.ts.map +1 -0
package/services/skill-analyzer.d.ts +4 -0
package/services/skill-analyzer.d.ts.map +1 -1
package/services/skill-deps.d.ts +29 -0
package/services/skill-deps.d.ts.map +1 -0
package/services/skill-lifecycle.d.ts +8 -0
package/services/skill-lifecycle.d.ts.map +1 -1
package/ui-assets/assets/index-DJILlJ1g.js +964 -0
package/ui-assets/index.html +1 -1
package/watchers/skills.d.ts +26 -12
package/watchers/skills.d.ts.map +1 -1
package/ui-assets/assets/index-DRQK9Oxg.js +0 -942

package/ui-assets/index.html CHANGED Viewed

@@ -5,7 +5,7 @@
     <link rel="icon" type="image/svg+xml" href="/favicon.svg" />
     <meta name="viewport" content="width=device-width, initial-scale=1.0" />
     <title>AgenShield Dashboard</title>
-    <script type="module" crossorigin src="/assets/index-DRQK9Oxg.js"></script>
+    <script type="module" crossorigin src="/assets/index-DJILlJ1g.js"></script>
     <link rel="stylesheet" crossorigin href="/assets/index-CC_zbvUx.css">
   </head>
   <body>

package/watchers/skills.d.ts CHANGED Viewed

@@ -2,8 +2,8 @@
  * Skills Watcher
  *
  * Monitors the agent's skills directory for unapproved skills.
- * Unapproved skills are moved to a quarantine directory.
- * Follows the pattern of the existing security watcher.
+ * Unapproved skills are moved to the local marketplace cache for analysis.
+ * Also detects mismatches between openclaw.json entries and the approved list.
  */
 export interface ApprovedSkillEntry {
     name: string;
@@ -11,21 +11,34 @@ export interface ApprovedSkillEntry {
     hash?: string;
     publisher?: string;
 }
-export interface QuarantinedSkillInfo {
+export interface UntrustedSkillInfo {
     name: string;
-    quarantinedAt: string;
+    detectedAt: string;
     originalPath: string;
     reason: string;
 }
 interface SkillsWatcherCallbacks {
-    onQuarantined?: (info: QuarantinedSkillInfo) => void;
+    onUntrustedDetected?: (info: {
+        name: string;
+        reason: string;
+    }) => void;
     onApproved?: (name: string) => void;
 }
+/**
+ * Compute a SHA-256 hash of all files in a skill directory.
+ * Files are sorted by relative path so the hash is deterministic.
+ * Returns null if the directory doesn't exist or has no files.
+ */
+export declare function computeSkillHash(skillDir: string): string | null;
+/**
+ * Update the hash for an approved skill in approved-skills.json.
+ */
+export declare function updateApprovedHash(skillName: string, hash: string): void;
 /**
  * Start the skills watcher
  *
  * @param watchDir - The skills directory to watch (e.g., $HOME/.openclaw/skills)
- * @param cbs - Callbacks for quarantine/approve events
+ * @param cbs - Callbacks for untrusted/approve events
  * @param pollIntervalMs - Polling fallback interval (default: 30 seconds)
  */
 export declare function startSkillsWatcher(watchDir: string, cbs?: SkillsWatcherCallbacks, pollIntervalMs?: number): void;
@@ -34,30 +47,31 @@ export declare function startSkillsWatcher(watchDir: string, cbs?: SkillsWatcher
  */
 export declare function stopSkillsWatcher(): void;
 /**
- * Approve a skill (move from quarantine back to skills directory)
+ * Approve a skill — add to approved list.
+ * The actual file installation from marketplace cache is handled by the toggle/install routes.
  */
 export declare function approveSkill(skillName: string): {
     success: boolean;
     error?: string;
 };
 /**
- * Reject a quarantined skill (permanently delete)
+ * Reject an untrusted skill (permanently delete from marketplace cache)
  */
 export declare function rejectSkill(skillName: string): {
     success: boolean;
     error?: string;
 };
 /**
- * Revoke an approved skill (remove from approved list and quarantine)
+ * Revoke an approved skill (remove from approved list and move to marketplace cache)
  */
 export declare function revokeSkill(skillName: string): {
     success: boolean;
     error?: string;
 };
 /**
- * List quarantined skills
+ * List untrusted skills: skills in the marketplace cache that are NOT approved.
  */
-export declare function listQuarantined(): QuarantinedSkillInfo[];
+export declare function listUntrusted(): UntrustedSkillInfo[];
 /**
  * List approved skills
  */
@@ -75,7 +89,7 @@ export declare function getSkillsDir(): string;
  * Used by marketplace install to pre-approve before writing files,
  * preventing a race condition with the watcher quarantining new skills.
  */
-export declare function addToApprovedList(skillName: string, publisher?: string): void;
+export declare function addToApprovedList(skillName: string, publisher?: string, hash?: string): void;
 /**
  * Remove a skill from the approved list (without quarantining).
  * Used for cleanup when marketplace install fails after pre-approval.

package/watchers/skills.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"skills.d.ts","sourceRoot":"","sources":["../../src/watchers/skills.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;~~AAeH~~,MAAM,WAAW,kBAAkB;IACjC,IAAI,EAAE,MAAM,CAAC;IACb,UAAU,EAAE,MAAM,CAAC;IACnB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,~~oBAAoB~~;~~IACnC~~,IAAI,EAAE,MAAM,CAAC;IACb,~~aAAa~~,EAAE,MAAM,CAAC;~~IACtB~~,YAAY,EAAE,MAAM,CAAC;IACrB,MAAM,EAAE,MAAM,CAAC;CAChB;AAED,UAAU,sBAAsB;IAC9B,~~aAAa~~,CAAC,EAAE,CAAC,IAAI,EAAE,~~oBAAoB~~,KAAK,IAAI,CAAC;~~IACrD~~,UAAU,CAAC,EAAE,CAAC,IAAI,EAAE,MAAM,KAAK,IAAI,CAAC;CACrC;~~AAkID~~;;;;;;GAMG;AACH,wBAAgB,kBAAkB,CAChC,QAAQ,EAAE,MAAM,EAChB,GAAG,GAAE,sBAA2B,EAChC,cAAc,SAAQ,GACrB,IAAI,CAiCN;AAED;;GAEG;AACH,wBAAgB,iBAAiB,IAAI,IAAI,CAiBxC;AAED~~;;GAEG~~;AACH,wBAAgB,YAAY,CAAC,SAAS,EAAE,MAAM,GAAG;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAA;CAAE,~~CAmCpF~~;AAED;;GAEG;AACH,wBAAgB,WAAW,CAAC,SAAS,EAAE,MAAM,GAAG;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAA;CAAE,~~CAenF~~;AAED;;GAEG;AACH,wBAAgB,WAAW,CAAC,SAAS,EAAE,MAAM,GAAG;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAA;CAAE,CAkBnF;AAED;;GAEG;AACH,wBAAgB,~~eAAe~~,IAAI,~~oBAAoB~~,EAAE,~~CAyBxD~~;AAED;;GAEG;AACH,wBAAgB,YAAY,IAAI,kBAAkB,EAAE,CAEnD;AAED;;GAEG;AACH,wBAAgB,iBAAiB,IAAI,IAAI,CAExC;AAED;;GAEG;AACH,wBAAgB,YAAY,IAAI,MAAM,CAErC;AAED;;;;GAIG;AACH,wBAAgB,iBAAiB,CAAC,SAAS,EAAE,MAAM,EAAE,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,~~CAU7E~~;AAED;;;GAGG;AACH,wBAAgB,sBAAsB,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI,CAM9D"}
1	+ {"version":3,"file":"skills.d.ts","sourceRoot":"","sources":["../../src/watchers/skills.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AA4BH,MAAM,WAAW,kBAAkB;IACjC,IAAI,EAAE,MAAM,CAAC;IACb,UAAU,EAAE,MAAM,CAAC;IACnB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,kBAAkB;IACjC,IAAI,EAAE,MAAM,CAAC;IACb,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,MAAM,CAAC;IACrB,MAAM,EAAE,MAAM,CAAC;CAChB;AAED,UAAU,sBAAsB;IAC9B,mBAAmB,CAAC,EAAE,CAAC,IAAI,EAAE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,MAAM,CAAA;KAAE,KAAK,IAAI,CAAC;IACvE,UAAU,CAAC,EAAE,CAAC,IAAI,EAAE,MAAM,KAAK,IAAI,CAAC;CACrC;AAyND;;;;GAIG;AACH,wBAAgB,gBAAgB,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI,CAahE;AAED;;GAEG;AACH,wBAAgB,kBAAkB,CAAC,SAAS,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,IAAI,CAOxE;AA4GD;;;;;;GAMG;AACH,wBAAgB,kBAAkB,CAChC,QAAQ,EAAE,MAAM,EAChB,GAAG,GAAE,sBAA2B,EAChC,cAAc,SAAQ,GACrB,IAAI,CAiCN;AAED;;GAEG;AACH,wBAAgB,iBAAiB,IAAI,IAAI,CAiBxC;AAED;;;GAGG;AACH,wBAAgB,YAAY,CAAC,SAAS,EAAE,MAAM,GAAG;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAA;CAAE,CA2CpF;AAED;;GAEG;AACH,wBAAgB,WAAW,CAAC,SAAS,EAAE,MAAM,GAAG;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAA;CAAE,CAUnF;AAED;;GAEG;AACH,wBAAgB,WAAW,CAAC,SAAS,EAAE,MAAM,GAAG;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAA;CAAE,CAkBnF;AAED;;GAEG;AACH,wBAAgB,aAAa,IAAI,kBAAkB,EAAE,CAepD;AAED;;GAEG;AACH,wBAAgB,YAAY,IAAI,kBAAkB,EAAE,CAEnD;AAED;;GAEG;AACH,wBAAgB,iBAAiB,IAAI,IAAI,CAExC;AAED;;GAEG;AACH,wBAAgB,YAAY,IAAI,MAAM,CAErC;AAED;;;;GAIG;AACH,wBAAgB,iBAAiB,CAAC,SAAS,EAAE,MAAM,EAAE,SAAS,CAAC,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,GAAG,IAAI,CAW5F;AAED;;;GAGG;AACH,wBAAgB,sBAAsB,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI,CAM9D"}