npm - @agent-team-foundation/first-tree-hub - Versions diffs - 0.10.9 → 0.10.11 - Mend

@agent-team-foundation/first-tree-hub 0.10.9 → 0.10.11

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (11) hide show

package/dist/{saas-connect-CKQ15VLz.mjs → saas-connect-D-7x9KRd.mjs} RENAMED Viewed

@@ -1,11 +1,11 @@
 import { m as __toESM } from "./esm-CYu4tXXn.mjs";
 import { _ as withSpan, a as endWsConnectionSpan, b as require_pino, c as messageAttrs, d as rootLogger$1, g as startWsConnectionSpan, i as currentTraceId, n as applyLoggerConfig, o as getFastifyOtelPlugin, p as setWsConnectionAttrs, r as createLogger$1, t as adapterAttrs, u as observabilityPlugin, v as withWsMessageSpan, y as FIRST_TREE_HUB_ATTR } from "./observability-DPyf745N-BSc8QNcR.mjs";
-import { C as serverConfigSchema, S as resolveConfigReadonly, _ as loadAgents, b as resetConfig, c as saveCredentials, d as DEFAULT_HOME_DIR$1, f as agentConfigSchema, g as initConfig, i as loadCredentials, l as DEFAULT_CONFIG_DIR, m as collectMissingPrompts, n as ensureFreshAccessToken, o as resolveServerUrl, p as clientConfigSchema, s as saveAgentConfig, u as DEFAULT_DATA_DIR$1, v as migrateLegacyHome, w as setConfigValue, x as resetConfigMeta } from "./bootstrap-jx5nN1qZ.mjs";
-import { $ as refreshTokenSchema, A as createOrgFromMeSchema, B as imageInlineContentSchema, C as clientRegisterSchema, D as createAgentSchema, E as createAdapterMappingSchema, F as dryRunAgentRuntimeConfigSchema, G as isReservedAgentName$1, H as inboxDeliverFrameSchema$1, I as extractMentions, J as loginSchema, K as joinByInvitationSchema, L as githubCallbackQuerySchema, M as createTaskSchema, N as defaultRuntimeConfigPayload, O as createChatSchema, P as delegateFeishuUserSchema, Q as rebindAgentSchema, R as githubDevCallbackQuerySchema, S as clientCapabilitiesSchema$1, St as wsAuthFrameSchema, T as createAdapterConfigSchema, U as inboxPollQuerySchema, V as inboxAckFrameSchema, W as isRedactedEnvValue, X as notificationQuerySchema, Y as messageSourceSchema$1, Z as paginationQuerySchema, _ as adminUpdateTaskSchema, _t as updateClientCapabilitiesSchema, a as AGENT_STATUSES, at as sendToAgentSchema, b as agentRuntimeConfigPayloadSchema$1, bt as updateSystemConfigSchema, ct as sessionEventSchema$1, d as TASK_HEALTH_SIGNALS, dt as switchOrgSchema, et as runtimeStateMessageSchema, f as TASK_STATUSES, ft as taskListQuerySchema, g as adminCreateTaskSchema, gt as updateChatSchema, h as addParticipantSchema, ht as updateAgentSchema, i as AGENT_SOURCES, it as sendMessageSchema, j as createOrganizationSchema, k as createMemberSchema, l as SYSTEM_CONFIG_DEFAULTS, lt as sessionReconcileRequestSchema, m as WS_AUTH_FRAME_TIMEOUT_MS, mt as updateAgentRuntimeConfigSchema, n as AGENT_NAME_REGEX$1, nt as scanMentionTokens, o as AGENT_TYPES, ot as sessionCompletionMessageSchema, p as TASK_TERMINAL_STATUSES, pt as updateAdapterConfigSchema, q as linkTaskChatSchema, r as AGENT_SELECTOR_HEADER$1, rt as selfServiceFeishuBotSchema, s as AGENT_VISIBILITY, st as sessionEventMessageSchema, t as AGENT_BIND_REJECT_REASONS, tt as safeRedirectPath, u as TASK_CREATOR_TYPES, ut as sessionStateMessageSchema, v as agentBindRequestSchema, vt as updateMemberSchema, w as connectTokenExchangeSchema, x as agentTypeSchema$1, xt as updateTaskStatusSchema, y as agentPinnedMessageSchema$1, yt as updateOrganizationSchema, z as githubStartQuerySchema } from "./dist-DSr_I5Ia.mjs";
+import { C as serverConfigSchema, S as resolveConfigReadonly, _ as loadAgents, b as resetConfig, c as saveCredentials, d as DEFAULT_HOME_DIR$1, f as agentConfigSchema, g as initConfig, i as loadCredentials, l as DEFAULT_CONFIG_DIR, m as collectMissingPrompts, n as ensureFreshAccessToken, o as resolveServerUrl, p as clientConfigSchema, s as saveAgentConfig, u as DEFAULT_DATA_DIR$1, v as migrateLegacyHome, w as setConfigValue, x as resetConfigMeta } from "./bootstrap-BTKiVIYk.mjs";
+import { $ as refreshTokenSchema, A as createOrgFromMeSchema, B as imageInlineContentSchema, C as clientRegisterSchema, D as createAgentSchema, E as createAdapterMappingSchema, F as dryRunAgentRuntimeConfigSchema, G as isReservedAgentName$1, H as inboxDeliverFrameSchema$1, I as extractMentions, J as loginSchema, K as joinByInvitationSchema, L as githubCallbackQuerySchema, M as createTaskSchema, N as defaultRuntimeConfigPayload, O as createChatSchema, P as delegateFeishuUserSchema, Q as rebindAgentSchema, R as githubDevCallbackQuerySchema, S as clientCapabilitiesSchema$1, St as wsAuthFrameSchema, T as createAdapterConfigSchema, U as inboxPollQuerySchema, V as inboxAckFrameSchema, W as isRedactedEnvValue, X as notificationQuerySchema, Y as messageSourceSchema$1, Z as paginationQuerySchema, _ as adminUpdateTaskSchema, _t as updateClientCapabilitiesSchema, a as AGENT_STATUSES, at as sendToAgentSchema, b as agentRuntimeConfigPayloadSchema$1, bt as updateSystemConfigSchema, ct as sessionEventSchema$1, d as TASK_HEALTH_SIGNALS, dt as switchOrgSchema, et as runtimeStateMessageSchema, f as TASK_STATUSES, ft as taskListQuerySchema, g as adminCreateTaskSchema, gt as updateChatSchema, h as addParticipantSchema, ht as updateAgentSchema, i as AGENT_SOURCES, it as sendMessageSchema, j as createOrganizationSchema, k as createMemberSchema, l as SYSTEM_CONFIG_DEFAULTS, lt as sessionReconcileRequestSchema, m as WS_AUTH_FRAME_TIMEOUT_MS, mt as updateAgentRuntimeConfigSchema, n as AGENT_NAME_REGEX$1, nt as scanMentionTokens, o as AGENT_TYPES, ot as sessionCompletionMessageSchema, p as TASK_TERMINAL_STATUSES, pt as updateAdapterConfigSchema, q as linkTaskChatSchema, r as AGENT_SELECTOR_HEADER$1, rt as selfServiceFeishuBotSchema, s as AGENT_VISIBILITY, st as sessionEventMessageSchema, t as AGENT_BIND_REJECT_REASONS, tt as safeRedirectPath, u as TASK_CREATOR_TYPES, ut as sessionStateMessageSchema, v as agentBindRequestSchema, vt as updateMemberSchema, w as connectTokenExchangeSchema, x as agentTypeSchema$1, xt as updateTaskStatusSchema, y as agentPinnedMessageSchema$1, yt as updateOrganizationSchema, z as githubStartQuerySchema } from "./dist-DwbhZyGi.mjs";
 import { _ as recordRedemption, a as ConflictError, b as uuidv7, c as UnauthorizedError, d as findActiveByToken, f as getActiveInvitation, h as organizations, i as ClientUserMismatchError$1, l as buildInviteUrl, m as invitations, n as BadRequestError, o as ForbiddenError, p as invitationRedemptions, r as ClientOrgMismatchError$1, s as NotFoundError, t as AppError, u as ensureActiveInvitation, y as users } from "./invitation-B1pjAyOz-BaCA9PII.mjs";
 import { createRequire } from "node:module";
 import { ZodError, z } from "zod";
-import { delimiter, dirname, isAbsolute, join, resolve } from "node:path";
+import { basename, delimiter, dirname, isAbsolute, join, resolve } from "node:path";
 import { Writable } from "node:stream";
 import { homedir, hostname, platform, tmpdir, userInfo } from "node:os";
 import { EventEmitter } from "node:events";
@@ -460,7 +460,7 @@ z.object({
 	type: agentTypeSchema,
 	displayName: z.string().min(1).max(200).optional(),
 	delegateMention: z.string().max(100).optional(),
-	organizationId: z.string().max(100).optional(),
+	organizationId: z.string().min(1).max(100).optional(),
 	source: agentSourceSchema.optional(),
 	visibility: agentVisibilitySchema.optional(),
 	metadata: z.record(z.string(), z.unknown()).optional(),
@@ -1539,11 +1539,14 @@ defineConfig({
 		})
 	}) }),
 	cors: optional({ origin: field(z.string(), { env: "FIRST_TREE_HUB_CORS_ORIGIN" }) }),
+	trustProxy: field(z.boolean().default(false), { env: "FIRST_TREE_HUB_TRUST_PROXY" }),
 	rateLimit: optional({
 		max: field(z.number().default(100), { env: "FIRST_TREE_HUB_RATE_LIMIT_MAX" }),
 		loginMax: field(z.number().default(5), { env: "FIRST_TREE_HUB_RATE_LIMIT_LOGIN_MAX" }),
-		webhookMax: field(z.number().default(60), { env: "FIRST_TREE_HUB_RATE_LIMIT_WEBHOOK_MAX" })
+		webhookMax: field(z.number().default(60), { env: "FIRST_TREE_HUB_RATE_LIMIT_WEBHOOK_MAX" }),
+		agentMessageMax: field(z.number().default(30), { env: "FIRST_TREE_HUB_RATE_LIMIT_AGENT_MESSAGE_MAX" })
 	}),
+	ws: optional({ maxPayload: field(z.number().int().min(1024).default(262144), { env: "FIRST_TREE_HUB_WS_MAX_PAYLOAD" }) }),
 	inbox: optional({ maxInFlightPerAgent: field(z.number().int().min(1).max(1024).default(32), { env: "FIRST_TREE_HUB_INBOX_MAX_IN_FLIGHT_PER_AGENT" }) }),
 	kael: optional({
 		endpoint: field(z.string(), { env: "KAEL_ENDPOINT" }),
@@ -6637,6 +6640,37 @@ function runCapture(program, args, timeoutMs) {
 		]
 	});
 	if (res.status === 0) return { ok: true };
+	if (res.signal) return {
+		ok: false,
+		stderr: `${program} timed out after ${timeoutMs}ms (signal=${res.signal})`,
+		code: null
+	};
+	return {
+		ok: false,
+		stderr: (res.stderr ?? "").trim(),
+		code: res.status
+	};
+}
+/** Same as runCapture but also returns stdout — for queries (loginctl show-user, etc.). */
+function runCaptureOut(program, args, timeoutMs) {
+	const res = spawnSync(program, args, {
+		encoding: "utf-8",
+		timeout: timeoutMs,
+		stdio: [
+			"ignore",
+			"pipe",
+			"pipe"
+		]
+	});
+	if (res.status === 0) return {
+		ok: true,
+		stdout: (res.stdout ?? "").trim()
+	};
+	if (res.signal) return {
+		ok: false,
+		stderr: `${program} timed out after ${timeoutMs}ms (signal=${res.signal})`,
+		code: null
+	};
 	return {
 		ok: false,
 		stderr: (res.stderr ?? "").trim(),
@@ -6647,8 +6681,40 @@ function sleepSync(ms) {
 	const shared = new Int32Array(new SharedArrayBuffer(4));
 	Atomics.wait(shared, 0, 0, ms);
 }
-const LAUNCHD_LABEL = "dev.first-tree-hub.client";
-const SYSTEMD_UNIT = "first-tree-hub-client.service";
+/**
+* Map a `FIRST_TREE_HUB_HOME` basename to the suffix appended to the
+* service manager's unit name / label.
+*
+* Why this exists: `FIRST_TREE_HUB_HOME` already isolates config /
+* credentials / workspace under a separate home dir, but until now the
+* systemd unit name and launchd label were hard-coded — so a developer
+* running with an isolated home would still rewrite the same
+* `first-tree-hub-client.service` unit file as the prod install. This
+* derivation closes that loop: dev homes get their own unit name and
+* coexist with prod.
+*
+* Rule:
+*   - "hub" → ""        (default home; preserves the existing prod
+*                        unit name `first-tree-hub-client.service` for
+*                        every machine already in the field)
+*   - "hub-<x>" → "<x>" ("hub-test" → "test", giving
+*                        `first-tree-hub-client-test.service`)
+*   - anything else → the basename verbatim (a custom home like
+*                     "~/.first-tree/foo" yields suffix "foo")
+*
+* Empty / falsy basenames defensively fall back to the default — we
+* never want to silently drop a user's intent into prod's unit name.
+*/
+function deriveServiceSuffix(homeBasename) {
+	if (!homeBasename) return "";
+	if (homeBasename === "hub") return "";
+	if (homeBasename.startsWith("hub-")) return homeBasename.slice(4) || homeBasename;
+	return homeBasename;
+}
+const SERVICE_SUFFIX = deriveServiceSuffix(basename(DEFAULT_HOME_DIR$1));
+const LAUNCHD_LABEL = SERVICE_SUFFIX ? `dev.first-tree-hub.client.${SERVICE_SUFFIX}` : "dev.first-tree-hub.client";
+const SYSTEMD_UNIT = SERVICE_SUFFIX ? `first-tree-hub-client-${SERVICE_SUFFIX}.service` : "first-tree-hub-client.service";
+const SYSLOG_IDENT = SERVICE_SUFFIX ? `first-tree-hub-client-${SERVICE_SUFFIX}` : "first-tree-hub-client";
 const LOG_DIR = join(DEFAULT_HOME_DIR$1, "logs");
 function whichBin(name) {
 	try {
@@ -6663,23 +6729,36 @@ function whichBin(name) {
 /**
 * Resolve how the service should launch the CLI.
 *
-* Prefers the installed `first-tree-hub` bin on PATH (usually a shim under
-* /usr/local/bin or ~/.npm-global/bin). Falls back to invoking the current
-* Node interpreter against the running script (handles `pnpm dev`, tsx, and
-* dev-only global installs).
+* Two regimes:
+*
+*   ① Prod (default home, empty service suffix) — prefer the installed
+*      `first-tree-hub` bin on PATH (usually a shim under /usr/local/bin
+*      or ~/.npm-global/bin). Using the shim means an `npm i -g … @latest`
+*      atomically swaps the binary the unit launches, no unit rewrite
+*      needed.
+*
+*   ② Dev / isolated (non-empty suffix from a custom FIRST_TREE_HUB_HOME)
+*      — pin to the running interpreter + script path. This skips the
+*      PATH lookup, which would otherwise resolve `first-tree-hub` to
+*      the operator's prod global install — making the dev unit silently
+*      run prod code against a dev home (i.e., the whole isolation story
+*      collapses with no error message). Pinning execPath+argv[1] forces
+*      the dev unit to launch the dev build that just installed it.
 */
-function resolveCliInvocation() {
-	const bin = whichBin("first-tree-hub");
-	if (bin && isAbsolute(bin)) try {
-		return {
-			kind: "bin",
-			program: realpathSync(bin)
-		};
-	} catch {
-		return {
-			kind: "bin",
-			program: bin
-		};
+function resolveCliInvocation(serviceSuffix = SERVICE_SUFFIX) {
+	if (serviceSuffix === "") {
+		const bin = whichBin("first-tree-hub");
+		if (bin && isAbsolute(bin)) try {
+			return {
+				kind: "bin",
+				program: realpathSync(bin)
+			};
+		} catch {
+			return {
+				kind: "bin",
+				program: bin
+			};
+		}
 	}
 	const script = process.argv[1];
 	if (!script) throw new Error("Cannot resolve CLI entry point (process.argv[1] is empty).");
@@ -6729,7 +6808,7 @@ ${argsXml}
     <key>PATH</key>
     <string>/usr/local/bin:/opt/homebrew/bin:/usr/bin:/bin</string>
     <key>FIRST_TREE_HUB_SERVICE_MODE</key>
-    <string>1</string>
+    <string>1</string>${SERVICE_SUFFIX ? `\n    <key>FIRST_TREE_HUB_HOME</key>\n    <string>${escapeXml(DEFAULT_HOME_DIR$1)}</string>` : ""}
   </dict>
   <key>RunAtLoad</key>
   <true/>
@@ -6773,9 +6852,12 @@ function launchdState() {
 	const stateLine = out.split(/\r?\n/).find((l) => l.trim().startsWith("state ="));
 	const pidLine = out.split(/\r?\n/).find((l) => l.trim().startsWith("pid ="));
 	if (stateLine?.includes("running")) {
-		const pid = pidLine?.split("=")[1]?.trim();
+		const pidStr = pidLine?.split("=")[1]?.trim();
+		const pidNum = pidStr ? Number(pidStr) : NaN;
+		const pid = Number.isFinite(pidNum) && pidNum > 0 ? pidNum : void 0;
 		return {
 			state: "active",
+			pid,
 			detail: pid ? `pid ${pid}` : "running"
 		};
 	}
@@ -6818,7 +6900,7 @@ function installLaunchd() {
 	if (!bootoutRes.ok) {
 		if (!/not find|no such|not loaded/i.test(bootoutRes.stderr)) print.line(`    warning: launchctl bootout: ${bootoutRes.stderr || `exit ${bootoutRes.code ?? "unknown"}`}\n`);
 	}
-	waitForLabelEvicted(target, LAUNCHD_LABEL, 1e4);
+	if (!waitForLabelEvicted(target, LAUNCHD_LABEL, 1e4)) print.line("    warning: launchctl bootout still settling after 10s; bootstrap may need a retry\n");
 	let lastBootstrapErr = null;
 	for (let attempt = 1; attempt <= 2; attempt++) {
 		const res = runCapture("launchctl", [
@@ -6836,13 +6918,14 @@ function installLaunchd() {
 	if (lastBootstrapErr) throw new Error(`launchctl bootstrap failed: ${lastBootstrapErr.stderr || `exit ${lastBootstrapErr.code ?? "unknown"}`}\n    Command: launchctl bootstrap ${target} ${plistPath}\n    Recovery: \`launchctl bootout ${target}/${LAUNCHD_LABEL}\` then \`first-tree-hub client connect <server-url>\`.`);
 	const enableRes = runCapture("launchctl", ["enable", `${target}/${LAUNCHD_LABEL}`], 5e3);
 	if (!enableRes.ok) print.line(`    warning: launchctl enable: ${enableRes.stderr || `exit ${enableRes.code ?? "unknown"}`}\n`);
-	const { state, detail } = launchdState();
+	const { state, pid, detail } = launchdState();
 	return {
 		platform: "launchd",
 		label: LAUNCHD_LABEL,
 		unitPath: plistPath,
 		logDir: LOG_DIR,
 		state,
+		pid,
 		detail
 	};
 }
@@ -6865,20 +6948,25 @@ function systemdUnitPath() {
 function renderSystemdUnit(invocation) {
 	return `[Unit]
 Description=First Tree Hub Client
-After=network-online.target
-Wants=network-online.target
+StartLimitIntervalSec=300
+StartLimitBurst=10
 [Service]
 Type=simple
 ExecStart=${invocation.kind === "bin" ? `${shellQuote(invocation.program)} client start --no-interactive` : `${shellQuote(invocation.program)} ${invocation.args.map(shellQuote).join(" ")} client start --no-interactive`}
-Restart=always
+Restart=on-failure
 RestartSec=10
-StandardOutput=append:${join(LOG_DIR, "client.stdout.log")}
-StandardError=append:${join(LOG_DIR, "client.stderr.log")}
+SuccessExitStatus=0
+RestartForceExitStatus=75
+KillSignal=SIGTERM
+KillMode=mixed
+TimeoutStopSec=30
+StandardOutput=journal
+StandardError=journal
+SyslogIdentifier=${SYSLOG_IDENT}
 Environment=PATH=/usr/local/bin:/usr/bin:/bin
 Environment=FIRST_TREE_HUB_SERVICE_MODE=1
-[Install]
+${SERVICE_SUFFIX ? `Environment=FIRST_TREE_HUB_HOME=${shellQuote(DEFAULT_HOME_DIR$1)}\n` : ""}[Install]
 WantedBy=default.target
 `;
 }
@@ -6902,15 +6990,75 @@ function systemdState() {
 		]
 	});
 	const out = (res.stdout ?? "").trim();
-	if (res.status === 0 && out === "active") return {
-		state: "active",
-		detail: "running"
-	};
+	if (res.status === 0 && out === "active") {
+		const pid = readSystemdMainPid();
+		return {
+			state: "active",
+			pid,
+			detail: pid ? `pid ${pid}` : "running"
+		};
+	}
 	return {
 		state: "inactive",
 		detail: out || "unit present but not active"
 	};
 }
+function readSystemdMainPid() {
+	const res = runCaptureOut("systemctl", [
+		"--user",
+		"show",
+		SYSTEMD_UNIT,
+		"-p",
+		"MainPID",
+		"--value"
+	], 5e3);
+	if (!res.ok) return void 0;
+	const n = Number(res.stdout);
+	return Number.isFinite(n) && n > 0 ? n : void 0;
+}
+/**
+* Best-effort `loginctl enable-linger` for the current user.
+*
+* Why this matters: a `--user` systemd service is tied to the user's session.
+* Without linger, when the user logs out (closes their last SSH session,
+* graphical session ends, etc.) the user's systemd manager exits and stops
+* every service it owns — including ours. The next login restarts everything,
+* which is silently wrong: agents go offline for hours and the operator has
+* no obvious cause.
+*
+* `enable-linger <self>` is allowed without sudo on systemd ≥ 240 thanks to
+* polkit's `org.freedesktop.login1.set-self-linger` rule. On older distros
+* or hardened setups it requires polkit auth — we don't try to escalate;
+* the warning printed by the caller is the operator's signal to run it
+* manually.
+*/
+function tryEnableLinger() {
+	const username = userInfo().username;
+	if (!username) return {
+		ok: false,
+		reason: "could not determine username"
+	};
+	const showRes = runCaptureOut("loginctl", [
+		"show-user",
+		username,
+		"-p",
+		"Linger",
+		"--value"
+	], 5e3);
+	if (showRes.ok && showRes.stdout === "yes") return {
+		ok: true,
+		alreadyOn: true
+	};
+	const res = runCapture("loginctl", ["enable-linger", username], 5e3);
+	if (res.ok) return {
+		ok: true,
+		alreadyOn: false
+	};
+	return {
+		ok: false,
+		reason: res.stderr || `exit ${res.code ?? "unknown"}`
+	};
+}
 function installSystemd() {
 	const invocation = resolveCliInvocation();
 	ensureLogDir();
@@ -6919,6 +7067,8 @@ function installSystemd() {
 	writeFileSync(unitPath, renderSystemdUnit(invocation), { mode: 420 });
 	const reloadRes = runCapture("systemctl", ["--user", "daemon-reload"], 5e3);
 	if (!reloadRes.ok) throw new Error(`systemctl --user daemon-reload failed: ${reloadRes.stderr || `exit ${reloadRes.code ?? "unknown"}`}`);
+	const lingerRes = tryEnableLinger();
+	if (!lingerRes.ok) print.line(`    warning: loginctl enable-linger failed: ${lingerRes.reason}\n    The service will stop when you log out. Run manually: sudo loginctl enable-linger ${userInfo().username}\n`);
 	const enableRes = runCapture("systemctl", [
 		"--user",
 		"enable",
@@ -6926,13 +7076,14 @@ function installSystemd() {
 		SYSTEMD_UNIT
 	], 1e4);
 	if (!enableRes.ok) throw new Error(`systemctl --user enable --now ${SYSTEMD_UNIT} failed: ${enableRes.stderr || `exit ${enableRes.code ?? "unknown"}`}\n    Recovery: \`systemctl --user stop ${SYSTEMD_UNIT}\` then \`first-tree-hub client connect <server-url>\`.`);
-	const { state, detail } = systemdState();
+	const { state, pid, detail } = systemdState();
 	return {
 		platform: "systemd",
 		label: SYSTEMD_UNIT,
 		unitPath,
 		logDir: LOG_DIR,
 		state,
+		pid,
 		detail
 	};
 }
@@ -6973,24 +7124,26 @@ function installClientService() {
 /** Report the current service state without modifying anything. */
 function getClientServiceStatus() {
 	if (process.platform === "darwin") {
-		const { state, detail } = launchdState();
+		const { state, pid, detail } = launchdState();
 		return {
 			platform: "launchd",
 			label: LAUNCHD_LABEL,
 			unitPath: launchdPlistPath(),
 			logDir: LOG_DIR,
 			state,
+			pid,
 			detail
 		};
 	}
 	if (process.platform === "linux") {
-		const { state, detail } = systemdState();
+		const { state, pid, detail } = systemdState();
 		return {
 			platform: "systemd",
 			label: SYSTEMD_UNIT,
 			unitPath: systemdUnitPath(),
 			logDir: LOG_DIR,
 			state,
+			pid,
 			detail
 		};
 	}
@@ -7003,6 +7156,137 @@ function getClientServiceStatus() {
 		detail: `platform ${process.platform} not supported`
 	};
 }
+/** Start the service. No-op + ok if already running. */
+function startClientService() {
+	if (process.platform === "linux") {
+		const res = runCapture("systemctl", [
+			"--user",
+			"start",
+			SYSTEMD_UNIT
+		], 15e3);
+		if (!res.ok) return {
+			ok: false,
+			reason: res.stderr || `exit ${res.code ?? "unknown"}`
+		};
+		return { ok: true };
+	}
+	if (process.platform === "darwin") {
+		const target = launchctlDomainTarget();
+		const plistPath = launchdPlistPath();
+		if (!existsSync(plistPath)) return {
+			ok: false,
+			reason: "service not installed"
+		};
+		if (runCaptureOut("launchctl", ["print", `${target}/${LAUNCHD_LABEL}`], 5e3).ok) {
+			const res = runCapture("launchctl", ["kickstart", `${target}/${LAUNCHD_LABEL}`], 1e4);
+			if (!res.ok) return {
+				ok: false,
+				reason: res.stderr || `exit ${res.code ?? "unknown"}`
+			};
+			return { ok: true };
+		}
+		const res = runCapture("launchctl", [
+			"bootstrap",
+			target,
+			plistPath
+		], 1e4);
+		if (!res.ok) return {
+			ok: false,
+			reason: res.stderr || `exit ${res.code ?? "unknown"}`
+		};
+		return { ok: true };
+	}
+	return {
+		ok: false,
+		reason: `service control not supported on ${process.platform}`
+	};
+}
+/**
+* Stop the service without disabling auto-start on next boot/login.
+*
+* systemd: `systemctl --user stop` — unit stays enabled, so a reboot or
+* `client start` brings it back. Combined with `Restart=on-failure +
+* SuccessExitStatus=0` in the unit, the SIGTERM path actually terminates
+* (the bug `Restart=always` had: stop would be immediately undone).
+*
+* launchd: `launchctl bootout` — unloads the running registration but
+* leaves the plist in `~/Library/LaunchAgents/`, so the next user login
+* (or `client start`) reloads it.
+*/
+function stopClientService() {
+	if (process.platform === "linux") {
+		const res = runCapture("systemctl", [
+			"--user",
+			"stop",
+			SYSTEMD_UNIT
+		], 35e3);
+		if (!res.ok) return {
+			ok: false,
+			reason: res.stderr || `exit ${res.code ?? "unknown"}`
+		};
+		return { ok: true };
+	}
+	if (process.platform === "darwin") {
+		const res = runCapture("launchctl", ["bootout", `${launchctlDomainTarget()}/${LAUNCHD_LABEL}`], 3e4);
+		if (!res.ok) {
+			if (/not find|no such|not loaded/i.test(res.stderr)) return {
+				ok: true,
+				detail: "not running"
+			};
+			return {
+				ok: false,
+				reason: res.stderr || `exit ${res.code ?? "unknown"}`
+			};
+		}
+		return { ok: true };
+	}
+	return {
+		ok: false,
+		reason: `service control not supported on ${process.platform}`
+	};
+}
+/** Restart the service. Equivalent to stop + start, but uses the manager's atomic primitive. */
+function restartClientService() {
+	if (process.platform === "linux") {
+		const res = runCapture("systemctl", [
+			"--user",
+			"restart",
+			SYSTEMD_UNIT
+		], 45e3);
+		if (!res.ok) return {
+			ok: false,
+			reason: res.stderr || `exit ${res.code ?? "unknown"}`
+		};
+		return { ok: true };
+	}
+	if (process.platform === "darwin") {
+		const target = launchctlDomainTarget();
+		const plistPath = launchdPlistPath();
+		if (!existsSync(plistPath)) return {
+			ok: false,
+			reason: "service not installed"
+		};
+		if (runCapture("launchctl", [
+			"kickstart",
+			"-k",
+			`${target}/${LAUNCHD_LABEL}`
+		], 3e4).ok) return { ok: true };
+		const bootstrapRes = runCapture("launchctl", [
+			"bootstrap",
+			target,
+			plistPath
+		], 1e4);
+		if (!bootstrapRes.ok) return {
+			ok: false,
+			reason: bootstrapRes.stderr || `exit ${bootstrapRes.code ?? "unknown"}`
+		};
+		return { ok: true };
+	}
+	return {
+		ok: false,
+		reason: `service control not supported on ${process.platform}`
+	};
+}
 /** Uninstall the background service. No-op if not installed. */
 function uninstallClientService() {
 	if (process.platform === "darwin") return uninstallLaunchd();
@@ -7776,7 +8060,7 @@ async function onboardCreate(args) {
 	}
 	const runtimeAgent = args.type === "human" ? args.assistant : args.id;
 	if (args.feishuBotAppId && args.feishuBotAppSecret) {
-		const { bindFeishuBot } = await import("./feishu-eynC54km.mjs").then((n) => n.r);
+		const { bindFeishuBot } = await import("./feishu-viiZmwcn.mjs").then((n) => n.r);
 		const targetAgentUuid = args.type === "human" ? assistantUuid : primary.uuid;
 		if (!targetAgentUuid) print.line(`Warning: Cannot bind Feishu bot — no runtime agent available for "${args.id}".\n`);
 		else {
@@ -8756,7 +9040,7 @@ function createFeedbackHandler(config) {
 	return { handle };
 }
 //#endregion
-//#region ../server/dist/app-XRPDwwkj.mjs
+//#region ../server/dist/app-O9kCTpaF.mjs
 var __defProp = Object.defineProperty;
 var __exportAll = (all, no_symbols) => {
 	let target = {};
@@ -11561,7 +11845,8 @@ async function adminAgentRoutes(app) {
 	app.post("/", async (request, reply) => {
 		const scope = memberScope(request);
 		const body = createAgentSchema.parse(request.body);
-		const targetOrgId = body.organizationId ?? scope.organizationId;
+		const { organizationId: queryOrganizationId } = listAgentsFilterSchema.parse(request.query);
+		const targetOrgId = body.organizationId ?? queryOrganizationId ?? scope.organizationId;
 		const probe = await requireMemberInOrg(app.db, request, targetOrgId);
 		const managerId = probe.role === "admin" ? body.managerId ?? probe.memberId : probe.memberId;
 		const agent = await createAgent(app.db, {
@@ -14194,8 +14479,40 @@ const editMessageSchema = z.object({
 	format: z.string().optional(),
 	content: z.unknown()
 });
+/**
+* Per-agent rate limit on outbound message writes. Keyed by `agent.uuid`
+* (populated by `agentSelectorHook`, which runs as an onRequest hook before
+* the global limiter — registered with `hook: "preHandler"` — fires).
+*
+* Rationale: agent ↔ agent reply loops are the documented failure mode
+* (`mention_only` is the semantic guard; this is the hard ceiling).
+*
+* The IP fallback is **defensive scaffolding, not a real code path**. These
+* routes mount under `/agent` which forces `memberAuth + agentSelector`
+* onRequest hooks (see app.ts) — a missing `req.agent` would have already
+* 403'd before this preHandler runs. The fallback exists so that if a future
+* refactor reorders hooks (or detaches one of these routes from the agent
+* scope), the limiter degrades to per-IP keying with a logged warning rather
+* than silently keying everyone to the same `undefined` bucket.
+*/
+function agentMessageWriteRateLimit(max) {
+	return { rateLimit: {
+		max,
+		timeWindow: "1 minute",
+		keyGenerator: (req) => {
+			const agentId = req.agent?.uuid;
+			if (agentId) return `agent:${agentId}`;
+			log$2.warn({
+				ip: req.ip,
+				route: req.routeOptions?.url ?? req.url
+			}, "rate-limit keyGenerator fell back to IP — req.agent missing on a route under /agent (hook order regression?)");
+			return `ip:${req.ip}`;
+		}
+	} };
+}
 async function agentMessageRoutes(app) {
-	app.post("/:chatId/messages", async (request, reply) => {
+	const writeRateLimit = agentMessageWriteRateLimit(app.config.rateLimit?.agentMessageMax ?? 30);
+	app.post("/:chatId/messages", { config: writeRateLimit }, async (request, reply) => {
 		const identity = requireAgent(request);
 		await assertParticipant(app.db, request.params.chatId, identity.uuid);
 		const body = sendMessageSchema.parse(request.body);
@@ -14239,7 +14556,8 @@ async function agentMessageRoutes(app) {
 	});
 }
 async function agentSendToAgentRoutes(app) {
-	app.post("/:name/messages", async (request, reply) => {
+	const writeRateLimit = agentMessageWriteRateLimit(app.config.rateLimit?.agentMessageMax ?? 30);
+	app.post("/:name/messages", { config: writeRateLimit }, async (request, reply) => {
 		const identity = requireAgent(request);
 		const body = sendToAgentSchema.parse(request.body);
 		const { message: msg, recipients } = await sendToAgent(app.db, identity.uuid, request.params.name, body);
@@ -15041,7 +15359,7 @@ async function login(db, username, password, jwtSecretKey) {
 	const [user] = await db.select().from(users).where(eq(users.username, username)).limit(1);
 	if (!user || user.status !== "active") throw new UnauthorizedError("Invalid username or password");
 	if (!await bcrypt.compare(password, user.passwordHash)) throw new UnauthorizedError("Invalid username or password");
-	const [member] = await db.select().from(members).where(and(eq(members.userId, user.id), eq(members.status, "active"))).limit(1);
+	const [member] = await db.select().from(members).where(and(eq(members.userId, user.id), eq(members.status, "active"))).orderBy(desc(members.createdAt), desc(members.id)).limit(1);
 	if (!member) throw new UnauthorizedError("No organization membership found");
 	const tokens = await signTokensForMember(jwtSecretKey, {
 		userId: user.id,
@@ -16104,7 +16422,7 @@ async function inferWizardStep(app, m) {
 * landing page.
 */
 async function publicInvitePreviewRoute(app) {
-	const { previewInvitation } = await import("./invitation-CBnQyB7o-DVOpS_Ts.mjs");
+	const { previewInvitation } = await import("./invitation-CBnQyB7o-DLQyW5ek.mjs");
 	app.get("/:token/preview", async (request, reply) => {
 		if (!request.params.token) throw new UnauthorizedError("Token required");
 		const preview = await previewInvitation(app.db, request.params.token);
@@ -16134,7 +16452,7 @@ async function adminInvitationRoutes(app) {
 		const m = requireMember(request);
 		if (m.role !== "admin") throw new ForbiddenError("Admin role required");
 		if (request.params.id !== m.organizationId) throw new ForbiddenError("Cannot rotate invitations for another organization");
-		const { rotateInvitation } = await import("./invitation-CBnQyB7o-DVOpS_Ts.mjs");
+		const { rotateInvitation } = await import("./invitation-CBnQyB7o-DLQyW5ek.mjs");
 		const inv = await rotateInvitation(app.db, m.organizationId, m.userId);
 		return {
 			id: inv.id,
@@ -18014,7 +18332,11 @@ async function buildApp(config) {
 		format: config.observability.logging.format,
 		bridgeToSpanLevel: config.observability.logging.bridgeToSpanLevel
 	});
-	const app = Fastify({ loggerInstance: rootLogger$1 });
+	const app = Fastify({
+		loggerInstance: rootLogger$1,
+		trustProxy: config.trustProxy
+	});
+	if (config.trustProxy) app.log.warn("trustProxy=true — Fastify trusts ANY upstream's x-forwarded-for. Ensure Cloudflare / CapRover is the only ingress; do NOT expose this container's port to the public internet directly.");
 	const otelPlugin = getFastifyOtelPlugin();
 	if (otelPlugin) await app.register(otelPlugin);
 	await app.register(observabilityPlugin);
@@ -18026,7 +18348,7 @@ async function buildApp(config) {
 	app.log.info({ commandVersion }, "Hub server advertising command version");
 	const listenClient = postgres(config.database.url, { max: 1 });
 	const notifier = createNotifier(listenClient);
-	await app.register(websocket);
+	await app.register(websocket, { options: { maxPayload: config.ws?.maxPayload ?? 65536 } });
 	const corsOrigin = config.cors?.origin;
 	const isDev = process.env.NODE_ENV !== "production";
 	await app.register(cors, {
@@ -18035,7 +18357,8 @@ async function buildApp(config) {
 	});
 	await app.register(rateLimit, {
 		max: config.rateLimit?.max ?? 100,
-		timeWindow: "1 minute"
+		timeWindow: "1 minute",
+		hook: "preHandler"
 	});
 	const memberAuth = memberAuthHook(db, config.secrets.jwtSecret);
 	const adminOnly = requireAdminRoleHook();
@@ -18052,6 +18375,10 @@ async function buildApp(config) {
 			details: error.issues,
 			...traceField
 		});
+		if (error instanceof Error && "statusCode" in error && typeof error.statusCode === "number" && error.statusCode >= 400 && error.statusCode < 500) return reply.status(error.statusCode).send({
+			error: error.message,
+			...traceField
+		});
 		request.log.error({ err: error }, "unhandled request error");
 		return reply.status(500).send({
 			error: "Internal server error",
@@ -18425,12 +18752,21 @@ function resolveNpmCommand() {
 */
 function detectInstallMode(argv1 = process.argv[1] ?? "") {
 	if (!argv1) return "npx";
-	let dir = dirname(resolve(argv1));
+	const start = dirname(resolve(argv1));
+	{
+		let dir = start;
+		for (let i = 0; i < 10; i++) {
+			if (existsSync(resolve(dir, ".git"))) return "source";
+			const parent = dirname(dir);
+			if (parent === dir) break;
+			dir = parent;
+		}
+	}
+	let dir = start;
 	for (let i = 0; i < 10; i++) {
-		if (existsSync(resolve(dir, ".git"))) return "source";
 		const pkgPath = resolve(dir, "package.json");
 		if (existsSync(pkgPath)) try {
-			if (JSON.parse(readFileSync(pkgPath, "utf8")).name === PACKAGE_NAME) {
+			if (JSON.parse(readFileSync(pkgPath, "utf8")).name === "@agent-team-foundation/first-tree-hub") {
 				if (/\/(?:_npx|\.npm\/_npx)\//.test(dir)) return "npx";
 				return "global";
 			}
@@ -18504,6 +18840,42 @@ function parseInstalledVersion(stdout) {
 function escapeForRegex(s) {
 	return s.replace(/[.*+?^${}()|[\]\\]/g, "\\$&");
 }
+/**
+* Look up the latest published version of the CLI package.
+*
+* Uses `npm view <pkg> version` (rather than fetch'ing registry.npmjs.org
+* directly) so the user's `.npmrc` registry, proxy, and auth settings are
+* honored — important for corporate users routed through Verdaccio /
+* Artifactory mirrors.
+*/
+function fetchLatestVersion(timeoutMs = 1e4) {
+	const res = spawnSync(resolveNpmCommand(), [
+		"view",
+		PACKAGE_NAME,
+		"version"
+	], {
+		encoding: "utf-8",
+		timeout: timeoutMs,
+		stdio: [
+			"ignore",
+			"pipe",
+			"pipe"
+		]
+	});
+	if (res.status !== 0) return {
+		ok: false,
+		reason: (res.stderr ?? "").trim() || `npm view exited with code ${res.status}`
+	};
+	const version = (res.stdout ?? "").trim();
+	if (!semver.valid(version)) return {
+		ok: false,
+		reason: `npm view returned non-semver value: ${version.slice(0, 80)}`
+	};
+	return {
+		ok: true,
+		version
+	};
+}
 /** Interactive update prompt. Defaults to N on timeout. */
 const promptUpdate = async ({ currentVersion, targetVersion, timeoutSeconds }) => {
 	const message = `A newer First Tree Hub client is available.\n  You: ${currentVersion}\n  Server bundled with: ${targetVersion}\n  Will install: latest on npm (>= ${targetVersion})\n  Updating will restart the client and briefly interrupt any active sessions.\n  Update now?`;
@@ -18753,4 +19125,4 @@ function registerSaaSConnectCommand(program) {
 	});
 }
 //#endregion
-export { success as $, checkServerHealth as A, ensurePostgres as B, checkAgentConfigs as C, checkDocker as D, checkDatabase as E, getClientServiceStatus as F, rotateClientIdWithBackup as G, stopPostgres as H, installClientService as I, removeLocalAgent as J, findStaleAliases as K, isServiceSupported as L, checkWebSocket as M, printResults as N, checkNodeVersion as O, reconcileAgentConfigs as P, fail as Q, resolveCliInvocation as R, runMigrations as S, checkClientConfig as T, ClientRuntime as U, isDockerAvailable as V, handleClientOrgMismatch as W, hasUser as X, createOwner as Y, resolveReplyToFromEnv as Z, onboardCreate as _, declineUpdate as a, ClientUserMismatchError as at, createApiNameResolver as b, COMMAND_VERSION as c, SessionRegistry as ct, isInteractive as d, applyClientLoggerConfig as dt, blank as et, promptAddAgent as f, configureClientLoggerForService as ft, onboardCheck as g, loadOnboardState as h, createExecuteUpdate as i, ClientOrgMismatchError as it, checkServerReachable as j, checkServerConfig as k, reconcileLocalRuntimeProviders as l, cleanWorkspaces as lt, formatCheckReport as m, deriveHubUrlFromToken as n, setJsonMode as nt, promptUpdate as o, FirstTreeHubSDK as ot, promptMissingFields as p, formatStaleReason as q, registerSaaSConnectCommand as r, status as rt, startServer as s, SdkError as st, HubUrlDerivationError as t, print as tt, uploadClientCapabilities as u, probeCapabilities as ut, saveOnboardState as v, checkBackgroundService as w, migrateLocalAgentDirs as x, runHomeMigration as y, uninstallClientService as z };
+export { findStaleAliases as $, checkDatabase as A, installClientService as B, runHomeMigration as C, checkAgentConfigs as D, runMigrations as E, checkServerReachable as F, stopClientService as G, resolveCliInvocation as H, checkWebSocket as I, isDockerAvailable as J, uninstallClientService as K, printResults as L, checkNodeVersion as M, checkServerConfig as N, checkBackgroundService as O, checkServerHealth as P, rotateClientIdWithBackup as Q, reconcileAgentConfigs as R, saveOnboardState as S, migrateLocalAgentDirs as T, restartClientService as U, isServiceSupported as V, startClientService as W, ClientRuntime as X, stopPostgres as Y, handleClientOrgMismatch as Z, promptMissingFields as _, probeCapabilities as _t, declineUpdate as a, fail as at, onboardCheck as b, detectInstallMode as c, print as ct, startServer as d, ClientOrgMismatchError as dt, formatStaleReason as et, COMMAND_VERSION as f, ClientUserMismatchError as ft, promptAddAgent as g, cleanWorkspaces as gt, isInteractive as h, SessionRegistry as ht, createExecuteUpdate as i, resolveReplyToFromEnv as it, checkDocker as j, checkClientConfig as k, fetchLatestVersion as l, setJsonMode as lt, uploadClientCapabilities as m, SdkError as mt, deriveHubUrlFromToken as n, createOwner as nt, promptUpdate as o, success as ot, reconcileLocalRuntimeProviders as p, FirstTreeHubSDK as pt, ensurePostgres as q, registerSaaSConnectCommand as r, hasUser as rt, PACKAGE_NAME as s, blank as st, HubUrlDerivationError as t, removeLocalAgent as tt, installGlobalLatest as u, status as ut, formatCheckReport as v, applyClientLoggerConfig as vt, createApiNameResolver as w, onboardCreate as x, loadOnboardState as y, configureClientLoggerForService as yt, getClientServiceStatus as z };