npm - @agent-team-foundation/first-tree-hub - Versions diffs - 0.14.2 → 0.14.3 - Mend

@agent-team-foundation/first-tree-hub 0.14.2 → 0.14.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (10) hide show

package/dist/{bootstrap-C15ZBOCC.mjs → bootstrap-CQQGgIx1.mjs} RENAMED Viewed

@@ -570,13 +570,6 @@ const serverConfigSchema = defineConfig({
 		refreshTokenExpiry: field(z.string().default("30d"), { env: "FIRST_TREE_HUB_AUTH_REFRESH_TOKEN_EXPIRY" }),
 		connectTokenExpiry: field(z.string().default("10m"), { env: "FIRST_TREE_HUB_AUTH_CONNECT_TOKEN_EXPIRY" })
 	},
-	contextTreeSync: optional({
-		githubToken: field(z.string(), {
-			env: "FIRST_TREE_HUB_CONTEXT_TREE_GITHUB_TOKEN",
-			secret: true
-		}),
-		githubTokenRepos: field(z.string().optional(), { env: "FIRST_TREE_HUB_CONTEXT_TREE_GITHUB_TOKEN_REPOS" })
-	}),
 	oauth: optional({ githubApp: optional({
 		appId: field(z.string().min(1), { env: "FIRST_TREE_HUB_GITHUB_APP_ID" }),
 		clientId: field(z.string().min(1), { env: "FIRST_TREE_HUB_GITHUB_APP_CLIENT_ID" }),

package/dist/cli/index.mjs CHANGED Viewed

@@ -1,14 +1,14 @@
 #!/usr/bin/env node
 import "../observability-BAScT_5S-BcW9HgkG.mjs";
-import { $ as formatStaleReason, A as checkDocker, B as isServiceSupported, C as createApiNameResolver, D as checkBackgroundService, E as checkAgentConfigs, F as checkWebSocket, H as restartClientService, I as printResults, J as stopPostgres, L as reconcileAgentConfigs, M as checkServerConfig, N as checkServerHealth, O as checkClientConfig, P as checkServerReachable, Q as findStaleAliases, R as getClientServiceStatus, S as runHomeMigration, T as runMigrations, U as startClientService, W as stopClientService, X as handleClientOrgMismatch, Y as ClientRuntime, _ as formatCheckReport, a as declineUpdate, at as fail, b as onboardCreate, c as detectInstallMode, ct as ClientUserMismatchError, d as startServer, dt as SessionRegistry, et as removeLocalAgent, f as reconcileLocalRuntimeProviders, ft as cleanWorkspaces, g as promptMissingFields, h as promptAddAgent, ht as configureClientLoggerForService, i as createExecuteUpdate, it as resolveSenderName, j as checkNodeVersion, k as checkDatabase, l as fetchLatestVersion, lt as FirstTreeHubSDK, m as isInteractive, mt as applyClientLoggerConfig, o as promptUpdate, ot as success, p as uploadClientCapabilities, pt as probeCapabilities, r as registerSaaSConnectCommand, rt as resolveReplyToFromEnv, s as PACKAGE_NAME, st as ClientOrgMismatchError, tt as createOwner, u as installGlobalLatest, ut as SdkError, v as loadOnboardState, w as migrateLocalAgentDirs, x as saveOnboardState, y as onboardCheck, z as installClientService } from "../saas-connect-DgCSZ8Yk.mjs";
+import { $ as formatStaleReason, A as checkDocker, B as isServiceSupported, C as createApiNameResolver, D as checkBackgroundService, E as checkAgentConfigs, F as checkWebSocket, H as restartClientService, I as printResults, J as stopPostgres, L as reconcileAgentConfigs, M as checkServerConfig, N as checkServerHealth, O as checkClientConfig, P as checkServerReachable, Q as findStaleAliases, R as getClientServiceStatus, S as runHomeMigration, T as runMigrations, U as startClientService, W as stopClientService, X as handleClientOrgMismatch, Y as ClientRuntime, _ as formatCheckReport, a as declineUpdate, at as fail, b as onboardCreate, c as detectInstallMode, ct as ClientUserMismatchError, d as startServer, dt as SessionRegistry, et as removeLocalAgent, f as reconcileLocalRuntimeProviders, ft as cleanWorkspaces, g as promptMissingFields, h as promptAddAgent, ht as configureClientLoggerForService, i as createExecuteUpdate, it as resolveSenderName, j as checkNodeVersion, k as checkDatabase, l as fetchLatestVersion, lt as FirstTreeHubSDK, m as isInteractive, mt as applyClientLoggerConfig, o as promptUpdate, ot as success, p as uploadClientCapabilities, pt as probeCapabilities, r as registerSaaSConnectCommand, rt as resolveReplyToFromEnv, s as PACKAGE_NAME, st as ClientOrgMismatchError, tt as createOwner, u as installGlobalLatest, ut as SdkError, v as loadOnboardState, w as migrateLocalAgentDirs, x as saveOnboardState, y as onboardCheck, z as installClientService } from "../saas-connect-ChxZv2YQ.mjs";
 import "../logger-core-BTmvdflj-DjW8FM4T.mjs";
-import { C as resetConfigMeta, E as setConfigValue, S as resetConfig, T as serverConfigSchema, _ as getConfigValue, a as ensureFreshAdminToken, c as resolveServerUrl, d as DEFAULT_CONFIG_DIR, f as DEFAULT_DATA_DIR, h as clientConfigSchema, i as ensureFreshAccessToken, l as saveAgentConfig, m as agentConfigSchema, o as loadCredentials, p as DEFAULT_HOME_DIR, v as initConfig, w as resolveConfigReadonly, x as readConfigFile, y as loadAgents } from "../bootstrap-C15ZBOCC.mjs";
+import { C as resetConfigMeta, E as setConfigValue, S as resetConfig, T as serverConfigSchema, _ as getConfigValue, a as ensureFreshAdminToken, c as resolveServerUrl, d as DEFAULT_CONFIG_DIR, f as DEFAULT_DATA_DIR, h as clientConfigSchema, i as ensureFreshAccessToken, l as saveAgentConfig, m as agentConfigSchema, o as loadCredentials, p as DEFAULT_HOME_DIR, v as initConfig, w as resolveConfigReadonly, x as readConfigFile, y as loadAgents } from "../bootstrap-CQQGgIx1.mjs";
 import { a as print, n as CLI_USER_AGENT, o as setJsonMode, r as COMMAND_VERSION, t as cliFetch } from "../cli-fetch--tiwKm5S.mjs";
-import "../dist-DmYxT5Kb.mjs";
-import { n as bindFeishuUser, t as bindFeishuBot } from "../feishu-CCWd-JE4.mjs";
+import "../dist-CwsiHGX7.mjs";
+import { n as bindFeishuUser, t as bindFeishuBot } from "../feishu-DHSy6WDD.mjs";
 import "../uuid-DbS_4vFh-iFghv4zA.mjs";
 import "../src-DNBS5Yjj.mjs";
-import "../client-CZ_VnbEc-CBF46cJd.mjs";
+import "../client-BSfCc0pJ-BP_1f21y.mjs";
 import "../invitation-D_ENPHyj-5ETiae5r.mjs";
 import { join } from "node:path";
 import { existsSync, mkdirSync, readFileSync, readdirSync } from "node:fs";
@@ -255,11 +255,6 @@ function handleSdkError$1(error) {
 	if (error instanceof TypeError && "cause" in error) fail("CONNECTION_ERROR", `Cannot connect to server: ${error.message}`, 6);
 	fail("UNKNOWN_ERROR", error instanceof Error ? error.message : String(error), 1);
 }
-function parseLimit$1(value, max) {
-	const limit = Number.parseInt(value, 10);
-	if (Number.isNaN(limit) || limit < 1 || limit > max) fail("INVALID_LIMIT", `Limit must be between 1 and ${max}.`, 2);
-	return limit;
-}
 async function resolveAgent$1(serverUrl, adminToken, agentName) {
 	const res = await cliFetch(`${serverUrl}/api/v1/me/managed-agents`, {
 		headers: { Authorization: `Bearer ${adminToken}` },
@@ -693,25 +688,13 @@ function registerAgentCommands(program) {
 			fail("SESSION_CMD_ERROR", error instanceof Error ? error.message : String(error));
 		}
 	});
-	const debugCmd = agent.command("debug", { hidden: true }).description("Low-level SDK debug commands");
-	debugCmd.command("register").description("Register this agent and return identity info").option("--agent <name>", "Agent name on the Hub (default: first configured on this client)").action(async (options) => {
+	agent.command("debug", { hidden: true }).description("Low-level SDK debug commands").command("register").description("Register this agent and return identity info").option("--agent <name>", "Agent name on the Hub (default: first configured on this client)").action(async (options) => {
 		try {
 			success(await createSdk$1(options.agent).register());
 		} catch (error) {
 			handleSdkError$1(error);
 		}
 	});
-	debugCmd.command("pull").description("Pull pending messages from inbox").option("-l, --limit <number>", "Maximum entries to return", "10").option("-a, --ack", "Automatically ACK entries after pulling").option("--agent <name>", "Agent name on the Hub (default: first configured on this client)").action(async (options) => {
-		try {
-			const sdk = createSdk$1(options.agent);
-			const limit = parseLimit$1(options.limit, 50);
-			const result = await sdk.pull(limit);
-			if (options.ack && result.entries.length > 0) await Promise.all(result.entries.map((entry) => sdk.ack(entry.id)));
-			success(result);
-		} catch (error) {
-			handleSdkError$1(error);
-		}
-	});
 }
 //#endregion
 //#region src/commands/chat.ts
@@ -1487,13 +1470,13 @@ function decodeJwtExpSeconds(token) {
 //#region src/commands/onboard.ts
 async function promptMissing(args) {
 	if (!args.server) try {
-		const { resolveServerUrl } = await import("../bootstrap-C15ZBOCC.mjs").then((n) => n.r);
+		const { resolveServerUrl } = await import("../bootstrap-CQQGgIx1.mjs").then((n) => n.r);
 		resolveServerUrl();
 	} catch {
 		args.server = await input({ message: "Hub server URL:" });
 		saveOnboardState(args);
 	}
-	const { loadCredentials } = await import("../bootstrap-C15ZBOCC.mjs").then((n) => n.r);
+	const { loadCredentials } = await import("../bootstrap-CQQGgIx1.mjs").then((n) => n.r);
 	if (!loadCredentials()) throw new Error("No saved credentials. Run `first-tree-hub connect <token>` before onboarding.");
 	if (!args.id) {
 		args.id = await input({ message: "Agent ID:" });

package/dist/{client-CZ_VnbEc-CBF46cJd.mjs → client-BSfCc0pJ-BP_1f21y.mjs} RENAMED Viewed

@@ -1,10 +1,10 @@
 import { A as FIRST_TREE_HUB_ATTR, O as withSpan, f as messageAttrs, s as createLogger } from "./observability-BAScT_5S-BcW9HgkG.mjs";
-import { L as extractMentions, N as defaultParticipantMode, P as defaultRuntimeConfigPayload, S as clientCapabilitiesSchema, St as stripCode, Z as isReservedAgentName, a as AGENT_TYPES, b as agentTypeSchema, ct as questionAnswerMessageContentSchema, d as MENTION_REGEX, i as AGENT_STATUSES, l as GITHUB_ENTITY_TYPES, lt as questionMessageContentSchema, mt as scanMentionTokens, n as AGENT_NAME_REGEX, nt as messageSourceSchema, o as AGENT_VISIBILITY, s as CHAT_ENGAGEMENT_STATUSES } from "./dist-DmYxT5Kb.mjs";
+import { L as extractMentions, N as defaultParticipantMode, P as defaultRuntimeConfigPayload, S as clientCapabilitiesSchema, St as stripCode, Z as isReservedAgentName, a as AGENT_TYPES, b as agentTypeSchema, ct as questionAnswerMessageContentSchema, d as MENTION_REGEX, i as AGENT_STATUSES, l as GITHUB_ENTITY_TYPES, lt as questionMessageContentSchema, mt as scanMentionTokens, n as AGENT_NAME_REGEX, nt as messageSourceSchema, o as AGENT_VISIBILITY, s as CHAT_ENGAGEMENT_STATUSES } from "./dist-CwsiHGX7.mjs";
 import { a as ClientUserMismatchError, c as NotFoundError, d as users, f as uuidv7, o as ConflictError, r as BadRequestError, s as ForbiddenError, t as AgentSendNonMemberError, u as organizations } from "./uuid-DbS_4vFh-iFghv4zA.mjs";
 import { randomUUID } from "node:crypto";
 import { and, asc, count, desc, eq, gt, gte, inArray, isNotNull, lt, ne, or, sql } from "drizzle-orm";
 import { bigserial, boolean, customType, index, integer, jsonb, pgTable, primaryKey, serial, text, timestamp, unique } from "drizzle-orm/pg-core";
-//#region ../server/dist/client-CZ_VnbEc.mjs
+//#region ../server/dist/client-BSfCc0pJ.mjs
 /**
 * Client connections. A client is a single SDK process (AgentRuntime) that may
 * host multiple agents. From the unified-user-token milestone on, a client is
@@ -401,7 +401,7 @@ async function pollInboxInner(db, inboxId, limit) {
 /**
 * Shared payload assembler for already-claimed `inbox_entries` rows.
 *
-* Both the HTTP poll path (`pollInbox`) and the WS push path
+* Both the debug `GET /inbox` path (`pollInbox`) and the WS push path
 * (`claimAndBuildForPush`) call this with rows they have just `UPDATE`d to
 * `status='delivered'`. Keeping the silent-context bundling in one place is
 * the only way to keep the two paths from drifting (proposal
@@ -473,9 +473,9 @@ const PUSH_CLAIM_BATCH_LIMIT = 8;
 * WS-push path: atomically claim every pending entry the just-fired
 * `NOTIFY (inboxId:messageId)` references and assemble their wire payloads.
 *
-* Returns `[]` if no row matches — benign race with HTTP poll or another
-* server instance that already claimed the entry. NOTIFY is fire-and-forget
-* (proposal §3.2).
+* Returns `[]` if no row matches — benign race with another server instance
+* (or the debug `GET /inbox` endpoint) that already claimed the entry.
+* NOTIFY is fire-and-forget (proposal §3.2).
 *
 * Why an array, not a single row: `sendMessage` can write **two** rows for
 * the same `(inbox, messageId)` pair when the recipient is both a chat
@@ -500,9 +500,9 @@ async function claimAndBuildForPush(db, inboxId, messageId) {
 /**
 * WS-push backlog path: on agent rebind (or once an in-flight slot frees up
 * after an ack), drain up to `limit` pending `notify=true` entries oldest-
-* first and assemble wire payloads. Identical claim shape to the HTTP poll
-* path — they are intentionally interchangeable so a hot-path bug fixed in
-* one shows up in the other (proposal §3.3 / §3.5).
+* first and assemble wire payloads. Identical claim shape to `pollInbox` —
+* they are intentionally interchangeable so a hot-path bug fixed in one
+* shows up in the other (proposal §3.3 / §3.5).
 */
 async function claimBacklogForPush(db, inboxId, limit) {
 	return withSpan("inbox.deliver.backlog", {
@@ -563,28 +563,14 @@ async function collectPrecedingContext(tx, inboxId, triggers) {
 	}
 	return result;
 }
-async function ackEntry(db, entryId, inboxId) {
-	return withSpan("inbox.ack", {
-		[FIRST_TREE_HUB_ATTR.INBOX_ENTRY_ID]: String(entryId),
-		"inbox.id": inboxId
-	}, async () => {
-		const [entry] = await db.update(inboxEntries).set({
-			status: "acked",
-			ackedAt: /* @__PURE__ */ new Date()
-		}).where(and(eq(inboxEntries.id, entryId), eq(inboxEntries.inboxId, inboxId), eq(inboxEntries.status, "delivered"))).returning();
-		if (!entry) throw new NotFoundError("Inbox entry not found or not in delivered status");
-		return entry;
-	});
-}
 /**
 * Ack a delivered entry from the WS data plane, scoped to the inboxes the
 * connected socket has bound. Returns the acked row on success, `null` if no
 * row matches — a benign outcome the caller should ignore (the entry may
 * have already been acked, timed out, or never belonged to this socket).
 *
-* Distinct from {@link ackEntry} so the WS path can ack without trusting an
-* `inboxId` from the wire — only entries whose `inboxId` is in `inboxIds`
-* are eligible. Empty `inboxIds` short-circuits to `null`.
+* Trusts only the `inboxId` set the connected socket has bound (no `inboxId`
+* on the wire), and short-circuits on an empty `inboxIds`.
 */
 async function ackEntryByIdForBoundAgents(db, entryId, inboxIds) {
 	if (inboxIds.length === 0) return null;
@@ -596,11 +582,6 @@ async function ackEntryByIdForBoundAgents(db, entryId, inboxIds) {
 		return entry ?? null;
 	});
 }
-async function renewEntry(db, entryId, inboxId) {
-	const [entry] = await db.update(inboxEntries).set({ deliveredAt: /* @__PURE__ */ new Date() }).where(and(eq(inboxEntries.id, entryId), eq(inboxEntries.inboxId, inboxId), eq(inboxEntries.status, "delivered"))).returning();
-	if (!entry) throw new NotFoundError("Inbox entry not found or not in delivered status");
-	return entry;
-}
 async function resetTimedOutEntries(db, timeoutSeconds = DEFAULT_INBOX_TIMEOUT_SECONDS, maxRetries = DEFAULT_MAX_RETRY_COUNT) {
 	const reset = await db.update(inboxEntries).set({
 		status: "pending",
@@ -2298,15 +2279,9 @@ function createNotifier(listenClient) {
 		const messageId = payload.slice(sepIdx + 1);
 		const sockets = subscriptions.get(inboxId);
 		if (!sockets) return;
-		const doorbellFrame = JSON.stringify({
-			type: "new_message",
-			inboxId,
-			messageId
-		});
 		for (const [ws, pushHandler] of sockets) {
 			if (ws.readyState !== ws.OPEN) continue;
-			if (pushHandler) Promise.resolve(pushHandler(messageId)).catch(() => {});
-			else ws.send(doorbellFrame);
+			Promise.resolve(pushHandler(messageId)).catch(() => {});
 		}
 	}
 	return {
@@ -2316,7 +2291,7 @@ function createNotifier(listenClient) {
 				map = /* @__PURE__ */ new Map();
 				subscriptions.set(inboxId, map);
 			}
-			map.set(ws, pushHandler ?? null);
+			map.set(ws, pushHandler);
 		},
 		unsubscribe(inboxId, ws) {
 			const map = subscriptions.get(inboxId);
@@ -4210,4 +4185,4 @@ async function cleanupStaleClients(db, staleSeconds = 60) {
 	return result.length;
 }
 //#endregion
-export { getSession as $, suspendSession as $t, createAgent as A, pollInbox as At, extractSummary as B, resetTimedOutEntries as Bt, claimAndBuildForPush as C, markMeChatRead as Ct, cleanupStalePresence as D, messages as Dt, cleanupStaleClients as E, members as Et, deriveAuthState as F, registerChatMessageDispatcher as Ft, getAgentAvatarImage as G, sendToAgent as Gt, findOrCreateDirectChat as H, resolveDefaultOrgId as Ht, disconnectClient as I, registerClient as It, getChatDetail as J, setChatEngagement as Jt, getCachedAudience as K, serverInstances as Kt, editMessage as L, removeParticipant as Lt, createMeChat as M, reactivateAgent as Mt, createNotifier as N, rebindAgent as Nt, clearAgentAvatarImage as O, notifyRecipients as Ot, deleteAgent as P, recomputeWatchersForMember as Pt, getPresence as Q, suspendAgent as Qt, ensureDefaultOrganization as R, renewEntry as Rt, checkAgentNameAvailability as S, listMyPinnedAgents as St, claimClient as T, markStaleAgents as Tt, getActivityOverview as U, retireClient as Ut, filterSessionsByParticipant as V, resolveChatTitle as Vt, getAgent as W, sendMessage as Wt, getOnlineCount as X, setRuntimeState as Xt, getClient as Y, setOffline as Yt, getOrganization as Z, submitAnswer as Zt, assertParticipant as _, listClients as _t, adapterAgentMappings as a, upsertSessionState as an, leaveChat as at, chatUserState as b, listMeChats as bt, addMeChatParticipants as c, listAgentSessions as ct, agentChatSessions as d, listAgentsManagedByUser as dt, touchAgent as en, heartbeatClient as et, agentConfigs as f, listAgentsWithRuntime as ft, assertClientOwner as g, listChatsForMember as gt, archiveSession as h, listChats as ht, ackEntryByIdForBoundAgents as i, updateOrganization as in, joinMeChat as it, createChat as j, pruneStaleSilentEntries as jt, clients as k, pendingQuestions as kt, addParticipant as l, listAgentsForAdmin as lt, agents as m, listChatParticipantsWithNames as mt, SUPPORTED_AVATAR_IMAGE_MIMES as n, updateAgent as nn, inboxEntries as nt, adapterConfigs as o, leaveMeChat as ot, agentPresence as p, listAllSessions as pt, getCallerEngagement as q, setAgentAvatarImage as qt, ackEntry as r, updateClientCapabilities as rn, joinChat as rt, addChatParticipants as s, listActiveAgentsPinnedToClient as st, MAX_AVATAR_IMAGE_BYTES as t, unbindAgent as tn, heartbeatInstance as tt, agentAvatarImageUrl as u, listAgentsForMember as ut, bindAgent as v, listClientsForOrgAdmin as vt, claimBacklogForPush as w, markMeChatUnread as wt, chats as x, listMessages as xt, chatMembership as y, listMeChatSourceCounts as yt, ensureParticipant as z, resetActivity as zt };
+export { heartbeatClient as $, unbindAgent as $t, createChat as A, pruneStaleSilentEntries as At, filterSessionsByParticipant as B, resolveDefaultOrgId as Bt, claimBacklogForPush as C, markMeChatUnread as Ct, clearAgentAvatarImage as D, notifyRecipients as Dt, cleanupStalePresence as E, messages as Et, disconnectClient as F, registerClient as Ft, getCachedAudience as G, setAgentAvatarImage as Gt, getActivityOverview as H, sendMessage as Ht, editMessage as I, removeParticipant as It, getClient as J, setRuntimeState as Jt, getCallerEngagement as K, setChatEngagement as Kt, ensureDefaultOrganization as L, resetActivity as Lt, createNotifier as M, rebindAgent as Mt, deleteAgent as N, recomputeWatchersForMember as Nt, clients as O, pendingQuestions as Ot, deriveAuthState as P, registerChatMessageDispatcher as Pt, getSession as Q, touchAgent as Qt, ensureParticipant as R, resetTimedOutEntries as Rt, claimAndBuildForPush as S, markMeChatRead as St, cleanupStaleClients as T, members as Tt, getAgent as U, sendToAgent as Ut, findOrCreateDirectChat as V, retireClient as Vt, getAgentAvatarImage as W, serverInstances as Wt, getOrganization as X, suspendAgent as Xt, getOnlineCount as Y, submitAnswer as Yt, getPresence as Z, suspendSession as Zt, bindAgent as _, listClientsForOrgAdmin as _t, adapterConfigs as a, leaveMeChat as at, chats as b, listMessages as bt, addParticipant as c, listAgentsForAdmin as ct, agentConfigs as d, listAgentsWithRuntime as dt, updateAgent as en, heartbeatInstance as et, agentPresence as f, listAllSessions as ft, assertParticipant as g, listClients as gt, assertClientOwner as h, listChatsForMember as ht, adapterAgentMappings as i, leaveChat as it, createMeChat as j, reactivateAgent as jt, createAgent as k, pollInbox as kt, agentAvatarImageUrl as l, listAgentsForMember as lt, archiveSession as m, listChats as mt, SUPPORTED_AVATAR_IMAGE_MIMES as n, updateOrganization as nn, joinChat as nt, addChatParticipants as o, listActiveAgentsPinnedToClient as ot, agents as p, listChatParticipantsWithNames as pt, getChatDetail as q, setOffline as qt, ackEntryByIdForBoundAgents as r, upsertSessionState as rn, joinMeChat as rt, addMeChatParticipants as s, listAgentSessions as st, MAX_AVATAR_IMAGE_BYTES as t, updateClientCapabilities as tn, inboxEntries as tt, agentChatSessions as u, listAgentsManagedByUser as ut, chatMembership as v, listMeChatSourceCounts as vt, claimClient as w, markStaleAgents as wt, checkAgentNameAvailability as x, listMyPinnedAgents as xt, chatUserState as y, listMeChats as yt, extractSummary as z, resolveChatTitle as zt };

package/dist/{client-CDw0f-kN-BPzOVd8L.mjs → client-q1EYQD1n-ypjoumIO.mjs} RENAMED Viewed

@@ -1,7 +1,7 @@
 import "./observability-BAScT_5S-BcW9HgkG.mjs";
 import "./logger-core-BTmvdflj-DjW8FM4T.mjs";
-import "./dist-DmYxT5Kb.mjs";
+import "./dist-CwsiHGX7.mjs";
 import "./uuid-DbS_4vFh-iFghv4zA.mjs";
 import "./src-DNBS5Yjj.mjs";
-import { St as listMyPinnedAgents } from "./client-CZ_VnbEc-CBF46cJd.mjs";
+import { xt as listMyPinnedAgents } from "./client-BSfCc0pJ-BP_1f21y.mjs";
 export { listMyPinnedAgents };

package/dist/{dist-DmYxT5Kb.mjs → dist-CwsiHGX7.mjs} RENAMED Viewed

@@ -803,9 +803,13 @@ z.object({
 * Optional opt-in flags the client carries on `client:register` to advertise
 * which negotiable wire-protocol features it implements. Distinct from
 * `clientCapabilitiesSchema` (per-runtime-provider availability — different
-* concept). Older clients omit the field; the server treats every unset flag
-* as `false` and falls back to the legacy path. See proposal
-* hub-inbox-ws-data-plane §3.6.
+* concept).
+*
+* 0.10.4 ~ 0.14.2 clients still send this block (with `wsInboxDeliver: true`
+* hard-coded). The 0.14.3+ runtime omits it. The schema is retained so that
+* middle-version `client:register` frames still parse, even though the
+* server no longer reads any of these fields — the WS inbox data plane is
+* mandatory on this server build.
 */
 const clientWireCapabilitiesSchema = z.object({ wsInboxDeliver: z.boolean().default(false) }).partial();
 const clientRegisterSchema = z.object({
@@ -1196,14 +1200,11 @@ z.object({
 }).extend({ message: clientMessageSchema });
 const inboxPollQuerySchema = z.object({ limit: z.coerce.number().int().min(1).max(50).default(10) });
 /**
-* server → client: a single inbox entry pushed over the active WS connection,
-* replacing the legacy `new_message` doorbell + HTTP `/inbox` poll round-trip.
+* server → client: a single inbox entry pushed over the active WS connection.
 *
 * `entryId` is the server-side `inbox_entries.id` the client must echo back
-* in `inbox:ack`. `message` is exactly what the legacy poll path returned —
-* `clientMessageSchema` already carries `precedingMessages`, so the client-
-* side dispatch logic is reused verbatim (see proposal
-* hub-inbox-ws-data-plane §3.1).
+* in `inbox:ack`. `clientMessageSchema` carries `precedingMessages`, so the
+* client-side dispatch logic handles the silent-context bundle uniformly.
 *
 * `.passthrough()` so a forward-rolling server may extend the frame without
 * breaking older clients that validate strictly. Older clients drop unknown
@@ -1217,8 +1218,7 @@ const inboxDeliverFrameSchema = z.object({
 	message: clientMessageSchema
 }).passthrough();
 /**
-* client → server: ack for an `inbox:deliver` frame. Replaces the legacy
-* `POST /inbox/:id/ack` HTTP endpoint when the WS data plane is active.
+* client → server: ack for an `inbox:deliver` frame.
 */
 const inboxAckFrameSchema = z.object({
 	type: z.literal("inbox:ack"),
@@ -1994,8 +1994,13 @@ const WS_AUTH_FRAME_TIMEOUT_MS = 5e3;
 /**
 * Negotiable wire-protocol features the server advertises in its `welcome`
 * frame. Older clients drop the `capabilities` field silently because the
-* frame is `.passthrough()`. New clients gate optional code paths on it —
-* absent ⇒ feature off, never assumed.
+* frame is `.passthrough()`.
+*
+* Required by clients in the 0.10.4 ~ 0.14.2 range: those builds read
+* `wsInboxDeliver` here to decide whether to skip the local HTTP poll loop
+* and rely on `inbox:deliver` push frames. The 0.14.3+ runtime ignores the
+* field (push is the only path) but the server still emits it so middle-
+* version clients keep working.
 */
 const serverCapabilitiesSchema = z.object({ wsInboxDeliver: z.boolean().default(false) }).partial();
 z.object({

package/dist/{feishu-CCWd-JE4.mjs → feishu-DHSy6WDD.mjs} RENAMED Viewed

@@ -1,6 +1,6 @@
 import { r as __exportAll } from "./chunk-BSw8zbkd.mjs";
 import { t as cliFetch } from "./cli-fetch--tiwKm5S.mjs";
-import { r as AGENT_SELECTOR_HEADER } from "./dist-DmYxT5Kb.mjs";
+import { r as AGENT_SELECTOR_HEADER } from "./dist-CwsiHGX7.mjs";
 //#region src/core/feishu.ts
 var feishu_exports = /* @__PURE__ */ __exportAll({
 	bindFeishuBot: () => bindFeishuBot,

package/dist/index.mjs CHANGED Viewed

@@ -1,12 +1,12 @@
 import "./observability-BAScT_5S-BcW9HgkG.mjs";
-import { A as checkDocker, B as isServiceSupported, E as checkAgentConfigs, F as checkWebSocket, G as uninstallClientService, H as restartClientService, I as printResults, J as stopPostgres, K as ensurePostgres, M as checkServerConfig, N as checkServerHealth, O as checkClientConfig, P as checkServerReachable, R as getClientServiceStatus, S as runHomeMigration, T as runMigrations, U as startClientService, V as resolveCliInvocation, W as stopClientService, X as handleClientOrgMismatch, Y as ClientRuntime, Z as rotateClientIdWithBackup, _ as formatCheckReport, b as onboardCreate, d as startServer, g as promptMissingFields, h as promptAddAgent, j as checkNodeVersion, k as checkDatabase, lt as FirstTreeHubSDK, m as isInteractive, n as deriveHubUrlFromToken, nt as hasUser, q as isDockerAvailable, t as HubUrlDerivationError, tt as createOwner, ut as SdkError, y as onboardCheck, z as installClientService } from "./saas-connect-DgCSZ8Yk.mjs";
+import { A as checkDocker, B as isServiceSupported, E as checkAgentConfigs, F as checkWebSocket, G as uninstallClientService, H as restartClientService, I as printResults, J as stopPostgres, K as ensurePostgres, M as checkServerConfig, N as checkServerHealth, O as checkClientConfig, P as checkServerReachable, R as getClientServiceStatus, S as runHomeMigration, T as runMigrations, U as startClientService, V as resolveCliInvocation, W as stopClientService, X as handleClientOrgMismatch, Y as ClientRuntime, Z as rotateClientIdWithBackup, _ as formatCheckReport, b as onboardCreate, d as startServer, g as promptMissingFields, h as promptAddAgent, j as checkNodeVersion, k as checkDatabase, lt as FirstTreeHubSDK, m as isInteractive, n as deriveHubUrlFromToken, nt as hasUser, q as isDockerAvailable, t as HubUrlDerivationError, tt as createOwner, ut as SdkError, y as onboardCheck, z as installClientService } from "./saas-connect-ChxZv2YQ.mjs";
 import "./logger-core-BTmvdflj-DjW8FM4T.mjs";
-import { a as ensureFreshAdminToken, c as resolveServerUrl, i as ensureFreshAccessToken, n as AuthRefreshRateLimitedError, s as resolveAccessToken, t as AuthRefreshFailedError } from "./bootstrap-C15ZBOCC.mjs";
+import { a as ensureFreshAdminToken, c as resolveServerUrl, i as ensureFreshAccessToken, n as AuthRefreshRateLimitedError, s as resolveAccessToken, t as AuthRefreshFailedError } from "./bootstrap-CQQGgIx1.mjs";
 import { i as blank, s as status } from "./cli-fetch--tiwKm5S.mjs";
-import "./dist-DmYxT5Kb.mjs";
-import { n as bindFeishuUser, t as bindFeishuBot } from "./feishu-CCWd-JE4.mjs";
+import "./dist-CwsiHGX7.mjs";
+import { n as bindFeishuUser, t as bindFeishuBot } from "./feishu-DHSy6WDD.mjs";
 import "./uuid-DbS_4vFh-iFghv4zA.mjs";
 import "./src-DNBS5Yjj.mjs";
-import "./client-CZ_VnbEc-CBF46cJd.mjs";
+import "./client-BSfCc0pJ-BP_1f21y.mjs";
 import "./invitation-D_ENPHyj-5ETiae5r.mjs";
 export { AuthRefreshFailedError, AuthRefreshRateLimitedError, ClientRuntime, FirstTreeHubSDK, HubUrlDerivationError, SdkError, bindFeishuBot, bindFeishuUser, blank, checkAgentConfigs, checkClientConfig, checkDatabase, checkDocker, checkNodeVersion, checkServerConfig, checkServerHealth, checkServerReachable, checkWebSocket, createOwner, deriveHubUrlFromToken, ensureFreshAccessToken, ensureFreshAdminToken, ensurePostgres, formatCheckReport, getClientServiceStatus, handleClientOrgMismatch, hasUser, installClientService, isDockerAvailable, isInteractive, isServiceSupported, onboardCheck, onboardCreate, printResults, promptAddAgent, promptMissingFields, resolveAccessToken, resolveCliInvocation, resolveServerUrl, restartClientService, rotateClientIdWithBackup, runHomeMigration, runMigrations, startClientService, startServer, status, stopClientService, stopPostgres, uninstallClientService };

package/dist/{invitation-C9m2gQx4-CkwWteA3.mjs → invitation-C9m2gQx4-BSErdb8x.mjs} RENAMED Viewed

@@ -1,4 +1,4 @@
-import "./dist-DmYxT5Kb.mjs";
+import "./dist-CwsiHGX7.mjs";
 import "./uuid-DbS_4vFh-iFghv4zA.mjs";
 import { s as previewInvitation } from "./invitation-D_ENPHyj-5ETiae5r.mjs";
 export { previewInvitation };

package/dist/{saas-connect-DgCSZ8Yk.mjs → saas-connect-ChxZv2YQ.mjs} RENAMED Viewed

@@ -1,11 +1,11 @@
 import { a as __toCommonJS, o as __toESM, t as __commonJSMin } from "./chunk-BSw8zbkd.mjs";
 import { A as FIRST_TREE_HUB_ATTR, C as stampOrgScope, D as untrustedAttrs, E as startWsConnectionSpan, M as require_pino, O as withSpan, S as stampChatResource, _ as rootLogger$1, a as buildRateLimitError, c as currentTraceId, g as reportErrorToRoot, i as bodyCaptureOnSendHook, j as redactUrl, k as withWsMessageSpan, l as decodeJwtForTrace, m as observabilityPlugin, n as applyLoggerConfig, o as classifyJoseError, r as attachRequestContext, s as createLogger$1, t as adapterAttrs, u as endWsConnectionSpan, x as stampAgentResource, y as setWsConnectionAttrs } from "./observability-BAScT_5S-BcW9HgkG.mjs";
-import { C as resetConfigMeta, E as setConfigValue, S as resetConfig, T as serverConfigSchema, b as migrateLegacyHome, c as resolveServerUrl, d as DEFAULT_CONFIG_DIR, f as DEFAULT_DATA_DIR$1, g as collectMissingPrompts, h as clientConfigSchema, i as ensureFreshAccessToken, l as saveAgentConfig, m as agentConfigSchema, o as loadCredentials, p as DEFAULT_HOME_DIR$1, u as saveCredentials, v as initConfig, w as resolveConfigReadonly, y as loadAgents } from "./bootstrap-C15ZBOCC.mjs";
+import { C as resetConfigMeta, E as setConfigValue, S as resetConfig, T as serverConfigSchema, b as migrateLegacyHome, c as resolveServerUrl, d as DEFAULT_CONFIG_DIR, f as DEFAULT_DATA_DIR$1, g as collectMissingPrompts, h as clientConfigSchema, i as ensureFreshAccessToken, l as saveAgentConfig, m as agentConfigSchema, o as loadCredentials, p as DEFAULT_HOME_DIR$1, u as saveCredentials, v as initConfig, w as resolveConfigReadonly, y as loadAgents } from "./bootstrap-CQQGgIx1.mjs";
 import { a as print, i as blank, n as CLI_USER_AGENT, r as COMMAND_VERSION, s as status, t as cliFetch } from "./cli-fetch--tiwKm5S.mjs";
-import { $ as listMeChatSourceCountsQuerySchema, A as createMeChatSchema, At as updateOrganizationSchema, B as githubAppInstallationClaimBodySchema, C as clientRegisterSchema, Ct as submitQuestionAnswerSchema, D as createAdapterMappingSchema, Dt as updateChatSchema, E as createAdapterConfigSchema, Et as updateAgentSchema, F as delegateFeishuUserSchema, G as imageInlineContentSchema, H as githubCallbackQuerySchema, I as dryRunAgentRuntimeConfigSchema, J as inboxPollQuerySchema, K as inboxAckFrameSchema, M as createOrgFromMeSchema, O as createAgentSchema, Ot as updateClientCapabilitiesSchema, Q as joinByInvitationSchema, R as getMeDocResponseSchema, T as contextTreeSnapshotSchema, Tt as updateAgentRuntimeConfigSchema, U as githubDevCallbackQuerySchema, V as githubAppInstallationPermissionsSchema$1, W as githubStartQuerySchema, X as isRedactedEnvValue, Y as isOrgSettingNamespace, _ as agentBindRequestSchema, _t as sendToAgentSchema, at as paginationQuerySchema, b as agentTypeSchema$1, bt as sessionReconcileRequestSchema, dt as refreshTokenSchema, et as listMeChatsQuerySchema, f as NOTIFICATION_TYPES, ft as runtimeStateMessageSchema, g as addParticipantSchema, gt as sendMessageSchema, h as addMeChatParticipantsSchema, ht as selfServiceFeishuBotSchema, i as AGENT_STATUSES, it as onboardingEventSchema, j as createMemberSchema, jt as wsAuthFrameSchema, k as createChatSchema, kt as updateMemberSchema, m as WS_AUTH_FRAME_TIMEOUT_MS, o as AGENT_VISIBILITY, ot as patchChatEngagementSchema, p as ORG_SETTINGS_NAMESPACES$1, pt as safeRedirectPath, q as inboxDeliverFrameSchema$1, r as AGENT_SELECTOR_HEADER$1, rt as notificationQuerySchema, s as CHAT_ENGAGEMENT_STATUSES, st as patchOnboardingSchema, t as AGENT_BIND_REJECT_REASONS, tt as loginSchema, ut as rebindAgentSchema, v as agentPinnedMessageSchema$1, vt as sessionEventMessageSchema, w as connectTokenExchangeSchema, wt as updateAdapterConfigSchema, x as chatMetadataSchema$1, xt as sessionStateMessageSchema, y as agentRuntimeConfigPayloadSchema$1, yt as sessionEventSchema$1, z as getMeDocSchema } from "./dist-DmYxT5Kb.mjs";
+import { $ as listMeChatSourceCountsQuerySchema, A as createMeChatSchema, At as updateOrganizationSchema, B as githubAppInstallationClaimBodySchema, C as clientRegisterSchema, Ct as submitQuestionAnswerSchema, D as createAdapterMappingSchema, Dt as updateChatSchema, E as createAdapterConfigSchema, Et as updateAgentSchema, F as delegateFeishuUserSchema, G as imageInlineContentSchema, H as githubCallbackQuerySchema, I as dryRunAgentRuntimeConfigSchema, J as inboxPollQuerySchema, K as inboxAckFrameSchema, M as createOrgFromMeSchema, O as createAgentSchema, Ot as updateClientCapabilitiesSchema, Q as joinByInvitationSchema, R as getMeDocResponseSchema, T as contextTreeSnapshotSchema, Tt as updateAgentRuntimeConfigSchema, U as githubDevCallbackQuerySchema, V as githubAppInstallationPermissionsSchema$1, W as githubStartQuerySchema, X as isRedactedEnvValue, Y as isOrgSettingNamespace, _ as agentBindRequestSchema, _t as sendToAgentSchema, at as paginationQuerySchema, b as agentTypeSchema$1, bt as sessionReconcileRequestSchema, dt as refreshTokenSchema, et as listMeChatsQuerySchema, f as NOTIFICATION_TYPES, ft as runtimeStateMessageSchema, g as addParticipantSchema, gt as sendMessageSchema, h as addMeChatParticipantsSchema, ht as selfServiceFeishuBotSchema, i as AGENT_STATUSES, it as onboardingEventSchema, j as createMemberSchema, jt as wsAuthFrameSchema, k as createChatSchema, kt as updateMemberSchema, m as WS_AUTH_FRAME_TIMEOUT_MS, o as AGENT_VISIBILITY, ot as patchChatEngagementSchema, p as ORG_SETTINGS_NAMESPACES$1, pt as safeRedirectPath, q as inboxDeliverFrameSchema$1, r as AGENT_SELECTOR_HEADER$1, rt as notificationQuerySchema, s as CHAT_ENGAGEMENT_STATUSES, st as patchOnboardingSchema, t as AGENT_BIND_REJECT_REASONS, tt as loginSchema, ut as rebindAgentSchema, v as agentPinnedMessageSchema$1, vt as sessionEventMessageSchema, w as connectTokenExchangeSchema, wt as updateAdapterConfigSchema, x as chatMetadataSchema$1, xt as sessionStateMessageSchema, y as agentRuntimeConfigPayloadSchema$1, yt as sessionEventSchema$1, z as getMeDocSchema } from "./dist-CwsiHGX7.mjs";
 import { a as ClientUserMismatchError$1, c as NotFoundError, d as users, f as uuidv7, i as ClientOrgMismatchError$1, l as UnauthorizedError, n as AppError, o as ConflictError, r as BadRequestError, s as ForbiddenError, u as organizations } from "./uuid-DbS_4vFh-iFghv4zA.mjs";
 import { n as init_esm, r as trace, t as esm_exports } from "./esm-iadMkGbV.mjs";
-import { $ as getSession, $t as suspendSession, A as createAgent, At as pollInbox, B as extractSummary, Bt as resetTimedOutEntries, C as claimAndBuildForPush, Ct as markMeChatRead, D as cleanupStalePresence, Dt as messages, E as cleanupStaleClients, Et as members, F as deriveAuthState, Ft as registerChatMessageDispatcher, G as getAgentAvatarImage, Gt as sendToAgent$1, H as findOrCreateDirectChat, Ht as resolveDefaultOrgId$1, I as disconnectClient, It as registerClient, J as getChatDetail, Jt as setChatEngagement, K as getCachedAudience, Kt as serverInstances, L as editMessage, Lt as removeParticipant, M as createMeChat, Mt as reactivateAgent, N as createNotifier, Nt as rebindAgent, O as clearAgentAvatarImage, Ot as notifyRecipients, P as deleteAgent, Pt as recomputeWatchersForMember, Q as getPresence, Qt as suspendAgent, R as ensureDefaultOrganization, Rt as renewEntry, S as checkAgentNameAvailability, T as claimClient, Tt as markStaleAgents, U as getActivityOverview, Ut as retireClient, V as filterSessionsByParticipant, Vt as resolveChatTitle, W as getAgent, Wt as sendMessage, X as getOnlineCount, Xt as setRuntimeState, Y as getClient, Yt as setOffline, Z as getOrganization, Zt as submitAnswer, _ as assertParticipant, _t as listClients, a as adapterAgentMappings, an as upsertSessionState, at as leaveChat, b as chatUserState, bt as listMeChats, c as addMeChatParticipants, ct as listAgentSessions, d as agentChatSessions, dt as listAgentsManagedByUser, en as touchAgent, et as heartbeatClient, f as agentConfigs, ft as listAgentsWithRuntime, g as assertClientOwner, gt as listChatsForMember, h as archiveSession, ht as listChats, i as ackEntryByIdForBoundAgents, in as updateOrganization, it as joinMeChat, j as createChat, jt as pruneStaleSilentEntries, k as clients, kt as pendingQuestions, l as addParticipant, lt as listAgentsForAdmin, m as agents, mt as listChatParticipantsWithNames, n as SUPPORTED_AVATAR_IMAGE_MIMES, nn as updateAgent, nt as inboxEntries, o as adapterConfigs, ot as leaveMeChat, p as agentPresence, pt as listAllSessions, q as getCallerEngagement, qt as setAgentAvatarImage, r as ackEntry$2, rn as updateClientCapabilities, rt as joinChat, s as addChatParticipants, st as listActiveAgentsPinnedToClient, t as MAX_AVATAR_IMAGE_BYTES, tn as unbindAgent, tt as heartbeatInstance, u as agentAvatarImageUrl, ut as listAgentsForMember, v as bindAgent, vt as listClientsForOrgAdmin, w as claimBacklogForPush, wt as markMeChatUnread, x as chats, xt as listMessages, y as chatMembership, yt as listMeChatSourceCounts, z as ensureParticipant, zt as resetActivity } from "./client-CZ_VnbEc-CBF46cJd.mjs";
+import { $ as heartbeatClient, $t as unbindAgent, A as createChat, At as pruneStaleSilentEntries, B as filterSessionsByParticipant, Bt as resolveDefaultOrgId$1, C as claimBacklogForPush, Ct as markMeChatUnread, D as clearAgentAvatarImage, Dt as notifyRecipients, E as cleanupStalePresence, Et as messages, F as disconnectClient, Ft as registerClient, G as getCachedAudience, Gt as setAgentAvatarImage, H as getActivityOverview, Ht as sendMessage, I as editMessage, It as removeParticipant, J as getClient, Jt as setRuntimeState, K as getCallerEngagement, Kt as setChatEngagement, L as ensureDefaultOrganization, Lt as resetActivity, M as createNotifier, Mt as rebindAgent, N as deleteAgent, Nt as recomputeWatchersForMember, O as clients, Ot as pendingQuestions, P as deriveAuthState, Pt as registerChatMessageDispatcher, Q as getSession, Qt as touchAgent, R as ensureParticipant, Rt as resetTimedOutEntries, S as claimAndBuildForPush, St as markMeChatRead, T as cleanupStaleClients, Tt as members, U as getAgent, Ut as sendToAgent$1, V as findOrCreateDirectChat, Vt as retireClient, W as getAgentAvatarImage, Wt as serverInstances, X as getOrganization, Xt as suspendAgent, Y as getOnlineCount, Yt as submitAnswer, Z as getPresence, Zt as suspendSession, _ as bindAgent, _t as listClientsForOrgAdmin, a as adapterConfigs, at as leaveMeChat, b as chats, bt as listMessages, c as addParticipant, ct as listAgentsForAdmin, d as agentConfigs, dt as listAgentsWithRuntime, en as updateAgent, et as heartbeatInstance, f as agentPresence, ft as listAllSessions, g as assertParticipant, gt as listClients, h as assertClientOwner, ht as listChatsForMember, i as adapterAgentMappings, it as leaveChat, j as createMeChat, jt as reactivateAgent, k as createAgent, kt as pollInbox, l as agentAvatarImageUrl, lt as listAgentsForMember, m as archiveSession, mt as listChats, n as SUPPORTED_AVATAR_IMAGE_MIMES, nn as updateOrganization, nt as joinChat, o as addChatParticipants, ot as listActiveAgentsPinnedToClient, p as agents, pt as listChatParticipantsWithNames, q as getChatDetail, qt as setOffline, r as ackEntryByIdForBoundAgents, rn as upsertSessionState, rt as joinMeChat, s as addMeChatParticipants, st as listAgentSessions, t as MAX_AVATAR_IMAGE_BYTES, tn as updateClientCapabilities, tt as inboxEntries, u as agentChatSessions, ut as listAgentsManagedByUser, v as chatMembership, vt as listMeChatSourceCounts, w as claimClient, wt as markStaleAgents, x as checkAgentNameAvailability, y as chatUserState, yt as listMeChats, z as extractSummary, zt as resolveChatTitle } from "./client-BSfCc0pJ-BP_1f21y.mjs";
 import { a as invitationRedemptions, c as recordRedemption, i as getActiveInvitation, l as rotateInvitation, n as ensureActiveInvitation, o as invitations, r as findActiveByToken, t as buildInviteUrl } from "./invitation-D_ENPHyj-5ETiae5r.mjs";
 import { createRequire } from "node:module";
 import { ZodError, z } from "zod";
@@ -887,9 +887,13 @@ z.object({
 * Optional opt-in flags the client carries on `client:register` to advertise
 * which negotiable wire-protocol features it implements. Distinct from
 * `clientCapabilitiesSchema` (per-runtime-provider availability — different
-* concept). Older clients omit the field; the server treats every unset flag
-* as `false` and falls back to the legacy path. See proposal
-* hub-inbox-ws-data-plane §3.6.
+* concept).
+*
+* 0.10.4 ~ 0.14.2 clients still send this block (with `wsInboxDeliver: true`
+* hard-coded). The 0.14.3+ runtime omits it. The schema is retained so that
+* middle-version `client:register` frames still parse, even though the
+* server no longer reads any of these fields — the WS inbox data plane is
+* mandatory on this server build.
 */
 const clientWireCapabilitiesSchema = z.object({ wsInboxDeliver: z.boolean().default(false) }).partial();
 z.object({
@@ -1114,8 +1118,8 @@ z.object({
 });
 /**
 * Server → client WS frame carrying the full image bytes for an image
-* message. Pushed before the corresponding `new_message` notification so
-* the client has the file on disk by the time it polls the message.
+* message. Pushed before the corresponding `inbox:deliver` frame so the
+* client has the file on disk by the time it renders the message.
 *
 * Best-effort: if the target client WS lives on a different server
 * instance (or is offline), the frame is lost and the reference message
@@ -1276,14 +1280,11 @@ z.object({
 }).extend({ message: clientMessageSchema });
 z.object({ limit: z.coerce.number().int().min(1).max(50).default(10) });
 /**
-* server → client: a single inbox entry pushed over the active WS connection,
-* replacing the legacy `new_message` doorbell + HTTP `/inbox` poll round-trip.
+* server → client: a single inbox entry pushed over the active WS connection.
 *
 * `entryId` is the server-side `inbox_entries.id` the client must echo back
-* in `inbox:ack`. `message` is exactly what the legacy poll path returned —
-* `clientMessageSchema` already carries `precedingMessages`, so the client-
-* side dispatch logic is reused verbatim (see proposal
-* hub-inbox-ws-data-plane §3.1).
+* in `inbox:ack`. `clientMessageSchema` carries `precedingMessages`, so the
+* client-side dispatch logic handles the silent-context bundle uniformly.
 *
 * `.passthrough()` so a forward-rolling server may extend the frame without
 * breaking older clients that validate strictly. Older clients drop unknown
@@ -2015,8 +2016,13 @@ z.object({
 /**
 * Negotiable wire-protocol features the server advertises in its `welcome`
 * frame. Older clients drop the `capabilities` field silently because the
-* frame is `.passthrough()`. New clients gate optional code paths on it —
-* absent ⇒ feature off, never assumed.
+* frame is `.passthrough()`.
+*
+* Required by clients in the 0.10.4 ~ 0.14.2 range: those builds read
+* `wsInboxDeliver` here to decide whether to skip the local HTTP poll loop
+* and rely on `inbox:deliver` push frames. The 0.14.3+ runtime ignores the
+* field (push is the only path) but the server still emits it so middle-
+* version clients keep working.
 */
 const serverCapabilitiesSchema = z.object({ wsInboxDeliver: z.boolean().default(false) }).partial();
 /**
@@ -2145,13 +2151,6 @@ defineConfig({
 		refreshTokenExpiry: field(z.string().default("30d"), { env: "FIRST_TREE_HUB_AUTH_REFRESH_TOKEN_EXPIRY" }),
 		connectTokenExpiry: field(z.string().default("10m"), { env: "FIRST_TREE_HUB_AUTH_CONNECT_TOKEN_EXPIRY" })
 	},
-	contextTreeSync: optional({
-		githubToken: field(z.string(), {
-			env: "FIRST_TREE_HUB_CONTEXT_TREE_GITHUB_TOKEN",
-			secret: true
-		}),
-		githubTokenRepos: field(z.string().optional(), { env: "FIRST_TREE_HUB_CONTEXT_TREE_GITHUB_TOKEN_REPOS" })
-	}),
 	oauth: optional({ githubApp: optional({
 		appId: field(z.string().min(1), { env: "FIRST_TREE_HUB_GITHUB_APP_ID" }),
 		clientId: field(z.string().min(1), { env: "FIRST_TREE_HUB_GITHUB_APP_CLIENT_ID" }),
@@ -2407,15 +2406,6 @@ var FirstTreeHubSDK = class {
 			return false;
 		}
 	}
-	async pull(limit = 10) {
-		return { entries: await this.requestJson(`/api/v1/agent/inbox?limit=${limit}`) };
-	}
-	async ack(entryId) {
-		await this.requestVoid(`/api/v1/agent/inbox/${entryId}/ack`, { method: "POST" });
-	}
-	async renew(entryId) {
-		await this.requestVoid(`/api/v1/agent/inbox/${entryId}/renew`, { method: "POST" });
-	}
 	async sendMessage(chatId, data) {
 		return this.requestJson(`/api/v1/agent/chats/${chatId}/messages`, {
 			method: "POST",
@@ -2583,17 +2573,6 @@ const RECONNECT_MAX_MS = 3e4;
 const WS_CONNECT_TIMEOUT_MS = 1e4;
 const HEARTBEAT_INTERVAL_MS = 3e4;
 /**
-* Client-side opt-in for the WS inbox data plane. Gates BOTH the
-* `wireCapabilities.wsInboxDeliver` flag we declare on `client:register`
-* AND how we interpret the server's welcome capability — without this AND,
-* a future client kill-switch could land in a half-state where we tell the
-* server "no thanks" but still treat welcome's `wsInboxDeliver:true` as
-* authoritative and stop the 5s HTTP poll, leaving messages stuck if a
-* NOTIFY ever drops. Hard-coded `true` for now; flip to a config knob if
-* you need a runtime kill-switch.
-*/
-const WS_INBOX_DELIVER_OPT_IN = true;
-/**
 * Unified-user-token C5: reconnect PROACTIVELY this many ms before the JWT's
 * `exp` claim so the client rotates to a fresh JWT without ever hitting the
 * server-side `auth:expired` push. The provider's next `getAccessToken()` call
@@ -2653,15 +2632,6 @@ var ClientConnection = class extends EventEmitter {
 	/** Count of `server:welcome` frames received; drives `isReconnect` flag. */
 	welcomeFramesReceived = 0;
 	/**
-	* Whether the most recent `server:welcome` frame advertised
-	* `capabilities.wsInboxDeliver`. The runtime (AgentSlot) reads this
-	* (via {@link supportsWsInboxDeliver}) to decide whether to keep the
-	* legacy 5s HTTP poll or rely entirely on `inbox:deliver` push frames.
-	* Re-evaluated on every reconnect — the welcome frame is the source of
-	* truth, never assumed sticky across connections.
-	*/
-	wsInboxDeliverActive = false;
-	/**
 	* Last handshake error, stashed for the `close` handler to surface a typed
 	* reason (e.g. {@link ClientOrgMismatchError}) instead of a generic
 	* "closed before ready" when `connect()` is pending.
@@ -2674,11 +2644,11 @@ var ClientConnection = class extends EventEmitter {
 	desiredBindings = /* @__PURE__ */ new Map();
 	pendingBinds = /* @__PURE__ */ new Map();
 	/**
-	* In-flight image writes from recent `image_payload` frames. The server
-	* pushes `image_payload` immediately before firing the `new_message`
-	* notification, but WS message handlers run through EventEmitter (sync
-	* dispatch, no await), so the disk write can still race the HTTP poll
-	* that follows. Defer `new_message` emission until these settle.
+	* In-flight image writes from recent `image_payload` frames. `image_payload`
+	* arrives on the WS just before `inbox:deliver` for the same message, but
+	* the EventEmitter dispatch is sync — so without gating, the deliver
+	* handler can fire before the image bytes hit disk. Block `inbox:deliver`
+	* emission until these settle.
 	*/
 	pendingImageWrites = /* @__PURE__ */ new Set();
 	constructor(config) {
@@ -2699,24 +2669,21 @@ var ClientConnection = class extends EventEmitter {
 		return this.boundAgents;
 	}
 	/**
-	* True when the current connection's `server:welcome` advertised
-	* `capabilities.wsInboxDeliver` — meaning the server will push
-	* `inbox:deliver` frames and accept `inbox:ack` frames over this WS.
-	* Resets to false on every reconnect until the new welcome arrives.
-	*/
-	get supportsWsInboxDeliver() {
-		return this.wsInboxDeliverActive;
-	}
-	/**
-	* Ack a delivered inbox entry over the WS data plane. Replaces the legacy
-	* `sdk.ack()` HTTP call when the connection has negotiated
-	* `wsInboxDeliver`. Safe to call when the WS is closed — the frame is
-	* dropped silently and the entry will time out and re-deliver on
-	* reconnect, mirroring how the legacy timeout reaper handles HTTP
-	* ack-loss.
+	* Ack a delivered inbox entry over the WS data plane. Safe to call when the
+	* WS is closed — the frame is dropped (logged) and the entry will time out
+	* server-side and re-deliver on reconnect. The handler has by then already
+	* started processing, so reaper-driven redelivery surfaces as a duplicate
+	* dispatch on the next connect; SessionManager's dedupe key
+	* `(chatId, messageId)` collapses it.
 	*/
 	sendInboxAck(entryId) {
-		if (!this.ws || this.ws.readyState !== WebSocket.OPEN) return;
+		if (!this.ws || this.ws.readyState !== WebSocket.OPEN) {
+			this.wsLogger.warn({
+				entryId,
+				readyState: this.ws?.readyState
+			}, "inbox:ack dropped — socket not OPEN");
+			return;
+		}
 		this.ws.send(JSON.stringify({
 			type: "inbox:ack",
 			entryId
@@ -2873,7 +2840,6 @@ var ClientConnection = class extends EventEmitter {
 				this.clearAuthRefreshTimer();
 				const wasRegistered = this.registered;
 				this.registered = false;
-				this.wsInboxDeliverActive = false;
 				this.rejectAllPendingBinds("WebSocket closed");
 				if (!settled) {
 					this.wsLogger.warn({ code }, "closed before ready");
@@ -2909,8 +2875,7 @@ var ClientConnection = class extends EventEmitter {
 				clientId: this.clientId,
 				hostname: hostname(),
 				os: platform(),
-				sdkVersion: this.sdkVersion,
-				wireCapabilities: { wsInboxDeliver: WS_INBOX_DELIVER_OPT_IN }
+				sdkVersion: this.sdkVersion
 			}));
 			return;
 		}
@@ -2920,7 +2885,6 @@ var ClientConnection = class extends EventEmitter {
 				this.wsLogger.warn({ issues: parsed.error.issues.map((i) => i.message) }, "ignoring malformed server:welcome frame");
 				return;
 			}
-			this.wsInboxDeliverActive = parsed.data.capabilities?.wsInboxDeliver === true && WS_INBOX_DELIVER_OPT_IN;
 			const isReconnect = this.welcomeFramesReceived > 0;
 			this.welcomeFramesReceived++;
 			this.emit("server:welcome", {
@@ -3058,15 +3022,6 @@ var ClientConnection = class extends EventEmitter {
 			write.finally(() => this.pendingImageWrites.delete(write));
 			return;
 		}
-		if (type === "new_message") {
-			const inboxId = msg.inboxId;
-			if (!inboxId) return;
-			if (this.pendingImageWrites.size > 0) Promise.all([...this.pendingImageWrites]).finally(() => {
-				this.emit("agent:message", inboxId, msg);
-			});
-			else this.emit("agent:message", inboxId, msg);
-			return;
-		}
 		if (type === "inbox:deliver") {
 			const parsed = inboxDeliverFrameSchema.safeParse(msg);
 			if (!parsed.success) {
@@ -6812,18 +6767,13 @@ var SessionManager = class {
 		this.config.onStateChange(chatId, state);
 	}
 	/**
-	* ACK an inbox entry — delayed until handler starts processing.
-	*
-	* Routes through `config.ackEntry` when set (WS push path) or falls back to
-	* `sdk.ack` (HTTP poll path). One ack per entry, one channel per slot —
-	* mixing channels in one slot would leak the server's per-agent in-flight
-	* counter (proposal hub-inbox-ws-data-plane §3.5).
+	* ACK an inbox entry — delayed until handler starts processing. Routes
+	* through `config.ackEntry`, which is wired to the WS data plane.
 	*/
 	async ackEntry(entryId, chatId) {
 		if (entryId === void 0) return;
 		try {
-			if (this.config.ackEntry) await this.config.ackEntry(entryId);
-			else await this.config.sdk.ack(entryId);
+			await this.config.ackEntry(entryId);
 		} catch {
 			this.config.log.warn({
 				chatId,
@@ -6976,9 +6926,7 @@ var AgentSlot = class {
 	sessionManager = null;
 	config;
 	logger;
-	sdk = null;
 	agentConfigCache = null;
-	pollingTimer = null;
 	reconcileTimer = null;
 	listeners = [];
 	/**
@@ -7016,7 +6964,6 @@ var AgentSlot = class {
 	}
 	async start(contextTreeBinding) {
 		const sdk = (await this.clientConnection.bindAgent(this.config.agentId, this.config.runtimeType ?? this.config.type, this.config.runtimeVersion)).sdk;
-		this.sdk = sdk;
 		const agent = await sdk.register();
 		this.logger.info({ displayName: agent.displayName }, "agent bound");
 		if (agent.type === "human") {
@@ -7036,9 +6983,6 @@ var AgentSlot = class {
 			throw new Error(`Hub unreachable while loading agent config: ${msg}`);
 		}
 		this.inboxId = agent.inboxId;
-		const onMessage = (agentId) => {
-			if (agentId === this.config.agentId) this.pullAndDispatch();
-		};
 		const onInboxDeliver = (inboxId, frame) => {
 			if (inboxId !== this.inboxId) return;
 			this.dispatchPushedFrame(frame).catch((err) => {
@@ -7057,14 +7001,10 @@ var AgentSlot = class {
 		const onReconcileResult = (result) => {
 			if (result.agentId === this.config.agentId && this.sessionManager) this.sessionManager.applyStaleChatIds(result.staleChatIds);
 		};
-		this.clientConnection.on("agent:message", onMessage);
 		this.clientConnection.on("inbox:deliver", onInboxDeliver);
 		this.clientConnection.on("agent:bound", onBound);
 		this.clientConnection.on("session:reconcile:result", onReconcileResult);
 		this.listeners.push({
-			event: "agent:message",
-			fn: onMessage
-		}, {
 			event: "inbox:deliver",
 			fn: onInboxDeliver
 		}, {
@@ -7082,10 +7022,10 @@ var AgentSlot = class {
 				agentId: this.config.agentId
 			})
 		});
-		const ackEntry = this.clientConnection.supportsWsInboxDeliver ? (entryId) => {
+		const ackEntry = (entryId) => {
 			this.clientConnection.sendInboxAck(entryId);
 			return Promise.resolve();
-		} : void 0;
+		};
 		this.sessionManager = new SessionManager({
 			session: this.config.session,
 			concurrency: this.config.concurrency,
@@ -7128,24 +7068,15 @@ var AgentSlot = class {
 			event: "session:command",
 			fn: onCommand
 		});
-		this.startPolling();
 		this.startReconcileLoop();
 		return agent;
 	}
 	async stop() {
-		if (this.pollingTimer) {
-			clearInterval(this.pollingTimer);
-			this.pollingTimer = null;
-		}
 		if (this.reconcileTimer) {
 			clearInterval(this.reconcileTimer);
 			this.reconcileTimer = null;
 		}
-		for (const entry of this.listeners) if (entry.event === "agent:message") this.clientConnection.off(entry.event, entry.fn);
-		else if (entry.event === "inbox:deliver") this.clientConnection.off(entry.event, entry.fn);
-		else if (entry.event === "agent:bound") this.clientConnection.off(entry.event, entry.fn);
-		else if (entry.event === "session:reconcile:result") this.clientConnection.off(entry.event, entry.fn);
-		else this.clientConnection.off(entry.event, entry.fn);
+		for (const entry of this.listeners) this.clientConnection.off(entry.event, entry.fn);
 		this.listeners = [];
 		await this.clientConnection.unbindAgent(this.config.agentId);
 		await this.sessionManager?.shutdown();
@@ -7166,31 +7097,18 @@ var AgentSlot = class {
 		const runtimeState = this.sessionManager.getAggregateRuntimeState();
 		if (runtimeState) this.clientConnection.reportRuntimeState(this.config.agentId, runtimeState);
 	}
-	startPolling() {
-		if (this.clientConnection.supportsWsInboxDeliver) {
-			this.logger.info("WS inbox data plane active — skipping 5s HTTP poll");
-			return;
-		}
-		this.pollingTimer = setInterval(() => {
-			this.pullAndDispatch();
-		}, 5e3);
-		this.pullAndDispatch();
-	}
 	/**
 	* Translate an `inbox:deliver` push frame into the {@link InboxEntryWithMessage}
 	* shape `SessionManager.dispatch` expects, then dispatch.
 	*
 	* Ack happens INSIDE `dispatch` via the `ackEntry` callback we pinned at
-	* construction time — for push slots that's `clientConnection.sendInboxAck`,
-	* for poll slots it stays the legacy `sdk.ack`. Sending an additional ack
-	* here would double-ack: HTTP first (`delivered → acked`) followed by a
-	* WS frame the server can no longer match against any `delivered` row,
-	* which leaks the server's per-agent in-flight counter and stalls push
-	* after `inboxMaxInFlightPerAgent` messages.
+	* construction time — `clientConnection.sendInboxAck`. Sending an additional
+	* ack here would double-ack: a WS frame the server cannot match against any
+	* `delivered` row, which leaks the server's per-agent in-flight counter and
+	* stalls push after `inboxMaxInFlightPerAgent` messages.
 	*
 	* Dispatch errors propagate up; the entry stays `delivered` server-side
-	* and the 300s timeout reaper rolls it back to `pending` for replay
-	* (proposal §3.7).
+	* and the 300s timeout reaper rolls it back to `pending` for replay.
 	*/
 	async dispatchPushedFrame(frame) {
 		if (!this.sessionManager) return;
@@ -7218,15 +7136,6 @@ var AgentSlot = class {
 		if (chatIds.length === 0) return;
 		this.clientConnection.sendSessionReconcile(this.config.agentId, chatIds);
 	}
-	async pullAndDispatch() {
-		if (!this.sdk || !this.sessionManager) return;
-		try {
-			const { entries } = await this.sdk.pull(10);
-			for (const entry of entries) await this.sessionManager.dispatch(entry);
-		} catch (err) {
-			this.logger.warn({ err }, "poll error");
-		}
-	}
 };
 /**
 * Top-level marker file Claude Code writes after a successful OAuth login.
@@ -9853,7 +9762,7 @@ async function onboardCreate(args) {
 	}
 	const runtimeAgent = args.type === "human" ? args.assistant : args.id;
 	if (args.feishuBotAppId && args.feishuBotAppSecret) {
-		const { bindFeishuBot } = await import("./feishu-CCWd-JE4.mjs").then((n) => n.r);
+		const { bindFeishuBot } = await import("./feishu-DHSy6WDD.mjs").then((n) => n.r);
 		const targetAgentUuid = args.type === "human" ? assistantUuid : primary.uuid;
 		if (!targetAgentUuid) print.line(`Warning: Cannot bind Feishu bot — no runtime agent available for "${args.id}".\n`);
 		else {
@@ -11066,7 +10975,7 @@ function createFeedbackHandler(config) {
 	return { handle };
 }
 //#endregion
-//#region ../server/dist/app-Cv337jed.mjs
+//#region ../server/dist/app-z2-jRXbZ.mjs
 var import_fastify_opentelemetry = /* @__PURE__ */ __toESM(require_fastify_opentelemetry(), 1);
 init_esm();
 var __defProp = Object.defineProperty;
@@ -11844,18 +11753,6 @@ async function agentInboxRoutes(app) {
 		const query = inboxPollQuerySchema.parse(request.query);
 		return await pollInbox(app.db, identity.inboxId, query.limit);
 	});
-	app.post("/:entryId/ack", async (request, reply) => {
-		const identity = requireAgent(request);
-		const entryId = Number(request.params.entryId);
-		await ackEntry$2(app.db, entryId, identity.inboxId);
-		return reply.status(204).send();
-	});
-	app.post("/:entryId/renew", async (request, reply) => {
-		const identity = requireAgent(request);
-		const entryId = Number(request.params.entryId);
-		await renewEntry(app.db, entryId, identity.inboxId);
-		return reply.status(204).send();
-	});
 }
 async function agentMeRoutes(app) {
 	app.get("/me", async (request) => {
@@ -11887,11 +11784,11 @@ async function agentMeRoutes(app) {
 *      {imageId, mimeType, filename, size}
 *
 * The push is fire-and-forget: `ws.send()` queues the frame into the socket's
-* send buffer synchronously, which is the only ordering guarantee we need
-* — the subsequent `new_message` notification travels a strictly slower PG
-* NOTIFY round trip, so the image lands first on the wire. Awaiting the TCP
-* flush here would put a slow subscriber's backpressure on the sender's
-* HTTP response for a feature that is already best-effort.
+* send buffer synchronously, which is the only ordering guarantee we need —
+* the subsequent `inbox:deliver` frame is driven by a PG NOTIFY round trip,
+* so the image lands first on the wire. Awaiting the TCP flush here would
+* put a slow subscriber's backpressure on the sender's HTTP response for a
+* feature that is already best-effort.
 *
 * Non-image messages are returned unchanged. Missing-subscriber / wrong-
 * instance cases are acceptable loss per the image-out-of-messages design
@@ -12588,8 +12485,7 @@ async function summarizeContextTreeUsage(db, organizationId, windowDays) {
 /**
 * Default per-agent in-flight cap when `server.inbox.maxInFlightPerAgent` is
 * unset. Mirrors the schema default so a hub running without an explicit
-* `inbox` block still gets reasonable backpressure once `wsDataPlane` is
-* flipped on. See proposal hub-inbox-ws-data-plane §3.5.
+* `inbox` block still gets reasonable backpressure.
 */
 const DEFAULT_INBOX_MAX_IN_FLIGHT_PER_AGENT = 32;
 /**
@@ -12634,23 +12530,12 @@ function clientWsRoutes(notifier, instanceId) {
 			let authExpiryTimer = null;
 			const boundAgents = /* @__PURE__ */ new Map();
 			/**
-			* Whether the connected client opted into the WS inbox data plane via
-			* `client:register.wireCapabilities.wsInboxDeliver`. Set per-socket
-			* because client SDKs are upgraded independently — an old client
-			* connecting to a new server must keep receiving the legacy
-			* `new_message` doorbell + HTTP poll path (proposal §3.6).
-			*/
-			let clientWantsWsInboxDeliver = false;
-			/**
 			* Per-agent in-flight `inbox:deliver` counter for backpressure. Lives on
 			* the socket — when the WS closes it goes with it; that's intentional,
 			* because re-counting on a fresh connection would bias the cap against
-			* a healthy reconnect (proposal §3.5).
+			* a healthy reconnect.
 			*/
 			const inboxInFlight = /* @__PURE__ */ new Map();
-			function pushUseWsDataPlane() {
-				return clientWantsWsInboxDeliver;
-			}
 			/**
 			* Returns `false` when the socket has already moved out of `OPEN` —
 			* the only failure mode the caller can observe synchronously.
@@ -12893,7 +12778,6 @@ function clientWsRoutes(notifier, instanceId) {
 					try {
 						if (type === "client:register") {
 							const data = clientRegisterSchema.parse(msg);
-							clientWantsWsInboxDeliver = data.wireCapabilities?.wsInboxDeliver === true;
 							let placeholderOrgId = jwtDefaultOrgId;
 							if (!placeholderOrgId) {
 								const [m] = await app.db.select({ organizationId: members.organizationId }).from(members).where(and(eq(members.userId, session.userId), eq(members.status, "active"))).orderBy(desc(members.createdAt), desc(members.id)).limit(1);
@@ -13031,9 +12915,7 @@ function clientWsRoutes(notifier, instanceId) {
 								inboxId: agent.inboxId,
 								organizationId: agent.organizationId
 							});
-							const wsPushActive = pushUseWsDataPlane();
-							if (wsPushActive) notifier.subscribe(agent.inboxId, socket, makeInboxPushHandler(agent.id, agent.inboxId));
-							else notifier.subscribe(agent.inboxId, socket);
+							notifier.subscribe(agent.inboxId, socket, makeInboxPushHandler(agent.id, agent.inboxId));
 							socket.send(JSON.stringify({
 								type: "agent:bound",
 								ref,
@@ -13041,7 +12923,7 @@ function clientWsRoutes(notifier, instanceId) {
 								displayName: agent.displayName,
 								agentType: agent.type
 							}));
-							if (wsPushActive) drainBacklogForAgent(agent.id, agent.inboxId).catch((err) => {
+							drainBacklogForAgent(agent.id, agent.inboxId).catch((err) => {
 								app.log.error({
 									err,
 									agentId: agent.id
@@ -13162,6 +13044,14 @@ function clientWsRoutes(notifier, instanceId) {
 						} else if (type === "inbox:ack") {
 							const payloadResult = inboxAckFrameSchema.safeParse(msg);
 							if (!payloadResult.success) {
+								app.log.warn({
+									clientId,
+									issues: payloadResult.error.issues.map((i) => ({
+										path: i.path.join("."),
+										code: i.code,
+										message: i.message
+									}))
+								}, "malformed inbox:ack frame — replying error");
 								socket.send(JSON.stringify({
 									type: "error",
 									message: "Malformed inbox:ack frame"
@@ -13171,7 +13061,14 @@ function clientWsRoutes(notifier, instanceId) {
 							const { entryId } = payloadResult.data;
 							try {
 								const ackedEntry = await ackEntryByIdForBoundAgents(app.db, entryId, [...boundAgents.values()].map((a) => a.inboxId));
-								if (!ackedEntry) return;
+								if (!ackedEntry) {
+									app.log.debug({
+										clientId,
+										entryId,
+										boundInboxes: boundAgents.size
+									}, "inbox:ack matched no row — stale ack or reaper race");
+									return;
+								}
 								const owner = [...boundAgents.values()].find((a) => a.inboxId === ackedEntry.inboxId);
 								if (owner) {
 									inboxInFlight.set(owner.agentId, Math.max(0, (inboxInFlight.get(owner.agentId) ?? 1) - 1));
@@ -13859,6 +13756,7 @@ const APP_JWT_EXPIRY = "9m";
 * caller's side; the docs recommend 60 seconds. We mirror that.
 */
 const APP_JWT_IAT_SKEW_SECONDS = 60;
+const APP_INSTALLATION_TOKEN_URL = (id) => `https://api.github.com/app/installations/${id}/access_tokens`;
 const APP_INSTALLATION_URL = (id) => `https://api.github.com/app/installations/${id}`;
 const OAUTH_TOKEN_URL = "https://github.com/login/oauth/access_token";
 const OAUTH_AUTHORIZE_URL = "https://github.com/login/oauth/authorize";
@@ -13963,6 +13861,39 @@ async function listUserAccessibleInstallationIds(userAccessToken, opts = {}) {
 	return out;
 }
 /**
+* Mint a per-installation token (server-to-server). The token is cheap
+* (one signature + one HTTP round-trip) and the upstream TTL is ~1h, so
+* the recommended caller pattern is "mint per request" rather than caching
+* — caching forces the caller to also track expiry, suspended state, and
+* GitHub-side permission churn, which the design explicitly punts to Phase
+* 4. We give callers a typed result and let them cache if profiling shows
+* the round-trip is hot.
+*
+* Throws `GithubAppApiError` on non-2xx. 401 means the App JWT is bad or
+* the App's key has been rotated upstream; 404 means the installation
+* was uninstalled. Callers SHOULD persist the suspension state when 403
+* comes back with `suspended` (the design tracks this as `suspended_at`
+* on `github_app_installations`).
+*/
+async function mintInstallationToken(appJwt, installationId, opts = {}) {
+	const res = await (opts.fetcher ?? fetch)(APP_INSTALLATION_TOKEN_URL(installationId), {
+		method: "POST",
+		headers: {
+			Authorization: `Bearer ${appJwt}`,
+			Accept: "application/vnd.github+json",
+			"X-GitHub-Api-Version": "2022-11-28"
+		}
+	});
+	if (!res.ok) throw new GithubAppApiError(res.status, `GitHub App installation-token request failed (${res.status})`);
+	const body = await res.json();
+	return {
+		token: body.token,
+		expiresAt: body.expires_at,
+		permissions: body.permissions ?? {},
+		repositorySelection: body.repository_selection ?? "all"
+	};
+}
+/**
 * Trade an expiring user-to-server access token for a fresh pair using
 * its refresh token. Thrown on:
 *   - Network / 5xx           — `GithubAppApiError(status, …)`
@@ -15695,6 +15626,26 @@ function normalizeRemoteRepoUrl(value) {
 	if (/^[A-Za-z0-9_.-]+\/[A-Za-z0-9_.-]+(?:\.git)?$/.test(value)) return `https://github.com/${value}`;
 	return value;
 }
+/**
+* Whether this binding actually drives a GitHub-hosted remote fetch — the
+* only case where minting a GitHub App installation token is meaningful.
+*
+* Returns false when:
+*  - `localPath` is set (sync code short-circuits to the local checkout
+*    before ever looking at `repo`)
+*  - `repo` is missing
+*  - `repo` is a file:// URL, a non-GitHub HTTPS URL, or otherwise
+*    unparseable
+*
+* Used by the snapshot routes to gate the "install the GitHub App"
+* guidance — without this gate, every unavailable snapshot (missing repo,
+* bad branch, …) gets a misleading App-install hint appended.
+*/
+function isGithubRemoteBinding(binding) {
+	if (binding.localPath && binding.localPath.trim().length > 0) return false;
+	if (!binding.repo) return false;
+	return isGithubHttpsRepo(normalizeRemoteRepoUrl(binding.repo));
+}
 function managedContextTreeCacheRoot() {
 	return join(DEFAULT_DATA_DIR$1, "context-tree-repos");
 }
@@ -15868,7 +15819,7 @@ function errorMessage(error) {
 	return redactSecret(error.message.trim().split("\n")[0] ?? "");
 }
 function redactSecret(message) {
-	return message.replace(/(https?:\/\/)[^/@\s]+@/g, "$1[redacted]@").replace(/\bghp_[A-Za-z0-9_]+/g, "[redacted]").replace(/\bgithub_pat_[A-Za-z0-9_]+/g, "[redacted]");
+	return message.replace(/(https?:\/\/)[^/@\s]+@/g, "$1[redacted]@").replace(/\b(?:ghp|ghs|ghu|gho|ghr)_[A-Za-z0-9_]+/g, "[redacted]").replace(/\bgithub_pat_[A-Za-z0-9_]+/g, "[redacted]");
 }
 function unavailableSnapshot(repo, branch, detail) {
 	return {
@@ -16448,6 +16399,80 @@ function ghostNodeId(path) {
 function toPosix(path) {
 	return sep === "/" ? path : path.split(sep).join("/");
 }
+/**
+* Mint a short-lived GitHub App installation token for the given installation.
+* Returns `ok: false` (with a precise reason) when the org has no App
+* configured, no installation row, the installation is suspended, or GitHub
+* rejects the mint — callers fall back to unauthenticated git fetch (public
+* repos still resolve; private repos surface as an unavailable snapshot
+* with a remediation message).
+*
+* Takes the `installation` row directly so the helper has no DB dependency
+* — route handlers do the `findInstallationByOrg` lookup themselves. Keeps
+* this module a pure transform that's trivial to unit-test.
+*
+* Credentials use the narrow `GithubAppCredentials` shape so the helper
+* isn't coupled to the broader OAuth config surface; callers pass
+* `config.oauth?.githubApp`, which structurally satisfies it.
+*/
+async function mintContextTreeInstallationToken(installation, appCredentials, options = {}) {
+	if (!appCredentials) return {
+		ok: false,
+		reason: "no-app-config"
+	};
+	if (!installation) return {
+		ok: false,
+		reason: "no-installation"
+	};
+	if (installation.suspendedAt) return {
+		ok: false,
+		reason: "suspended"
+	};
+	try {
+		return {
+			ok: true,
+			token: (await mintInstallationToken(await createAppJwt({
+				appId: appCredentials.appId,
+				privateKeyPem: appCredentials.privateKeyPem
+			}), installation.installationId, { fetcher: options.fetcher })).token
+		};
+	} catch (error) {
+		return {
+			ok: false,
+			reason: "mint-failed",
+			detail: error instanceof GithubAppApiError ? `GitHub returned ${error.status} when minting an installation token.` : "Hub could not mint a GitHub App installation token."
+		};
+	}
+}
+/**
+* Append a remediation hint to an unavailable snapshot's `contextStatus.detail`
+* when the underlying cause is a missing / suspended / failed GitHub App token
+* mint. Public-repo snapshots (mint reason `no-app-config`) are left untouched
+* — the deployment may legitimately have no App configured.
+*
+* Gated on `isGithubRemoteBinding(binding)` so unrelated unavailable
+* reasons (no repo configured, localPath missing, illegal branch name,
+* public-repo fetch error) don't get a misleading "install the GitHub
+* App" hint appended.
+*
+* Lives next to `mintContextTreeInstallationToken` so the two routes that
+* call mint share one shaping function; the snapshot service itself stays
+* token-agnostic.
+*/
+function decorateSnapshotWithMintGuidance(snapshot, binding, mintResult) {
+	if (mintResult.ok) return snapshot;
+	if (snapshot.snapshotStatus !== "unavailable") return snapshot;
+	if (mintResult.reason === "no-app-config") return snapshot;
+	if (!isGithubRemoteBinding(binding)) return snapshot;
+	const guidance = mintResult.reason === "no-installation" ? "Install the First Tree GitHub App from Team Settings and grant it access to this repo." : mintResult.reason === "suspended" ? "The GitHub App installation is suspended — unsuspend it from your GitHub account settings." : `Hub could not mint a GitHub App installation token.${mintResult.detail ? ` ${mintResult.detail}` : ""}`;
+	return {
+		...snapshot,
+		contextStatus: {
+			...snapshot.contextStatus,
+			detail: `${snapshot.contextStatus.detail} ${guidance}`
+		}
+	};
+}
 const querySchema$1 = z.object({ window: z.enum([
 	"1d",
 	"7d",
@@ -16463,12 +16488,15 @@ async function contextTreeSnapshotRoutes(app) {
 		const { userId } = requireUser(request);
 		const orgId = await resolveUserPrimaryOrgId(app.db, userId);
 		const binding = orgId ? await getOrgContextTree(app.db, orgId) : {};
-		const githubToken = contextTreeGithubTokenForRepo(binding.repo, app.config.contextTreeSync);
+		let mintResult = null;
+		if (orgId && isGithubRemoteBinding(binding)) mintResult = await mintContextTreeInstallationToken(await findInstallationByOrg(app.db, orgId), app.config.oauth?.githubApp);
+		const githubToken = mintResult?.ok ? mintResult.token : void 0;
 		const window = query.window ?? "7d";
-		const snapshot = await getContextTreeSnapshot({
+		const rawSnapshot = await getContextTreeSnapshot({
 			...binding,
 			githubToken
 		}, window);
+		const snapshot = mintResult ? decorateSnapshotWithMintGuidance(rawSnapshot, binding, mintResult) : rawSnapshot;
 		const usage = orgId ? await summarizeContextTreeUsage(app.db, orgId, contextTreeSnapshotWindowDays(window)) : snapshot.usage;
 		return contextTreeSnapshotSchema.parse({
 			...snapshot,
@@ -16476,31 +16504,6 @@ async function contextTreeSnapshotRoutes(app) {
 		});
 	});
 }
-function contextTreeGithubTokenForRepo(repo, syncConfig) {
-	if (!repo || !syncConfig?.githubToken) return void 0;
-	const repoKey = githubRepoKey(repo);
-	if (!repoKey) return void 0;
-	return new Set((syncConfig.githubTokenRepos ?? "").split(",").map((entry) => normalizeGithubRepoKey(entry)).filter((entry) => entry !== null)).has(repoKey) ? syncConfig.githubToken : void 0;
-}
-function githubRepoKey(value) {
-	const shorthand = normalizeGithubRepoKey(value);
-	if (shorthand) return shorthand;
-	let url;
-	try {
-		url = new URL(value);
-	} catch {
-		return null;
-	}
-	if (url.protocol !== "https:" || url.hostname.toLowerCase() !== "github.com") return null;
-	if (url.username || url.password) return null;
-	return normalizeGithubRepoKey(url.pathname.replace(/^\/+/, ""));
-}
-function normalizeGithubRepoKey(value) {
-	const trimmed = value.trim().replace(/^\/+/, "").replace(/\.git$/i, "");
-	const match = /^([A-Za-z0-9_.-]+)\/([A-Za-z0-9_.-]+)$/.exec(trimmed);
-	if (!match) return null;
-	return `${match[1]?.toLowerCase()}/${match[2]?.toLowerCase()}`;
-}
 /**
 * Resolve the client IP for rate-limit attribution.
 *
@@ -16602,7 +16605,7 @@ async function healthzRoutes(app) {
 * `api/orgs/invitations.ts` (Class B, admin-gated).
 */
 async function publicInvitationRoutes(app) {
-	const { previewInvitation } = await import("./invitation-C9m2gQx4-CkwWteA3.mjs");
+	const { previewInvitation } = await import("./invitation-C9m2gQx4-BSErdb8x.mjs");
 	app.get("/:token/preview", async (request, reply) => {
 		if (!request.params.token) throw new UnauthorizedError("Token required");
 		const preview = await previewInvitation(app.db, request.params.token);
@@ -16891,7 +16894,7 @@ async function meRoutes(app) {
 	*/
 	app.get("/me/pinned-agents", async (request) => {
 		const { userId } = requireUser(request);
-		const { listMyPinnedAgents } = await import("./client-CDw0f-kN-BPzOVd8L.mjs");
+		const { listMyPinnedAgents } = await import("./client-q1EYQD1n-ypjoumIO.mjs");
 		return listMyPinnedAgents(app.db, { userId });
 	});
 	/**
@@ -17467,12 +17470,15 @@ async function orgContextTreeSnapshotRoutes(app) {
 		const query = querySchema.parse(request.query);
 		const scope = await requireOrgMembership(request, app.db);
 		const binding = await getOrgContextTree(app.db, scope.organizationId);
-		const githubToken = contextTreeGithubTokenForRepo(binding.repo, app.config.contextTreeSync);
+		let mintResult = null;
+		if (isGithubRemoteBinding(binding)) mintResult = await mintContextTreeInstallationToken(await findInstallationByOrg(app.db, scope.organizationId), app.config.oauth?.githubApp);
+		const githubToken = mintResult?.ok ? mintResult.token : void 0;
 		const window = query.window ?? "7d";
-		const snapshot = await getContextTreeSnapshot({
+		const rawSnapshot = await getContextTreeSnapshot({
 			...binding,
 			githubToken
 		}, window);
+		const snapshot = mintResult ? decorateSnapshotWithMintGuidance(rawSnapshot, binding, mintResult) : rawSnapshot;
 		const usage = await summarizeContextTreeUsage(app.db, scope.organizationId, contextTreeSnapshotWindowDays(window));
 		return contextTreeSnapshotSchema.parse({
 			...snapshot,

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@agent-team-foundation/first-tree-hub",
-  "version": "0.14.2",
+  "version": "0.14.3",
   "type": "module",
   "description": "First Tree Hub — unified CLI for server, client, and agent management",
   "exports": {