npm - @agent-team-foundation/first-tree-hub - Versions diffs - 0.9.7 → 0.9.9 - Mend

@agent-team-foundation/first-tree-hub 0.9.7 → 0.9.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (10) hide show

package/dist/{bootstrap-DWifXj9b.mjs → bootstrap-hh_PkTu6.mjs} +16 -0
package/dist/cli/index.mjs +24 -10
package/dist/{core-USyOOh7y.mjs → core-B2YUTpgg.mjs} +2100 -400
package/dist/drizzle/0023_clients_org_scoping.sql +40 -0
package/dist/drizzle/meta/_journal.json +7 -0
package/dist/{feishu-GlaczcVf.mjs → feishu-B1Kiq7S6.mjs} +104 -14
package/dist/index.mjs +4 -4
package/dist/web/assets/{index-CzlAfdgm.js → index-DkzjED0c.js} +77 -77
package/dist/web/index.html +15 -1
package/package.json +1 -1

package/dist/drizzle/0023_clients_org_scoping.sql ADDED Viewed

@@ -0,0 +1,40 @@
+-- Multi-tenancy hardening:
+--   1. Drop dead column `agents.cloud_user_id` (unused since introduction in
+--      0010; never written by any code path).
+--   2. Bind every client to exactly one organization via `clients.organization_id`.
+--
+-- A client is bound to one org for its lifetime — Rule R-RUN and the
+-- `client:register` handshake reject cross-org reuse of a clientId. See
+-- docs/multi-tenancy-hardening-design.md.
+--
+-- Backfill strategy (guarded for safety across environments):
+--   * Current production: exactly one org → UPDATE fills every row.
+--   * Fresh installs / empty DB: clients table is empty → UPDATE is a no-op,
+--     SET NOT NULL succeeds on the empty table.
+--   * Any environment reaching this migration with multi-org data but
+--     unpopulated clients.organization_id: the guard skips the UPDATE, and
+--     SET NOT NULL fails loudly rather than misassigning rows to an
+--     arbitrary org. Operator must backfill manually, then re-run.
+ALTER TABLE "agents" DROP COLUMN "cloud_user_id";
+--> statement-breakpoint
+ALTER TABLE "clients" ADD COLUMN "organization_id" text;
+--> statement-breakpoint
+ALTER TABLE "clients"
+	ADD CONSTRAINT "clients_organization_id_organizations_id_fk"
+	FOREIGN KEY ("organization_id") REFERENCES "organizations"("id")
+	ON DELETE no action ON UPDATE no action;
+--> statement-breakpoint
+UPDATE "clients"
+SET "organization_id" = (SELECT "id" FROM "organizations" LIMIT 1)
+WHERE "organization_id" IS NULL
+	AND (SELECT count(*) FROM "organizations") = 1;
+--> statement-breakpoint
+ALTER TABLE "clients" ALTER COLUMN "organization_id" SET NOT NULL;
+--> statement-breakpoint
+CREATE INDEX IF NOT EXISTS "idx_clients_org" ON "clients" ("organization_id");

package/dist/drizzle/meta/_journal.json CHANGED Viewed

@@ -162,6 +162,13 @@
       "when": 1777161600000,
       "tag": "0022_session_events",
       "breakpoints": true
+    },
+    {
+      "idx": 23,
+      "version": "7",
+      "when": 1777248000000,
+      "tag": "0023_clients_org_scoping",
+      "breakpoints": true
     }
   ]
 }

package/dist/{feishu-GlaczcVf.mjs → feishu-B1Kiq7S6.mjs} RENAMED Viewed

@@ -1,6 +1,28 @@
 import { d as __exportAll } from "./esm-CYu4tXXn.mjs";
 import { z } from "zod";
 //#region ../shared/dist/index.mjs
+const MENTION_REGEX = /(?<![A-Za-z0-9_.@-])@([A-Za-z0-9_-]{1,64})\b/g;
+function stripCode(content) {
+	return content.replace(/```[\s\S]*?```/g, "").replace(/~~~[\s\S]*?~~~/g, "").replace(/`[^`\n]+`/g, "");
+}
+/**
+* Resolve `@<name>` mentions in `content` to a list of participant agentIds.
+* Names match case-insensitively; unknown `@tokens` are dropped.
+*/
+function extractMentions(content, participants) {
+	const stripped = stripCode(content);
+	const nameMap = /* @__PURE__ */ new Map();
+	for (const p of participants) if (p.name) nameMap.set(p.name.toLowerCase(), p.agentId);
+	if (nameMap.size === 0) return [];
+	const hits = /* @__PURE__ */ new Set();
+	for (const m of stripped.matchAll(MENTION_REGEX)) {
+		const token = m[1];
+		if (!token) continue;
+		const id = nameMap.get(token.toLowerCase());
+		if (id) hits.add(id);
+	}
+	return [...hits];
+}
 const adapterPlatformSchema = z.enum([
 	"feishu",
 	"slack",
@@ -187,7 +209,6 @@ z.object({
 	inboxId: z.string(),
 	status: z.string(),
 	source: z.string().nullable().optional(),
-	cloudUserId: z.string().nullable().optional(),
 	visibility: agentVisibilitySchema,
 	metadata: z.record(z.string(), z.unknown()),
 	managerId: z.string().nullable(),
@@ -404,6 +425,11 @@ const chatParticipantSchema = z.object({
 	mode: z.string(),
 	joinedAt: z.string()
 });
+chatParticipantSchema.extend({
+	name: z.string().nullable(),
+	displayName: z.string().nullable(),
+	type: z.string()
+});
 z.object({
 	id: z.string(),
 	organizationId: z.string(),
@@ -443,6 +469,41 @@ const paginationQuerySchema = z.object({
 	limit: z.coerce.number().int().min(1).max(100).default(20),
 	cursor: z.string().optional()
 });
+const supportedImageMimeSchema = z.enum([
+	"image/png",
+	"image/jpeg",
+	"image/gif",
+	"image/webp"
+]);
+/**
+* Legacy inbound shape: an image message with base64 bytes inlined into
+* `messages.content`. Web still uploads in this shape so no new endpoint is
+* needed; the server extracts the bytes, broadcasts them as an `image_payload`
+* WS frame, then rewrites `content` to {@link imageRefContentSchema} before
+* the DB insert.
+*/
+const imageInlineContentSchema = z.object({
+	data: z.string().min(1),
+	mimeType: supportedImageMimeSchema,
+	filename: z.string().min(1),
+	size: z.number().int().nonnegative().optional(),
+	imageId: z.string().uuid().optional()
+});
+z.object({
+	imageId: z.string().uuid(),
+	mimeType: supportedImageMimeSchema,
+	filename: z.string().min(1),
+	size: z.number().int().nonnegative().optional()
+});
+z.object({
+	type: z.literal("image_payload"),
+	imageId: z.string().uuid(),
+	chatId: z.string(),
+	base64: z.string().min(1),
+	mimeType: supportedImageMimeSchema,
+	filename: z.string().min(1),
+	size: z.number().int().nonnegative().optional()
+});
 const messageSourceSchema = z.enum([
 	"hub_ui",
 	"cli",
@@ -475,17 +536,7 @@ const sendToAgentSchema = z.object({
 	replyToChat: z.string().optional(),
 	source: messageSourceSchema.optional()
 });
-/**
-* Wire format for messages routed FROM the Hub TO a client runtime.
-*
-* Adds `configVersion` so the client can compare against its locally cached
-* agent runtime config and refresh before delivering the message to the SDK.
-*
-* Step 3: this is the single shape used by `buildClientMessagePayload` —
-* never serialise a raw `messageSchema` row to a client; always go through
-* the dispatcher.
-*/
-const clientMessageSchema = z.object({
+const messageSchema = z.object({
 	id: z.string(),
 	chatId: z.string(),
 	senderId: z.string(),
@@ -497,7 +548,46 @@ const clientMessageSchema = z.object({
 	inReplyTo: z.string().nullable(),
 	source: messageSourceSchema.nullable(),
 	createdAt: z.string()
-}).extend({ configVersion: z.number().int().positive() });
+});
+/**
+* Snapshot of the `in_reply_to` target that the server materialises at
+* dispatch time so the receiving runtime can decide whether this is an
+* echo it should suppress (see proposal hub-agent-messaging-reply-and-mentions).
+*
+* `chatId` is the original message's `chat_id`; `replyToChat` is the chat
+* its sender expected replies to flow back to (often a different chat).
+* `null` when the message is not a reply, or the original could not be
+* resolved (e.g. deleted).
+*/
+const inReplyToSnapshotSchema = z.object({
+	senderId: z.string(),
+	chatId: z.string(),
+	replyToChat: z.string().nullable()
+}).nullable();
+/** Per-chat participation mode exposed to the recipient runtime. */
+const participantModeSchema = z.enum(["full", "mention_only"]);
+/**
+* Wire format for messages routed FROM the Hub TO a client runtime.
+*
+* Adds `configVersion` so the client can compare against its locally cached
+* agent runtime config and refresh before delivering the message to the SDK.
+*
+* Step 3: this is the single shape used by `buildClientMessagePayload` —
+* never serialise a raw `messageSchema` row to a client; always go through
+* the dispatcher.
+*
+* `recipientMode` is the receiving agent's own mode in the entry's chat —
+* `mention_only` participants must only start a session when they appear in
+* `metadata.mentions` (see session-manager.ts).
+*
+* `inReplyToSnapshot` is populated when `inReplyTo` resolves to an existing
+* message; runtime uses it to suppress self-reply echo on direct chats.
+*/
+const clientMessageSchema = messageSchema.extend({
+	configVersion: z.number().int().positive(),
+	recipientMode: participantModeSchema.default("full"),
+	inReplyToSnapshot: inReplyToSnapshotSchema.default(null)
+});
 z.enum([
 	"pending",
 	"delivered",
@@ -959,4 +1049,4 @@ async function bindFeishuUser(serverUrl, accessToken, agentId, humanAgentId, fei
 	}
 }
 //#endregion
-export { updateAdapterConfigSchema as $, createMemberSchema as A, notificationQuerySchema as B, agentTypeSchema as C, createAdapterMappingSchema as D, createAdapterConfigSchema as E, inboxPollQuerySchema as F, sendMessageSchema as G, refreshTokenSchema as H, isRedactedEnvValue as I, sessionEventMessageSchema as J, sendToAgentSchema as K, linkTaskChatSchema as L, createTaskSchema as M, delegateFeishuUserSchema as N, createAgentSchema as O, dryRunAgentRuntimeConfigSchema as P, taskListQuerySchema as Q, loginSchema as R, agentRuntimeConfigPayloadSchema as S, connectTokenExchangeSchema as T, runtimeStateMessageSchema as U, paginationQuerySchema as V, selfServiceFeishuBotSchema as W, sessionReconcileRequestSchema as X, sessionEventSchema as Y, sessionStateMessageSchema as Z, addParticipantSchema as _, AGENT_SELECTOR_HEADER as a, updateSystemConfigSchema as at, agentBindRequestSchema as b, AGENT_TYPES as c, SYSTEM_CONFIG_DEFAULTS as d, updateAgentRuntimeConfigSchema as et, TASK_CREATOR_TYPES as f, WS_AUTH_FRAME_TIMEOUT_MS as g, TASK_TERMINAL_STATUSES as h, AGENT_BIND_REJECT_REASONS as i, updateOrganizationSchema as it, createOrganizationSchema as j, createChatSchema as k, AGENT_VISIBILITY as l, TASK_STATUSES as m, bindFeishuUser as n, updateChatSchema as nt, AGENT_SOURCES as o, updateTaskStatusSchema as ot, TASK_HEALTH_SIGNALS as p, sessionCompletionMessageSchema as q, feishu_exports as r, updateMemberSchema as rt, AGENT_STATUSES as s, wsAuthFrameSchema as st, bindFeishuBot as t, updateAgentSchema as tt, DEFAULT_AGENT_RUNTIME_CONFIG_PAYLOAD as u, adminCreateTaskSchema as v, clientRegisterSchema as w, agentPinnedMessageSchema as x, adminUpdateTaskSchema as y, messageSourceSchema as z };
+export { sessionStateMessageSchema as $, createMemberSchema as A, loginSchema as B, agentTypeSchema as C, createAdapterMappingSchema as D, createAdapterConfigSchema as E, extractMentions as F, runtimeStateMessageSchema as G, notificationQuerySchema as H, imageInlineContentSchema as I, sendToAgentSchema as J, selfServiceFeishuBotSchema as K, inboxPollQuerySchema as L, createTaskSchema as M, delegateFeishuUserSchema as N, createAgentSchema as O, dryRunAgentRuntimeConfigSchema as P, sessionReconcileRequestSchema as Q, isRedactedEnvValue as R, agentRuntimeConfigPayloadSchema as S, connectTokenExchangeSchema as T, paginationQuerySchema as U, messageSourceSchema as V, refreshTokenSchema as W, sessionEventMessageSchema as X, sessionCompletionMessageSchema as Y, sessionEventSchema as Z, addParticipantSchema as _, AGENT_SELECTOR_HEADER as a, updateMemberSchema as at, agentBindRequestSchema as b, AGENT_TYPES as c, updateTaskStatusSchema as ct, SYSTEM_CONFIG_DEFAULTS as d, taskListQuerySchema as et, TASK_CREATOR_TYPES as f, WS_AUTH_FRAME_TIMEOUT_MS as g, TASK_TERMINAL_STATUSES as h, AGENT_BIND_REJECT_REASONS as i, updateChatSchema as it, createOrganizationSchema as j, createChatSchema as k, AGENT_VISIBILITY as l, wsAuthFrameSchema as lt, TASK_STATUSES as m, bindFeishuUser as n, updateAgentRuntimeConfigSchema as nt, AGENT_SOURCES as o, updateOrganizationSchema as ot, TASK_HEALTH_SIGNALS as p, sendMessageSchema as q, feishu_exports as r, updateAgentSchema as rt, AGENT_STATUSES as s, updateSystemConfigSchema as st, bindFeishuBot as t, updateAdapterConfigSchema as tt, DEFAULT_AGENT_RUNTIME_CONFIG_PAYLOAD as u, adminCreateTaskSchema as v, clientRegisterSchema as w, agentPinnedMessageSchema as x, adminUpdateTaskSchema as y, linkTaskChatSchema as z };

package/dist/index.mjs CHANGED Viewed

@@ -1,6 +1,6 @@
 import "./observability-DV_fQKqV-CuLWzBxQ.mjs";
-import { A as checkServerHealth, B as blank, C as runMigrations, D as checkDocker, E as checkDatabase, F as isDockerAvailable, G as SdkError, I as stopPostgres, L as ClientRuntime, M as checkWebSocket, N as printResults, O as checkNodeVersion, P as ensurePostgres, R as createOwner, S as uninstallClientService, T as checkClientConfig, U as status, W as FirstTreeHubSDK, _ as runHomeMigration, b as isServiceSupported, d as promptMissingFields, f as formatCheckReport, h as onboardCreate, j as checkServerReachable, k as checkServerConfig, l as isInteractive, m as onboardCheck, s as startServer, u as promptAddAgent, v as getClientServiceStatus, w as checkAgentConfigs, x as resolveCliInvocation, y as installClientService, z as hasUser } from "./core-USyOOh7y.mjs";
+import { A as checkServerHealth, B as createOwner, C as runMigrations, D as checkDocker, E as checkDatabase, F as isDockerAvailable, I as stopPostgres, J as FirstTreeHubSDK, K as status, L as ClientRuntime, M as checkWebSocket, N as printResults, O as checkNodeVersion, P as ensurePostgres, R as handleClientOrgMismatch, S as uninstallClientService, T as checkClientConfig, U as blank, V as hasUser, Y as SdkError, _ as runHomeMigration, b as isServiceSupported, d as promptMissingFields, f as formatCheckReport, h as onboardCreate, j as checkServerReachable, k as checkServerConfig, l as isInteractive, m as onboardCheck, s as startServer, u as promptAddAgent, v as getClientServiceStatus, w as checkAgentConfigs, x as resolveCliInvocation, y as installClientService, z as rotateClientIdWithBackup } from "./core-B2YUTpgg.mjs";
 import "./logger-core-BTmvdflj-DhdipBkV.mjs";
-import { a as resolveAccessToken, n as ensureFreshAccessToken, o as resolveServerUrl, r as ensureFreshAdminToken } from "./bootstrap-DWifXj9b.mjs";
-import { n as bindFeishuUser, t as bindFeishuBot } from "./feishu-GlaczcVf.mjs";
-export { ClientRuntime, FirstTreeHubSDK, SdkError, bindFeishuBot, bindFeishuUser, blank, checkAgentConfigs, checkClientConfig, checkDatabase, checkDocker, checkNodeVersion, checkServerConfig, checkServerHealth, checkServerReachable, checkWebSocket, createOwner, ensureFreshAccessToken, ensureFreshAdminToken, ensurePostgres, formatCheckReport, getClientServiceStatus, hasUser, installClientService, isDockerAvailable, isInteractive, isServiceSupported, onboardCheck, onboardCreate, printResults, promptAddAgent, promptMissingFields, resolveAccessToken, resolveCliInvocation, resolveServerUrl, runHomeMigration, runMigrations, startServer, status, stopPostgres, uninstallClientService };
+import { a as resolveAccessToken, n as ensureFreshAccessToken, o as resolveServerUrl, r as ensureFreshAdminToken } from "./bootstrap-hh_PkTu6.mjs";
+import { n as bindFeishuUser, t as bindFeishuBot } from "./feishu-B1Kiq7S6.mjs";
+export { ClientRuntime, FirstTreeHubSDK, SdkError, bindFeishuBot, bindFeishuUser, blank, checkAgentConfigs, checkClientConfig, checkDatabase, checkDocker, checkNodeVersion, checkServerConfig, checkServerHealth, checkServerReachable, checkWebSocket, createOwner, ensureFreshAccessToken, ensureFreshAdminToken, ensurePostgres, formatCheckReport, getClientServiceStatus, handleClientOrgMismatch, hasUser, installClientService, isDockerAvailable, isInteractive, isServiceSupported, onboardCheck, onboardCreate, printResults, promptAddAgent, promptMissingFields, resolveAccessToken, resolveCliInvocation, resolveServerUrl, rotateClientIdWithBackup, runHomeMigration, runMigrations, startServer, status, stopPostgres, uninstallClientService };