@agenticmail/core 0.5.32 → 0.5.34

package/dist/index.d.ts

@@ -1068,6 +1068,8 @@ interface GatewayManagerOptions {
     accountManager?: AccountManager;
     localSmtp?: LocalSmtpConfig;
     onInboundMail?: (agentName: string, mail: InboundEmail) => void | Promise<void>;
+    /** Master key used to encrypt credentials at rest in SQLite. */
+    encryptionKey?: string;
 }
 /**
  * GatewayManager orchestrates relay and domain modes for sending/receiving
@@ -1087,6 +1089,7 @@ declare class GatewayManager {
     private domainPurchaser;
     private smsManager;
     private smsPollers;
+    private encryptionKey;
     constructor(options: GatewayManagerOptions);
     /**
      * Check if a message has already been delivered to an agent (deduplication).

package/dist/index.js

@@ -703,6 +703,12 @@ function saveConfig(config) {
 }
 
 // src/stalwart/admin.ts
+function escapeTomlString(value) {
+  return value.replace(/\\/g, "\\\\").replace(/"/g, '\\"').replace(/\n/g, "\\n").replace(/\r/g, "\\r").replace(/\t/g, "\\t");
+}
+function isValidDomain(domain) {
+  return /^([a-zA-Z0-9]([a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?\.)+[a-zA-Z]{2,}$/.test(domain);
+}
 var StalwartAdmin = class {
   constructor(options) {
     this.options = options;
@@ -850,13 +856,16 @@ var StalwartAdmin = class {
    * Critical for email deliverability — must match the sending domain.
    */
   async setHostname(domain) {
+    if (!isValidDomain(domain)) {
+      throw new Error(`Invalid domain format: "${domain}"`);
+    }
     const { readFileSync: readFileSync4, writeFileSync: writeFileSync5 } = await import("fs");
     const { homedir: homedir8 } = await import("os");
     const { join: join9 } = await import("path");
     const configPath = join9(homedir8(), ".agenticmail", "stalwart.toml");
     try {
       let config = readFileSync4(configPath, "utf-8");
-      config = config.replace(/^hostname\s*=\s*"[^"]*"/m, `hostname = "${domain}"`);
+      config = config.replace(/^hostname\s*=\s*"[^"]*"/m, `hostname = "${escapeTomlString(domain)}"`);
       writeFileSync5(configPath, config);
       console.log(`[Stalwart] Updated hostname to "${domain}" in stalwart.toml`);
     } catch (err) {
@@ -983,21 +992,22 @@ var StalwartAdmin = class {
     let toml = readFileSync4(tomlPath, "utf-8");
     toml = toml.replace(/\n\[queue\.route\.gmail\][\s\S]*?(?=\n\[|$)/, "");
     toml = toml.replace(/\n\[queue\.strategy\][\s\S]*?(?=\n\[|$)/, "");
+    const safeRouteName = routeName.replace(/[^a-zA-Z0-9_-]/g, "");
     toml += `
 
-[queue.route.${routeName}]
+[queue.route.${safeRouteName}]
 description = "Gmail SMTP relay for outbound delivery"
 type = "relay"
-address = "${config.smtpHost}"
-port = ${config.smtpPort}
+address = "${escapeTomlString(config.smtpHost)}"
+port = ${Number(config.smtpPort) || 465}
 protocol = "smtp"
 tls.implicit = true
-auth.username = "${config.username}"
-auth.secret = "${config.password}"
+auth.username = "${escapeTomlString(config.username)}"
+auth.secret = "${escapeTomlString(config.password)}"
 
 [queue.strategy]
 route = [ { if = "is_local_domain('', rcpt_domain)", then = "'local'" },
-           { else = "'${routeName}'" } ]
+           { else = "'${safeRouteName}'" } ]
 `;
     writeFileSync5(tomlPath, toml, "utf-8");
     await this.restartContainer();
@@ -3193,6 +3203,7 @@ var DomainManager = class {
 
 // src/gateway/manager.ts
 import { join as join4 } from "path";
+import { createCipheriv, createDecipheriv, randomBytes as randomBytes2, createHash } from "crypto";
 import nodemailer3 from "nodemailer";
 
 // src/debug.ts
@@ -4833,12 +4844,31 @@ var SmsPoller = class {
 };
 
 // src/gateway/manager.ts
+function encryptSecret(plaintext, key) {
+  const keyHash = createHash("sha256").update(key).digest();
+  const iv = randomBytes2(12);
+  const cipher = createCipheriv("aes-256-gcm", keyHash, iv);
+  const encrypted = Buffer.concat([cipher.update(plaintext, "utf8"), cipher.final()]);
+  const authTag = cipher.getAuthTag();
+  return `enc:${iv.toString("hex")}:${authTag.toString("hex")}:${encrypted.toString("hex")}`;
+}
+function decryptSecret(value, key) {
+  if (!value.startsWith("enc:")) return value;
+  const parts = value.split(":");
+  if (parts.length !== 4) return value;
+  const [, ivHex, authTagHex, ciphertextHex] = parts;
+  const keyHash = createHash("sha256").update(key).digest();
+  const decipher = createDecipheriv("aes-256-gcm", keyHash, Buffer.from(ivHex, "hex"));
+  decipher.setAuthTag(Buffer.from(authTagHex, "hex"));
+  return Buffer.concat([decipher.update(Buffer.from(ciphertextHex, "hex")), decipher.final()]).toString("utf8");
+}
 var GatewayManager = class {
   constructor(options) {
     this.options = options;
     this.db = options.db;
     this.stalwart = options.stalwart;
     this.accountManager = options.accountManager ?? null;
+    this.encryptionKey = options.encryptionKey ?? process.env.AGENTICMAIL_MASTER_KEY ?? null;
     const inboundHandler = options.onInboundMail ?? (this.accountManager && options.localSmtp ? this.deliverInboundLocally.bind(this) : void 0);
     this.relay = new RelayGateway({
       onInboundMail: inboundHandler,
@@ -4865,6 +4895,7 @@ var GatewayManager = class {
   domainPurchaser = null;
   smsManager = null;
   smsPollers = /* @__PURE__ */ new Map();
+  encryptionKey = null;
   /**
    * Check if a message has already been delivered to an agent (deduplication).
    */
@@ -5180,8 +5211,8 @@ var GatewayManager = class {
     const { homedir: homedir8 } = await import("os");
     const backupDir = join4(homedir8(), ".agenticmail");
     const backupPath = join4(backupDir, `dns-backup-${domain}-${Date.now()}.json`);
-    const { writeFileSync: writeFileSync5, mkdirSync: mkdirSync5 } = await import("fs");
-    mkdirSync5(backupDir, { recursive: true });
+    const { writeFileSync: writeFileSync5, mkdirSync: mkdirSync6 } = await import("fs");
+    mkdirSync6(backupDir, { recursive: true });
     writeFileSync5(backupPath, JSON.stringify({
       domain,
       zoneId: zone.id,
@@ -5646,6 +5677,44 @@ var GatewayManager = class {
     if (row) {
       try {
         const parsed = JSON.parse(row.config);
+        if (this.encryptionKey) {
+          if (parsed.relay?.password) {
+            try {
+              parsed.relay.password = decryptSecret(parsed.relay.password, this.encryptionKey);
+            } catch {
+            }
+          }
+          if (parsed.relay?.appPassword) {
+            try {
+              parsed.relay.appPassword = decryptSecret(parsed.relay.appPassword, this.encryptionKey);
+            } catch {
+            }
+          }
+          if (parsed.domain?.cloudflareApiToken) {
+            try {
+              parsed.domain.cloudflareApiToken = decryptSecret(parsed.domain.cloudflareApiToken, this.encryptionKey);
+            } catch {
+            }
+          }
+          if (parsed.domain?.tunnelToken) {
+            try {
+              parsed.domain.tunnelToken = decryptSecret(parsed.domain.tunnelToken, this.encryptionKey);
+            } catch {
+            }
+          }
+          if (parsed.domain?.inboundSecret) {
+            try {
+              parsed.domain.inboundSecret = decryptSecret(parsed.domain.inboundSecret, this.encryptionKey);
+            } catch {
+            }
+          }
+          if (parsed.domain?.outboundSecret) {
+            try {
+              parsed.domain.outboundSecret = decryptSecret(parsed.domain.outboundSecret, this.encryptionKey);
+            } catch {
+            }
+          }
+        }
         this.config = {
           mode: row.mode,
           ...parsed
@@ -5657,10 +5726,31 @@ var GatewayManager = class {
   }
   saveConfig() {
     const { mode, ...rest } = this.config;
+    const toStore = JSON.parse(JSON.stringify(rest));
+    if (this.encryptionKey) {
+      if (toStore.relay?.password) {
+        toStore.relay.password = encryptSecret(toStore.relay.password, this.encryptionKey);
+      }
+      if (toStore.relay?.appPassword) {
+        toStore.relay.appPassword = encryptSecret(toStore.relay.appPassword, this.encryptionKey);
+      }
+      if (toStore.domain?.cloudflareApiToken) {
+        toStore.domain.cloudflareApiToken = encryptSecret(toStore.domain.cloudflareApiToken, this.encryptionKey);
+      }
+      if (toStore.domain?.tunnelToken) {
+        toStore.domain.tunnelToken = encryptSecret(toStore.domain.tunnelToken, this.encryptionKey);
+      }
+      if (toStore.domain?.inboundSecret) {
+        toStore.domain.inboundSecret = encryptSecret(toStore.domain.inboundSecret, this.encryptionKey);
+      }
+      if (toStore.domain?.outboundSecret) {
+        toStore.domain.outboundSecret = encryptSecret(toStore.domain.outboundSecret, this.encryptionKey);
+      }
+    }
     this.db.prepare(`
       INSERT OR REPLACE INTO gateway_config (id, mode, config)
       VALUES ('default', ?, ?)
-    `).run(mode, JSON.stringify(rest));
+    `).run(mode, JSON.stringify(toStore));
   }
   saveLastSeenUid(uid) {
     this.db.prepare(`
@@ -5812,8 +5902,8 @@ var RELAY_PRESETS = {
 };
 
 // src/setup/index.ts
-import { randomBytes as randomBytes2 } from "crypto";
-import { existsSync as existsSync6, readFileSync as readFileSync3, writeFileSync as writeFileSync4, mkdirSync as mkdirSync4, chmodSync } from "fs";
+import { randomBytes as randomBytes3 } from "crypto";
+import { existsSync as existsSync6, readFileSync as readFileSync3, writeFileSync as writeFileSync4, mkdirSync as mkdirSync5, chmodSync as chmodSync2 } from "fs";
 import { join as join8 } from "path";
 import { homedir as homedir7 } from "os";
 
@@ -5894,7 +5984,7 @@ var DependencyChecker = class {
 
 // src/setup/installer.ts
 import { execFileSync as execFileSync2, execSync, spawn as spawnChild } from "child_process";
-import { existsSync as existsSync4 } from "fs";
+import { existsSync as existsSync4, mkdirSync as mkdirSync3, symlinkSync } from "fs";
 import { writeFile, rename, chmod as chmod2, mkdir as mkdir2, unlink } from "fs/promises";
 import { join as join6 } from "path";
 import { homedir as homedir5, platform as platform2, arch as arch2 } from "os";
@@ -6077,11 +6167,11 @@ var DependencyInstaller = class {
       const pluginPath = join6(pluginDir, "docker-compose");
       if (existsSync4(pluginPath)) return;
       try {
-        execSync(`mkdir -p "${pluginDir}"`, { timeout: 5e3, stdio: "ignore" });
+        mkdirSync3(pluginDir, { recursive: true });
       } catch {
       }
       try {
-        execSync(`ln -sf "${composeBin}" "${pluginPath}"`, { timeout: 5e3, stdio: "ignore" });
+        symlinkSync(composeBin, pluginPath);
       } catch {
       }
     } catch {
@@ -6140,8 +6230,11 @@ var DependencyInstaller = class {
       return;
     }
     this.onProgress("__progress__:5:Installing Docker Engine...");
+    const tmpDir = join6(homedir5(), ".agenticmail", "tmp");
+    await mkdir2(tmpDir, { recursive: true });
+    const scriptPath = join6(tmpDir, "install-docker.sh");
     const dlResult = await runShellWithRollingOutput(
-      "curl -fsSL https://get.docker.com -o /tmp/install-docker.sh && sudo sh /tmp/install-docker.sh",
+      `curl -fsSL https://get.docker.com -o "${scriptPath}" && sudo sh "${scriptPath}"`,
       { timeout: 3e5 }
     );
     if (dlResult.exitCode !== 0) {
@@ -6150,15 +6243,15 @@ var DependencyInstaller = class {
       );
     }
     const user = process.env.USER || process.env.LOGNAME || "";
-    if (user && user !== "root") {
+    if (user && user !== "root" && /^[a-zA-Z0-9._-]+$/.test(user)) {
       this.onProgress("__progress__:80:Adding user to docker group...");
       try {
-        execSync(`sudo usermod -aG docker ${user}`, { timeout: 1e4, stdio: "ignore" });
+        execFileSync2("sudo", ["usermod", "-aG", "docker", user], { timeout: 1e4, stdio: "ignore" });
       } catch {
       }
     }
     try {
-      await unlink("/tmp/install-docker.sh");
+      await unlink(scriptPath);
     } catch {
     }
     this.onProgress("__progress__:85:Starting Docker service...");
@@ -6422,7 +6515,7 @@ var DependencyInstaller = class {
 
 // src/setup/service.ts
 import { execFileSync as execFileSync3, execSync as execSync2 } from "child_process";
-import { existsSync as existsSync5, readFileSync as readFileSync2, writeFileSync as writeFileSync3, unlinkSync, mkdirSync as mkdirSync3 } from "fs";
+import { existsSync as existsSync5, readFileSync as readFileSync2, writeFileSync as writeFileSync3, unlinkSync, mkdirSync as mkdirSync4, chmodSync } from "fs";
 import { join as join7 } from "path";
 import { homedir as homedir6, platform as platform3 } from "os";
 var PLIST_LABEL = "com.agenticmail.server";
@@ -6495,7 +6588,7 @@ var ServiceManager = class {
    */
   cacheApiEntryPath(entryPath) {
     const dataDir = join7(homedir6(), ".agenticmail");
-    if (!existsSync5(dataDir)) mkdirSync3(dataDir, { recursive: true });
+    if (!existsSync5(dataDir)) mkdirSync4(dataDir, { recursive: true });
     writeFileSync3(join7(dataDir, "api-entry.path"), entryPath);
   }
   /**
@@ -6529,7 +6622,7 @@ var ServiceManager = class {
   generateStartScript(nodePath, apiEntry) {
     const scriptPath = join7(homedir6(), ".agenticmail", "bin", "start-server.sh");
     const scriptDir = join7(homedir6(), ".agenticmail", "bin");
-    if (!existsSync5(scriptDir)) mkdirSync3(scriptDir, { recursive: true });
+    if (!existsSync5(scriptDir)) mkdirSync4(scriptDir, { recursive: true });
     const script = [
       "#!/bin/bash",
       "# AgenticMail auto-start script",
@@ -6595,7 +6688,7 @@ var ServiceManager = class {
   generatePlist(nodePath, apiEntry, configPath) {
     const config = JSON.parse(readFileSync2(configPath, "utf-8"));
     const logDir = join7(homedir6(), ".agenticmail", "logs");
-    if (!existsSync5(logDir)) mkdirSync3(logDir, { recursive: true });
+    if (!existsSync5(logDir)) mkdirSync4(logDir, { recursive: true });
     const version = this.getVersion();
     const startScript = this.generateStartScript(nodePath, apiEntry);
     return `<?xml version="1.0" encoding="UTF-8"?>
@@ -6619,26 +6712,6 @@ var ServiceManager = class {
     <string>${homedir6()}</string>
     <key>AGENTICMAIL_DATA_DIR</key>
     <string>${config.dataDir || join7(homedir6(), ".agenticmail")}</string>
-    <key>AGENTICMAIL_MASTER_KEY</key>
-    <string>${config.masterKey}</string>
-    <key>STALWART_ADMIN_USER</key>
-    <string>${config.stalwart.adminUser}</string>
-    <key>STALWART_ADMIN_PASSWORD</key>
-    <string>${config.stalwart.adminPassword}</string>
-    <key>STALWART_URL</key>
-    <string>${config.stalwart.url}</string>
-    <key>AGENTICMAIL_API_PORT</key>
-    <string>${String(config.api.port)}</string>
-    <key>AGENTICMAIL_API_HOST</key>
-    <string>${config.api.host}</string>
-    <key>SMTP_HOST</key>
-    <string>${config.smtp.host}</string>
-    <key>SMTP_PORT</key>
-    <string>${String(config.smtp.port)}</string>
-    <key>IMAP_HOST</key>
-    <string>${config.imap.host}</string>
-    <key>IMAP_PORT</key>
-    <string>${String(config.imap.port)}</string>
     <key>PATH</key>
     <string>/opt/homebrew/bin:/usr/local/bin:/usr/bin:/bin:/usr/sbin:/sbin</string>
     <key>AGENTICMAIL_SERVICE_VERSION</key>
@@ -6711,16 +6784,6 @@ TimeoutStartSec=660
 LimitNOFILE=8192
 Environment=HOME=${homedir6()}
 Environment=AGENTICMAIL_DATA_DIR=${dataDir}
-Environment=AGENTICMAIL_MASTER_KEY=${config.masterKey}
-Environment=STALWART_ADMIN_USER=${config.stalwart.adminUser}
-Environment=STALWART_ADMIN_PASSWORD=${config.stalwart.adminPassword}
-Environment=STALWART_URL=${config.stalwart.url}
-Environment=AGENTICMAIL_API_PORT=${config.api.port}
-Environment=AGENTICMAIL_API_HOST=${config.api.host}
-Environment=SMTP_HOST=${config.smtp.host}
-Environment=SMTP_PORT=${config.smtp.port}
-Environment=IMAP_HOST=${config.imap.host}
-Environment=IMAP_PORT=${config.imap.port}
 Environment=PATH=/usr/local/bin:/usr/bin:/bin:/opt/homebrew/bin
 Environment=AGENTICMAIL_SERVICE_VERSION=${version}
 
@@ -6746,7 +6809,7 @@ WantedBy=default.target
     const servicePath = this.getServicePath();
     if (this.os === "darwin") {
       const dir = join7(homedir6(), "Library", "LaunchAgents");
-      if (!existsSync5(dir)) mkdirSync3(dir, { recursive: true });
+      if (!existsSync5(dir)) mkdirSync4(dir, { recursive: true });
       if (existsSync5(servicePath)) {
         try {
           execFileSync3("launchctl", ["unload", servicePath], { timeout: 1e4, stdio: "ignore" });
@@ -6755,6 +6818,7 @@ WantedBy=default.target
       }
       const plist = this.generatePlist(nodePath, apiEntry, configPath);
       writeFileSync3(servicePath, plist);
+      chmodSync(servicePath, 384);
       try {
         execFileSync3("launchctl", ["load", servicePath], { timeout: 1e4, stdio: "ignore" });
       } catch (err) {
@@ -6763,9 +6827,10 @@ WantedBy=default.target
       return { installed: true, message: `Service installed at ${servicePath}` };
     } else if (this.os === "linux") {
       const dir = join7(homedir6(), ".config", "systemd", "user");
-      if (!existsSync5(dir)) mkdirSync3(dir, { recursive: true });
+      if (!existsSync5(dir)) mkdirSync4(dir, { recursive: true });
       const unit = this.generateSystemdUnit(nodePath, apiEntry, configPath);
       writeFileSync3(servicePath, unit);
+      chmodSync(servicePath, 384);
       try {
         execFileSync3("systemctl", ["--user", "daemon-reload"], { timeout: 1e4, stdio: "ignore" });
         execFileSync3("systemctl", ["--user", "enable", SYSTEMD_UNIT], { timeout: 1e4, stdio: "ignore" });
@@ -6923,10 +6988,10 @@ var SetupManager = class {
       }
     }
     if (!existsSync6(dataDir)) {
-      mkdirSync4(dataDir, { recursive: true });
+      mkdirSync5(dataDir, { recursive: true });
     }
-    const masterKey = `mk_${randomBytes2(24).toString("hex")}`;
-    const stalwartPassword = randomBytes2(16).toString("hex");
+    const masterKey = `mk_${randomBytes3(24).toString("hex")}`;
+    const stalwartPassword = randomBytes3(16).toString("hex");
     const config = {
       masterKey,
       stalwart: {
@@ -6940,7 +7005,7 @@ var SetupManager = class {
       dataDir
     };
     writeFileSync4(configPath, JSON.stringify(config, null, 2));
-    chmodSync(configPath, 384);
+    chmodSync2(configPath, 384);
     const envContent = `# Auto-generated by agenticmail setup
 STALWART_ADMIN_USER=admin
 STALWART_ADMIN_PASSWORD=${stalwartPassword}
@@ -6956,7 +7021,7 @@ IMAP_HOST=localhost
 IMAP_PORT=143
 `;
     writeFileSync4(envPath, envContent);
-    chmodSync(envPath, 384);
+    chmodSync2(envPath, 384);
     this.generateDockerFiles(config);
     return { configPath, envPath, config, isNew: true };
   }
@@ -6967,7 +7032,7 @@ IMAP_PORT=143
   generateDockerFiles(config) {
     const dataDir = config.dataDir || join8(homedir7(), ".agenticmail");
     if (!existsSync6(dataDir)) {
-      mkdirSync4(dataDir, { recursive: true });
+      mkdirSync5(dataDir, { recursive: true });
     }
     const password = config.stalwart?.adminPassword || "changeme";
     const composePath = join8(dataDir, "docker-compose.yml");
@@ -6976,16 +7041,16 @@ IMAP_PORT=143
     image: stalwartlabs/stalwart:latest
     container_name: agenticmail-stalwart
     ports:
-      - "8080:8080"   # HTTP Admin + JMAP
-      - "587:587"     # SMTP Submission
-      - "143:143"     # IMAP
-      - "25:25"       # SMTP
+      - "127.0.0.1:8080:8080"   # HTTP Admin + JMAP (localhost only)
+      - "127.0.0.1:587:587"     # SMTP Submission (localhost only)
+      - "127.0.0.1:143:143"     # IMAP (localhost only)
+      - "127.0.0.1:25:25"       # SMTP (localhost only)
     volumes:
       - stalwart-data:/opt/stalwart
       - ./stalwart.toml:/opt/stalwart/etc/config.toml:ro
     restart: unless-stopped
     healthcheck:
-      test: ["CMD-SHELL", "stalwart-cli -u http://localhost:8080 -c admin:${password} server list-domains 2>/dev/null || true"]
+      test: ["CMD-SHELL", "curl -sf http://localhost:8080/health || true"]
       interval: 10s
       timeout: 5s
       retries: 5
@@ -6993,6 +7058,7 @@ IMAP_PORT=143
 volumes:
   stalwart-data:
 `);
+    chmodSync2(composePath, 384);
     const tomlPath = join8(dataDir, "stalwart.toml");
     writeFileSync4(tomlPath, `# Stalwart Mail Server \u2014 AgenticMail Configuration
 
@@ -7044,6 +7110,7 @@ enable = true
 user = "admin"
 secret = "${password}"
 `);
+    chmodSync2(tomlPath, 384);
   }
   /**
    * Check if config has already been initialized.

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@agenticmail/core",
-  "version": "0.5.32",
-  "description": "Core SDK for AgenticMail \u2014 email, SMS, and phone number access for AI agents",
+  "version": "0.5.34",
+  "description": "Core SDK for AgenticMail — email, SMS, and phone number access for AI agents",
   "type": "module",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
@@ -28,7 +28,7 @@
     "better-sqlite3": "^11.8.0",
     "imapflow": "^1.0.170",
     "mailparser": "^3.7.2",
-    "nodemailer": "^6.10.0",
+    "nodemailer": "^8.0.1",
     "uuid": "^11.1.0"
   },
   "devDependencies": {