@agentvault/agentvault 0.18.0 → 0.19.0

package/dist/create-agent.d.ts

@@ -0,0 +1,28 @@
+/**
+ * AgentVault "create" command — spin up a brand new OpenClaw peer agent.
+ *
+ * Ports the logic from ~/.openclaw/workspace/scripts/create-agent.sh into
+ * TypeScript, eliminating the jq dependency.
+ *
+ * Usage: npx @agentvault/agentvault create <name> --token=av_tok_...
+ */
+export interface CreateAgentOptions {
+    name: string;
+    token: string;
+    port?: number;
+    apiUrl: string;
+    force?: boolean;
+}
+/** Resolve the OpenClaw home directory (~/.openclaw) */
+export declare function openclawHome(): string;
+/** Parse openclaw.json and return its contents. */
+export declare function readOpenClawConfig(home: string): any;
+/**
+ * Scan all accounts in openclaw.json for httpPort values and return next free port.
+ * Minimum port is `startPort` (default 18790).
+ */
+export declare function findNextPort(config: any, startPort?: number): number;
+/** Generate workspace template files for a new agent. */
+export declare function generateWorkspaceFiles(name: string): Record<string, string>;
+export declare function runCreateCommand(options: CreateAgentOptions): Promise<void>;
+//# sourceMappingURL=create-agent.d.ts.map

package/dist/create-agent.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"create-agent.d.ts","sourceRoot":"","sources":["../src/create-agent.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAOH,MAAM,WAAW,kBAAkB;IACjC,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,CAAC,EAAE,OAAO,CAAC;CACjB;AAID,wDAAwD;AACxD,wBAAgB,YAAY,IAAI,MAAM,CAGrC;AAED,mDAAmD;AACnD,wBAAgB,kBAAkB,CAAC,IAAI,EAAE,MAAM,GAAG,GAAG,CAIpD;AA4BD;;;GAGG;AACH,wBAAgB,YAAY,CAAC,MAAM,EAAE,GAAG,EAAE,SAAS,SAAQ,GAAG,MAAM,CAInE;AAOD,yDAAyD;AACzD,wBAAgB,sBAAsB,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CA8C3E;AAID,wBAAsB,gBAAgB,CAAC,OAAO,EAAE,kBAAkB,GAAG,OAAO,CAAC,IAAI,CAAC,CAqOjF"}

package/dist/credential-store.d.ts

@@ -0,0 +1,62 @@
+/**
+ * In-memory credential store for renter-provided credentials.
+ *
+ * Security design:
+ * - Never persisted to disk (agentvault.json or any file)
+ * - Scoped by room ID (each rental = one room)
+ * - Auto-purges on process exit (SIGINT, SIGTERM, exit)
+ * - Credential values stripped before any logging
+ * - Nonce tracking for replay prevention
+ */
+export interface RenterCredential {
+    key: string;
+    value: string;
+    type: string;
+    scope: string;
+    grantedAt: string;
+    agreementId: string;
+    roomId: string;
+}
+/** Redacted view of a credential (for logging / context without values). */
+export interface CredentialInfo {
+    key: string;
+    type: string;
+    scope: string;
+    grantedAt: string;
+}
+export declare class CredentialStore {
+    /** Map<roomId, Map<credentialKey, RenterCredential>> */
+    private _store;
+    /** Seen nonces for replay prevention — bounded per room */
+    private _seenNonces;
+    private static readonly MAX_NONCES_PER_ROOM;
+    constructor();
+    /**
+     * Check if a nonce has been seen (replay prevention).
+     * Returns true if the nonce is new (not a replay), false if seen before.
+     */
+    checkNonce(roomId: string, nonce: string): boolean;
+    /** Store a credential for a room. */
+    grant(roomId: string, credential: RenterCredential): void;
+    /** Revoke a specific credential. */
+    revoke(roomId: string, key: string): boolean;
+    /** Revoke all credentials for a room. */
+    revokeAll(roomId: string): void;
+    /** Get a credential value. */
+    get(roomId: string, key: string): RenterCredential | undefined;
+    /** Get all credentials for a room (values included — only for agent context injection). */
+    getAll(roomId: string): RenterCredential[];
+    /** Get credential info without values (safe for logging). */
+    getInfo(roomId: string): CredentialInfo[];
+    /** Check if a specific credential exists. */
+    has(roomId: string, key: string): boolean;
+    /** Get credential count for a room. */
+    count(roomId: string): number;
+    /** Purge all credentials for a room (rental end). */
+    purgeForRoom(roomId: string): void;
+    /** Purge everything (process exit). */
+    purgeAll(): void;
+    /** Get a map of credential key → value for context injection. */
+    getCredentialMap(roomId: string): Record<string, string>;
+}
+//# sourceMappingURL=credential-store.d.ts.map

package/dist/credential-store.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"credential-store.d.ts","sourceRoot":"","sources":["../src/credential-store.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,MAAM,WAAW,gBAAgB;IAC/B,GAAG,EAAE,MAAM,CAAC;IACZ,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,MAAM,CAAC;CAChB;AAED,4EAA4E;AAC5E,MAAM,WAAW,cAAc;IAC7B,GAAG,EAAE,MAAM,CAAC;IACZ,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,qBAAa,eAAe;IAC1B,wDAAwD;IACxD,OAAO,CAAC,MAAM,CAAoD;IAClE,2DAA2D;IAC3D,OAAO,CAAC,WAAW,CAAkC;IACrD,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,mBAAmB,CAAQ;;IAUnD;;;OAGG;IACH,UAAU,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO;IAwBlD,qCAAqC;IACrC,KAAK,CAAC,MAAM,EAAE,MAAM,EAAE,UAAU,EAAE,gBAAgB,GAAG,IAAI;IASzD,oCAAoC;IACpC,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,GAAG,OAAO;IAM5C,yCAAyC;IACzC,SAAS,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI;IAI/B,8BAA8B;IAC9B,GAAG,CAAC,MAAM,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,GAAG,gBAAgB,GAAG,SAAS;IAI9D,2FAA2F;IAC3F,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,gBAAgB,EAAE;IAM1C,6DAA6D;IAC7D,OAAO,CAAC,MAAM,EAAE,MAAM,GAAG,cAAc,EAAE;IAWzC,6CAA6C;IAC7C,GAAG,CAAC,MAAM,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,GAAG,OAAO;IAIzC,uCAAuC;IACvC,KAAK,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM;IAI7B,qDAAqD;IACrD,YAAY,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI;IAKlC,uCAAuC;IACvC,QAAQ,IAAI,IAAI;IAKhB,iEAAiE;IACjE,gBAAgB,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC;CASzD"}

package/dist/crypto-helpers.d.ts

@@ -0,0 +1,2 @@
+export { hexToBytes, bytesToHex, base64ToBytes, bytesToBase64, encryptedMessageToTransport, transportToEncryptedMessage, encryptedMessageToTransportV2Full, type TransportMessage, type TransportMessageV2, SenderKeyChain, SenderKeyState, type SenderKeyDistribution, type SenderKeyMessage, } from "@agentvault/crypto";
+//# sourceMappingURL=crypto-helpers.d.ts.map

package/dist/crypto-helpers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"crypto-helpers.d.ts","sourceRoot":"","sources":["../src/crypto-helpers.ts"],"names":[],"mappings":"AAEA,OAAO,EACL,UAAU,EACV,UAAU,EACV,aAAa,EACb,aAAa,EACb,2BAA2B,EAC3B,2BAA2B,EAC3B,iCAAiC,EACjC,KAAK,gBAAgB,EACrB,KAAK,kBAAkB,EACvB,cAAc,EACd,cAAc,EACd,KAAK,qBAAqB,EAC1B,KAAK,gBAAgB,GACtB,MAAM,oBAAoB,CAAC"}

package/dist/crypto-helpers.js

@@ -0,0 +1,4 @@
+// Re-export transport utilities from shared @agentvault/crypto package.
+// Plugin code continues importing from ./crypto-helpers.js — no import changes needed.
+export { hexToBytes, bytesToHex, base64ToBytes, bytesToBase64, encryptedMessageToTransport, transportToEncryptedMessage, } from "@agentvault/crypto";
+//# sourceMappingURL=crypto-helpers.js.map

package/dist/crypto-helpers.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"crypto-helpers.js","sourceRoot":"","sources":["../src/crypto-helpers.ts"],"names":[],"mappings":"AAAA,wEAAwE;AACxE,uFAAuF;AACvF,OAAO,EACL,UAAU,EACV,UAAU,EACV,aAAa,EACb,aAAa,EACb,2BAA2B,EAC3B,2BAA2B,GAE5B,MAAM,oBAAoB,CAAC"}

package/dist/doctor.d.ts

@@ -0,0 +1,41 @@
+/**
+ * AgentVault "doctor" command — diagnostic checks and plist fixer.
+ *
+ * Detects stale macOS LaunchAgent plist paths (common after pnpm updates)
+ * and offers to install a stable wrapper script so future updates don't
+ * break the gateway.
+ *
+ * Usage: npx @agentvault/agentvault doctor [--fix]
+ */
+export type CheckStatus = "pass" | "warn" | "fail" | "skip";
+export interface CheckResult {
+    name: string;
+    status: CheckStatus;
+    message: string;
+}
+export interface PlistInfo {
+    plistPath: string;
+    programArgs: string[];
+    stalePaths: string[];
+}
+export interface PlistValidationResult {
+    status: "ok" | "stale" | "missing" | "skip" | "already-fixed";
+    plistPath?: string;
+    stalePaths?: string[];
+}
+export declare function checkOpenClawInstalled(): CheckResult;
+export declare function checkConfigExists(home: string): CheckResult;
+export declare function checkAgentVaultChannel(config: any): CheckResult;
+export declare function checkPluginsAllow(config: any): CheckResult;
+export declare function checkPlist(): CheckResult;
+export declare function checkGatewayPort(): CheckResult;
+export declare function checkAgentDataDirs(config: any): CheckResult;
+export declare function checkPm2Status(): CheckResult;
+export declare function plistPath(): string;
+export declare function parsePlist(plistFile: string): PlistInfo | null;
+export declare function validatePlist(): PlistValidationResult;
+export declare function applyPlistFix(info: PlistInfo): boolean;
+export declare function runDoctorCommand(options?: {
+    fix?: boolean;
+}): Promise<void>;
+//# sourceMappingURL=doctor.d.ts.map

package/dist/doctor.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"doctor.d.ts","sourceRoot":"","sources":["../src/doctor.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAUH,MAAM,MAAM,WAAW,GAAG,MAAM,GAAG,MAAM,GAAG,MAAM,GAAG,MAAM,CAAC;AAE5D,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,WAAW,CAAC;IACpB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,SAAS;IACxB,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,UAAU,EAAE,MAAM,EAAE,CAAC;CACtB;AAED,MAAM,WAAW,qBAAqB;IACpC,MAAM,EAAE,IAAI,GAAG,OAAO,GAAG,SAAS,GAAG,MAAM,GAAG,eAAe,CAAC;IAC9D,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;CACvB;AAOD,wBAAgB,sBAAsB,IAAI,WAAW,CAYpD;AAED,wBAAgB,iBAAiB,CAAC,IAAI,EAAE,MAAM,GAAG,WAAW,CAmB3D;AAED,wBAAgB,sBAAsB,CAAC,MAAM,EAAE,GAAG,GAAG,WAAW,CAgB/D;AAED,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,GAAG,GAAG,WAAW,CAoB1D;AAED,wBAAgB,UAAU,IAAI,WAAW,CAyBxC;AAED,wBAAgB,gBAAgB,IAAI,WAAW,CAW9C;AAED,wBAAgB,kBAAkB,CAAC,MAAM,EAAE,GAAG,GAAG,WAAW,CAsC3D;AAED,wBAAgB,cAAc,IAAI,WAAW,CAoB5C;AAID,wBAAgB,SAAS,IAAI,MAAM,CAGlC;AAED,wBAAgB,UAAU,CAAC,SAAS,EAAE,MAAM,GAAG,SAAS,GAAG,IAAI,CA2B9D;AAED,wBAAgB,aAAa,IAAI,qBAAqB,CA2BrD;AAID,wBAAgB,aAAa,CAAC,IAAI,EAAE,SAAS,GAAG,OAAO,CAsEtD;AAID,wBAAsB,gBAAgB,CAAC,OAAO,CAAC,EAAE;IAAE,GAAG,CAAC,EAAE,OAAO,CAAA;CAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAoGjF"}

package/dist/fetch-interceptor.d.ts

@@ -0,0 +1,32 @@
+export interface HttpCallReport {
+    method: string;
+    url: string;
+    statusCode: number;
+    latencyMs: number;
+    traceId?: string;
+    parentSpanId?: string;
+}
+export interface TraceContext {
+    traceId: string;
+    parentSpanId: string;
+}
+export interface FetchInterceptorOptions {
+    onHttpCall: (report: HttpCallReport) => void;
+    skipPatterns?: RegExp[];
+}
+/**
+ * Install HTTP interceptor using both undici diagnostics channels and
+ * globalThis.fetch monkey-patching. Idempotent.
+ */
+export declare function installFetchInterceptor(opts: FetchInterceptorOptions): void;
+/**
+ * Uninstall all interceptors. Safe to call even if not installed.
+ */
+export declare function uninstallFetchInterceptor(): void;
+/**
+ * Run an async function with trace context attached via AsyncLocalStorage.
+ * Any HTTP calls made within `fn` (via undici or fetch) will include
+ * traceId/parentSpanId in their HttpCallReport.
+ */
+export declare function runWithTraceContext<T>(ctx: TraceContext, fn: () => T | Promise<T>): Promise<T>;
+//# sourceMappingURL=fetch-interceptor.d.ts.map

package/dist/fetch-interceptor.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"fetch-interceptor.d.ts","sourceRoot":"","sources":["../src/fetch-interceptor.ts"],"names":[],"mappings":"AAoBA,MAAM,WAAW,cAAc;IAC7B,MAAM,EAAE,MAAM,CAAC;IACf,GAAG,EAAE,MAAM,CAAC;IACZ,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAED,MAAM,WAAW,YAAY;IAC3B,OAAO,EAAE,MAAM,CAAC;IAChB,YAAY,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,uBAAuB;IACtC,UAAU,EAAE,CAAC,MAAM,EAAE,cAAc,KAAK,IAAI,CAAC;IAC7C,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;CACzB;AA0CD;;;GAGG;AACH,wBAAgB,uBAAuB,CAAC,IAAI,EAAE,uBAAuB,GAAG,IAAI,CAmK3E;AAED;;GAEG;AACH,wBAAgB,yBAAyB,IAAI,IAAI,CAkBhD;AAED;;;;GAIG;AACH,wBAAgB,mBAAmB,CAAC,CAAC,EACnC,GAAG,EAAE,YAAY,EACjB,EAAE,EAAE,MAAM,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC,GACvB,OAAO,CAAC,CAAC,CAAC,CAEZ"}

package/dist/gateway-send.d.ts

@@ -0,0 +1,98 @@
+/**
+ * Gateway send helper — lets agents send messages to their owner
+ * via the plugin's local HTTP server (port 18790) or OpenClaw managed routes.
+ *
+ * Delivery path: sendToOwner() → plugin HTTP /send → SecureChannel.send()
+ *   → Double Ratchet encrypt → WebSocket → backend → owner's app
+ */
+export interface GatewaySendOptions {
+    /** Override the gateway port (default: env GATEWAY_SEND_PORT or 18790) */
+    port?: number;
+    /** Override the gateway host (default: 127.0.0.1) */
+    host?: string;
+    /** AbortSignal for cancellation */
+    signal?: AbortSignal;
+}
+export interface GatewaySendResult {
+    ok: boolean;
+    error?: string;
+}
+export interface GatewayStatusResult {
+    ok: boolean;
+    state?: string;
+    deviceId?: string;
+    sessions?: number;
+    error?: string;
+}
+/**
+ * Send a plaintext message to the agent's owner via the gateway HTTP server.
+ * Never throws — returns `{ ok: false, error }` on failure.
+ */
+export declare function sendToOwner(text: string, options?: GatewaySendOptions): Promise<GatewaySendResult>;
+/**
+ * Send a decision request to the agent's owner via the gateway HTTP server.
+ * Never throws — returns `{ ok: false, error }` on failure.
+ */
+export declare function sendDecisionToOwner(request: {
+    title: string;
+    description?: string;
+    options: Array<{
+        option_id: string;
+        label: string;
+        risk_level?: string;
+        is_default?: boolean;
+    }>;
+    context_refs?: Array<{
+        type: string;
+        uri: string;
+        label: string;
+    }>;
+    deadline?: string;
+    auto_action?: {
+        option_id: string;
+        trigger: string;
+        description?: string;
+    };
+}, options?: GatewaySendOptions): Promise<GatewaySendResult & {
+    decision_id?: string;
+}>;
+/**
+ * Send a plaintext message to a specific room via the gateway HTTP server.
+ * Never throws — returns `{ ok: false, error }` on failure.
+ */
+export declare function sendToRoom(roomId: string, text: string, options?: GatewaySendOptions): Promise<GatewaySendResult>;
+/**
+ * Send a plaintext message to any target via the gateway HTTP server.
+ * Accepts target strings: "owner", "room:<id>", "a2a:<addr>", "context".
+ * Never throws — returns `{ ok: false, error }` on failure.
+ */
+export declare function sendToTarget(target: string, text: string, options?: GatewaySendOptions): Promise<GatewaySendResult & {
+    destination?: {
+        kind: string;
+        id?: string;
+    };
+}>;
+/**
+ * Discover available delivery targets from the gateway.
+ * Never throws — returns `{ ok: false, error }` on failure.
+ */
+export declare function listTargets(options?: GatewaySendOptions): Promise<{
+    ok: boolean;
+    targets?: Array<{
+        kind: string;
+        id: string;
+        label: string;
+        available: boolean;
+    }>;
+    context?: {
+        kind: string;
+        roomId?: string;
+    };
+    error?: string;
+}>;
+/**
+ * Check gateway health / status.
+ * Never throws — returns `{ ok: false, error }` on failure.
+ */
+export declare function checkGateway(options?: GatewaySendOptions): Promise<GatewayStatusResult>;
+//# sourceMappingURL=gateway-send.d.ts.map

package/dist/gateway-send.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"gateway-send.d.ts","sourceRoot":"","sources":["../src/gateway-send.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAIH,MAAM,WAAW,kBAAkB;IACjC,0EAA0E;IAC1E,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,qDAAqD;IACrD,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,mCAAmC;IACnC,MAAM,CAAC,EAAE,WAAW,CAAC;CACtB;AAED,MAAM,WAAW,iBAAiB;IAChC,EAAE,EAAE,OAAO,CAAC;IACZ,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,mBAAmB;IAClC,EAAE,EAAE,OAAO,CAAC;IACZ,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AA4BD;;;GAGG;AACH,wBAAsB,WAAW,CAC/B,IAAI,EAAE,MAAM,EACZ,OAAO,CAAC,EAAE,kBAAkB,GAC3B,OAAO,CAAC,iBAAiB,CAAC,CA4B5B;AAED;;;GAGG;AACH,wBAAsB,mBAAmB,CACvC,OAAO,EAAE;IACP,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,OAAO,EAAE,KAAK,CAAC;QAAE,SAAS,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAC;QAAC,UAAU,CAAC,EAAE,MAAM,CAAC;QAAC,UAAU,CAAC,EAAE,OAAO,CAAA;KAAE,CAAC,CAAC;IAChG,YAAY,CAAC,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,GAAG,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IACnE,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,WAAW,CAAC,EAAE;QAAE,SAAS,EAAE,MAAM,CAAC;QAAC,OAAO,EAAE,MAAM,CAAC;QAAC,WAAW,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;CAC5E,EACD,OAAO,CAAC,EAAE,kBAAkB,GAC3B,OAAO,CAAC,iBAAiB,GAAG;IAAE,WAAW,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,CA8BvD;AAED;;;GAGG;AACH,wBAAsB,UAAU,CAC9B,MAAM,EAAE,MAAM,EACd,IAAI,EAAE,MAAM,EACZ,OAAO,CAAC,EAAE,kBAAkB,GAC3B,OAAO,CAAC,iBAAiB,CAAC,CA8B5B;AAED;;;;GAIG;AACH,wBAAsB,YAAY,CAChC,MAAM,EAAE,MAAM,EACd,IAAI,EAAE,MAAM,EACZ,OAAO,CAAC,EAAE,kBAAkB,GAC3B,OAAO,CAAC,iBAAiB,GAAG;IAAE,WAAW,CAAC,EAAE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,EAAE,CAAC,EAAE,MAAM,CAAA;KAAE,CAAA;CAAE,CAAC,CA0C9E;AAED;;;GAGG;AACH,wBAAsB,WAAW,CAC/B,OAAO,CAAC,EAAE,kBAAkB,GAC3B,OAAO,CAAC;IAAE,EAAE,EAAE,OAAO,CAAC;IAAC,OAAO,CAAC,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,EAAE,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAC;QAAC,SAAS,EAAE,OAAO,CAAA;KAAE,CAAC,CAAC;IAAC,OAAO,CAAC,EAAE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,MAAM,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,CAmBzK;AAED;;;GAGG;AACH,wBAAsB,YAAY,CAChC,OAAO,CAAC,EAAE,kBAAkB,GAC3B,OAAO,CAAC,mBAAmB,CAAC,CAoB9B"}

package/dist/http-handlers.d.ts

@@ -0,0 +1,53 @@
+/**
+ * Extracted HTTP handler logic for the AgentVault plugin.
+ *
+ * These handlers are shared between:
+ * 1. The self-managed HTTP server in channel.ts (legacy/fallback path)
+ * 2. OpenClaw's registerHttpRoute() managed routes (new path)
+ *
+ * Both entry points call the same handler functions, ensuring consistent
+ * behavior regardless of how the route is served.
+ */
+import type { SecureChannel } from "./channel.js";
+export interface HandlerResult {
+    status: number;
+    body: Record<string, unknown>;
+}
+/**
+ * Handle POST /send — send a message (text, file, or room).
+ *
+ * Routing: explicit target fields only — no silent lastInboundRoomId fallback.
+ * - hub_address / a2a_address / channel_id → A2A
+ * - room_id → room
+ * - target: "context" → resolve from lastInboundRoomId (opt-in)
+ * - No target fields → owner (the breaking fix)
+ */
+export declare function handleSendRequest(parsed: Record<string, unknown>, channel: SecureChannel): Promise<HandlerResult>;
+/**
+ * Handle POST /action — send an action confirmation.
+ */
+export declare function handleActionRequest(parsed: Record<string, unknown>, channel: SecureChannel): Promise<HandlerResult>;
+/**
+ * Handle POST /decision — send a decision request to the owner.
+ */
+export declare function handleDecisionRequest(parsed: Record<string, unknown>, channel: SecureChannel): Promise<HandlerResult>;
+/**
+ * Handle GET /status — return channel health info.
+ */
+export declare function handleStatusRequest(channel: SecureChannel): HandlerResult;
+/**
+ * Handle GET /targets — return available delivery destinations.
+ */
+export declare function handleTargetsRequest(channel: SecureChannel): HandlerResult;
+/**
+ * Handle GET /trust — return the agent's current Trust Gate token state.
+ */
+export declare function handleTrustRequest(channel: SecureChannel): HandlerResult;
+/**
+ * Handle GET /mcp-config — return MCP connection config for this agent.
+ *
+ * Returns JSON suitable for adding to Claude Code, Cursor, or other MCP host
+ * configuration files.
+ */
+export declare function handleMcpConfigRequest(agentName: string, port: number, mcpSkillCount: number): HandlerResult;
+//# sourceMappingURL=http-handlers.d.ts.map

package/dist/http-handlers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"http-handlers.d.ts","sourceRoot":"","sources":["../src/http-handlers.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAGlD,MAAM,WAAW,aAAa;IAC5B,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CAC/B;AAED;;;;;;;;GAQG;AACH,wBAAsB,iBAAiB,CACrC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC/B,OAAO,EAAE,aAAa,GACrB,OAAO,CAAC,aAAa,CAAC,CAqExB;AAED;;GAEG;AACH,wBAAsB,mBAAmB,CACvC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC/B,OAAO,EAAE,aAAa,GACrB,OAAO,CAAC,aAAa,CAAC,CAmCxB;AAED;;GAEG;AACH,wBAAsB,qBAAqB,CACzC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC/B,OAAO,EAAE,aAAa,GACrB,OAAO,CAAC,aAAa,CAAC,CA8BxB;AAED;;GAEG;AACH,wBAAgB,mBAAmB,CAAC,OAAO,EAAE,aAAa,GAAG,aAAa,CAUzE;AAED;;GAEG;AACH,wBAAgB,oBAAoB,CAAC,OAAO,EAAE,aAAa,GAAG,aAAa,CAW1E;AAED;;GAEG;AACH,wBAAgB,kBAAkB,CAChC,OAAO,EAAE,aAAa,GACrB,aAAa,CAiBf;AAED;;;;;GAKG;AACH,wBAAgB,sBAAsB,CACpC,SAAS,EAAE,MAAM,EACjB,IAAI,EAAE,MAAM,EACZ,aAAa,EAAE,MAAM,GACpB,aAAa,CAkBf"}

package/dist/index.d.ts

@@ -0,0 +1,27 @@
+export { SecureChannel } from "./channel.js";
+export type { SecureChannelConfig, ChannelState, MessageMetadata, AttachmentData, PersistedState, LegacyPersistedState, DeviceSession, HistoryEntry, SendOptions, DecisionOption, DecisionRequest, DecisionResponse, ContextRef, HeartbeatStatus, StatusAlert, RoomInfo, RoomMemberInfo, RoomConversationInfo, RoomState, A2AChannel, A2AMessage, RoomParticipantEvent, DeliveryTarget, DeliveryContent, DeliveryOptions, DeliveryReceipt, TargetInfo, ActionConfirmation, ArtifactPayload, PolicyAlert, ApprovalRequest, ApprovalResponse, CredentialGrantPayload, CredentialRevokePayload, CredentialAckPayload, CredentialRequestPayload, } from "./types.js";
+export { parseTarget } from "./types.js";
+export { CredentialStore } from "./credential-store.js";
+export type { RenterCredential, CredentialInfo } from "./credential-store.js";
+export { listAccountIds, resolveAccount } from "./account-config.js";
+export type { ResolvedAccount } from "./account-config.js";
+export { agentVaultPlugin, setOcRuntime, getActiveChannel } from "./openclaw-plugin.js";
+export { sendToOwner, sendToRoom, sendToTarget, listTargets, sendDecisionToOwner, checkGateway } from "./gateway-send.js";
+export type { GatewaySendOptions, GatewaySendResult, GatewayStatusResult, } from "./gateway-send.js";
+export { requestHeartbeatNow, onAgentEvent, onSessionTranscriptUpdate } from "./openclaw-compat.js";
+export { isUsingManagedRoutes } from "./openclaw-entry.js";
+export { handleSendRequest, handleActionRequest, handleDecisionRequest, handleStatusRequest, handleTargetsRequest } from "./http-handlers.js";
+export type { HandlerResult } from "./http-handlers.js";
+export { AgentVaultMcpServer } from "./mcp-server.js";
+export type { SkillDefinition, McpServerOpts } from "./mcp-server.js";
+export { createMcpHandler, getMcpStatus } from "./mcp-handlers.js";
+export { parseSkillMd, loadSkillsFromDirectory, loadSkillsFromApi, mergeSkills } from "./skill-manifest.js";
+export type { SkillManifest } from "./skill-manifest.js";
+export { invokeSkill } from "./skill-invoker.js";
+export type { InvocationResult, InvocationOpts } from "./skill-invoker.js";
+export { wrapSkillExecution, reportSkillInvocation, drainSkillSpans } from "./skill-telemetry.js";
+export { PolicyEnforcer } from "./policy-enforcer.js";
+export type { PolicyContext, PolicyResult, PolicyViolation, PolicyMetrics } from "./policy-enforcer.js";
+export type { OpenClawPluginApi, PluginRuntime, ChannelGatewayContext, ChannelOutboundPayloadContext, ReplyPayload, MessageSentEvent, SessionStartEvent, SessionEndEvent, AgentEventPayload, TranscriptUpdatePayload, } from "./openclaw-types.js";
+export declare const VERSION = "0.14.1";
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAC7C,YAAY,EACV,mBAAmB,EACnB,YAAY,EACZ,eAAe,EACf,cAAc,EACd,cAAc,EACd,oBAAoB,EACpB,aAAa,EACb,YAAY,EACZ,WAAW,EACX,cAAc,EACd,eAAe,EACf,gBAAgB,EAChB,UAAU,EACV,eAAe,EACf,WAAW,EACX,QAAQ,EACR,cAAc,EACd,oBAAoB,EACpB,SAAS,EACT,UAAU,EACV,UAAU,EACV,oBAAoB,EACpB,cAAc,EACd,eAAe,EACf,eAAe,EACf,eAAe,EACf,UAAU,EACV,kBAAkB,EAClB,eAAe,EACf,WAAW,EACX,eAAe,EACf,gBAAgB,EAChB,sBAAsB,EACtB,uBAAuB,EACvB,oBAAoB,EACpB,wBAAwB,GACzB,MAAM,YAAY,CAAC;AACpB,OAAO,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAGzC,OAAO,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AACxD,YAAY,EAAE,gBAAgB,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAG9E,OAAO,EAAE,cAAc,EAAE,cAAc,EAAE,MAAM,qBAAqB,CAAC;AACrE,YAAY,EAAE,eAAe,EAAE,MAAM,qBAAqB,CAAC;AAG3D,OAAO,EAAE,gBAAgB,EAAE,YAAY,EAAE,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AAGxF,OAAO,EAAE,WAAW,EAAE,UAAU,EAAE,YAAY,EAAE,WAAW,EAAE,mBAAmB,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAC1H,YAAY,EACV,kBAAkB,EAClB,iBAAiB,EACjB,mBAAmB,GACpB,MAAM,mBAAmB,CAAC;AAG3B,OAAO,EAAE,mBAAmB,EAAE,YAAY,EAAE,yBAAyB,EAAE,MAAM,sBAAsB,CAAC;AACpG,OAAO,EAAE,oBAAoB,EAAE,MAAM,qBAAqB,CAAC;AAG3D,OAAO,EAAE,iBAAiB,EAAE,mBAAmB,EAAE,qBAAqB,EAAE,mBAAmB,EAAE,oBAAoB,EAAE,MAAM,oBAAoB,CAAC;AAC9I,YAAY,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AAGxD,OAAO,EAAE,mBAAmB,EAAE,MAAM,iBAAiB,CAAC;AACtD,YAAY,EAAE,eAAe,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAGtE,OAAO,EAAE,gBAAgB,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAGnE,OAAO,EAAE,YAAY,EAAE,uBAAuB,EAAE,iBAAiB,EAAE,WAAW,EAAE,MAAM,qBAAqB,CAAC;AAC5G,YAAY,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AAGzD,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACjD,YAAY,EAAE,gBAAgB,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AAG3E,OAAO,EAAE,kBAAkB,EAAE,qBAAqB,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AAGlG,OAAO,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AACtD,YAAY,EAAE,aAAa,EAAE,YAAY,EAAE,eAAe,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AAGxG,YAAY,EACV,iBAAiB,EACjB,aAAa,EACb,qBAAqB,EACrB,6BAA6B,EAC7B,YAAY,EACZ,gBAAgB,EAChB,iBAAiB,EACjB,eAAe,EACf,iBAAiB,EACjB,uBAAuB,GACxB,MAAM,qBAAqB,CAAC;AAE7B,eAAO,MAAM,OAAO,WAAW,CAAC"}

package/dist/index.js

@@ -46658,7 +46658,8 @@ __export(http_handlers_exports, {
   handleMcpConfigRequest: () => handleMcpConfigRequest,
   handleSendRequest: () => handleSendRequest,
   handleStatusRequest: () => handleStatusRequest,
-  handleTargetsRequest: () => handleTargetsRequest
+  handleTargetsRequest: () => handleTargetsRequest,
+  handleTrustRequest: () => handleTrustRequest
 });
 async function handleSendRequest(parsed, channel) {
   const text = parsed.text;
@@ -46797,6 +46798,24 @@ function handleTargetsRequest(channel) {
     }
   };
 }
+function handleTrustRequest(channel) {
+  const token = channel.trustToken;
+  if (!token) {
+    return {
+      status: 503,
+      body: { ok: false, error: "token_unavailable" }
+    };
+  }
+  return {
+    status: 200,
+    body: {
+      ok: true,
+      tier: channel.trustTier,
+      composite: null,
+      token_expires_at: channel.trustTokenExpiresAt
+    }
+  };
+}
 function handleMcpConfigRequest(agentName, port, mcpSkillCount) {
   return {
     status: 200,
@@ -47109,6 +47128,10 @@ var init_channel = __esm({
       _heartbeatIntervalSeconds = 0;
       _wakeDetectorTimer = null;
       _lastWakeTick = Date.now();
+      _trustToken = null;
+      _trustTier = null;
+      _trustTokenExpiresAt = null;
+      _trustTokenInterval = null;
       _pendingPollTimer = null;
       _syncMessageIds = null;
       /** Sender Key chains — own chain per room for O(1) encryption */
@@ -47122,6 +47145,9 @@ var init_channel = __esm({
       /** Dedup buffer for A2A message IDs (prevents double-delivery via direct + Redis) */
       _a2aSeenMessageIds = /* @__PURE__ */ new Set();
       static A2A_SEEN_MAX = 500;
+      /** Dedup buffer for regular message IDs (prevents double-decrypt via direct WS + Redis pub/sub) */
+      _seenMessageIds = /* @__PURE__ */ new Set();
+      static SEEN_MSG_MAX = 500;
       _scanEngine = null;
       _scanRuleSetVersion = 0;
       _telemetryReporter = null;
@@ -48051,9 +48077,56 @@ var init_channel = __esm({
           this.emit("error", new Error(`Heartbeat send failed: ${err}`));
         });
       }
+      // --- Trust Gate token management ---
+      getTrustHeaders() {
+        if (!this._trustToken) return {};
+        return { "AgentVault-Trust": this._trustToken };
+      }
+      get trustToken() {
+        return this._trustToken;
+      }
+      get trustTier() {
+        return this._trustTier;
+      }
+      get trustTokenExpiresAt() {
+        return this._trustTokenExpiresAt;
+      }
+      async refreshTrustToken() {
+        try {
+          const res = await fetch(`${this.config.apiUrl}/api/v1/gate/token`, {
+            method: "POST",
+            headers: {
+              Authorization: `Bearer ${this._deviceJwt}`,
+              "Content-Type": "application/json"
+            }
+          });
+          if (res.ok) {
+            const data = await res.json();
+            this._trustToken = data.token;
+            this._trustTier = data.tier;
+            this._trustTokenExpiresAt = data.expires_at;
+          }
+        } catch (err) {
+          console.warn("[AgentVault] Trust token refresh failed:", err);
+        }
+      }
+      startTrustTokenRefresh() {
+        this.refreshTrustToken();
+        this._trustTokenInterval = setInterval(
+          () => this.refreshTrustToken(),
+          12 * 60 * 1e3
+        );
+      }
+      stopTrustTokenRefresh() {
+        if (this._trustTokenInterval) {
+          clearInterval(this._trustTokenInterval);
+          this._trustTokenInterval = null;
+        }
+      }
       async stop() {
         this._stopped = true;
         await this.stopHeartbeat();
+        this.stopTrustTokenRefresh();
         this._flushAcks();
         this._stopPing();
         this._stopWakeDetector();
@@ -48169,6 +48242,10 @@ var init_channel = __esm({
                 res.end(JSON.stringify({ ok: false, error: "Internal MCP error" }));
               }
             });
+          } else if (req.method === "GET" && req.url === "/trust") {
+            const result = handlers.handleTrustRequest(this);
+            res.writeHead(result.status, { "Content-Type": "application/json" });
+            res.end(JSON.stringify(result.body));
           } else if (req.method === "GET" && req.url === "/mcp-config") {
             const agentName = this.config.agentName ?? "agent";
             const mcpSkillCount = this._mcpServer?.skillCount ?? 0;
@@ -48675,6 +48752,7 @@ var init_channel = __esm({
               });
               this._telemetryReporter.startAutoFlush(3e4);
             }
+            this.startTrustTokenRefresh();
             this.emit("ready");
           } catch (openErr) {
             console.error("[SecureChannel] Error in WS open handler:", openErr);
@@ -48707,6 +48785,17 @@ var init_channel = __esm({
               return;
             }
             if (data.event === "message") {
+              const inMsgId = data.data?.message_id;
+              if (inMsgId && this._seenMessageIds.has(inMsgId)) {
+                return;
+              }
+              if (inMsgId) {
+                this._seenMessageIds.add(inMsgId);
+                if (this._seenMessageIds.size > _SecureChannel.SEEN_MSG_MAX) {
+                  const first = this._seenMessageIds.values().next().value;
+                  if (first) this._seenMessageIds.delete(first);
+                }
+              }
               try {
                 await this._handleIncomingMessage(data.data);
               } catch (msgErr) {
@@ -48737,6 +48826,17 @@ var init_channel = __esm({
               }).catch((err) => this.emit("error", err));
             }
             if (data.event === "room_message") {
+              const rmMsgId = data.data?.message_id;
+              if (rmMsgId && this._seenMessageIds.has(rmMsgId)) {
+                return;
+              }
+              if (rmMsgId) {
+                this._seenMessageIds.add(rmMsgId);
+                if (this._seenMessageIds.size > _SecureChannel.SEEN_MSG_MAX) {
+                  const first = this._seenMessageIds.values().next().value;
+                  if (first) this._seenMessageIds.delete(first);
+                }
+              }
               try {
                 await this._handleRoomMessage(data.data);
               } catch (rmErr) {
@@ -49271,6 +49371,10 @@ var init_channel = __esm({
         if (!session.activated) {
           session.activated = true;
           console.log(`[SecureChannel] Session ${convId.slice(0, 8)}... activated by first owner message`);
+          if (this._persisted?.sessions[convId]) {
+            this._persisted.sessions[convId].activated = true;
+          }
+          await this._persistState();
         }
         let messageText;
         let messageType;
@@ -49885,6 +49989,14 @@ ${messageText}`;
               `[SecureChannel] Room ratchet re-initialized for conv ${convId.slice(0, 8)}...`
             );
             plaintext = session.ratchet.decrypt(encrypted);
+            session.activated = true;
+            if (this._persisted.sessions[convId]) {
+              this._persisted.sessions[convId].activated = true;
+            }
+            await this._persistState();
+            console.log(
+              `[SecureChannel] Room session ${convId.slice(0, 8)}... re-activated after ratchet re-init`
+            );
           } catch (reinitErr) {
             console.error(
               `[SecureChannel] Room ratchet re-init failed for conv ${convId.slice(0, 8)}...:`,