npm - @ait-co/devtools - Versions diffs - 0.1.79 → 0.1.80 - Mend

@ait-co/devtools 0.1.79 → 0.1.80

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (43) hide show

package/dist/devtools-opener-BbUXBzgA.js.map +1 -1
package/dist/devtools-opener-Bp671YXu.cjs.map +1 -1
package/dist/devtools-opener-D84kZFtR.js.map +1 -1
package/dist/devtools-opener-h6A-UjzC.cjs.map +1 -1
package/dist/mcp/cli.js +214 -55
package/dist/mcp/cli.js.map +1 -1
package/dist/mcp/server.js +1 -1
package/dist/panel/index.js +6 -2
package/dist/panel/index.js.map +1 -1
package/dist/{qr-http-server-D2d44bv7.js → qr-http-server-DJ5K3Odk.js} +34 -1
package/dist/qr-http-server-DJ5K3Odk.js.map +1 -0
package/dist/{qr-http-server-Dx7KnQtg.js → qr-http-server-DkOFfZsR.js} +34 -1
package/dist/qr-http-server-DkOFfZsR.js.map +1 -0
package/dist/{qr-http-server-DOOLghY0.cjs → qr-http-server-Dkx2-pKF.cjs} +34 -1
package/dist/qr-http-server-Dkx2-pKF.cjs.map +1 -0
package/dist/{qr-http-server-oENyLvn9.cjs → qr-http-server-MIUHaiYw.cjs} +34 -1
package/dist/qr-http-server-MIUHaiYw.cjs.map +1 -0
package/dist/{relay-url-store-Cx_SqWtl.cjs → relay-url-store-BiEK9BN1.cjs} +3 -1
package/dist/relay-url-store-BiEK9BN1.cjs.map +1 -0
package/dist/{relay-url-store-CV8nScsn.js → relay-url-store-DH8-VUFc.js} +3 -1
package/dist/relay-url-store-DH8-VUFc.js.map +1 -0
package/dist/{relay-url-store-B_wrNe5A.js → relay-url-store-RKcao_yG.js} +6 -1
package/dist/relay-url-store-RKcao_yG.js.map +1 -0
package/dist/{tunnel-8h2r-ouK.js → tunnel-BTlq1mmH.js} +2 -2
package/dist/{tunnel-8h2r-ouK.js.map → tunnel-BTlq1mmH.js.map} +1 -1
package/dist/{tunnel-CInRDnKE.cjs → tunnel-C-AFdAVL.cjs} +2 -2
package/dist/{tunnel-CInRDnKE.cjs.map → tunnel-C-AFdAVL.cjs.map} +1 -1
package/dist/unplugin/index.cjs +6 -3
package/dist/unplugin/index.cjs.map +1 -1
package/dist/unplugin/index.d.cts.map +1 -1
package/dist/unplugin/index.d.ts.map +1 -1
package/dist/unplugin/index.js +6 -3
package/dist/unplugin/index.js.map +1 -1
package/dist/unplugin/tunnel.cjs +1 -1
package/dist/unplugin/tunnel.js +1 -1
package/package.json +1 -1
package/dist/qr-http-server-D2d44bv7.js.map +0 -1
package/dist/qr-http-server-DOOLghY0.cjs.map +0 -1
package/dist/qr-http-server-Dx7KnQtg.js.map +0 -1
package/dist/qr-http-server-oENyLvn9.cjs.map +0 -1
package/dist/relay-url-store-B_wrNe5A.js.map +0 -1
package/dist/relay-url-store-CV8nScsn.js.map +0 -1
package/dist/relay-url-store-Cx_SqWtl.cjs.map +0 -1

package/dist/mcp/cli.js CHANGED Viewed

@@ -1289,51 +1289,67 @@ function openUrlInBrowser(url) {
 	return false;
 }
 /**
-* Manages auto-opening Chrome DevTools exactly once per relay attach session.
+* Manages auto-opening Chrome DevTools on every NEW target attach (issue #530).
 *
 * Create one instance per `runDebugServer` call and pass its `open()` method
-* as the `onFirstAttach` callback to `startAttachWatcher`.
+* as the `onAttach` callback to the attach watcher (via `DualConnectionRouter`).
+*
+* The open fires for each NEW `targetId` — subsequent notifications for the
+* same target are de-duplicated. Re-attach with a fresh targetId (e.g. after
+* page reload on the phone) fires a new open. The URL opened is the stable
+* `/inspector` endpoint (issue #530) when `inspectorStableUrl` is provided —
+* it mints a fresh TOTP at click time so there is no expiry race. Falls back to
+* building a direct `front_end/chii_app.html?wss=…` URL when
+* `inspectorStableUrl` is absent.
 *
-* The open fires at most once. Subsequent `open()` calls are no-ops.
 * Opt-out and mock-environment guard are checked at call time.
 */
 var AutoDevtoolsOpener = class {
-	_opened = false;
+	/** Per-target de-dupe set (issue #530 — target-unit guard replaces once-per-daemon). */
+	_openedTargets = /* @__PURE__ */ new Set();
 	/**
 	* Attempts to auto-open Chii DevTools in the developer's browser.
 	*
-	* Builds a `<relay-base>/front_end/chii_app.html?wss=…` URL pointing at the
-	* attached target. A fresh TOTP `at=` code is minted at call time so the
-	* relay's WebSocket upgrade gate accepts the connection.
+	* Opens when:
+	*   - `options.targetId` is a NEW target (not yet in `_openedTargets`).
 	*
 	* No-op when any of the following conditions hold:
-	*   1. Already opened this session (`_opened` is true).
+	*   1. `targetId` has already been opened (`_openedTargets` has it).
 	*   2. `AIT_AUTO_DEVTOOLS=0` opt-out is set.
 	*   3. `options.env` is `mock` (env 1 — F12 is already available).
-	*   4. `options.relayHttpBaseUrl` is null/undefined/empty (relay not up yet).
-	*   5. `options.targetId` is null/undefined/empty (no page attached yet).
+	*   4. `options.targetId` is null/undefined/empty (no page attached yet).
+	*   5. Neither `inspectorStableUrl` nor `relayHttpBaseUrl` is available.
 	*
-	* Always writes the DevTools URL to stderr so the developer can copy it
-	* if the browser open fails or the popup is blocked.
+	* When `inspectorStableUrl` is provided (issue #530 stable URL): opens
+	* `http://127.0.0.1:<port>/inspector` directly and writes it to stderr.
+	* The URL contains no tunnel host or TOTP code — safe to log anywhere.
 	*
-	* TOTP expiry caveat: the `at=` code embedded in the URL is valid for ~3
-	* minutes (relay gate ±RELAY_VERIFY_SKEW_STEPS=6 steps = 180–210 s). The
-	* developer must open the URL within that window; if they miss it, reload
-	* the page or re-run `open()` (though the once-per-session guard prevents
-	* that — restart the MCP server if needed).
+	* Legacy path (no `inspectorStableUrl`): builds a direct
+	* `<relay-base>/front_end/chii_app.html?wss=…` URL from `relayHttpBaseUrl`
+	* + `mintTotp`, writes to stderr. TOTP expiry caveat applies (~3 min window).
 	*
-	* SECRET-HANDLING: the inspector URL (written to stderr) contains the relay
-	* host and a short-lived TOTP code. Do NOT write it to stdout or any
-	* persistent log.
+	* SECRET-HANDLING: direct inspector URL (written to stderr) may contain relay
+	* host and TOTP code. Stable URL is secret-free. Neither must go to stdout or
+	* persistent logs.
 	*/
 	open(options) {
-		if (this._opened) return;
 		if (isAutoDevtoolsDisabled()) return;
 		if (options.env === "mock") return;
-		if (!options.relayHttpBaseUrl) return;
 		if (!options.targetId) return;
-		this._opened = true;
-		const inspectorUrl = buildChiiInspectorUrl(options.relayHttpBaseUrl, options.targetId, options.mintTotp);
+		const targetId = options.targetId;
+		if (this._openedTargets.has(targetId)) return;
+		if (options.inspectorStableUrl) {
+			this._openedTargets.add(targetId);
+			const stableUrl = options.inspectorStableUrl;
+			process.stderr.write(`[ait-debug] 기기가 연결됐습니다 — Chii DevTools를 자동으로 엽니다.
+[ait-debug] 인스펙터 URL: ${stableUrl}\n[ait-debug] (AIT_AUTO_DEVTOOLS=0 으로 자동 열기를 끌 수 있습니다)
+`);
+			if (!openUrlInBrowser(stableUrl)) process.stderr.write(`[ait-debug] 브라우저 자동 열기 실패 — ${stableUrl} 을 브라우저에서 직접 여세요.\n`);
+			return;
+		}
+		if (!options.relayHttpBaseUrl) return;
+		this._openedTargets.add(targetId);
+		const inspectorUrl = buildChiiInspectorUrl(options.relayHttpBaseUrl, targetId, options.mintTotp);
 		if (inspectorUrl === null) {
 			process.stderr.write("[ait-debug] 기기가 연결됐습니다 — TOTP secret 미설정으로 인스펙터 URL을 생성할 수 없습니다.\n[ait-debug] relay 세션은 AIT_DEBUG_TOTP_SECRET 설정이 필요합니다.\n");
 			return;
@@ -1344,9 +1360,17 @@ var AutoDevtoolsOpener = class {
 `);
 		if (!openUrlInBrowser(inspectorUrl)) process.stderr.write("[ait-debug] 브라우저 자동 열기 실패 — 위 URL을 브라우저에서 직접 여세요.\n");
 	}
-	/** Returns `true` if `open()` has passed all guards and fired once. */
+	/**
+	* Returns `true` if `open()` has been called for at least one target.
+	* (Replaces the old once-per-session `_opened` flag; kept for interface
+	* compatibility with tests that read `opener.opened`.)
+	*/
 	get opened() {
-		return this._opened;
+		return this._openedTargets.size > 0;
+	}
+	/** Returns the set of target IDs that have already been auto-opened. */
+	get openedTargets() {
+		return this._openedTargets;
 	}
 };
 //#endregion
@@ -2112,6 +2136,8 @@ const en = {
 	"dashboard.inspector.section": "Inspector",
 	"dashboard.inspector.open": "Open inspector",
 	"dashboard.inspector.waiting": "Inspector URL pending — appears after a page attaches",
+	"inspector.error.noTarget": "No page attached. Attach a device and try again.",
+	"inspector.error.relayDown": "Relay is not active. Start a relay session first.",
 	"attach.title": "AIT Debug Session — QR Scan",
 	"attach.deployment": "deployment: {label}",
 	"attach.steps.section": "How to scan",
@@ -2364,6 +2390,8 @@ const tables = {
 		"dashboard.inspector.section": "인스펙터",
 		"dashboard.inspector.open": "인스펙터 열기",
 		"dashboard.inspector.waiting": "인스펙터 URL 대기 중 (페이지 attach 후 표시됩니다)",
+		"inspector.error.noTarget": "연결된 페이지가 없습니다. 기기를 attach한 후 다시 시도하세요.",
+		"inspector.error.relayDown": "relay가 활성화되지 않았습니다. start_debug로 relay를 기동하세요.",
 		"attach.title": "AIT 디버그 세션 — QR 스캔",
 		"attach.deployment": "deployment: {label}",
 		"attach.steps.section": "스캔 절차",
@@ -3116,6 +3144,7 @@ function buildAttachHtml(qrDataUrl, safeLabel, safeAttachUrl, locale, path = "/a
 * @param getDashboardState - dashboard 상태를 반환하는 클로저. 주입 시 `GET /` dashboard와
 *   `GET /events` SSE 스트림이 활성화된다. 미주입 시 두 라우트는 204/서비스 없음으로 응답.
 * @param options - 서버 옵션. `sseRefreshIntervalMs`로 idle 탭 TOTP 만료 방지 주기를 조정.
+*   `getDirectInspectorUrl`로 /inspector 라우트에서 직접 조립 URL을 제공해 redirect 루프를 방지.
 */
 async function startQrHttpServer(getDashboardState, options) {
 	const { default: QRCode } = await import("qrcode");
@@ -3213,6 +3242,31 @@ async function startQrHttpServer(getDashboardState, options) {
 			});
 			return;
 		}
+		if (path === "/inspector") {
+			const getDirectInspectorUrl = options?.getDirectInspectorUrl;
+			if (!getDirectInspectorUrl) {
+				res.writeHead(503, { "Content-Type": "text/plain; charset=utf-8" });
+				res.end("Inspector endpoint is not available in this server mode.");
+				return;
+			}
+			const result = getDirectInspectorUrl();
+			const s = resolveLocaleStrings(locale);
+			if (!result.ok) {
+				const body = `<!DOCTYPE html><html lang="${locale}"><head><meta charset="utf-8"><title>Inspector</title></head><body><p>${escapeHtml(s(result.reason === "noTarget" ? "inspector.error.noTarget" : "inspector.error.relayDown"))}</p><p style="font-size:0.9em;color:#666">` + (locale === "ko" ? "(<a href=\"/\">대시보드로 돌아가기</a>)" : "(<a href=\"/\">Back to dashboard</a>)") + `</p></body></html>`;
+				res.writeHead(502, {
+					"Content-Type": "text/html; charset=utf-8",
+					"Cache-Control": "no-store"
+				});
+				res.end(body);
+				return;
+			}
+			res.writeHead(302, {
+				Location: result.url,
+				"Cache-Control": "no-store"
+			});
+			res.end();
+			return;
+		}
 		if (path === "/qr.png") {
 			const encodedU = params.get("u") ?? "";
 			let attachUrl;
@@ -3267,6 +3321,9 @@ async function startQrHttpServer(getDashboardState, options) {
 		buildAttachPageUrl(attachUrl) {
 			return `http://127.0.0.1:${port}/attach?u=${encodeURIComponent(attachUrl)}`;
 		},
+		get inspectorStableUrl() {
+			return `http://127.0.0.1:${port}/inspector`;
+		},
 		notifyStateChange() {
 			notifyStateChangeInternal();
 		},
@@ -4660,7 +4717,7 @@ async function readMcpSdkVersion() {
 * some test environments that skip the build step).
 */
 function readDevtoolsVersion() {
-	return "0.1.79";
+	return "0.1.80";
 }
 /**
 * Derives the next recommended action from a completed diagnostics snapshot.
@@ -5164,7 +5221,7 @@ function createDebugServer(deps) {
 	const collector = collectorDep ?? new InMemoryDiagnosticsCollector();
 	const server = new Server({
 		name: "ait-debug",
-		version: "0.1.79"
+		version: "0.1.80"
 	}, { capabilities: { tools: { listChanged: true } } });
 	server.setRequestHandler(ListToolsRequestSchema, () => {
 		const conn = router.active;
@@ -5243,7 +5300,7 @@ function createDebugServer(deps) {
 				const buildProjectRoot = typeof rawBuildProjectRoot === "string" ? rawBuildProjectRoot : void 0;
 				let tunnelHttpUrl = process.env.AIT_TUNNEL_BASE_URL?.trim() ?? "";
 				if (tunnelHttpUrl === "" && buildProjectRoot !== void 0) {
-					const { readRelayUrls } = await import("../relay-url-store-B_wrNe5A.js");
+					const { readRelayUrls } = await import("../relay-url-store-RKcao_yG.js");
 					tunnelHttpUrl = (await readRelayUrls({ projectRoot: buildProjectRoot }))?.tunnelBaseUrl ?? "";
 				}
 				if (tunnelHttpUrl === "") return mcpError("build_attach_url(mobile): AIT_TUNNEL_BASE_URL이 설정되지 않았습니다. dev 서버가 tunnel:{cdp:true}로 기동 중이면 .ait_urls 파일이 자동 생성돼 있어야 합니다. 자동 발견이 되지 않을 경우 앱 HTTP 터널 URL을 AIT_TUNNEL_BASE_URL 환경변수로 직접 전달하세요.");
@@ -5974,7 +6031,26 @@ async function bootRelayFamily(options = {}) {
 * wss URL) — it is NEVER logged here. The caller validates presence and passes
 * the value straight to the CDP client.
 */
-async function bootExternalRelayFamily(relayBaseUrl) {
+/**
+* Attempts to read the local loopback HTTP base URL of the env-2 Chii relay
+* (issue #530). Resolution order:
+*   1. `AIT_RELAY_LOCAL_URL` env var, if set and non-empty.
+*   2. `relayLocalUrl` from the `.ait_urls` file, if `projectRoot` is given.
+*   3. `undefined` — caller falls back to the tunnel base (existing behavior).
+*
+* This is a best-effort read — never throws. The returned value is a plain
+* `http://127.0.0.1:<port>` loopback URL; no secret exposure.
+*/
+async function readRelayLocalUrl(env = process.env, projectRoot) {
+	const envValue = (env.AIT_RELAY_LOCAL_URL ?? "").trim();
+	if (envValue !== "") return envValue;
+	if (projectRoot !== void 0) try {
+		const { readRelayUrls } = await import("../relay-url-store-RKcao_yG.js");
+		const stored = await readRelayUrls({ projectRoot });
+		if (stored?.relayLocalUrl) return stored.relayLocalUrl;
+	} catch {}
+}
+async function bootExternalRelayFamily(relayBaseUrl, relayLocalUrl) {
 	assertRelayAuthConfigured();
 	const connection = createRelayConnection(relayBaseUrl);
 	const tunnelStatus = makeTunnelStatus(true, relayBaseUrl.replace(/^http/, "ws"));
@@ -5982,6 +6058,7 @@ async function bootExternalRelayFamily(relayBaseUrl) {
 		connection,
 		relayOrigin: "external-pwa",
 		relayHttpUrl: relayBaseUrl,
+		relayLocalHttpUrl: relayLocalUrl,
 		getTunnelStatus: () => tunnelStatus,
 		stop() {
 			connection.close();
@@ -6022,7 +6099,7 @@ async function readMobileRelayBaseUrl(env = process.env, projectRoot) {
 	const envValue = typeof raw === "string" ? raw.trim() : "";
 	if (envValue !== "") return envValue;
 	if (projectRoot !== void 0) {
-		const { readRelayUrls } = await import("../relay-url-store-B_wrNe5A.js");
+		const { readRelayUrls } = await import("../relay-url-store-RKcao_yG.js");
 		const stored = await readRelayUrls({ projectRoot });
 		if (stored?.relayBaseUrl !== void 0) return stored.relayBaseUrl;
 	}
@@ -6106,13 +6183,18 @@ var DualConnectionRouter = class {
 		return this.activeFamily?.relayOrigin;
 	}
 	/**
-	* Local HTTP base URL of the Chii relay for the currently-active family (#503).
-	* Used by `getDashboardState` to build the inspector URL via `buildChiiInspectorUrl`.
-	* Returns `undefined` when no relay family is active (local/mock mode).
-	* SECRET-HANDLING: not logged — callers must not write this to stdout/logs.
+	* HTTP base URL of the Chii relay to use for inspector URL assembly (#503,
+	* #530). Prefers the LOCAL loopback base (`relayLocalHttpUrl`) when available
+	* so front_end page load + client WS do not traverse a cloudflare tunnel —
+	* falls back to `relayHttpUrl` (the tunnel base for env-2, loopback for env-3/4)
+	* when not set. Returns `undefined` when no relay family is active.
+	*
+	* SECRET-HANDLING: when relayLocalHttpUrl is absent this falls back to
+	* relayHttpUrl which may carry the tunnel host — callers must not log it.
 	*/
 	get activeRelayHttpUrl() {
-		return this.activeFamily?.relayHttpUrl;
+		if (!this.activeFamily) return void 0;
+		return this.activeFamily.relayLocalHttpUrl ?? this.activeFamily.relayHttpUrl;
 	}
 	/** Every booted family (for unified shutdown). All families are lazy (#396). */
 	bootedFamilies() {
@@ -6160,7 +6242,9 @@ var DualConnectionRouter = class {
 			if (activeFamily.connection.kind === "relay") {
 				const firstTarget = activeFamily.connection.listTargets()[0];
 				const env = deriveEnvironment(activeFamily.connection.kind, getLiveIntent(), activeFamily.relayOrigin);
+				const inspectorStableUrl = this.deps.getInspectorStableUrl?.() ?? null;
 				this.deps.devtoolsOpener.open({
+					inspectorStableUrl,
 					relayHttpBaseUrl: activeFamily.relayHttpUrl,
 					targetId: firstTarget?.id,
 					mintTotp: process.env.AIT_DEBUG_TOTP_SECRET ? () => generateTotp(process.env.AIT_DEBUG_TOTP_SECRET) : void 0,
@@ -6224,7 +6308,7 @@ async function runDebugServer(options = {}) {
 	const devtoolsOpener = new AutoDevtoolsOpener();
 	const diagnosticsCollector = new InMemoryDiagnosticsCollector();
 	const router = new DualConnectionRouter({
-		bootLazyFor: async (key, projectRoot) => key === "relay-sandbox" ? bootExternalRelayFamily(await readMobileRelayBaseUrl(process.env, projectRoot)) : key === "local-browser" ? bootLocalFamily() : bootRelayFamily({
+		bootLazyFor: async (key, projectRoot) => key === "relay-sandbox" ? bootExternalRelayFamily(await readMobileRelayBaseUrl(process.env, projectRoot), await readRelayLocalUrl(process.env, projectRoot)) : key === "local-browser" ? bootLocalFamily() : bootRelayFamily({
 			relayPort: options.relayPort,
 			verifyAuth: buildRelayVerifyAuth(),
 			onWssUrl: (wssUrl) => {
@@ -6235,7 +6319,8 @@ async function runDebugServer(options = {}) {
 		}),
 		diagnosticsCollector,
 		devtoolsOpener,
-		onPageAttach: () => qrServer?.notifyStateChange()
+		onPageAttach: () => qrServer?.notifyStateChange(),
+		getInspectorStableUrl: () => qrServer?.inspectorStableUrl ?? null
 	});
 	const aitSource = new RoutingAitSource(() => {
 		return router.active;
@@ -6243,9 +6328,7 @@ async function runDebugServer(options = {}) {
 	let lastAttachParts = null;
 	const getDashboardState = () => {
 		const targets = router.active.listTargets();
-		const relayHttpUrl = router.activeRelayHttpUrl;
-		const totpSecret = process.env.AIT_DEBUG_TOTP_SECRET;
-		const inspectorUrl = relayHttpUrl && targets.length > 0 ? buildChiiInspectorUrl(relayHttpUrl, targets[0].id, totpSecret ? () => generateTotp(totpSecret, Date.now()) : void 0) : null;
+		const inspectorUrl = qrServer?.inspectorStableUrl ?? null;
 		return {
 			tunnel: {
 				up: router.relayTunnelStatus().up,
@@ -6260,9 +6343,35 @@ async function runDebugServer(options = {}) {
 			mode: deriveEnvironment(router.active.kind, getLiveIntent(), router.activeRelayOrigin)
 		};
 	};
+	const getDirectInspectorUrl = () => {
+		const relayHttpUrl = router.activeRelayHttpUrl;
+		if (!relayHttpUrl) return {
+			ok: false,
+			reason: "relayDown"
+		};
+		const targets = router.active.listTargets();
+		if (targets.length === 0) return {
+			ok: false,
+			reason: "noTarget"
+		};
+		const totpSecret = process.env.AIT_DEBUG_TOTP_SECRET;
+		if (!totpSecret) return {
+			ok: false,
+			reason: "totpUnavailable"
+		};
+		const url = buildChiiInspectorUrl(relayHttpUrl, targets[0].id, () => generateTotp(totpSecret, Date.now()));
+		if (url === null) return {
+			ok: false,
+			reason: "totpUnavailable"
+		};
+		return {
+			ok: true,
+			url
+		};
+	};
 	let qrServer;
 	try {
-		qrServer = await startQrHttpServer(getDashboardState);
+		qrServer = await startQrHttpServer(getDashboardState, { getDirectInspectorUrl });
 	} catch (err) {
 		logWarn("server.start", { msg: `QR HTTP 서버 시작 실패 (text QR fallback 사용): ${err instanceof Error ? err.message : String(err)}` });
 	}
@@ -6398,7 +6507,7 @@ async function runLocalDebugServer(options = {}) {
 	const devtoolsOpener = new AutoDevtoolsOpener();
 	const diagnosticsCollector = new InMemoryDiagnosticsCollector();
 	const router = new DualConnectionRouter({
-		bootLazyFor: async (key, projectRoot) => key === "relay-sandbox" ? bootExternalRelayFamily(await readMobileRelayBaseUrl(process.env, projectRoot)) : key === "local-browser" ? bootLocalFamilyForEntry() : bootRelayFamily({
+		bootLazyFor: async (key, projectRoot) => key === "relay-sandbox" ? bootExternalRelayFamily(await readMobileRelayBaseUrl(process.env, projectRoot), await readRelayLocalUrl(process.env, projectRoot)) : key === "local-browser" ? bootLocalFamilyForEntry() : bootRelayFamily({
 			verifyAuth: buildRelayVerifyAuth(),
 			onWssUrl: (wssUrl) => {
 				lockHandle.updateWssUrl(wssUrl);
@@ -6408,7 +6517,8 @@ async function runLocalDebugServer(options = {}) {
 		}),
 		diagnosticsCollector,
 		devtoolsOpener,
-		onPageAttach: () => qrServer?.notifyStateChange()
+		onPageAttach: () => qrServer?.notifyStateChange(),
+		getInspectorStableUrl: () => qrServer?.inspectorStableUrl ?? null
 	});
 	const aitSource = new RoutingAitSource(() => {
 		return router.active;
@@ -6416,9 +6526,7 @@ async function runLocalDebugServer(options = {}) {
 	let lastAttachParts = null;
 	const getDashboardState = () => {
 		const targets = router.active.listTargets();
-		const relayHttpUrl = router.activeRelayHttpUrl;
-		const totpSecret = process.env.AIT_DEBUG_TOTP_SECRET;
-		const inspectorUrl = relayHttpUrl && targets.length > 0 ? buildChiiInspectorUrl(relayHttpUrl, targets[0].id, totpSecret ? () => generateTotp(totpSecret, Date.now()) : void 0) : null;
+		const inspectorUrl = qrServer?.inspectorStableUrl ?? null;
 		return {
 			tunnel: {
 				up: router.relayTunnelStatus().up,
@@ -6432,9 +6540,35 @@ async function runLocalDebugServer(options = {}) {
 			inspectorUrl
 		};
 	};
+	const getDirectInspectorUrl = () => {
+		const relayHttpUrl = router.activeRelayHttpUrl;
+		if (!relayHttpUrl) return {
+			ok: false,
+			reason: "relayDown"
+		};
+		const targets = router.active.listTargets();
+		if (targets.length === 0) return {
+			ok: false,
+			reason: "noTarget"
+		};
+		const totpSecret = process.env.AIT_DEBUG_TOTP_SECRET;
+		if (!totpSecret) return {
+			ok: false,
+			reason: "totpUnavailable"
+		};
+		const url = buildChiiInspectorUrl(relayHttpUrl, targets[0].id, () => generateTotp(totpSecret, Date.now()));
+		if (url === null) return {
+			ok: false,
+			reason: "totpUnavailable"
+		};
+		return {
+			ok: true,
+			url
+		};
+	};
 	let qrServer;
 	try {
-		qrServer = await startQrHttpServer(getDashboardState);
+		qrServer = await startQrHttpServer(getDashboardState, { getDirectInspectorUrl });
 	} catch (err) {
 		logWarn("server.start", { msg: `QR HTTP 서버 시작 실패 (text QR fallback 사용): ${err instanceof Error ? err.message : String(err)}` });
 	}
@@ -6554,7 +6688,7 @@ async function runMobileDebugServer(options = {}) {
 	const devtoolsOpener = new AutoDevtoolsOpener();
 	const diagnosticsCollector = new InMemoryDiagnosticsCollector();
 	const router = new DualConnectionRouter({
-		bootLazyFor: async (key) => key === "relay-sandbox" ? bootExternalRelayFamily(relayBaseUrl) : key === "local-browser" ? bootLocalFamily() : bootRelayFamily({
+		bootLazyFor: async (key) => key === "relay-sandbox" ? bootExternalRelayFamily(relayBaseUrl, await readRelayLocalUrl(process.env, options.projectRoot ?? process.cwd())) : key === "local-browser" ? bootLocalFamily() : bootRelayFamily({
 			verifyAuth: buildRelayVerifyAuth(),
 			onWssUrl: (wssUrl) => {
 				lockHandle.updateWssUrl(wssUrl);
@@ -6564,7 +6698,8 @@ async function runMobileDebugServer(options = {}) {
 		}),
 		diagnosticsCollector,
 		devtoolsOpener,
-		onPageAttach: () => qrServer?.notifyStateChange()
+		onPageAttach: () => qrServer?.notifyStateChange(),
+		getInspectorStableUrl: () => qrServer?.inspectorStableUrl ?? null
 	});
 	const aitSource = new RoutingAitSource(() => {
 		return router.active;
@@ -6572,9 +6707,7 @@ async function runMobileDebugServer(options = {}) {
 	let lastAttachParts = null;
 	const getDashboardState = () => {
 		const targets = router.active.listTargets();
-		const relayHttpUrl = router.activeRelayHttpUrl;
-		const totpSecret = process.env.AIT_DEBUG_TOTP_SECRET;
-		const inspectorUrl = relayHttpUrl && targets.length > 0 ? buildChiiInspectorUrl(relayHttpUrl, targets[0].id, totpSecret ? () => generateTotp(totpSecret, Date.now()) : void 0) : null;
+		const inspectorUrl = qrServer?.inspectorStableUrl ?? null;
 		return {
 			tunnel: {
 				up: router.relayTunnelStatus().up,
@@ -6588,9 +6721,35 @@ async function runMobileDebugServer(options = {}) {
 			inspectorUrl
 		};
 	};
+	const getDirectInspectorUrl = () => {
+		const relayHttpUrl = router.activeRelayHttpUrl;
+		if (!relayHttpUrl) return {
+			ok: false,
+			reason: "relayDown"
+		};
+		const targets = router.active.listTargets();
+		if (targets.length === 0) return {
+			ok: false,
+			reason: "noTarget"
+		};
+		const totpSecret = process.env.AIT_DEBUG_TOTP_SECRET;
+		if (!totpSecret) return {
+			ok: false,
+			reason: "totpUnavailable"
+		};
+		const url = buildChiiInspectorUrl(relayHttpUrl, targets[0].id, () => generateTotp(totpSecret, Date.now()));
+		if (url === null) return {
+			ok: false,
+			reason: "totpUnavailable"
+		};
+		return {
+			ok: true,
+			url
+		};
+	};
 	let qrServer;
 	try {
-		qrServer = await startQrHttpServer(getDashboardState);
+		qrServer = await startQrHttpServer(getDashboardState, { getDirectInspectorUrl });
 	} catch (err) {
 		logWarn("server.start", { msg: `QR HTTP 서버 시작 실패 (text QR fallback 사용): ${err instanceof Error ? err.message : String(err)}` });
 	}
@@ -7105,7 +7264,7 @@ function createDevServer(deps = {}) {
 	const aitSource = deps.aitSource ?? new HttpAitSource({ stateEndpoint });
 	const server = new Server({
 		name: "ait-devtools",
-		version: "0.1.79"
+		version: "0.1.80"
 	}, { capabilities: { tools: {} } });
 	server.setRequestHandler(ListToolsRequestSchema, () => ({ tools: DEV_TOOL_DEFINITIONS.map((tool) => ({ ...tool })) }));
 	server.setRequestHandler(CallToolRequestSchema, async (request) => {