@askexenow/exe-os 0.9.280 → 0.9.282

package/dist/chunk-E72BD6MG.js

@@ -0,0 +1,284 @@
+import {
+  routeTask
+} from "./chunk-VB2N5WOX.js";
+import {
+  createTaskCore,
+  employeeSessionName,
+  ensureEmployee,
+  getSessionState,
+  isEmployeeAlive,
+  sessionScopeFilter,
+  updateTaskStatus
+} from "./chunk-PWPJK7KB.js";
+import {
+  DEFAULT_COORDINATOR_TEMPLATE_NAME,
+  getCoordinatorName
+} from "./chunk-WUKEXVOR.js";
+
+// src/runtime/orchestrator.ts
+var STALE_THRESHOLD_MS = 2 * 60 * 60 * 1e3;
+var MultiAgentOrchestrator = class {
+  config;
+  constructor(config) {
+    this.config = config;
+  }
+  /**
+   * Route and dispatch a single task to the best-fit employee.
+   */
+  async dispatchTask(task) {
+    let targetEmployee;
+    let routingScore = 0;
+    if (task.assignTo) {
+      const found = this.config.employees.find((e) => e.name === task.assignTo);
+      if (!found) {
+        return {
+          employee: task.assignTo,
+          sessionName: "",
+          status: "failed",
+          routingScore: 0,
+          error: `Employee "${task.assignTo}" not found`
+        };
+      }
+      targetEmployee = found;
+      routingScore = 1;
+    } else {
+      const routed = await routeTask(
+        `${task.title}
+${task.context}`,
+        this.config.employees,
+        this.config.embedFn,
+        this.config.searchFn
+      );
+      targetEmployee = routed.employee;
+      routingScore = routed.score;
+    }
+    try {
+      await createTaskCore({
+        title: task.title,
+        assignedTo: targetEmployee.name,
+        assignedBy: getCoordinatorName(),
+        projectName: task.projectName,
+        priority: task.priority,
+        context: task.context,
+        baseDir: this.config.projectDir,
+        skipDispatch: true
+      });
+    } catch (err) {
+      return {
+        employee: targetEmployee.name,
+        sessionName: "",
+        status: "failed",
+        routingScore,
+        error: `Task creation failed: ${err instanceof Error ? err.message : String(err)}`
+      };
+    }
+    const result = ensureEmployee(
+      targetEmployee.name,
+      this.config.exeSession,
+      this.config.projectDir,
+      task.spawnOpts
+    );
+    return {
+      employee: targetEmployee.name,
+      sessionName: result.sessionName,
+      status: result.status === "failed" ? "failed" : result.status === "spawned" ? "dispatched" : "already_running",
+      routingScore,
+      error: result.error
+    };
+  }
+  /**
+   * Check health of all employees. Detect stuck and idle agents.
+   */
+  async healthCheck() {
+    const { getClient } = await import("./lib/database.js");
+    const client = getClient();
+    const employees = [];
+    const stuckAgents = [];
+    const idleAgents = [];
+    const crashedSessions = [];
+    let totalOpen = 0;
+    let totalInProgress = 0;
+    for (const emp of this.config.employees) {
+      const sessionName = employeeSessionName(emp.name, this.config.exeSession);
+      const alive = isEmployeeAlive(sessionName);
+      const state = alive ? getSessionState(sessionName) : "offline";
+      const oScope = sessionScopeFilter();
+      const tasks = await client.execute({
+        sql: `SELECT title, status, updated_at FROM tasks
+              WHERE assigned_to = ? AND status IN ('open', 'in_progress')${oScope.sql}
+              ORDER BY priority ASC`,
+        args: [emp.name, ...oScope.args]
+      });
+      const openCount = tasks.rows.filter((r) => r.status === "open").length;
+      const inProgressCount = tasks.rows.filter((r) => r.status === "in_progress").length;
+      totalOpen += openCount;
+      totalInProgress += inProgressCount;
+      const staleTasks = [];
+      for (const row of tasks.rows) {
+        if (row.status === "in_progress" && row.updated_at) {
+          const age = Date.now() - new Date(String(row.updated_at)).getTime();
+          if (age > STALE_THRESHOLD_MS) {
+            staleTasks.push(String(row.title));
+          }
+        }
+      }
+      const crashed = !alive && inProgressCount > 0;
+      if (staleTasks.length > 0) {
+        stuckAgents.push(emp.name);
+      }
+      if (crashed) {
+        crashedSessions.push(emp.name);
+      }
+      if (alive && state === "idle" && openCount + inProgressCount === 0) {
+        idleAgents.push(emp.name);
+      }
+      employees.push({
+        name: emp.name,
+        role: emp.role,
+        sessionName,
+        alive,
+        crashed,
+        state,
+        taskCount: openCount + inProgressCount,
+        inProgressCount,
+        staleTasks
+      });
+    }
+    return {
+      employees,
+      stuckAgents,
+      idleAgents,
+      crashedSessions,
+      totalOpenTasks: totalOpen,
+      totalInProgress
+    };
+  }
+  /**
+   * Process completed reviews. Auto-approve P2 tasks with passing results.
+   */
+  async processReviews() {
+    const { getClient } = await import("./lib/database.js");
+    const client = getClient();
+    const autoApproved = [];
+    const needsReview = [];
+    const coordinatorName = getCoordinatorName();
+    const rScope = sessionScopeFilter();
+    const reviews = await client.execute({
+      sql: `SELECT id, title, assigned_to, priority, result, task_file FROM tasks
+            WHERE (assigned_to = ? OR assigned_to = ?)
+              AND status IN ('open', 'in_progress')
+              AND task_file LIKE '%review-%'${rScope.sql}
+            ORDER BY priority ASC
+            LIMIT 20`,
+      args: [coordinatorName, DEFAULT_COORDINATOR_TEMPLATE_NAME, ...rScope.args]
+    });
+    for (const row of reviews.rows) {
+      const item = {
+        taskId: String(row.id),
+        title: String(row.title),
+        assignedTo: String(row.assigned_to),
+        priority: String(row.priority),
+        result: String(row.result ?? ""),
+        taskFile: String(row.task_file)
+      };
+      if (this.config.autoApproveP2 && item.priority === "p2" && /tests?\s+pass/i.test(item.result)) {
+        try {
+          await updateTaskStatus({
+            taskId: item.taskId,
+            status: "done",
+            result: `[auto-approved] ${item.result}`,
+            skipReviewCreation: true
+          });
+        } catch {
+          await client.execute({
+            sql: `UPDATE tasks SET status = 'done', result = ? WHERE id = ?`,
+            args: [`[auto-approved] ${item.result}`, item.taskId]
+          });
+        }
+        autoApproved.push(item);
+      } else {
+        needsReview.push(item);
+      }
+    }
+    return {
+      autoApproved,
+      needsReview,
+      processed: autoApproved.length + needsReview.length
+    };
+  }
+  /**
+   * Run one full orchestration cycle: health check + process reviews.
+   * Does NOT dispatch tasks — call dispatchTask() explicitly.
+   */
+  async tick() {
+    const health = await this.healthCheck();
+    const reviews = await this.processReviews();
+    for (const stuck of health.stuckAgents) {
+      const sessionName = employeeSessionName(stuck, this.config.exeSession);
+      if (isEmployeeAlive(sessionName)) {
+        const { sendIntercom } = await import("./lib/tmux-routing.js");
+        sendIntercom(sessionName);
+      }
+    }
+    for (const crashed of health.crashedSessions) {
+      this.recoverSession(crashed);
+    }
+    return {
+      dispatched: [],
+      health,
+      reviews,
+      timestamp: (/* @__PURE__ */ new Date()).toISOString()
+    };
+  }
+  /**
+   * Recover a crashed session by spawning a fresh CC session.
+   * The new session boots with identity via --system-prompt, finds existing in_progress tasks, and resumes.
+   */
+  recoverSession(employeeName) {
+    const sessionName = employeeSessionName(employeeName, this.config.exeSession);
+    const result = ensureEmployee(
+      employeeName,
+      this.config.exeSession,
+      this.config.projectDir
+    );
+    if (result.status === "failed") {
+      return { status: "failed", sessionName, error: result.error };
+    }
+    return { status: "recovered", sessionName: result.sessionName };
+  }
+  /**
+   * Dispatch a batch of tasks, auto-routing each to the best employee.
+   */
+  async dispatchBatch(tasks) {
+    const results = [];
+    for (const task of tasks) {
+      const result = await this.dispatchTask(task);
+      results.push(result);
+    }
+    return results;
+  }
+  /**
+   * Get a formatted status summary (matches exe boot brief style).
+   */
+  async getStatusSummary() {
+    const health = await this.healthCheck();
+    const lines = [];
+    lines.push("\u25B8 ORCHESTRATOR STATUS");
+    lines.push(`  Tasks:   ${health.totalOpenTasks} open, ${health.totalInProgress} in progress`);
+    lines.push(`  Crashed: ${health.crashedSessions.length > 0 ? health.crashedSessions.join(", ") : "none"}`);
+    lines.push(`  Stuck:   ${health.stuckAgents.length > 0 ? health.stuckAgents.join(", ") : "none"}`);
+    lines.push(`  Idle:    ${health.idleAgents.length > 0 ? health.idleAgents.join(", ") : "none"}`);
+    lines.push("");
+    for (const emp of health.employees) {
+      const stateIcon = emp.alive ? emp.state === "idle" ? "\u{1F7E2}" : emp.state === "thinking" ? "\u{1F7E1}" : emp.state === "tool" ? "\u{1F535}" : "\u26AA" : "\u{1F534}";
+      const taskInfo = emp.taskCount > 0 ? `${emp.taskCount} task${emp.taskCount > 1 ? "s" : ""} (${emp.inProgressCount} active)` : "idle";
+      const staleWarning = emp.staleTasks.length > 0 ? ` \u26A0 stale: ${emp.staleTasks[0]}` : "";
+      lines.push(`  ${stateIcon} ${emp.name} (${emp.role}): ${taskInfo}${staleWarning}`);
+    }
+    return lines.join("\n");
+  }
+};
+
+export {
+  MultiAgentOrchestrator
+};

package/dist/chunk-EAPUSVKS.js

@@ -0,0 +1,375 @@
+import {
+  EXE_AI_DIR
+} from "./chunk-T3B5RK4H.js";
+
+// src/lib/license.ts
+import { readFileSync, writeFileSync, existsSync, mkdirSync, statSync } from "fs";
+import { randomUUID } from "crypto";
+import path from "path";
+import { jwtVerify, importSPKI } from "jose";
+var LICENSE_PATH = path.join(EXE_AI_DIR, "license.key");
+var CACHE_PATH = path.join(EXE_AI_DIR, "license-cache.json");
+var DEVICE_ID_PATH = path.join(EXE_AI_DIR, "device-id");
+var API_BASE = process.env.EXE_CLOUD_ENDPOINT ?? "https://api.askexe.com";
+var RETRY_DELAY_MS = 500;
+async function fetchRetry(url, init) {
+  try {
+    return await fetch(url, init);
+  } catch {
+    await new Promise((r) => setTimeout(r, RETRY_DELAY_MS));
+    return fetch(url, { ...init, signal: AbortSignal.timeout(1e4) });
+  }
+}
+var LICENSE_PUBLIC_KEY_PEM = `-----BEGIN PUBLIC KEY-----
+MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEeHztAMOpR/ZMh+rWuOASjEZ54CGY
+4uj+UqeKCcvtgNHKmOK278HJaJcANe9xAeji8AFYu27q3WtzCi04pHudow==
+-----END PUBLIC KEY-----`;
+var LICENSE_PUBLIC_KEY_PEM_PREV = `-----BEGIN PUBLIC KEY-----
+MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEVlMxzSQraFaXp+qRyRwDNg25R4qH
+sV3p1+vXy1GH/9W2VQyq3pUvOlAeeDMMT+hbL5kbtwCl7daoaZZ8Tv8acw==
+-----END PUBLIC KEY-----`;
+var LICENSE_PUBLIC_KEYS = [LICENSE_PUBLIC_KEY_PEM, LICENSE_PUBLIC_KEY_PEM_PREV];
+var LICENSE_JWT_ALG = "ES256";
+var PLAN_LIMITS = {
+  free: { devices: 1, employees: 1, memories: 5e3 },
+  pro: { devices: 3, employees: 5, memories: 1e5 },
+  team: { devices: 10, employees: 20, memories: 1e6 },
+  agency: { devices: 50, employees: 100, memories: 1e7 },
+  enterprise: { devices: -1, employees: -1, memories: -1 }
+};
+var FREE_LICENSE = {
+  valid: true,
+  plan: "free",
+  email: "",
+  expiresAt: null,
+  deviceLimit: 1,
+  employeeLimit: 1,
+  memoryLimit: 5e3
+};
+function loadDeviceId() {
+  const deviceJsonPath = path.join(EXE_AI_DIR, "device.json");
+  try {
+    if (existsSync(deviceJsonPath)) {
+      const data = JSON.parse(readFileSync(deviceJsonPath, "utf8"));
+      if (data.deviceId) return data.deviceId;
+    }
+  } catch {
+  }
+  try {
+    if (existsSync(DEVICE_ID_PATH)) {
+      const id2 = readFileSync(DEVICE_ID_PATH, "utf8").trim();
+      if (id2) return id2;
+    }
+  } catch {
+  }
+  const id = randomUUID();
+  mkdirSync(EXE_AI_DIR, { recursive: true });
+  writeFileSync(DEVICE_ID_PATH, id, "utf8");
+  return id;
+}
+function loadLicense() {
+  try {
+    if (!existsSync(LICENSE_PATH)) return null;
+    return readFileSync(LICENSE_PATH, "utf8").trim();
+  } catch {
+    return null;
+  }
+}
+function saveLicense(apiKey) {
+  mkdirSync(EXE_AI_DIR, { recursive: true });
+  writeFileSync(LICENSE_PATH, apiKey.trim(), { encoding: "utf8", mode: 384 });
+}
+async function verifyLicenseJwt(token) {
+  for (const pem of LICENSE_PUBLIC_KEYS) {
+    try {
+      const key = await importSPKI(pem, LICENSE_JWT_ALG);
+      const { payload } = await jwtVerify(token, key, {
+        algorithms: [LICENSE_JWT_ALG]
+      });
+      const plan = payload.plan ?? "free";
+      const email = payload.sub ?? "";
+      const limits = PLAN_LIMITS[plan] ?? PLAN_LIMITS.free;
+      return {
+        valid: true,
+        plan,
+        email,
+        expiresAt: payload.exp ? new Date(payload.exp * 1e3).toISOString() : null,
+        deviceLimit: limits.devices,
+        employeeLimit: limits.employees,
+        memoryLimit: limits.memories
+      };
+    } catch {
+      continue;
+    }
+  }
+  return null;
+}
+async function getCachedLicense() {
+  try {
+    if (!existsSync(CACHE_PATH)) return null;
+    const raw = JSON.parse(readFileSync(CACHE_PATH, "utf8"));
+    if (!raw.token || typeof raw.token !== "string") return null;
+    return await verifyLicenseJwt(raw.token);
+  } catch {
+    return null;
+  }
+}
+async function getGraceVerifiedLicense(graceDays = 7) {
+  try {
+    const token = readCachedLicenseToken();
+    if (!token) return null;
+    const payloadB64 = token.split(".")[1];
+    if (!payloadB64) return null;
+    const payload = JSON.parse(Buffer.from(payloadB64, "base64url").toString());
+    const expMs = (payload.exp ?? 0) * 1e3;
+    if (Date.now() >= expMs + graceDays * 24 * 60 * 60 * 1e3) return null;
+    let verified = null;
+    for (const pem of LICENSE_PUBLIC_KEYS) {
+      try {
+        const key = await importSPKI(pem, LICENSE_JWT_ALG);
+        const result = await jwtVerify(token, key, {
+          algorithms: [LICENSE_JWT_ALG],
+          clockTolerance: graceDays * 24 * 60 * 60
+        });
+        verified = result.payload;
+        break;
+      } catch {
+        continue;
+      }
+    }
+    if (!verified) return null;
+    const plan = verified.plan ?? "free";
+    const limits = PLAN_LIMITS[plan] ?? PLAN_LIMITS.free;
+    process.stderr.write(
+      `[license] Offline grace: verified cached plan "${plan}" (expired, within ${graceDays}d grace).
+`
+    );
+    return {
+      valid: true,
+      plan,
+      email: verified.sub ?? "",
+      expiresAt: verified.exp ? new Date(verified.exp * 1e3).toISOString() : null,
+      deviceLimit: limits.devices,
+      employeeLimit: limits.employees,
+      memoryLimit: limits.memories
+    };
+  } catch {
+    return null;
+  }
+}
+function readCachedLicenseToken() {
+  try {
+    if (!existsSync(CACHE_PATH)) return null;
+    const raw = JSON.parse(readFileSync(CACHE_PATH, "utf8"));
+    return typeof raw.token === "string" ? raw.token : null;
+  } catch {
+    return null;
+  }
+}
+function cacheResponse(token) {
+  try {
+    writeFileSync(CACHE_PATH, JSON.stringify({ token }), "utf8");
+  } catch {
+  }
+}
+async function validateViaCFWorker(apiKey, deviceId) {
+  try {
+    const res = await fetchRetry(`${API_BASE}/auth/activate`, {
+      method: "POST",
+      headers: { "Content-Type": "application/json" },
+      body: JSON.stringify({ apiKey, deviceId }),
+      signal: AbortSignal.timeout(1e4)
+    });
+    if (!res.ok) return null;
+    const data = await res.json();
+    if (data.error === "device_limit_exceeded") return null;
+    if (!data.valid) return null;
+    if (data.token) {
+      cacheResponse(data.token);
+      const verified = await verifyLicenseJwt(data.token);
+      if (verified) return verified;
+    }
+    const limits = PLAN_LIMITS[data.plan] ?? PLAN_LIMITS.free;
+    return {
+      valid: data.valid,
+      plan: data.plan,
+      email: data.email,
+      expiresAt: data.expiresAt,
+      deviceLimit: limits.devices,
+      employeeLimit: limits.employees,
+      memoryLimit: limits.memories
+    };
+  } catch {
+    return null;
+  }
+}
+async function validateLicense(apiKey, deviceId) {
+  const did = deviceId ?? loadDeviceId();
+  const cfResult = await validateViaCFWorker(apiKey, did);
+  if (cfResult) return cfResult;
+  const cached = await getCachedLicense();
+  if (cached) return cached;
+  const graced = await getGraceVerifiedLicense();
+  if (graced) return graced;
+  return { ...FREE_LICENSE, valid: false };
+}
+var CACHE_MAX_AGE_MS = 36e5;
+function getCacheAgeMs() {
+  try {
+    const s = statSync(CACHE_PATH);
+    return Date.now() - s.mtimeMs;
+  } catch {
+    return Infinity;
+  }
+}
+async function checkLicense() {
+  let key = loadLicense();
+  if (!key) {
+    try {
+      const configPath = path.join(EXE_AI_DIR, "config.json");
+      if (existsSync(configPath)) {
+        const raw = JSON.parse(readFileSync(configPath, "utf8"));
+        const cloud = raw.cloud;
+        if (cloud?.apiKey) {
+          key = cloud.apiKey;
+          saveLicense(key);
+        }
+      }
+    } catch {
+    }
+  }
+  if (!key) return FREE_LICENSE;
+  const cached = await getCachedLicense();
+  if (cached && getCacheAgeMs() < CACHE_MAX_AGE_MS) return cached;
+  const deviceId = loadDeviceId();
+  return validateLicense(key, deviceId);
+}
+function isFeatureAllowed(license, feature) {
+  switch (feature) {
+    case "cloud_sync":
+    case "external_agents":
+    case "wiki":
+      return license.plan !== "free";
+    case "unlimited_employees":
+      return license.plan === "team" || license.plan === "agency" || license.plan === "enterprise";
+  }
+}
+function mirrorLicenseKey(apiKey) {
+  const trimmed = apiKey.trim();
+  if (!trimmed) return;
+  saveLicense(trimmed);
+}
+async function assertVpsLicense(opts) {
+  const env = opts?.env ?? process.env;
+  const inProduction = env.NODE_ENV === "production";
+  if (!opts?.force && !inProduction) {
+    return { ...FREE_LICENSE, plan: "free" };
+  }
+  const envKey = env.EXE_LICENSE_KEY?.trim();
+  if (envKey) {
+    saveLicense(envKey);
+  }
+  const apiKey = envKey ?? loadLicense();
+  if (!apiKey) {
+    throw new Error(
+      "License required: set EXE_LICENSE_KEY env var with your exe_sk_* key. Purchase at https://askexe.com. This VPS image refuses to boot without a valid license."
+    );
+  }
+  const deviceId = loadDeviceId();
+  let backendResponse = null;
+  let explicitRejection = false;
+  let transientFailure = false;
+  try {
+    const res = await fetchRetry(`${API_BASE}/auth/activate`, {
+      method: "POST",
+      headers: { "Content-Type": "application/json" },
+      body: JSON.stringify({ apiKey, deviceId }),
+      signal: AbortSignal.timeout(1e4)
+    });
+    if (res.ok) {
+      backendResponse = await res.json();
+      if (!backendResponse.valid) explicitRejection = true;
+    } else if (res.status === 401 || res.status === 403) {
+      explicitRejection = true;
+    } else {
+      transientFailure = true;
+    }
+  } catch {
+    transientFailure = true;
+  }
+  if (backendResponse?.valid) {
+    if (backendResponse.token) {
+      cacheResponse(backendResponse.token);
+      const verified = await verifyLicenseJwt(backendResponse.token);
+      if (verified) return verified;
+    }
+    const limits = PLAN_LIMITS[backendResponse.plan] ?? PLAN_LIMITS.free;
+    return {
+      valid: true,
+      plan: backendResponse.plan,
+      email: backendResponse.email,
+      expiresAt: backendResponse.expiresAt,
+      deviceLimit: limits.devices,
+      employeeLimit: limits.employees,
+      memoryLimit: limits.memories
+    };
+  }
+  if (explicitRejection) {
+    throw new Error(
+      `License invalid or expired. Renew at https://askexe.com, then restart. Backend rejected key ending in ...${apiKey.slice(-4)}.`
+    );
+  }
+  if (!transientFailure) {
+    throw new Error(
+      "License validation failed: unknown backend state. Restore network connectivity to https://api.askexe.com and retry."
+    );
+  }
+  const fresh = await getCachedLicense();
+  if (fresh && fresh.valid) return fresh;
+  const graceDays = opts?.offlineGraceDays ?? 7;
+  const graced = await getGraceVerifiedLicense(graceDays);
+  if (graced) return graced;
+  throw new Error(
+    `License validation unreachable for more than ${graceDays} days. Restore network connectivity to https://api.askexe.com and retry. This VPS image refuses to boot after the offline grace window.`
+  );
+}
+var _revalTimer = null;
+function startLicenseRevalidation(intervalMs = 36e5) {
+  if (_revalTimer) return;
+  _revalTimer = setInterval(async () => {
+    try {
+      const license = await checkLicense();
+      if (!license.valid) {
+        process.stderr.write("[exe-os] License expired or invalid \u2014 features may be restricted\n");
+      }
+    } catch {
+    }
+  }, intervalMs);
+  if (_revalTimer && typeof _revalTimer === "object" && "unref" in _revalTimer) {
+    _revalTimer.unref();
+  }
+}
+function stopLicenseRevalidation() {
+  if (_revalTimer) {
+    clearInterval(_revalTimer);
+    _revalTimer = null;
+  }
+}
+
+export {
+  LICENSE_PUBLIC_KEY_PEM,
+  PLAN_LIMITS,
+  loadDeviceId,
+  loadLicense,
+  saveLicense,
+  getCachedLicense,
+  getGraceVerifiedLicense,
+  readCachedLicenseToken,
+  validateLicense,
+  checkLicense,
+  isFeatureAllowed,
+  mirrorLicenseKey,
+  assertVpsLicense,
+  startLicenseRevalidation,
+  stopLicenseRevalidation
+};