@askexenow/exe-os 0.9.282 → 0.9.284

package/dist/hooks/manifest.json

@@ -1,6 +1,6 @@
 {
   "version": 1,
-  "generatedAt": "2026-06-17T08:16:14.270Z",
+  "generatedAt": "2026-06-17T08:59:46.167Z",
   "hashes": {
     "bug-report-worker.js": "16d6fab856fd34eeeb4406f0b63578abbab9b85a2c5b552918b2dc096bff45b2",
     "codex-stop-task-finalizer.js": "2e1b30d86acf2359fe6e555e486ffc80c8b525ab43646c523e272b92d8cdaa93",

package/dist/stack-update-TRZRI6V7.js

@@ -0,0 +1,74 @@
+import {
+  ProgressReporter,
+  assertBreakingChangesAllowed,
+  assertDeploymentScopeAllowed,
+  assertHostReadyForApply,
+  assertProductionDeployGate,
+  bootstrapStackHost,
+  buildDefaultServiceSelection,
+  canonicalizeStackManifest,
+  collectProductionDeployGateIssues,
+  createStackUpdatePlan,
+  defaultStackPaths,
+  detectDanglingVolumes,
+  filterServicesBySelection,
+  findLatestBackupEnvFile,
+  hardenHost,
+  listAvailableVersions,
+  loadServiceSelection,
+  loadStackManifest,
+  pairMonitorAgent,
+  parseEnv,
+  parseStackManifest,
+  patchEnv,
+  printDanglingVolumes,
+  printVolumeCleanupResult,
+  readCurrentStackVersion,
+  removeDanglingVolumes,
+  rollbackStackUpdate,
+  runStackUpdate,
+  saveServiceSelection,
+  serviceSelectionPath,
+  verifyManifestImagesAvailable,
+  verifyReleaseHealth,
+  verifyStackManifestSignature
+} from "./chunk-OJQ34M77.js";
+import "./chunk-YMKUXZIG.js";
+import "./chunk-T3B5RK4H.js";
+import "./chunk-LYH5HE24.js";
+import "./chunk-MLKGABMK.js";
+export {
+  ProgressReporter,
+  assertBreakingChangesAllowed,
+  assertDeploymentScopeAllowed,
+  assertHostReadyForApply,
+  assertProductionDeployGate,
+  bootstrapStackHost,
+  buildDefaultServiceSelection,
+  canonicalizeStackManifest,
+  collectProductionDeployGateIssues,
+  createStackUpdatePlan,
+  defaultStackPaths,
+  detectDanglingVolumes,
+  filterServicesBySelection,
+  findLatestBackupEnvFile,
+  hardenHost,
+  listAvailableVersions,
+  loadServiceSelection,
+  loadStackManifest,
+  pairMonitorAgent,
+  parseEnv,
+  parseStackManifest,
+  patchEnv,
+  printDanglingVolumes,
+  printVolumeCleanupResult,
+  readCurrentStackVersion,
+  removeDanglingVolumes,
+  rollbackStackUpdate,
+  runStackUpdate,
+  saveServiceSelection,
+  serviceSelectionPath,
+  verifyManifestImagesAvailable,
+  verifyReleaseHealth,
+  verifyStackManifestSignature
+};

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@askexenow/exe-os",
-  "version": "0.9.282",
+  "version": "0.9.284",
   "description": "AI employee operating system — persistent memory, task management, and multi-agent coordination for Claude Code.",
   "license": "SEE LICENSE IN LICENSE",
   "type": "module",

package/release-notes.json

@@ -1,8 +1,8 @@
 {
-  "current": "0.9.282",
+  "current": "0.9.284",
   "notes": {
-    "0.9.282": {
-      "version": "0.9.282",
+    "0.9.284": {
+      "version": "0.9.284",
       "date": "2026-06-17",
       "features": [
         "GoTrue JWT auth for MCP — exe-os login/logout/whoami",
@@ -32,6 +32,94 @@
         "cloud-synced cross-device reminders via Cloudflare Worker KV (a4195632) (#127)"
       ],
       "fixes": [
+        "add otel-collector to official image allowlist — unblocks stack-update",
+        "correct exe-os + exe-auth digests for amd64 in manifest 0.9.24 (bug e0c3b3fb)",
+        "update exe-os daemon image to v0.9.281 in manifest 0.9.24",
+        "mcp_ping reports alive when running inside daemon process (bug b5fb9404)",
+        "add exe-erp-nginx for static assets + remove direct gunicorn port (bug 6776edf0)",
+        "ERP healthcheck Host header + websocket path for Frappe 17 (bugs 7c905474, 468cc508)",
+        "rotate signing key to match Worker secret (bug 834ffb70)",
+        "add exe-auth service to main compose + fix image reference to update.askexe.com",
+        "align compose default image tags with manifest 0.9.24 (bug 79168bac)",
+        "isDaemonAlive falls back to socket check when PID file missing (bug b5fb9404)",
+        "correct exe-erp image tag final7→final3 in manifests 0.9.23 + 0.9.24 (bug ff960d31)",
+        "create exe_erp login role in init-db.sql (bug 9d452322)",
+        "CRM_SERVER_URL uses crm. subdomain + add EXE_CRM_ADMIN_EMAIL (bugs 8d20e779, 7debf355)",
+        "use update.askexe.com for exe-auth image in manifest 0.9.24 (bug 97f2d288)",
+        "ensure description field is never empty in feature request upstream payload (bug 0a8e16d0)",
+        "add WSL clip.exe detection to shipped tmux.conf (bug 3396fb26)",
+        "include node binary dir in exe-os-node shim PATH (bug 71adcb68)",
+        "add minimum daemon age guard to prevent crash-loop (bug 25faecf3)",
+        "digest-pin all 0.9.24 images + remove control-plane from customer manifest",
+        "resolve full UUID before upstream delivery — fixes update_bug/update_feature 400s (bug 31b1d2e3)",
+        "dual-key JWT verification — accept tokens signed by previous key (bug 2f5d6166)",
+        "add sync_meta to SQL guard allowlist — fixes cloud sync (bug 9fbbe145)",
+        "accept digest-only official images in deploy gate",
+        "prevent empty/duplicate company_procedure rows at the source",
+        "remove duplicate if-block causing TS build failure"
+      ],
+      "security": [],
+      "other": [
+        "bump v0.9.284 — otel deploy gate fix",
+        "bump v0.9.283 — amd64 digest fix",
+        "bump v0.9.282 — daemon image v0.9.281 in manifest",
+        "prepare v0.9.281 — 50 bugs fixed, stack 0.9.24 fully deployable",
+        "bump v0.9.280 — GoTrue MCP auth, support fixes",
+        "bump v0.9.279 — stack v0.9.24, GoTrue support auth, optional services",
+        "service ownership matrix — dashboard is AskExe-only, not customer stack",
+        "bump version to 0.9.278",
+        "API documentation for wiki.askexe.com (5 pages)",
+        "consolidate platform procedures from 75 to 46 (37KB from 72KB) (#139)",
+        "11 new platform procedures for v0.9.278 features",
+        "document five-layer customization preservation model (a88c354b) (#137)",
+        "bump version to 0.9.277",
+        "document_aware retrieval guidance — when and why agents should use it",
+        "session lifecycle — 3-layer automatic state preservation",
+        "integrate session closeout, model registry, dreaming into platform procedures",
+        "route all memory benchmarks through the embed daemon",
+        "make daemon smoke gate CI-safe under load (#96)",
+        "release: stack 0.9.23 — exe-gateway v0.9.21 (WhatsApp pipeline fixes)",
+        "expect Exe Embeddings v1 default modelFile",
+        "update release-notes.json",
+        "bump 0.9.275 — bundle stack 0.9.22 manifest for stack-update",
+        "release: stack 0.9.22 — exe-os v0.9.270, exe-crm v0.9.48, exe-gateway v0.9.18 (digest-pinned)",
+        "bump 0.9.273 — graph/send_whatsapp/phantom-notif fixes",
+        "Add daemon smoke gate"
+      ],
+      "migration_notes": []
+    },
+    "0.9.283": {
+      "version": "0.9.283",
+      "date": "2026-06-17",
+      "features": [
+        "GoTrue JWT auth for MCP — exe-os login/logout/whoami",
+        "admin backfill endpoint for api_key_hash — fixes all encrypted keys",
+        "implement startMonitor for Slack/Discord/Telegram/WhatsApp + SMTP via nodemailer",
+        "add dashboard + auth + otel to manifest as control-plane services",
+        "CLI service selection + exe-build removal from customer stack",
+        "automatic ERP invoice generation on top-up + monthly",
+        "deploy OTLP collector on VPS",
+        "real per-model pricing for 40+ models + default → kimi-k2.7-code",
+        "ERP trigger engine wiring + profile sync via GoTrue user_metadata",
+        "v0.9.24 manifest — optional services + exe-build removed",
+        "usage alerts (webhook + email) + email verification /confirm page",
+        "welcome email, low balance alerts, password reset, Stripe portal",
+        "wire Stripe checkout → D1 credit_ledger (closes billing loop)",
+        "add Create Account tab — full sign-up flow on auth.askexe.com",
+        "add stable/canary/pinned update channels for progressive rollout (45a55727) (#138)",
+        "discovery hooks — auto-wire MCP tool hints into agent context (2fe666fb) (#136)",
+        "on-demand document→knowledge-graph concept extraction (1514443a) (#135)",
+        "agent capability cards — A2A-style JSON manifests (5774904f) (#134)",
+        "surface retrieval health in cloud_status, memory_audit, mcp_ping (2c85e74b) (#133)",
+        "executable memories as reflex behavior suggestions (9bd99f2a) (#132)",
+        "emotional baselines per agent role (dbfbe67f) (#131)",
+        "split exe-os into server (~200MB) and worker (~1GB) images (#130)",
+        "out-of-process socket watchdog (c3b287cc) (#129)",
+        "hot-path session summary — compress last checkpoint into ~200 tokens at boot (edaf4eb3) (#128)",
+        "cloud-synced cross-device reminders via Cloudflare Worker KV (a4195632) (#127)"
+      ],
+      "fixes": [
+        "correct exe-os + exe-auth digests for amd64 in manifest 0.9.24 (bug e0c3b3fb)",
         "update exe-os daemon image to v0.9.281 in manifest 0.9.24",
         "mcp_ping reports alive when running inside daemon process (bug b5fb9404)",
         "add exe-erp-nginx for static assets + remove direct gunicorn port (bug 6776edf0)",
@@ -55,11 +143,11 @@
         "accept digest-only official images in deploy gate",
         "prevent empty/duplicate company_procedure rows at the source",
         "remove duplicate if-block causing TS build failure",
-        "watchdog self-heal + restart-intent propagation (belt & suspenders)",
-        "skip junk/empty company_procedure rows that bloated prompts to 1.6MB"
+        "watchdog self-heal + restart-intent propagation (belt & suspenders)"
       ],
       "security": [],
       "other": [
+        "bump v0.9.283 — amd64 digest fix",
         "bump v0.9.282 — daemon image v0.9.281 in manifest",
         "prepare v0.9.281 — 50 bugs fixed, stack 0.9.24 fully deployable",
         "bump v0.9.280 — GoTrue MCP auth, support fixes",
@@ -83,13 +171,12 @@
         "release: stack 0.9.22 — exe-os v0.9.270, exe-crm v0.9.48, exe-gateway v0.9.18 (digest-pinned)",
         "bump 0.9.273 — graph/send_whatsapp/phantom-notif fixes",
         "Add daemon smoke gate",
-        "Publish Claude Fable model support as 0.9.272",
-        "Add Claude Fable model whitelist"
+        "Publish Claude Fable model support as 0.9.272"
       ],
       "migration_notes": []
     },
-    "0.9.281": {
-      "version": "0.9.281",
+    "0.9.282": {
+      "version": "0.9.282",
       "date": "2026-06-17",
       "features": [
         "GoTrue JWT auth for MCP — exe-os login/logout/whoami",
@@ -119,6 +206,7 @@
         "cloud-synced cross-device reminders via Cloudflare Worker KV (a4195632) (#127)"
       ],
       "fixes": [
+        "update exe-os daemon image to v0.9.281 in manifest 0.9.24",
         "mcp_ping reports alive when running inside daemon process (bug b5fb9404)",
         "add exe-erp-nginx for static assets + remove direct gunicorn port (bug 6776edf0)",
         "ERP healthcheck Host header + websocket path for Frappe 17 (bugs 7c905474, 468cc508)",
@@ -142,11 +230,11 @@
         "prevent empty/duplicate company_procedure rows at the source",
         "remove duplicate if-block causing TS build failure",
         "watchdog self-heal + restart-intent propagation (belt & suspenders)",
-        "skip junk/empty company_procedure rows that bloated prompts to 1.6MB",
-        "match user by deviceId when encryption secret lost"
+        "skip junk/empty company_procedure rows that bloated prompts to 1.6MB"
       ],
       "security": [],
       "other": [
+        "bump v0.9.282 — daemon image v0.9.281 in manifest",
         "prepare v0.9.281 — 50 bugs fixed, stack 0.9.24 fully deployable",
         "bump v0.9.280 — GoTrue MCP auth, support fixes",
         "bump v0.9.279 — stack v0.9.24, GoTrue support auth, optional services",
@@ -170,13 +258,12 @@
         "bump 0.9.273 — graph/send_whatsapp/phantom-notif fixes",
         "Add daemon smoke gate",
         "Publish Claude Fable model support as 0.9.272",
-        "Add Claude Fable model whitelist",
-        "Publish stack-update service resume as 0.9.271"
+        "Add Claude Fable model whitelist"
       ],
       "migration_notes": []
     },
-    "0.9.280": {
-      "version": "0.9.280",
+    "0.9.281": {
+      "version": "0.9.281",
       "date": "2026-06-17",
       "features": [
         "GoTrue JWT auth for MCP — exe-os login/logout/whoami",
@@ -206,34 +293,35 @@
         "cloud-synced cross-device reminders via Cloudflare Worker KV (a4195632) (#127)"
       ],
       "fixes": [
+        "mcp_ping reports alive when running inside daemon process (bug b5fb9404)",
+        "add exe-erp-nginx for static assets + remove direct gunicorn port (bug 6776edf0)",
+        "ERP healthcheck Host header + websocket path for Frappe 17 (bugs 7c905474, 468cc508)",
+        "rotate signing key to match Worker secret (bug 834ffb70)",
+        "add exe-auth service to main compose + fix image reference to update.askexe.com",
+        "align compose default image tags with manifest 0.9.24 (bug 79168bac)",
+        "isDaemonAlive falls back to socket check when PID file missing (bug b5fb9404)",
+        "correct exe-erp image tag final7→final3 in manifests 0.9.23 + 0.9.24 (bug ff960d31)",
+        "create exe_erp login role in init-db.sql (bug 9d452322)",
+        "CRM_SERVER_URL uses crm. subdomain + add EXE_CRM_ADMIN_EMAIL (bugs 8d20e779, 7debf355)",
+        "use update.askexe.com for exe-auth image in manifest 0.9.24 (bug 97f2d288)",
+        "ensure description field is never empty in feature request upstream payload (bug 0a8e16d0)",
+        "add WSL clip.exe detection to shipped tmux.conf (bug 3396fb26)",
+        "include node binary dir in exe-os-node shim PATH (bug 71adcb68)",
+        "add minimum daemon age guard to prevent crash-loop (bug 25faecf3)",
+        "digest-pin all 0.9.24 images + remove control-plane from customer manifest",
+        "resolve full UUID before upstream delivery — fixes update_bug/update_feature 400s (bug 31b1d2e3)",
+        "dual-key JWT verification — accept tokens signed by previous key (bug 2f5d6166)",
+        "add sync_meta to SQL guard allowlist — fixes cloud sync (bug 9fbbe145)",
+        "accept digest-only official images in deploy gate",
         "prevent empty/duplicate company_procedure rows at the source",
         "remove duplicate if-block causing TS build failure",
         "watchdog self-heal + restart-intent propagation (belt & suspenders)",
         "skip junk/empty company_procedure rows that bloated prompts to 1.6MB",
-        "match user by deviceId when encryption secret lost",
-        "backfill api_key_hash on every /auth/activate call",
-        "allow dev-fallback storage secret for backfill (keys were encrypted with it)",
-        "cap model-instructions prompt under the API limit (was 1.6MB → 400)",
-        "mark keychain unavailable on write timeout; pass --session to codex/opencode",
-        "backfill api_key_hash for ALREADY encrypted keys",
-        "store api_key_hash on key upgrade — support validation works for all customers",
-        "name the target keychain on store to fix \"cannot be found\"",
-        "never re-prompt when the OS keychain is unavailable",
-        "GoTrue JWT payload decode fallback — support channel working",
-        "validate against GoTrue JWT — not just D1 license keys",
-        "stop master-key destruction on launch + fix codex --profile",
-        "clear all 25 moderate CVEs via OTel+protobufjs overrides; fix date-bomb test",
-        "auth is customer-facing (not control-plane)",
-        "patch hono HIGH CVE + fix stale worker-gate test",
-        "use hooks-free CODEX_HOME to prevent crash after 10 codex calls",
-        "per-chat runner + offset flag + execSync + clean env + GC",
-        "execFile instead of spawn, sequential loop, useOpenCode, 180s timeout",
-        "P1 CVE fixes + test alignment + tarball budget + env sync",
-        "exe-start COO_NAME resolution fails on npm install (not dev symlink)",
-        "fix FTS ambiguous column bug + CLaRa term sanitization"
+        "match user by deviceId when encryption secret lost"
       ],
       "security": [],
       "other": [
+        "prepare v0.9.281 — 50 bugs fixed, stack 0.9.24 fully deployable",
         "bump v0.9.280 — GoTrue MCP auth, support fixes",
         "bump v0.9.279 — stack v0.9.24, GoTrue support auth, optional services",
         "service ownership matrix — dashboard is AskExe-only, not customer stack",
@@ -261,10 +349,12 @@
       ],
       "migration_notes": []
     },
-    "0.9.279": {
-      "version": "0.9.279",
+    "0.9.280": {
+      "version": "0.9.280",
       "date": "2026-06-17",
       "features": [
+        "GoTrue JWT auth for MCP — exe-os login/logout/whoami",
+        "admin backfill endpoint for api_key_hash — fixes all encrypted keys",
         "implement startMonitor for Slack/Discord/Telegram/WhatsApp + SMTP via nodemailer",
         "add dashboard + auth + otel to manifest as control-plane services",
         "CLI service selection + exe-build removal from customer stack",
@@ -287,11 +377,20 @@
         "split exe-os into server (~200MB) and worker (~1GB) images (#130)",
         "out-of-process socket watchdog (c3b287cc) (#129)",
         "hot-path session summary — compress last checkpoint into ~200 tokens at boot (edaf4eb3) (#128)",
-        "cloud-synced cross-device reminders via Cloudflare Worker KV (a4195632) (#127)",
-        "wire dashboard → api.askexe.com billing API (7 endpoints)",
-        "dashboard.askexe.com — customer developer portal"
+        "cloud-synced cross-device reminders via Cloudflare Worker KV (a4195632) (#127)"
       ],
       "fixes": [
+        "prevent empty/duplicate company_procedure rows at the source",
+        "remove duplicate if-block causing TS build failure",
+        "watchdog self-heal + restart-intent propagation (belt & suspenders)",
+        "skip junk/empty company_procedure rows that bloated prompts to 1.6MB",
+        "match user by deviceId when encryption secret lost",
+        "backfill api_key_hash on every /auth/activate call",
+        "allow dev-fallback storage secret for backfill (keys were encrypted with it)",
+        "cap model-instructions prompt under the API limit (was 1.6MB → 400)",
+        "mark keychain unavailable on write timeout; pass --session to codex/opencode",
+        "backfill api_key_hash for ALREADY encrypted keys",
+        "store api_key_hash on key upgrade — support validation works for all customers",
         "name the target keychain on store to fix \"cannot be found\"",
         "never re-prompt when the OS keychain is unavailable",
         "GoTrue JWT payload decode fallback — support channel working",
@@ -305,21 +404,11 @@
         "execFile instead of spawn, sequential loop, useOpenCode, 180s timeout",
         "P1 CVE fixes + test alignment + tarball budget + env sync",
         "exe-start COO_NAME resolution fails on npm install (not dev symlink)",
-        "fix FTS ambiguous column bug + CLaRa term sanitization",
-        "document cloud_action param in consolidated procedures (customer-readiness gate)",
-        "typecheck errors (session-summary undefined, unused import)",
-        "graceful exit on missing GHCR_TOKEN prevents crash-loop (bug 3416cead) (#141)",
-        "graceful exit on missing GHCR_TOKEN prevents crash-loop (bug 3416cead) (#140)",
-        "exe-build is askexe-control-plane, not customer-deployable",
-        "unquarantine gateway-client WS tests — clear NODE_OPTIONS + CI-aware timeouts (bug d51015bb) (#119)",
-        "typecheck errors from subagent code (failover undefined model, unused vars)",
-        "config-search-cloud reconciliation + Keychain-aware boot (bugs 370587e3, e3fd2319, 6bce0a70, 6727e213) (#109)",
-        "SSE stale-session recovery + eviction notification + headless session isolation (bugs 5b601250, 56caa668, 17882f71) (#108)",
-        "platform-aware RAM gate, dynamic worker cap, dirty worktree aging (bugs a3eb23d2, ed1fb3d2) (#107)",
-        "orchestration bugs — reviewer loop, session isolation, Desktop reaper (57b06092, b313fec5, 6b3a7810) (#106)"
+        "fix FTS ambiguous column bug + CLaRa term sanitization"
       ],
       "security": [],
       "other": [
+        "bump v0.9.280 — GoTrue MCP auth, support fixes",
         "bump v0.9.279 — stack v0.9.24, GoTrue support auth, optional services",
         "service ownership matrix — dashboard is AskExe-only, not customer stack",
         "bump version to 0.9.278",
@@ -345,51 +434,6 @@
         "Publish stack-update service resume as 0.9.271"
       ],
       "migration_notes": []
-    },
-    "0.9.278": {
-      "version": "0.9.278",
-      "date": "2026-06-15",
-      "features": [
-        "Document-aware retrieval (retrieval_mode=document_aware) — neighbor chunks, affinity boost, debug scoring",
-        "Hot-path session summary — 200-token compressed context injected at boot",
-        "Reflex behaviors — trigger→action p0 suggestions with ⚡ prefix",
-        "Emotional baselines — per-role tone profiles + drift detection in dreaming",
-        "Agent capability cards — A2A-style JSON manifests via config(action=capability_cards)",
-        "Discovery hooks — tool catalog at boot + contextual hints per prompt",
-        "Doc→graph auto-extraction — ingested documents populate knowledge graph",
-        "Session closeout MCP action — config(action=closeout) for programmatic session end",
-        "Out-of-process daemon watchdog — MCP downtime capped at 30s",
-        "Docker image split — server ~200MB + worker ~1GB (from ~6GB monolith)",
-        "Canary/stable/pinned update channels — exe-os channel CLI",
-        "Daemon smoke test gate — RSS, MCP latency, event loop assertions at boot",
-        "Cloud-synced reminders via Cloudflare KV",
-        "Stack-update progress stream with N/M counters + volume cleanup",
-        "Support file attachments on bug reports + feature requests",
-        "Model registry — Opus 4.8, Sonnet 4.8, Fable",
-        "Degraded-boot banner with actionable fix steps",
-        "Event-loop-aware mcp_ping + retrieval health in diagnostics",
-        "Dynamic roster injection at boot",
-        "Worktree collision guard",
-        "SectionState UX across all repos (monitor, gateway, erp, wiki, crm)",
-        "CRM API key CLI (--list, --revoke)",
-        "Gateway per-section health endpoint + contract resync",
-        "Projection status API + data flows in exe-db",
-        "Customization preservation docs + 17 enforcement tests"
-      ],
-      "fixes": [
-        "15 daemon/MCP bugs — SSE recovery, session isolation, project-dir resolution, RAM gate, worktree aging",
-        "CI WS test unquarantined (NODE_OPTIONS fix)",
-        "exe-update crash-loop on missing GHCR_TOKEN",
-        "Config reconciliation, hybrid search warning, cloud guard, Keychain boot",
-        "API router update_bug/update_feature 500 errors"
-      ],
-      "improvements": [
-        "Platform procedures consolidated 75→46 (-49% context overhead, ~7K fewer tokens per session)",
-        "CLaRa query expansion documented in procedures"
-      ],
-      "security": [],
-      "other": [],
-      "migration_notes": []
     }
   }
 }