npm - @bazaar.ai/mcp-human-agents - Versions diffs - 0.1.0 - Mend

@bazaar.ai/mcp-human-agents 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (259) hide show

package/.env.example +15 -0
package/README.md +178 -0
package/dist/mcp-server/src/bin.d.ts +3 -0
package/dist/mcp-server/src/bin.d.ts.map +1 -0
package/dist/mcp-server/src/bin.js +10 -0
package/dist/mcp-server/src/bin.js.map +1 -0
package/dist/mcp-server/src/cli/setup.d.ts +2 -0
package/dist/mcp-server/src/cli/setup.d.ts.map +1 -0
package/dist/mcp-server/src/cli/setup.js +274 -0
package/dist/mcp-server/src/cli/setup.js.map +1 -0
package/dist/mcp-server/src/config/defaults.d.ts +16 -0
package/dist/mcp-server/src/config/defaults.d.ts.map +1 -0
package/dist/mcp-server/src/config/defaults.js +19 -0
package/dist/mcp-server/src/config/defaults.js.map +1 -0
package/dist/mcp-server/src/config/env.d.ts +73 -0
package/dist/mcp-server/src/config/env.d.ts.map +1 -0
package/dist/mcp-server/src/config/env.js +72 -0
package/dist/mcp-server/src/config/env.js.map +1 -0
package/dist/mcp-server/src/config/index.d.ts +3 -0
package/dist/mcp-server/src/config/index.d.ts.map +1 -0
package/dist/mcp-server/src/config/index.js +22 -0
package/dist/mcp-server/src/config/index.js.map +1 -0
package/dist/mcp-server/src/context/generator.d.ts +16 -0
package/dist/mcp-server/src/context/generator.d.ts.map +1 -0
package/dist/mcp-server/src/context/generator.js +61 -0
package/dist/mcp-server/src/context/generator.js.map +1 -0
package/dist/mcp-server/src/context/index.d.ts +3 -0
package/dist/mcp-server/src/context/index.d.ts.map +1 -0
package/dist/mcp-server/src/context/index.js +10 -0
package/dist/mcp-server/src/context/index.js.map +1 -0
package/dist/mcp-server/src/context/templates.d.ts +8 -0
package/dist/mcp-server/src/context/templates.d.ts.map +1 -0
package/dist/mcp-server/src/context/templates.js +41 -0
package/dist/mcp-server/src/context/templates.js.map +1 -0
package/dist/mcp-server/src/git/branch.d.ts +13 -0
package/dist/mcp-server/src/git/branch.d.ts.map +1 -0
package/dist/mcp-server/src/git/branch.js +49 -0
package/dist/mcp-server/src/git/branch.js.map +1 -0
package/dist/mcp-server/src/git/diff.d.ts +10 -0
package/dist/mcp-server/src/git/diff.d.ts.map +1 -0
package/dist/mcp-server/src/git/diff.js +39 -0
package/dist/mcp-server/src/git/diff.js.map +1 -0
package/dist/mcp-server/src/git/index.d.ts +5 -0
package/dist/mcp-server/src/git/index.d.ts.map +1 -0
package/dist/mcp-server/src/git/index.js +16 -0
package/dist/mcp-server/src/git/index.js.map +1 -0
package/dist/mcp-server/src/git/merge.d.ts +6 -0
package/dist/mcp-server/src/git/merge.d.ts.map +1 -0
package/dist/mcp-server/src/git/merge.js +30 -0
package/dist/mcp-server/src/git/merge.js.map +1 -0
package/dist/mcp-server/src/git/worktree.d.ts +11 -0
package/dist/mcp-server/src/git/worktree.d.ts.map +1 -0
package/dist/mcp-server/src/git/worktree.js +38 -0
package/dist/mcp-server/src/git/worktree.js.map +1 -0
package/dist/mcp-server/src/http-wrapper.d.ts +6 -0
package/dist/mcp-server/src/http-wrapper.d.ts.map +1 -0
package/dist/mcp-server/src/http-wrapper.js +85 -0
package/dist/mcp-server/src/http-wrapper.js.map +1 -0
package/dist/mcp-server/src/index.d.ts +2 -0
package/dist/mcp-server/src/index.d.ts.map +1 -0
package/dist/mcp-server/src/index.js +28 -0
package/dist/mcp-server/src/index.js.map +1 -0
package/dist/mcp-server/src/platform-client/client.d.ts +17 -0
package/dist/mcp-server/src/platform-client/client.d.ts.map +1 -0
package/dist/mcp-server/src/platform-client/client.js +68 -0
package/dist/mcp-server/src/platform-client/client.js.map +1 -0
package/dist/mcp-server/src/platform-client/index.d.ts +5 -0
package/dist/mcp-server/src/platform-client/index.d.ts.map +1 -0
package/dist/mcp-server/src/platform-client/index.js +10 -0
package/dist/mcp-server/src/platform-client/index.js.map +1 -0
package/dist/mcp-server/src/platform-client/mock-client.d.ts +28 -0
package/dist/mcp-server/src/platform-client/mock-client.d.ts.map +1 -0
package/dist/mcp-server/src/platform-client/mock-client.js +75 -0
package/dist/mcp-server/src/platform-client/mock-client.js.map +1 -0
package/dist/mcp-server/src/platform-client/polling.d.ts +9 -0
package/dist/mcp-server/src/platform-client/polling.d.ts.map +1 -0
package/dist/mcp-server/src/platform-client/polling.js +40 -0
package/dist/mcp-server/src/platform-client/polling.js.map +1 -0
package/dist/mcp-server/src/platform-client/types.d.ts +2 -0
package/dist/mcp-server/src/platform-client/types.d.ts.map +1 -0
package/dist/mcp-server/src/platform-client/types.js +3 -0
package/dist/mcp-server/src/platform-client/types.js.map +1 -0
package/dist/mcp-server/src/provisioning/authorized-keys.d.ts +14 -0
package/dist/mcp-server/src/provisioning/authorized-keys.d.ts.map +1 -0
package/dist/mcp-server/src/provisioning/authorized-keys.js +48 -0
package/dist/mcp-server/src/provisioning/authorized-keys.js.map +1 -0
package/dist/mcp-server/src/provisioning/cleanup.d.ts +19 -0
package/dist/mcp-server/src/provisioning/cleanup.d.ts.map +1 -0
package/dist/mcp-server/src/provisioning/cleanup.js +96 -0
package/dist/mcp-server/src/provisioning/cleanup.js.map +1 -0
package/dist/mcp-server/src/provisioning/index.d.ts +6 -0
package/dist/mcp-server/src/provisioning/index.d.ts.map +1 -0
package/dist/mcp-server/src/provisioning/index.js +24 -0
package/dist/mcp-server/src/provisioning/index.js.map +1 -0
package/dist/mcp-server/src/provisioning/linux-user.d.ts +15 -0
package/dist/mcp-server/src/provisioning/linux-user.d.ts.map +1 -0
package/dist/mcp-server/src/provisioning/linux-user.js +62 -0
package/dist/mcp-server/src/provisioning/linux-user.js.map +1 -0
package/dist/mcp-server/src/provisioning/privileged.d.ts +40 -0
package/dist/mcp-server/src/provisioning/privileged.d.ts.map +1 -0
package/dist/mcp-server/src/provisioning/privileged.js +123 -0
package/dist/mcp-server/src/provisioning/privileged.js.map +1 -0
package/dist/mcp-server/src/provisioning/ssh-config.d.ts +21 -0
package/dist/mcp-server/src/provisioning/ssh-config.d.ts.map +1 -0
package/dist/mcp-server/src/provisioning/ssh-config.js +161 -0
package/dist/mcp-server/src/provisioning/ssh-config.js.map +1 -0
package/dist/mcp-server/src/provisioning/tmux-session.d.ts +37 -0
package/dist/mcp-server/src/provisioning/tmux-session.d.ts.map +1 -0
package/dist/mcp-server/src/provisioning/tmux-session.js +123 -0
package/dist/mcp-server/src/provisioning/tmux-session.js.map +1 -0
package/dist/mcp-server/src/server.d.ts +3 -0
package/dist/mcp-server/src/server.d.ts.map +1 -0
package/dist/mcp-server/src/server.js +67 -0
package/dist/mcp-server/src/server.js.map +1 -0
package/dist/mcp-server/src/state/gig-store.d.ts +19 -0
package/dist/mcp-server/src/state/gig-store.d.ts.map +1 -0
package/dist/mcp-server/src/state/gig-store.js +52 -0
package/dist/mcp-server/src/state/gig-store.js.map +1 -0
package/dist/mcp-server/src/state/index.d.ts +4 -0
package/dist/mcp-server/src/state/index.d.ts.map +1 -0
package/dist/mcp-server/src/state/index.js +8 -0
package/dist/mcp-server/src/state/index.js.map +1 -0
package/dist/mcp-server/src/state/persistence.d.ts +13 -0
package/dist/mcp-server/src/state/persistence.d.ts.map +1 -0
package/dist/mcp-server/src/state/persistence.js +48 -0
package/dist/mcp-server/src/state/persistence.js.map +1 -0
package/dist/mcp-server/src/state/types.d.ts +15 -0
package/dist/mcp-server/src/state/types.d.ts.map +1 -0
package/dist/mcp-server/src/state/types.js +3 -0
package/dist/mcp-server/src/state/types.js.map +1 -0
package/dist/mcp-server/src/tools/dismiss-human.d.ts +25 -0
package/dist/mcp-server/src/tools/dismiss-human.d.ts.map +1 -0
package/dist/mcp-server/src/tools/dismiss-human.js +78 -0
package/dist/mcp-server/src/tools/dismiss-human.js.map +1 -0
package/dist/mcp-server/src/tools/index.d.ts +9 -0
package/dist/mcp-server/src/tools/index.d.ts.map +1 -0
package/dist/mcp-server/src/tools/index.js +20 -0
package/dist/mcp-server/src/tools/index.js.map +1 -0
package/dist/mcp-server/src/tools/list-humans.d.ts +18 -0
package/dist/mcp-server/src/tools/list-humans.d.ts.map +1 -0
package/dist/mcp-server/src/tools/list-humans.js +35 -0
package/dist/mcp-server/src/tools/list-humans.js.map +1 -0
package/dist/mcp-server/src/tools/message-human.d.ts +10 -0
package/dist/mcp-server/src/tools/message-human.d.ts.map +1 -0
package/dist/mcp-server/src/tools/message-human.js +19 -0
package/dist/mcp-server/src/tools/message-human.js.map +1 -0
package/dist/mcp-server/src/tools/schemas/dismiss-human.schema.d.ts +19 -0
package/dist/mcp-server/src/tools/schemas/dismiss-human.schema.d.ts.map +1 -0
package/dist/mcp-server/src/tools/schemas/dismiss-human.schema.js +22 -0
package/dist/mcp-server/src/tools/schemas/dismiss-human.schema.js.map +1 -0
package/dist/mcp-server/src/tools/schemas/list-humans.schema.d.ts +4 -0
package/dist/mcp-server/src/tools/schemas/list-humans.schema.d.ts.map +1 -0
package/dist/mcp-server/src/tools/schemas/list-humans.schema.js +7 -0
package/dist/mcp-server/src/tools/schemas/list-humans.schema.js.map +1 -0
package/dist/mcp-server/src/tools/schemas/message-human.schema.d.ts +13 -0
package/dist/mcp-server/src/tools/schemas/message-human.schema.d.ts.map +1 -0
package/dist/mcp-server/src/tools/schemas/message-human.schema.js +9 -0
package/dist/mcp-server/src/tools/schemas/message-human.schema.js.map +1 -0
package/dist/mcp-server/src/tools/schemas/summon-human.schema.d.ts +22 -0
package/dist/mcp-server/src/tools/schemas/summon-human.schema.d.ts.map +1 -0
package/dist/mcp-server/src/tools/schemas/summon-human.schema.js +18 -0
package/dist/mcp-server/src/tools/schemas/summon-human.schema.js.map +1 -0
package/dist/mcp-server/src/tools/summon-human.d.ts +31 -0
package/dist/mcp-server/src/tools/summon-human.d.ts.map +1 -0
package/dist/mcp-server/src/tools/summon-human.js +137 -0
package/dist/mcp-server/src/tools/summon-human.js.map +1 -0
package/dist/mcp-server/src/tunnel/client.d.ts +16 -0
package/dist/mcp-server/src/tunnel/client.d.ts.map +1 -0
package/dist/mcp-server/src/tunnel/client.js +100 -0
package/dist/mcp-server/src/tunnel/client.js.map +1 -0
package/dist/mcp-server/src/tunnel/index.d.ts +6 -0
package/dist/mcp-server/src/tunnel/index.d.ts.map +1 -0
package/dist/mcp-server/src/tunnel/index.js +28 -0
package/dist/mcp-server/src/tunnel/index.js.map +1 -0
package/dist/mcp-server/src/utils/errors.d.ts +28 -0
package/dist/mcp-server/src/utils/errors.d.ts.map +1 -0
package/dist/mcp-server/src/utils/errors.js +66 -0
package/dist/mcp-server/src/utils/errors.js.map +1 -0
package/dist/mcp-server/src/utils/exec.d.ts +7 -0
package/dist/mcp-server/src/utils/exec.d.ts.map +1 -0
package/dist/mcp-server/src/utils/exec.js +22 -0
package/dist/mcp-server/src/utils/exec.js.map +1 -0
package/dist/mcp-server/src/utils/ip.d.ts +6 -0
package/dist/mcp-server/src/utils/ip.d.ts.map +1 -0
package/dist/mcp-server/src/utils/ip.js +33 -0
package/dist/mcp-server/src/utils/ip.js.map +1 -0
package/dist/mcp-server/src/utils/logger.d.ts +20 -0
package/dist/mcp-server/src/utils/logger.d.ts.map +1 -0
package/dist/mcp-server/src/utils/logger.js +41 -0
package/dist/mcp-server/src/utils/logger.js.map +1 -0
package/dist/shared/src/contractor.types.d.ts +20 -0
package/dist/shared/src/contractor.types.d.ts.map +1 -0
package/dist/shared/src/contractor.types.js +3 -0
package/dist/shared/src/contractor.types.js.map +1 -0
package/dist/shared/src/gig.types.d.ts +32 -0
package/dist/shared/src/gig.types.d.ts.map +1 -0
package/dist/shared/src/gig.types.js +21 -0
package/dist/shared/src/gig.types.js.map +1 -0
package/dist/shared/src/index.d.ts +5 -0
package/dist/shared/src/index.d.ts.map +1 -0
package/dist/shared/src/index.js +21 -0
package/dist/shared/src/index.js.map +1 -0
package/dist/shared/src/mcp-tool.types.d.ts +45 -0
package/dist/shared/src/mcp-tool.types.d.ts.map +1 -0
package/dist/shared/src/mcp-tool.types.js +3 -0
package/dist/shared/src/mcp-tool.types.js.map +1 -0
package/dist/shared/src/platform-api.types.d.ts +73 -0
package/dist/shared/src/platform-api.types.d.ts.map +1 -0
package/dist/shared/src/platform-api.types.js +3 -0
package/dist/shared/src/platform-api.types.js.map +1 -0
package/package.json +41 -0
package/src/bin.ts +7 -0
package/src/cli/setup.ts +317 -0
package/src/config/defaults.ts +21 -0
package/src/config/env.ts +74 -0
package/src/config/index.ts +2 -0
package/src/context/generator.ts +71 -0
package/src/context/index.ts +6 -0
package/src/context/templates.ts +41 -0
package/src/git/branch.ts +46 -0
package/src/git/diff.ts +34 -0
package/src/git/index.ts +4 -0
package/src/git/merge.ts +36 -0
package/src/git/worktree.ts +42 -0
package/src/http-wrapper.ts +94 -0
package/src/index.ts +32 -0
package/src/platform-client/client.ts +93 -0
package/src/platform-client/index.ts +4 -0
package/src/platform-client/mock-client.ts +92 -0
package/src/platform-client/polling.ts +53 -0
package/src/platform-client/types.ts +9 -0
package/src/provisioning/authorized-keys.ts +52 -0
package/src/provisioning/cleanup.ts +106 -0
package/src/provisioning/index.ts +13 -0
package/src/provisioning/linux-user.ts +66 -0
package/src/provisioning/privileged.ts +128 -0
package/src/provisioning/ssh-config.ts +197 -0
package/src/provisioning/tmux-session.ts +136 -0
package/src/server.ts +111 -0
package/src/state/gig-store.ts +56 -0
package/src/state/index.ts +3 -0
package/src/state/persistence.ts +42 -0
package/src/state/types.ts +14 -0
package/src/tools/dismiss-human.ts +103 -0
package/src/tools/index.ts +9 -0
package/src/tools/list-humans.ts +54 -0
package/src/tools/message-human.ts +28 -0
package/src/tools/schemas/dismiss-human.schema.ts +21 -0
package/src/tools/schemas/list-humans.schema.ts +6 -0
package/src/tools/schemas/message-human.schema.ts +8 -0
package/src/tools/schemas/summon-human.schema.ts +19 -0
package/src/tools/summon-human.ts +180 -0
package/src/tunnel/client.ts +116 -0
package/src/tunnel/index.ts +26 -0
package/src/utils/errors.ts +64 -0
package/src/utils/exec.ts +29 -0
package/src/utils/ip.ts +31 -0
package/src/utils/logger.ts +55 -0
package/tsconfig.json +20 -0

package/src/git/worktree.ts ADDED Viewed

@@ -0,0 +1,42 @@
+import { exec } from "../utils/exec.js";
+import { GitError } from "../utils/errors.js";
+import { logger } from "../utils/logger.js";
+/**
+ * Create a git worktree for "clean" mode.
+ * Gives the contractor a fresh checkout of the branch
+ * without the AI's dirty working state.
+ */
+export async function createWorktree(
+  branch: string,
+  targetDir: string,
+  cwd?: string,
+): Promise<string> {
+  try {
+    await exec(`git worktree add ${targetDir} ${branch}`, { cwd });
+    logger.info("Git worktree created", { branch, targetDir });
+    return targetDir;
+  } catch (error) {
+    throw new GitError(
+      `Failed to create worktree at ${targetDir}: ${error}`,
+    );
+  }
+}
+/**
+ * Remove a git worktree.
+ */
+export async function removeWorktree(
+  targetDir: string,
+  cwd?: string,
+): Promise<void> {
+  try {
+    await exec(`git worktree remove ${targetDir} --force`, { cwd });
+    logger.info("Git worktree removed", { targetDir });
+  } catch (error) {
+    logger.warn("Failed to remove worktree (may not exist)", {
+      targetDir,
+      error: String(error),
+    });
+  }
+}

package/src/http-wrapper.ts ADDED Viewed

@@ -0,0 +1,94 @@
+/**
+ * Quick HTTP wrapper around the MCP tools for testing.
+ * Exposes summon_human, dismiss_human, list_humans, message_human as REST endpoints.
+ */
+import express from "express";
+import { getEnv } from "./config/env.js";
+import { GigStore } from "./state/gig-store.js";
+import { StatePersistence } from "./state/persistence.js";
+import { MockPlatformClient } from "./platform-client/mock-client.js";
+import { HttpPlatformClient } from "./platform-client/client.js";
+import type { PlatformClient } from "./platform-client/client.js";
+import {
+  summonHuman,
+  dismissHuman,
+  listHumans,
+  messageHuman,
+} from "./tools/index.js";
+const env = getEnv();
+const gigStore = new GigStore();
+const persistence = new StatePersistence(env.STATE_FILE_PATH);
+const platformClient: PlatformClient = env.USE_MOCK_PLATFORM
+  ? new MockPlatformClient()
+  : new HttpPlatformClient(env.PLATFORM_API_URL, env.PLATFORM_API_KEY);
+const deps = { platformClient, gigStore };
+const app = express();
+app.use(express.json());
+app.get("/health", (_req, res) => {
+  res.json({ status: "ok", service: "human-agents-http", gigs: gigStore.list().length });
+});
+app.post("/summon", async (req, res) => {
+  try {
+    const result = await summonHuman(req.body, deps);
+    await persistence.save(gigStore);
+    res.json(result);
+  } catch (err: any) {
+    res.status(500).json({ error: err.message });
+  }
+});
+app.post("/dismiss", async (req, res) => {
+  try {
+    const result = await dismissHuman(req.body, deps);
+    await persistence.save(gigStore);
+    res.json(result);
+  } catch (err: any) {
+    res.status(500).json({ error: err.message });
+  }
+});
+app.get("/list", async (_req, res) => {
+  try {
+    const result = await listHumans(gigStore);
+    res.json(result);
+  } catch (err: any) {
+    res.status(500).json({ error: err.message });
+  }
+});
+app.post("/message", async (req, res) => {
+  try {
+    const result = await messageHuman(req.body, gigStore);
+    res.json(result);
+  } catch (err: any) {
+    res.status(500).json({ error: err.message });
+  }
+});
+const PORT = parseInt(process.env.HTTP_PORT ?? "9999", 10);
+async function start() {
+  await persistence.load(gigStore);
+  app.listen(PORT, () => {
+    console.log(`Human-agents HTTP wrapper on port ${PORT}`);
+    console.log(`  Mock platform: ${env.USE_MOCK_PLATFORM}`);
+    console.log(`  VM IP: ${env.VM_EXTERNAL_IP}`);
+    console.log(`\nEndpoints:`);
+    console.log(`  POST /summon   — summon a contractor`);
+    console.log(`  POST /dismiss  — dismiss a contractor`);
+    console.log(`  GET  /list     — list active contractors`);
+    console.log(`  POST /message  — message a contractor`);
+  });
+}
+start().catch((err) => {
+  console.error("Failed to start:", err);
+  process.exit(1);
+});

package/src/index.ts ADDED Viewed

@@ -0,0 +1,32 @@
+import { StdioServerTransport } from "@modelcontextprotocol/sdk/server/stdio.js";
+import { createServer } from "./server.js";
+import { logger } from "./utils/logger.js";
+async function main(): Promise<void> {
+  logger.info("Starting human-agents MCP server");
+  const server = await createServer();
+  const transport = new StdioServerTransport();
+  await server.connect(transport);
+  logger.info("MCP server running on stdio transport");
+  // Handle graceful shutdown
+  process.on("SIGINT", async () => {
+    logger.info("Received SIGINT, shutting down");
+    await server.close();
+    process.exit(0);
+  });
+  process.on("SIGTERM", async () => {
+    logger.info("Received SIGTERM, shutting down");
+    await server.close();
+    process.exit(0);
+  });
+}
+main().catch((error) => {
+  logger.error("Fatal error", { error: String(error) });
+  process.exit(1);
+});

package/src/platform-client/client.ts ADDED Viewed

@@ -0,0 +1,93 @@
+import axios, { type AxiosInstance } from "axios";
+import { PlatformApiError } from "../utils/errors.js";
+import { logger } from "../utils/logger.js";
+import type {
+  CreateGigRequest,
+  CreateGigResponse,
+  GigStatusResponse,
+  CompleteGigRequest,
+  CompleteGigResponse,
+} from "./types.js";
+export interface PlatformClient {
+  createGig(request: CreateGigRequest): Promise<CreateGigResponse>;
+  getGigStatus(gigId: string): Promise<GigStatusResponse>;
+  markReady(gigId: string, sshCommand: string): Promise<void>;
+  completeGig(request: CompleteGigRequest): Promise<CompleteGigResponse>;
+}
+export class HttpPlatformClient implements PlatformClient {
+  private http: AxiosInstance;
+  constructor(baseUrl: string, apiKey: string) {
+    this.http = axios.create({
+      baseURL: baseUrl,
+      headers: {
+        Authorization: `Bearer ${apiKey}`,
+        "Content-Type": "application/json",
+      },
+      timeout: 10_000,
+    });
+  }
+  async createGig(request: CreateGigRequest): Promise<CreateGigResponse> {
+    try {
+      const { data } = await this.http.post<CreateGigResponse>(
+        "/gigs",
+        request,
+      );
+      logger.info("Gig created on platform", { gigId: data.gigId });
+      return data;
+    } catch (error) {
+      throw this.wrapError("Failed to create gig", error);
+    }
+  }
+  async getGigStatus(gigId: string): Promise<GigStatusResponse> {
+    try {
+      const { data } = await this.http.get<GigStatusResponse>(
+        `/gigs/${gigId}/status`,
+      );
+      return data;
+    } catch (error) {
+      throw this.wrapError(`Failed to get gig status: ${gigId}`, error);
+    }
+  }
+  async markReady(gigId: string, sshCommand: string): Promise<void> {
+    try {
+      await this.http.post(`/gigs/${gigId}/ready`, { sshCommand });
+      logger.info("Gig marked as ready", { gigId });
+    } catch (error) {
+      throw this.wrapError(`Failed to mark gig ready: ${gigId}`, error);
+    }
+  }
+  async completeGig(
+    request: CompleteGigRequest,
+  ): Promise<CompleteGigResponse> {
+    try {
+      const { data } = await this.http.post<CompleteGigResponse>(
+        `/gigs/${request.gigId}/complete`,
+        request,
+      );
+      logger.info("Gig completed on platform", { gigId: request.gigId });
+      return data;
+    } catch (error) {
+      throw this.wrapError(
+        `Failed to complete gig: ${request.gigId}`,
+        error,
+      );
+    }
+  }
+  private wrapError(message: string, error: unknown): PlatformApiError {
+    if (axios.isAxiosError(error)) {
+      return new PlatformApiError(
+        `${message}: ${error.message}`,
+        error.response?.status,
+      );
+    }
+    return new PlatformApiError(message);
+  }
+}

package/src/platform-client/index.ts ADDED Viewed

@@ -0,0 +1,4 @@
+export { type PlatformClient, HttpPlatformClient } from "./client.js";
+export { MockPlatformClient } from "./mock-client.js";
+export { pollForAssignment } from "./polling.js";
+export type * from "./types.js";

package/src/platform-client/mock-client.ts ADDED Viewed

@@ -0,0 +1,92 @@
+import { logger } from "../utils/logger.js";
+import type { PlatformClient } from "./client.js";
+import type {
+  CreateGigRequest,
+  CreateGigResponse,
+  GigStatusResponse,
+  CompleteGigRequest,
+  CompleteGigResponse,
+} from "./types.js";
+interface MockGig {
+  id: string;
+  status: "OPEN" | "ASSIGNED" | "IN_PROGRESS" | "COMPLETED";
+  assignedAt?: number;
+}
+/**
+ * In-memory mock platform client for Phase 1 standalone testing.
+ * A "mock contractor" auto-accepts gigs after a configurable delay.
+ */
+export class MockPlatformClient implements PlatformClient {
+  private gigs = new Map<string, MockGig>();
+  private nextId = 1;
+  constructor(
+    /** Delay in ms before a mock contractor auto-accepts a gig. */
+    private readonly autoAcceptDelayMs = 5_000,
+    /** Mock contractor info. */
+    private readonly mockContractor = {
+      name: "mock-contractor",
+      pubkey:
+        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIExampleMockKeyForTesting mock@test",
+      rate: 50,
+    },
+  ) {}
+  async createGig(request: CreateGigRequest): Promise<CreateGigResponse> {
+    const id = `mock-gig-${this.nextId++}`;
+    const gig: MockGig = { id, status: "OPEN" };
+    this.gigs.set(id, gig);
+    // Auto-accept after delay
+    setTimeout(() => {
+      const g = this.gigs.get(id);
+      if (g && g.status === "OPEN") {
+        g.status = "ASSIGNED";
+        g.assignedAt = Date.now();
+        logger.info("[MOCK] Contractor auto-accepted gig", { gigId: id });
+      }
+    }, this.autoAcceptDelayMs);
+    logger.info("[MOCK] Gig created", {
+      gigId: id,
+      reason: request.reason,
+    });
+    return { gigId: id, status: "OPEN" };
+  }
+  async getGigStatus(gigId: string): Promise<GigStatusResponse> {
+    const gig = this.gigs.get(gigId);
+    if (!gig) {
+      return { gigId, status: "CANCELLED" };
+    }
+    return {
+      gigId,
+      status: gig.status,
+      contractor:
+        gig.status === "ASSIGNED" || gig.status === "IN_PROGRESS"
+          ? this.mockContractor
+          : undefined,
+    };
+  }
+  async markReady(gigId: string, sshCommand: string): Promise<void> {
+    const gig = this.gigs.get(gigId);
+    if (gig) {
+      gig.status = "IN_PROGRESS";
+      logger.info("[MOCK] Gig marked ready", { gigId, sshCommand });
+    }
+  }
+  async completeGig(
+    request: CompleteGigRequest,
+  ): Promise<CompleteGigResponse> {
+    const gig = this.gigs.get(request.gigId);
+    if (gig) {
+      gig.status = "COMPLETED";
+    }
+    logger.info("[MOCK] Gig completed", { gigId: request.gigId });
+    return { gigId: request.gigId, status: "COMPLETED" };
+  }
+}

package/src/platform-client/polling.ts ADDED Viewed

@@ -0,0 +1,53 @@
+import type { PlatformClient } from "./client.js";
+import type { GigStatusResponse } from "./types.js";
+import { PlatformApiError } from "../utils/errors.js";
+import { logger } from "../utils/logger.js";
+import { getEnv } from "../config/env.js";
+/**
+ * Poll GET /gigs/{id}/status until a contractor is assigned.
+ * Returns the status response with contractor info.
+ * Throws PlatformApiError if polling times out.
+ */
+export async function pollForAssignment(
+  client: PlatformClient,
+  gigId: string,
+): Promise<GigStatusResponse> {
+  const env = getEnv();
+  const intervalMs = env.POLL_INTERVAL_MS;
+  const timeoutMs = env.POLL_TIMEOUT_MS;
+  const deadline = Date.now() + timeoutMs;
+  while (Date.now() < deadline) {
+    const status = await client.getGigStatus(gigId);
+    // Both the real API (Prisma enums) and the mock client return
+    // uppercase values per `human-layer/shared/src/gig.types.ts`.
+    if (
+      (status.status === "ASSIGNED" || status.status === "IN_PROGRESS") &&
+      status.contractor
+    ) {
+      logger.info("Contractor assigned", {
+        gigId,
+        contractorName: status.contractor.name,
+      });
+      return status;
+    }
+    if (status.status === "CANCELLED") {
+      throw new PlatformApiError(`Gig was cancelled: ${gigId}`);
+    }
+    logger.debug("Polling for contractor assignment...", { gigId });
+    await sleep(intervalMs);
+  }
+  throw new PlatformApiError(
+    `Timed out waiting for contractor assignment after ${timeoutMs}ms`,
+  );
+}
+function sleep(ms: number): Promise<void> {
+  return new Promise((resolve) => setTimeout(resolve, ms));
+}

package/src/platform-client/types.ts ADDED Viewed

@@ -0,0 +1,9 @@
+// Re-export shared platform API types
+export type {
+  CreateGigRequest,
+  CreateGigResponse,
+  GigStatusResponse,
+  MarkReadyRequest,
+  CompleteGigRequest,
+  CompleteGigResponse,
+} from "../../../shared/src/platform-api.types.js";

package/src/provisioning/authorized-keys.ts ADDED Viewed

@@ -0,0 +1,52 @@
+import { writePrivilegedFile, chownPrivileged } from "./privileged.js";
+import { ProvisioningError } from "../utils/errors.js";
+import { logger } from "../utils/logger.js";
+/**
+ * Write a public key to a user's authorized_keys file.
+ *
+ * Goes through the privileged helpers because the per-contractor home
+ * directory is owned by root immediately after `useradd`. After
+ * writing the file (as root) we chown it to the contractor so sshd
+ * accepts it.
+ */
+export async function writeAuthorizedKey(
+  username: string,
+  pubkey: string,
+): Promise<void> {
+  const keyPath = `/home/${username}/.ssh/authorized_keys`;
+  try {
+    // Validate pubkey format (basic check)
+    if (!pubkey.startsWith("ssh-") && !pubkey.startsWith("ecdsa-")) {
+      throw new Error(`Invalid public key format: ${pubkey.slice(0, 20)}...`);
+    }
+    await writePrivilegedFile(keyPath, pubkey.trim() + "\n", 0o600);
+    await chownPrivileged(`${username}:${username}`, keyPath);
+    logger.info("Authorized key written", { user: username });
+  } catch (error) {
+    throw new ProvisioningError(
+      `Failed to write authorized key for ${username}: ${error}`,
+    );
+  }
+}
+/**
+ * Remove the authorized_keys file for a user.
+ */
+export async function removeAuthorizedKey(username: string): Promise<void> {
+  const keyPath = `/home/${username}/.ssh/authorized_keys`;
+  try {
+    await writePrivilegedFile(keyPath, "", 0o600);
+    logger.info("Authorized key removed", { user: username });
+  } catch (error) {
+    // File might not exist if provisioning was partial
+    logger.warn("Failed to remove authorized key (may not exist)", {
+      user: username,
+      error: String(error),
+    });
+  }
+}

package/src/provisioning/cleanup.ts ADDED Viewed

@@ -0,0 +1,106 @@
+import { killSession } from "./tmux-session.js";
+import { removeAuthorizedKey } from "./authorized-keys.js";
+import { removeForceCommand } from "./ssh-config.js";
+import { killUserProcesses, lockUser } from "./linux-user.js";
+import { CleanupError } from "../utils/errors.js";
+import { logger } from "../utils/logger.js";
+import { getEnv } from "../config/env.js";
+export interface CleanupTarget {
+  username: string;
+  tmuxSession: string;
+}
+/**
+ * Aggressive cleanup sequence for dismissing a contractor.
+ * Each step is independent and wrapped in try/catch — partial failures
+ * don't prevent the remaining steps from executing.
+ *
+ * Order matters:
+ * 1. Kill tmux session (with warning if connected)
+ * 2. Kill all user processes
+ * 3. Remove SSH pubkey
+ * 4. Remove ForceCommand from sshd_config
+ * 5. Reload sshd (happens inside removeForceCommand)
+ * 6. Lock the account
+ */
+export async function cleanupContractor(
+  target: CleanupTarget,
+): Promise<void> {
+  const { username, tmuxSession } = target;
+  const failures: string[] = [];
+  const env = getEnv();
+  logger.info("Starting contractor cleanup", {
+    user: username,
+    session: tmuxSession,
+  });
+  // 1. Kill tmux session
+  try {
+    await killSession(tmuxSession, env.CLEANUP_WARNING_SECONDS);
+  } catch (error) {
+    failures.push(`tmux kill: ${error}`);
+    logger.warn("Cleanup: failed to kill tmux session", {
+      user: username,
+      error: String(error),
+    });
+  }
+  // 2. Kill all user processes
+  try {
+    await killUserProcesses(username);
+  } catch (error) {
+    failures.push(`kill processes: ${error}`);
+    logger.warn("Cleanup: failed to kill user processes", {
+      user: username,
+      error: String(error),
+    });
+  }
+  // 3. Remove SSH pubkey
+  try {
+    await removeAuthorizedKey(username);
+  } catch (error) {
+    failures.push(`remove key: ${error}`);
+    logger.warn("Cleanup: failed to remove authorized key", {
+      user: username,
+      error: String(error),
+    });
+  }
+  // 4. Remove ForceCommand (also reloads sshd)
+  try {
+    await removeForceCommand(username);
+  } catch (error) {
+    failures.push(`remove ForceCommand: ${error}`);
+    logger.warn("Cleanup: failed to remove ForceCommand", {
+      user: username,
+      error: String(error),
+    });
+  }
+  // 5. Lock account
+  try {
+    await lockUser(username);
+  } catch (error) {
+    failures.push(`lock user: ${error}`);
+    logger.warn("Cleanup: failed to lock user", {
+      user: username,
+      error: String(error),
+    });
+  }
+  if (failures.length > 0) {
+    logger.warn("Cleanup completed with partial failures", {
+      user: username,
+      failureCount: failures.length,
+    });
+    throw new CleanupError(
+      `Cleanup of ${username} had ${failures.length} failures`,
+      failures,
+    );
+  }
+  logger.info("Cleanup completed successfully", { user: username });
+}

package/src/provisioning/index.ts ADDED Viewed

@@ -0,0 +1,13 @@
+export { createUser, lockUser, killUserProcesses } from "./linux-user.js";
+export { writeAuthorizedKey, removeAuthorizedKey } from "./authorized-keys.js";
+export { addForceCommand, removeForceCommand } from "./ssh-config.js";
+export {
+  sessionName,
+  createSession,
+  hasClientsAttached,
+  sessionExists,
+  displayMessage,
+  killSession,
+  getLastActivity,
+} from "./tmux-session.js";
+export { cleanupContractor, type CleanupTarget } from "./cleanup.js";

package/src/provisioning/linux-user.ts ADDED Viewed

@@ -0,0 +1,66 @@
+import { runPrivileged } from "./privileged.js";
+import { ProvisioningError } from "../utils/errors.js";
+import { logger } from "../utils/logger.js";
+/**
+ * Create a new Linux user for a contractor.
+ * Creates home directory and .ssh directory.
+ */
+export async function createUser(username: string): Promise<void> {
+  try {
+    const u = shellEscape(username);
+    await runPrivileged(`useradd -m -s /bin/bash ${u}`);
+    await runPrivileged(
+      `mkdir -p /home/${u}/.ssh && ` +
+        `chmod 700 /home/${u}/.ssh && ` +
+        `chown ${u}:${u} /home/${u}/.ssh`,
+    );
+    logger.info("Linux user created", { user: username });
+  } catch (error) {
+    throw new ProvisioningError(
+      `Failed to create user ${username}: ${error}`,
+    );
+  }
+}
+/**
+ * Lock a user account so they can no longer log in.
+ */
+export async function lockUser(username: string): Promise<void> {
+  try {
+    await runPrivileged(`usermod -L ${shellEscape(username)}`);
+    logger.info("Linux user locked", { user: username });
+  } catch (error) {
+    throw new ProvisioningError(
+      `Failed to lock user ${username}: ${error}`,
+    );
+  }
+}
+/**
+ * Kill all processes owned by a user.
+ * Does not throw if user has no processes.
+ */
+export async function killUserProcesses(username: string): Promise<void> {
+  try {
+    await runPrivileged(`pkill -u ${shellEscape(username)}`);
+    logger.info("Killed processes for user", { user: username });
+  } catch {
+    // pkill returns non-zero if no processes found — that's fine
+    logger.debug("No processes to kill for user", { user: username });
+  }
+}
+/**
+ * Basic shell escaping to prevent injection.
+ * Only allows alphanumeric, hyphen, underscore.
+ */
+function shellEscape(value: string): string {
+  if (!/^[a-zA-Z0-9_-]+$/.test(value)) {
+    throw new ProvisioningError(
+      `Invalid value for shell command: ${value}`,
+    );
+  }
+  return value;
+}