@blockrun/franklin 3.21.2 → 3.21.4

package/dist/agent/permissions.js

@@ -33,12 +33,44 @@ function isCommonDevCommand(cmd) {
     return COMMON_DEV_PATTERNS.some(p => p.test(trimmed));
 }
 // ─── Default Rules ─────────────────────────────────────────────────────────
-const READ_ONLY_TOOLS = new Set(['Read', 'Glob', 'Grep', 'WebSearch', 'Task', 'AskUser', 'ActivateTool', 'ImageGen', 'TradingSignal', 'TradingMarket', 'SearchX', 'BrowserX']);
+const READ_ONLY_TOOLS = new Set([
+    'Read', 'Glob', 'Grep', 'WebSearch', 'Task', 'AskUser', 'ActivateTool',
+    'ImageGen', 'TradingSignal', 'TradingMarket', 'SearchX', 'BrowserX',
+    // Phone & Voice — side-effect-free queries. None of these dial anyone,
+    // hold a phone number, or mutate gateway state. ListPhoneNumbers is a
+    // cached read ($0.001), VoiceStatus is a free GET poll on an existing
+    // call, PhoneLookup / PhoneFraudCheck are pure metadata lookups.
+    // Pricing here is orthogonal to side-effect category — WebSearch /
+    // ImageGen also cost money but live here because they don't change the
+    // world outside the gateway.
+    'VoiceStatus',
+    'ListPhoneNumbers',
+    'PhoneLookup',
+    'PhoneFraudCheck',
+]);
 const DESTRUCTIVE_TOOLS = new Set(['Write', 'Edit', 'Bash']);
 const DEFAULT_RULES = {
-    allow: ['Read', 'Glob', 'Grep', 'WebSearch', 'WebFetch', 'Task', 'AskUser', 'ActivateTool', 'ImageGen', 'TradingSignal', 'TradingMarket', 'SearchX', 'BrowserX'],
+    allow: [
+        'Read', 'Glob', 'Grep', 'WebSearch', 'WebFetch', 'Task', 'AskUser',
+        'ActivateTool', 'ImageGen', 'TradingSignal', 'TradingMarket', 'SearchX',
+        'BrowserX',
+        // See READ_ONLY_TOOLS above for the side-effect-free rationale.
+        'VoiceStatus', 'ListPhoneNumbers', 'PhoneLookup', 'PhoneFraudCheck',
+    ],
     deny: [],
-    ask: ['Write', 'Edit', 'Bash', 'Agent', 'PostToX'],
+    ask: [
+        'Write', 'Edit', 'Bash', 'Agent', 'PostToX',
+        // Phone & Voice — real-world side effects. VoiceCall dials a real human
+        // ($0.54). BuyPhoneNumber / RenewPhoneNumber hold a real Twilio number
+        // for 30 days ($5). ReleasePhoneNumber permanently returns the number
+        // to the pool (free but irreversible — user could lose a number they
+        // care about). All four must prompt every time, matching the
+        // Write/Edit/Bash policy: any agent-initiated real-world action goes
+        // through explicit user consent. Without this, the agent silently
+        // dials people / spends $5 on phone numbers / releases numbers the
+        // user is using — no recovery path.
+        'VoiceCall', 'BuyPhoneNumber', 'RenewPhoneNumber', 'ReleasePhoneNumber',
+    ],
 };
 // ─── Permission Manager ────────────────────────────────────────────────────
 export class PermissionManager {

package/dist/panel/html.js

@@ -1990,6 +1990,22 @@ function formatDuration(sec) {
   return m > 0 ? m + 'm ' + s + 's' : s + 's';
 }
 
+function escapeHtml(value) {
+  return String(value == null ? '' : value).replace(/[&<>"']/g, ch => ({
+    '&': '&amp;', '<': '&lt;', '>': '&gt;', '"': '&quot;', "'": '&#39;'
+  }[ch]));
+}
+
+function safeHttpUrl(value) {
+  if (typeof value !== 'string') return '';
+  try {
+    const u = new URL(value);
+    return (u.protocol === 'http:' || u.protocol === 'https:') ? u.href : '';
+  } catch (e) {
+    return '';
+  }
+}
+
 function renderCallsList(calls) {
   const list = document.getElementById('calls-list');
   if (!list) return;
@@ -2007,13 +2023,14 @@ function renderCallsList(calls) {
     const fromHuman = formatPhoneNumber(c.from);
     const when = new Date(c.timestamp).toLocaleString();
     const cost = c.paid_usd ? '$' + c.paid_usd.toFixed(2) : '—';
-    const safeTask = (c.task || '').replace(/[<>&]/g, ch => ({'<':'&lt;','>':'&gt;','&':'&amp;'}[ch]));
+    const safeTask = escapeHtml(c.task || '');
+    const recordingUrl = safeHttpUrl(c.recording_url);
     const transcriptHtml = c.transcript
       ? '<details style="margin-top:8px"><summary style="cursor:pointer;color:var(--text-dim);font-size:12px">Transcript</summary><pre style="white-space:pre-wrap;background:oklch(0 0 0 / 25%);padding:10px;border-radius:8px;font-size:12px;margin-top:6px;max-height:400px;overflow:auto">' +
-        c.transcript.replace(/[<>&]/g, ch => ({'<':'&lt;','>':'&gt;','&':'&amp;'}[ch])) + '</pre></details>'
+        escapeHtml(c.transcript) + '</pre></details>'
       : '';
-    const recordingHtml = c.recording_url
-      ? '<a href="' + c.recording_url + '" target="_blank" rel="noopener" style="font-size:11px;color:var(--brand);text-decoration:none;margin-left:8px">▶ recording</a>'
+    const recordingHtml = recordingUrl
+      ? '<a href="' + escapeHtml(recordingUrl) + '" target="_blank" rel="noopener" style="font-size:11px;color:var(--brand);text-decoration:none;margin-left:8px">▶ recording</a>'
       : '';
     return ''
       + '<div class="phone-row" style="grid-template-columns:auto 1fr auto;align-items:start">'
@@ -2023,12 +2040,12 @@ function renderCallsList(calls) {
       + '    </svg>'
       + '  </div>'
       + '  <div class="phone-main">'
-      + '    <div class="phone-num">' + human + ' <span style="font-size:11px;color:var(--text-dim);font-weight:400">from ' + fromHuman + '</span></div>'
+      + '    <div class="phone-num">' + escapeHtml(human) + ' <span style="font-size:11px;color:var(--text-dim);font-weight:400">from ' + escapeHtml(fromHuman) + '</span></div>'
       + '    <div class="phone-meta">'
-      + '      <span class="chip ' + st.cls + '">' + st.label + '</span>'
+      + '      <span class="chip ' + st.cls + '">' + escapeHtml(st.label) + '</span>'
       + '      <span class="chip">' + formatDuration(c.duration_sec) + '</span>'
       + '      <span class="chip">' + cost + '</span>'
-      + '      <span style="font-size:11px;color:var(--text-dim)">' + when + '</span>'
+      + '      <span style="font-size:11px;color:var(--text-dim)">' + escapeHtml(when) + '</span>'
       + recordingHtml
       + '    </div>'
       + '    <div style="font-size:12px;color:var(--text-muted);margin-top:4px;line-height:1.5">' + (safeTask.slice(0, 200) + (safeTask.length > 200 ? '…' : '')) + '</div>'
@@ -2074,6 +2091,7 @@ document.querySelector('[data-tab="markets"]')?.addEventListener('click', loadMa
   const initialHash = (location.hash || '').replace(/^#/, '');
   if (initialHash && initialHash !== 'overview' && document.getElementById('tab-' + initialHash)) {
     activateTab(initialHash);
+    if (initialHash === 'calls') loadCalls();
   }
 }
 

package/dist/phone/call-log.js

@@ -100,24 +100,30 @@ export class CallLog {
     summary(limit = 50) {
         const all = this.all();
         const latest = new Map();
+        const paidByCall = new Map();
         for (const e of all) {
+            paidByCall.set(e.call_id, Math.max(paidByCall.get(e.call_id) ?? 0, e.paid_usd));
             const cur = latest.get(e.call_id);
             // Keep the row with the FRESHEST timestamp per call_id (status updates).
             if (!cur || e.timestamp >= cur.timestamp)
                 latest.set(e.call_id, e);
         }
         // Sort newest-first by the latest-row timestamp.
-        const list = Array.from(latest.values()).sort((a, b) => b.timestamp - a.timestamp);
+        const list = Array.from(latest.values())
+            .map(e => ({ ...e, paid_usd: paidByCall.get(e.call_id) ?? e.paid_usd }))
+            .sort((a, b) => b.timestamp - a.timestamp);
         return list.slice(0, limit);
     }
     byCallId(callId) {
         let best = null;
+        let paidUsd = 0;
         for (const e of this.all()) {
             if (e.call_id !== callId)
                 continue;
+            paidUsd = Math.max(paidUsd, e.paid_usd);
             if (!best || e.timestamp >= best.timestamp)
                 best = e;
         }
-        return best;
+        return best ? { ...best, paid_usd: paidUsd } : null;
     }
 }

package/dist/skills-bundled/phone-call/SKILL.md

@@ -73,17 +73,15 @@ VoiceCall({
 })
 ```
 
-Tool returns a `call_id` immediately. Surface it to the user along with "polling now."
+Tool returns a `call_id` immediately. Surface it to the user along with "waiting for call to complete."
 
-### 6 · Auto-poll status
+### 6 · Wait for completion
 
-Loop, every ~30 seconds, calling `VoiceStatus({ call_id })`:
+Call `VoiceStatus({ call_id })` **once**. The tool blocks internally — it polls the gateway every 5 seconds for up to 35 minutes until the call reaches a terminal state (`completed` / `failed` / `cancelled` / `busy` / `no-answer` / `voicemail`), then returns the final transcript.
 
-- If status is `queued` or `in_progress` → continue.
-- If status is one of `completed` / `failed` / `cancelled` / `busy` / `no-answer` / `voicemail` → stop polling.
-- Cap the loop at ~10 minutes total (20 polls). If you hit the cap, tell the user the call is still running and they can rerun `VoiceStatus call_id="…"` later.
+**Do not loop VoiceStatus.** Franklin's signature-loop guard kills the turn after 5 identical inputs. One VoiceStatus call is sufficient — the tool drives the poll cadence itself.
 
-VoiceStatus is **free** — poll as often as needed.
+VoiceStatus is **free** — no USDC charged on polling.
 
 ### 7 · Surface the result
 

package/dist/tools/voice.js

@@ -306,13 +306,73 @@ export const voiceCallCapability = {
         }
     },
 };
+/** Statuses that mean the call has reached a final outcome (one of completed,
+ *  failed, no-answer, busy, voicemail). Anything else (queued / ringing /
+ *  in-progress / etc.) means the call is still running and we should keep
+ *  polling. */
+const VOICE_TERMINAL_STATUSES = new Set([
+    'completed', 'failed', 'no-answer', 'busy', 'voicemail',
+    'cancelled', 'no_answer', // Bland upstream uses both spellings
+]);
+/** Poll cadence + ceiling. max_duration is capped at 30 min upstream, so
+ *  35 min is enough headroom even for the longest call to either complete
+ *  or get force-cut by Bland. 5 s interval matches videogen.ts pattern. */
+const VOICE_POLL_INTERVAL_MS = 5_000;
+const VOICE_POLL_MAX_WAIT_MS = 35 * 60 * 1000;
+async function voiceSleep(ms, signal) {
+    return new Promise((resolve, reject) => {
+        if (signal.aborted)
+            return reject(new Error('aborted'));
+        const t = setTimeout(() => {
+            signal.removeEventListener('abort', onAbort);
+            resolve();
+        }, ms);
+        const onAbort = () => {
+            clearTimeout(t);
+            reject(new Error('aborted'));
+        };
+        signal.addEventListener('abort', onAbort, { once: true });
+    });
+}
+/** Write whatever the gateway gave us back into the local CallLog so the
+ *  panel Calls tab + future agent reads stay current. Append-only; latest
+ *  row wins on read. Best-effort — journal write failures don't bubble. */
+function patchCallJournal(callId, res) {
+    try {
+        const prior = callLog().byCallId(callId);
+        if (!prior)
+            return;
+        const recording = typeof res.recording_url === 'string' ? res.recording_url :
+            typeof res.recording === 'string' ? res.recording : undefined;
+        const duration = typeof res.call_length === 'number' ? Math.round(res.call_length) :
+            typeof res.duration === 'number' ? Math.round(res.duration) :
+                typeof res.duration_sec === 'number' ? Math.round(res.duration_sec) : undefined;
+        const transcript = typeof res.concatenated_transcript === 'string' ? res.concatenated_transcript :
+            typeof res.transcript === 'string' ? res.transcript : undefined;
+        callLog().append({
+            ...prior,
+            timestamp: Date.now(),
+            paid_usd: prior.paid_usd, // status polls are free; preserve per-call total
+            status: normalizeStatus(res.status ?? res.queue_status ?? res.disposition),
+            duration_sec: duration ?? prior.duration_sec,
+            transcript: transcript ?? prior.transcript,
+            recording_url: recording ?? prior.recording_url,
+        });
+    }
+    catch { /* best-effort */ }
+}
 export const voiceStatusCapability = {
     spec: {
         name: 'VoiceStatus',
-        description: 'Poll a previously-initiated voice call for its current status, transcript, recording URL, ' +
-            'and final disposition (completed / failed / no-answer / busy / voicemail). Free — no USDC ' +
-            'charged. Use the call_id returned by VoiceCall. Call this every 30–60 s until status is ' +
-            'a terminal state.',
+        description: 'Wait for a previously-initiated voice call to complete, then return ' +
+            'the final status, transcript, recording URL, and disposition ' +
+            '(completed / failed / no-answer / busy / voicemail). Free — no USDC ' +
+            'charged. Use the call_id returned by VoiceCall.\n\n' +
+            'CALL THIS ONCE. The tool blocks internally, polling the gateway every ' +
+            '5 s for up to 35 min until the call reaches a terminal state. Do NOT ' +
+            'invoke VoiceStatus repeatedly in a loop — Franklin\'s signature-loop ' +
+            'guard will kill the turn after 5 identical inputs. A single call is ' +
+            'sufficient.',
         input_schema: {
             type: 'object',
             properties: {
@@ -328,40 +388,49 @@ export const voiceStatusCapability = {
         if (typeof input.call_id !== 'string') {
             return { output: 'call_id required', isError: true };
         }
-        try {
-            const res = await getNoPayment(`/v1/voice/call/${encodeURIComponent(input.call_id)}`, ctx, { tool: 'VoiceStatus', priceUsd: 0 });
-            // Patch the local journal with whatever fields the gateway returned —
-            // transcript / recording / duration / disposition. Append-only schema
-            // means we just write a new row; CallLog.summary() picks the latest.
+        const callId = input.call_id;
+        const deadline = Date.now() + VOICE_POLL_MAX_WAIT_MS;
+        // Internal poll-until-terminal loop — mirrors videogen.ts pollUntilReady
+        // and imagegen.ts pollImageJob. The agent emits one VoiceStatus tool_use
+        // and gets back the final transcript when the call ends. Without this
+        // loop the agent has to drive the poll cadence itself and will trip the
+        // signature-loop guard at 5 identical inputs.
+        let lastRes = null;
+        while (Date.now() < deadline) {
+            if (ctx.abortSignal.aborted) {
+                return { output: 'VoiceStatus aborted by user', isError: true };
+            }
             try {
-                const prior = callLog().byCallId(input.call_id);
-                if (prior) {
-                    const recording = typeof res.recording_url === 'string' ? res.recording_url :
-                        typeof res.recording === 'string' ? res.recording : undefined;
-                    const duration = typeof res.call_length === 'number' ? Math.round(res.call_length) :
-                        typeof res.duration === 'number' ? Math.round(res.duration) :
-                            typeof res.duration_sec === 'number' ? Math.round(res.duration_sec) : undefined;
-                    const transcript = typeof res.concatenated_transcript === 'string' ? res.concatenated_transcript :
-                        typeof res.transcript === 'string' ? res.transcript : undefined;
-                    callLog().append({
-                        ...prior,
-                        timestamp: Date.now(),
-                        paid_usd: 0, // status polls are free; only the initial POST charges
-                        status: normalizeStatus(res.status ?? res.queue_status ?? res.disposition),
-                        duration_sec: duration ?? prior.duration_sec,
-                        transcript: transcript ?? prior.transcript,
-                        recording_url: recording ?? prior.recording_url,
-                    });
-                }
+                lastRes = await getNoPayment(`/v1/voice/call/${encodeURIComponent(callId)}`, ctx, { tool: 'VoiceStatus', priceUsd: 0 });
+            }
+            catch (err) {
+                return { output: `VoiceStatus failed: ${err.message}`, isError: true };
+            }
+            patchCallJournal(callId, lastRes);
+            const status = String(lastRes.status ?? lastRes.queue_status ?? '').toLowerCase();
+            if (VOICE_TERMINAL_STATUSES.has(status)) {
+                return {
+                    output: `## Voice call status (terminal: ${status})\n\n` +
+                        '```json\n' + JSON.stringify(lastRes, null, 2) + '\n```',
+                };
+            }
+            try {
+                await voiceSleep(VOICE_POLL_INTERVAL_MS, ctx.abortSignal);
+            }
+            catch {
+                return { output: 'VoiceStatus aborted by user', isError: true };
             }
-            catch { /* best-effort */ }
-            return {
-                output: `## Voice call status\n\n` +
-                    '```json\n' + JSON.stringify(res, null, 2) + '\n```',
-            };
-        }
-        catch (err) {
-            return { output: `VoiceStatus failed: ${err.message}`, isError: true };
         }
+        // Hit the 35-min ceiling without seeing a terminal state — return the
+        // latest snapshot we have so the agent + journal still have partial
+        // context, but flag it as still in progress.
+        return {
+            output: `## Voice call status (still in progress after ${Math.round(VOICE_POLL_MAX_WAIT_MS / 60_000)} min)\n\n` +
+                `Bland.ai upstream caps any single call at 30 min, so a call this long ` +
+                `is unusual — likely an upstream stall. Ask the user before reinvoking ` +
+                `VoiceStatus (would burn another full poll cycle).\n\n` +
+                '```json\n' + JSON.stringify(lastRes ?? {}, null, 2) + '\n```',
+            isError: true,
+        };
     },
 };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@blockrun/franklin",
-  "version": "3.21.2",
+  "version": "3.21.4",
   "description": "Franklin Agent — The AI agent with a wallet. Spends USDC autonomously to get real work done. Pay per action, no subscriptions.",
   "type": "module",
   "exports": {