@botiverse/raft-computer 0.0.60 → 0.0.61

package/dist/index.js

@@ -29592,6 +29592,7 @@ var {
 
 // src/login.ts
 init_esm_shims();
+import { unlink } from "fs/promises";
 
 // src/output.ts
 init_esm_shims();
@@ -29619,6 +29620,124 @@ function fail(code, message, exitCode = 1) {
   throw new CliExit(exitCode, code);
 }
 
+// src/paths.ts
+init_esm_shims();
+import { createHash } from "crypto";
+import os from "os";
+import path2 from "path";
+var CURRENT_SCHEMA_VERSION = 1;
+function resolveSlockHome(env = process.env, homeDir = os.homedir()) {
+  const configured = env.SLOCK_HOME?.trim();
+  const raw = configured && configured.length > 0 ? configured : path2.join(homeDir, ".slock");
+  return path2.resolve(expandHome(raw, homeDir));
+}
+function expandHome(input, homeDir) {
+  if (input === "~") return homeDir;
+  if (input.startsWith("~/")) return path2.join(homeDir, input.slice(2));
+  return input;
+}
+function computerDir(slockHome) {
+  return path2.join(slockHome, "computer");
+}
+function userSessionPath(slockHome) {
+  return path2.join(computerDir(slockHome), "user-session.json");
+}
+var SERVER_ID_RE = /^[0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12}$/;
+function isValidServerId(serverId) {
+  return SERVER_ID_RE.test(serverId);
+}
+function assertValidServerId(serverId) {
+  if (!isValidServerId(serverId)) {
+    throw new Error(`invalid server id: ${JSON.stringify(serverId)} (expected a UUID)`);
+  }
+  return serverId;
+}
+function serversDir(slockHome) {
+  return path2.join(computerDir(slockHome), "servers");
+}
+function serverDir(slockHome, serverId) {
+  return path2.join(serversDir(slockHome), assertValidServerId(serverId));
+}
+function serverAttachmentPath(slockHome, serverId) {
+  return path2.join(serverDir(slockHome, serverId), "runner.state.json");
+}
+function legacyServerAttachmentPath(slockHome, serverId) {
+  return path2.join(serverDir(slockHome, serverId), "attachment.json");
+}
+function serverRunnerPidPath(slockHome, serverId) {
+  return path2.join(serverDir(slockHome, serverId), "runner.pid");
+}
+function serverRunnerLogPath(slockHome, serverId) {
+  return path2.join(serverDir(slockHome, serverId), "runner.log");
+}
+function serverManagedFlagPath(slockHome, serverId) {
+  return path2.join(serverDir(slockHome, serverId), "managed.flag");
+}
+function serverHealthPath(slockHome, serverId) {
+  return path2.join(serverDir(slockHome, serverId), "health.json");
+}
+function serviceRunDir(slockHome) {
+  return path2.join(computerDir(slockHome), "run");
+}
+function serviceStatePath(slockHome) {
+  return path2.join(serviceRunDir(slockHome), "service.state.json");
+}
+function servicePidPath(slockHome) {
+  return path2.join(serviceRunDir(slockHome), "service.pid");
+}
+function servicePidReadFallback(slockHome) {
+  return [servicePidPath(slockHome)];
+}
+function serviceLogPath(slockHome) {
+  return path2.join(serviceRunDir(slockHome), "service.log");
+}
+function serviceSocketPath(slockHome) {
+  return path2.join(computerDir(slockHome), "run", "service.sock");
+}
+function serviceWindowsPipeName(slockHome) {
+  const hash = createHash("sha256").update(computerDir(slockHome)).digest("hex").slice(0, 16);
+  return `\\\\.\\pipe\\slock-computer-${hash}`;
+}
+function serviceVersionPath(slockHome) {
+  return path2.join(computerDir(slockHome), "service-version.json");
+}
+var HOSTNAME_SUFFIXES = [
+  ".fritz.box",
+  ".localdomain",
+  ".local",
+  ".lan",
+  ".home"
+];
+function shortHostnameHash(hostname) {
+  return createHash("sha256").update(hostname).digest("hex").slice(0, 8);
+}
+function deriveDefaultComputerName(hostname = os.hostname()) {
+  const original = hostname.trim();
+  let name = original;
+  let lower = name.toLowerCase();
+  for (; ; ) {
+    const suffix = HOSTNAME_SUFFIXES.find((candidate) => lower.endsWith(candidate));
+    if (!suffix) break;
+    name = name.slice(0, -suffix.length);
+    lower = name.toLowerCase();
+  }
+  name = name.replace(/[\s'"]+/g, "-").replace(/-+$/g, "");
+  return name.length > 0 ? name : `slock-computer-${shortHostnameHash(original)}`;
+}
+function adoptionLogPath(slockHome) {
+  return path2.join(computerDir(slockHome), "adoption.log");
+}
+function channelPath(slockHome) {
+  return path2.join(computerDir(slockHome), "channel");
+}
+function upgradeLogPath(slockHome) {
+  return path2.join(computerDir(slockHome), "upgrade.log");
+}
+function formatUpgradeLogTimestamp(date = /* @__PURE__ */ new Date()) {
+  const iso = date.toISOString();
+  return iso.replace(/[-:]/g, "").replace(/\.\d{3}Z$/, "Z");
+}
+
 // src/services/errors.ts
 init_esm_shims();
 var ComputerServiceError = class extends Error {
@@ -29931,123 +30050,6 @@ var RunnersClient = class {
   }
 };
 
-// src/paths.ts
-init_esm_shims();
-import { createHash } from "crypto";
-import os from "os";
-import path2 from "path";
-function resolveSlockHome(env = process.env, homeDir = os.homedir()) {
-  const configured = env.SLOCK_HOME?.trim();
-  const raw = configured && configured.length > 0 ? configured : path2.join(homeDir, ".slock");
-  return path2.resolve(expandHome(raw, homeDir));
-}
-function expandHome(input, homeDir) {
-  if (input === "~") return homeDir;
-  if (input.startsWith("~/")) return path2.join(homeDir, input.slice(2));
-  return input;
-}
-function computerDir(slockHome) {
-  return path2.join(slockHome, "computer");
-}
-function userSessionPath(slockHome) {
-  return path2.join(computerDir(slockHome), "user-session.json");
-}
-var SERVER_ID_RE = /^[0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12}$/;
-function isValidServerId(serverId) {
-  return SERVER_ID_RE.test(serverId);
-}
-function assertValidServerId(serverId) {
-  if (!isValidServerId(serverId)) {
-    throw new Error(`invalid server id: ${JSON.stringify(serverId)} (expected a UUID)`);
-  }
-  return serverId;
-}
-function serversDir(slockHome) {
-  return path2.join(computerDir(slockHome), "servers");
-}
-function serverDir(slockHome, serverId) {
-  return path2.join(serversDir(slockHome), assertValidServerId(serverId));
-}
-function serverAttachmentPath(slockHome, serverId) {
-  return path2.join(serverDir(slockHome, serverId), "runner.state.json");
-}
-function legacyServerAttachmentPath(slockHome, serverId) {
-  return path2.join(serverDir(slockHome, serverId), "attachment.json");
-}
-function serverRunnerPidPath(slockHome, serverId) {
-  return path2.join(serverDir(slockHome, serverId), "server-runner.pid");
-}
-function serverRunnerLogPath(slockHome, serverId) {
-  return path2.join(serverDir(slockHome, serverId), "server-runner.log");
-}
-function serverManagedFlagPath(slockHome, serverId) {
-  return path2.join(serverDir(slockHome, serverId), "managed.flag");
-}
-function serverHealthPath(slockHome, serverId) {
-  return path2.join(serverDir(slockHome, serverId), "health.json");
-}
-function serviceRunDir(slockHome) {
-  return path2.join(computerDir(slockHome), "run");
-}
-function serviceStatePath(slockHome) {
-  return path2.join(serviceRunDir(slockHome), "service.state.json");
-}
-function servicePidPath(slockHome) {
-  return path2.join(serviceRunDir(slockHome), "service.pid");
-}
-function servicePidReadFallback(slockHome) {
-  return [servicePidPath(slockHome)];
-}
-function serviceLogPath(slockHome) {
-  return path2.join(serviceRunDir(slockHome), "service.log");
-}
-function serviceSocketPath(slockHome) {
-  return path2.join(computerDir(slockHome), "run", "service.sock");
-}
-function serviceWindowsPipeName(slockHome) {
-  const hash = createHash("sha256").update(computerDir(slockHome)).digest("hex").slice(0, 16);
-  return `\\\\.\\pipe\\slock-computer-${hash}`;
-}
-function serviceVersionPath(slockHome) {
-  return path2.join(computerDir(slockHome), "service-version.json");
-}
-var HOSTNAME_SUFFIXES = [
-  ".fritz.box",
-  ".localdomain",
-  ".local",
-  ".lan",
-  ".home"
-];
-function shortHostnameHash(hostname) {
-  return createHash("sha256").update(hostname).digest("hex").slice(0, 8);
-}
-function deriveDefaultComputerName(hostname = os.hostname()) {
-  const original = hostname.trim();
-  let name = original;
-  let lower = name.toLowerCase();
-  for (; ; ) {
-    const suffix = HOSTNAME_SUFFIXES.find((candidate) => lower.endsWith(candidate));
-    if (!suffix) break;
-    name = name.slice(0, -suffix.length);
-    lower = name.toLowerCase();
-  }
-  name = name.replace(/[\s'"]+/g, "-").replace(/-+$/g, "");
-  return name.length > 0 ? name : `slock-computer-${shortHostnameHash(original)}`;
-}
-function adoptionLogPath(slockHome) {
-  return path2.join(computerDir(slockHome), "adoption.log");
-}
-function channelPath(slockHome) {
-  return path2.join(computerDir(slockHome), "channel");
-}
-function upgradeLogPath(slockHome) {
-  return path2.join(computerDir(slockHome), "upgrade.log");
-}
-function formatUpgradeLogTimestamp(date = /* @__PURE__ */ new Date()) {
-  const iso = date.toISOString();
-  return iso.replace(/[-:]/g, "").replace(/\.\d{3}Z$/, "Z");
-}
-
 // src/serverUrl.ts
 init_esm_shims();
 var DEFAULT_SLOCK_SERVER_URL = "https://api.raft.build";
@@ -30148,6 +30150,8 @@ async function login(input, options = {}) {
       JSON.stringify(
         {
           kind: "user-session",
+          // On-disk schema version; readers tolerate a missing value.
+          schemaVersion: CURRENT_SCHEMA_VERSION,
           userId: r.userId,
           accessToken: r.accessToken,
           refreshToken: r.refreshToken,
@@ -30196,21 +30200,36 @@ async function runLogin(opts) {
     throw err;
   }
 }
+async function runLogout() {
+  const sessionPath = userSessionPath(resolveSlockHome());
+  try {
+    await unlink(sessionPath);
+    info(`Logged out. Cleared user session at ${sessionPath}.`);
+  } catch (err) {
+    if (err && typeof err === "object" && "code" in err && err.code === "ENOENT") {
+      info("Already logged out (no saved user session).");
+      return;
+    }
+    throw err;
+  }
+}
 
 // src/attach.ts
 init_esm_shims();
 
 // src/serverState.ts
 init_esm_shims();
-import { readFile, readdir, writeFile as writeFile2, mkdir as mkdir2, unlink, access, chmod } from "fs/promises";
+import { readFile, readdir, writeFile as writeFile2, mkdir as mkdir2, unlink as unlink2, access, chmod } from "fs/promises";
 import { dirname as dirname2 } from "path";
 import { constants as fsConstants } from "fs";
 function parseAttachment(raw) {
   try {
     const a = JSON.parse(raw);
     if (a.kind === "computer-attachment" && typeof a.serverId === "string" && typeof a.serverMachineId === "string" && typeof a.apiKey === "string" && a.apiKey.length > 0 && typeof a.serverUrl === "string") {
+      const schemaVersion = typeof a.schemaVersion === "number" ? a.schemaVersion : CURRENT_SCHEMA_VERSION;
       return {
         kind: "computer-attachment",
+        schemaVersion,
         serverId: a.serverId,
         serverSlug: typeof a.serverSlug === "string" && a.serverSlug.length > 0 ? a.serverSlug : void 0,
         serverMachineId: a.serverMachineId,
@@ -30236,18 +30255,41 @@ async function readServerAttachment(slockHome, serverId) {
   if (!isValidServerId(serverId)) return null;
   const current = await readAttachmentAt(serverAttachmentPath(slockHome, serverId));
   const legacy = await readAttachmentAt(legacyServerAttachmentPath(slockHome, serverId));
-  if (!current) return legacy;
-  if (!legacy) return current;
-  if (legacy.adoptedFromLegacy === true && current.adoptedFromLegacy !== true && legacy.serverMachineId !== current.serverMachineId) {
-    return legacy;
+  let effective;
+  let decidedByLegacy;
+  if (!current) {
+    effective = legacy;
+    decidedByLegacy = legacy !== null;
+  } else if (!legacy) {
+    effective = current;
+    decidedByLegacy = false;
+  } else if (
+    // Adopted-machine-still-wins: when the legacy attachment is an adopted
+    // (working) machine and the current one is a different, not-adopted machine
+    // (e.g. a fresh attach that the server rejects), prefer the legacy creds.
+    legacy.adoptedFromLegacy === true && current.adoptedFromLegacy !== true && legacy.serverMachineId !== current.serverMachineId
+  ) {
+    effective = legacy;
+    decidedByLegacy = true;
+  } else {
+    effective = current;
+    decidedByLegacy = false;
+  }
+  if (decidedByLegacy && effective) {
+    try {
+      await writeServerAttachment(slockHome, effective);
+      await unlink2(legacyServerAttachmentPath(slockHome, serverId));
+    } catch {
+    }
   }
-  return current;
+  return effective;
 }
 async function writeServerAttachment(slockHome, attachment) {
   if (!isValidServerId(attachment.serverId)) return;
   const path3 = serverAttachmentPath(slockHome, attachment.serverId);
   await mkdir2(dirname2(path3), { recursive: true });
-  await writeFile2(path3, JSON.stringify(attachment, null, 2), { mode: 384 });
+  const stamped = { ...attachment, schemaVersion: CURRENT_SCHEMA_VERSION };
+  await writeFile2(path3, JSON.stringify(stamped, null, 2), { mode: 384 });
   await chmod(path3, 384);
 }
 async function listAttachedServerIds(slockHome) {
@@ -30297,7 +30339,7 @@ async function setServerManaged(slockHome, serverId) {
 async function clearServerManaged(slockHome, serverId) {
   if (!isValidServerId(serverId)) return;
   try {
-    await unlink(serverManagedFlagPath(slockHome, serverId));
+    await unlink2(serverManagedFlagPath(slockHome, serverId));
   } catch {
   }
 }
@@ -30492,7 +30534,7 @@ async function runAttach(opts) {
   if (opts.orchestrated) {
     return;
   }
-  if (opts.run === false) {
+  if (opts.start === false) {
     info("Next: run `slock-computer start` to run it in the background.");
   } else {
     info("Next: run `slock-computer start` (background) \u2014 closing the terminal is fine.");
@@ -31035,13 +31077,13 @@ import { fileURLToPath as fileURLToPath2 } from "url";
 
 // src/cleanup.ts
 init_esm_shims();
-import { readdir as readdir3, stat as stat3, unlink as unlink3, rm, rmdir, rename, mkdir as mkdir6 } from "fs/promises";
+import { readdir as readdir3, stat as stat3, unlink as unlink4, rm, rmdir, rename, mkdir as mkdir6 } from "fs/promises";
 import { spawn } from "child_process";
 import { join as join3 } from "path";
 
 // src/internal/process-primitives.ts
 init_esm_shims();
-import { mkdir as mkdir5, readFile as readFile5, writeFile as writeFile5, unlink as unlink2 } from "fs/promises";
+import { mkdir as mkdir5, readFile as readFile5, writeFile as writeFile5, unlink as unlink3 } from "fs/promises";
 import { dirname as dirname5 } from "path";
 async function readPidfileAt(pidfilePath) {
   try {
@@ -31067,7 +31109,7 @@ async function writePidfileAt(pidfilePath, pid) {
 }
 async function clearPidfileAt(pidfilePath) {
   try {
-    await unlink2(pidfilePath);
+    await unlink3(pidfilePath);
   } catch {
   }
 }
@@ -31088,7 +31130,7 @@ async function cleanupStalePidfile(pidfilePath) {
   if (pid === null) return false;
   if (isProcessAlive2(pid)) return false;
   try {
-    await unlink3(pidfilePath);
+    await unlink4(pidfilePath);
     return true;
   } catch {
     return false;
@@ -31236,7 +31278,7 @@ async function cleanupTmpFiles(slockHome) {
   try {
     const s = await stat3(snap);
     if (Date.now() - s.mtimeMs > TMP_MAX_AGE_MS) {
-      await unlink3(snap);
+      await unlink4(snap);
       removed.push(snap);
     }
   } catch {
@@ -31280,7 +31322,7 @@ async function runFullCleanup(slockHome, options = {}) {
 
 // src/health.ts
 init_esm_shims();
-import { readFile as readFile6, writeFile as writeFile6, unlink as unlink4, mkdir as mkdir7, appendFile as appendFile2 } from "fs/promises";
+import { readFile as readFile6, writeFile as writeFile6, unlink as unlink5, mkdir as mkdir7, appendFile as appendFile2 } from "fs/promises";
 import { dirname as dirname7 } from "path";
 var CRASH_WINDOW_MS = 6e4;
 var DEGRADED_THRESHOLD = 3;
@@ -31290,7 +31332,9 @@ async function readHealthFile(slockHome, serverId) {
     const raw = await readFile6(serverHealthPath(slockHome, serverId), "utf8");
     const parsed = JSON.parse(raw);
     if (parsed && typeof parsed === "object" && Array.isArray(parsed.crashes)) {
-      return parsed;
+      const file = parsed;
+      if (typeof file.schemaVersion !== "number") file.schemaVersion = CURRENT_SCHEMA_VERSION;
+      return file;
     }
   } catch {
   }
@@ -31299,7 +31343,8 @@ async function readHealthFile(slockHome, serverId) {
 async function writeHealthFile(slockHome, serverId, file) {
   const path3 = serverHealthPath(slockHome, serverId);
   await mkdir7(dirname7(path3), { recursive: true });
-  await writeFile6(path3, JSON.stringify(file), { mode: 384 });
+  const stamped = { ...file, schemaVersion: CURRENT_SCHEMA_VERSION };
+  await writeFile6(path3, JSON.stringify(stamped), { mode: 384 });
 }
 async function recordCrash(slockHome, serverId, exitCode, signal, nowMs = Date.now()) {
   if (!isValidServerId(serverId)) return;
@@ -31348,7 +31393,7 @@ async function markFatalConfig(slockHome, serverId, exitCode, signal, nowMs = Da
 async function resetHealth(slockHome, serverId) {
   if (!isValidServerId(serverId)) return;
   try {
-    await unlink4(serverHealthPath(slockHome, serverId));
+    await unlink5(serverHealthPath(slockHome, serverId));
   } catch {
   }
 }
@@ -31517,7 +31562,7 @@ async function waitForManagedDaemonPids(slockHome, serverIds, opts) {
 function buildTimeoutMessage(slockHome, serverIds, ready, input) {
   const missing = serverIds.filter((id) => !ready.has(id));
   const target = input.serverId && missing.length === 1 ? `${input.serverLabel ?? input.serverId}` : `${missing.length} server runner(s): ${missing.join(", ")}`;
-  return `Timed out waiting for ${target} to start. Run \`slock-computer status\` and inspect ${serviceLogPath(slockHome)} plus per-server server-runner logs under ~/.slock/computer/servers/<serverId>/server-runner.log.`;
+  return `Timed out waiting for ${target} to start. Run \`slock-computer status\` and inspect ${serviceLogPath(slockHome)} plus per-server runner logs under ~/.slock/computer/servers/<serverId>/runner.log.`;
 }
 async function start(input, options = {}) {
   options.signal?.throwIfAborted?.();
@@ -31837,7 +31882,7 @@ async function detach(input, options = {}) {
 // src/upgradeSea.ts
 init_esm_shims();
 import { createHash as createHash3 } from "crypto";
-import { chmod as chmod4, mkdir as mkdir9, readFile as readFile8, rename as rename2, rm as rm2, writeFile as writeFile8 } from "fs/promises";
+import { access as access2, chmod as chmod4, mkdir as mkdir9, readFile as readFile8, rename as rename2, rm as rm2, writeFile as writeFile8 } from "fs/promises";
 import { join as join4 } from "path";
 
 // src/channel.ts
@@ -31993,6 +32038,24 @@ async function swapSeaPhase(currentBinaryPath, stagedBinaryPath) {
   }
   return { prevBinaryPath, currentBinaryPath };
 }
+async function rollbackSeaSwap(swap) {
+  await rm2(swap.currentBinaryPath, { force: true });
+  await rename2(swap.prevBinaryPath, swap.currentBinaryPath);
+  await chmod4(swap.currentBinaryPath, 493);
+}
+function seaPrevBinaryPath(currentBinaryPath) {
+  return `${currentBinaryPath}.prev`;
+}
+async function rollbackToPrev(currentBinaryPath) {
+  const prevBinaryPath = seaPrevBinaryPath(currentBinaryPath);
+  try {
+    await access2(prevBinaryPath);
+  } catch {
+    throw new Error("UPGRADE_NO_ROLLBACK");
+  }
+  await rollbackSeaSwap({ prevBinaryPath, currentBinaryPath });
+  return { restoredFrom: prevBinaryPath, currentBinaryPath };
+}
 function pendingUpgradeMarkerPath(slockHome) {
   return join4(slockHome, "upgrade-pending.json");
 }
@@ -32000,7 +32063,8 @@ async function writePendingUpgradeMarker(slockHome, marker) {
   const path3 = pendingUpgradeMarkerPath(slockHome);
   const tmp = `${path3}.tmp`;
   await mkdir9(slockHome, { recursive: true });
-  await writeFile8(tmp, `${JSON.stringify(marker, null, 2)}
+  const stamped = { ...marker, schemaVersion: CURRENT_SCHEMA_VERSION };
+  await writeFile8(tmp, `${JSON.stringify(stamped, null, 2)}
 `, "utf8");
   await rename2(tmp, path3);
 }
@@ -32009,7 +32073,8 @@ async function readPendingUpgradeMarker(slockHome) {
     const raw = await readFile8(pendingUpgradeMarkerPath(slockHome), "utf8");
     const parsed = JSON.parse(raw);
     if (typeof parsed.requestId === "string" && typeof parsed.targetVersion === "string" && typeof parsed.fromVersion === "string" && typeof parsed.startedAt === "string") {
-      return parsed;
+      const schemaVersion = typeof parsed.schemaVersion === "number" ? parsed.schemaVersion : CURRENT_SCHEMA_VERSION;
+      return { ...parsed, schemaVersion };
     }
     return null;
   } catch {
@@ -32128,7 +32193,7 @@ async function resolveAndRunSeaUpgrade(opts) {
 // src/internal/ipc-server.ts
 init_esm_shims();
 import { connect, createServer } from "net";
-import { chmod as chmod5, mkdir as mkdir10, stat as stat4, unlink as unlink5 } from "fs/promises";
+import { chmod as chmod5, mkdir as mkdir10, stat as stat4, unlink as unlink6 } from "fs/promises";
 import { dirname as dirname9 } from "path";
 
 // src/internal/ipc-codec.ts
@@ -32239,7 +32304,7 @@ async function probeAndClearStaleSocket(socketPath) {
     return;
   }
   try {
-    await unlink5(socketPath);
+    await unlink6(socketPath);
   } catch (err) {
     if (isErrnoException(err) && err.code === "ENOENT") return;
     throw err;
@@ -32505,12 +32570,8 @@ async function buildStatusReport(installRoot) {
 function pad(s, n) {
   return s.length >= n ? s : s + " ".repeat(n - s.length);
 }
-async function runStatus(opts) {
+async function runStatus() {
   const report = await buildStatusReport(resolveSlockHome());
-  if (opts.json) {
-    info(JSON.stringify(report, null, 2));
-    return;
-  }
   info("");
   info(`SLOCK_HOME:   ${report.slockHome}`);
   const loginDetail = report.userSessionError ? "no \u2014 user session file is invalid; re-run `slock-computer login`" : report.loggedIn ? `yes (user ${report.userId ?? "?"})` : "no \u2014 run `slock-computer login`";
@@ -32635,6 +32696,7 @@ function isServiceState(value) {
 
 // src/serviceState.ts
 var DEFAULT_STATE = {
+  schemaVersion: CURRENT_SCHEMA_VERSION,
   state: "running",
   crashHistory: []
 };
@@ -32644,9 +32706,10 @@ async function readServiceState(slockHome) {
     const parsed = JSON.parse(raw);
     if (!parsed || typeof parsed !== "object") return { ...DEFAULT_STATE };
     const obj = parsed;
+    const schemaVersion = typeof obj.schemaVersion === "number" ? obj.schemaVersion : CURRENT_SCHEMA_VERSION;
     const state = isServiceState(obj.state) ? obj.state : "running";
     const crashHistory = Array.isArray(obj.crashHistory) ? obj.crashHistory.filter(isCrashEntry) : [];
-    return { state, crashHistory };
+    return { schemaVersion, state, crashHistory };
   } catch {
     return { ...DEFAULT_STATE };
   }
@@ -32654,7 +32717,8 @@ async function readServiceState(slockHome) {
 async function writeServiceState(slockHome, file) {
   const path3 = serviceStatePath(slockHome);
   await mkdir11(dirname10(path3), { recursive: true });
-  await writeFile9(path3, JSON.stringify(file), { mode: 384 });
+  const stamped = { ...file, schemaVersion: CURRENT_SCHEMA_VERSION };
+  await writeFile9(path3, JSON.stringify(stamped), { mode: 384 });
 }
 function isCrashEntry(value) {
   if (!value || typeof value !== "object") return false;
@@ -32738,7 +32802,7 @@ async function resolveTargetServerId(opts) {
   if (attachments.length === 1) return attachments[0].serverId;
   fail(
     "AMBIGUOUS_SERVER",
-    `Multiple servers attached (${attachments.map(attachmentLabel).join(", ")}). Pass \`--server /<serverSlug>\` (e.g. \`--server ${attachmentLabel(attachments[0])}\`) to choose one.`
+    `Multiple servers attached (${attachments.map(attachmentLabel).join(", ")}). Pass the server slug positionally (e.g. \`${attachmentLabel(attachments[0])}\`) to choose one.`
   );
 }
 async function resolveTargetAttachment(opts) {
@@ -33028,17 +33092,13 @@ async function runReset(opts) {
       (client) => client.request("reset-service", void 0),
       () => resetService(slockHome)
     );
-    if (opts.json) {
-      info(JSON.stringify(result2));
-      return;
-    }
     info(
       `Reset service crash history (previous state: ${result2.previousState}; cleared ${result2.clearedCrashCount} entr${result2.clearedCrashCount === 1 ? "y" : "ies"}).`
     );
     info("Service state transitioned to `running`. Runners were not touched.");
     return;
   }
-  const serverId = await resolveTargetServerId({ server: opts.server });
+  const serverId = await resolveTargetServerId({ server: opts.serverSlug });
   const result = await resetViaServiceOrDisk(
     slockHome,
     (client) => client.request("reset-runner", { serverId }),
@@ -33050,10 +33110,6 @@ async function runReset(opts) {
       `Runner for server ${serverId} was not found.`
     );
   }
-  if (opts.json) {
-    info(JSON.stringify(result));
-    return;
-  }
   info(
     `Reset runner crash history for server ${result.serverId} (previous state: ${result.previousState}; cleared ${result.clearedCrashCount} entr${result.clearedCrashCount === 1 ? "y" : "ies"}).`
   );
@@ -33626,7 +33682,7 @@ async function runStart(opts = {}, deps = {}) {
     info(
       `Managing ${sb.managedCount} of ${sb.attachedCount} attached server(s). Logs: ${sb.logPath}`
     );
-    info(`Per-server server-runner logs: ~/.slock/computer/servers/<serverId>/server-runner.log`);
+    info(`Per-server runner logs: ~/.slock/computer/servers/<serverId>/runner.log`);
     info(`Check state with \`slock-computer status\`.`);
   }
 }
@@ -33747,6 +33803,8 @@ async function refreshUserSession(slockHome, serverUrl) {
       JSON.stringify(
         {
           kind: "user-session",
+          // Stamp the current on-disk schema version on every write.
+          schemaVersion: CURRENT_SCHEMA_VERSION,
           userId: session.userId,
           accessToken: body.accessToken,
           refreshToken: body.refreshToken,
@@ -34046,7 +34104,7 @@ async function runSetup(opts, deps = {}) {
         serverSlug: opts.serverSlug,
         serverUrl: opts.serverUrl,
         name: opts.name,
-        run: false,
+        start: false,
         orchestrated: true
       });
     }
@@ -34089,16 +34147,6 @@ async function runRunnersList(opts) {
       `Could not list runners on ${label} (${block.code}). Check --server-url / server version.`
     );
   }
-  if (opts.json) {
-    info(
-      JSON.stringify(
-        { server: label, serverId: block.serverId, whitelist: block.whitelist, runners: block.runners },
-        null,
-        2
-      )
-    );
-    return;
-  }
   if (block.runners.length === 0) {
     info(`No runners on server ${label}.`);
     return;
@@ -34115,7 +34163,7 @@ async function runRunnersList(opts) {
 }
 async function runRunnersStop(agentId, opts = {}) {
   if (!agentId || agentId.trim().length === 0) {
-    fail("AGENT_ID_REQUIRED", "Usage: slock-computer runners stop <agentId> [--server /<serverSlug>]");
+    fail("AGENT_ID_REQUIRED", "Usage: slock-computer runners stop <agentId> [serverSlug]");
   }
   const a = await resolveTargetAttachment({ server: opts.server });
   const client = new RunnersClient(a.serverUrl, a.apiKey);
@@ -34217,14 +34265,6 @@ async function runDoctor(opts) {
   if (opts.serverId) {
     crashes = await readCrashHistory(slockHome, opts.serverId);
   }
-  if (opts.json) {
-    const payload = { ok: allOk, checks };
-    if (cleanupReport) payload.cleanup = cleanupReport;
-    if (crashes.length > 0) payload.crashes = crashes;
-    info(redactSecrets(JSON.stringify(payload, null, 2)));
-    process.exitCode = allOk ? 0 : 1;
-    return;
-  }
   info("");
   for (const c of checks) {
     info(redactSecrets(`${c.ok ? "\u2713" : "\u2717"} ${c.name.padEnd(48)} ${c.detail}`));
@@ -34240,7 +34280,7 @@ async function runDoctor(opts) {
       info(`  - ${c.at}${code}${sig}`);
     }
     info(`  \u2192 Once you fix the underlying issue, run`);
-    info(`    \`slock-computer reset --runner --server ${opts.serverLabel ?? opts.serverId}\` to resume auto-restart.`);
+    info(`    \`slock-computer reset --runner ${opts.serverLabel ?? opts.serverId}\` to resume auto-restart.`);
   }
   if (cleanupReport) {
     info("");
@@ -34431,6 +34471,32 @@ async function runUpgradeCli(slockHome, opts, deps = {}) {
       "`slock-computer upgrade` self-upgrades the SEA single-binary; this run is not a SEA binary (npm-installed or source/dev). Re-install the SEA binary to upgrade: `curl -fsSL https://github.com/botiverse/slock/releases/latest/download/install.sh | sh`."
     );
   }
+  if (opts.rollback) {
+    if (opts.targetVersion !== void 0 || opts.channel !== void 0 || opts.dryRun) {
+      fail(
+        "UPGRADE_ROLLBACK_CONFLICT",
+        "`--rollback` cannot be combined with --target-version, --channel, or --dry-run. Rollback restores the previous binary and resolves/downloads nothing."
+      );
+    }
+    const currentBinaryPath2 = (deps.currentBinaryPath ?? (() => process.execPath))();
+    const rollbackFn = deps.rollbackToPrevFn ?? rollbackToPrev;
+    try {
+      const r = await rollbackFn(currentBinaryPath2);
+      info(
+        `Rolled back: restored the previous binary from ${r.restoredFrom}. Restart the Computer service to run the restored binary (the managed supervisor does this automatically).`
+      );
+    } catch (e) {
+      const msg = e instanceof Error ? e.message : String(e);
+      if (/UPGRADE_NO_ROLLBACK/.test(msg)) {
+        fail(
+          "UPGRADE_NO_ROLLBACK",
+          "Nothing to roll back: no previous binary (`<exe>.prev`) exists. A rollback target is only kept after a successful upgrade swap."
+        );
+      }
+      fail("UPGRADE_SWAP_FAILED", `Rollback failed: ${msg}.`);
+    }
+    return;
+  }
   let channel2;
   if (opts.channel !== void 0) {
     const parsed = parseChannel(opts.channel);
@@ -34604,9 +34670,12 @@ program2.name("slock-computer").description("Slock Computer \u2014 local-machine
 program2.command("login").description("Log in via device-code (one user identity per Computer / SLOCK_HOME).").option("--server-url <url>", `Slock API base URL; defaults to SLOCK_SERVER_URL or ${DEFAULT_SLOCK_SERVER_URL}`).action(withCliExit(async (opts) => {
   await runLogin({ serverUrl: opts.serverUrl });
 }));
-program2.command("attach").argument("<serverSlug>", SERVER_SLUG_TARGET_DESC).description("Attach this Computer to one Slock server (add-not-replace; multi-server OK).").option("--server-url <url>", `Slock API base URL; defaults to the saved user session, SLOCK_SERVER_URL, or ${DEFAULT_SLOCK_SERVER_URL}`).option("--name <name>", "Computer display name; defaults to a sanitized hostname").option("--no-run", "only authorize + write local state; do not start the service").option("--foreground", FOREGROUND_DESC).action(withCliExit(async (serverSlug, opts) => {
+program2.command("logout").description("Log out (clear the saved user session for this Computer); per-server attachments are untouched.").action(withCliExit(async () => {
+  await runLogout();
+}));
+program2.command("attach").argument("<serverSlug>", SERVER_SLUG_TARGET_DESC).description("Attach this Computer to one Slock server (add-not-replace; multi-server OK).").option("--server-url <url>", `Slock API base URL; defaults to the saved user session, SLOCK_SERVER_URL, or ${DEFAULT_SLOCK_SERVER_URL}`).option("--name <name>", "Computer display name; defaults to a sanitized hostname").option("--no-start", "only authorize + write local state; do not start the service").option("--foreground", FOREGROUND_DESC).action(withCliExit(async (serverSlug, opts) => {
   await withMutationLock(
-    () => runAttach({ serverSlug, serverUrl: opts.serverUrl, name: opts.name, run: opts.run, foreground: opts.foreground })
+    () => runAttach({ serverSlug, serverUrl: opts.serverUrl, name: opts.name, start: opts.start, foreground: opts.foreground })
   );
 }));
 program2.command("setup").argument("<serverSlug>", SERVER_SLUG_TARGET_DESC).description("Set up this Computer for one server: login if needed, attach (or \xA7X.1 migrate-prompt) if needed, then start.").option("--server-url <url>", `Slock API base URL; defaults to the saved user session, SLOCK_SERVER_URL, or ${DEFAULT_SLOCK_SERVER_URL}`).option("--name <name>", "Computer display name for a new attachment; defaults to a sanitized hostname").option("--no-start", "stop after login + attach; do not start the service").option("--foreground", FOREGROUND_DESC).option("-y, --yes", "allow non-interactive setup after confirming the planned actions").action(
@@ -34626,10 +34695,10 @@ program2.command("setup").argument("<serverSlug>", SERVER_SLUG_TARGET_DESC).desc
 program2.command("detach").argument("<serverSlug>", `${SERVER_SLUG_TARGET_DESC} (the server to detach from this Computer)`).description("Remove ONE server's local attachment; never touches user-session or other servers.").action(withCliExit(async (serverSlug) => {
   await withMutationLock(async () => runDetach(await resolveTargetServerId({ server: serverSlug }), serverSlug));
 }));
-program2.command("status").description("Show this Computer's aggregate state (login + service + per-server server-runners).").option("--json", "emit the machine-readable report").action(withCliExit(async (opts) => {
-  await runStatus({ json: opts.json });
+program2.command("status").description("Show this Computer's aggregate state (login + service + per-server runners).").action(withCliExit(async () => {
+  await runStatus();
 }));
-program2.command("start").argument("[serverSlug]", SERVER_SLUG_OPTIONAL_DESC).description("Start/ensure the Computer service (manages all per-server server-runners).").option("--foreground", FOREGROUND_DESC).action(withCliExit(async (serverSlug, opts) => {
+program2.command("start").argument("[serverSlug]", SERVER_SLUG_OPTIONAL_DESC).description("Start/ensure the Computer service (manages all per-server runners).").option("--foreground", FOREGROUND_DESC).action(withCliExit(async (serverSlug, opts) => {
   await withMutationLock(
     async () => runStart({
       foreground: opts.foreground,
@@ -34638,10 +34707,10 @@ program2.command("start").argument("[serverSlug]", SERVER_SLUG_OPTIONAL_DESC).de
     })
   );
 }));
-program2.command("stop").description("Stop the Computer service (and all managed per-server server-runners).").action(withCliExit(async () => {
+program2.command("stop").description("Stop the Computer service (and all managed per-server runners).").action(withCliExit(async () => {
   await withMutationLock(() => runStop());
 }));
-program2.command("restart").argument("[serverSlug]", SERVER_SLUG_OPTIONAL_DESC).description("Restart the Computer service (stop + start; all managed per-server server-runners).").option("--foreground", FOREGROUND_DESC).action(withCliExit(async (serverSlug, opts) => {
+program2.command("restart").argument("[serverSlug]", SERVER_SLUG_OPTIONAL_DESC).description("Restart the Computer service (stop + start; all managed per-server runners).").option("--foreground", FOREGROUND_DESC).action(withCliExit(async (serverSlug, opts) => {
   await withMutationLock(async () => {
     await runStop();
     await runStart({
@@ -34651,12 +34720,11 @@ program2.command("restart").argument("[serverSlug]", SERVER_SLUG_OPTIONAL_DESC).
     });
   });
 }));
-program2.command("doctor").argument("[serverSlug]", `${SERVER_SLUG_OPTIONAL_DESC} (scopes recent-crash detail to that server)`).description("Diagnose login + per-server attachments + per-server preflight (no secrets).").option("--json", "emit the machine-readable report").option("--fix", "after diagnosis, run the local residue cleanup pass").action(
+program2.command("doctor").argument("[serverSlug]", `${SERVER_SLUG_OPTIONAL_DESC} (scopes recent-crash detail to that server)`).description("Diagnose login + per-server attachments + per-server preflight (no secrets).").option("--fix", "after diagnosis, run the local residue cleanup pass").action(
   withCliExit(
     async (serverSlug, opts) => {
       const serverId = serverSlug ? await resolveTargetServerId({ server: serverSlug }) : void 0;
       await runDoctor({
-        json: opts.json,
         cleanup: opts.fix,
         serverId,
         serverLabel: serverSlug
@@ -34664,27 +34732,26 @@ program2.command("doctor").argument("[serverSlug]", `${SERVER_SLUG_OPTIONAL_DESC
     }
   )
 );
-program2.command("reset").description("Clear a degraded state and resume the service's auto-restart loop.").option("--service", "clear the service-level crash history (cascade record)").option("--runner", "clear a runner's crash history (selected by `--server`)").option("--server <slug>", "with `--runner`, select target server slug (required when \u22652 attached)").option("--json", "emit the machine-readable result").action(
-  withCliExit(async (opts) => {
+program2.command("reset").argument("[serverSlug]", `${SERVER_SLUG_OPTIONAL_DESC} (with \`--runner\`, selects the target runner)`).description("Clear a degraded state and resume the service's auto-restart loop.").option("--service", "clear the service-level crash history (cascade record)").option("--runner", "clear a runner's crash history (selected by the [serverSlug] positional)").action(
+  withCliExit(async (serverSlug, opts) => {
     await withMutationLock(
       () => runReset({
         service: opts.service,
         runner: opts.runner,
-        server: opts.server,
-        json: opts.json
+        serverSlug
       })
     );
   })
 );
-program2.command("logs").argument("[serverSlug]", `${SERVER_SLUG_OPTIONAL_DESC} (required when \u22652 attached; ignored with --service)`).description("Tail one server's server-runner log (or the service log); secrets redacted.").option("--lines <n>", "trailing lines to show (default 200)", (v) => Number.parseInt(v, 10)).option("--service", "tail the global service log instead of a per-server server-runner log").action(withCliExit(async (serverSlug, opts) => {
+program2.command("logs").argument("[serverSlug]", `${SERVER_SLUG_OPTIONAL_DESC} (required when \u22652 attached; ignored with --service)`).description("Tail one server's runner log (or the service log); secrets redacted.").option("--lines <n>", "trailing lines to show (default 200)", (v) => Number.parseInt(v, 10)).option("--service", "tail the global service log instead of a per-server runner log").action(withCliExit(async (serverSlug, opts) => {
   await runLogs({ lines: opts.lines, server: serverSlug ?? null, service: !!opts.service });
 }));
 var runners = program2.command("runners").description("Computer runner control plane (per-server scoped; \xA712 whitelist server-side).");
-runners.command("list").description("List runners on one attached server.").option("--json", "emit the machine-readable list").option("--server <slug>", "select target server slug (required when \u22652 attached)").action(withCliExit(async (opts) => {
-  await runRunnersList({ json: opts.json, server: opts.server ?? null });
+runners.command("list").argument("[serverSlug]", `${SERVER_SLUG_OPTIONAL_DESC} (required when \u22652 attached)`).description("List runners on one attached server.").action(withCliExit(async (serverSlug) => {
+  await runRunnersList({ server: serverSlug ?? null });
 }));
-runners.command("stop").argument("<agentId>", "id of the runner to stop").option("--server <slug>", "select target server slug (required when \u22652 attached)").description("Stop a runner (server-mediated; reuses the orchestrator's agent stop).").action(withCliExit(async (agentId, opts) => {
-  await withMutationLock(() => runRunnersStop(agentId, { server: opts.server ?? null }));
+runners.command("stop").argument("<agentId>", "id of the runner to stop").argument("[serverSlug]", `${SERVER_SLUG_OPTIONAL_DESC} (required when \u22652 attached)`).description("Stop a runner (server-mediated; reuses the orchestrator's agent stop).").action(withCliExit(async (agentId, serverSlug) => {
+  await withMutationLock(() => runRunnersStop(agentId, { server: serverSlug ?? null }));
 }));
 var channel = program2.command("channel").description("Show or set the Computer release channel (latest | alpha | pinned:<semver>).");
 channel.command("show").description("Show the current Computer release channel (default `latest` when unset).").action(
@@ -34706,12 +34773,15 @@ program2.command("upgrade").description(
     "supervisor restarts on the swapped binary. SEA-only: a non-SEA (npm/dev)",
     "run has no single binary to self-swap and is refused (UPGRADE_SEA_ONLY)."
   ].join("\n")
-).option("--dry-run", "download + sha256-verify only; do not swap or restart").option("--channel <name>", "override channel for this invocation (latest | alpha | pinned:<semver>)").option("--target-version <semver>", "override target version explicitly (bypasses channel resolution)").action(
+).option("--dry-run", "download + sha256-verify only; do not swap or restart").option("--channel <name>", "override channel for this invocation (latest | alpha | pinned:<semver>)").option("--target-version <semver>", "override target version explicitly (bypasses channel resolution)").option(
+  "--rollback",
+  "restore the previous binary (<exe>.prev) from the last successful upgrade; mutually exclusive with --target-version/--channel/--dry-run"
+).action(
   withCliExit(
     async (opts) => {
       const slockHome = resolveSlockHome();
       const trigger = resolveUpgradeTrigger(process.env.SLOCK_UPGRADE_TRIGGER);
-      if (!opts.dryRun && !opts.channel) {
+      if (!opts.dryRun && !opts.channel && !opts.rollback) {
         let client = null;
         try {
           client = await connectService(slockHome);
@@ -34742,6 +34812,7 @@ program2.command("upgrade").description(
             dryRun: opts.dryRun,
             channel: opts.channel,
             targetVersion: opts.targetVersion,
+            rollback: opts.rollback,
             trigger
           })
         );

package/dist/lib/index.js

@@ -333,6 +333,7 @@ import { constants as fsConstants } from "fs";
 import { createHash } from "crypto";
 import os from "os";
 import path from "path";
+var CURRENT_SCHEMA_VERSION = 1;
 function computerDir(slockHome) {
   return path.join(slockHome, "computer");
 }
@@ -362,10 +363,10 @@ function legacyServerAttachmentPath(slockHome, serverId) {
   return path.join(serverDir(slockHome, serverId), "attachment.json");
 }
 function serverRunnerPidPath(slockHome, serverId) {
-  return path.join(serverDir(slockHome, serverId), "server-runner.pid");
+  return path.join(serverDir(slockHome, serverId), "runner.pid");
 }
 function serverRunnerLogPath(slockHome, serverId) {
-  return path.join(serverDir(slockHome, serverId), "server-runner.log");
+  return path.join(serverDir(slockHome, serverId), "runner.log");
 }
 function serverHealthPath(slockHome, serverId) {
   return path.join(serverDir(slockHome, serverId), "health.json");
@@ -388,8 +389,10 @@ function parseAttachment(raw) {
   try {
     const a = JSON.parse(raw);
     if (a.kind === "computer-attachment" && typeof a.serverId === "string" && typeof a.serverMachineId === "string" && typeof a.apiKey === "string" && a.apiKey.length > 0 && typeof a.serverUrl === "string") {
+      const schemaVersion = typeof a.schemaVersion === "number" ? a.schemaVersion : CURRENT_SCHEMA_VERSION;
       return {
         kind: "computer-attachment",
+        schemaVersion,
         serverId: a.serverId,
         serverSlug: typeof a.serverSlug === "string" && a.serverSlug.length > 0 ? a.serverSlug : void 0,
         serverMachineId: a.serverMachineId,
@@ -415,12 +418,42 @@ async function readServerAttachment(slockHome, serverId) {
   if (!isValidServerId(serverId)) return null;
   const current = await readAttachmentAt(serverAttachmentPath(slockHome, serverId));
   const legacy = await readAttachmentAt(legacyServerAttachmentPath(slockHome, serverId));
-  if (!current) return legacy;
-  if (!legacy) return current;
-  if (legacy.adoptedFromLegacy === true && current.adoptedFromLegacy !== true && legacy.serverMachineId !== current.serverMachineId) {
-    return legacy;
+  let effective;
+  let decidedByLegacy;
+  if (!current) {
+    effective = legacy;
+    decidedByLegacy = legacy !== null;
+  } else if (!legacy) {
+    effective = current;
+    decidedByLegacy = false;
+  } else if (
+    // Adopted-machine-still-wins: when the legacy attachment is an adopted
+    // (working) machine and the current one is a different, not-adopted machine
+    // (e.g. a fresh attach that the server rejects), prefer the legacy creds.
+    legacy.adoptedFromLegacy === true && current.adoptedFromLegacy !== true && legacy.serverMachineId !== current.serverMachineId
+  ) {
+    effective = legacy;
+    decidedByLegacy = true;
+  } else {
+    effective = current;
+    decidedByLegacy = false;
   }
-  return current;
+  if (decidedByLegacy && effective) {
+    try {
+      await writeServerAttachment(slockHome, effective);
+      await unlink(legacyServerAttachmentPath(slockHome, serverId));
+    } catch {
+    }
+  }
+  return effective;
+}
+async function writeServerAttachment(slockHome, attachment) {
+  if (!isValidServerId(attachment.serverId)) return;
+  const path2 = serverAttachmentPath(slockHome, attachment.serverId);
+  await mkdir(dirname(path2), { recursive: true });
+  const stamped = { ...attachment, schemaVersion: CURRENT_SCHEMA_VERSION };
+  await writeFile(path2, JSON.stringify(stamped, null, 2), { mode: 384 });
+  await chmod(path2, 384);
 }
 async function listAttachedServerIds(slockHome) {
   let entries;
@@ -450,6 +483,9 @@ async function listServerAttachments(slockHome) {
 import { chmod as chmod2, mkdir as mkdir2, readFile as readFile3, writeFile as writeFile2 } from "fs/promises";
 import { dirname as dirname2 } from "path";
 
+// src/login.ts
+import { unlink as unlink2 } from "fs/promises";
+
 // src/services/login.ts
 import { mkdir as mkdir3, writeFile as writeFile3 } from "fs/promises";
 import { dirname as dirname3 } from "path";
@@ -485,12 +521,12 @@ import { dirname as dirname10, join as joinPath } from "path";
 import { fileURLToPath } from "url";
 
 // src/cleanup.ts
-import { readdir as readdir3, stat as stat3, unlink as unlink3, rm, rmdir, rename, mkdir as mkdir6 } from "fs/promises";
+import { readdir as readdir3, stat as stat3, unlink as unlink4, rm, rmdir, rename, mkdir as mkdir6 } from "fs/promises";
 import { spawn } from "child_process";
 import { join as join3 } from "path";
 
 // src/internal/process-primitives.ts
-import { mkdir as mkdir5, readFile as readFile5, writeFile as writeFile5, unlink as unlink2 } from "fs/promises";
+import { mkdir as mkdir5, readFile as readFile5, writeFile as writeFile5, unlink as unlink3 } from "fs/promises";
 import { dirname as dirname5 } from "path";
 async function readPidfileAt(pidfilePath) {
   try {
@@ -515,7 +551,7 @@ function isProcessAlive(pid) {
 var TMP_MAX_AGE_MS = 24 * 60 * 60 * 1e3;
 
 // src/health.ts
-import { readFile as readFile6, writeFile as writeFile6, unlink as unlink4, mkdir as mkdir7, appendFile as appendFile2 } from "fs/promises";
+import { readFile as readFile6, writeFile as writeFile6, unlink as unlink5, mkdir as mkdir7, appendFile as appendFile2 } from "fs/promises";
 import { dirname as dirname6 } from "path";
 var CRASH_WINDOW_MS = 6e4;
 var DEGRADED_THRESHOLD = 3;
@@ -525,7 +561,9 @@ async function readHealthFile(slockHome, serverId) {
     const raw = await readFile6(serverHealthPath(slockHome, serverId), "utf8");
     const parsed = JSON.parse(raw);
     if (parsed && typeof parsed === "object" && Array.isArray(parsed.crashes)) {
-      return parsed;
+      const file = parsed;
+      if (typeof file.schemaVersion !== "number") file.schemaVersion = CURRENT_SCHEMA_VERSION;
+      return file;
     }
   } catch {
   }
@@ -582,7 +620,7 @@ import { fetch as fetch3 } from "undici";
 
 // src/upgradeSea.ts
 import { createHash as createHash3 } from "crypto";
-import { chmod as chmod4, mkdir as mkdir9, readFile as readFile8, rename as rename2, rm as rm2, writeFile as writeFile8 } from "fs/promises";
+import { access as access2, chmod as chmod4, mkdir as mkdir9, readFile as readFile8, rename as rename2, rm as rm2, writeFile as writeFile8 } from "fs/promises";
 import { join as join4 } from "path";
 
 // src/channel.ts
@@ -591,7 +629,7 @@ import { dirname as dirname7 } from "path";
 
 // src/internal/ipc-server.ts
 import { connect, createServer } from "net";
-import { chmod as chmod5, mkdir as mkdir10, stat as stat4, unlink as unlink5 } from "fs/promises";
+import { chmod as chmod5, mkdir as mkdir10, stat as stat4, unlink as unlink6 } from "fs/promises";
 import { dirname as dirname8 } from "path";
 
 // src/internal/ipc-codec.ts

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@botiverse/raft-computer",
-  "version": "0.0.60",
+  "version": "0.0.61",
   "description": "Canonical Raft Computer — standalone human/local-machine control-plane CLI (login + attach). Provides raft-computer plus the legacy slock-computer alias; distinct from the agent-facing @botiverse/raft CLI.",
   "type": "module",
   "bin": {
@@ -31,7 +31,7 @@
     "commander": "^12.1.0",
     "proper-lockfile": "^4.1.2",
     "undici": "^7.24.7",
-    "@botiverse/raft-daemon": "0.62.0"
+    "@botiverse/raft-daemon": "0.63.0"
   },
   "devDependencies": {
     "@types/node": "^25.5.0",