@burdenoff/vibe-agent 2.1.1 → 2.2.0

package/dist/index-npmvh1x9.js

@@ -0,0 +1,385 @@
+// @bun
+import {
+  Elysia,
+  t
+} from "./index-wr0mkm57.js";
+import {
+  apiPost,
+  fail,
+  formatBytes,
+  formatTable,
+  getAgentUrl,
+  header,
+  info,
+  success
+} from "./index-xmeskdnb.js";
+import"./index-g8dczzvv.js";
+
+// src/plugins/file/routes.ts
+import { promises as fs } from "fs";
+import nodePath from "path";
+var SENSITIVE_PATTERNS = [
+  /\.env$/,
+  /\.pem$/,
+  /\.key$/,
+  /id_rsa/,
+  /\.ssh\//,
+  /\.git\/config$/,
+  /\.npmrc$/
+];
+var PROTECTED_PATHS = ["/", "/etc", "/usr", "/bin", "/sbin", "/var", "/opt"];
+function validatePath(filePath) {
+  const normalized = nodePath.normalize(filePath);
+  if (normalized.includes("..")) {
+    return {
+      valid: false,
+      normalized,
+      error: "Directory traversal not allowed"
+    };
+  }
+  return { valid: true, normalized };
+}
+function isSensitiveFile(filePath) {
+  return SENSITIVE_PATTERNS.some((p) => p.test(filePath));
+}
+function isProtectedPath(filePath) {
+  return PROTECTED_PATHS.includes(filePath) || PROTECTED_PATHS.some((p) => filePath.startsWith(p + "/"));
+}
+function createRoutes(_deps) {
+  return new Elysia().post("/read", async ({ body, set }) => {
+    const { valid, normalized, error } = validatePath(body.path);
+    if (!valid) {
+      set.status = 403;
+      return { error };
+    }
+    if (isSensitiveFile(normalized)) {
+      set.status = 403;
+      return { error: "Access to sensitive files not allowed" };
+    }
+    try {
+      const content = await fs.readFile(normalized, "utf-8");
+      return { content, path: normalized, size: content.length };
+    } catch (err) {
+      const nodeErr = err;
+      if (nodeErr.code === "ENOENT") {
+        set.status = 404;
+        return { error: "File not found" };
+      }
+      if (nodeErr.code === "EACCES") {
+        set.status = 403;
+        return { error: "Permission denied" };
+      }
+      set.status = 500;
+      return { error: "Failed to read file", details: String(err) };
+    }
+  }, {
+    body: t.Object({
+      path: t.String(),
+      projectId: t.Optional(t.String())
+    })
+  }).post("/write", async ({ body, set }) => {
+    const { valid, normalized, error } = validatePath(body.path);
+    if (!valid) {
+      set.status = 403;
+      return { error };
+    }
+    try {
+      const dir = nodePath.dirname(normalized);
+      await fs.mkdir(dir, { recursive: true });
+      await fs.writeFile(normalized, body.content, "utf-8");
+      const stats = await fs.stat(normalized);
+      return { success: true, path: normalized, size: stats.size };
+    } catch (err) {
+      const nodeErr = err;
+      if (nodeErr.code === "EACCES") {
+        set.status = 403;
+        return { error: "Permission denied" };
+      }
+      set.status = 500;
+      return { error: "Failed to write file", details: String(err) };
+    }
+  }, {
+    body: t.Object({
+      path: t.String(),
+      content: t.String(),
+      projectId: t.Optional(t.String())
+    })
+  }).post("/list", async ({ body, set }) => {
+    const { valid, normalized, error } = validatePath(body.path);
+    if (!valid) {
+      set.status = 403;
+      return { error };
+    }
+    try {
+      const entries = await fs.readdir(normalized, {
+        withFileTypes: true
+      });
+      const files = await Promise.all(entries.map(async (entry) => {
+        const fullPath = nodePath.join(normalized, entry.name);
+        let stats;
+        try {
+          stats = await fs.stat(fullPath);
+        } catch {
+          stats = null;
+        }
+        return {
+          name: entry.name,
+          path: fullPath,
+          type: entry.isDirectory() ? "directory" : entry.isFile() ? "file" : entry.isSymbolicLink() ? "symlink" : "other",
+          size: stats?.size || 0,
+          modified: stats?.mtime || null,
+          permissions: stats?.mode || null
+        };
+      }));
+      files.sort((a, b) => {
+        if (a.type === "directory" && b.type !== "directory")
+          return -1;
+        if (a.type !== "directory" && b.type === "directory")
+          return 1;
+        return a.name.localeCompare(b.name);
+      });
+      return { path: normalized, files, count: files.length };
+    } catch (err) {
+      const nodeErr = err;
+      if (nodeErr.code === "ENOENT") {
+        set.status = 404;
+        return { error: "Directory not found" };
+      }
+      if (nodeErr.code === "ENOTDIR") {
+        set.status = 400;
+        return { error: "Path is not a directory" };
+      }
+      if (nodeErr.code === "EACCES") {
+        set.status = 403;
+        return { error: "Permission denied" };
+      }
+      set.status = 500;
+      return { error: "Failed to list directory", details: String(err) };
+    }
+  }, {
+    body: t.Object({
+      path: t.String(),
+      projectId: t.Optional(t.String())
+    })
+  }).post("/exists", async ({ body, set }) => {
+    const { valid, normalized, error } = validatePath(body.path);
+    if (!valid) {
+      set.status = 403;
+      return { error };
+    }
+    try {
+      const stats = await fs.stat(normalized);
+      return {
+        exists: true,
+        path: normalized,
+        type: stats.isDirectory() ? "directory" : stats.isFile() ? "file" : "other",
+        size: stats.size,
+        modified: stats.mtime
+      };
+    } catch (err) {
+      const nodeErr = err;
+      if (nodeErr.code === "ENOENT") {
+        return { exists: false, path: normalized };
+      }
+      set.status = 500;
+      return { error: "Failed to check path", details: String(err) };
+    }
+  }, {
+    body: t.Object({
+      path: t.String()
+    })
+  }).post("/delete", async ({ body, set }) => {
+    const { valid, normalized, error } = validatePath(body.path);
+    if (!valid) {
+      set.status = 403;
+      return { error };
+    }
+    if (isProtectedPath(normalized)) {
+      set.status = 403;
+      return { error: "Cannot delete system directories" };
+    }
+    try {
+      const stats = await fs.stat(normalized);
+      if (stats.isDirectory()) {
+        await fs.rm(normalized, { recursive: true, force: true });
+      } else {
+        await fs.unlink(normalized);
+      }
+      return {
+        success: true,
+        path: normalized
+      };
+    } catch (err) {
+      const nodeErr = err;
+      if (nodeErr.code === "ENOENT") {
+        set.status = 404;
+        return { error: "Path not found" };
+      }
+      if (nodeErr.code === "EACCES") {
+        set.status = 403;
+        return { error: "Permission denied" };
+      }
+      set.status = 500;
+      return { error: "Failed to delete path", details: String(err) };
+    }
+  }, {
+    body: t.Object({
+      path: t.String()
+    })
+  }).post("/readme", async ({ body, set }) => {
+    const { valid, normalized, error } = validatePath(body.path);
+    if (!valid) {
+      set.status = 403;
+      return { error };
+    }
+    const readmeVariants = [
+      "README.md",
+      "readme.md",
+      "README.MD",
+      "README",
+      "readme",
+      "README.txt",
+      "readme.txt",
+      "README.rst",
+      "readme.rst"
+    ];
+    for (const variant of readmeVariants) {
+      try {
+        const readmePath = nodePath.join(normalized, variant);
+        const content = await fs.readFile(readmePath, "utf-8");
+        return {
+          content,
+          path: readmePath,
+          variant,
+          size: content.length
+        };
+      } catch {}
+    }
+    set.status = 404;
+    return { error: "No README file found" };
+  }, {
+    body: t.Object({
+      path: t.String()
+    })
+  });
+}
+
+// src/cli/commands/file.cmd.ts
+var DEFAULT_AGENT_URL = "http://localhost:3005";
+function register(program) {
+  const cmd = program.command("file").description("File system operations via agent");
+  cmd.command("read").description("Read a file").requiredOption("--path <path>", "File path to read").option("--agent-url <url>", "Agent URL", DEFAULT_AGENT_URL).action(async (options) => {
+    try {
+      const url = getAgentUrl(options);
+      const result = await apiPost(url, "/api/files/read", {
+        path: options.path
+      });
+      if (result?.content !== undefined) {
+        console.log(result.content);
+      } else {
+        info("File is empty or has no content.");
+      }
+    } catch (err) {
+      fail(err.message);
+    }
+  });
+  cmd.command("write").description("Write content to a file").requiredOption("--path <path>", "File path to write").requiredOption("--content <content>", "Content to write").option("--agent-url <url>", "Agent URL", DEFAULT_AGENT_URL).action(async (options) => {
+    try {
+      const url = getAgentUrl(options);
+      await apiPost(url, "/api/files/write", {
+        path: options.path,
+        content: options.content
+      });
+      success(`File written: ${options.path}`);
+    } catch (err) {
+      fail(err.message);
+    }
+  });
+  cmd.command("list").description("List files in a directory").requiredOption("--path <path>", "Directory path").option("--agent-url <url>", "Agent URL", DEFAULT_AGENT_URL).action(async (options) => {
+    try {
+      const url = getAgentUrl(options);
+      const result = await apiPost(url, "/api/files/list", {
+        path: options.path
+      });
+      const files = result?.files || result;
+      if (!files || Array.isArray(files) && files.length === 0) {
+        info("Directory is empty.");
+        return;
+      }
+      header(`Files in ${options.path}`);
+      formatTable((Array.isArray(files) ? files : []).map((f) => ({
+        Name: f.name || f.filename || "-",
+        Type: f.type || (f.isDirectory ? "directory" : "file"),
+        Size: f.size !== undefined ? formatBytes(f.size) : "-"
+      })));
+    } catch (err) {
+      fail(err.message);
+    }
+  });
+  cmd.command("exists").description("Check if a file exists").requiredOption("--path <path>", "File path to check").option("--agent-url <url>", "Agent URL", DEFAULT_AGENT_URL).action(async (options) => {
+    try {
+      const url = getAgentUrl(options);
+      const result = await apiPost(url, "/api/files/exists", {
+        path: options.path
+      });
+      if (result?.exists) {
+        success(`File exists: ${options.path}`);
+      } else {
+        info(`File does not exist: ${options.path}`);
+      }
+    } catch (err) {
+      fail(err.message);
+    }
+  });
+  cmd.command("delete").description("Delete a file").requiredOption("--path <path>", "File path to delete").option("--agent-url <url>", "Agent URL", DEFAULT_AGENT_URL).action(async (options) => {
+    try {
+      const url = getAgentUrl(options);
+      await apiPost(url, "/api/files/delete", {
+        path: options.path
+      });
+      success(`File deleted: ${options.path}`);
+    } catch (err) {
+      fail(err.message);
+    }
+  });
+  cmd.command("readme").description("Read the README file from a directory").requiredOption("--path <path>", "Directory path").option("--agent-url <url>", "Agent URL", DEFAULT_AGENT_URL).action(async (options) => {
+    try {
+      const url = getAgentUrl(options);
+      const result = await apiPost(url, "/api/files/readme", {
+        path: options.path
+      });
+      if (result?.content) {
+        console.log(result.content);
+      } else {
+        info("No README found in the specified directory.");
+      }
+    } catch (err) {
+      fail(err.message);
+    }
+  });
+}
+
+// src/plugins/file/commands.ts
+function registerCommands(program, _hostServices) {
+  register(program);
+}
+
+// src/plugins/file/index.ts
+var vibePlugin = {
+  name: "file",
+  version: "2.2.0",
+  description: "File system operations with security checks",
+  tags: ["backend", "cli"],
+  cliCommand: "file",
+  apiPrefix: "/api/files",
+  createRoutes: (deps) => createRoutes(deps),
+  onCliSetup: async (program, hostServices) => {
+    registerCommands(program, hostServices);
+  }
+};
+export {
+  vibePlugin
+};
+
+//# debugId=EBEB983AE70EABB664756E2164756E21
+//# sourceMappingURL=index-npmvh1x9.js.map

package/dist/index-npmvh1x9.js.map

@@ -0,0 +1,13 @@
+{
+  "version": 3,
+  "sources": ["../src/plugins/file/routes.ts", "../src/cli/commands/file.cmd.ts", "../src/plugins/file/commands.ts", "../src/plugins/file/index.ts"],
+  "sourcesContent": [
+    "/**\n * File Plugin — Routes\n *\n * File system operations with security checks (path traversal, sensitive file blocking).\n *\n * Endpoints:\n *   POST /read    — Read file content\n *   POST /write   — Write file content\n *   POST /list    — List directory contents\n *   POST /exists  — Check if path exists\n *   POST /delete  — Delete file or directory\n *   POST /readme  — Read README file from a project\n */\n\nimport { Elysia, t } from \"elysia\";\nimport { promises as fs } from \"node:fs\";\nimport nodePath from \"node:path\";\nimport type { PluginRouteDeps } from \"../../core/types.js\";\n\n// ── Security Helpers ────────────────────────────────────────────────────\n\nconst SENSITIVE_PATTERNS = [\n  /\\.env$/,\n  /\\.pem$/,\n  /\\.key$/,\n  /id_rsa/,\n  /\\.ssh\\//,\n  /\\.git\\/config$/,\n  /\\.npmrc$/,\n];\n\nconst PROTECTED_PATHS = [\"/\", \"/etc\", \"/usr\", \"/bin\", \"/sbin\", \"/var\", \"/opt\"];\n\nfunction validatePath(filePath: string): {\n  valid: boolean;\n  normalized: string;\n  error?: string;\n} {\n  const normalized = nodePath.normalize(filePath);\n\n  if (normalized.includes(\"..\")) {\n    return {\n      valid: false,\n      normalized,\n      error: \"Directory traversal not allowed\",\n    };\n  }\n\n  return { valid: true, normalized };\n}\n\nfunction isSensitiveFile(filePath: string): boolean {\n  return SENSITIVE_PATTERNS.some((p) => p.test(filePath));\n}\n\nfunction isProtectedPath(filePath: string): boolean {\n  return (\n    PROTECTED_PATHS.includes(filePath) ||\n    PROTECTED_PATHS.some((p) => filePath.startsWith(p + \"/\"))\n  );\n}\n\n// ── Routes ──────────────────────────────────────────────────────────────\n\nexport function createRoutes(_deps: PluginRouteDeps) {\n  return (\n    new Elysia()\n      // Read file\n      .post(\n        \"/read\",\n        async ({ body, set }) => {\n          const { valid, normalized, error } = validatePath(body.path);\n          if (!valid) {\n            set.status = 403;\n            return { error };\n          }\n\n          if (isSensitiveFile(normalized)) {\n            set.status = 403;\n            return { error: \"Access to sensitive files not allowed\" };\n          }\n\n          try {\n            const content = await fs.readFile(normalized, \"utf-8\");\n            return { content, path: normalized, size: content.length };\n          } catch (err) {\n            const nodeErr = err as NodeJS.ErrnoException;\n            if (nodeErr.code === \"ENOENT\") {\n              set.status = 404;\n              return { error: \"File not found\" };\n            }\n            if (nodeErr.code === \"EACCES\") {\n              set.status = 403;\n              return { error: \"Permission denied\" };\n            }\n            set.status = 500;\n            return { error: \"Failed to read file\", details: String(err) };\n          }\n        },\n        {\n          body: t.Object({\n            path: t.String(),\n            projectId: t.Optional(t.String()),\n          }),\n        },\n      )\n\n      // Write file\n      .post(\n        \"/write\",\n        async ({ body, set }) => {\n          const { valid, normalized, error } = validatePath(body.path);\n          if (!valid) {\n            set.status = 403;\n            return { error };\n          }\n\n          try {\n            const dir = nodePath.dirname(normalized);\n            await fs.mkdir(dir, { recursive: true });\n            await fs.writeFile(normalized, body.content, \"utf-8\");\n            const stats = await fs.stat(normalized);\n            return { success: true, path: normalized, size: stats.size };\n          } catch (err) {\n            const nodeErr = err as NodeJS.ErrnoException;\n            if (nodeErr.code === \"EACCES\") {\n              set.status = 403;\n              return { error: \"Permission denied\" };\n            }\n            set.status = 500;\n            return { error: \"Failed to write file\", details: String(err) };\n          }\n        },\n        {\n          body: t.Object({\n            path: t.String(),\n            content: t.String(),\n            projectId: t.Optional(t.String()),\n          }),\n        },\n      )\n\n      // List directory\n      .post(\n        \"/list\",\n        async ({ body, set }) => {\n          const { valid, normalized, error } = validatePath(body.path);\n          if (!valid) {\n            set.status = 403;\n            return { error };\n          }\n\n          try {\n            const entries = await fs.readdir(normalized, {\n              withFileTypes: true,\n            });\n\n            const files = await Promise.all(\n              entries.map(async (entry) => {\n                const fullPath = nodePath.join(normalized, entry.name);\n                let stats;\n                try {\n                  stats = await fs.stat(fullPath);\n                } catch {\n                  stats = null;\n                }\n\n                return {\n                  name: entry.name,\n                  path: fullPath,\n                  type: entry.isDirectory()\n                    ? \"directory\"\n                    : entry.isFile()\n                      ? \"file\"\n                      : entry.isSymbolicLink()\n                        ? \"symlink\"\n                        : \"other\",\n                  size: stats?.size || 0,\n                  modified: stats?.mtime || null,\n                  permissions: stats?.mode || null,\n                };\n              }),\n            );\n\n            // Sort: directories first, then files alphabetically\n            files.sort((a, b) => {\n              if (a.type === \"directory\" && b.type !== \"directory\") return -1;\n              if (a.type !== \"directory\" && b.type === \"directory\") return 1;\n              return a.name.localeCompare(b.name);\n            });\n\n            return { path: normalized, files, count: files.length };\n          } catch (err) {\n            const nodeErr = err as NodeJS.ErrnoException;\n            if (nodeErr.code === \"ENOENT\") {\n              set.status = 404;\n              return { error: \"Directory not found\" };\n            }\n            if (nodeErr.code === \"ENOTDIR\") {\n              set.status = 400;\n              return { error: \"Path is not a directory\" };\n            }\n            if (nodeErr.code === \"EACCES\") {\n              set.status = 403;\n              return { error: \"Permission denied\" };\n            }\n            set.status = 500;\n            return { error: \"Failed to list directory\", details: String(err) };\n          }\n        },\n        {\n          body: t.Object({\n            path: t.String(),\n            projectId: t.Optional(t.String()),\n          }),\n        },\n      )\n\n      // Check if path exists\n      .post(\n        \"/exists\",\n        async ({ body, set }) => {\n          const { valid, normalized, error } = validatePath(body.path);\n          if (!valid) {\n            set.status = 403;\n            return { error };\n          }\n\n          try {\n            const stats = await fs.stat(normalized);\n            return {\n              exists: true,\n              path: normalized,\n              type: stats.isDirectory()\n                ? \"directory\"\n                : stats.isFile()\n                  ? \"file\"\n                  : \"other\",\n              size: stats.size,\n              modified: stats.mtime,\n            };\n          } catch (err) {\n            const nodeErr = err as NodeJS.ErrnoException;\n            if (nodeErr.code === \"ENOENT\") {\n              return { exists: false, path: normalized };\n            }\n            set.status = 500;\n            return { error: \"Failed to check path\", details: String(err) };\n          }\n        },\n        {\n          body: t.Object({\n            path: t.String(),\n          }),\n        },\n      )\n\n      // Delete file or directory\n      .post(\n        \"/delete\",\n        async ({ body, set }) => {\n          const { valid, normalized, error } = validatePath(body.path);\n          if (!valid) {\n            set.status = 403;\n            return { error };\n          }\n\n          if (isProtectedPath(normalized)) {\n            set.status = 403;\n            return { error: \"Cannot delete system directories\" };\n          }\n\n          try {\n            const stats = await fs.stat(normalized);\n            if (stats.isDirectory()) {\n              await fs.rm(normalized, { recursive: true, force: true });\n            } else {\n              await fs.unlink(normalized);\n            }\n            return {\n              success: true,\n              path: normalized,\n            };\n          } catch (err) {\n            const nodeErr = err as NodeJS.ErrnoException;\n            if (nodeErr.code === \"ENOENT\") {\n              set.status = 404;\n              return { error: \"Path not found\" };\n            }\n            if (nodeErr.code === \"EACCES\") {\n              set.status = 403;\n              return { error: \"Permission denied\" };\n            }\n            set.status = 500;\n            return { error: \"Failed to delete path\", details: String(err) };\n          }\n        },\n        {\n          body: t.Object({\n            path: t.String(),\n          }),\n        },\n      )\n\n      // Read README file\n      .post(\n        \"/readme\",\n        async ({ body, set }) => {\n          const { valid, normalized, error } = validatePath(body.path);\n          if (!valid) {\n            set.status = 403;\n            return { error };\n          }\n\n          const readmeVariants = [\n            \"README.md\",\n            \"readme.md\",\n            \"README.MD\",\n            \"README\",\n            \"readme\",\n            \"README.txt\",\n            \"readme.txt\",\n            \"README.rst\",\n            \"readme.rst\",\n          ];\n\n          for (const variant of readmeVariants) {\n            try {\n              const readmePath = nodePath.join(normalized, variant);\n              const content = await fs.readFile(readmePath, \"utf-8\");\n              return {\n                content,\n                path: readmePath,\n                variant,\n                size: content.length,\n              };\n            } catch {\n              /* next variant */\n            }\n          }\n\n          set.status = 404;\n          return { error: \"No README file found\" };\n        },\n        {\n          body: t.Object({\n            path: t.String(),\n          }),\n        },\n      )\n  );\n}\n",
+    "import { Command } from \"commander\";\nimport {\n  getAgentUrl,\n  apiPost,\n  fail,\n  success,\n  info,\n  header,\n  kv,\n  blank,\n  formatTable,\n  formatBytes,\n} from \"../utils/index.js\";\n\nconst DEFAULT_AGENT_URL = \"http://localhost:3005\";\n\nexport function register(program: Command): void {\n  const cmd = program\n    .command(\"file\")\n    .description(\"File system operations via agent\");\n\n  // file read\n  cmd\n    .command(\"read\")\n    .description(\"Read a file\")\n    .requiredOption(\"--path <path>\", \"File path to read\")\n    .option(\"--agent-url <url>\", \"Agent URL\", DEFAULT_AGENT_URL)\n    .action(async (options) => {\n      try {\n        const url = getAgentUrl(options);\n        const result = await apiPost<any>(url, \"/api/files/read\", {\n          path: options.path,\n        });\n        if (result?.content !== undefined) {\n          console.log(result.content);\n        } else {\n          info(\"File is empty or has no content.\");\n        }\n      } catch (err: any) {\n        fail(err.message);\n      }\n    });\n\n  // file write\n  cmd\n    .command(\"write\")\n    .description(\"Write content to a file\")\n    .requiredOption(\"--path <path>\", \"File path to write\")\n    .requiredOption(\"--content <content>\", \"Content to write\")\n    .option(\"--agent-url <url>\", \"Agent URL\", DEFAULT_AGENT_URL)\n    .action(async (options) => {\n      try {\n        const url = getAgentUrl(options);\n        await apiPost<any>(url, \"/api/files/write\", {\n          path: options.path,\n          content: options.content,\n        });\n        success(`File written: ${options.path}`);\n      } catch (err: any) {\n        fail(err.message);\n      }\n    });\n\n  // file list\n  cmd\n    .command(\"list\")\n    .description(\"List files in a directory\")\n    .requiredOption(\"--path <path>\", \"Directory path\")\n    .option(\"--agent-url <url>\", \"Agent URL\", DEFAULT_AGENT_URL)\n    .action(async (options) => {\n      try {\n        const url = getAgentUrl(options);\n        const result = await apiPost<any>(url, \"/api/files/list\", {\n          path: options.path,\n        });\n        const files = result?.files || result;\n        if (!files || (Array.isArray(files) && files.length === 0)) {\n          info(\"Directory is empty.\");\n          return;\n        }\n        header(`Files in ${options.path}`);\n        formatTable(\n          (Array.isArray(files) ? files : []).map((f: any) => ({\n            Name: f.name || f.filename || \"-\",\n            Type: f.type || (f.isDirectory ? \"directory\" : \"file\"),\n            Size: f.size !== undefined ? formatBytes(f.size) : \"-\",\n          })),\n        );\n      } catch (err: any) {\n        fail(err.message);\n      }\n    });\n\n  // file exists\n  cmd\n    .command(\"exists\")\n    .description(\"Check if a file exists\")\n    .requiredOption(\"--path <path>\", \"File path to check\")\n    .option(\"--agent-url <url>\", \"Agent URL\", DEFAULT_AGENT_URL)\n    .action(async (options) => {\n      try {\n        const url = getAgentUrl(options);\n        const result = await apiPost<any>(url, \"/api/files/exists\", {\n          path: options.path,\n        });\n        if (result?.exists) {\n          success(`File exists: ${options.path}`);\n        } else {\n          info(`File does not exist: ${options.path}`);\n        }\n      } catch (err: any) {\n        fail(err.message);\n      }\n    });\n\n  // file delete\n  cmd\n    .command(\"delete\")\n    .description(\"Delete a file\")\n    .requiredOption(\"--path <path>\", \"File path to delete\")\n    .option(\"--agent-url <url>\", \"Agent URL\", DEFAULT_AGENT_URL)\n    .action(async (options) => {\n      try {\n        const url = getAgentUrl(options);\n        await apiPost<any>(url, \"/api/files/delete\", {\n          path: options.path,\n        });\n        success(`File deleted: ${options.path}`);\n      } catch (err: any) {\n        fail(err.message);\n      }\n    });\n\n  // file readme\n  cmd\n    .command(\"readme\")\n    .description(\"Read the README file from a directory\")\n    .requiredOption(\"--path <path>\", \"Directory path\")\n    .option(\"--agent-url <url>\", \"Agent URL\", DEFAULT_AGENT_URL)\n    .action(async (options) => {\n      try {\n        const url = getAgentUrl(options);\n        const result = await apiPost<any>(url, \"/api/files/readme\", {\n          path: options.path,\n        });\n        if (result?.content) {\n          console.log(result.content);\n        } else {\n          info(\"No README found in the specified directory.\");\n        }\n      } catch (err: any) {\n        fail(err.message);\n      }\n    });\n}\n",
+    "import type { Command } from \"commander\";\nimport type { HostServices } from \"../../core/plugin-system.js\";\nimport { register as registerFile } from \"../../cli/commands/file.cmd.js\";\n\nexport function registerCommands(\n  program: Command,\n  _hostServices: HostServices,\n): void {\n  registerFile(program);\n}\n",
+    "import type { VibePlugin } from \"../../core/plugin-system.js\";\nimport type { PluginRouteDeps } from \"../../core/types.js\";\nimport { createRoutes } from \"./routes.js\";\nimport { registerCommands } from \"./commands.js\";\n\nexport const vibePlugin: VibePlugin = {\n  name: \"file\",\n  version: \"2.2.0\",\n  description: \"File system operations with security checks\",\n  tags: [\"backend\", \"cli\"],\n  cliCommand: \"file\",\n  apiPrefix: \"/api/files\",\n  createRoutes: (deps: PluginRouteDeps) => createRoutes(deps),\n  onCliSetup: async (program, hostServices) => {\n    registerCommands(program, hostServices);\n  },\n};\n"
+  ],
+  "mappings": ";;;;;;;;;;;;;;;;;;AAeA,qBAAS;AACT;AAKA,IAAM,qBAAqB;AAAA,EACzB;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF;AAEA,IAAM,kBAAkB,CAAC,KAAK,QAAQ,QAAQ,QAAQ,SAAS,QAAQ,MAAM;AAE7E,SAAS,YAAY,CAAC,UAIpB;AAAA,EACA,MAAM,aAAa,SAAS,UAAU,QAAQ;AAAA,EAE9C,IAAI,WAAW,SAAS,IAAI,GAAG;AAAA,IAC7B,OAAO;AAAA,MACL,OAAO;AAAA,MACP;AAAA,MACA,OAAO;AAAA,IACT;AAAA,EACF;AAAA,EAEA,OAAO,EAAE,OAAO,MAAM,WAAW;AAAA;AAGnC,SAAS,eAAe,CAAC,UAA2B;AAAA,EAClD,OAAO,mBAAmB,KAAK,CAAC,MAAM,EAAE,KAAK,QAAQ,CAAC;AAAA;AAGxD,SAAS,eAAe,CAAC,UAA2B;AAAA,EAClD,OACE,gBAAgB,SAAS,QAAQ,KACjC,gBAAgB,KAAK,CAAC,MAAM,SAAS,WAAW,IAAI,GAAG,CAAC;AAAA;AAMrD,SAAS,YAAY,CAAC,OAAwB;AAAA,EACnD,OACE,IAAI,OAAO,EAER,KACC,SACA,SAAS,MAAM,UAAU;AAAA,IACvB,QAAQ,OAAO,YAAY,UAAU,aAAa,KAAK,IAAI;AAAA,IAC3D,IAAI,CAAC,OAAO;AAAA,MACV,IAAI,SAAS;AAAA,MACb,OAAO,EAAE,MAAM;AAAA,IACjB;AAAA,IAEA,IAAI,gBAAgB,UAAU,GAAG;AAAA,MAC/B,IAAI,SAAS;AAAA,MACb,OAAO,EAAE,OAAO,wCAAwC;AAAA,IAC1D;AAAA,IAEA,IAAI;AAAA,MACF,MAAM,UAAU,MAAM,GAAG,SAAS,YAAY,OAAO;AAAA,MACrD,OAAO,EAAE,SAAS,MAAM,YAAY,MAAM,QAAQ,OAAO;AAAA,MACzD,OAAO,KAAK;AAAA,MACZ,MAAM,UAAU;AAAA,MAChB,IAAI,QAAQ,SAAS,UAAU;AAAA,QAC7B,IAAI,SAAS;AAAA,QACb,OAAO,EAAE,OAAO,iBAAiB;AAAA,MACnC;AAAA,MACA,IAAI,QAAQ,SAAS,UAAU;AAAA,QAC7B,IAAI,SAAS;AAAA,QACb,OAAO,EAAE,OAAO,oBAAoB;AAAA,MACtC;AAAA,MACA,IAAI,SAAS;AAAA,MACb,OAAO,EAAE,OAAO,uBAAuB,SAAS,OAAO,GAAG,EAAE;AAAA;AAAA,KAGhE;AAAA,IACE,MAAM,EAAE,OAAO;AAAA,MACb,MAAM,EAAE,OAAO;AAAA,MACf,WAAW,EAAE,SAAS,EAAE,OAAO,CAAC;AAAA,IAClC,CAAC;AAAA,EACH,CACF,EAGC,KACC,UACA,SAAS,MAAM,UAAU;AAAA,IACvB,QAAQ,OAAO,YAAY,UAAU,aAAa,KAAK,IAAI;AAAA,IAC3D,IAAI,CAAC,OAAO;AAAA,MACV,IAAI,SAAS;AAAA,MACb,OAAO,EAAE,MAAM;AAAA,IACjB;AAAA,IAEA,IAAI;AAAA,MACF,MAAM,MAAM,SAAS,QAAQ,UAAU;AAAA,MACvC,MAAM,GAAG,MAAM,KAAK,EAAE,WAAW,KAAK,CAAC;AAAA,MACvC,MAAM,GAAG,UAAU,YAAY,KAAK,SAAS,OAAO;AAAA,MACpD,MAAM,QAAQ,MAAM,GAAG,KAAK,UAAU;AAAA,MACtC,OAAO,EAAE,SAAS,MAAM,MAAM,YAAY,MAAM,MAAM,KAAK;AAAA,MAC3D,OAAO,KAAK;AAAA,MACZ,MAAM,UAAU;AAAA,MAChB,IAAI,QAAQ,SAAS,UAAU;AAAA,QAC7B,IAAI,SAAS;AAAA,QACb,OAAO,EAAE,OAAO,oBAAoB;AAAA,MACtC;AAAA,MACA,IAAI,SAAS;AAAA,MACb,OAAO,EAAE,OAAO,wBAAwB,SAAS,OAAO,GAAG,EAAE;AAAA;AAAA,KAGjE;AAAA,IACE,MAAM,EAAE,OAAO;AAAA,MACb,MAAM,EAAE,OAAO;AAAA,MACf,SAAS,EAAE,OAAO;AAAA,MAClB,WAAW,EAAE,SAAS,EAAE,OAAO,CAAC;AAAA,IAClC,CAAC;AAAA,EACH,CACF,EAGC,KACC,SACA,SAAS,MAAM,UAAU;AAAA,IACvB,QAAQ,OAAO,YAAY,UAAU,aAAa,KAAK,IAAI;AAAA,IAC3D,IAAI,CAAC,OAAO;AAAA,MACV,IAAI,SAAS;AAAA,MACb,OAAO,EAAE,MAAM;AAAA,IACjB;AAAA,IAEA,IAAI;AAAA,MACF,MAAM,UAAU,MAAM,GAAG,QAAQ,YAAY;AAAA,QAC3C,eAAe;AAAA,MACjB,CAAC;AAAA,MAED,MAAM,QAAQ,MAAM,QAAQ,IAC1B,QAAQ,IAAI,OAAO,UAAU;AAAA,QAC3B,MAAM,WAAW,SAAS,KAAK,YAAY,MAAM,IAAI;AAAA,QACrD,IAAI;AAAA,QACJ,IAAI;AAAA,UACF,QAAQ,MAAM,GAAG,KAAK,QAAQ;AAAA,UAC9B,MAAM;AAAA,UACN,QAAQ;AAAA;AAAA,QAGV,OAAO;AAAA,UACL,MAAM,MAAM;AAAA,UACZ,MAAM;AAAA,UACN,MAAM,MAAM,YAAY,IACpB,cACA,MAAM,OAAO,IACX,SACA,MAAM,eAAe,IACnB,YACA;AAAA,UACR,MAAM,OAAO,QAAQ;AAAA,UACrB,UAAU,OAAO,SAAS;AAAA,UAC1B,aAAa,OAAO,QAAQ;AAAA,QAC9B;AAAA,OACD,CACH;AAAA,MAGA,MAAM,KAAK,CAAC,GAAG,MAAM;AAAA,QACnB,IAAI,EAAE,SAAS,eAAe,EAAE,SAAS;AAAA,UAAa,OAAO;AAAA,QAC7D,IAAI,EAAE,SAAS,eAAe,EAAE,SAAS;AAAA,UAAa,OAAO;AAAA,QAC7D,OAAO,EAAE,KAAK,cAAc,EAAE,IAAI;AAAA,OACnC;AAAA,MAED,OAAO,EAAE,MAAM,YAAY,OAAO,OAAO,MAAM,OAAO;AAAA,MACtD,OAAO,KAAK;AAAA,MACZ,MAAM,UAAU;AAAA,MAChB,IAAI,QAAQ,SAAS,UAAU;AAAA,QAC7B,IAAI,SAAS;AAAA,QACb,OAAO,EAAE,OAAO,sBAAsB;AAAA,MACxC;AAAA,MACA,IAAI,QAAQ,SAAS,WAAW;AAAA,QAC9B,IAAI,SAAS;AAAA,QACb,OAAO,EAAE,OAAO,0BAA0B;AAAA,MAC5C;AAAA,MACA,IAAI,QAAQ,SAAS,UAAU;AAAA,QAC7B,IAAI,SAAS;AAAA,QACb,OAAO,EAAE,OAAO,oBAAoB;AAAA,MACtC;AAAA,MACA,IAAI,SAAS;AAAA,MACb,OAAO,EAAE,OAAO,4BAA4B,SAAS,OAAO,GAAG,EAAE;AAAA;AAAA,KAGrE;AAAA,IACE,MAAM,EAAE,OAAO;AAAA,MACb,MAAM,EAAE,OAAO;AAAA,MACf,WAAW,EAAE,SAAS,EAAE,OAAO,CAAC;AAAA,IAClC,CAAC;AAAA,EACH,CACF,EAGC,KACC,WACA,SAAS,MAAM,UAAU;AAAA,IACvB,QAAQ,OAAO,YAAY,UAAU,aAAa,KAAK,IAAI;AAAA,IAC3D,IAAI,CAAC,OAAO;AAAA,MACV,IAAI,SAAS;AAAA,MACb,OAAO,EAAE,MAAM;AAAA,IACjB;AAAA,IAEA,IAAI;AAAA,MACF,MAAM,QAAQ,MAAM,GAAG,KAAK,UAAU;AAAA,MACtC,OAAO;AAAA,QACL,QAAQ;AAAA,QACR,MAAM;AAAA,QACN,MAAM,MAAM,YAAY,IACpB,cACA,MAAM,OAAO,IACX,SACA;AAAA,QACN,MAAM,MAAM;AAAA,QACZ,UAAU,MAAM;AAAA,MAClB;AAAA,MACA,OAAO,KAAK;AAAA,MACZ,MAAM,UAAU;AAAA,MAChB,IAAI,QAAQ,SAAS,UAAU;AAAA,QAC7B,OAAO,EAAE,QAAQ,OAAO,MAAM,WAAW;AAAA,MAC3C;AAAA,MACA,IAAI,SAAS;AAAA,MACb,OAAO,EAAE,OAAO,wBAAwB,SAAS,OAAO,GAAG,EAAE;AAAA;AAAA,KAGjE;AAAA,IACE,MAAM,EAAE,OAAO;AAAA,MACb,MAAM,EAAE,OAAO;AAAA,IACjB,CAAC;AAAA,EACH,CACF,EAGC,KACC,WACA,SAAS,MAAM,UAAU;AAAA,IACvB,QAAQ,OAAO,YAAY,UAAU,aAAa,KAAK,IAAI;AAAA,IAC3D,IAAI,CAAC,OAAO;AAAA,MACV,IAAI,SAAS;AAAA,MACb,OAAO,EAAE,MAAM;AAAA,IACjB;AAAA,IAEA,IAAI,gBAAgB,UAAU,GAAG;AAAA,MAC/B,IAAI,SAAS;AAAA,MACb,OAAO,EAAE,OAAO,mCAAmC;AAAA,IACrD;AAAA,IAEA,IAAI;AAAA,MACF,MAAM,QAAQ,MAAM,GAAG,KAAK,UAAU;AAAA,MACtC,IAAI,MAAM,YAAY,GAAG;AAAA,QACvB,MAAM,GAAG,GAAG,YAAY,EAAE,WAAW,MAAM,OAAO,KAAK,CAAC;AAAA,MAC1D,EAAO;AAAA,QACL,MAAM,GAAG,OAAO,UAAU;AAAA;AAAA,MAE5B,OAAO;AAAA,QACL,SAAS;AAAA,QACT,MAAM;AAAA,MACR;AAAA,MACA,OAAO,KAAK;AAAA,MACZ,MAAM,UAAU;AAAA,MAChB,IAAI,QAAQ,SAAS,UAAU;AAAA,QAC7B,IAAI,SAAS;AAAA,QACb,OAAO,EAAE,OAAO,iBAAiB;AAAA,MACnC;AAAA,MACA,IAAI,QAAQ,SAAS,UAAU;AAAA,QAC7B,IAAI,SAAS;AAAA,QACb,OAAO,EAAE,OAAO,oBAAoB;AAAA,MACtC;AAAA,MACA,IAAI,SAAS;AAAA,MACb,OAAO,EAAE,OAAO,yBAAyB,SAAS,OAAO,GAAG,EAAE;AAAA;AAAA,KAGlE;AAAA,IACE,MAAM,EAAE,OAAO;AAAA,MACb,MAAM,EAAE,OAAO;AAAA,IACjB,CAAC;AAAA,EACH,CACF,EAGC,KACC,WACA,SAAS,MAAM,UAAU;AAAA,IACvB,QAAQ,OAAO,YAAY,UAAU,aAAa,KAAK,IAAI;AAAA,IAC3D,IAAI,CAAC,OAAO;AAAA,MACV,IAAI,SAAS;AAAA,MACb,OAAO,EAAE,MAAM;AAAA,IACjB;AAAA,IAEA,MAAM,iBAAiB;AAAA,MACrB;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,IACF;AAAA,IAEA,WAAW,WAAW,gBAAgB;AAAA,MACpC,IAAI;AAAA,QACF,MAAM,aAAa,SAAS,KAAK,YAAY,OAAO;AAAA,QACpD,MAAM,UAAU,MAAM,GAAG,SAAS,YAAY,OAAO;AAAA,QACrD,OAAO;AAAA,UACL;AAAA,UACA,MAAM;AAAA,UACN;AAAA,UACA,MAAM,QAAQ;AAAA,QAChB;AAAA,QACA,MAAM;AAAA,IAGV;AAAA,IAEA,IAAI,SAAS;AAAA,IACb,OAAO,EAAE,OAAO,uBAAuB;AAAA,KAEzC;AAAA,IACE,MAAM,EAAE,OAAO;AAAA,MACb,MAAM,EAAE,OAAO;AAAA,IACjB,CAAC;AAAA,EACH,CACF;AAAA;;;AC/UN,IAAM,oBAAoB;AAEnB,SAAS,QAAQ,CAAC,SAAwB;AAAA,EAC/C,MAAM,MAAM,QACT,QAAQ,MAAM,EACd,YAAY,kCAAkC;AAAA,EAGjD,IACG,QAAQ,MAAM,EACd,YAAY,aAAa,EACzB,eAAe,iBAAiB,mBAAmB,EACnD,OAAO,qBAAqB,aAAa,iBAAiB,EAC1D,OAAO,OAAO,YAAY;AAAA,IACzB,IAAI;AAAA,MACF,MAAM,MAAM,YAAY,OAAO;AAAA,MAC/B,MAAM,SAAS,MAAM,QAAa,KAAK,mBAAmB;AAAA,QACxD,MAAM,QAAQ;AAAA,MAChB,CAAC;AAAA,MACD,IAAI,QAAQ,YAAY,WAAW;AAAA,QACjC,QAAQ,IAAI,OAAO,OAAO;AAAA,MAC5B,EAAO;AAAA,QACL,KAAK,kCAAkC;AAAA;AAAA,MAEzC,OAAO,KAAU;AAAA,MACjB,KAAK,IAAI,OAAO;AAAA;AAAA,GAEnB;AAAA,EAGH,IACG,QAAQ,OAAO,EACf,YAAY,yBAAyB,EACrC,eAAe,iBAAiB,oBAAoB,EACpD,eAAe,uBAAuB,kBAAkB,EACxD,OAAO,qBAAqB,aAAa,iBAAiB,EAC1D,OAAO,OAAO,YAAY;AAAA,IACzB,IAAI;AAAA,MACF,MAAM,MAAM,YAAY,OAAO;AAAA,MAC/B,MAAM,QAAa,KAAK,oBAAoB;AAAA,QAC1C,MAAM,QAAQ;AAAA,QACd,SAAS,QAAQ;AAAA,MACnB,CAAC;AAAA,MACD,QAAQ,iBAAiB,QAAQ,MAAM;AAAA,MACvC,OAAO,KAAU;AAAA,MACjB,KAAK,IAAI,OAAO;AAAA;AAAA,GAEnB;AAAA,EAGH,IACG,QAAQ,MAAM,EACd,YAAY,2BAA2B,EACvC,eAAe,iBAAiB,gBAAgB,EAChD,OAAO,qBAAqB,aAAa,iBAAiB,EAC1D,OAAO,OAAO,YAAY;AAAA,IACzB,IAAI;AAAA,MACF,MAAM,MAAM,YAAY,OAAO;AAAA,MAC/B,MAAM,SAAS,MAAM,QAAa,KAAK,mBAAmB;AAAA,QACxD,MAAM,QAAQ;AAAA,MAChB,CAAC;AAAA,MACD,MAAM,QAAQ,QAAQ,SAAS;AAAA,MAC/B,IAAI,CAAC,SAAU,MAAM,QAAQ,KAAK,KAAK,MAAM,WAAW,GAAI;AAAA,QAC1D,KAAK,qBAAqB;AAAA,QAC1B;AAAA,MACF;AAAA,MACA,OAAO,YAAY,QAAQ,MAAM;AAAA,MACjC,aACG,MAAM,QAAQ,KAAK,IAAI,QAAQ,CAAC,GAAG,IAAI,CAAC,OAAY;AAAA,QACnD,MAAM,EAAE,QAAQ,EAAE,YAAY;AAAA,QAC9B,MAAM,EAAE,SAAS,EAAE,cAAc,cAAc;AAAA,QAC/C,MAAM,EAAE,SAAS,YAAY,YAAY,EAAE,IAAI,IAAI;AAAA,MACrD,EAAE,CACJ;AAAA,MACA,OAAO,KAAU;AAAA,MACjB,KAAK,IAAI,OAAO;AAAA;AAAA,GAEnB;AAAA,EAGH,IACG,QAAQ,QAAQ,EAChB,YAAY,wBAAwB,EACpC,eAAe,iBAAiB,oBAAoB,EACpD,OAAO,qBAAqB,aAAa,iBAAiB,EAC1D,OAAO,OAAO,YAAY;AAAA,IACzB,IAAI;AAAA,MACF,MAAM,MAAM,YAAY,OAAO;AAAA,MAC/B,MAAM,SAAS,MAAM,QAAa,KAAK,qBAAqB;AAAA,QAC1D,MAAM,QAAQ;AAAA,MAChB,CAAC;AAAA,MACD,IAAI,QAAQ,QAAQ;AAAA,QAClB,QAAQ,gBAAgB,QAAQ,MAAM;AAAA,MACxC,EAAO;AAAA,QACL,KAAK,wBAAwB,QAAQ,MAAM;AAAA;AAAA,MAE7C,OAAO,KAAU;AAAA,MACjB,KAAK,IAAI,OAAO;AAAA;AAAA,GAEnB;AAAA,EAGH,IACG,QAAQ,QAAQ,EAChB,YAAY,eAAe,EAC3B,eAAe,iBAAiB,qBAAqB,EACrD,OAAO,qBAAqB,aAAa,iBAAiB,EAC1D,OAAO,OAAO,YAAY;AAAA,IACzB,IAAI;AAAA,MACF,MAAM,MAAM,YAAY,OAAO;AAAA,MAC/B,MAAM,QAAa,KAAK,qBAAqB;AAAA,QAC3C,MAAM,QAAQ;AAAA,MAChB,CAAC;AAAA,MACD,QAAQ,iBAAiB,QAAQ,MAAM;AAAA,MACvC,OAAO,KAAU;AAAA,MACjB,KAAK,IAAI,OAAO;AAAA;AAAA,GAEnB;AAAA,EAGH,IACG,QAAQ,QAAQ,EAChB,YAAY,uCAAuC,EACnD,eAAe,iBAAiB,gBAAgB,EAChD,OAAO,qBAAqB,aAAa,iBAAiB,EAC1D,OAAO,OAAO,YAAY;AAAA,IACzB,IAAI;AAAA,MACF,MAAM,MAAM,YAAY,OAAO;AAAA,MAC/B,MAAM,SAAS,MAAM,QAAa,KAAK,qBAAqB;AAAA,QAC1D,MAAM,QAAQ;AAAA,MAChB,CAAC;AAAA,MACD,IAAI,QAAQ,SAAS;AAAA,QACnB,QAAQ,IAAI,OAAO,OAAO;AAAA,MAC5B,EAAO;AAAA,QACL,KAAK,6CAA6C;AAAA;AAAA,MAEpD,OAAO,KAAU;AAAA,MACjB,KAAK,IAAI,OAAO;AAAA;AAAA,GAEnB;AAAA;;;ACrJE,SAAS,gBAAgB,CAC9B,SACA,eACM;AAAA,EACN,SAAa,OAAO;AAAA;;;ACHf,IAAM,aAAyB;AAAA,EACpC,MAAM;AAAA,EACN,SAAS;AAAA,EACT,aAAa;AAAA,EACb,MAAM,CAAC,WAAW,KAAK;AAAA,EACvB,YAAY;AAAA,EACZ,WAAW;AAAA,EACX,cAAc,CAAC,SAA0B,aAAa,IAAI;AAAA,EAC1D,YAAY,OAAO,SAAS,iBAAiB;AAAA,IAC3C,iBAAiB,SAAS,YAAY;AAAA;AAE1C;",
+  "debugId": "EBEB983AE70EABB664756E2164756E21",
+  "names": []
+}