@byfriends/sdk 0.3.1 → 0.3.2

package/dist/index.mjs

@@ -3,23 +3,23 @@ import { dirname as __cjsShimDirname } from 'node:path';
 const __filename = __cjsShimFileURLToPath(import.meta.url);
 const __dirname = __cjsShimDirname(__filename);
 import { createRequire } from "node:module";
-import * as fs$8 from "node:fs";
-import Vt, { appendFileSync, chmodSync, closeSync, constants, createReadStream, createWriteStream, existsSync, fsyncSync, mkdirSync, openSync, promises, readFileSync, renameSync, statSync, unlinkSync, writeSync } from "node:fs";
-import jn, { access, appendFile, chmod, copyFile, cp, lstat, mkdir, mkdtemp, open, readFile, readdir, rename, rm, stat, unlink, writeFile } from "node:fs/promises";
 import { createHash, randomBytes, randomUUID } from "node:crypto";
 import * as path$8 from "node:path";
 import path, { basename, dirname, isAbsolute, join, normalize, posix, relative, resolve, win32 } from "node:path";
-import I, { createWriteStream as createWriteStream$1 } from "fs";
+import I, { createWriteStream } from "fs";
 import Kr, { EventEmitter } from "events";
 import * as path$1$1 from "path";
 import $s, { dirname as dirname$1, parse } from "path";
 import { Buffer as Buffer$1 } from "buffer";
 import * as fs$9 from "fs/promises";
-import { writeFile as writeFile$1 } from "fs/promises";
+import { writeFile } from "fs/promises";
 import Ns, { PassThrough, Readable } from "node:stream";
 import { finished, pipeline as pipeline$1 } from "node:stream/promises";
 import * as ks from "zlib";
 import qr from "zlib";
+import * as fs$8 from "node:fs";
+import Vt, { appendFileSync, chmodSync, closeSync, constants, createReadStream, createWriteStream as createWriteStream$1, existsSync, fsyncSync, mkdirSync, openSync, promises, readFileSync, renameSync, statSync, unlinkSync, writeSync } from "node:fs";
+import jn, { access, appendFile, chmod, cp, lstat, mkdir, mkdtemp, open, readFile, readdir, rename, rm, stat, unlink, writeFile as writeFile$1 } from "node:fs/promises";
 import { z } from "zod";
 import * as posixPath from "node:path/posix";
 import * as win32Path from "node:path/win32";
@@ -10288,7 +10288,7 @@ var require_gaxios = /* @__PURE__ */ __commonJSMin(((exports) => {
 		}
 		static async #getFetch() {
 			const hasWindow = typeof window !== "undefined" && !!window;
-			this.#fetch ||= hasWindow ? window.fetch : (await import("./src-u7agTn5O.mjs")).default;
+			this.#fetch ||= hasWindow ? window.fetch : (await import("./src-Dedv0Wfs.mjs")).default;
 			return this.#fetch;
 		}
 		/**
@@ -36078,11 +36078,11 @@ var NodeDownloader = class {
 		if (params.downloadPath) {
 			const response = await downloadFile(params, apiClient);
 			if (response instanceof HttpResponse) {
-				const writer = createWriteStream$1(params.downloadPath);
+				const writer = createWriteStream(params.downloadPath);
 				Readable.fromWeb(response.responseInternal.body).pipe(writer);
 				await finished(writer);
 			} else try {
-				await writeFile$1(params.downloadPath, response, { encoding: "base64" });
+				await writeFile(params.downloadPath, response, { encoding: "base64" });
 			} catch (error) {
 				throw new Error(`Failed to write file to ${params.downloadPath}: ${error}`);
 			}
@@ -38110,7 +38110,7 @@ function normalizeOpenAICompatToolSchema(schema) {
 }
 function ensureOpenAICompatPropertyTypes(schema) {
 	const normalized = cloneJsonValue(schema);
-	if (!isRecord$6(normalized)) throw new Error("JSON Schema root must normalize to an object.");
+	if (!isRecord$5(normalized)) throw new Error("JSON Schema root must normalize to an object.");
 	recurseSchema(normalized);
 	return normalized;
 }
@@ -38171,7 +38171,7 @@ function resolveLocalJsonPointer(root, ref) {
 	let current = root;
 	for (const rawPart of ref.slice(2).split("/")) {
 		const part = unescapeJsonPointerPart(rawPart);
-		if (isRecord$6(current)) {
+		if (isRecord$5(current)) {
 			if (!hasOwn$1(current, part)) return { found: false };
 			current = current[part];
 		} else if (Array.isArray(current)) {
@@ -38193,20 +38193,20 @@ function parseJsonPointerArrayIndex(part) {
 	return Number(part);
 }
 function recurseSchema(node) {
-	if (!isRecord$6(node)) return;
+	if (!isRecord$5(node)) return;
 	visitChildSchemas(node, normalizeProperty);
 }
 function visitChildSchemas(node, visit) {
 	for (const { key, kind } of CHILD_SCHEMA_SLOTS) {
 		const value = node[key];
 		if (kind === "single") {
-			if (isRecord$6(value)) visit(value);
+			if (isRecord$5(value)) visit(value);
 		} else if (kind === "array") {
 			if (Array.isArray(value)) for (const item of value) visit(item);
 		} else if (kind === "map") {
-			if (isRecord$6(value)) for (const item of Object.values(value)) visit(item);
+			if (isRecord$5(value)) for (const item of Object.values(value)) visit(item);
 		} else if (kind === "schema-or-array") {
-			if (isRecord$6(value)) visit(value);
+			if (isRecord$5(value)) visit(value);
 			else if (Array.isArray(value)) for (const item of value) visit(item);
 		}
 	}
@@ -38218,7 +38218,7 @@ function childSchemaKeysForParentType(parentType) {
 	});
 }
 function normalizeProperty(node) {
-	if (!isRecord$6(node)) return;
+	if (!isRecord$5(node)) return;
 	if (!hasOwn$1(node, "type") && !hasAnyKey(node, TYPE_COMPLETION_SKIP_KEYS)) {
 		const enumValues = node["enum"];
 		if (Array.isArray(enumValues) && enumValues.length > 0) node["type"] = inferTypeFromValues(enumValues);
@@ -38282,14 +38282,14 @@ function hasAnyKey(obj, keys) {
 }
 function cloneJsonValue(value) {
 	if (Array.isArray(value)) return value.map((item) => cloneJsonValue(item));
-	if (isRecord$6(value)) {
+	if (isRecord$5(value)) {
 		const cloned = {};
 		for (const [key, child] of Object.entries(value)) cloned[key] = cloneJsonValue(child);
 		return cloned;
 	}
 	return value;
 }
-function isRecord$6(value) {
+function isRecord$5(value) {
 	return typeof value === "object" && value !== null && !Array.isArray(value);
 }
 function hasOwn$1(obj, key) {
@@ -54783,7 +54783,7 @@ function isAbortError(err) {
 	if (err instanceof Error) return err.name === "AbortError";
 	return false;
 }
-function errorMessage$3(err) {
+function errorMessage$2(err) {
 	if (err instanceof Error) return err.message;
 	return String(err);
 }
@@ -58027,7 +58027,7 @@ function parseSkillText(options) {
 		throw error;
 	}
 	const frontmatter = parsed.data ?? {};
-	if (!isRecord$5(frontmatter)) throw new SkillParseError(`Frontmatter in ${options.skillMdPath} must be a mapping at the top level`);
+	if (!isRecord$4(frontmatter)) throw new SkillParseError(`Frontmatter in ${options.skillMdPath} must be a mapping at the top level`);
 	const metadata = normalizeMetadata(frontmatter);
 	if (!isSupportedSkillType(metadata.type)) throw new UnsupportedSkillTypeError(metadata.type ?? String(frontmatter["type"]));
 	const name = nonEmptyString$3(metadata.name);
@@ -58140,7 +58140,7 @@ function tokenizeArgs(raw) {
 function nonEmptyString$3(value) {
 	return typeof value === "string" && value.trim() !== "" ? value.trim() : void 0;
 }
-function isRecord$5(value) {
+function isRecord$4(value) {
 	return typeof value === "object" && value !== null && !Array.isArray(value);
 }
 //#endregion
@@ -58148,14 +58148,36 @@ function isRecord$5(value) {
 var mcp_config_default = "---\nname: mcp-config\ndescription: Configure MCP servers and handle MCP OAuth login.\n---\n\n# Interactive MCP server configuration\n\nThe user invoked this skill through `/mcp-config` or `/skill:mcp-config`.\nEither they want to log into an MCP server that asked for OAuth, or they\nwant to edit the `mcp.json` that lists MCP servers. The work is small and\nlocal — handle it on this turn yourself, no agents or planning todos.\n\nPick the flow from the user's message and your tool list:\n\n- An `mcp__<server>__authenticate` tool is in your list, the user says\n  \"log in\" / \"auth\" / \"sign in\", they invoke `/mcp-config login\n  <server>`, or they quote a `needs-auth` status → **Login**.\n- Add / edit / remove / list of an `mcp.json` entry → **Config edit**.\n- Bare `/mcp-config` with no `authenticate` tool in your list →\n  **Config edit**. If there were a pending login, the authenticate tool\n  would be in your list.\n\n## Login\n\nEach MCP server in `needs-auth` exposes one `mcp__<server>__authenticate`\ntool. Call it for the server the user means — its own description owns\nthe OAuth UX (printing the URL, blocking on the callback, reconnecting on\nsuccess). Surface its output verbatim, including the authorization URL\nunchanged; the URL contains state and PKCE parameters that break if\nedited.\n\nIf the user named a server that has no authenticate tool, say so in one\nsentence and stop — do **not** fall into config edit. They're trying to\nlog in to a server that isn't currently waiting for login; quietly\nrewriting `mcp.json` would be the wrong fix. If multiple authenticate\ntools exist and the user didn't name one, ask which.\n\n## Config edit\n\nConfig lives in two files; on key collision the project file overrides\nthe user-global one:\n\n- User-global: `~/.byf/mcp.json` (or `$BYF_HOME/mcp.json` if\n  set). Use for servers you want everywhere.\n- Project-local: `<cwd>/.byf/mcp.json`. Mention once that stdio\n  entries spawn commands at session start, so this should only live in\n  trusted repos.\n\nBoth files wrap their entries the same way:\n\n```json\n{ \"mcpServers\": { \"<name>\": { /* entry */ } } }\n```\n\nA minimal stdio entry needs `command` (+ optional `args`, `env`, `cwd`).\nA minimal http entry needs `url`; add `bearerTokenEnvVar: \"ENV_NAME\"` for\nservers that authenticate with a static bearer token from the\nenvironment. Servers that use OAuth take no token field — the login flow\nabove handles them. `transport` is inferred from `command` vs `url`, so\nomit it. For less common fields (`enabled`, `startupTimeoutMs`,\n`toolTimeoutMs`, `enabledTools`, `disabledTools`, `headers`) the source of\ntruth is `McpServerStdioConfigSchema` / `McpServerHttpConfigSchema` in\n`packages/agent-core/src/config/schema.ts`.\n\nIf the user only wants to **see** what's configured, read both files,\nshow a merged view, and stop — no scope prompt, no write.\n\nFor changes, the flow is:\n\n1. **Pick a scope.** Infer it from the user's words when you can\n   (project / repo / this checkout / cwd → project; global / everywhere /\n   all projects → user-global). When the request is genuinely scope-less,\n   use one `AskUserQuestion` to ask user-global vs project-local, defaulting\n   to user-global. Use plain text for every other question — `AskUserQuestion`\n   is a poor fit for free-form input. If the user dismisses the scope\n   question, stop; you can't safely guess where they wanted the change.\n2. **Read and announce.** Read the target file (a missing or empty file\n   is fine; you'll create `{ \"mcpServers\": {} }`). If JSON parsing fails,\n   surface the error verbatim and stop — silently overwriting a broken\n   file could destroy work. Then show the user the target path, what's\n   currently in it, and the entry you're about to write or delete. This\n   is for transparency, not a confirmation gate — the Edit/Write\n   permission prompt is the real gate, and your message is what gives\n   the user context when that prompt appears. In yolo / afk modes there\n   is no prompt, which is those modes' explicit contract.\n3. **Write and tell them how to reload MCP servers.** Preserve unrelated\n   entries and the `mcpServers` wrapper. MCP servers load at session\n   start, so tell the user to start a new session (for example `/new`) or\n   restart BYF for the change to take effect.\n\n## Secrets\n\nDon't store secrets (tokens, keys, passwords) as literals in\n`mcp.json` — it's a plain config file on disk. http servers should use\n`bearerTokenEnvVar` to reference an env var instead; if a stdio entry\nmust inline one in `env`, warn the user before writing.\n";
 //#endregion
 //#region ../agent-core/src/skill/builtin/mcp-config.ts
-const PSEUDO_PATH = "builtin://mcp-config";
-const parsed = parseSkillText({
+const PSEUDO_PATH$1 = "builtin://mcp-config";
+const parsed$1 = parseSkillText({
 	skillMdPath: "/builtin/skills/mcp-config.md",
 	skillDirName: "mcp-config",
 	source: "builtin",
 	text: mcp_config_default
 });
 const MCP_CONFIG_SKILL = {
+	...parsed$1,
+	path: PSEUDO_PATH$1,
+	dir: PSEUDO_PATH$1,
+	metadata: {
+		...parsed$1.metadata,
+		type: parsed$1.metadata.type ?? "inline",
+		disableModelInvocation: true
+	}
+};
+//#endregion
+//#region ../agent-core/src/skill/builtin/update-config.md
+var update_config_default = "---\nname: update-config\ndescription: Audit and fix ~/.byf/config.toml — remove deprecated fields, migrate legacy settings, and flag semantic conflicts.\n---\n\n# Audit and fix config.toml\n\nThe user invoked this skill via `/update-config` or `/skill:update-config`.\nThe goal is to bring `~/.byf/config.toml` in line with the current BYF schema:\nremove deprecated fields, migrate legacy settings, and point out semantic\nconflicts that a deterministic linter cannot catch. The work is small and\nlocal — handle it on this turn yourself, no agents or planning todos.\n\n## Read the config\n\n1. **Resolve the path.** Default: `~/.byf/config.toml` (or\n   `$BYF_HOME/config.toml` if that env var is set). If the user passed a path\n   as an argument, use that instead.\n2. **Read the file.** If it does not exist, say so and stop — there is nothing\n   to update. If the TOML fails to parse, surface the parse error verbatim and\n   **stop** — do not overwrite a broken file, that could destroy the user's\n   work.\n3. **Never echo secrets.** `config.toml` stores `api_key` secret values, and\n   `oauth` references (a `{ storage, key }` handle that points at a\n   file/keyring entry — not the token itself). When you describe what you\n   found or plan to change, state only that a credential is present or\n   absent — never quote the `api_key` value itself, not even partially.\n\n## What to check for\n\nField-level validity (which keys exist, what types and enums are allowed) is\n**not** something to reproduce here. The single source of truth is\n`ByfConfigSchema` in `packages/agent-core/src/config/schema.ts` — read it when\nyou need to confirm whether a field is recognized and what values it accepts.\n\nThe checks below fall into three groups. Report findings from all three before\nmaking any change.\n\n### 1. Deprecated, renamed, and migrated fields\n\nThese are historical fields that the schema no longer accepts or has replaced.\nDelete them, except where the table says to rename or migrate:\n\n| Field | Action |\n|---|---|\n| `default_yolo` / `defaultYolo` (top-level) | Remove. Use `yolo` instead. |\n| `services.byf_search` | Remove. (Legacy service, superseded by `[services.web_search]`.) |\n| `services.byf_fetch` | Remove. Use `[services.fetch_url]` instead. |\n| `loop_control.max_steps_per_run` | **Rename** to `max_steps_per_turn`, preserving the value. First check whether `max_steps_per_turn` is already present: if so, the old key is a stale duplicate — just delete it; if not, write `max_steps_per_turn` with the old value, then delete `max_steps_per_run`. (The runtime auto-copies the value on read, but this skill edits the file directly and skips that roundtrip — so you must perform the rename yourself to avoid losing the limit.) |\n| `default_thinking` (top-level boolean) | Migrate — see below. |\n\n**`default_thinking` migration** (matches the runtime precedence in\n`byf-tui.ts`: a `[thinking]` block wins over `default_thinking`):\n\n- If `[thinking]` already has `mode` or `effort` set, `default_thinking` was\n  never effective — just remove it.\n- Otherwise migrate by value: `true` → write `[thinking]` with\n  `mode = \"on\"` and `effort = \"high\"`; `false` → `[thinking]` with\n  `mode = \"off\"`. Then remove `default_thinking`.\n\n> **Raw-passthrough blind spot.** Fields stripped by the schema (like\n> `byf_search`, `byf_fetch`) survive inside `config.raw` and get written back\n> on every read→write roundtrip, so they linger in the file even though they\n> have no effect. Deleting them here is the only way to clear them — that is\n> the core value of this skill.\n\n### 2. Semantic conflicts (the part a linter cannot enumerate)\n\nLook for cross-field problems that require understanding intent:\n\n- A provider with **both** `api_key` and `oauth` configured — these are\n  mutually exclusive; ask which one the user meant.\n- `thinking.mode = \"off\"` **and** a non-empty `thinking.effort` — the effort\n  is ignored; suggest removing it or flipping the mode.\n- `models.<alias>.capabilities` containing a value not in the valid set. The\n  valid set is the single source of truth: read `CAPABILITY_DEFINITIONS` (or\n  the derived `VALID_CAPABILITIES`) in\n  `packages/agent-core/src/providers/runtime-provider.ts`. Comparison is\n  case-insensitive at runtime, so flag only genuine mismatches.\n- A model alias, `default_provider`, or `default_model` that points at a\n  provider or model that does not exist — a dangling reference. Report it; do\n  **not** delete it, the user may be mid-edit.\n\n### 3. Housekeeping\n\n- Top-level keys that are not in `ByfConfigSchema` (and not a deprecated key\n  above) — likely typos or leftovers from an old version. Report them; only\n  remove with user confirmation. Note that legitimate unknown keys (e.g.\n  `theme`, `notifications`) are preserved by design through `config.raw`, so\n  do not touch keys the user clearly added on purpose.\n- **Nested keys inside containers** (`[providers.<name>]`, `[models.<alias>]`,\n  `[services]`, `[background]`, `[loop_control]`, `[thinking]`,\n  `[permission]`). A key that the corresponding section of `ByfConfigSchema`\n  does not recognize is silently dropped by the parser and has no effect — a\n  common cause is a typo (e.g. `max_context_tokns` instead of\n  `max_context_size`). Cross-check each sub-key against the schema and flag\n  any mismatch; fix only with user confirmation. Note that `[permission]`\n  still accepts the legacy `deny`/`allow`/`ask` array shorthand, so do not\n  report those as unknown.\n\n## Make changes\n\nFor each change, show the user **what is currently there → what you plan to\nwrite** before editing. Then apply edits with Write/Edit. The Edit/Write\npermission prompt is the real safety gate — your summary is what gives the\nuser context when that prompt appears. There is no automatic backup; if the\nuser wants one, suggest they copy the file first.\n\nAfter editing, tell the user to start a new session (e.g. `/new`) or restart\nBYF for the config change to take effect.\n";
+//#endregion
+//#region ../agent-core/src/skill/builtin/update-config.ts
+const PSEUDO_PATH = "builtin://update-config";
+const parsed = parseSkillText({
+	skillMdPath: "/builtin/skills/update-config.md",
+	skillDirName: "update-config",
+	source: "builtin",
+	text: update_config_default
+});
+const UPDATE_CONFIG_SKILL = {
 	...parsed,
 	path: PSEUDO_PATH,
 	dir: PSEUDO_PATH,
@@ -58169,6 +58191,7 @@ const MCP_CONFIG_SKILL = {
 //#region ../agent-core/src/skill/builtin/index.ts
 function registerBuiltinSkills(registry) {
 	registry.registerBuiltinSkill(MCP_CONFIG_SKILL);
+	registry.registerBuiltinSkill(UPDATE_CONFIG_SKILL);
 }
 //#endregion
 //#region ../agent-core/src/skill/scanner.ts
@@ -63468,7 +63491,7 @@ async function downloadAndInstallRg(shareDir) {
 			clearTimeout(timeoutHandle);
 		}
 		if (!resp.ok || resp.body === null) throw new Error(`Failed to download ripgrep: HTTP ${String(resp.status)} ${resp.statusText}`);
-		const write = createWriteStream(archivePath);
+		const write = createWriteStream$1(archivePath);
 		await pipeline$1(Readable.fromWeb(resp.body), write);
 		await verifyArchiveChecksum(archivePath, archiveName, expectedSha256);
 		if (isWindows) await extractRgFromZip(archivePath, destination);
@@ -63529,7 +63552,7 @@ async function extractRgFromZip(archivePath, destination) {
 						zipfile.close();
 						return;
 					}
-					const out = createWriteStream(destination);
+					const out = createWriteStream$1(destination);
 					(async () => {
 						try {
 							await pipeline$1(stream, out);
@@ -67347,7 +67370,7 @@ const OptionalStringSchema = z.preprocess((value) => {
 	if (typeof value === "string") return value;
 	if (typeof value === "number" || typeof value === "boolean" || typeof value === "bigint") return String(value);
 }, z.string().optional());
-const HookSpecificOutputSchema = z.preprocess((value) => isRecord$4(value) ? value : void 0, z.looseObject({
+const HookSpecificOutputSchema = z.preprocess((value) => isRecord$3(value) ? value : void 0, z.looseObject({
 	message: OptionalStringSchema,
 	permissionDecision: z.unknown().optional(),
 	permissionDecisionReason: OptionalStringSchema
@@ -67366,7 +67389,7 @@ async function runHook(command, input, options) {
 			detached: process.platform !== "win32"
 		});
 	} catch (error) {
-		return allowResult({ stderr: errorMessage$2(error) });
+		return allowResult({ stderr: errorMessage$1(error) });
 	}
 	return new Promise((resolve) => {
 		let stdout = "";
@@ -67414,7 +67437,7 @@ async function runHook(command, input, options) {
 		child.on("error", (error) => {
 			settle(allowResult({
 				stdout,
-				stderr: stderr + errorMessage$2(error)
+				stderr: stderr + errorMessage$1(error)
 			}));
 		});
 		child.on("close", (code) => {
@@ -67507,10 +67530,10 @@ function tryKillProcess(child, signal) {
 		} catch {}
 	}
 }
-function isRecord$4(value) {
+function isRecord$3(value) {
 	return typeof value === "object" && value !== null && !Array.isArray(value);
 }
-function errorMessage$2(error) {
+function errorMessage$1(error) {
 	return error instanceof Error ? error.message : String(error);
 }
 //#endregion
@@ -70175,6 +70198,7 @@ const YoloOutsideWorkspacePermissionPolicy = {
 	evaluate({ agent, mode, toolCallContext }) {
 		if (mode !== "yolo") return void 0;
 		const toolName = toolCallContext.toolCall.name;
+		if (isDefaultAutoAllowTool(toolName)) return void 0;
 		const toolAccess = FILE_ACCESS_TOOLS[toolName];
 		if (toolAccess === void 0) return void 0;
 		const [operation, displayOperation] = toolAccess;
@@ -70442,8 +70466,8 @@ function approvalTelemetryMode(mode) {
 //#endregion
 //#region ../agent-core/src/agent/records/migration/v1.1.ts
 function isLegacyToolCall(v) {
-	if (!isRecord$3(v)) return false;
-	return v["type"] === "function" && typeof v["id"] === "string" && isRecord$3(v["function"]);
+	if (!isRecord$2(v)) return false;
+	return v["type"] === "function" && typeof v["id"] === "string" && isRecord$2(v["function"]);
 }
 function migrateToolCall(v) {
 	const { function: fn, ...rest } = v;
@@ -70453,7 +70477,7 @@ function migrateToolCall(v) {
 		arguments: fn.arguments
 	};
 }
-function isRecord$3(value) {
+function isRecord$2(value) {
 	return typeof value === "object" && value !== null && !Array.isArray(value);
 }
 const MIGRATIONS = [{
@@ -78265,7 +78289,7 @@ function parseToolCallArguments(raw) {
 	} catch (error) {
 		return {
 			success: false,
-			error: errorMessage$3(error)
+			error: errorMessage$2(error)
 		};
 	}
 }
@@ -78317,7 +78341,7 @@ async function prepareToolCall(step, call) {
 			toolCallId: call.toolCall.id,
 			error
 		});
-		const output = error instanceof PathSecurityError ? error.message : `Tool "${call.toolName}" failed to resolve execution: ${errorMessage$3(error)}`;
+		const output = error instanceof PathSecurityError ? error.message : `Tool "${call.toolName}" failed to resolve execution: ${errorMessage$2(error)}`;
 		await dispatchToolCall(step, call, effectiveArgs);
 		return { task: makeResolvedToolCallTask(makeErrorToolResult(call, effectiveArgs, output)) };
 	}
@@ -78377,7 +78401,7 @@ async function runPrepareToolExecutionHook(step, call) {
 		return {
 			kind: "hookFailed",
 			args,
-			output: `prepareToolExecution hook failed for "${call.toolName}": ${errorMessage$3(error)}`
+			output: `prepareToolExecution hook failed for "${call.toolName}": ${errorMessage$2(error)}`
 		};
 	}
 	const effectiveArgs = hookResult?.updatedArgs ?? args;
@@ -78421,7 +78445,7 @@ async function runRunnableToolCall(step, call, effectiveArgs, metadata, executio
 			toolCallId: toolCall.id,
 			error
 		});
-		return makeErrorToolResult(call, effectiveArgs, aborted ? `Tool "${toolName}" was aborted` : `Tool "${toolName}" failed: ${errorMessage$3(error)}`);
+		return makeErrorToolResult(call, effectiveArgs, aborted ? `Tool "${toolName}" was aborted` : `Tool "${toolName}" failed: ${errorMessage$2(error)}`);
 	}
 	return makeToolResult(call, effectiveArgs, toolResult);
 }
@@ -78453,7 +78477,7 @@ async function finalizePendingToolResult(step, pendingResult) {
 			toolCallId: pendingResult.toolCall.id,
 			error
 		});
-		const output = aborted ? `Tool "${pendingResult.toolName}" aborted during finalizeToolResult hook.` : `finalizeToolResult hook failed for "${pendingResult.toolName}": ${errorMessage$3(error)}`;
+		const output = aborted ? `Tool "${pendingResult.toolName}" aborted during finalizeToolResult hook.` : `finalizeToolResult hook failed for "${pendingResult.toolName}": ${errorMessage$2(error)}`;
 		return {
 			...pendingResult,
 			stopTurn: pendingResult.stopTurn,
@@ -78815,7 +78839,7 @@ async function runTurn(input) {
 				usage
 			};
 		}
-		dispatchEvent(makeInterruptedEvent(isMaxStepsExceededError(error) ? "max_steps" : "error", steps, activeStep, errorMessage$3(error)));
+		dispatchEvent(makeInterruptedEvent(isMaxStepsExceededError(error) ? "max_steps" : "error", steps, activeStep, errorMessage$2(error)));
 		throw error;
 	}
 	return {
@@ -85325,595 +85349,6 @@ function isFileExistsError(error) {
 	return typeof error === "object" && error !== null && error.code === "EEXIST";
 }
 //#endregion
-//#region ../agent-core/src/config/update-rules.ts
-const REMOVED_RULES = [
-	{
-		path: "default_yolo",
-		pathParts: ["default_yolo"],
-		kind: "removed",
-		detail: "Top-level field default_yolo is removed. Use yolo instead.",
-		deprecatedSince: "pre-0.1.0"
-	},
-	{
-		path: "defaultYolo",
-		pathParts: ["defaultYolo"],
-		kind: "removed",
-		detail: "Top-level field defaultYolo is removed. Use yolo instead.",
-		deprecatedSince: "pre-0.1.0"
-	},
-	{
-		path: "services.byf_search",
-		pathParts: ["services", "byf_search"],
-		kind: "removed",
-		detail: "Deprecated service byf_search is removed.",
-		deprecatedSince: "pre-0.1.0"
-	},
-	{
-		path: "services.byf_fetch",
-		pathParts: ["services", "byf_fetch"],
-		kind: "removed",
-		detail: "Deprecated service byf_fetch is removed. Use services.fetch_url instead.",
-		deprecatedSince: "pre-0.1.0"
-	}
-];
-const RENAMED_RULES = [{
-	path: "loop_control.max_steps_per_run",
-	pathParts: ["loop_control", "max_steps_per_run"],
-	kind: "renamed",
-	detail: "Renamed to max_steps_per_turn.",
-	deprecatedSince: "pre-0.1.0"
-}];
-const MIGRATED_RULES = [{
-	path: "default_thinking",
-	pathParts: ["default_thinking"],
-	kind: "migrated",
-	detail: "Migrate default_thinking to [thinking] block.",
-	deprecatedSince: "pre-0.1.0"
-}];
-/**
-* Combined list of all deprecated-field rules.
-*
-* Order within the list does not affect correctness (the CLI groups by kind
-* at display time), but a stable order helps test expectations.
-*/
-const DEPRECATED_FIELD_RULES = [
-	...REMOVED_RULES,
-	...RENAMED_RULES,
-	...MIGRATED_RULES
-];
-//#endregion
-//#region ../agent-core/src/providers/runtime-provider.ts
-function resolveRuntimeProvider(input) {
-	const modelName = input.model ?? input.config.defaultModel;
-	if (modelName === void 0) throw new ByfError(ErrorCodes.CONFIG_INVALID, "No model is selected. Set default_model in config.toml or pass a configured model alias.");
-	const alias = input.config.models?.[modelName];
-	if (alias === void 0) throw new ByfError(ErrorCodes.CONFIG_INVALID, `Model "${modelName}" is not configured in config.toml. Add a [models."${modelName}"] entry with max_context_size.`);
-	const resolvedModel = alias.model;
-	const providerName = alias.provider ?? input.config.defaultProvider;
-	const providerConfig = providerName === void 0 ? void 0 : input.config.providers[providerName];
-	if (providerName === void 0) throw new ByfError(ErrorCodes.CONFIG_INVALID, `Model "${modelName}" must define a provider in config.toml.`);
-	if (providerConfig === void 0) throw new ByfError(ErrorCodes.CONFIG_INVALID, `Provider "${providerName}" for model "${modelName}" is not configured.`);
-	if (!Number.isInteger(alias.maxContextSize) || alias.maxContextSize <= 0) throw new ByfError(ErrorCodes.CONFIG_INVALID, `Model "${modelName}" must define a positive max_context_size in config.toml.`);
-	if (input.validateCredentials !== false && providerConfig.type !== "vertexai" && providerConfig.oauth === void 0 && providerApiKey(providerConfig) === void 0) throw new ByfError(ErrorCodes.CONFIG_INVALID, `Provider "${providerName}" has no credentials configured. Set apiKey, oauth, or a provider env API key in config.toml.`);
-	const provider = toKosongProviderConfig(providerConfig, resolvedModel, input.byfRequestHeaders, alias.maxOutputSize, alias.reasoningKey, input.promptCacheKey);
-	return {
-		modelName,
-		providerName,
-		modelCapabilities: resolveModelCapabilities(alias, provider),
-		provider
-	};
-}
-async function resolveRuntimeProviderWithOAuth(input) {
-	const resolved = resolveRuntimeProvider(input);
-	const resolveAuth = createRuntimeProviderAuthResolver(input, resolved);
-	if (resolveAuth === void 0) return resolved;
-	await resolveAuth();
-	return {
-		...resolved,
-		resolveAuth
-	};
-}
-function createRuntimeProviderAuthResolver(input, resolved = resolveRuntimeProvider(input)) {
-	const providerName = resolved.providerName;
-	if (providerName === void 0) return void 0;
-	const providerConfig = input.config.providers[providerName];
-	if (providerConfig?.oauth === void 0) return void 0;
-	if (providerApiKey(providerConfig) !== void 0) throw new ByfError(ErrorCodes.CONFIG_INVALID, `Provider "${providerName}" has both apiKey and oauth set in config.toml — they are mutually exclusive. Remove one.`);
-	const tokenProvider = input.resolveOAuthTokenProvider?.(providerName, providerConfig.oauth);
-	if (tokenProvider === void 0) return async () => {
-		throw new ByfError(ErrorCodes.AUTH_LOGIN_REQUIRED, `OAuth provider "${providerName}" requires login before it can be used.`);
-	};
-	return async (options) => {
-		let apiKey;
-		try {
-			apiKey = await tokenProvider.getAccessToken(options?.forceRefresh === true ? { force: true } : void 0);
-		} catch (error) {
-			if (!isAuthLoginRequired(error)) (input.log ?? log).warn("oauth token fetch failed", {
-				providerName,
-				error
-			});
-			throw new ByfError(ErrorCodes.AUTH_LOGIN_REQUIRED, `OAuth provider "${providerName}" requires login before it can be used.`, { cause: error });
-		}
-		if (apiKey.trim().length === 0) throw new ByfError(ErrorCodes.AUTH_LOGIN_REQUIRED, `OAuth provider "${providerName}" requires login before it can be used.`);
-		return { apiKey };
-	};
-}
-function isAuthLoginRequired(error) {
-	return isByfError(error) && error.code === ErrorCodes.AUTH_LOGIN_REQUIRED;
-}
-const CAPABILITY_DEFINITIONS = [
-	{
-		name: "image_in",
-		returnKey: "image_in"
-	},
-	{
-		name: "video_in",
-		returnKey: "video_in"
-	},
-	{
-		name: "audio_in",
-		returnKey: "audio_in"
-	},
-	{
-		name: "thinking",
-		returnKey: "thinking"
-	},
-	{
-		name: "always_thinking",
-		returnKey: "thinking"
-	},
-	{
-		name: "tool_use",
-		returnKey: "tool_use"
-	},
-	{
-		name: "thinking_effort",
-		returnKey: "thinking_effort"
-	},
-	{
-		name: "thinking_xhigh",
-		returnKey: "thinking_xhigh"
-	},
-	{
-		name: "thinking_max",
-		returnKey: "thinking_max"
-	}
-];
-/**
-* The list of every valid capability name that can appear in a model
-* alias's `capabilities` array.
-*
-* Derives directly from {@link CAPABILITY_DEFINITIONS} so that adding a
-* new capability in one place automatically keeps both the validation
-* gate (`update-config`) and the runtime resolver in sync.
-*/
-const VALID_CAPABILITIES = CAPABILITY_DEFINITIONS.map((d) => d.name);
-function resolveModelCapabilities(alias, provider) {
-	const capabilities = new Set((alias.capabilities ?? []).map((capability) => capability.trim().toLowerCase()));
-	const has = (capability) => capabilities.has(capability);
-	const providerCapability = createProvider$1(providerForCapabilityProbe(provider)).getCapability?.(provider.model) ?? UNKNOWN_CAPABILITY;
-	const returnKeyToNames = /* @__PURE__ */ new Map();
-	for (const def of CAPABILITY_DEFINITIONS) {
-		const names = returnKeyToNames.get(def.returnKey) ?? [];
-		names.push(def.name);
-		returnKeyToNames.set(def.returnKey, names);
-	}
-	const resolved = {};
-	for (const [returnKey, names] of returnKeyToNames) resolved[returnKey] = names.some((n) => has(n)) || Boolean(providerCapability[returnKey]);
-	return {
-		...resolved,
-		max_context_tokens: alias.maxContextSize
-	};
-}
-function toKosongProviderConfig(provider, model, byfRequestHeaders, maxOutputSize, reasoningKey, promptCacheKey) {
-	switch (provider.type) {
-		case "anthropic": return {
-			type: "anthropic",
-			model,
-			baseUrl: providerValue(provider.baseUrl, provider.env, "ANTHROPIC_BASE_URL"),
-			apiKey: providerApiKey(provider),
-			...maxOutputSize !== void 0 ? { defaultMaxTokens: maxOutputSize } : {},
-			...defaultHeadersField(provider.customHeaders)
-		};
-		case "openai-completions": {
-			const defaultHeaders = {
-				...byfRequestHeaders,
-				...provider.customHeaders
-			};
-			const generationKwargs = {
-				prompt_cache_key: promptCacheKey,
-				extra_body: provider.extraBody
-			};
-			if (Object.keys(defaultHeaders).length === 0) return {
-				type: "openai-completions",
-				model,
-				baseUrl: providerValue(provider.baseUrl, provider.env, "BYF_BASE_URL"),
-				reasoningKey,
-				thinkingEffortKey: provider.thinkingEffortKey,
-				generationKwargs,
-				apiKey: providerApiKey(provider)
-			};
-			return {
-				type: "openai-completions",
-				model,
-				baseUrl: providerValue(provider.baseUrl, provider.env, "BYF_BASE_URL"),
-				reasoningKey,
-				thinkingEffortKey: provider.thinkingEffortKey,
-				generationKwargs,
-				defaultHeaders,
-				apiKey: providerApiKey(provider)
-			};
-		}
-		case "google-genai": return {
-			type: "google-genai",
-			model,
-			apiKey: providerApiKey(provider)
-		};
-		case "openai_responses": return {
-			type: "openai_responses",
-			model,
-			baseUrl: providerValue(provider.baseUrl, provider.env, "OPENAI_BASE_URL"),
-			apiKey: providerApiKey(provider),
-			...defaultHeadersField(provider.customHeaders)
-		};
-		case "vertexai": return {
-			type: "vertexai",
-			model,
-			vertexai: hasVertexAIServiceEnv(provider),
-			apiKey: hasVertexAIServiceEnv(provider) ? void 0 : providerApiKey(provider),
-			project: vertexAIProject(provider),
-			location: vertexAILocation(provider)
-		};
-		default: {
-			const exhaustive = provider.type;
-			throw new ByfError(ErrorCodes.MODEL_CONFIG_INVALID, `Unsupported provider type: ${String(exhaustive)}`);
-		}
-	}
-}
-function defaultHeadersField(headers) {
-	if (headers === void 0 || Object.keys(headers).length === 0) return {};
-	return { defaultHeaders: { ...headers } };
-}
-function providerForCapabilityProbe(provider) {
-	if (provider.type === "vertexai") return {
-		...provider,
-		vertexai: false,
-		project: void 0,
-		location: void 0,
-		apiKey: provider.apiKey === void 0 || provider.apiKey.length === 0 ? "capability-probe" : provider.apiKey
-	};
-	if (provider.apiKey !== void 0 && provider.apiKey.length > 0) return provider;
-	return {
-		...provider,
-		apiKey: "capability-probe"
-	};
-}
-function providerApiKey(provider) {
-	switch (provider.type) {
-		case "anthropic": return providerValue(provider.apiKey, provider.env, "ANTHROPIC_API_KEY");
-		case "openai_responses": return providerValue(provider.apiKey, provider.env, "OPENAI_API_KEY");
-		case "openai-completions": return providerValue(provider.apiKey, provider.env, "BYF_API_KEY");
-		case "google-genai": return providerValue(provider.apiKey, provider.env, "GOOGLE_API_KEY");
-		case "vertexai": return nonEmptyString$2(provider.apiKey) ?? envValue(provider.env, "VERTEXAI_API_KEY") ?? envValue(provider.env, "GOOGLE_API_KEY");
-		default: {
-			const exhaustive = provider.type;
-			throw new ByfError(ErrorCodes.MODEL_CONFIG_INVALID, `Unsupported provider type: ${String(exhaustive)}`);
-		}
-	}
-}
-function hasVertexAIServiceEnv(provider) {
-	return vertexAIProject(provider) !== void 0 && vertexAILocation(provider) !== void 0;
-}
-function vertexAIProject(provider) {
-	return envValue(provider.env, "GOOGLE_CLOUD_PROJECT");
-}
-function vertexAILocation(provider) {
-	return envValue(provider.env, "GOOGLE_CLOUD_LOCATION") ?? locationFromVertexAIBaseUrl(provider.baseUrl);
-}
-function providerValue(configured, env, envKey) {
-	return nonEmptyString$2(configured) ?? envValue(env, envKey);
-}
-function envValue(env, key) {
-	return nonEmptyString$2(env?.[key]);
-}
-function nonEmptyString$2(value) {
-	const trimmed = value?.trim();
-	return trimmed === void 0 || trimmed.length === 0 ? void 0 : trimmed;
-}
-function locationFromVertexAIBaseUrl(baseUrl) {
-	const url = nonEmptyString$2(baseUrl);
-	if (url === void 0) return void 0;
-	try {
-		const host = new URL(url).hostname;
-		return host.endsWith("-aiplatform.googleapis.com") ? nonEmptyString$2(host.slice(0, -26)) : void 0;
-	} catch {
-		return;
-	}
-}
-//#endregion
-//#region ../agent-core/src/config/update.ts
-/**
-* Scan a parsed config (including `config.raw`) and return all Findings
-* for deprecated / renamed / migrated / dangling / unknown / invalid-value
-* fields.
-*
-* This is a **pure** function — no file I/O, no side effects.
-*
-* Detection is based on `config.raw` (the clone of the original TOML data),
-* not on the parsed camelCase schema. This matches the PRD's observation
-* that `raw` is both the protection layer (preserving unknown fields) and
-* the blind spot (retaining stale keys through read→write cycles).
-*/
-function analyzeConfig(config) {
-	const raw = config.raw;
-	const findings = [];
-	if (isRecord$2(raw)) {
-		for (const rule of DEPRECATED_FIELD_RULES) if (pathExistsInRaw(raw, rule.pathParts)) findings.push({
-			kind: rule.kind,
-			path: rule.path,
-			detail: rule.detail,
-			deprecatedSince: rule.deprecatedSince
-		});
-		const defaultThinkingFinding = findings.find((f) => f.path === "default_thinking");
-		if (defaultThinkingFinding) {
-			const thinking = config.thinking;
-			if (thinking && (thinking.mode !== void 0 || thinking.effort !== void 0)) {
-				defaultThinkingFinding.kind = "removed";
-				defaultThinkingFinding.detail = "Already superseded by [thinking] block.";
-			}
-		}
-		const UNKNOWN_SKIP_PATHS = new Set(DEPRECATED_FIELD_RULES.map((r) => r.pathParts.join(".")));
-		const byfShapeKeys = /* @__PURE__ */ new Set();
-		for (const key of Object.keys(ByfConfigSchema.shape)) {
-			byfShapeKeys.add(key);
-			byfShapeKeys.add(camelToSnakeStatic(key));
-		}
-		for (const rawKey of Object.keys(raw)) {
-			if (rawKey === "raw") continue;
-			if (UNKNOWN_SKIP_PATHS.has(rawKey)) continue;
-			const camelKey = snakeToCamelStatic(rawKey);
-			if (!byfShapeKeys.has(camelKey) && !byfShapeKeys.has(rawKey)) findings.push({
-				kind: "unknown",
-				path: rawKey,
-				detail: `Field "${rawKey}" is not recognized by the current schema. Its value has been ignored. This may be a typo or a field from a previous version.`
-			});
-		}
-		const nestedFindings = scanNestedUnknowns(raw, UNKNOWN_SKIP_PATHS);
-		findings.push(...nestedFindings);
-	}
-	if (config.models) {
-		const validCapsLower = new Set(VALID_CAPABILITIES.map((c) => c.toLowerCase()));
-		for (const [alias, modelConfig] of Object.entries(config.models)) if (modelConfig.capabilities) for (let i = 0; i < modelConfig.capabilities.length; i++) {
-			const cap = modelConfig.capabilities[i];
-			if (cap === void 0) continue;
-			if (!validCapsLower.has(cap.toLowerCase())) findings.push({
-				kind: "invalid-value",
-				path: `models.${alias}.capabilities[${i}]`,
-				detail: `"${cap}" is not a valid capability. Valid values: ${VALID_CAPABILITIES.join(", ")}.`
-			});
-		}
-	}
-	const providerKeys = Object.keys(config.providers ?? {});
-	if (config.models) {
-		for (const [alias, modelConfig] of Object.entries(config.models)) if (!providerKeys.includes(modelConfig.provider)) findings.push({
-			kind: "dangling",
-			path: `models.${alias}.provider`,
-			detail: `Model alias "${alias}" references provider "${modelConfig.provider}", which does not exist in [providers].`
-		});
-	}
-	if (config.defaultProvider !== void 0 && !providerKeys.includes(config.defaultProvider)) findings.push({
-		kind: "dangling",
-		path: "default_provider",
-		detail: `Default provider "${config.defaultProvider}" does not exist in [providers].`
-	});
-	const modelKeys = Object.keys(config.models ?? {});
-	if (config.defaultModel !== void 0 && !modelKeys.includes(config.defaultModel)) findings.push({
-		kind: "dangling",
-		path: "default_model",
-		detail: `Default model "${config.defaultModel}" does not exist in [models].`
-	});
-	return findings;
-}
-/**
-* Apply automatic fixes to a `ByfConfig` by deleting every path registered in
-* `DEPRECATED_FIELD_RULES` from `config.raw`.
-*
-* The `_findings` parameter is intentionally **not consulted** — deletion is
-* driven exclusively by the whitelist in `DEPRECATED_FIELD_RULES`. This ensures
-* that a call to `applyFixes` always produces a clean config regardless of
-* what analysis step previously ran.
-*
-* This is a **pure** function — it returns a new config object without
-* mutating the input.
-*/
-function applyFixes(config, findings) {
-	const newRaw = rawShallowClone(config.raw);
-	for (const rule of DEPRECATED_FIELD_RULES) deletePath(newRaw, rule.pathParts);
-	let newConfig = {
-		...config,
-		raw: newRaw
-	};
-	if (findings.find((f) => f.kind === "migrated" && f.path === "default_thinking")) {
-		const rawValue = config.raw?.["default_thinking"];
-		const isTruthy = rawValue === true || rawValue === "true" || rawValue === 1;
-		newConfig = {
-			...newConfig,
-			thinking: isTruthy ? {
-				mode: "on",
-				effort: "high"
-			} : { mode: "off" }
-		};
-	}
-	return newConfig;
-}
-/** Convert snake_case to camelCase (static helper for unknown detection). */
-function snakeToCamelStatic(str) {
-	return str.replaceAll(/_([a-z])/g, (_, ch) => ch.toUpperCase());
-}
-/** Convert camelCase to snake_case (static helper for unknown detection). */
-function camelToSnakeStatic(str) {
-	return str.replaceAll(/[A-Z]/g, (ch) => `_${ch.toLowerCase()}`);
-}
-/** True when `value` is a non-null, non-array object. */
-function isRecord$2(value) {
-	return typeof value === "object" && value !== null && !Array.isArray(value);
-}
-/**
-* Walk `root` along `pathParts` checking that **every** segment exists.
-*
-* Returns `true` iff all parts exist as own keys (or inherited keys — TOML
-* parse results are plain objects so the distinction doesn't matter here).
-*/
-function pathExistsInRaw(root, pathParts) {
-	let current = root;
-	for (const part of pathParts) {
-		if (!isRecord$2(current) || !(part in current)) return false;
-		current = current[part];
-	}
-	return true;
-}
-/**
-* Delete a leaf (or entire sub-tree) from `root` following `pathParts`.
-*
-* If the parent after deletion becomes empty it is cleaned up as well
-* (recursive upward), so that a service table cleared of all deprecated
-* keys does not leave behind an empty `{}`.
-*/
-function deletePath(root, pathParts) {
-	if (pathParts.length === 0) return;
-	const parentParts = pathParts.slice(0, -1);
-	const leafKey = pathParts.at(-1);
-	let current;
-	if (parentParts.length === 0) current = root;
-	else current = traverseTo(root, parentParts);
-	if (current === void 0) return;
-	const keyExisted = leafKey in current;
-	delete current[leafKey];
-	if (keyExisted && parentParts.length > 0 && Object.keys(current).length === 0) deletePath(root, parentParts);
-}
-/**
-* Walk `root` along `pathParts` returning the penultimate record, or
-* `undefined` if any segment is missing.
-*/
-function traverseTo(root, pathParts) {
-	let current = root;
-	for (const part of pathParts) {
-		if (!isRecord$2(current) || !(part in current)) return void 0;
-		current = current[part];
-	}
-	return isRecord$2(current) ? current : void 0;
-}
-/**
-* Shallow-clone `raw`: each nested record is also shallow-cloned so that
-* mutations in `applyFixes` do not affect the original object.
-*/
-function rawShallowClone(raw) {
-	if (!isRecord$2(raw)) return {};
-	const clone = {};
-	for (const [key, value] of Object.entries(raw)) clone[key] = isRecord$2(value) ? { ...value } : value;
-	return clone;
-}
-/**
-* Build a set of all valid keys (camelCase + snake_case) from a zod
-* object schema's `.shape`.
-*/
-function getShapeKeySet(schema) {
-	const keys = /* @__PURE__ */ new Set();
-	for (const key of Object.keys(schema.shape)) {
-		keys.add(key);
-		keys.add(camelToSnakeStatic(key));
-	}
-	return keys;
-}
-/**
-* Scan known container keys in `raw` for sub-keys that don't match the
-* corresponding schema shape.  Unknown paths that overlap with
-* `skipPaths` (e.g. already reported deprecated fields) are skipped.
-*
-* Detects e.g. `models.gpt4.max_context_tokns` (typo) or
-* `providers.anthropic.api_kei` (typo).
-*/
-function scanNestedUnknowns(raw, skipPaths) {
-	const findings = [];
-	const containers = [
-		{
-			rawKey: "models",
-			isRecord: true,
-			schema: ModelAliasSchema
-		},
-		{
-			rawKey: "providers",
-			isRecord: true,
-			schema: ProviderConfigSchema
-		},
-		{
-			rawKey: "services",
-			isRecord: false,
-			schema: ServicesConfigSchema
-		},
-		{
-			rawKey: "background",
-			isRecord: false,
-			schema: BackgroundConfigSchema
-		},
-		{
-			rawKey: "loop_control",
-			isRecord: false,
-			schema: LoopControlSchema
-		},
-		{
-			rawKey: "thinking",
-			isRecord: false,
-			schema: ThinkingConfigSchema
-		},
-		{
-			rawKey: "permission",
-			isRecord: false,
-			schema: PermissionConfigSchema,
-			legacyKeys: [
-				"deny",
-				"allow",
-				"ask"
-			]
-		}
-	];
-	const schemaKeySets = /* @__PURE__ */ new Map();
-	containers.forEach((entry, index) => {
-		const base = getShapeKeySet(entry.schema);
-		if (entry.legacyKeys) for (const k of entry.legacyKeys) base.add(k);
-		schemaKeySets.set(index, base);
-	});
-	for (const [entryIndex, entry] of containers.entries()) {
-		if (!(entry.rawKey in raw)) continue;
-		const rawValue = raw[entry.rawKey];
-		if (!isRecord$2(rawValue)) continue;
-		if (entry.isRecord) for (const [itemKey, itemValue] of Object.entries(rawValue)) {
-			if (!isRecord$2(itemValue)) continue;
-			const validKeys = schemaKeySets.get(entryIndex);
-			for (const subKey of Object.keys(itemValue)) if (!validKeys.has(subKey)) {
-				const path = `${entry.rawKey}.${itemKey}.${subKey}`;
-				if (!skipPaths.has(path)) findings.push({
-					kind: "unknown",
-					path,
-					detail: `Field "${subKey}" is not recognized in ${entry.rawKey}.${itemKey}. This may be a typo or a field from a previous version.`
-				});
-			}
-		}
-		else {
-			const validKeys = schemaKeySets.get(entryIndex);
-			for (const subKey of Object.keys(rawValue)) if (!validKeys.has(subKey)) {
-				const path = `${entry.rawKey}.${subKey}`;
-				if (!skipPaths.has(path)) findings.push({
-					kind: "unknown",
-					path,
-					detail: `Field "${subKey}" is not recognized in [${entry.rawKey}]. This may be a typo or a field from a previous version.`
-				});
-			}
-		}
-	}
-	return findings;
-}
-//#endregion
 //#region ../../node_modules/.pnpm/@modelcontextprotocol+sdk@1.29.0_zod@4.3.6/node_modules/@modelcontextprotocol/sdk/dist/esm/server/zod-compat.js
 function isZ4Schema(s) {
 	return !!s._zod;
@@ -90650,14 +90085,14 @@ var LocalKaos = class {
 		}
 	}
 	async writeBytes(path, data) {
-		await writeFile(this._resolvePath(path), data);
+		await writeFile$1(this._resolvePath(path), data);
 		return data.length;
 	}
 	async writeText(path, data, options) {
 		const resolved = this._resolvePath(path);
 		const encoding = options?.encoding ?? "utf-8";
 		if ((options?.mode ?? "w") === "a") await appendFile(resolved, data, encoding);
-		else await writeFile(resolved, data, encoding);
+		else await writeFile$1(resolved, data, encoding);
 		return data.length;
 	}
 	async mkdir(path, options) {
@@ -126724,7 +126159,7 @@ async function writeExportZip(args) {
 		entries.push(extra.target);
 	} catch {}
 	zip.end();
-	await pipeline$1(zip.outputStream, createWriteStream(args.outputPath));
+	await pipeline$1(zip.outputStream, createWriteStream$1(args.outputPath));
 	return entries;
 }
 //#endregion
@@ -126783,6 +126218,247 @@ async function readOptionalFile(path) {
 	}
 }
 //#endregion
+//#region ../agent-core/src/providers/runtime-provider.ts
+function resolveRuntimeProvider(input) {
+	const modelName = input.model ?? input.config.defaultModel;
+	if (modelName === void 0) throw new ByfError(ErrorCodes.CONFIG_INVALID, "No model is selected. Set default_model in config.toml or pass a configured model alias.");
+	const alias = input.config.models?.[modelName];
+	if (alias === void 0) throw new ByfError(ErrorCodes.CONFIG_INVALID, `Model "${modelName}" is not configured in config.toml. Add a [models."${modelName}"] entry with max_context_size.`);
+	const resolvedModel = alias.model;
+	const providerName = alias.provider ?? input.config.defaultProvider;
+	const providerConfig = providerName === void 0 ? void 0 : input.config.providers[providerName];
+	if (providerName === void 0) throw new ByfError(ErrorCodes.CONFIG_INVALID, `Model "${modelName}" must define a provider in config.toml.`);
+	if (providerConfig === void 0) throw new ByfError(ErrorCodes.CONFIG_INVALID, `Provider "${providerName}" for model "${modelName}" is not configured.`);
+	if (!Number.isInteger(alias.maxContextSize) || alias.maxContextSize <= 0) throw new ByfError(ErrorCodes.CONFIG_INVALID, `Model "${modelName}" must define a positive max_context_size in config.toml.`);
+	if (input.validateCredentials !== false && providerConfig.type !== "vertexai" && providerConfig.oauth === void 0 && providerApiKey(providerConfig) === void 0) throw new ByfError(ErrorCodes.CONFIG_INVALID, `Provider "${providerName}" has no credentials configured. Set apiKey, oauth, or a provider env API key in config.toml.`);
+	const provider = toKosongProviderConfig(providerConfig, resolvedModel, input.byfRequestHeaders, alias.maxOutputSize, alias.reasoningKey, input.promptCacheKey);
+	return {
+		modelName,
+		providerName,
+		modelCapabilities: resolveModelCapabilities(alias, provider),
+		provider
+	};
+}
+async function resolveRuntimeProviderWithOAuth(input) {
+	const resolved = resolveRuntimeProvider(input);
+	const resolveAuth = createRuntimeProviderAuthResolver(input, resolved);
+	if (resolveAuth === void 0) return resolved;
+	await resolveAuth();
+	return {
+		...resolved,
+		resolveAuth
+	};
+}
+function createRuntimeProviderAuthResolver(input, resolved = resolveRuntimeProvider(input)) {
+	const providerName = resolved.providerName;
+	if (providerName === void 0) return void 0;
+	const providerConfig = input.config.providers[providerName];
+	if (providerConfig?.oauth === void 0) return void 0;
+	if (providerApiKey(providerConfig) !== void 0) throw new ByfError(ErrorCodes.CONFIG_INVALID, `Provider "${providerName}" has both apiKey and oauth set in config.toml — they are mutually exclusive. Remove one.`);
+	const tokenProvider = input.resolveOAuthTokenProvider?.(providerName, providerConfig.oauth);
+	if (tokenProvider === void 0) return async () => {
+		throw new ByfError(ErrorCodes.AUTH_LOGIN_REQUIRED, `OAuth provider "${providerName}" requires login before it can be used.`);
+	};
+	return async (options) => {
+		let apiKey;
+		try {
+			apiKey = await tokenProvider.getAccessToken(options?.forceRefresh === true ? { force: true } : void 0);
+		} catch (error) {
+			if (!isAuthLoginRequired(error)) (input.log ?? log).warn("oauth token fetch failed", {
+				providerName,
+				error
+			});
+			throw new ByfError(ErrorCodes.AUTH_LOGIN_REQUIRED, `OAuth provider "${providerName}" requires login before it can be used.`, { cause: error });
+		}
+		if (apiKey.trim().length === 0) throw new ByfError(ErrorCodes.AUTH_LOGIN_REQUIRED, `OAuth provider "${providerName}" requires login before it can be used.`);
+		return { apiKey };
+	};
+}
+function isAuthLoginRequired(error) {
+	return isByfError(error) && error.code === ErrorCodes.AUTH_LOGIN_REQUIRED;
+}
+const CAPABILITY_DEFINITIONS = [
+	{
+		name: "image_in",
+		returnKey: "image_in"
+	},
+	{
+		name: "video_in",
+		returnKey: "video_in"
+	},
+	{
+		name: "audio_in",
+		returnKey: "audio_in"
+	},
+	{
+		name: "thinking",
+		returnKey: "thinking"
+	},
+	{
+		name: "always_thinking",
+		returnKey: "thinking"
+	},
+	{
+		name: "tool_use",
+		returnKey: "tool_use"
+	},
+	{
+		name: "thinking_effort",
+		returnKey: "thinking_effort"
+	},
+	{
+		name: "thinking_xhigh",
+		returnKey: "thinking_xhigh"
+	},
+	{
+		name: "thinking_max",
+		returnKey: "thinking_max"
+	}
+];
+CAPABILITY_DEFINITIONS.map((d) => d.name);
+function resolveModelCapabilities(alias, provider) {
+	const capabilities = new Set((alias.capabilities ?? []).map((capability) => capability.trim().toLowerCase()));
+	const has = (capability) => capabilities.has(capability);
+	const providerCapability = createProvider$1(providerForCapabilityProbe(provider)).getCapability?.(provider.model) ?? UNKNOWN_CAPABILITY;
+	const returnKeyToNames = /* @__PURE__ */ new Map();
+	for (const def of CAPABILITY_DEFINITIONS) {
+		const names = returnKeyToNames.get(def.returnKey) ?? [];
+		names.push(def.name);
+		returnKeyToNames.set(def.returnKey, names);
+	}
+	const resolved = {};
+	for (const [returnKey, names] of returnKeyToNames) resolved[returnKey] = names.some((n) => has(n)) || Boolean(providerCapability[returnKey]);
+	return {
+		...resolved,
+		max_context_tokens: alias.maxContextSize
+	};
+}
+function toKosongProviderConfig(provider, model, byfRequestHeaders, maxOutputSize, reasoningKey, promptCacheKey) {
+	switch (provider.type) {
+		case "anthropic": return {
+			type: "anthropic",
+			model,
+			baseUrl: providerValue(provider.baseUrl, provider.env, "ANTHROPIC_BASE_URL"),
+			apiKey: providerApiKey(provider),
+			...maxOutputSize !== void 0 ? { defaultMaxTokens: maxOutputSize } : {},
+			...defaultHeadersField(provider.customHeaders)
+		};
+		case "openai-completions": {
+			const defaultHeaders = {
+				...byfRequestHeaders,
+				...provider.customHeaders
+			};
+			const generationKwargs = {
+				prompt_cache_key: promptCacheKey,
+				extra_body: provider.extraBody
+			};
+			if (Object.keys(defaultHeaders).length === 0) return {
+				type: "openai-completions",
+				model,
+				baseUrl: providerValue(provider.baseUrl, provider.env, "BYF_BASE_URL"),
+				reasoningKey,
+				thinkingEffortKey: provider.thinkingEffortKey,
+				generationKwargs,
+				apiKey: providerApiKey(provider)
+			};
+			return {
+				type: "openai-completions",
+				model,
+				baseUrl: providerValue(provider.baseUrl, provider.env, "BYF_BASE_URL"),
+				reasoningKey,
+				thinkingEffortKey: provider.thinkingEffortKey,
+				generationKwargs,
+				defaultHeaders,
+				apiKey: providerApiKey(provider)
+			};
+		}
+		case "google-genai": return {
+			type: "google-genai",
+			model,
+			apiKey: providerApiKey(provider)
+		};
+		case "openai_responses": return {
+			type: "openai_responses",
+			model,
+			baseUrl: providerValue(provider.baseUrl, provider.env, "OPENAI_BASE_URL"),
+			apiKey: providerApiKey(provider),
+			...defaultHeadersField(provider.customHeaders)
+		};
+		case "vertexai": return {
+			type: "vertexai",
+			model,
+			vertexai: hasVertexAIServiceEnv(provider),
+			apiKey: hasVertexAIServiceEnv(provider) ? void 0 : providerApiKey(provider),
+			project: vertexAIProject(provider),
+			location: vertexAILocation(provider)
+		};
+		default: {
+			const exhaustive = provider.type;
+			throw new ByfError(ErrorCodes.MODEL_CONFIG_INVALID, `Unsupported provider type: ${String(exhaustive)}`);
+		}
+	}
+}
+function defaultHeadersField(headers) {
+	if (headers === void 0 || Object.keys(headers).length === 0) return {};
+	return { defaultHeaders: { ...headers } };
+}
+function providerForCapabilityProbe(provider) {
+	if (provider.type === "vertexai") return {
+		...provider,
+		vertexai: false,
+		project: void 0,
+		location: void 0,
+		apiKey: provider.apiKey === void 0 || provider.apiKey.length === 0 ? "capability-probe" : provider.apiKey
+	};
+	if (provider.apiKey !== void 0 && provider.apiKey.length > 0) return provider;
+	return {
+		...provider,
+		apiKey: "capability-probe"
+	};
+}
+function providerApiKey(provider) {
+	switch (provider.type) {
+		case "anthropic": return providerValue(provider.apiKey, provider.env, "ANTHROPIC_API_KEY");
+		case "openai_responses": return providerValue(provider.apiKey, provider.env, "OPENAI_API_KEY");
+		case "openai-completions": return providerValue(provider.apiKey, provider.env, "BYF_API_KEY");
+		case "google-genai": return providerValue(provider.apiKey, provider.env, "GOOGLE_API_KEY");
+		case "vertexai": return nonEmptyString$2(provider.apiKey) ?? envValue(provider.env, "VERTEXAI_API_KEY") ?? envValue(provider.env, "GOOGLE_API_KEY");
+		default: {
+			const exhaustive = provider.type;
+			throw new ByfError(ErrorCodes.MODEL_CONFIG_INVALID, `Unsupported provider type: ${String(exhaustive)}`);
+		}
+	}
+}
+function hasVertexAIServiceEnv(provider) {
+	return vertexAIProject(provider) !== void 0 && vertexAILocation(provider) !== void 0;
+}
+function vertexAIProject(provider) {
+	return envValue(provider.env, "GOOGLE_CLOUD_PROJECT");
+}
+function vertexAILocation(provider) {
+	return envValue(provider.env, "GOOGLE_CLOUD_LOCATION") ?? locationFromVertexAIBaseUrl(provider.baseUrl);
+}
+function providerValue(configured, env, envKey) {
+	return nonEmptyString$2(configured) ?? envValue(env, envKey);
+}
+function envValue(env, key) {
+	return nonEmptyString$2(env?.[key]);
+}
+function nonEmptyString$2(value) {
+	const trimmed = value?.trim();
+	return trimmed === void 0 || trimmed.length === 0 ? void 0 : trimmed;
+}
+function locationFromVertexAIBaseUrl(baseUrl) {
+	const url = nonEmptyString$2(baseUrl);
+	if (url === void 0) return void 0;
+	try {
+		const host = new URL(url).hostname;
+		return host.endsWith("-aiplatform.googleapis.com") ? nonEmptyString$2(host.slice(0, -26)) : void 0;
+	} catch {
+		return;
+	}
+}
+//#endregion
 //#region ../agent-core/src/providers/provider-manager.ts
 var ProviderManager = class ProviderManager {
 	options;
@@ -127043,7 +126719,7 @@ var SessionStore = class {
 			title: normalized,
 			isCustomTitle: true
 		};
-		await writeFile(statePath, `${JSON.stringify(next, null, 2)}\n`, "utf-8");
+		await writeFile$1(statePath, `${JSON.stringify(next, null, 2)}\n`, "utf-8");
 	}
 	async list(options) {
 		const workDir = normalizeWorkDir(options.workDir);
@@ -127098,7 +126774,7 @@ var SessionStore = class {
 			agents: rewriteAgentHomedirs(parsed["agents"], sourceDir, targetDir),
 			custom: Object.assign({}, isRecord$1(parsed["custom"]) ? parsed["custom"] : {}, input.metadata)
 		};
-		await writeFile(statePath, `${JSON.stringify(next, null, 2)}\n`, "utf-8");
+		await writeFile$1(statePath, `${JSON.stringify(next, null, 2)}\n`, "utf-8");
 	}
 	async summaryFromDir(id, sessionDir, workDir) {
 		const dirStat = await stat(sessionDir);
@@ -127995,7 +127671,7 @@ var SDKRpcClient = class {
 				type: "error",
 				sessionId: request.sessionId,
 				agentId: request.agentId,
-				...makeErrorPayload(ErrorCodes.SESSION_APPROVAL_HANDLER_ERROR, errorMessage$1(error))
+				...makeErrorPayload(ErrorCodes.SESSION_APPROVAL_HANDLER_ERROR, errorMessage(error))
 			});
 			return {
 				decision: "cancelled",
@@ -128013,7 +127689,7 @@ var SDKRpcClient = class {
 				type: "error",
 				sessionId: request.sessionId,
 				agentId: request.agentId,
-				...makeErrorPayload(ErrorCodes.SESSION_QUESTION_HANDLER_ERROR, errorMessage$1(error))
+				...makeErrorPayload(ErrorCodes.SESSION_QUESTION_HANDLER_ERROR, errorMessage(error))
 			});
 			return null;
 		}
@@ -128048,7 +127724,7 @@ var ClientAPI = class {
 		return this.client.toolCall(request);
 	}
 };
-function errorMessage$1(error) {
+function errorMessage(error) {
 	return error instanceof Error ? error.message : String(error);
 }
 //#endregion
@@ -128448,38 +128124,6 @@ var ByfHarness = class {
 	async removeProvider(providerId) {
 		return this.rpc.removeProvider(providerId);
 	}
-	async updateConfig(input = {}) {
-		const configPath = input.configPath ?? this.configPath;
-		if (!existsSync(configPath)) return {
-			findings: [],
-			fixed: false
-		};
-		const config = readConfigFile(configPath);
-		const findings = analyzeConfig(config);
-		if (!input.fix || findings.length === 0) return {
-			findings,
-			fixed: false
-		};
-		const backupPath = `${configPath}.bak.${(/* @__PURE__ */ new Date()).toISOString().replaceAll(/[:.]/g, "-")}`;
-		await copyFile(configPath, backupPath);
-		await chmod(backupPath, 384);
-		try {
-			await writeConfigFile(configPath, applyFixes(config, findings));
-			readConfigFile(configPath);
-			return {
-				findings,
-				fixed: true,
-				backupPath
-			};
-		} catch (error) {
-			try {
-				await copyFile(backupPath, configPath);
-			} catch (rollbackError) {
-				throw new Error(`[update-config] Rollback failed: could not restore backup at ${backupPath}. Original error: ${errorMessage(error)}. Rollback error: ${errorMessage(rollbackError)}.`, { cause: rollbackError });
-			}
-			throw error;
-		}
-	}
 	async shellExec(command, options = {}) {
 		const normalizedCommand = command.trim();
 		if (normalizedCommand.length === 0) throw new ByfError(ErrorCodes.REQUEST_INVALID, "Shell command cannot be empty.");
@@ -128510,9 +128154,6 @@ function normalizeSessionId(value) {
 	if (normalized.length === 0) throw new ByfError(ErrorCodes.SESSION_ID_EMPTY, "Session id cannot be empty.");
 	return normalized;
 }
-function errorMessage(error) {
-	return error instanceof Error ? error.message : String(error);
-}
 //#endregion
 //#region src/catalog.ts
 const DEFAULT_CATALOG_URL = "https://models.dev/api.json";