@caplets/core 0.15.0 → 0.17.0

package/dist/index.js

@@ -1,10 +1,15 @@
-import { $ as assertCompleteRequestPrompt, A as CallToolRequestSchema, B as InitializeRequestSchema, C as SERVER_ID_PATTERN, D as Protocol, E as AjvJsonSchemaValidator, F as CreateTaskResultSchema, G as ListResourcesRequestSchema, H as LATEST_PROTOCOL_VERSION, I as ElicitResultSchema, J as LoggingLevelSchema, K as ListRootsResultSchema, L as EmptyResultSchema, M as CompleteRequestSchema, N as CreateMessageResultSchema, O as mergeCapabilities, P as CreateMessageResultWithToolsSchema, Q as SetLevelRequestSchema, R as ErrorCode, S as toSafeError, T as assertToolsCallTaskCapability, U as ListPromptsRequestSchema, V as InitializedNotificationSchema, W as ListResourceTemplatesRequestSchema, X as ReadResourceRequestSchema, Y as McpError, Z as SUPPORTED_PROTOCOL_VERSIONS, _ as resolveProjectCapletsRoot, a as capabilityDescription, at as getSchemaDescription, b as validateCapletFile, c as deleteTokenBundle, ct as normalizeObjectSchema, d as loadConfig, dt as safeParseAsync, et as assertCompleteRequestResourceTemplate, f as loadConfigWithSources, ft as __commonJSMin, g as resolveConfigPath, h as resolveCapletsRoot, i as ServerRegistry, it as getParseErrorMessage, j as CallToolResultSchema, k as toJsonSchemaCompat, l as isTokenBundleExpired, lt as objectFromShape, m as DEFAULT_AUTH_DIR, mt as __toESM, n as generatedToolInputSchema, nt as getLiteralValue, o as runGenericOAuthFlow, ot as isSchemaOptional, p as parseConfig, pt as __require, q as ListToolsRequestSchema, r as handleServerTool, rt as getObjectShape, s as runOAuthFlow, st as isZ4Schema, t as CapletsEngine, tt as ZodOptional, u as readTokenBundle, ut as safeParse, v as resolveProjectConfigPath, w as assertClientRequestTaskCapability, x as CapletsError, y as discoverCapletFiles, z as GetPromptRequestSchema } from "./engine-Bh55p8Lm.js";
+import { A as CompleteRequestSchema, At as string, B as InitializedNotificationSchema, C as assertToolsCallTaskCapability, Ct as resolveProjectConfigPath, D as toJsonSchemaCompat, Dt as ZodOptional, E as mergeCapabilities, Et as SERVER_ID_PATTERN, F as ElicitResultSchema, Ft as toSafeError, G as ListResourcesRequestSchema, H as LATEST_PROTOCOL_VERSION, I as EmptyResultSchema, It as __commonJSMin, J as LoggingLevelSchema, K as ListRootsResultSchema, L as ErrorCode, Lt as __require, M as CreateMessageResultWithToolsSchema, Mt as CAPLETS_ERROR_CODES, N as CreateTaskResultSchema, Nt as CapletsError, O as CallToolRequestSchema, Ot as literal, Pt as redactSecrets, Q as SetLevelRequestSchema, R as GetPromptRequestSchema, Rt as __toESM, S as assertClientRequestTaskCapability, St as resolveProjectCapletsRoot, T as Protocol, Tt as validateCapletFile, U as ListPromptsRequestSchema, V as JSONRPCMessageSchema, W as ListResourceTemplatesRequestSchema, X as ReadResourceRequestSchema, Y as McpError, Z as SUPPORTED_PROTOCOL_VERSIONS, _ as readTokenBundle, _t as loadConfigWithSources, a as resolveCapletsServer, at as isJSONRPCResultResponse, b as serializeMessage, bt as resolveCapletsRoot, c as handleServerTool, ct as getParseErrorMessage, d as runGenericOAuthFlow, dt as isZ4Schema, et as assertCompleteRequestPrompt, f as runOAuthFlow, ft as normalizeObjectSchema, g as isTokenBundleExpired, gt as loadConfig, h as deleteTokenBundle, ht as safeParseAsync, i as resolveCapletsMode, it as isJSONRPCRequest, j as CreateMessageResultSchema, jt as url, k as CallToolResultSchema, kt as object, l as ServerRegistry, lt as getSchemaDescription, m as startOAuthFlow, mt as safeParse, nt as isInitializeRequest, o as CapletsEngine, ot as getLiteralValue, p as startGenericOAuthFlow, pt as objectFromShape, q as ListToolsRequestSchema, r as parseServerBaseUrl, rt as isJSONRPCErrorResponse, s as generatedToolInputSchema, st as getObjectShape, t as controlUrlForBase, tt as assertCompleteRequestResourceTemplate, u as capabilityDescription, ut as isSchemaOptional, vt as parseConfig, w as AjvJsonSchemaValidator, wt as discoverCapletFiles, xt as resolveConfigPath, y as ReadBuffer, yt as DEFAULT_AUTH_DIR, z as InitializeRequestSchema } from "./options-CJEOqS87.js";
 import { accessSync, chmodSync, closeSync, constants, cpSync, existsSync, lstatSync, mkdirSync, mkdtempSync, openSync, readFileSync, rmSync, statSync, writeFileSync, writeSync } from "node:fs";
 import { basename, dirname, join, parse, relative, resolve } from "node:path";
-import { stdin, stdout } from "node:process";
-import { tmpdir } from "node:os";
 import { execFileSync } from "node:child_process";
+import process$1, { stdin, stdout } from "node:process";
+import { tmpdir } from "node:os";
+import { randomUUID, timingSafeEqual } from "node:crypto";
 import { createInterface } from "node:readline/promises";
+import { createServer } from "http";
+import { Http2ServerRequest, constants as constants$1 } from "http2";
+import { Readable } from "stream";
+import crypto$1 from "crypto";
 //#region ../../node_modules/.pnpm/@modelcontextprotocol+sdk@1.29.0_zod@4.4.3/node_modules/@modelcontextprotocol/sdk/dist/esm/experimental/tasks/server.js
 /**
 * Experimental server task features for MCP SDK.
@@ -1314,16 +1319,17 @@ const EMPTY_COMPLETION_RESULT = { completion: {
 } };
 //#endregion
 //#region package.json
-var version = "0.15.0";
+var version = "0.17.0";
 //#endregion
-//#region src/runtime.ts
-var CapletsRuntime = class {
-	server;
+//#region src/serve/session.ts
+var CapletsMcpSession = class {
 	engine;
+	server;
 	tools = /* @__PURE__ */ new Map();
 	unsubscribeReload;
-	constructor(options = {}) {
-		this.engine = new CapletsEngine(engineOptions(options));
+	closed = false;
+	constructor(engine, options = {}) {
+		this.engine = engine;
 		this.server = options.server ?? new McpServer({
 			name: "caplets",
 			version
@@ -1334,28 +1340,15 @@ var CapletsRuntime = class {
 	async connect(transport) {
 		await this.server.connect(transport);
 	}
-	scheduleReload() {
-		this.engine.scheduleReload();
-	}
-	async reload() {
-		return await this.engine.reload();
-	}
-	async close() {
-		this.unsubscribeReload();
-		try {
-			await this.engine.close();
-		} finally {
-			await this.server.close();
-		}
-	}
-	currentConfig() {
-		return this.engine.currentConfig();
-	}
 	registeredToolIds() {
 		return [...this.tools.keys()].sort();
 	}
-	watchedPaths() {
-		return this.engine.watchedPaths();
+	async close() {
+		if (this.closed) return;
+		this.closed = true;
+		this.unsubscribeReload();
+		this.tools.clear();
+		await this.server.close();
 	}
 	reconcileTools(previous, next) {
 		const enabled = new Map(nextEnabledServers(next).map((server) => [server.server, server]));
@@ -1406,6 +1399,46 @@ function capletById(config, serverId) {
 function serializeCaplet(caplet) {
 	return JSON.stringify(caplet ?? null);
 }
+//#endregion
+//#region src/runtime.ts
+var CapletsRuntime = class {
+	server;
+	engine;
+	session;
+	constructor(options = {}) {
+		this.engine = new CapletsEngine(engineOptions(options));
+		this.session = new CapletsMcpSession(this.engine, selectSessionOptions(options));
+		this.server = this.session.server;
+	}
+	async connect(transport) {
+		await this.session.connect(transport);
+	}
+	scheduleReload() {
+		this.engine.scheduleReload();
+	}
+	async reload() {
+		return await this.engine.reload();
+	}
+	async close() {
+		try {
+			await this.session.close();
+		} finally {
+			await this.engine.close();
+		}
+	}
+	currentConfig() {
+		return this.engine.currentConfig();
+	}
+	registeredToolIds() {
+		return this.session.registeredToolIds();
+	}
+	watchedPaths() {
+		return this.engine.watchedPaths();
+	}
+};
+function selectSessionOptions(options) {
+	return options.server === void 0 ? {} : { server: options.server };
+}
 function engineOptions(options) {
 	const engineOptions = {};
 	if (options.configPath !== void 0) engineOptions.configPath = options.configPath;
@@ -4888,49 +4921,56 @@ async function loginAuth(serverId, options) {
 	}
 }
 function logoutAuth(serverId, options) {
-	assertLoginTarget(findAuthTarget(serverId, loadConfig(options.configPath)), serverId);
-	if (deleteTokenBundle(serverId, options.authDir)) options.writeOut(`Deleted OAuth credentials for \`${serverId}\`.\n`);
+	if (logoutAuthResult(serverId, options).deleted) options.writeOut(`Deleted OAuth credentials for \`${serverId}\`.\n`);
 	else options.writeOut(`No OAuth credentials found for \`${serverId}\`.\n`);
 }
+function logoutAuthResult(serverId, options) {
+	assertLoginTarget(findAuthTarget(serverId, loadConfig(options.configPath)), serverId);
+	return {
+		server: serverId,
+		deleted: deleteTokenBundle(serverId, options.authDir)
+	};
+}
 function listAuth(options) {
-	const servers = authTargets(loadConfig(options.configPath)).sort((left, right) => left.server.localeCompare(right.server));
+	const rows = listAuthRows(options);
 	const format = options.format ?? "plain";
 	if (format === "json") {
-		const rows = servers.map((server) => {
-			const bundle = readTokenBundle(server.server, options.authDir);
-			const status = !bundle ? "missing" : isTokenBundleExpired(bundle) ? "expired" : "authenticated";
-			return {
-				server: server.server,
-				status,
-				...bundle?.expiresAt ? { expiresAt: bundle.expiresAt } : {},
-				...bundle?.scope ? { scope: bundle.scope } : {}
-			};
-		});
 		options.writeOut(`${JSON.stringify(rows, null, 2)}\n`);
 		return;
 	}
-	if (servers.length === 0) {
-		options.writeOut(format === "markdown" ? "## OAuth credentials\n\nNo configured remote OAuth servers found.\n" : "No configured remote OAuth servers found.\n");
-		return;
-	}
-	if (format === "markdown") options.writeOut("## OAuth credentials\n\n");
-	else options.writeOut("OAuth credentials\n\n");
-	for (const server of servers) {
+	options.writeOut(formatAuthRows(rows, format));
+}
+function listAuthRows(options) {
+	return authTargets(loadConfig(options.configPath)).sort((left, right) => left.server.localeCompare(right.server)).map((server) => {
 		const bundle = readTokenBundle(server.server, options.authDir);
 		const status = !bundle ? "missing" : isTokenBundleExpired(bundle) ? "expired" : "authenticated";
-		const details = [bundle?.expiresAt ? `expires ${bundle.expiresAt}` : void 0, bundle?.scope ? `scope ${bundle.scope}` : void 0].filter(Boolean).join("; ");
+		return {
+			server: server.server,
+			status,
+			...bundle?.expiresAt ? { expiresAt: bundle.expiresAt } : {},
+			...bundle?.scope ? { scope: bundle.scope } : {}
+		};
+	});
+}
+function formatAuthRows(rows, format) {
+	if (rows.length === 0) return format === "markdown" ? "## OAuth credentials\n\nNo configured remote OAuth servers found.\n" : "No configured remote OAuth servers found.\n";
+	let output = "";
+	if (format === "markdown") output += "## OAuth credentials\n\n";
+	else output += "OAuth credentials\n\n";
+	for (const row of rows) {
+		const details = [row.expiresAt ? `expires ${row.expiresAt}` : void 0, row.scope ? `scope ${row.scope}` : void 0].filter(Boolean).join("; ");
 		if (format === "markdown") {
-			options.writeOut(`- \`${server.server}\` — ${status}${details ? ` (${details})` : ""}\n`);
+			output += `- \`${row.server}\` — ${row.status}${details ? ` (${details})` : ""}\n`;
 			continue;
 		}
-		options.writeOut([
-			server.server,
-			`  Status: ${status}`,
-			...bundle?.expiresAt ? [`  Expires: ${bundle.expiresAt}`] : [],
-			...bundle?.scope ? [`  Scope: ${bundle.scope}`] : []
-		].join("\n"));
-		options.writeOut("\n\n");
+		output += [
+			row.server,
+			`  Status: ${row.status}`,
+			...row.expiresAt ? [`  Expires: ${row.expiresAt}`] : [],
+			...row.scope ? [`  Scope: ${row.scope}`] : []
+		].join("\n") + "\n\n";
 	}
+	return output;
 }
 function findAuthTarget(serverId, config = loadConfig()) {
 	return authTargets(config).find((server) => server.server === serverId);
@@ -5357,134 +5397,3969 @@ function nearestExistingParent(path) {
 	return nearestExistingParent(parent);
 }
 //#endregion
-//#region src/cli.ts
-async function runCli(args, io = {}) {
-	const program = createProgram(io);
+//#region src/remote-control/client.ts
+var RemoteControlClient = class {
+	#baseUrl;
+	#requestInit;
+	#fetch;
+	constructor(options) {
+		this.#baseUrl = options.baseUrl;
+		this.#requestInit = options.requestInit;
+		this.#fetch = options.fetch ?? fetch;
+	}
+	async request(command, args) {
+		const controlUrl = controlUrlForBase(this.#baseUrl);
+		let response;
+		try {
+			response = await this.#fetch(controlUrl, {
+				...this.#requestInit,
+				method: "POST",
+				headers: mergeJsonHeaders(this.#requestInit.headers),
+				body: JSON.stringify({
+					command,
+					arguments: args
+				})
+			});
+		} catch (error) {
+			throw new CapletsError("SERVER_UNAVAILABLE", `Could not connect to Caplets server at ${safeBaseUrl(this.#baseUrl)}.`, toSafeError(error, "SERVER_UNAVAILABLE"));
+		}
+		if (response.status === 401 || response.status === 403) throw new CapletsError("AUTH_FAILED", "Caplets server authentication failed. Check CAPLETS_SERVER_USER and CAPLETS_SERVER_PASSWORD.");
+		if (!response.ok) throw new CapletsError("SERVER_UNAVAILABLE", `Caplets server at ${safeBaseUrl(this.#baseUrl)} returned HTTP ${response.status}.`);
+		const payload = await parseRemoteCliResponse(response);
+		if (!payload.ok) throw new CapletsError(payload.error.code, redactRemoteMessage(payload.error.message), payload.error.nextAction === void 0 ? void 0 : { nextAction: payload.error.nextAction });
+		return payload.result;
+	}
+};
+function mergeJsonHeaders(headers) {
+	const merged = new Headers(headers);
+	merged.set("content-type", "application/json");
+	return merged;
+}
+function safeBaseUrl(baseUrl) {
+	const safe = new URL(baseUrl.href);
+	safe.username = "";
+	safe.password = "";
+	safe.search = "";
+	safe.hash = "";
+	return safe.toString();
+}
+async function parseRemoteCliResponse(response) {
+	let payload;
 	try {
-		await program.parseAsync([
-			"node",
-			"caplets",
-			...args
-		]);
+		payload = await response.json();
 	} catch (error) {
-		if (error instanceof CommanderError) {
-			if (error.code === "commander.helpDisplayed" || error.code === "commander.version" || error.message === "(outputHelp)") return;
-			throw new CapletsError("REQUEST_INVALID", error.message);
-		}
-		throw error;
+		throw invalidRemoteControlResponse(error);
 	}
+	if (!isRecord(payload)) throw invalidRemoteControlResponse();
+	if (payload.ok === true) {
+		if (!("result" in payload)) throw invalidRemoteControlResponse();
+		return {
+			ok: true,
+			result: payload.result
+		};
+	}
+	if (payload.ok === false) {
+		const error = payload.error;
+		if (!isRecord(error) || typeof error.code !== "string" || typeof error.message !== "string") throw invalidRemoteControlResponse();
+		if ("nextAction" in error && error.nextAction !== void 0 && typeof error.nextAction !== "string") throw invalidRemoteControlResponse();
+		const errorResponse = {
+			ok: false,
+			error: {
+				code: isCapletsErrorCode(error.code) ? error.code : "DOWNSTREAM_TOOL_ERROR",
+				message: error.message
+			}
+		};
+		if (typeof error.nextAction === "string") errorResponse.error.nextAction = error.nextAction;
+		return errorResponse;
+	}
+	throw invalidRemoteControlResponse();
 }
-function createProgram(io = {}) {
-	const writeOut = io.writeOut ?? ((value) => process.stdout.write(value));
-	const writeErr = io.writeErr ?? ((value) => process.stderr.write(value));
-	const setExitCode = io.setExitCode ?? ((code) => {
-		process.exitCode = code;
-	});
-	const program = new Command();
-	program.name("caplets").description("Progressive-disclosure gateway for MCP servers.").version(io.version ?? version).exitOverride().configureOutput({
-		writeOut,
-		writeErr,
-		outputError: (value, write) => write(value)
-	});
-	program.command("init").description("Create a starter Caplets config file.").option("--force", "overwrite an existing config file").action((options) => {
-		const configPath = envConfigPath();
-		writeOut(`Created Caplets config at ${initConfig({
-			...configPath ? { path: configPath } : {},
-			force: Boolean(options.force)
-		})}\n`);
-	});
-	program.command("list").description("List configured Caplets.").option("--all", "include disabled Caplets").option("--json", "print JSON output").option("--format <format>", "output format: plain, markdown, md, or json", parseOutputFormat).action((options) => {
-		const rows = listCaplets(loadConfigWithSources(envConfigPath()), { includeDisabled: Boolean(options.all) });
-		if (options.json || options.format === "json") {
-			writeOut(`${JSON.stringify(rows, null, 2)}\n`);
-			return;
+function invalidRemoteControlResponse(cause) {
+	return new CapletsError("DOWNSTREAM_PROTOCOL_ERROR", "Caplets server returned an invalid remote control response.", cause === void 0 ? void 0 : toSafeError(cause, "DOWNSTREAM_PROTOCOL_ERROR"));
+}
+function isRecord(value) {
+	return value !== null && typeof value === "object" && !Array.isArray(value);
+}
+function isCapletsErrorCode(value) {
+	return CAPLETS_ERROR_CODES.includes(value);
+}
+function redactRemoteMessage(message) {
+	return String(redactSecrets(message)).replace(/\b(authorization\s*:\s*(?:basic|bearer)\s+)[^\s,;]+/giu, "$1[REDACTED]").replace(/\b((?:access_)?token=)[^\s,;]+/giu, "$1[REDACTED]").replace(/\b((?:token|secret|authorization|auth|api[-_]?key|password|credential|clientsecret|client_secret|code|refresh(?:_token)?)\s*[=:]\s*)[^\s,;]+/giu, "$1[REDACTED]");
+}
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/compose.js
+var compose = (middleware, onError, onNotFound) => {
+	return (context, next) => {
+		let index = -1;
+		return dispatch(0);
+		async function dispatch(i) {
+			if (i <= index) throw new Error("next() called multiple times");
+			index = i;
+			let res;
+			let isError = false;
+			let handler;
+			if (middleware[i]) {
+				handler = middleware[i][0][0];
+				context.req.routeIndex = i;
+			} else handler = i === middleware.length && next || void 0;
+			if (handler) try {
+				res = await handler(context, () => dispatch(i + 1));
+			} catch (err) {
+				if (err instanceof Error && onError) {
+					context.error = err;
+					res = await onError(err, context);
+					isError = true;
+				} else throw err;
+			}
+			else if (context.finalized === false && onNotFound) res = await onNotFound(context);
+			if (res && (context.finalized === false || isError)) context.res = res;
+			return context;
 		}
-		writeOut(formatCapletList(rows, options.format ?? "plain"));
-	});
-	program.command("install").description("Install Caplets from a repo's caplets directory.").argument("<repo>", "local repo path, Git URL, or GitHub owner/repo").argument("[caplets...]", "optional Caplet IDs to install").option("-g, --global", "install to the user Caplets root").option("--force", "overwrite installed Caplets").action((repo, capletIds, options) => {
-		const result = installCaplets(repo, {
-			capletIds,
-			force: Boolean(options.force),
-			destinationRoot: options.global ? resolveCapletsRoot(resolveConfigPath(envConfigPath())) : resolveProjectCapletsRoot()
-		});
-		for (const caplet of result.installed) writeOut(`Installed ${caplet.id} to ${caplet.destination}\n`);
-	});
-	const add = program.command("add").description("Add generated Caplet files.");
-	add.command("cli").description("Add a CLI tools Caplet.").argument("<id>", "Caplet ID/display seed").option("--repo <path>", "repository path to inspect").option("--include <items>", "comma-separated generators to include: git,gh,package").option("--command <name>", "single CLI command template to generate").option("-g, --global", "write to the user Caplets root").option("--print", "print generated Caplet text without writing a file").option("--output <path>", "output path").option("--force", "overwrite an existing destination file").action((id, options) => {
-		const result = addCliCaplet(id, {
-			...options,
-			destinationRoot: options.global ? resolveCapletsRoot(resolveConfigPath(envConfigPath())) : resolveProjectCapletsRoot()
+	};
+};
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/http-exception.js
+var HTTPException = class extends Error {
+	res;
+	status;
+	/**
+	* Creates an instance of `HTTPException`.
+	* @param status - HTTP status code for the exception. Defaults to 500.
+	* @param options - Additional options for the exception.
+	*/
+	constructor(status = 500, options) {
+		super(options?.message, { cause: options?.cause });
+		this.res = options?.res;
+		this.status = status;
+	}
+	/**
+	* Returns the response object associated with the exception.
+	* If a response object is not provided, a new response is created with the error message and status code.
+	* @returns The response object.
+	*/
+	getResponse() {
+		if (this.res) return new Response(this.res.body, {
+			status: this.status,
+			headers: this.res.headers
 		});
-		if (result.path) {
-			writeOut(`Wrote CLI Caplet to ${result.path}\n`);
-			return;
-		}
-		writeOut(result.text);
+		return new Response(this.message, { status: this.status });
+	}
+};
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/request/constants.js
+var GET_MATCH_RESULT = /* @__PURE__ */ Symbol();
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/utils/body.js
+var parseBody = async (request, options = /* @__PURE__ */ Object.create(null)) => {
+	const { all = false, dot = false } = options;
+	const contentType = (request instanceof HonoRequest ? request.raw.headers : request.headers).get("Content-Type");
+	if (contentType?.startsWith("multipart/form-data") || contentType?.startsWith("application/x-www-form-urlencoded")) return parseFormData(request, {
+		all,
+		dot
 	});
-	add.command("mcp").description("Add an MCP backend Caplet.").argument("<id>", "Caplet ID/display seed").option("--command <name>", "stdio command").option("--arg <value>", "stdio command argument", collect, []).option("--cwd <path>", "stdio working directory").option("--env <KEY=VALUE>", "stdio environment variable", collect, []).option("--url <url>", "remote MCP server URL").option("--transport <transport>", "remote transport: http or sse").option("--token-env <ENV>", "bearer token environment variable reference").option("-g, --global", "write to the user Caplets root").option("--print", "print generated Caplet text without writing a file").option("--output <path>", "output path").option("--force", "overwrite an existing destination file").action((id, options) => {
-		writeAddResult(writeOut, "MCP", addMcpCaplet(id, {
-			...options,
-			destinationRoot: addDestinationRoot(options)
-		}));
+	return {};
+};
+async function parseFormData(request, options) {
+	const formData = await request.formData();
+	if (formData) return convertFormDataToBodyData(formData, options);
+	return {};
+}
+function convertFormDataToBodyData(formData, options) {
+	const form = /* @__PURE__ */ Object.create(null);
+	formData.forEach((value, key) => {
+		if (!(options.all || key.endsWith("[]"))) form[key] = value;
+		else handleParsingAllValues(form, key, value);
 	});
-	add.command("openapi").description("Add an OpenAPI backend Caplet.").argument("<id>", "Caplet ID/display seed").option("--spec <path-or-url>", "OpenAPI spec path or URL").option("--base-url <url>", "request base URL override").option("--token-env <ENV>", "bearer token environment variable reference").option("-g, --global", "write to the user Caplets root").option("--print", "print generated Caplet text without writing a file").option("--output <path>", "output path").option("--force", "overwrite an existing destination file").action((id, options) => {
-		writeAddResult(writeOut, "OpenAPI", addOpenApiCaplet(id, {
-			...options,
-			destinationRoot: addDestinationRoot(options)
-		}));
+	if (options.dot) Object.entries(form).forEach(([key, value]) => {
+		if (key.includes(".")) {
+			handleParsingNestedValues(form, key, value);
+			delete form[key];
+		}
 	});
-	add.command("graphql").description("Add a GraphQL backend Caplet.").argument("<id>", "Caplet ID/display seed").option("--endpoint-url <url>", "GraphQL endpoint URL").option("--schema <path-or-url>", "GraphQL schema path or URL").option("--introspection", "load schema through endpoint introspection").option("--token-env <ENV>", "bearer token environment variable reference").option("-g, --global", "write to the user Caplets root").option("--print", "print generated Caplet text without writing a file").option("--output <path>", "output path").option("--force", "overwrite an existing destination file").action((id, options) => {
-		writeAddResult(writeOut, "GraphQL", addGraphqlCaplet(id, {
-			...options,
-			destinationRoot: addDestinationRoot(options)
-		}));
+	return form;
+}
+var handleParsingAllValues = (form, key, value) => {
+	if (form[key] !== void 0) if (Array.isArray(form[key])) form[key].push(value);
+	else form[key] = [form[key], value];
+	else if (!key.endsWith("[]")) form[key] = value;
+	else form[key] = [value];
+};
+var handleParsingNestedValues = (form, key, value) => {
+	if (/(?:^|\.)__proto__\./.test(key)) return;
+	let nestedForm = form;
+	const keys = key.split(".");
+	keys.forEach((key2, index) => {
+		if (index === keys.length - 1) nestedForm[key2] = value;
+		else {
+			if (!nestedForm[key2] || typeof nestedForm[key2] !== "object" || Array.isArray(nestedForm[key2]) || nestedForm[key2] instanceof File) nestedForm[key2] = /* @__PURE__ */ Object.create(null);
+			nestedForm = nestedForm[key2];
+		}
 	});
-	add.command("http").description("Add an HTTP actions backend Caplet.").argument("<id>", "Caplet ID/display seed").option("--base-url <url>", "HTTP API base URL").option("--action <name:METHOD:/path>", "HTTP action", collect, []).option("--token-env <ENV>", "bearer token environment variable reference").option("-g, --global", "write to the user Caplets root").option("--print", "print generated Caplet text without writing a file").option("--output <path>", "output path").option("--force", "overwrite an existing destination file").action((id, options) => {
-		writeAddResult(writeOut, "HTTP", addHttpCaplet(id, {
-			...options,
-			destinationRoot: addDestinationRoot(options)
-		}));
+};
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/utils/url.js
+var splitPath = (path) => {
+	const paths = path.split("/");
+	if (paths[0] === "") paths.shift();
+	return paths;
+};
+var splitRoutingPath = (routePath) => {
+	const { groups, path } = extractGroupsFromPath(routePath);
+	return replaceGroupMarks(splitPath(path), groups);
+};
+var extractGroupsFromPath = (path) => {
+	const groups = [];
+	path = path.replace(/\{[^}]+\}/g, (match, index) => {
+		const mark = `@${index}`;
+		groups.push([mark, match]);
+		return mark;
 	});
-	program.command("get-caplet").description("Print a configured Caplet card.").argument("<caplet>", "configured Caplet ID").option("--format <format>", "output format: markdown, md, plain, or json", parseOutputFormat).action(async (caplet, options) => {
-		await executeOperation(caplet, { operation: "get_caplet" }, {
-			writeOut,
-			writeErr,
-			setExitCode,
-			authDir: io.authDir,
-			format: options.format
+	return {
+		groups,
+		path
+	};
+};
+var replaceGroupMarks = (paths, groups) => {
+	for (let i = groups.length - 1; i >= 0; i--) {
+		const [mark] = groups[i];
+		for (let j = paths.length - 1; j >= 0; j--) if (paths[j].includes(mark)) {
+			paths[j] = paths[j].replace(mark, groups[i][1]);
+			break;
+		}
+	}
+	return paths;
+};
+var patternCache = {};
+var getPattern = (label, next) => {
+	if (label === "*") return "*";
+	const match = label.match(/^\:([^\{\}]+)(?:\{(.+)\})?$/);
+	if (match) {
+		const cacheKey = `${label}#${next}`;
+		if (!patternCache[cacheKey]) if (match[2]) patternCache[cacheKey] = next && next[0] !== ":" && next[0] !== "*" ? [
+			cacheKey,
+			match[1],
+			new RegExp(`^${match[2]}(?=/${next})`)
+		] : [
+			label,
+			match[1],
+			new RegExp(`^${match[2]}$`)
+		];
+		else patternCache[cacheKey] = [
+			label,
+			match[1],
+			true
+		];
+		return patternCache[cacheKey];
+	}
+	return null;
+};
+var tryDecode = (str, decoder) => {
+	try {
+		return decoder(str);
+	} catch {
+		return str.replace(/(?:%[0-9A-Fa-f]{2})+/g, (match) => {
+			try {
+				return decoder(match);
+			} catch {
+				return match;
+			}
 		});
+	}
+};
+var tryDecodeURI = (str) => tryDecode(str, decodeURI);
+var getPath = (request) => {
+	const url = request.url;
+	const start = url.indexOf("/", url.indexOf(":") + 4);
+	let i = start;
+	for (; i < url.length; i++) {
+		const charCode = url.charCodeAt(i);
+		if (charCode === 37) {
+			const queryIndex = url.indexOf("?", i);
+			const hashIndex = url.indexOf("#", i);
+			const end = queryIndex === -1 ? hashIndex === -1 ? void 0 : hashIndex : hashIndex === -1 ? queryIndex : Math.min(queryIndex, hashIndex);
+			const path = url.slice(start, end);
+			return tryDecodeURI(path.includes("%25") ? path.replace(/%25/g, "%2525") : path);
+		} else if (charCode === 63 || charCode === 35) break;
+	}
+	return url.slice(start, i);
+};
+var getPathNoStrict = (request) => {
+	const result = getPath(request);
+	return result.length > 1 && result.at(-1) === "/" ? result.slice(0, -1) : result;
+};
+var mergePath = (base, sub, ...rest) => {
+	if (rest.length) sub = mergePath(sub, ...rest);
+	return `${base?.[0] === "/" ? "" : "/"}${base}${sub === "/" ? "" : `${base?.at(-1) === "/" ? "" : "/"}${sub?.[0] === "/" ? sub.slice(1) : sub}`}`;
+};
+var checkOptionalParameter = (path) => {
+	if (path.charCodeAt(path.length - 1) !== 63 || !path.includes(":")) return null;
+	const segments = path.split("/");
+	const results = [];
+	let basePath = "";
+	segments.forEach((segment) => {
+		if (segment !== "" && !/\:/.test(segment)) basePath += "/" + segment;
+		else if (/\:/.test(segment)) if (/\?/.test(segment)) {
+			if (results.length === 0 && basePath === "") results.push("/");
+			else results.push(basePath);
+			const optionalSegment = segment.replace("?", "");
+			basePath += "/" + optionalSegment;
+			results.push(basePath);
+		} else basePath += "/" + segment;
 	});
-	program.command("check-backend").description("Check backend availability for a configured Caplet.").argument("<caplet>", "configured Caplet ID").option("--format <format>", "output format: markdown, md, plain, or json", parseOutputFormat).action(async (caplet, options) => {
-		await executeOperation(caplet, { operation: "check_backend" }, {
-			writeOut,
-			writeErr,
-			setExitCode,
-			authDir: io.authDir,
-			format: options.format
+	return results.filter((v, i, a) => a.indexOf(v) === i);
+};
+var _decodeURI = (value) => {
+	if (!/[%+]/.test(value)) return value;
+	if (value.indexOf("+") !== -1) value = value.replace(/\+/g, " ");
+	return value.indexOf("%") !== -1 ? tryDecode(value, decodeURIComponent_) : value;
+};
+var _getQueryParam = (url, key, multiple) => {
+	let encoded;
+	if (!multiple && key && !/[%+]/.test(key)) {
+		let keyIndex2 = url.indexOf("?", 8);
+		if (keyIndex2 === -1) return;
+		if (!url.startsWith(key, keyIndex2 + 1)) keyIndex2 = url.indexOf(`&${key}`, keyIndex2 + 1);
+		while (keyIndex2 !== -1) {
+			const trailingKeyCode = url.charCodeAt(keyIndex2 + key.length + 1);
+			if (trailingKeyCode === 61) {
+				const valueIndex = keyIndex2 + key.length + 2;
+				const endIndex = url.indexOf("&", valueIndex);
+				return _decodeURI(url.slice(valueIndex, endIndex === -1 ? void 0 : endIndex));
+			} else if (trailingKeyCode == 38 || isNaN(trailingKeyCode)) return "";
+			keyIndex2 = url.indexOf(`&${key}`, keyIndex2 + 1);
+		}
+		encoded = /[%+]/.test(url);
+		if (!encoded) return;
+	}
+	const results = {};
+	encoded ??= /[%+]/.test(url);
+	let keyIndex = url.indexOf("?", 8);
+	while (keyIndex !== -1) {
+		const nextKeyIndex = url.indexOf("&", keyIndex + 1);
+		let valueIndex = url.indexOf("=", keyIndex);
+		if (valueIndex > nextKeyIndex && nextKeyIndex !== -1) valueIndex = -1;
+		let name = url.slice(keyIndex + 1, valueIndex === -1 ? nextKeyIndex === -1 ? void 0 : nextKeyIndex : valueIndex);
+		if (encoded) name = _decodeURI(name);
+		keyIndex = nextKeyIndex;
+		if (name === "") continue;
+		let value;
+		if (valueIndex === -1) value = "";
+		else {
+			value = url.slice(valueIndex + 1, nextKeyIndex === -1 ? void 0 : nextKeyIndex);
+			if (encoded) value = _decodeURI(value);
+		}
+		if (multiple) {
+			if (!(results[name] && Array.isArray(results[name]))) results[name] = [];
+			results[name].push(value);
+		} else results[name] ??= value;
+	}
+	return key ? results[key] : results;
+};
+var getQueryParam = _getQueryParam;
+var getQueryParams = (url, key) => {
+	return _getQueryParam(url, key, true);
+};
+var decodeURIComponent_ = decodeURIComponent;
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/request.js
+var tryDecodeURIComponent = (str) => tryDecode(str, decodeURIComponent_);
+var HonoRequest = class {
+	/**
+	* `.raw` can get the raw Request object.
+	*
+	* @see {@link https://hono.dev/docs/api/request#raw}
+	*
+	* @example
+	* ```ts
+	* // For Cloudflare Workers
+	* app.post('/', async (c) => {
+	*   const metadata = c.req.raw.cf?.hostMetadata?
+	*   ...
+	* })
+	* ```
+	*/
+	raw;
+	#validatedData;
+	#matchResult;
+	routeIndex = 0;
+	/**
+	* `.path` can get the pathname of the request.
+	*
+	* @see {@link https://hono.dev/docs/api/request#path}
+	*
+	* @example
+	* ```ts
+	* app.get('/about/me', (c) => {
+	*   const pathname = c.req.path // `/about/me`
+	* })
+	* ```
+	*/
+	path;
+	bodyCache = {};
+	constructor(request, path = "/", matchResult = [[]]) {
+		this.raw = request;
+		this.path = path;
+		this.#matchResult = matchResult;
+		this.#validatedData = {};
+	}
+	param(key) {
+		return key ? this.#getDecodedParam(key) : this.#getAllDecodedParams();
+	}
+	#getDecodedParam(key) {
+		const paramKey = this.#matchResult[0][this.routeIndex][1][key];
+		const param = this.#getParamValue(paramKey);
+		return param && /\%/.test(param) ? tryDecodeURIComponent(param) : param;
+	}
+	#getAllDecodedParams() {
+		const decoded = {};
+		const keys = Object.keys(this.#matchResult[0][this.routeIndex][1]);
+		for (const key of keys) {
+			const value = this.#getParamValue(this.#matchResult[0][this.routeIndex][1][key]);
+			if (value !== void 0) decoded[key] = /\%/.test(value) ? tryDecodeURIComponent(value) : value;
+		}
+		return decoded;
+	}
+	#getParamValue(paramKey) {
+		return this.#matchResult[1] ? this.#matchResult[1][paramKey] : paramKey;
+	}
+	query(key) {
+		return getQueryParam(this.url, key);
+	}
+	queries(key) {
+		return getQueryParams(this.url, key);
+	}
+	header(name) {
+		if (name) return this.raw.headers.get(name) ?? void 0;
+		const headerData = {};
+		this.raw.headers.forEach((value, key) => {
+			headerData[key] = value;
 		});
-	});
-	program.command("list-tools").description("List downstream tools for a configured Caplet.").argument("<caplet>", "configured Caplet ID").option("--format <format>", "output format: markdown, md, plain, or json", parseOutputFormat).action(async (caplet, options) => {
-		await executeOperation(caplet, { operation: "list_tools" }, {
-			writeOut,
-			writeErr,
-			setExitCode,
-			authDir: io.authDir,
-			format: options.format
+		return headerData;
+	}
+	async parseBody(options) {
+		return parseBody(this, options);
+	}
+	#cachedBody = (key) => {
+		const { bodyCache, raw } = this;
+		const cachedBody = bodyCache[key];
+		if (cachedBody) return cachedBody;
+		const anyCachedKey = Object.keys(bodyCache)[0];
+		if (anyCachedKey) return bodyCache[anyCachedKey].then((body) => {
+			if (anyCachedKey === "json") body = JSON.stringify(body);
+			return new Response(body)[key]();
 		});
-	});
-	program.command("search-tools").description("Search downstream tools for a configured Caplet.").argument("<caplet>", "configured Caplet ID").argument("<query>", "search query").option("--limit <n>", "maximum number of tools to return", parsePositiveInteger).option("--format <format>", "output format: markdown, md, plain, or json", parseOutputFormat).action(async (caplet, query, options) => {
-		await executeOperation(caplet, options.limit === void 0 ? {
-			operation: "search_tools",
-			query
-		} : {
-			operation: "search_tools",
-			query,
-			limit: options.limit
+		return bodyCache[key] = raw[key]();
+	};
+	/**
+	* `.json()` can parse Request body of type `application/json`
+	*
+	* @see {@link https://hono.dev/docs/api/request#json}
+	*
+	* @example
+	* ```ts
+	* app.post('/entry', async (c) => {
+	*   const body = await c.req.json()
+	* })
+	* ```
+	*/
+	json() {
+		return this.#cachedBody("text").then((text) => JSON.parse(text));
+	}
+	/**
+	* `.text()` can parse Request body of type `text/plain`
+	*
+	* @see {@link https://hono.dev/docs/api/request#text}
+	*
+	* @example
+	* ```ts
+	* app.post('/entry', async (c) => {
+	*   const body = await c.req.text()
+	* })
+	* ```
+	*/
+	text() {
+		return this.#cachedBody("text");
+	}
+	/**
+	* `.arrayBuffer()` parse Request body as an `ArrayBuffer`
+	*
+	* @see {@link https://hono.dev/docs/api/request#arraybuffer}
+	*
+	* @example
+	* ```ts
+	* app.post('/entry', async (c) => {
+	*   const body = await c.req.arrayBuffer()
+	* })
+	* ```
+	*/
+	arrayBuffer() {
+		return this.#cachedBody("arrayBuffer");
+	}
+	/**
+	* `.bytes()` parses the request body as a `Uint8Array`.
+	*
+	* @see {@link https://hono.dev/docs/api/request#bytes}
+	*
+	* @example
+	* ```ts
+	* app.post('/entry', async (c) => {
+	*   const body = await c.req.bytes()
+	* })
+	* ```
+	*/
+	bytes() {
+		return this.#cachedBody("arrayBuffer").then((buffer) => new Uint8Array(buffer));
+	}
+	/**
+	* Parses the request body as a `Blob`.
+	* @example
+	* ```ts
+	* app.post('/entry', async (c) => {
+	*   const body = await c.req.blob();
+	* });
+	* ```
+	* @see https://hono.dev/docs/api/request#blob
+	*/
+	blob() {
+		return this.#cachedBody("blob");
+	}
+	/**
+	* Parses the request body as `FormData`.
+	* @example
+	* ```ts
+	* app.post('/entry', async (c) => {
+	*   const body = await c.req.formData();
+	* });
+	* ```
+	* @see https://hono.dev/docs/api/request#formdata
+	*/
+	formData() {
+		return this.#cachedBody("formData");
+	}
+	/**
+	* Adds validated data to the request.
+	*
+	* @param target - The target of the validation.
+	* @param data - The validated data to add.
+	*/
+	addValidatedData(target, data) {
+		this.#validatedData[target] = data;
+	}
+	valid(target) {
+		return this.#validatedData[target];
+	}
+	/**
+	* `.url()` can get the request url strings.
+	*
+	* @see {@link https://hono.dev/docs/api/request#url}
+	*
+	* @example
+	* ```ts
+	* app.get('/about/me', (c) => {
+	*   const url = c.req.url // `http://localhost:8787/about/me`
+	*   ...
+	* })
+	* ```
+	*/
+	get url() {
+		return this.raw.url;
+	}
+	/**
+	* `.method()` can get the method name of the request.
+	*
+	* @see {@link https://hono.dev/docs/api/request#method}
+	*
+	* @example
+	* ```ts
+	* app.get('/about/me', (c) => {
+	*   const method = c.req.method // `GET`
+	* })
+	* ```
+	*/
+	get method() {
+		return this.raw.method;
+	}
+	get [GET_MATCH_RESULT]() {
+		return this.#matchResult;
+	}
+	/**
+	* `.matchedRoutes()` can return a matched route in the handler
+	*
+	* @deprecated
+	*
+	* Use matchedRoutes helper defined in "hono/route" instead.
+	*
+	* @see {@link https://hono.dev/docs/api/request#matchedroutes}
+	*
+	* @example
+	* ```ts
+	* app.use('*', async function logger(c, next) {
+	*   await next()
+	*   c.req.matchedRoutes.forEach(({ handler, method, path }, i) => {
+	*     const name = handler.name || (handler.length < 2 ? '[handler]' : '[middleware]')
+	*     console.log(
+	*       method,
+	*       ' ',
+	*       path,
+	*       ' '.repeat(Math.max(10 - path.length, 0)),
+	*       name,
+	*       i === c.req.routeIndex ? '<- respond from here' : ''
+	*     )
+	*   })
+	* })
+	* ```
+	*/
+	get matchedRoutes() {
+		return this.#matchResult[0].map(([[, route]]) => route);
+	}
+	/**
+	* `routePath()` can retrieve the path registered within the handler
+	*
+	* @deprecated
+	*
+	* Use routePath helper defined in "hono/route" instead.
+	*
+	* @see {@link https://hono.dev/docs/api/request#routepath}
+	*
+	* @example
+	* ```ts
+	* app.get('/posts/:id', (c) => {
+	*   return c.json({ path: c.req.routePath })
+	* })
+	* ```
+	*/
+	get routePath() {
+		return this.#matchResult[0].map(([[, route]]) => route)[this.routeIndex].path;
+	}
+};
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/utils/html.js
+var HtmlEscapedCallbackPhase = {
+	Stringify: 1,
+	BeforeStream: 2,
+	Stream: 3
+};
+var raw = (value, callbacks) => {
+	const escapedString = new String(value);
+	escapedString.isEscaped = true;
+	escapedString.callbacks = callbacks;
+	return escapedString;
+};
+var resolveCallback = async (str, phase, preserveCallbacks, context, buffer) => {
+	if (typeof str === "object" && !(str instanceof String)) {
+		if (!(str instanceof Promise)) str = str.toString();
+		if (str instanceof Promise) str = await str;
+	}
+	const callbacks = str.callbacks;
+	if (!callbacks?.length) return Promise.resolve(str);
+	if (buffer) buffer[0] += str;
+	else buffer = [str];
+	const resStr = Promise.all(callbacks.map((c) => c({
+		phase,
+		buffer,
+		context
+	}))).then((res) => Promise.all(res.filter(Boolean).map((str2) => resolveCallback(str2, phase, false, context, buffer))).then(() => buffer[0]));
+	if (preserveCallbacks) return raw(await resStr, callbacks);
+	else return resStr;
+};
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/context.js
+var TEXT_PLAIN = "text/plain; charset=UTF-8";
+var setDefaultContentType = (contentType, headers) => {
+	return {
+		"Content-Type": contentType,
+		...headers
+	};
+};
+var createResponseInstance = (body, init) => new Response(body, init);
+var Context = class {
+	#rawRequest;
+	#req;
+	/**
+	* `.env` can get bindings (environment variables, secrets, KV namespaces, D1 database, R2 bucket etc.) in Cloudflare Workers.
+	*
+	* @see {@link https://hono.dev/docs/api/context#env}
+	*
+	* @example
+	* ```ts
+	* // Environment object for Cloudflare Workers
+	* app.get('*', async c => {
+	*   const counter = c.env.COUNTER
+	* })
+	* ```
+	*/
+	env = {};
+	#var;
+	finalized = false;
+	/**
+	* `.error` can get the error object from the middleware if the Handler throws an error.
+	*
+	* @see {@link https://hono.dev/docs/api/context#error}
+	*
+	* @example
+	* ```ts
+	* app.use('*', async (c, next) => {
+	*   await next()
+	*   if (c.error) {
+	*     // do something...
+	*   }
+	* })
+	* ```
+	*/
+	error;
+	#status;
+	#executionCtx;
+	#res;
+	#layout;
+	#renderer;
+	#notFoundHandler;
+	#preparedHeaders;
+	#matchResult;
+	#path;
+	/**
+	* Creates an instance of the Context class.
+	*
+	* @param req - The Request object.
+	* @param options - Optional configuration options for the context.
+	*/
+	constructor(req, options) {
+		this.#rawRequest = req;
+		if (options) {
+			this.#executionCtx = options.executionCtx;
+			this.env = options.env;
+			this.#notFoundHandler = options.notFoundHandler;
+			this.#path = options.path;
+			this.#matchResult = options.matchResult;
+		}
+	}
+	/**
+	* `.req` is the instance of {@link HonoRequest}.
+	*/
+	get req() {
+		this.#req ??= new HonoRequest(this.#rawRequest, this.#path, this.#matchResult);
+		return this.#req;
+	}
+	/**
+	* @see {@link https://hono.dev/docs/api/context#event}
+	* The FetchEvent associated with the current request.
+	*
+	* @throws Will throw an error if the context does not have a FetchEvent.
+	*/
+	get event() {
+		if (this.#executionCtx && "respondWith" in this.#executionCtx) return this.#executionCtx;
+		else throw Error("This context has no FetchEvent");
+	}
+	/**
+	* @see {@link https://hono.dev/docs/api/context#executionctx}
+	* The ExecutionContext associated with the current request.
+	*
+	* @throws Will throw an error if the context does not have an ExecutionContext.
+	*/
+	get executionCtx() {
+		if (this.#executionCtx) return this.#executionCtx;
+		else throw Error("This context has no ExecutionContext");
+	}
+	/**
+	* @see {@link https://hono.dev/docs/api/context#res}
+	* The Response object for the current request.
+	*/
+	get res() {
+		return this.#res ||= createResponseInstance(null, { headers: this.#preparedHeaders ??= new Headers() });
+	}
+	/**
+	* Sets the Response object for the current request.
+	*
+	* @param _res - The Response object to set.
+	*/
+	set res(_res) {
+		if (this.#res && _res) {
+			_res = createResponseInstance(_res.body, _res);
+			for (const [k, v] of this.#res.headers.entries()) {
+				if (k === "content-type") continue;
+				if (k === "set-cookie") {
+					const cookies = this.#res.headers.getSetCookie();
+					_res.headers.delete("set-cookie");
+					for (const cookie of cookies) _res.headers.append("set-cookie", cookie);
+				} else _res.headers.set(k, v);
+			}
+		}
+		this.#res = _res;
+		this.finalized = true;
+	}
+	/**
+	* `.render()` can create a response within a layout.
+	*
+	* @see {@link https://hono.dev/docs/api/context#render-setrenderer}
+	*
+	* @example
+	* ```ts
+	* app.get('/', (c) => {
+	*   return c.render('Hello!')
+	* })
+	* ```
+	*/
+	render = (...args) => {
+		this.#renderer ??= (content) => this.html(content);
+		return this.#renderer(...args);
+	};
+	/**
+	* Sets the layout for the response.
+	*
+	* @param layout - The layout to set.
+	* @returns The layout function.
+	*/
+	setLayout = (layout) => this.#layout = layout;
+	/**
+	* Gets the current layout for the response.
+	*
+	* @returns The current layout function.
+	*/
+	getLayout = () => this.#layout;
+	/**
+	* `.setRenderer()` can set the layout in the custom middleware.
+	*
+	* @see {@link https://hono.dev/docs/api/context#render-setrenderer}
+	*
+	* @example
+	* ```tsx
+	* app.use('*', async (c, next) => {
+	*   c.setRenderer((content) => {
+	*     return c.html(
+	*       <html>
+	*         <body>
+	*           <p>{content}</p>
+	*         </body>
+	*       </html>
+	*     )
+	*   })
+	*   await next()
+	* })
+	* ```
+	*/
+	setRenderer = (renderer) => {
+		this.#renderer = renderer;
+	};
+	/**
+	* `.header()` can set headers.
+	*
+	* @see {@link https://hono.dev/docs/api/context#header}
+	*
+	* @example
+	* ```ts
+	* app.get('/welcome', (c) => {
+	*   // Set headers
+	*   c.header('X-Message', 'Hello!')
+	*   c.header('Content-Type', 'text/plain')
+	*
+	*   return c.body('Thank you for coming')
+	* })
+	* ```
+	*/
+	header = (name, value, options) => {
+		if (this.finalized) this.#res = createResponseInstance(this.#res.body, this.#res);
+		const headers = this.#res ? this.#res.headers : this.#preparedHeaders ??= new Headers();
+		if (value === void 0) headers.delete(name);
+		else if (options?.append) headers.append(name, value);
+		else headers.set(name, value);
+	};
+	status = (status) => {
+		this.#status = status;
+	};
+	/**
+	* `.set()` can set the value specified by the key.
+	*
+	* @see {@link https://hono.dev/docs/api/context#set-get}
+	*
+	* @example
+	* ```ts
+	* app.use('*', async (c, next) => {
+	*   c.set('message', 'Hono is hot!!')
+	*   await next()
+	* })
+	* ```
+	*/
+	set = (key, value) => {
+		this.#var ??= /* @__PURE__ */ new Map();
+		this.#var.set(key, value);
+	};
+	/**
+	* `.get()` can use the value specified by the key.
+	*
+	* @see {@link https://hono.dev/docs/api/context#set-get}
+	*
+	* @example
+	* ```ts
+	* app.get('/', (c) => {
+	*   const message = c.get('message')
+	*   return c.text(`The message is "${message}"`)
+	* })
+	* ```
+	*/
+	get = (key) => {
+		return this.#var ? this.#var.get(key) : void 0;
+	};
+	/**
+	* `.var` can access the value of a variable.
+	*
+	* @see {@link https://hono.dev/docs/api/context#var}
+	*
+	* @example
+	* ```ts
+	* const result = c.var.client.oneMethod()
+	* ```
+	*/
+	get var() {
+		if (!this.#var) return {};
+		return Object.fromEntries(this.#var);
+	}
+	#newResponse(data, arg, headers) {
+		const responseHeaders = this.#res ? new Headers(this.#res.headers) : this.#preparedHeaders ?? new Headers();
+		if (typeof arg === "object" && "headers" in arg) {
+			const argHeaders = arg.headers instanceof Headers ? arg.headers : new Headers(arg.headers);
+			for (const [key, value] of argHeaders) if (key.toLowerCase() === "set-cookie") responseHeaders.append(key, value);
+			else responseHeaders.set(key, value);
+		}
+		if (headers) for (const [k, v] of Object.entries(headers)) if (typeof v === "string") responseHeaders.set(k, v);
+		else {
+			responseHeaders.delete(k);
+			for (const v2 of v) responseHeaders.append(k, v2);
+		}
+		return createResponseInstance(data, {
+			status: typeof arg === "number" ? arg : arg?.status ?? this.#status,
+			headers: responseHeaders
+		});
+	}
+	newResponse = (...args) => this.#newResponse(...args);
+	/**
+	* `.body()` can return the HTTP response.
+	* You can set headers with `.header()` and set HTTP status code with `.status`.
+	* This can also be set in `.text()`, `.json()` and so on.
+	*
+	* @see {@link https://hono.dev/docs/api/context#body}
+	*
+	* @example
+	* ```ts
+	* app.get('/welcome', (c) => {
+	*   // Set headers
+	*   c.header('X-Message', 'Hello!')
+	*   c.header('Content-Type', 'text/plain')
+	*   // Set HTTP status code
+	*   c.status(201)
+	*
+	*   // Return the response body
+	*   return c.body('Thank you for coming')
+	* })
+	* ```
+	*/
+	body = (data, arg, headers) => this.#newResponse(data, arg, headers);
+	/**
+	* `.text()` can render text as `Content-Type:text/plain`.
+	*
+	* @see {@link https://hono.dev/docs/api/context#text}
+	*
+	* @example
+	* ```ts
+	* app.get('/say', (c) => {
+	*   return c.text('Hello!')
+	* })
+	* ```
+	*/
+	text = (text, arg, headers) => {
+		return !this.#preparedHeaders && !this.#status && !arg && !headers && !this.finalized ? new Response(text) : this.#newResponse(text, arg, setDefaultContentType(TEXT_PLAIN, headers));
+	};
+	/**
+	* `.json()` can render JSON as `Content-Type:application/json`.
+	*
+	* @see {@link https://hono.dev/docs/api/context#json}
+	*
+	* @example
+	* ```ts
+	* app.get('/api', (c) => {
+	*   return c.json({ message: 'Hello!' })
+	* })
+	* ```
+	*/
+	json = (object, arg, headers) => {
+		return this.#newResponse(JSON.stringify(object), arg, setDefaultContentType("application/json", headers));
+	};
+	html = (html, arg, headers) => {
+		const res = (html2) => this.#newResponse(html2, arg, setDefaultContentType("text/html; charset=UTF-8", headers));
+		return typeof html === "object" ? resolveCallback(html, HtmlEscapedCallbackPhase.Stringify, false, {}).then(res) : res(html);
+	};
+	/**
+	* `.redirect()` can Redirect, default status code is 302.
+	*
+	* @see {@link https://hono.dev/docs/api/context#redirect}
+	*
+	* @example
+	* ```ts
+	* app.get('/redirect', (c) => {
+	*   return c.redirect('/')
+	* })
+	* app.get('/redirect-permanently', (c) => {
+	*   return c.redirect('/', 301)
+	* })
+	* ```
+	*/
+	redirect = (location, status) => {
+		const locationString = String(location);
+		this.header("Location", !/[^\x00-\xFF]/.test(locationString) ? locationString : encodeURI(locationString));
+		return this.newResponse(null, status ?? 302);
+	};
+	/**
+	* `.notFound()` can return the Not Found Response.
+	*
+	* @see {@link https://hono.dev/docs/api/context#notfound}
+	*
+	* @example
+	* ```ts
+	* app.get('/notfound', (c) => {
+	*   return c.notFound()
+	* })
+	* ```
+	*/
+	notFound = () => {
+		this.#notFoundHandler ??= () => createResponseInstance();
+		return this.#notFoundHandler(this);
+	};
+};
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/router.js
+var METHODS = [
+	"get",
+	"post",
+	"put",
+	"delete",
+	"options",
+	"patch"
+];
+var MESSAGE_MATCHER_IS_ALREADY_BUILT = "Can not add a route since the matcher is already built.";
+var UnsupportedPathError = class extends Error {};
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/utils/constants.js
+var COMPOSED_HANDLER = "__COMPOSED_HANDLER";
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/hono-base.js
+var notFoundHandler = (c) => {
+	return c.text("404 Not Found", 404);
+};
+var errorHandler = (err, c) => {
+	if ("getResponse" in err) {
+		const res = err.getResponse();
+		return c.newResponse(res.body, res);
+	}
+	console.error(err);
+	return c.text("Internal Server Error", 500);
+};
+var Hono$1 = class _Hono {
+	get;
+	post;
+	put;
+	delete;
+	options;
+	patch;
+	all;
+	on;
+	use;
+	router;
+	getPath;
+	_basePath = "/";
+	#path = "/";
+	routes = [];
+	constructor(options = {}) {
+		[...METHODS, "all"].forEach((method) => {
+			this[method] = (args1, ...args) => {
+				if (typeof args1 === "string") this.#path = args1;
+				else this.#addRoute(method, this.#path, args1);
+				args.forEach((handler) => {
+					this.#addRoute(method, this.#path, handler);
+				});
+				return this;
+			};
+		});
+		this.on = (method, path, ...handlers) => {
+			for (const p of [path].flat()) {
+				this.#path = p;
+				for (const m of [method].flat()) handlers.map((handler) => {
+					this.#addRoute(m.toUpperCase(), this.#path, handler);
+				});
+			}
+			return this;
+		};
+		this.use = (arg1, ...handlers) => {
+			if (typeof arg1 === "string") this.#path = arg1;
+			else {
+				this.#path = "*";
+				handlers.unshift(arg1);
+			}
+			handlers.forEach((handler) => {
+				this.#addRoute("ALL", this.#path, handler);
+			});
+			return this;
+		};
+		const { strict, ...optionsWithoutStrict } = options;
+		Object.assign(this, optionsWithoutStrict);
+		this.getPath = strict ?? true ? options.getPath ?? getPath : getPathNoStrict;
+	}
+	#clone() {
+		const clone = new _Hono({
+			router: this.router,
+			getPath: this.getPath
+		});
+		clone.errorHandler = this.errorHandler;
+		clone.#notFoundHandler = this.#notFoundHandler;
+		clone.routes = this.routes;
+		return clone;
+	}
+	#notFoundHandler = notFoundHandler;
+	errorHandler = errorHandler;
+	/**
+	* `.route()` allows grouping other Hono instance in routes.
+	*
+	* @see {@link https://hono.dev/docs/api/routing#grouping}
+	*
+	* @param {string} path - base Path
+	* @param {Hono} app - other Hono instance
+	* @returns {Hono} routed Hono instance
+	*
+	* @example
+	* ```ts
+	* const app = new Hono()
+	* const app2 = new Hono()
+	*
+	* app2.get("/user", (c) => c.text("user"))
+	* app.route("/api", app2) // GET /api/user
+	* ```
+	*/
+	route(path, app) {
+		const subApp = this.basePath(path);
+		app.routes.map((r) => {
+			let handler;
+			if (app.errorHandler === errorHandler) handler = r.handler;
+			else {
+				handler = async (c, next) => (await compose([], app.errorHandler)(c, () => r.handler(c, next))).res;
+				handler[COMPOSED_HANDLER] = r.handler;
+			}
+			subApp.#addRoute(r.method, r.path, handler);
+		});
+		return this;
+	}
+	/**
+	* `.basePath()` allows base paths to be specified.
+	*
+	* @see {@link https://hono.dev/docs/api/routing#base-path}
+	*
+	* @param {string} path - base Path
+	* @returns {Hono} changed Hono instance
+	*
+	* @example
+	* ```ts
+	* const api = new Hono().basePath('/api')
+	* ```
+	*/
+	basePath(path) {
+		const subApp = this.#clone();
+		subApp._basePath = mergePath(this._basePath, path);
+		return subApp;
+	}
+	/**
+	* `.onError()` handles an error and returns a customized Response.
+	*
+	* @see {@link https://hono.dev/docs/api/hono#error-handling}
+	*
+	* @param {ErrorHandler} handler - request Handler for error
+	* @returns {Hono} changed Hono instance
+	*
+	* @example
+	* ```ts
+	* app.onError((err, c) => {
+	*   console.error(`${err}`)
+	*   return c.text('Custom Error Message', 500)
+	* })
+	* ```
+	*/
+	onError = (handler) => {
+		this.errorHandler = handler;
+		return this;
+	};
+	/**
+	* `.notFound()` allows you to customize a Not Found Response.
+	*
+	* @see {@link https://hono.dev/docs/api/hono#not-found}
+	*
+	* @param {NotFoundHandler} handler - request handler for not-found
+	* @returns {Hono} changed Hono instance
+	*
+	* @example
+	* ```ts
+	* app.notFound((c) => {
+	*   return c.text('Custom 404 Message', 404)
+	* })
+	* ```
+	*/
+	notFound = (handler) => {
+		this.#notFoundHandler = handler;
+		return this;
+	};
+	/**
+	* `.mount()` allows you to mount applications built with other frameworks into your Hono application.
+	*
+	* @see {@link https://hono.dev/docs/api/hono#mount}
+	*
+	* @param {string} path - base Path
+	* @param {Function} applicationHandler - other Request Handler
+	* @param {MountOptions} [options] - options of `.mount()`
+	* @returns {Hono} mounted Hono instance
+	*
+	* @example
+	* ```ts
+	* import { Router as IttyRouter } from 'itty-router'
+	* import { Hono } from 'hono'
+	* // Create itty-router application
+	* const ittyRouter = IttyRouter()
+	* // GET /itty-router/hello
+	* ittyRouter.get('/hello', () => new Response('Hello from itty-router'))
+	*
+	* const app = new Hono()
+	* app.mount('/itty-router', ittyRouter.handle)
+	* ```
+	*
+	* @example
+	* ```ts
+	* const app = new Hono()
+	* // Send the request to another application without modification.
+	* app.mount('/app', anotherApp, {
+	*   replaceRequest: (req) => req,
+	* })
+	* ```
+	*/
+	mount(path, applicationHandler, options) {
+		let replaceRequest;
+		let optionHandler;
+		if (options) if (typeof options === "function") optionHandler = options;
+		else {
+			optionHandler = options.optionHandler;
+			if (options.replaceRequest === false) replaceRequest = (request) => request;
+			else replaceRequest = options.replaceRequest;
+		}
+		const getOptions = optionHandler ? (c) => {
+			const options2 = optionHandler(c);
+			return Array.isArray(options2) ? options2 : [options2];
+		} : (c) => {
+			let executionContext = void 0;
+			try {
+				executionContext = c.executionCtx;
+			} catch {}
+			return [c.env, executionContext];
+		};
+		replaceRequest ||= (() => {
+			const mergedPath = mergePath(this._basePath, path);
+			const pathPrefixLength = mergedPath === "/" ? 0 : mergedPath.length;
+			return (request) => {
+				const url = new URL(request.url);
+				url.pathname = url.pathname.slice(pathPrefixLength) || "/";
+				return new Request(url, request);
+			};
+		})();
+		const handler = async (c, next) => {
+			const res = await applicationHandler(replaceRequest(c.req.raw), ...getOptions(c));
+			if (res) return res;
+			await next();
+		};
+		this.#addRoute("ALL", mergePath(path, "*"), handler);
+		return this;
+	}
+	#addRoute(method, path, handler) {
+		method = method.toUpperCase();
+		path = mergePath(this._basePath, path);
+		const r = {
+			basePath: this._basePath,
+			path,
+			method,
+			handler
+		};
+		this.router.add(method, path, [handler, r]);
+		this.routes.push(r);
+	}
+	#handleError(err, c) {
+		if (err instanceof Error) return this.errorHandler(err, c);
+		throw err;
+	}
+	#dispatch(request, executionCtx, env, method) {
+		if (method === "HEAD") return (async () => new Response(null, await this.#dispatch(request, executionCtx, env, "GET")))();
+		const path = this.getPath(request, { env });
+		const matchResult = this.router.match(method, path);
+		const c = new Context(request, {
+			path,
+			matchResult,
+			env,
+			executionCtx,
+			notFoundHandler: this.#notFoundHandler
+		});
+		if (matchResult[0].length === 1) {
+			let res;
+			try {
+				res = matchResult[0][0][0][0](c, async () => {
+					c.res = await this.#notFoundHandler(c);
+				});
+			} catch (err) {
+				return this.#handleError(err, c);
+			}
+			return res instanceof Promise ? res.then((resolved) => resolved || (c.finalized ? c.res : this.#notFoundHandler(c))).catch((err) => this.#handleError(err, c)) : res ?? this.#notFoundHandler(c);
+		}
+		const composed = compose(matchResult[0], this.errorHandler, this.#notFoundHandler);
+		return (async () => {
+			try {
+				const context = await composed(c);
+				if (!context.finalized) throw new Error("Context is not finalized. Did you forget to return a Response object or `await next()`?");
+				return context.res;
+			} catch (err) {
+				return this.#handleError(err, c);
+			}
+		})();
+	}
+	/**
+	* `.fetch()` will be entry point of your app.
+	*
+	* @see {@link https://hono.dev/docs/api/hono#fetch}
+	*
+	* @param {Request} request - request Object of request
+	* @param {Env} Env - env Object
+	* @param {ExecutionContext} - context of execution
+	* @returns {Response | Promise<Response>} response of request
+	*
+	*/
+	fetch = (request, ...rest) => {
+		return this.#dispatch(request, rest[1], rest[0], request.method);
+	};
+	/**
+	* `.request()` is a useful method for testing.
+	* You can pass a URL or pathname to send a GET request.
+	* app will return a Response object.
+	* ```ts
+	* test('GET /hello is ok', async () => {
+	*   const res = await app.request('/hello')
+	*   expect(res.status).toBe(200)
+	* })
+	* ```
+	* @see https://hono.dev/docs/api/hono#request
+	*/
+	request = (input, requestInit, Env, executionCtx) => {
+		if (input instanceof Request) return this.fetch(requestInit ? new Request(input, requestInit) : input, Env, executionCtx);
+		input = input.toString();
+		return this.fetch(new Request(/^https?:\/\//.test(input) ? input : `http://localhost${mergePath("/", input)}`, requestInit), Env, executionCtx);
+	};
+	/**
+	* `.fire()` automatically adds a global fetch event listener.
+	* This can be useful for environments that adhere to the Service Worker API, such as non-ES module Cloudflare Workers.
+	* @deprecated
+	* Use `fire` from `hono/service-worker` instead.
+	* ```ts
+	* import { Hono } from 'hono'
+	* import { fire } from 'hono/service-worker'
+	*
+	* const app = new Hono()
+	* // ...
+	* fire(app)
+	* ```
+	* @see https://hono.dev/docs/api/hono#fire
+	* @see https://developer.mozilla.org/en-US/docs/Web/API/Service_Worker_API
+	* @see https://developers.cloudflare.com/workers/reference/migrate-to-module-workers/
+	*/
+	fire = () => {
+		addEventListener("fetch", (event) => {
+			event.respondWith(this.#dispatch(event.request, event, void 0, event.request.method));
+		});
+	};
+};
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/router/reg-exp-router/matcher.js
+var emptyParam = [];
+function match(method, path) {
+	const matchers = this.buildAllMatchers();
+	const match2 = ((method2, path2) => {
+		const matcher = matchers[method2] || matchers["ALL"];
+		const staticMatch = matcher[2][path2];
+		if (staticMatch) return staticMatch;
+		const match3 = path2.match(matcher[0]);
+		if (!match3) return [[], emptyParam];
+		const index = match3.indexOf("", 1);
+		return [matcher[1][index], match3];
+	});
+	this.match = match2;
+	return match2(method, path);
+}
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/router/reg-exp-router/node.js
+var LABEL_REG_EXP_STR = "[^/]+";
+var ONLY_WILDCARD_REG_EXP_STR = ".*";
+var TAIL_WILDCARD_REG_EXP_STR = "(?:|/.*)";
+var PATH_ERROR = /* @__PURE__ */ Symbol();
+var regExpMetaChars = /* @__PURE__ */ new Set(".\\+*[^]$()");
+function compareKey(a, b) {
+	if (a.length === 1) return b.length === 1 ? a < b ? -1 : 1 : -1;
+	if (b.length === 1) return 1;
+	if (a === ONLY_WILDCARD_REG_EXP_STR || a === TAIL_WILDCARD_REG_EXP_STR) return 1;
+	else if (b === ONLY_WILDCARD_REG_EXP_STR || b === TAIL_WILDCARD_REG_EXP_STR) return -1;
+	if (a === LABEL_REG_EXP_STR) return 1;
+	else if (b === LABEL_REG_EXP_STR) return -1;
+	return a.length === b.length ? a < b ? -1 : 1 : b.length - a.length;
+}
+var Node$1 = class _Node {
+	#index;
+	#varIndex;
+	#children = /* @__PURE__ */ Object.create(null);
+	insert(tokens, index, paramMap, context, pathErrorCheckOnly) {
+		if (tokens.length === 0) {
+			if (this.#index !== void 0) throw PATH_ERROR;
+			if (pathErrorCheckOnly) return;
+			this.#index = index;
+			return;
+		}
+		const [token, ...restTokens] = tokens;
+		const pattern = token === "*" ? restTokens.length === 0 ? [
+			"",
+			"",
+			ONLY_WILDCARD_REG_EXP_STR
+		] : [
+			"",
+			"",
+			LABEL_REG_EXP_STR
+		] : token === "/*" ? [
+			"",
+			"",
+			TAIL_WILDCARD_REG_EXP_STR
+		] : token.match(/^\:([^\{\}]+)(?:\{(.+)\})?$/);
+		let node;
+		if (pattern) {
+			const name = pattern[1];
+			let regexpStr = pattern[2] || LABEL_REG_EXP_STR;
+			if (name && pattern[2]) {
+				if (regexpStr === ".*") throw PATH_ERROR;
+				regexpStr = regexpStr.replace(/^\((?!\?:)(?=[^)]+\)$)/, "(?:");
+				if (/\((?!\?:)/.test(regexpStr)) throw PATH_ERROR;
+			}
+			node = this.#children[regexpStr];
+			if (!node) {
+				if (Object.keys(this.#children).some((k) => k !== ONLY_WILDCARD_REG_EXP_STR && k !== TAIL_WILDCARD_REG_EXP_STR)) throw PATH_ERROR;
+				if (pathErrorCheckOnly) return;
+				node = this.#children[regexpStr] = new _Node();
+				if (name !== "") node.#varIndex = context.varIndex++;
+			}
+			if (!pathErrorCheckOnly && name !== "") paramMap.push([name, node.#varIndex]);
+		} else {
+			node = this.#children[token];
+			if (!node) {
+				if (Object.keys(this.#children).some((k) => k.length > 1 && k !== ONLY_WILDCARD_REG_EXP_STR && k !== TAIL_WILDCARD_REG_EXP_STR)) throw PATH_ERROR;
+				if (pathErrorCheckOnly) return;
+				node = this.#children[token] = new _Node();
+			}
+		}
+		node.insert(restTokens, index, paramMap, context, pathErrorCheckOnly);
+	}
+	buildRegExpStr() {
+		const strList = Object.keys(this.#children).sort(compareKey).map((k) => {
+			const c = this.#children[k];
+			return (typeof c.#varIndex === "number" ? `(${k})@${c.#varIndex}` : regExpMetaChars.has(k) ? `\\${k}` : k) + c.buildRegExpStr();
+		});
+		if (typeof this.#index === "number") strList.unshift(`#${this.#index}`);
+		if (strList.length === 0) return "";
+		if (strList.length === 1) return strList[0];
+		return "(?:" + strList.join("|") + ")";
+	}
+};
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/router/reg-exp-router/trie.js
+var Trie = class {
+	#context = { varIndex: 0 };
+	#root = new Node$1();
+	insert(path, index, pathErrorCheckOnly) {
+		const paramAssoc = [];
+		const groups = [];
+		for (let i = 0;;) {
+			let replaced = false;
+			path = path.replace(/\{[^}]+\}/g, (m) => {
+				const mark = `@\\${i}`;
+				groups[i] = [mark, m];
+				i++;
+				replaced = true;
+				return mark;
+			});
+			if (!replaced) break;
+		}
+		const tokens = path.match(/(?::[^\/]+)|(?:\/\*$)|./g) || [];
+		for (let i = groups.length - 1; i >= 0; i--) {
+			const [mark] = groups[i];
+			for (let j = tokens.length - 1; j >= 0; j--) if (tokens[j].indexOf(mark) !== -1) {
+				tokens[j] = tokens[j].replace(mark, groups[i][1]);
+				break;
+			}
+		}
+		this.#root.insert(tokens, index, paramAssoc, this.#context, pathErrorCheckOnly);
+		return paramAssoc;
+	}
+	buildRegExp() {
+		let regexp = this.#root.buildRegExpStr();
+		if (regexp === "") return [
+			/^$/,
+			[],
+			[]
+		];
+		let captureIndex = 0;
+		const indexReplacementMap = [];
+		const paramReplacementMap = [];
+		regexp = regexp.replace(/#(\d+)|@(\d+)|\.\*\$/g, (_, handlerIndex, paramIndex) => {
+			if (handlerIndex !== void 0) {
+				indexReplacementMap[++captureIndex] = Number(handlerIndex);
+				return "$()";
+			}
+			if (paramIndex !== void 0) {
+				paramReplacementMap[Number(paramIndex)] = ++captureIndex;
+				return "";
+			}
+			return "";
+		});
+		return [
+			new RegExp(`^${regexp}`),
+			indexReplacementMap,
+			paramReplacementMap
+		];
+	}
+};
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/router/reg-exp-router/router.js
+var nullMatcher = [
+	/^$/,
+	[],
+	/* @__PURE__ */ Object.create(null)
+];
+var wildcardRegExpCache = /* @__PURE__ */ Object.create(null);
+function buildWildcardRegExp(path) {
+	return wildcardRegExpCache[path] ??= new RegExp(path === "*" ? "" : `^${path.replace(/\/\*$|([.\\+*[^\]$()])/g, (_, metaChar) => metaChar ? `\\${metaChar}` : "(?:|/.*)")}$`);
+}
+function clearWildcardRegExpCache() {
+	wildcardRegExpCache = /* @__PURE__ */ Object.create(null);
+}
+function buildMatcherFromPreprocessedRoutes(routes) {
+	const trie = new Trie();
+	const handlerData = [];
+	if (routes.length === 0) return nullMatcher;
+	const routesWithStaticPathFlag = routes.map((route) => [!/\*|\/:/.test(route[0]), ...route]).sort(([isStaticA, pathA], [isStaticB, pathB]) => isStaticA ? 1 : isStaticB ? -1 : pathA.length - pathB.length);
+	const staticMap = /* @__PURE__ */ Object.create(null);
+	for (let i = 0, j = -1, len = routesWithStaticPathFlag.length; i < len; i++) {
+		const [pathErrorCheckOnly, path, handlers] = routesWithStaticPathFlag[i];
+		if (pathErrorCheckOnly) staticMap[path] = [handlers.map(([h]) => [h, /* @__PURE__ */ Object.create(null)]), emptyParam];
+		else j++;
+		let paramAssoc;
+		try {
+			paramAssoc = trie.insert(path, j, pathErrorCheckOnly);
+		} catch (e) {
+			throw e === PATH_ERROR ? new UnsupportedPathError(path) : e;
+		}
+		if (pathErrorCheckOnly) continue;
+		handlerData[j] = handlers.map(([h, paramCount]) => {
+			const paramIndexMap = /* @__PURE__ */ Object.create(null);
+			paramCount -= 1;
+			for (; paramCount >= 0; paramCount--) {
+				const [key, value] = paramAssoc[paramCount];
+				paramIndexMap[key] = value;
+			}
+			return [h, paramIndexMap];
+		});
+	}
+	const [regexp, indexReplacementMap, paramReplacementMap] = trie.buildRegExp();
+	for (let i = 0, len = handlerData.length; i < len; i++) for (let j = 0, len2 = handlerData[i].length; j < len2; j++) {
+		const map = handlerData[i][j]?.[1];
+		if (!map) continue;
+		const keys = Object.keys(map);
+		for (let k = 0, len3 = keys.length; k < len3; k++) map[keys[k]] = paramReplacementMap[map[keys[k]]];
+	}
+	const handlerMap = [];
+	for (const i in indexReplacementMap) handlerMap[i] = handlerData[indexReplacementMap[i]];
+	return [
+		regexp,
+		handlerMap,
+		staticMap
+	];
+}
+function findMiddleware(middleware, path) {
+	if (!middleware) return;
+	for (const k of Object.keys(middleware).sort((a, b) => b.length - a.length)) if (buildWildcardRegExp(k).test(path)) return [...middleware[k]];
+}
+var RegExpRouter = class {
+	name = "RegExpRouter";
+	#middleware;
+	#routes;
+	constructor() {
+		this.#middleware = { ["ALL"]: /* @__PURE__ */ Object.create(null) };
+		this.#routes = { ["ALL"]: /* @__PURE__ */ Object.create(null) };
+	}
+	add(method, path, handler) {
+		const middleware = this.#middleware;
+		const routes = this.#routes;
+		if (!middleware || !routes) throw new Error(MESSAGE_MATCHER_IS_ALREADY_BUILT);
+		if (!middleware[method]) [middleware, routes].forEach((handlerMap) => {
+			handlerMap[method] = /* @__PURE__ */ Object.create(null);
+			Object.keys(handlerMap["ALL"]).forEach((p) => {
+				handlerMap[method][p] = [...handlerMap["ALL"][p]];
+			});
+		});
+		if (path === "/*") path = "*";
+		const paramCount = (path.match(/\/:/g) || []).length;
+		if (/\*$/.test(path)) {
+			const re = buildWildcardRegExp(path);
+			if (method === "ALL") Object.keys(middleware).forEach((m) => {
+				middleware[m][path] ||= findMiddleware(middleware[m], path) || findMiddleware(middleware["ALL"], path) || [];
+			});
+			else middleware[method][path] ||= findMiddleware(middleware[method], path) || findMiddleware(middleware["ALL"], path) || [];
+			Object.keys(middleware).forEach((m) => {
+				if (method === "ALL" || method === m) Object.keys(middleware[m]).forEach((p) => {
+					re.test(p) && middleware[m][p].push([handler, paramCount]);
+				});
+			});
+			Object.keys(routes).forEach((m) => {
+				if (method === "ALL" || method === m) Object.keys(routes[m]).forEach((p) => re.test(p) && routes[m][p].push([handler, paramCount]));
+			});
+			return;
+		}
+		const paths = checkOptionalParameter(path) || [path];
+		for (let i = 0, len = paths.length; i < len; i++) {
+			const path2 = paths[i];
+			Object.keys(routes).forEach((m) => {
+				if (method === "ALL" || method === m) {
+					routes[m][path2] ||= [...findMiddleware(middleware[m], path2) || findMiddleware(middleware["ALL"], path2) || []];
+					routes[m][path2].push([handler, paramCount - len + i + 1]);
+				}
+			});
+		}
+	}
+	match = match;
+	buildAllMatchers() {
+		const matchers = /* @__PURE__ */ Object.create(null);
+		Object.keys(this.#routes).concat(Object.keys(this.#middleware)).forEach((method) => {
+			matchers[method] ||= this.#buildMatcher(method);
+		});
+		this.#middleware = this.#routes = void 0;
+		clearWildcardRegExpCache();
+		return matchers;
+	}
+	#buildMatcher(method) {
+		const routes = [];
+		let hasOwnRoute = method === "ALL";
+		[this.#middleware, this.#routes].forEach((r) => {
+			const ownRoute = r[method] ? Object.keys(r[method]).map((path) => [path, r[method][path]]) : [];
+			if (ownRoute.length !== 0) {
+				hasOwnRoute ||= true;
+				routes.push(...ownRoute);
+			} else if (method !== "ALL") routes.push(...Object.keys(r["ALL"]).map((path) => [path, r["ALL"][path]]));
+		});
+		if (!hasOwnRoute) return null;
+		else return buildMatcherFromPreprocessedRoutes(routes);
+	}
+};
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/router/smart-router/router.js
+var SmartRouter = class {
+	name = "SmartRouter";
+	#routers = [];
+	#routes = [];
+	constructor(init) {
+		this.#routers = init.routers;
+	}
+	add(method, path, handler) {
+		if (!this.#routes) throw new Error(MESSAGE_MATCHER_IS_ALREADY_BUILT);
+		this.#routes.push([
+			method,
+			path,
+			handler
+		]);
+	}
+	match(method, path) {
+		if (!this.#routes) throw new Error("Fatal error");
+		const routers = this.#routers;
+		const routes = this.#routes;
+		const len = routers.length;
+		let i = 0;
+		let res;
+		for (; i < len; i++) {
+			const router = routers[i];
+			try {
+				for (let i2 = 0, len2 = routes.length; i2 < len2; i2++) router.add(...routes[i2]);
+				res = router.match(method, path);
+			} catch (e) {
+				if (e instanceof UnsupportedPathError) continue;
+				throw e;
+			}
+			this.match = router.match.bind(router);
+			this.#routers = [router];
+			this.#routes = void 0;
+			break;
+		}
+		if (i === len) throw new Error("Fatal error");
+		this.name = `SmartRouter + ${this.activeRouter.name}`;
+		return res;
+	}
+	get activeRouter() {
+		if (this.#routes || this.#routers.length !== 1) throw new Error("No active router has been determined yet.");
+		return this.#routers[0];
+	}
+};
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/router/trie-router/node.js
+var emptyParams = /* @__PURE__ */ Object.create(null);
+var hasChildren = (children) => {
+	for (const _ in children) return true;
+	return false;
+};
+var Node = class _Node {
+	#methods;
+	#children;
+	#patterns;
+	#order = 0;
+	#params = emptyParams;
+	constructor(method, handler, children) {
+		this.#children = children || /* @__PURE__ */ Object.create(null);
+		this.#methods = [];
+		if (method && handler) {
+			const m = /* @__PURE__ */ Object.create(null);
+			m[method] = {
+				handler,
+				possibleKeys: [],
+				score: 0
+			};
+			this.#methods = [m];
+		}
+		this.#patterns = [];
+	}
+	insert(method, path, handler) {
+		this.#order = ++this.#order;
+		let curNode = this;
+		const parts = splitRoutingPath(path);
+		const possibleKeys = [];
+		for (let i = 0, len = parts.length; i < len; i++) {
+			const p = parts[i];
+			const nextP = parts[i + 1];
+			const pattern = getPattern(p, nextP);
+			const key = Array.isArray(pattern) ? pattern[0] : p;
+			if (key in curNode.#children) {
+				curNode = curNode.#children[key];
+				if (pattern) possibleKeys.push(pattern[1]);
+				continue;
+			}
+			curNode.#children[key] = new _Node();
+			if (pattern) {
+				curNode.#patterns.push(pattern);
+				possibleKeys.push(pattern[1]);
+			}
+			curNode = curNode.#children[key];
+		}
+		curNode.#methods.push({ [method]: {
+			handler,
+			possibleKeys: possibleKeys.filter((v, i, a) => a.indexOf(v) === i),
+			score: this.#order
+		} });
+		return curNode;
+	}
+	#pushHandlerSets(handlerSets, node, method, nodeParams, params) {
+		for (let i = 0, len = node.#methods.length; i < len; i++) {
+			const m = node.#methods[i];
+			const handlerSet = m[method] || m["ALL"];
+			const processedSet = {};
+			if (handlerSet !== void 0) {
+				handlerSet.params = /* @__PURE__ */ Object.create(null);
+				handlerSets.push(handlerSet);
+				if (nodeParams !== emptyParams || params && params !== emptyParams) for (let i2 = 0, len2 = handlerSet.possibleKeys.length; i2 < len2; i2++) {
+					const key = handlerSet.possibleKeys[i2];
+					const processed = processedSet[handlerSet.score];
+					handlerSet.params[key] = params?.[key] && !processed ? params[key] : nodeParams[key] ?? params?.[key];
+					processedSet[handlerSet.score] = true;
+				}
+			}
+		}
+	}
+	search(method, path) {
+		const handlerSets = [];
+		this.#params = emptyParams;
+		let curNodes = [this];
+		const parts = splitPath(path);
+		const curNodesQueue = [];
+		const len = parts.length;
+		let partOffsets = null;
+		for (let i = 0; i < len; i++) {
+			const part = parts[i];
+			const isLast = i === len - 1;
+			const tempNodes = [];
+			for (let j = 0, len2 = curNodes.length; j < len2; j++) {
+				const node = curNodes[j];
+				const nextNode = node.#children[part];
+				if (nextNode) {
+					nextNode.#params = node.#params;
+					if (isLast) {
+						if (nextNode.#children["*"]) this.#pushHandlerSets(handlerSets, nextNode.#children["*"], method, node.#params);
+						this.#pushHandlerSets(handlerSets, nextNode, method, node.#params);
+					} else tempNodes.push(nextNode);
+				}
+				for (let k = 0, len3 = node.#patterns.length; k < len3; k++) {
+					const pattern = node.#patterns[k];
+					const params = node.#params === emptyParams ? {} : { ...node.#params };
+					if (pattern === "*") {
+						const astNode = node.#children["*"];
+						if (astNode) {
+							this.#pushHandlerSets(handlerSets, astNode, method, node.#params);
+							astNode.#params = params;
+							tempNodes.push(astNode);
+						}
+						continue;
+					}
+					const [key, name, matcher] = pattern;
+					if (!part && !(matcher instanceof RegExp)) continue;
+					const child = node.#children[key];
+					if (matcher instanceof RegExp) {
+						if (partOffsets === null) {
+							partOffsets = new Array(len);
+							let offset = path[0] === "/" ? 1 : 0;
+							for (let p = 0; p < len; p++) {
+								partOffsets[p] = offset;
+								offset += parts[p].length + 1;
+							}
+						}
+						const restPathString = path.substring(partOffsets[i]);
+						const m = matcher.exec(restPathString);
+						if (m) {
+							params[name] = m[0];
+							this.#pushHandlerSets(handlerSets, child, method, node.#params, params);
+							if (hasChildren(child.#children)) {
+								child.#params = params;
+								const componentCount = m[0].match(/\//)?.length ?? 0;
+								(curNodesQueue[componentCount] ||= []).push(child);
+							}
+							continue;
+						}
+					}
+					if (matcher === true || matcher.test(part)) {
+						params[name] = part;
+						if (isLast) {
+							this.#pushHandlerSets(handlerSets, child, method, params, node.#params);
+							if (child.#children["*"]) this.#pushHandlerSets(handlerSets, child.#children["*"], method, params, node.#params);
+						} else {
+							child.#params = params;
+							tempNodes.push(child);
+						}
+					}
+				}
+			}
+			const shifted = curNodesQueue.shift();
+			curNodes = shifted ? tempNodes.concat(shifted) : tempNodes;
+		}
+		if (handlerSets.length > 1) handlerSets.sort((a, b) => {
+			return a.score - b.score;
+		});
+		return [handlerSets.map(({ handler, params }) => [handler, params])];
+	}
+};
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/router/trie-router/router.js
+var TrieRouter = class {
+	name = "TrieRouter";
+	#node;
+	constructor() {
+		this.#node = new Node();
+	}
+	add(method, path, handler) {
+		const results = checkOptionalParameter(path);
+		if (results) {
+			for (let i = 0, len = results.length; i < len; i++) this.#node.insert(method, results[i], handler);
+			return;
+		}
+		this.#node.insert(method, path, handler);
+	}
+	match(method, path) {
+		return this.#node.search(method, path);
+	}
+};
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/hono.js
+var Hono = class extends Hono$1 {
+	/**
+	* Creates an instance of the Hono class.
+	*
+	* @param options - Optional configuration options for the Hono instance.
+	*/
+	constructor(options = {}) {
+		super(options);
+		this.router = options.router ?? new SmartRouter({ routers: [new RegExpRouter(), new TrieRouter()] });
+	}
+};
+object({
+	client_id: string(),
+	redirect_uri: string().optional().refine((value) => value === void 0 || URL.canParse(value), { message: "redirect_uri must be a valid URL" })
+});
+object({
+	response_type: literal("code"),
+	code_challenge: string(),
+	code_challenge_method: literal("S256"),
+	scope: string().optional(),
+	state: string().optional(),
+	resource: url().optional()
+});
+object({ grant_type: string() });
+object({
+	code: string(),
+	code_verifier: string(),
+	redirect_uri: string().optional(),
+	resource: url().optional()
+});
+object({
+	refresh_token: string(),
+	scope: string().optional(),
+	resource: url().optional()
+});
+object({
+	client_id: string(),
+	client_secret: string().optional()
+});
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/utils/stream.js
+var StreamingApi = class {
+	writer;
+	encoder;
+	writable;
+	abortSubscribers = [];
+	responseReadable;
+	/**
+	* Whether the stream has been aborted.
+	*/
+	aborted = false;
+	/**
+	* Whether the stream has been closed normally.
+	*/
+	closed = false;
+	constructor(writable, _readable) {
+		this.writable = writable;
+		this.writer = writable.getWriter();
+		this.encoder = new TextEncoder();
+		const reader = _readable.getReader();
+		this.abortSubscribers.push(async () => {
+			await reader.cancel();
+		});
+		this.responseReadable = new ReadableStream({
+			async pull(controller) {
+				const { done, value } = await reader.read();
+				done ? controller.close() : controller.enqueue(value);
+			},
+			cancel: () => {
+				if (!this.closed) this.abort();
+			}
+		});
+	}
+	async write(input) {
+		try {
+			if (typeof input === "string") input = this.encoder.encode(input);
+			await this.writer.write(input);
+		} catch {}
+		return this;
+	}
+	async writeln(input) {
+		await this.write(input + "\n");
+		return this;
+	}
+	sleep(ms) {
+		return new Promise((res) => setTimeout(res, ms));
+	}
+	async close() {
+		this.closed = true;
+		try {
+			await this.writer.close();
+		} catch {}
+	}
+	async pipe(body) {
+		this.writer.releaseLock();
+		await body.pipeTo(this.writable, { preventClose: true });
+		this.writer = this.writable.getWriter();
+	}
+	onAbort(listener) {
+		this.abortSubscribers.push(listener);
+	}
+	/**
+	* Abort the stream.
+	* You can call this method when stream is aborted by external event.
+	*/
+	abort() {
+		if (!this.aborted) {
+			this.aborted = true;
+			this.abortSubscribers.forEach((subscriber) => subscriber());
+		}
+	}
+};
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/helper/streaming/sse.js
+var SSEStreamingApi = class extends StreamingApi {
+	constructor(writable, readable) {
+		super(writable, readable);
+	}
+	async writeSSE(message) {
+		const dataLines = (await resolveCallback(message.data, HtmlEscapedCallbackPhase.Stringify, false, {})).split(/\r\n|\r|\n/).map((line) => {
+			return `data: ${line}`;
+		}).join("\n");
+		for (const key of [
+			"event",
+			"id",
+			"retry"
+		]) if (message[key] && /[\r\n]/.test(message[key])) throw new Error(`${key} must not contain "\\r" or "\\n"`);
+		const sseData = [
+			message.event && `event: ${message.event}`,
+			dataLines,
+			message.id && `id: ${message.id}`,
+			message.retry && `retry: ${message.retry}`
+		].filter(Boolean).join("\n") + "\n\n";
+		await this.write(sseData);
+	}
+};
+//#endregion
+//#region ../../node_modules/.pnpm/@hono+mcp@0.3.0_@modelcontextprotocol+sdk@1.29.0_zod@4.4.3__hono-rate-limiter@0.5.3_hono@4.12.19__hono@4.12.19_zod@4.4.3/node_modules/@hono/mcp/dist/index.js
+let isOldBunVersion = () => {
+	const version = typeof Bun !== "undefined" ? Bun.version : void 0;
+	if (version === void 0) return false;
+	const result = version.startsWith("1.1") || version.startsWith("1.0") || version.startsWith("0.");
+	isOldBunVersion = () => result;
+	return result;
+};
+const run = async (stream, cb, onError) => {
+	try {
+		await cb(stream);
+	} catch (e) {
+		if (e instanceof Error && onError) {
+			await onError(e, stream);
+			await stream.writeSSE({
+				event: "error",
+				data: e.message
+			});
+		} else console.error(e);
+	}
+};
+const contextStash = /* @__PURE__ */ new WeakMap();
+const streamSSE = (c, cb, onError) => {
+	const { readable, writable } = new TransformStream();
+	const stream = new SSEStreamingApi(writable, readable);
+	if (isOldBunVersion()) c.req.raw.signal.addEventListener("abort", () => {
+		if (!stream.closed) stream.abort();
+	});
+	contextStash.set(stream.responseReadable, c);
+	c.header("Transfer-Encoding", "chunked");
+	c.header("Content-Type", "text/event-stream");
+	c.header("Cache-Control", "no-cache");
+	c.header("Connection", "keep-alive");
+	run(stream, cb, onError);
+	return c.newResponse(stream.responseReadable);
+};
+var StreamableHTTPTransport = class {
+	#started = false;
+	#initialized = false;
+	#onSessionInitialized;
+	#onSessionClosed;
+	#sessionIdGenerator;
+	#eventStore;
+	#enableJsonResponse = false;
+	#standaloneSseStreamId = "_GET_stream";
+	#streamMapping = /* @__PURE__ */ new Map();
+	#requestToStreamMapping = /* @__PURE__ */ new Map();
+	#requestResponseMap = /* @__PURE__ */ new Map();
+	#allowedHosts;
+	#allowedOrigins;
+	#enableDnsRebindingProtection;
+	#strictAcceptHeader;
+	sessionId;
+	onclose;
+	onerror;
+	onmessage;
+	constructor(options) {
+		this.#sessionIdGenerator = options?.sessionIdGenerator;
+		this.#enableJsonResponse = options?.enableJsonResponse ?? false;
+		this.#eventStore = options?.eventStore;
+		this.#onSessionInitialized = options?.onsessioninitialized;
+		this.#onSessionClosed = options?.onsessionclosed;
+		this.#allowedHosts = options?.allowedHosts;
+		this.#allowedOrigins = options?.allowedOrigins;
+		this.#enableDnsRebindingProtection = options?.enableDnsRebindingProtection ?? false;
+		this.#strictAcceptHeader = options?.strictAcceptHeader ?? false;
+	}
+	/**
+	* Starts the transport. This is required by the Transport interface but is a no-op
+	* for the Streamable HTTP transport as connections are managed per-request.
+	*/
+	async start() {
+		if (this.#started) throw new Error("Transport already started");
+		this.#started = true;
+	}
+	/**
+	* Validates request headers for DNS rebinding protection.
+	* @returns Error message if validation fails, undefined if validation passes.
+	*/
+	#validateRequestHeaders(ctx) {
+		if (!this.#enableDnsRebindingProtection) return;
+		if (this.#allowedHosts && this.#allowedHosts.length > 0) {
+			const hostHeader = ctx.req.header("Host");
+			if (!hostHeader || !this.#allowedHosts.includes(hostHeader)) return `Invalid Host header: ${hostHeader}`;
+		}
+		if (this.#allowedOrigins && this.#allowedOrigins.length > 0) {
+			const originHeader = ctx.req.header("Origin");
+			if (!originHeader || !this.#allowedOrigins.includes(originHeader)) return `Invalid Origin header: ${originHeader}`;
+		}
+	}
+	/**
+	* Handles an incoming HTTP request, whether GET or POST
+	*/
+	async handleRequest(ctx, parsedBody) {
+		const validationError = this.#validateRequestHeaders(ctx);
+		if (validationError) throw new HTTPException(403, { res: Response.json({
+			jsonrpc: "2.0",
+			error: {
+				code: -32e3,
+				message: validationError
+			},
+			id: null
+		}) });
+		switch (ctx.req.method) {
+			case "GET": return this.handleGetRequest(ctx);
+			case "POST": return this.handlePostRequest(ctx, parsedBody);
+			case "DELETE": return this.handleDeleteRequest(ctx);
+			default: return this.handleUnsupportedRequest(ctx);
+		}
+	}
+	/**
+	* Handles GET requests for SSE stream
+	*/
+	async handleGetRequest(ctx) {
+		try {
+			const getAcceptHeader = ctx.req.header("Accept") ?? "*/*";
+			if (!getAcceptHeader.includes("text/event-stream") && !getAcceptHeader.includes("*/*")) throw new HTTPException(406, { res: Response.json({
+				jsonrpc: "2.0",
+				error: {
+					code: -32e3,
+					message: "Not Acceptable: Client must accept text/event-stream"
+				},
+				id: null
+			}) });
+			this.#validateSession(ctx);
+			this.#validateProtocolVersion(ctx);
+			if (this.sessionId !== void 0) ctx.header("mcp-session-id", this.sessionId);
+			let streamId = this.#standaloneSseStreamId;
+			if (this.#eventStore) {
+				const lastEventId = ctx.req.header("last-event-id");
+				if (lastEventId) streamId = (stream) => this.#eventStore.replayEventsAfter(lastEventId, { send: async (eventId, message) => {
+					try {
+						await stream.writeSSE({
+							id: eventId,
+							event: "message",
+							data: JSON.stringify(message)
+						});
+					} catch {
+						this.onerror?.(/* @__PURE__ */ new Error("Failed replay events"));
+						throw new HTTPException(500, { message: "Failed replay events" });
+					}
+				} });
+			}
+			if (typeof streamId === "string" && this.#streamMapping.get(streamId) !== void 0) throw new HTTPException(409, { res: Response.json({
+				jsonrpc: "2.0",
+				error: {
+					code: -32e3,
+					message: "Conflict: Only one SSE stream is allowed per session"
+				},
+				id: null
+			}) });
+			return streamSSE(ctx, async (stream) => {
+				const resolvedStreamId = typeof streamId === "string" ? streamId : await streamId(stream);
+				const keepAlive = setInterval(() => {
+					if (!stream.closed) stream.writeSSE({
+						data: "",
+						event: "ping"
+					}).catch(() => {
+						stream.abort();
+					});
+				}, 3e4);
+				if (typeof keepAlive === "object" && "unref" in keepAlive) keepAlive.unref();
+				this.#streamMapping.set(resolvedStreamId, {
+					ctx: { header: ctx.header },
+					stream,
+					cleanup: () => {
+						clearInterval(keepAlive);
+						this.#streamMapping.delete(resolvedStreamId);
+					}
+				});
+				stream.onAbort(() => {
+					this.#streamMapping.get(resolvedStreamId)?.cleanup();
+				});
+			});
+		} catch (error) {
+			if (error instanceof HTTPException) throw error;
+			this.onerror?.(error);
+			throw new HTTPException(400, { res: Response.json({
+				jsonrpc: "2.0",
+				error: {
+					code: ErrorCode.ParseError,
+					message: "Parse error",
+					data: String(error)
+				},
+				id: null
+			}) });
+		}
+	}
+	/**
+	* Handles POST requests containing JSON-RPC messages
+	*/
+	async handlePostRequest(ctx, parsedBody) {
+		try {
+			const acceptHeader = ctx.req.header("Accept") ?? "*/*";
+			if (!(this.#strictAcceptHeader ? acceptHeader.includes("application/json") && acceptHeader.includes("text/event-stream") : acceptHeader.includes("application/json") || acceptHeader.includes("text/event-stream") || acceptHeader.includes("*/*"))) throw new HTTPException(406, { res: Response.json({
+				jsonrpc: "2.0",
+				error: {
+					code: ErrorCode.ConnectionClosed,
+					message: this.#strictAcceptHeader ? "Not Acceptable: Client must accept both application/json and text/event-stream" : "Not Acceptable: Client must accept application/json or text/event-stream"
+				},
+				id: null
+			}) });
+			if (!ctx.req.header("Content-Type")?.includes("application/json")) throw new HTTPException(415, { res: Response.json({
+				jsonrpc: "2.0",
+				error: {
+					code: ErrorCode.ConnectionClosed,
+					message: "Unsupported Media Type: Content-Type must be application/json"
+				},
+				id: null
+			}) });
+			const authInfo = ctx.get("auth");
+			const requestInfo = { headers: ctx.req.header() };
+			let rawMessage = parsedBody;
+			if (rawMessage === void 0) rawMessage = await ctx.req.json();
+			let messages;
+			if (Array.isArray(rawMessage)) messages = rawMessage.map((msg) => JSONRPCMessageSchema.parse(msg));
+			else messages = [JSONRPCMessageSchema.parse(rawMessage)];
+			const isInitializationRequest = messages.some(isInitializeRequest);
+			if (isInitializationRequest) {
+				if (this.#initialized && this.sessionId !== void 0) throw new HTTPException(400, { res: Response.json({
+					jsonrpc: "2.0",
+					error: {
+						code: ErrorCode.InvalidRequest,
+						message: "Invalid Request: Server already initialized"
+					},
+					id: null
+				}) });
+				if (messages.length > 1) throw new HTTPException(400, { res: Response.json({
+					jsonrpc: "2.0",
+					error: {
+						code: ErrorCode.InvalidRequest,
+						message: "Invalid Request: Only one initialization request is allowed"
+					},
+					id: null
+				}) });
+				this.sessionId = this.#sessionIdGenerator?.();
+				this.#initialized = true;
+				if (this.sessionId && this.#onSessionInitialized) await this.#onSessionInitialized(this.sessionId);
+			}
+			if (!isInitializationRequest) {
+				this.#validateSession(ctx);
+				this.#validateProtocolVersion(ctx);
+			}
+			const hasRequests = messages.some(isJSONRPCRequest);
+			if (!hasRequests) {
+				for (const message of messages) this.onmessage?.(message, {
+					authInfo,
+					requestInfo
+				});
+				return ctx.json(null, { status: 202 });
+			}
+			if (hasRequests) {
+				const streamId = crypto.randomUUID();
+				if (!this.#enableJsonResponse && this.sessionId !== void 0) ctx.header("mcp-session-id", this.sessionId);
+				if (this.#enableJsonResponse) return await new Promise((resolve) => {
+					for (const message of messages) if (isJSONRPCRequest(message)) {
+						this.#streamMapping.set(streamId, {
+							ctx: {
+								header: ctx.header,
+								json: (data) => {
+									resolve(ctx.json(data));
+								}
+							},
+							cleanup: () => {
+								this.#streamMapping.delete(streamId);
+							}
+						});
+						this.#requestToStreamMapping.set(message.id, streamId);
+					}
+					for (const message of messages) this.onmessage?.(message, {
+						authInfo,
+						requestInfo
+					});
+				});
+				return streamSSE(ctx, async (stream) => {
+					for (const message of messages) if (isJSONRPCRequest(message)) {
+						this.#streamMapping.set(streamId, {
+							ctx: { header: ctx.header },
+							stream,
+							cleanup: () => {
+								this.#streamMapping.delete(streamId);
+							}
+						});
+						this.#requestToStreamMapping.set(message.id, streamId);
+					}
+					for (const message of messages) this.onmessage?.(message, {
+						authInfo,
+						requestInfo
+					});
+					stream.onAbort(() => {
+						this.#streamMapping.get(streamId)?.cleanup();
+					});
+				});
+			}
+		} catch (error) {
+			if (error instanceof HTTPException) throw error;
+			this.onerror?.(error);
+			throw new HTTPException(400, { res: Response.json({
+				jsonrpc: "2.0",
+				error: {
+					code: ErrorCode.ParseError,
+					message: "Parse error",
+					data: String(error)
+				},
+				id: null
+			}) });
+		}
+	}
+	/**
+	* Handles DELETE requests to terminate sessions
+	*/
+	async handleDeleteRequest(ctx) {
+		this.#validateSession(ctx);
+		this.#validateProtocolVersion(ctx);
+		if (this.#onSessionClosed && this.sessionId) await Promise.resolve(this.#onSessionClosed(this.sessionId));
+		await this.close();
+		return ctx.body(null, 200);
+	}
+	/**
+	* Handles unsupported requests (PUT, PATCH, etc.)
+	*/
+	handleUnsupportedRequest(ctx) {
+		return ctx.json({
+			jsonrpc: "2.0",
+			error: {
+				code: ErrorCode.ConnectionClosed,
+				message: "Method not allowed."
+			},
+			id: null
+		}, {
+			status: 405,
+			headers: { Allow: "GET, POST, DELETE" }
+		});
+	}
+	/**
+	* Validates session ID for non-initialization requests
+	* Returns true if the session is valid, false otherwise
+	*/
+	#validateSession(ctx) {
+		if (this.#sessionIdGenerator === void 0) return true;
+		if (!this.#initialized) throw new HTTPException(400, { res: Response.json({
+			jsonrpc: "2.0",
+			error: {
+				code: ErrorCode.ConnectionClosed,
+				message: "Bad Request: Server not initialized"
+			},
+			id: null
+		}) });
+		const sessionId = ctx.req.header("mcp-session-id");
+		if (!sessionId) throw new HTTPException(400, { res: Response.json({
+			jsonrpc: "2.0",
+			error: {
+				code: ErrorCode.ConnectionClosed,
+				message: "Bad Request: Mcp-Session-Id header is required"
+			},
+			id: null
+		}) });
+		if (Array.isArray(sessionId)) throw new HTTPException(400, { res: Response.json({
+			jsonrpc: "2.0",
+			error: {
+				code: ErrorCode.ConnectionClosed,
+				message: "Bad Request: Mcp-Session-Id header must be a single value"
+			},
+			id: null
+		}) });
+		if (sessionId !== this.sessionId) throw new HTTPException(404, { res: Response.json({
+			jsonrpc: "2.0",
+			error: {
+				code: ErrorCode.RequestTimeout,
+				message: "Session not found"
+			},
+			id: null
+		}) });
+		return true;
+	}
+	#validateProtocolVersion(ctx) {
+		let protocolVersion = ctx.req.header("mcp-protocol-version") ?? "2025-03-26";
+		if (Array.isArray(protocolVersion)) protocolVersion = protocolVersion[protocolVersion.length - 1];
+		if (!SUPPORTED_PROTOCOL_VERSIONS.includes(protocolVersion)) throw new HTTPException(404, { res: Response.json({
+			jsonrpc: "2.0",
+			error: {
+				code: ErrorCode.ConnectionClosed,
+				message: `Bad Request: Unsupported protocol version (supported versions: ${SUPPORTED_PROTOCOL_VERSIONS.join(", ")})`
+			},
+			id: null
+		}) });
+		return true;
+	}
+	async close() {
+		for (const { stream } of this.#streamMapping.values()) stream?.abort();
+		this.#streamMapping.clear();
+		this.#requestResponseMap.clear();
+		this.onclose?.();
+	}
+	async send(message, options) {
+		let requestId = options?.relatedRequestId;
+		if (isJSONRPCResultResponse(message) || isJSONRPCErrorResponse(message)) requestId = message.id;
+		if (requestId === void 0) {
+			if (isJSONRPCResultResponse(message) || isJSONRPCErrorResponse(message)) throw new Error("Cannot send a response on a standalone SSE stream unless resuming a previous client request");
+			const standaloneSse = this.#streamMapping.get(this.#standaloneSseStreamId);
+			if (standaloneSse === void 0) return;
+			let eventId;
+			if (this.#eventStore) eventId = await this.#eventStore.storeEvent(this.#standaloneSseStreamId, message);
+			return standaloneSse.stream?.writeSSE({
+				id: eventId,
+				event: "message",
+				data: JSON.stringify(message)
+			});
+		}
+		const streamId = this.#requestToStreamMapping.get(requestId);
+		const response = this.#streamMapping.get(streamId);
+		if (!streamId) throw new Error(`No connection established for request ID: ${String(requestId)}`);
+		if (!this.#enableJsonResponse) {
+			let eventId;
+			if (this.#eventStore) eventId = await this.#eventStore.storeEvent(streamId, message);
+			if (response) await response.stream?.writeSSE({
+				id: eventId,
+				event: "message",
+				data: JSON.stringify(message)
+			});
+		}
+		if (isJSONRPCResultResponse(message) || isJSONRPCErrorResponse(message)) {
+			this.#requestResponseMap.set(requestId, message);
+			const relatedIds = Array.from(this.#requestToStreamMapping.entries()).filter(([, streamId$1]) => this.#streamMapping.get(streamId$1) === response).map(([id]) => id);
+			if (relatedIds.every((id) => this.#requestResponseMap.has(id))) {
+				if (!response) throw new Error(`No connection established for request ID: ${String(requestId)}`);
+				if (this.#enableJsonResponse) {
+					if (this.sessionId !== void 0) response.ctx.header("mcp-session-id", this.sessionId);
+					const responses = relatedIds.map((id) => this.#requestResponseMap.get(id));
+					response.ctx.json?.(responses.length === 1 ? responses[0] : responses);
+					return;
+				} else response.stream?.abort();
+				for (const id of relatedIds) {
+					this.#requestResponseMap.delete(id);
+					this.#requestToStreamMapping.delete(id);
+				}
+			}
+		}
+	}
+};
+//#endregion
+//#region ../../node_modules/.pnpm/@hono+node-server@1.19.14_hono@4.12.19/node_modules/@hono/node-server/dist/index.mjs
+var RequestError = class extends Error {
+	constructor(message, options) {
+		super(message, options);
+		this.name = "RequestError";
+	}
+};
+var toRequestError = (e) => {
+	if (e instanceof RequestError) return e;
+	return new RequestError(e.message, { cause: e });
+};
+var GlobalRequest = global.Request;
+var Request$1 = class extends GlobalRequest {
+	constructor(input, options) {
+		if (typeof input === "object" && getRequestCache in input) input = input[getRequestCache]();
+		if (typeof options?.body?.getReader !== "undefined") options.duplex ??= "half";
+		super(input, options);
+	}
+};
+var newHeadersFromIncoming = (incoming) => {
+	const headerRecord = [];
+	const rawHeaders = incoming.rawHeaders;
+	for (let i = 0; i < rawHeaders.length; i += 2) {
+		const { [i]: key, [i + 1]: value } = rawHeaders;
+		if (key.charCodeAt(0) !== 58) headerRecord.push([key, value]);
+	}
+	return new Headers(headerRecord);
+};
+var wrapBodyStream = Symbol("wrapBodyStream");
+var newRequestFromIncoming = (method, url, headers, incoming, abortController) => {
+	const init = {
+		method,
+		headers,
+		signal: abortController.signal
+	};
+	if (method === "TRACE") {
+		init.method = "GET";
+		const req = new Request$1(url, init);
+		Object.defineProperty(req, "method", { get() {
+			return "TRACE";
+		} });
+		return req;
+	}
+	if (!(method === "GET" || method === "HEAD")) if ("rawBody" in incoming && incoming.rawBody instanceof Buffer) init.body = new ReadableStream({ start(controller) {
+		controller.enqueue(incoming.rawBody);
+		controller.close();
+	} });
+	else if (incoming[wrapBodyStream]) {
+		let reader;
+		init.body = new ReadableStream({ async pull(controller) {
+			try {
+				reader ||= Readable.toWeb(incoming).getReader();
+				const { done, value } = await reader.read();
+				if (done) controller.close();
+				else controller.enqueue(value);
+			} catch (error) {
+				controller.error(error);
+			}
+		} });
+	} else init.body = Readable.toWeb(incoming);
+	return new Request$1(url, init);
+};
+var getRequestCache = Symbol("getRequestCache");
+var requestCache = Symbol("requestCache");
+var incomingKey = Symbol("incomingKey");
+var urlKey = Symbol("urlKey");
+var headersKey = Symbol("headersKey");
+var abortControllerKey = Symbol("abortControllerKey");
+var requestPrototype = {
+	get method() {
+		return this[incomingKey].method || "GET";
+	},
+	get url() {
+		return this[urlKey];
+	},
+	get headers() {
+		return this[headersKey] ||= newHeadersFromIncoming(this[incomingKey]);
+	},
+	[Symbol("getAbortController")]() {
+		this[getRequestCache]();
+		return this[abortControllerKey];
+	},
+	[getRequestCache]() {
+		this[abortControllerKey] ||= new AbortController();
+		return this[requestCache] ||= newRequestFromIncoming(this.method, this[urlKey], this.headers, this[incomingKey], this[abortControllerKey]);
+	}
+};
+[
+	"body",
+	"bodyUsed",
+	"cache",
+	"credentials",
+	"destination",
+	"integrity",
+	"mode",
+	"redirect",
+	"referrer",
+	"referrerPolicy",
+	"signal",
+	"keepalive"
+].forEach((k) => {
+	Object.defineProperty(requestPrototype, k, { get() {
+		return this[getRequestCache]()[k];
+	} });
+});
+[
+	"arrayBuffer",
+	"blob",
+	"clone",
+	"formData",
+	"json",
+	"text"
+].forEach((k) => {
+	Object.defineProperty(requestPrototype, k, { value: function() {
+		return this[getRequestCache]()[k]();
+	} });
+});
+Object.defineProperty(requestPrototype, Symbol.for("nodejs.util.inspect.custom"), { value: function(depth, options, inspectFn) {
+	return `Request (lightweight) ${inspectFn({
+		method: this.method,
+		url: this.url,
+		headers: this.headers,
+		nativeRequest: this[requestCache]
+	}, {
+		...options,
+		depth: depth == null ? null : depth - 1
+	})}`;
+} });
+Object.setPrototypeOf(requestPrototype, Request$1.prototype);
+var newRequest = (incoming, defaultHostname) => {
+	const req = Object.create(requestPrototype);
+	req[incomingKey] = incoming;
+	const incomingUrl = incoming.url || "";
+	if (incomingUrl[0] !== "/" && (incomingUrl.startsWith("http://") || incomingUrl.startsWith("https://"))) {
+		if (incoming instanceof Http2ServerRequest) throw new RequestError("Absolute URL for :path is not allowed in HTTP/2");
+		try {
+			req[urlKey] = new URL(incomingUrl).href;
+		} catch (e) {
+			throw new RequestError("Invalid absolute URL", { cause: e });
+		}
+		return req;
+	}
+	const host = (incoming instanceof Http2ServerRequest ? incoming.authority : incoming.headers.host) || defaultHostname;
+	if (!host) throw new RequestError("Missing host header");
+	let scheme;
+	if (incoming instanceof Http2ServerRequest) {
+		scheme = incoming.scheme;
+		if (!(scheme === "http" || scheme === "https")) throw new RequestError("Unsupported scheme");
+	} else scheme = incoming.socket && incoming.socket.encrypted ? "https" : "http";
+	const url = new URL(`${scheme}://${host}${incomingUrl}`);
+	if (url.hostname.length !== host.length && url.hostname !== host.replace(/:\d+$/, "")) throw new RequestError("Invalid host header");
+	req[urlKey] = url.href;
+	return req;
+};
+var responseCache = Symbol("responseCache");
+var getResponseCache = Symbol("getResponseCache");
+var cacheKey = Symbol("cache");
+var GlobalResponse = global.Response;
+var Response2 = class _Response {
+	#body;
+	#init;
+	[getResponseCache]() {
+		delete this[cacheKey];
+		return this[responseCache] ||= new GlobalResponse(this.#body, this.#init);
+	}
+	constructor(body, init) {
+		let headers;
+		this.#body = body;
+		if (init instanceof _Response) {
+			const cachedGlobalResponse = init[responseCache];
+			if (cachedGlobalResponse) {
+				this.#init = cachedGlobalResponse;
+				this[getResponseCache]();
+				return;
+			} else {
+				this.#init = init.#init;
+				headers = new Headers(init.#init.headers);
+			}
+		} else this.#init = init;
+		if (typeof body === "string" || typeof body?.getReader !== "undefined" || body instanceof Blob || body instanceof Uint8Array) this[cacheKey] = [
+			init?.status || 200,
+			body,
+			headers || init?.headers
+		];
+	}
+	get headers() {
+		const cache = this[cacheKey];
+		if (cache) {
+			if (!(cache[2] instanceof Headers)) cache[2] = new Headers(cache[2] || { "content-type": "text/plain; charset=UTF-8" });
+			return cache[2];
+		}
+		return this[getResponseCache]().headers;
+	}
+	get status() {
+		return this[cacheKey]?.[0] ?? this[getResponseCache]().status;
+	}
+	get ok() {
+		const status = this.status;
+		return status >= 200 && status < 300;
+	}
+};
+[
+	"body",
+	"bodyUsed",
+	"redirected",
+	"statusText",
+	"trailers",
+	"type",
+	"url"
+].forEach((k) => {
+	Object.defineProperty(Response2.prototype, k, { get() {
+		return this[getResponseCache]()[k];
+	} });
+});
+[
+	"arrayBuffer",
+	"blob",
+	"clone",
+	"formData",
+	"json",
+	"text"
+].forEach((k) => {
+	Object.defineProperty(Response2.prototype, k, { value: function() {
+		return this[getResponseCache]()[k]();
+	} });
+});
+Object.defineProperty(Response2.prototype, Symbol.for("nodejs.util.inspect.custom"), { value: function(depth, options, inspectFn) {
+	return `Response (lightweight) ${inspectFn({
+		status: this.status,
+		headers: this.headers,
+		ok: this.ok,
+		nativeResponse: this[responseCache]
+	}, {
+		...options,
+		depth: depth == null ? null : depth - 1
+	})}`;
+} });
+Object.setPrototypeOf(Response2, GlobalResponse);
+Object.setPrototypeOf(Response2.prototype, GlobalResponse.prototype);
+async function readWithoutBlocking(readPromise) {
+	return Promise.race([readPromise, Promise.resolve().then(() => Promise.resolve(void 0))]);
+}
+function writeFromReadableStreamDefaultReader(reader, writable, currentReadPromise) {
+	const cancel = (error) => {
+		reader.cancel(error).catch(() => {});
+	};
+	writable.on("close", cancel);
+	writable.on("error", cancel);
+	(currentReadPromise ?? reader.read()).then(flow, handleStreamError);
+	return reader.closed.finally(() => {
+		writable.off("close", cancel);
+		writable.off("error", cancel);
+	});
+	function handleStreamError(error) {
+		if (error) writable.destroy(error);
+	}
+	function onDrain() {
+		reader.read().then(flow, handleStreamError);
+	}
+	function flow({ done, value }) {
+		try {
+			if (done) writable.end();
+			else if (!writable.write(value)) writable.once("drain", onDrain);
+			else return reader.read().then(flow, handleStreamError);
+		} catch (e) {
+			handleStreamError(e);
+		}
+	}
+}
+function writeFromReadableStream(stream, writable) {
+	if (stream.locked) throw new TypeError("ReadableStream is locked.");
+	else if (writable.destroyed) return;
+	return writeFromReadableStreamDefaultReader(stream.getReader(), writable);
+}
+var buildOutgoingHttpHeaders = (headers) => {
+	const res = {};
+	if (!(headers instanceof Headers)) headers = new Headers(headers ?? void 0);
+	const cookies = [];
+	for (const [k, v] of headers) if (k === "set-cookie") cookies.push(v);
+	else res[k] = v;
+	if (cookies.length > 0) res["set-cookie"] = cookies;
+	res["content-type"] ??= "text/plain; charset=UTF-8";
+	return res;
+};
+var X_ALREADY_SENT = "x-hono-already-sent";
+if (typeof global.crypto === "undefined") global.crypto = crypto$1;
+var outgoingEnded = Symbol("outgoingEnded");
+var incomingDraining = Symbol("incomingDraining");
+var DRAIN_TIMEOUT_MS = 500;
+var MAX_DRAIN_BYTES = 64 * 1024 * 1024;
+var drainIncoming = (incoming) => {
+	const incomingWithDrainState = incoming;
+	if (incoming.destroyed || incomingWithDrainState[incomingDraining]) return;
+	incomingWithDrainState[incomingDraining] = true;
+	if (incoming instanceof Http2ServerRequest) {
+		try {
+			incoming.stream?.close?.(constants$1.NGHTTP2_NO_ERROR);
+		} catch {}
+		return;
+	}
+	let bytesRead = 0;
+	const cleanup = () => {
+		clearTimeout(timer);
+		incoming.off("data", onData);
+		incoming.off("end", cleanup);
+		incoming.off("error", cleanup);
+	};
+	const forceClose = () => {
+		cleanup();
+		const socket = incoming.socket;
+		if (socket && !socket.destroyed) socket.destroySoon();
+	};
+	const timer = setTimeout(forceClose, DRAIN_TIMEOUT_MS);
+	timer.unref?.();
+	const onData = (chunk) => {
+		bytesRead += chunk.length;
+		if (bytesRead > MAX_DRAIN_BYTES) forceClose();
+	};
+	incoming.on("data", onData);
+	incoming.on("end", cleanup);
+	incoming.on("error", cleanup);
+	incoming.resume();
+};
+var handleRequestError = () => new Response(null, { status: 400 });
+var handleFetchError = (e) => new Response(null, { status: e instanceof Error && (e.name === "TimeoutError" || e.constructor.name === "TimeoutError") ? 504 : 500 });
+var handleResponseError = (e, outgoing) => {
+	const err = e instanceof Error ? e : new Error("unknown error", { cause: e });
+	if (err.code === "ERR_STREAM_PREMATURE_CLOSE") console.info("The user aborted a request.");
+	else {
+		console.error(e);
+		if (!outgoing.headersSent) outgoing.writeHead(500, { "Content-Type": "text/plain" });
+		outgoing.end(`Error: ${err.message}`);
+		outgoing.destroy(err);
+	}
+};
+var flushHeaders = (outgoing) => {
+	if ("flushHeaders" in outgoing && outgoing.writable) outgoing.flushHeaders();
+};
+var responseViaCache = async (res, outgoing) => {
+	let [status, body, header] = res[cacheKey];
+	let hasContentLength = false;
+	if (!header) header = { "content-type": "text/plain; charset=UTF-8" };
+	else if (header instanceof Headers) {
+		hasContentLength = header.has("content-length");
+		header = buildOutgoingHttpHeaders(header);
+	} else if (Array.isArray(header)) {
+		const headerObj = new Headers(header);
+		hasContentLength = headerObj.has("content-length");
+		header = buildOutgoingHttpHeaders(headerObj);
+	} else for (const key in header) if (key.length === 14 && key.toLowerCase() === "content-length") {
+		hasContentLength = true;
+		break;
+	}
+	if (!hasContentLength) {
+		if (typeof body === "string") header["Content-Length"] = Buffer.byteLength(body);
+		else if (body instanceof Uint8Array) header["Content-Length"] = body.byteLength;
+		else if (body instanceof Blob) header["Content-Length"] = body.size;
+	}
+	outgoing.writeHead(status, header);
+	if (typeof body === "string" || body instanceof Uint8Array) outgoing.end(body);
+	else if (body instanceof Blob) outgoing.end(new Uint8Array(await body.arrayBuffer()));
+	else {
+		flushHeaders(outgoing);
+		await writeFromReadableStream(body, outgoing)?.catch((e) => handleResponseError(e, outgoing));
+	}
+	outgoing[outgoingEnded]?.();
+};
+var isPromise = (res) => typeof res.then === "function";
+var responseViaResponseObject = async (res, outgoing, options = {}) => {
+	if (isPromise(res)) if (options.errorHandler) try {
+		res = await res;
+	} catch (err) {
+		const errRes = await options.errorHandler(err);
+		if (!errRes) return;
+		res = errRes;
+	}
+	else res = await res.catch(handleFetchError);
+	if (cacheKey in res) return responseViaCache(res, outgoing);
+	const resHeaderRecord = buildOutgoingHttpHeaders(res.headers);
+	if (res.body) {
+		const reader = res.body.getReader();
+		const values = [];
+		let done = false;
+		let currentReadPromise = void 0;
+		if (resHeaderRecord["transfer-encoding"] !== "chunked") {
+			let maxReadCount = 2;
+			for (let i = 0; i < maxReadCount; i++) {
+				currentReadPromise ||= reader.read();
+				const chunk = await readWithoutBlocking(currentReadPromise).catch((e) => {
+					console.error(e);
+					done = true;
+				});
+				if (!chunk) {
+					if (i === 1) {
+						await new Promise((resolve) => setTimeout(resolve));
+						maxReadCount = 3;
+						continue;
+					}
+					break;
+				}
+				currentReadPromise = void 0;
+				if (chunk.value) values.push(chunk.value);
+				if (chunk.done) {
+					done = true;
+					break;
+				}
+			}
+			if (done && !("content-length" in resHeaderRecord)) resHeaderRecord["content-length"] = values.reduce((acc, value) => acc + value.length, 0);
+		}
+		outgoing.writeHead(res.status, resHeaderRecord);
+		values.forEach((value) => {
+			outgoing.write(value);
+		});
+		if (done) outgoing.end();
+		else {
+			if (values.length === 0) flushHeaders(outgoing);
+			await writeFromReadableStreamDefaultReader(reader, outgoing, currentReadPromise);
+		}
+	} else if (resHeaderRecord[X_ALREADY_SENT]) {} else {
+		outgoing.writeHead(res.status, resHeaderRecord);
+		outgoing.end();
+	}
+	outgoing[outgoingEnded]?.();
+};
+var getRequestListener = (fetchCallback, options = {}) => {
+	const autoCleanupIncoming = options.autoCleanupIncoming ?? true;
+	if (options.overrideGlobalObjects !== false && global.Request !== Request$1) {
+		Object.defineProperty(global, "Request", { value: Request$1 });
+		Object.defineProperty(global, "Response", { value: Response2 });
+	}
+	return async (incoming, outgoing) => {
+		let res, req;
+		try {
+			req = newRequest(incoming, options.hostname);
+			let incomingEnded = !autoCleanupIncoming || incoming.method === "GET" || incoming.method === "HEAD";
+			if (!incomingEnded) {
+				incoming[wrapBodyStream] = true;
+				incoming.on("end", () => {
+					incomingEnded = true;
+				});
+				if (incoming instanceof Http2ServerRequest) outgoing[outgoingEnded] = () => {
+					if (!incomingEnded) setTimeout(() => {
+						if (!incomingEnded) setTimeout(() => {
+							drainIncoming(incoming);
+						});
+					});
+				};
+				outgoing.on("finish", () => {
+					if (!incomingEnded) drainIncoming(incoming);
+				});
+			}
+			outgoing.on("close", () => {
+				if (req[abortControllerKey]) {
+					if (incoming.errored) req[abortControllerKey].abort(incoming.errored.toString());
+					else if (!outgoing.writableFinished) req[abortControllerKey].abort("Client connection prematurely closed.");
+				}
+				if (!incomingEnded) setTimeout(() => {
+					if (!incomingEnded) setTimeout(() => {
+						drainIncoming(incoming);
+					});
+				});
+			});
+			res = fetchCallback(req, {
+				incoming,
+				outgoing
+			});
+			if (cacheKey in res) return responseViaCache(res, outgoing);
+		} catch (e) {
+			if (!res) if (options.errorHandler) {
+				res = await options.errorHandler(req ? e : toRequestError(e));
+				if (!res) return;
+			} else if (!req) res = handleRequestError();
+			else res = handleFetchError(e);
+			else return handleResponseError(e, outgoing);
+		}
+		try {
+			return await responseViaResponseObject(res, outgoing, options);
+		} catch (e) {
+			return handleResponseError(e, outgoing);
+		}
+	};
+};
+var createAdaptorServer = (options) => {
+	const fetchCallback = options.fetch;
+	const requestListener = getRequestListener(fetchCallback, {
+		hostname: options.hostname,
+		overrideGlobalObjects: options.overrideGlobalObjects,
+		autoCleanupIncoming: options.autoCleanupIncoming
+	});
+	return (options.createServer || createServer)(options.serverOptions || {}, requestListener);
+};
+var serve = (options, listeningListener) => {
+	const server = createAdaptorServer(options);
+	server.listen(options?.port ?? 3e3, options.hostname, () => {
+		const serverInfo = server.address();
+		listeningListener && listeningListener(serverInfo);
+	});
+	return server;
+};
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/utils/color.js
+function getColorEnabled() {
+	const { process, Deno } = globalThis;
+	return !(typeof Deno?.noColor === "boolean" ? Deno.noColor : process !== void 0 ? "NO_COLOR" in process?.env : false);
+}
+async function getColorEnabledAsync() {
+	const { navigator } = globalThis;
+	const cfWorkers = "cloudflare:workers";
+	return !(navigator !== void 0 && navigator.userAgent === "Cloudflare-Workers" ? await (async () => {
+		try {
+			return "NO_COLOR" in ((await import(cfWorkers)).env ?? {});
+		} catch {
+			return false;
+		}
+	})() : !getColorEnabled());
+}
+//#endregion
+//#region ../../node_modules/.pnpm/hono@4.12.19/node_modules/hono/dist/middleware/logger/index.js
+var humanize = (times) => {
+	const [delimiter, separator] = [",", "."];
+	return times.map((v) => v.replace(/(\d)(?=(\d\d\d)+(?!\d))/g, "$1" + delimiter)).join(separator);
+};
+var time = (start) => {
+	const delta = Date.now() - start;
+	return humanize([delta < 1e3 ? delta + "ms" : Math.round(delta / 1e3) + "s"]);
+};
+var colorStatus = async (status) => {
+	if (await getColorEnabledAsync()) switch (status / 100 | 0) {
+		case 5: return `\x1B[31m${status}\x1B[0m`;
+		case 4: return `\x1B[33m${status}\x1B[0m`;
+		case 3: return `\x1B[36m${status}\x1B[0m`;
+		case 2: return `\x1B[32m${status}\x1B[0m`;
+	}
+	return `${status}`;
+};
+async function log(fn, prefix, method, path, status = 0, elapsed) {
+	fn(prefix === "<--" ? `${prefix} ${method} ${path}` : `${prefix} ${method} ${path} ${await colorStatus(status)} ${elapsed}`);
+}
+var logger = (fn = console.log) => {
+	return async function logger2(c, next) {
+		const { method, url } = c.req;
+		const path = url.slice(url.indexOf("/", 8));
+		await log(fn, "<--", method, path);
+		const start = Date.now();
+		await next();
+		await log(fn, "-->", method, path, c.res.status, time(start));
+	};
+};
+//#endregion
+//#region src/remote-control/dispatch.ts
+const ENGINE_COMMANDS = new Set([
+	"get_caplet",
+	"check_backend",
+	"list_tools",
+	"search_tools",
+	"get_tool",
+	"call_tool"
+]);
+async function dispatchRemoteCliRequest(request, context) {
+	try {
+		return {
+			ok: true,
+			result: await dispatch(request, context)
+		};
+	} catch (error) {
+		const safe = toSafeError(error);
+		const action = nextAction(safe.details);
+		return {
+			ok: false,
+			error: {
+				code: safe.code,
+				message: redactControlErrorMessage(safe.message),
+				...action ? { nextAction: action } : {}
+			}
+		};
+	}
+}
+async function dispatch(request, context) {
+	assertObject(request, "remote control request");
+	assertObject(request.arguments, "remote control request arguments");
+	if (request.command === "list") return listCaplets(loadConfigWithSources(context.configPath, context.projectConfigPath), { includeDisabled: optionalBoolean(request.arguments, "includeDisabled") ?? false });
+	if (ENGINE_COMMANDS.has(request.command)) {
+		const caplet = requiredString(request.arguments, "caplet");
+		const toolRequest = requiredEngineRequest(request.arguments, request.command);
+		const engine = new CapletsEngine(context);
+		try {
+			return await engine.execute(caplet, toolRequest);
+		} finally {
+			await engine.close();
+		}
+	}
+	if (request.command === "init") return {
+		remote: true,
+		path: initConfig({
+			...optionalProp("path", context.configPath),
+			...optionalProp("force", optionalBoolean(request.arguments, "force"))
+		})
+	};
+	if (request.command === "add") return dispatchAdd(request.arguments, context);
+	if (request.command === "install") return {
+		remote: true,
+		...installCaplets(requiredString(request.arguments, "repo"), {
+			...optionalProp("capletIds", optionalStringArray(request.arguments, "capletIds")),
+			destinationRoot: context.projectCapletsRoot,
+			...optionalProp("force", optionalBoolean(request.arguments, "force"))
+		})
+	};
+	if (request.command === "auth_list") return listAuthRows({
+		...optionalProp("configPath", context.configPath),
+		...optionalProp("authDir", context.authDir)
+	});
+	if (request.command === "auth_logout") return logoutAuthResult(requiredString(request.arguments, "server"), {
+		...optionalProp("configPath", context.configPath),
+		...optionalProp("authDir", context.authDir)
+	});
+	if (request.command === "auth_login_start") return startRemoteAuthLogin(requiredString(request.arguments, "server"), context);
+	if (request.command === "auth_login_complete") return completeRemoteAuthLogin(requiredString(request.arguments, "flowId"), requiredString(request.arguments, "callbackUrl"), context);
+	throw new CapletsError("UNKNOWN_OPERATION", `Unsupported remote control command ${request.command}`);
+}
+async function startRemoteAuthLogin(serverId, context) {
+	if (!context.authFlowStore || !context.controlCallbackBaseUrl) throw new CapletsError("REQUEST_INVALID", "Remote auth login is not available on this server");
+	const config = loadConfigWithSources(context.configPath, context.projectConfigPath).config;
+	const target = findAuthTarget(serverId, config);
+	assertLoginTarget(target, serverId);
+	const flowId = randomUUID();
+	const baseUrl = context.controlCallbackBaseUrl.endsWith("/") ? context.controlCallbackBaseUrl : `${context.controlCallbackBaseUrl}/`;
+	const redirectUri = new URL(`auth/callback/${flowId}`, baseUrl).toString();
+	const started = target.backend === "mcp" ? await startOAuthFlow(target, {
+		redirectUri,
+		...optionalProp("authDir", context.authDir)
+	}) : await startGenericOAuthFlow(target, {
+		redirectUri,
+		...optionalProp("authDir", context.authDir)
+	});
+	if (!started.authorizationUrl) return {
+		server: serverId,
+		authenticated: true
+	};
+	const flow = context.authFlowStore.create({
+		server: serverId,
+		authorizationUrl: started.authorizationUrl,
+		complete: started.complete
+	}, flowId);
+	return {
+		server: serverId,
+		flowId: flow.id,
+		authorizationUrl: flow.authorizationUrl
+	};
+}
+async function completeRemoteAuthLogin(flowId, callbackUrl, context) {
+	const flow = context.authFlowStore?.get(flowId);
+	if (!flow) throw new CapletsError("REQUEST_INVALID", `Unknown auth flow ${flowId}`);
+	context.authFlowStore?.delete(flowId);
+	await flow.complete(callbackUrl);
+	return {
+		server: flow.server,
+		authenticated: true
+	};
+}
+function dispatchAdd(args, context) {
+	const kind = requiredString(args, "kind");
+	const id = requiredString(args, "id");
+	const options = remoteAddOptions$1(kind, optionalObject(args, "options"));
+	switch (kind) {
+		case "cli": return {
+			remote: true,
+			label: "CLI",
+			...addCliCaplet(id, {
+				...options,
+				destinationRoot: context.projectCapletsRoot,
+				print: false
+			})
+		};
+		case "mcp": return {
+			remote: true,
+			label: "MCP",
+			...addMcpCaplet(id, {
+				...options,
+				destinationRoot: context.projectCapletsRoot,
+				print: false
+			})
+		};
+		case "openapi": return {
+			remote: true,
+			label: "OpenAPI",
+			...addOpenApiCaplet(id, {
+				...options,
+				destinationRoot: context.projectCapletsRoot,
+				print: false
+			})
+		};
+		case "graphql": return {
+			remote: true,
+			label: "GraphQL",
+			...addGraphqlCaplet(id, {
+				...options,
+				destinationRoot: context.projectCapletsRoot,
+				print: false
+			})
+		};
+		case "http": return {
+			remote: true,
+			label: "HTTP",
+			...addHttpCaplet(id, {
+				...options,
+				destinationRoot: context.projectCapletsRoot,
+				print: false
+			})
+		};
+		default: throw new CapletsError("REQUEST_INVALID", "add.kind must be cli, mcp, openapi, graphql, or http");
+	}
+}
+function optionalProp(key, value) {
+	return value === void 0 ? {} : { [key]: value };
+}
+function assertObject(value, label) {
+	if (value === null || typeof value !== "object" || Array.isArray(value)) throw new CapletsError("REQUEST_INVALID", `${label} must be an object`);
+}
+function requiredString(args, key) {
+	const value = args[key];
+	if (typeof value !== "string" || value.length === 0) throw new CapletsError("REQUEST_INVALID", `${key} must be a non-empty string`);
+	return value;
+}
+function optionalObject(args, key) {
+	const value = args[key];
+	if (value === void 0) return {};
+	assertObject(value, key);
+	return value;
+}
+function requiredEngineRequest(args, command) {
+	const toolRequest = optionalObject(args, "request");
+	if (typeof toolRequest.operation !== "string") throw new CapletsError("REQUEST_INVALID", "request.operation must be a string");
+	if (toolRequest.operation !== command) throw new CapletsError("REQUEST_INVALID", `request.operation must match remote command ${command}`);
+	return toolRequest;
+}
+function remoteAddOptions$1(kind, options) {
+	rejectServerOwnedAddOptions(options);
+	switch (kind) {
+		case "cli": return pickOptions(options, {
+			repo: "string",
+			include: "string",
+			command: "string",
+			force: "boolean"
+		});
+		case "mcp": return pickOptions(options, {
+			command: "string",
+			arg: "string-array",
+			cwd: "string",
+			env: "string-array",
+			url: "string",
+			transport: "string",
+			tokenEnv: "string",
+			force: "boolean"
+		});
+		case "openapi": return pickOptions(options, {
+			spec: "string",
+			baseUrl: "string",
+			tokenEnv: "string",
+			force: "boolean"
+		});
+		case "graphql": return pickOptions(options, {
+			endpointUrl: "string",
+			schema: "string",
+			introspection: "boolean",
+			tokenEnv: "string",
+			force: "boolean"
+		});
+		case "http": return pickOptions(options, {
+			baseUrl: "string",
+			action: "string-array",
+			tokenEnv: "string",
+			force: "boolean"
+		});
+		default: return options;
+	}
+}
+function pickOptions(options, schema) {
+	const next = {};
+	for (const [key, type] of Object.entries(schema)) {
+		const value = options[key];
+		if (value === void 0) continue;
+		validateOptionType(key, value, type);
+		next[key] = value;
+	}
+	return next;
+}
+function rejectServerOwnedAddOptions(options) {
+	if ("output" in options) throw new CapletsError("REQUEST_INVALID", "Remote add output is not supported remotely; the server owns destinationRoot and output path selection");
+	for (const key of ["destinationRoot", "print"]) if (key in options) throw new CapletsError("REQUEST_INVALID", `Remote add ${key} is not supported remotely; the server owns destinationRoot and print behavior`);
+}
+function validateOptionType(key, value, type) {
+	if (type === "string" && typeof value !== "string") throw new CapletsError("REQUEST_INVALID", `add.options.${key} must be a string`);
+	if (type === "boolean" && typeof value !== "boolean") throw new CapletsError("REQUEST_INVALID", `add.options.${key} must be a boolean`);
+	if (type === "string-array") {
+		if (!Array.isArray(value) || !value.every((item) => typeof item === "string")) throw new CapletsError("REQUEST_INVALID", `add.options.${key} must be an array of strings`);
+	}
+}
+function optionalBoolean(args, key) {
+	const value = args[key];
+	if (value === void 0) return;
+	if (typeof value !== "boolean") throw new CapletsError("REQUEST_INVALID", `${key} must be a boolean`);
+	return value;
+}
+function optionalStringArray(args, key) {
+	const value = args[key];
+	if (value === void 0) return;
+	if (!Array.isArray(value) || !value.every((item) => typeof item === "string")) throw new CapletsError("REQUEST_INVALID", `${key} must be an array of strings`);
+	return value;
+}
+function nextAction(details) {
+	if (details && typeof details === "object" && "nextAction" in details) {
+		const value = details.nextAction;
+		return typeof value === "string" ? value : void 0;
+	}
+}
+function redactControlErrorMessage(message) {
+	return message.replace(/(["'])(authorization|(?:access[_-]?)?token|refresh(?:[_-]?token)?|password|client[_-]?secret|clientsecret|api[-_]?key|apikey|secret|credential|code)\1\s*:\s*(["'])(?:\\.|[^\\])*?\3/giu, "$1$2$1:$3[REDACTED]$3").replace(/\b(authorization\s*:\s*(?:basic|bearer)\s+)[^\s,;]+/giu, "$1[REDACTED]").replace(/\b((?:access[_-]?)?token|refresh(?:[_-]?token)?|password|client[_-]?secret|clientsecret|api[-_]?key|apikey|secret|credential|code)(\s*[=:]\s*)[^\s,;]+/giu, "$1$2[REDACTED]");
+}
+//#endregion
+//#region src/remote-control/auth-flow.ts
+const DEFAULT_AUTH_FLOW_TTL_MS = 600 * 1e3;
+var RemoteAuthFlowStore = class {
+	options;
+	flows = /* @__PURE__ */ new Map();
+	constructor(options = {}) {
+		this.options = options;
+	}
+	create(flow, id = randomUUID()) {
+		this.pruneExpired();
+		const created = {
+			id,
+			createdAt: this.now(),
+			...flow
+		};
+		this.flows.set(created.id, created);
+		return { ...created };
+	}
+	get(id) {
+		this.pruneExpired();
+		const flow = this.flows.get(id);
+		if (flow && this.isExpired(flow)) {
+			this.flows.delete(id);
+			return;
+		}
+		return flow;
+	}
+	delete(id) {
+		this.flows.delete(id);
+	}
+	pruneExpired() {
+		for (const [id, flow] of this.flows) if (this.isExpired(flow)) this.flows.delete(id);
+	}
+	isExpired(flow) {
+		return this.now() - flow.createdAt > (this.options.ttlMs ?? DEFAULT_AUTH_FLOW_TTL_MS);
+	}
+	now() {
+		return this.options.now?.() ?? Date.now();
+	}
+};
+//#endregion
+//#region src/serve/http.ts
+function createHttpServeApp(options, engine, io = {}) {
+	const app = new Hono();
+	const sessions = /* @__PURE__ */ new Map();
+	const writeErr = io.writeErr ?? process.stderr.write.bind(process.stderr);
+	const paths = servicePaths(options.path);
+	const authFlowStore = io.authFlowStore ?? new RemoteAuthFlowStore();
+	app.use("*", logger((message, ...rest) => {
+		writeErr(`${[message, ...rest].join(" ")}\n`);
+	}));
+	app.get(paths.base, (c) => c.json({
+		name: "caplets",
+		transport: "http",
+		base: paths.base,
+		mcp: paths.mcp,
+		control: paths.control,
+		health: paths.health,
+		auth: {
+			type: "basic",
+			enabled: options.auth.enabled
+		}
+	}));
+	app.get(paths.health, (c) => c.json({
+		status: "ok",
+		transport: "http",
+		base: paths.base,
+		mcpPath: paths.mcp,
+		controlPath: paths.control,
+		healthPath: paths.health
+	}));
+	app.all(paths.mcp, basicAuth(options.auth), async (c) => {
+		const sessionId = c.req.header("mcp-session-id");
+		if (sessionId) {
+			const existing = sessions.get(sessionId);
+			if (!existing) return c.json({
+				jsonrpc: "2.0",
+				error: {
+					code: -32001,
+					message: "Session not found"
+				},
+				id: null
+			}, 404);
+			return existing.transport.handleRequest(c);
+		}
+		if (c.req.method !== "POST") return c.json({
+			jsonrpc: "2.0",
+			error: {
+				code: -32e3,
+				message: "Bad Request: Mcp-Session-Id header is required"
+			},
+			id: null
+		}, 400);
+		const nextSessionId = randomUUID();
+		const session = await createHttpSession(engine, nextSessionId, options, async (closedSessionId) => {
+			const closed = sessions.get(closedSessionId);
+			sessions.delete(closedSessionId);
+			if (closed) await closed.server.close();
+		});
+		sessions.set(nextSessionId, session);
+		return session.transport.handleRequest(c);
+	});
+	app.post(paths.control, basicAuth(options.auth), async (c) => {
+		let request;
+		try {
+			const parsed = await c.req.json();
+			if (parsed === null || typeof parsed !== "object" || Array.isArray(parsed)) throw new CapletsError("REQUEST_INVALID", "Control request JSON must be an object");
+			request = parsed;
+		} catch (error) {
+			const safe = toSafeError(error instanceof CapletsError ? error : new CapletsError("REQUEST_INVALID", "Control request body must be valid JSON", error), "REQUEST_INVALID");
+			return c.json({
+				ok: false,
+				error: {
+					code: safe.code,
+					message: safe.message
+				}
+			});
+		}
+		return c.json(await dispatchRemoteCliRequest(request, controlContext(io, writeErr, authFlowStore, c.req.url, paths.control, options.trustProxy, (name) => c.req.header(name))));
+	});
+	app.get(routePath(paths.control, "auth/callback/:flowId"), async (c) => {
+		const flowId = c.req.param("flowId");
+		const result = await dispatchRemoteCliRequest({
+			command: "auth_login_complete",
+			arguments: {
+				flowId,
+				callbackUrl: c.req.url
+			}
+		}, controlContext(io, writeErr, authFlowStore, c.req.url, paths.control, options.trustProxy, (name) => c.req.header(name)));
+		if (!result.ok) writeErr(`Caplets authentication failed for flow ${flowId}: ${result.error.message}\n`);
+		return result.ok ? c.text("Caplets authentication complete. You can return to your terminal.") : c.text("Caplets authentication failed. Check server logs for details.", 400);
+	});
+	app.notFound((c) => c.json({ error: "not_found" }, 404));
+	app.closeCapletsSessions = async () => {
+		await Promise.allSettled([...sessions.values()].map(async (session) => {
+			await session.server.close();
+		}));
+		sessions.clear();
+	};
+	if (options.warnUnauthenticatedNetwork) writeErr(`Warning: Caplets MCP HTTP server is listening on ${options.host} without authentication.\n`);
+	return app;
+}
+function controlContext(io, writeErr, authFlowStore, requestUrl, controlPath, trustProxy, header) {
+	return {
+		...io.control,
+		projectCapletsRoot: io.control?.projectCapletsRoot ?? resolveProjectCapletsRoot(),
+		authFlowStore,
+		controlCallbackBaseUrl: new URL(controlPath, publicRequestOrigin(requestUrl, trustProxy, header)).toString(),
+		writeErr
+	};
+}
+function publicRequestOrigin(requestUrl, trustProxy, header) {
+	const url = new URL(requestUrl);
+	if (!trustProxy) return `${url.protocol.slice(0, -1)}://${header("host") ?? url.host}`;
+	const forwardedProto = firstForwardedValue(header("x-forwarded-proto"));
+	const forwardedHost = firstForwardedValue(header("x-forwarded-host"));
+	return `${forwardedProto === "http" || forwardedProto === "https" ? forwardedProto : url.protocol.slice(0, -1)}://${forwardedHost ?? header("host") ?? url.host}`;
+}
+function firstForwardedValue(value) {
+	return value?.split(",", 1)[0]?.trim() || void 0;
+}
+async function serveHttp(options, engineOptions = {}, writeErr = (value) => process.stderr.write(value)) {
+	const engine = new CapletsEngine(engineOptions);
+	const app = createHttpServeApp(options, engine, {
+		writeErr,
+		control: {
+			...engineOptions,
+			projectCapletsRoot: projectCapletsRootForEngineOptions(engineOptions)
+		}
+	});
+	const paths = servicePaths(options.path);
+	const origin = `http://${formatHost(options.host)}:${options.port}`;
+	const baseUrl = `${origin}${paths.base === "/" ? "" : paths.base}`;
+	installHttpSignalHandlers(serve({
+		fetch: app.fetch,
+		hostname: options.host,
+		port: options.port
+	}, () => {
+		writeErr(`Caplets HTTP service listening on ${baseUrl}\n`);
+		writeErr(`MCP endpoint: ${origin}${paths.mcp}\n`);
+		writeErr(`Control endpoint: ${origin}${paths.control}\n`);
+		writeErr(`Health check: ${origin}${paths.health}\n`);
+		writeErr(`Basic Auth: ${options.auth.enabled ? `enabled (user: ${options.auth.user})` : "disabled"}\n`);
+	}), app, engine, writeErr);
+}
+function projectCapletsRootForEngineOptions(engineOptions) {
+	return engineOptions.projectConfigPath ? resolveProjectCapletsRootForConfigPath(engineOptions.projectConfigPath) : resolveProjectCapletsRoot();
+}
+function resolveProjectCapletsRootForConfigPath(projectConfigPath) {
+	return dirname(projectConfigPath);
+}
+function routePath(base, path) {
+	return base === "/" ? `/${path}` : `${base}/${path}`;
+}
+function servicePaths(base) {
+	return {
+		base,
+		mcp: routePath(base, "mcp"),
+		control: routePath(base, "control"),
+		health: routePath(base, "healthz")
+	};
+}
+async function createHttpSession(engine, sessionId, options, onClose) {
+	const transport = new StreamableHTTPTransport({
+		sessionIdGenerator: () => sessionId,
+		onsessionclosed: onClose,
+		...options.loopback ? dnsRebindingOptions(options) : {}
+	});
+	const server = new CapletsMcpSession(engine);
+	await server.connect(transport);
+	return {
+		server,
+		transport
+	};
+}
+function basicAuth(auth) {
+	return async (c, next) => {
+		if (!auth.enabled) {
+			await next();
+			return;
+		}
+		const credentials = parseBasicAuth(c.req.header("authorization") ?? "");
+		if (!credentials || !safeEqual(credentials.user, auth.user) || !safeEqual(credentials.password, auth.password)) {
+			c.header("www-authenticate", "Basic realm=\"caplets\"");
+			return c.text("Unauthorized", 401);
+		}
+		await next();
+	};
+}
+function parseBasicAuth(header) {
+	const [scheme, encoded] = header.split(" ");
+	if (scheme?.toLocaleLowerCase() !== "basic" || !encoded) return;
+	const decoded = Buffer.from(encoded, "base64").toString("utf8");
+	const separator = decoded.indexOf(":");
+	if (separator < 0) return;
+	return {
+		user: decoded.slice(0, separator),
+		password: decoded.slice(separator + 1)
+	};
+}
+function safeEqual(left, right) {
+	const leftBuffer = Buffer.from(left);
+	const rightBuffer = Buffer.from(right);
+	return leftBuffer.length === rightBuffer.length && timingSafeEqual(leftBuffer, rightBuffer);
+}
+function dnsRebindingOptions(options) {
+	const hostForHeader = options.host === "::1" ? "[::1]" : options.host;
+	return {
+		enableDnsRebindingProtection: true,
+		allowedHosts: [
+			options.host,
+			hostForHeader,
+			`${hostForHeader}:${options.port}`,
+			`localhost:${options.port}`
+		]
+	};
+}
+function installHttpSignalHandlers(server, app, engine, writeErr) {
+	let closing;
+	const close = async () => {
+		closing ??= (async () => {
+			await new Promise((resolve) => server.close(() => resolve()));
+			await app.closeCapletsSessions();
+			await engine.close();
+		})();
+		return closing;
+	};
+	process.once("SIGINT", () => void close().catch((error) => writeErr(`${String(error)}\n`)).finally(() => process.exit(130)));
+	process.once("SIGTERM", () => void close().catch((error) => writeErr(`${String(error)}\n`)).finally(() => process.exit(143)));
+}
+function formatHost(host) {
+	return host.includes(":") && !host.startsWith("[") ? `[${host}]` : host;
+}
+//#endregion
+//#region src/serve/options.ts
+const HTTP_ONLY_OPTIONS = [
+	"host",
+	"port",
+	"path",
+	"user",
+	"password",
+	"allowUnauthenticatedHttp",
+	"trustProxy"
+];
+function resolveServeOptions(raw, env = process.env) {
+	const transport = parseTransport(raw.transport ?? "stdio");
+	if (transport === "stdio") {
+		const invalid = HTTP_ONLY_OPTIONS.filter((key) => raw[key] !== void 0);
+		if (invalid.length > 0) throw new CapletsError("REQUEST_INVALID", `${invalid.map((key) => `--${key}`).join(", ")} ${invalid.length === 1 ? "is" : "are"} only valid with --transport http`);
+		return { transport };
+	}
+	const serverUrl = env.CAPLETS_SERVER_URL ? parseServeServerUrl(nonEmpty(env.CAPLETS_SERVER_URL, "CAPLETS_SERVER_URL")) : void 0;
+	const host = nonEmpty(raw.host, "--host") ?? serverUrlHost(serverUrl) ?? "127.0.0.1";
+	const port = parsePort(raw.port ?? (serverUrl?.port ? Number(serverUrl.port) : 5387));
+	const path = normalizeHttpPath(raw.path ?? serverUrl?.pathname ?? "/");
+	const userWasExplicit = raw.user !== void 0 || hasEnv(env.CAPLETS_SERVER_USER);
+	const user = nonEmpty(raw.user, "--user") ?? nonEmpty(env.CAPLETS_SERVER_USER, "CAPLETS_SERVER_USER") ?? "caplets";
+	const password = nonEmpty(raw.password, "--password") ?? nonEmpty(env.CAPLETS_SERVER_PASSWORD, "CAPLETS_SERVER_PASSWORD");
+	if (userWasExplicit && password === void 0) throw new CapletsError("REQUEST_INVALID", "HTTP Basic Auth requires a password; pass --password or set CAPLETS_SERVER_PASSWORD.");
+	const loopback = isLoopbackHost(host);
+	const auth = password === void 0 ? {
+		enabled: false,
+		user
+	} : {
+		enabled: true,
+		user,
+		password
+	};
+	if (!loopback && !auth.enabled && raw.allowUnauthenticatedHttp !== true) throw new CapletsError("REQUEST_INVALID", "Unauthenticated HTTP serving on non-loopback hosts requires --allow-unauthenticated-http.");
+	return {
+		transport,
+		host,
+		port,
+		path,
+		auth,
+		warnUnauthenticatedNetwork: !loopback && !auth.enabled,
+		loopback,
+		trustProxy: raw.trustProxy === true
+	};
+}
+function isLoopbackHost(host) {
+	const normalized = host.toLocaleLowerCase();
+	return normalized === "localhost" || normalized === "127.0.0.1" || normalized === "::1";
+}
+function parseServeServerUrl(value) {
+	try {
+		return parseServerBaseUrl(value);
+	} catch (error) {
+		if (error instanceof CapletsError && error.message.includes("must use https except loopback development URLs")) throw new CapletsError("REQUEST_INVALID", "CAPLETS_SERVER_URL must use https except loopback development URLs; use --host, --port, and --path separately for non-loopback HTTP bind addresses.");
+		throw error;
+	}
+}
+function parseTransport(value) {
+	if (value === "stdio" || value === "http") return value;
+	throw new CapletsError("REQUEST_INVALID", `Expected --transport to be stdio or http, got ${value}`);
+}
+function parsePort(value) {
+	const parsed = typeof value === "number" ? value : Number(value);
+	if (!Number.isInteger(parsed) || parsed < 1 || parsed > 65535) throw new CapletsError("REQUEST_INVALID", `Expected --port to be a valid TCP port, got ${value}`);
+	return parsed;
+}
+function normalizeHttpPath(value) {
+	if (!value.startsWith("/")) throw new CapletsError("REQUEST_INVALID", "HTTP --path must start with /");
+	if (value.includes("?") || value.includes("#")) throw new CapletsError("REQUEST_INVALID", "HTTP --path must not include a query string or fragment");
+	return value === "/" ? value : value.replace(/\/+$/u, "");
+}
+function serverUrlHost(url) {
+	return url?.hostname.replace(/^\[(.*)\]$/u, "$1");
+}
+function nonEmpty(value, label) {
+	if (value === void 0) return;
+	const trimmed = value.trim();
+	if (!trimmed) throw new CapletsError("REQUEST_INVALID", `${label} must not be empty`);
+	return trimmed;
+}
+function hasEnv(value) {
+	return value !== void 0 && value.trim() !== "";
+}
+//#endregion
+//#region ../../node_modules/.pnpm/@modelcontextprotocol+sdk@1.29.0_zod@4.4.3/node_modules/@modelcontextprotocol/sdk/dist/esm/server/stdio.js
+/**
+* Server transport for stdio: this communicates with an MCP client by reading from the current process' stdin and writing to stdout.
+*
+* This transport is only available in Node.js environments.
+*/
+var StdioServerTransport = class {
+	constructor(_stdin = process$1.stdin, _stdout = process$1.stdout) {
+		this._stdin = _stdin;
+		this._stdout = _stdout;
+		this._readBuffer = new ReadBuffer();
+		this._started = false;
+		this._ondata = (chunk) => {
+			this._readBuffer.append(chunk);
+			this.processReadBuffer();
+		};
+		this._onerror = (error) => {
+			this.onerror?.(error);
+		};
+	}
+	/**
+	* Starts listening for messages on stdin.
+	*/
+	async start() {
+		if (this._started) throw new Error("StdioServerTransport already started! If using Server class, note that connect() calls start() automatically.");
+		this._started = true;
+		this._stdin.on("data", this._ondata);
+		this._stdin.on("error", this._onerror);
+	}
+	processReadBuffer() {
+		while (true) try {
+			const message = this._readBuffer.readMessage();
+			if (message === null) break;
+			this.onmessage?.(message);
+		} catch (error) {
+			this.onerror?.(error);
+		}
+	}
+	async close() {
+		this._stdin.off("data", this._ondata);
+		this._stdin.off("error", this._onerror);
+		if (this._stdin.listenerCount("data") === 0) this._stdin.pause();
+		this._readBuffer.clear();
+		this.onclose?.();
+	}
+	send(message) {
+		return new Promise((resolve) => {
+			const json = serializeMessage(message);
+			if (this._stdout.write(json)) resolve();
+			else this._stdout.once("drain", resolve);
+		});
+	}
+};
+//#endregion
+//#region src/serve/stdio.ts
+async function serveStdio(options = {}) {
+	const engine = new CapletsEngine(options);
+	const session = new CapletsMcpSession(engine);
+	let closing = false;
+	const close = async () => {
+		if (closing) return;
+		closing = true;
+		try {
+			await session.close();
+		} finally {
+			await engine.close();
+		}
+	};
+	let sigintHandler;
+	let sigtermHandler;
+	if (options.signalHandling !== false) {
+		sigintHandler = () => void close().finally(() => process.exit(130));
+		sigtermHandler = () => void close().finally(() => process.exit(143));
+		process.once("SIGINT", sigintHandler);
+		process.once("SIGTERM", sigtermHandler);
+	}
+	try {
+		await session.connect(new StdioServerTransport());
+	} finally {
+		if (sigintHandler) process.off("SIGINT", sigintHandler);
+		if (sigtermHandler) process.off("SIGTERM", sigtermHandler);
+		await close();
+	}
+}
+//#endregion
+//#region src/serve/index.ts
+async function serveCaplets(options) {
+	await serveResolvedCaplets(resolveServeOptions(options.raw, options.env ?? process.env), options.engine, options.writeErr);
+}
+async function serveResolvedCaplets(resolved, engineOptions = {}, writeErr) {
+	if (resolved.transport === "stdio") {
+		await serveStdio({
+			...engineOptions,
+			...writeErr ? { writeErr } : {}
+		});
+		return;
+	}
+	await serveHttp(resolved, {
+		...engineOptions,
+		...writeErr ? { writeErr } : {}
+	}, writeErr);
+}
+//#endregion
+//#region src/cli.ts
+async function runCli(args, io = {}) {
+	const program = createProgram(io);
+	try {
+		if (args.length === 0) {
+			program.outputHelp();
+			return;
+		}
+		await program.parseAsync([
+			"node",
+			"caplets",
+			...args
+		]);
+	} catch (error) {
+		if (error instanceof CommanderError) {
+			if (error.code === "commander.helpDisplayed" || error.code === "commander.version" || error.message === "(outputHelp)") return;
+			throw new CapletsError("REQUEST_INVALID", error.message);
+		}
+		throw error;
+	}
+}
+function createProgram(io = {}) {
+	const writeOut = io.writeOut ?? ((value) => process.stdout.write(value));
+	const writeErr = io.writeErr ?? ((value) => process.stderr.write(value));
+	const env = io.env ?? process.env;
+	const currentConfigPath = () => envConfigPath(env);
+	const setExitCode = io.setExitCode ?? ((code) => {
+		process.exitCode = code;
+	});
+	const program = new Command();
+	program.name("caplets").description("Progressive-disclosure gateway for MCP servers.").version(io.version ?? version).exitOverride().configureOutput({
+		writeOut,
+		writeErr,
+		outputError: (value, write) => write(value)
+	});
+	program.command("serve").description("Serve configured Caplets as an MCP server.").option("--transport <transport>", "server transport: stdio or http").option("--host <host>", "HTTP bind host").option("--port <port>", "HTTP bind port").option("--path <path>", "HTTP service base path").option("--user <user>", "HTTP Basic Auth username").option("--password <password>", "HTTP Basic Auth password").option("--allow-unauthenticated-http", "allow unauthenticated HTTP serving on non-loopback hosts").option("--trust-proxy", "trust X-Forwarded-* headers from a reverse proxy").action(async (options) => {
+		const resolved = resolveServeOptions(options);
+		const configPath = currentConfigPath();
+		await (io.serve ?? ((serveOptions) => serveResolvedCaplets(serveOptions, {
+			...configPath ? { configPath } : {},
+			...io.authDir ? { authDir: io.authDir } : {}
+		}, writeErr)))(resolved);
+	});
+	program.command("init").description("Create a starter Caplets config file.").option("--force", "overwrite an existing config file").action(async (options) => {
+		const remote = remoteClientForCli(io);
+		if (remote) {
+			writeOut(`Created remote Caplets config at ${(await remote.request("init", { force: Boolean(options.force) })).path}\n`);
+			return;
+		}
+		const configPath = currentConfigPath();
+		writeOut(`Created Caplets config at ${initConfig({
+			...configPath ? { path: configPath } : {},
+			force: Boolean(options.force)
+		})}\n`);
+	});
+	program.command("list").description("List configured Caplets.").option("--all", "include disabled Caplets").option("--json", "print JSON output").option("--format <format>", "output format: plain, markdown, md, or json", parseOutputFormat).action(async (options) => {
+		const includeDisabled = Boolean(options.all);
+		const remote = remoteClientForCli(io);
+		if (remote) {
+			const rows = await remote.request("list", { includeDisabled });
+			if (options.json || options.format === "json") {
+				writeOut(`${JSON.stringify(rows, null, 2)}\n`);
+				return;
+			}
+			writeOut(formatCapletList(rows, options.format ?? "plain"));
+			return;
+		}
+		const rows = listCaplets(loadConfigWithSources(currentConfigPath()), { includeDisabled });
+		if (options.json || options.format === "json") {
+			writeOut(`${JSON.stringify(rows, null, 2)}\n`);
+			return;
+		}
+		writeOut(formatCapletList(rows, options.format ?? "plain"));
+	});
+	program.command("install").description("Install Caplets from a repo's caplets directory.").argument("<repo>", "local repo path, Git URL, or GitHub owner/repo").argument("[caplets...]", "optional Caplet IDs to install").option("-g, --global", "install to the user Caplets root").option("--force", "overwrite installed Caplets").action(async (repo, capletIds, options) => {
+		const remote = remoteClientForCli(io);
+		if (remote) {
+			if (options.global) writeErr("Warning: --global is not supported in remote mode; the server controls the installation destination.\n");
+			const result = await remote.request("install", {
+				repo,
+				capletIds,
+				force: Boolean(options.force)
+			});
+			for (const caplet of result.installed) writeOut(`Installed ${caplet.id} to remote ${caplet.destination}\n`);
+			return;
+		}
+		const result = installCaplets(repo, {
+			capletIds,
+			force: Boolean(options.force),
+			destinationRoot: options.global ? resolveCapletsRoot(resolveConfigPath(currentConfigPath())) : resolveProjectCapletsRoot()
+		});
+		for (const caplet of result.installed) writeOut(`Installed ${caplet.id} to ${caplet.destination}\n`);
+	});
+	const add = program.command("add").description("Add generated Caplet files.");
+	add.command("cli").description("Add a CLI tools Caplet.").argument("<id>", "Caplet ID/display seed").option("--repo <path>", "repository path to inspect").option("--include <items>", "comma-separated generators to include: git,gh,package").option("--command <name>", "single CLI command template to generate").option("-g, --global", "write to the user Caplets root").option("--print", "print generated Caplet text without writing a file").option("--output <path>", "output path").option("--force", "overwrite an existing destination file").action(async (id, options) => {
+		const remote = remoteClientForCli(io);
+		if (remote) {
+			writeAddResult(writeOut, "CLI", await remote.request("add", {
+				kind: "cli",
+				id,
+				options: remoteAddOptions(options)
+			}));
+			return;
+		}
+		const result = addCliCaplet(id, {
+			...options,
+			destinationRoot: options.global ? resolveCapletsRoot(resolveConfigPath(currentConfigPath())) : resolveProjectCapletsRoot()
+		});
+		if (result.path) {
+			writeOut(`Wrote CLI Caplet to ${result.path}\n`);
+			return;
+		}
+		writeOut(result.text);
+	});
+	add.command("mcp").description("Add an MCP backend Caplet.").argument("<id>", "Caplet ID/display seed").option("--command <name>", "stdio command").option("--arg <value>", "stdio command argument", collect, []).option("--cwd <path>", "stdio working directory").option("--env <KEY=VALUE>", "stdio environment variable", collect, []).option("--url <url>", "remote MCP server URL").option("--transport <transport>", "remote transport: http or sse").option("--token-env <ENV>", "bearer token environment variable reference").option("-g, --global", "write to the user Caplets root").option("--print", "print generated Caplet text without writing a file").option("--output <path>", "output path").option("--force", "overwrite an existing destination file").action(async (id, options) => {
+		const remote = remoteClientForCli(io);
+		if (remote) {
+			writeAddResult(writeOut, "MCP", await remote.request("add", {
+				kind: "mcp",
+				id,
+				options: remoteAddOptions(options)
+			}));
+			return;
+		}
+		writeAddResult(writeOut, "MCP", addMcpCaplet(id, {
+			...options,
+			destinationRoot: addDestinationRoot(options, currentConfigPath())
+		}));
+	});
+	add.command("openapi").description("Add an OpenAPI backend Caplet.").argument("<id>", "Caplet ID/display seed").option("--spec <path-or-url>", "OpenAPI spec path or URL").option("--base-url <url>", "request base URL override").option("--token-env <ENV>", "bearer token environment variable reference").option("-g, --global", "write to the user Caplets root").option("--print", "print generated Caplet text without writing a file").option("--output <path>", "output path").option("--force", "overwrite an existing destination file").action(async (id, options) => {
+		const remote = remoteClientForCli(io);
+		if (remote) {
+			writeAddResult(writeOut, "OpenAPI", await remote.request("add", {
+				kind: "openapi",
+				id,
+				options: remoteAddOptions(options)
+			}));
+			return;
+		}
+		writeAddResult(writeOut, "OpenAPI", addOpenApiCaplet(id, {
+			...options,
+			destinationRoot: addDestinationRoot(options, currentConfigPath())
+		}));
+	});
+	add.command("graphql").description("Add a GraphQL backend Caplet.").argument("<id>", "Caplet ID/display seed").option("--endpoint-url <url>", "GraphQL endpoint URL").option("--schema <path-or-url>", "GraphQL schema path or URL").option("--introspection", "load schema through endpoint introspection").option("--token-env <ENV>", "bearer token environment variable reference").option("-g, --global", "write to the user Caplets root").option("--print", "print generated Caplet text without writing a file").option("--output <path>", "output path").option("--force", "overwrite an existing destination file").action(async (id, options) => {
+		const remote = remoteClientForCli(io);
+		if (remote) {
+			writeAddResult(writeOut, "GraphQL", await remote.request("add", {
+				kind: "graphql",
+				id,
+				options: remoteAddOptions(options)
+			}));
+			return;
+		}
+		writeAddResult(writeOut, "GraphQL", addGraphqlCaplet(id, {
+			...options,
+			destinationRoot: addDestinationRoot(options, currentConfigPath())
+		}));
+	});
+	add.command("http").description("Add an HTTP actions backend Caplet.").argument("<id>", "Caplet ID/display seed").option("--base-url <url>", "HTTP API base URL").option("--action <name:METHOD:/path>", "HTTP action", collect, []).option("--token-env <ENV>", "bearer token environment variable reference").option("-g, --global", "write to the user Caplets root").option("--print", "print generated Caplet text without writing a file").option("--output <path>", "output path").option("--force", "overwrite an existing destination file").action(async (id, options) => {
+		const remote = remoteClientForCli(io);
+		if (remote) {
+			writeAddResult(writeOut, "HTTP", await remote.request("add", {
+				kind: "http",
+				id,
+				options: remoteAddOptions(options)
+			}));
+			return;
+		}
+		writeAddResult(writeOut, "HTTP", addHttpCaplet(id, {
+			...options,
+			destinationRoot: addDestinationRoot(options, currentConfigPath())
+		}));
+	});
+	program.command("get-caplet").description("Print a configured Caplet card.").argument("<caplet>", "configured Caplet ID").option("--format <format>", "output format: markdown, md, plain, or json", parseOutputFormat).action(async (caplet, options) => {
+		await executeOperation(caplet, { operation: "get_caplet" }, {
+			writeOut,
+			writeErr,
+			setExitCode,
+			authDir: io.authDir,
+			env,
+			remote: remoteClientForCli(io),
+			format: options.format
+		});
+	});
+	program.command("check-backend").description("Check backend availability for a configured Caplet.").argument("<caplet>", "configured Caplet ID").option("--format <format>", "output format: markdown, md, plain, or json", parseOutputFormat).action(async (caplet, options) => {
+		await executeOperation(caplet, { operation: "check_backend" }, {
+			writeOut,
+			writeErr,
+			setExitCode,
+			authDir: io.authDir,
+			env,
+			remote: remoteClientForCli(io),
+			format: options.format
+		});
+	});
+	program.command("list-tools").description("List downstream tools for a configured Caplet.").argument("<caplet>", "configured Caplet ID").option("--format <format>", "output format: markdown, md, plain, or json", parseOutputFormat).action(async (caplet, options) => {
+		await executeOperation(caplet, { operation: "list_tools" }, {
+			writeOut,
+			writeErr,
+			setExitCode,
+			authDir: io.authDir,
+			env,
+			remote: remoteClientForCli(io),
+			format: options.format
+		});
+	});
+	program.command("search-tools").description("Search downstream tools for a configured Caplet.").argument("<caplet>", "configured Caplet ID").argument("<query>", "search query").option("--limit <n>", "maximum number of tools to return", parsePositiveInteger).option("--format <format>", "output format: markdown, md, plain, or json", parseOutputFormat).action(async (caplet, query, options) => {
+		await executeOperation(caplet, options.limit === void 0 ? {
+			operation: "search_tools",
+			query
+		} : {
+			operation: "search_tools",
+			query,
+			limit: options.limit
 		}, {
 			writeOut,
 			writeErr,
 			setExitCode,
 			authDir: io.authDir,
+			env,
+			remote: remoteClientForCli(io),
 			format: options.format
 		});
 	});
@@ -5498,6 +9373,8 @@ function createProgram(io = {}) {
 			writeErr,
 			setExitCode,
 			authDir: io.authDir,
+			env,
+			remote: remoteClientForCli(io),
 			format: options.format
 		});
 	});
@@ -5513,15 +9390,17 @@ function createProgram(io = {}) {
 			writeErr,
 			setExitCode,
 			authDir: io.authDir,
+			env,
+			remote: remoteClientForCli(io),
 			format: options.format
 		});
 	});
 	const config = program.command("config").description("Inspect Caplets config locations.");
 	config.command("path").description("Print the effective user config path.").action(() => {
-		writeOut(`${resolveConfigPath(envConfigPath())}\n`);
+		writeOut(`${resolveConfigPath(currentConfigPath())}\n`);
 	});
 	config.command("paths").description("Print resolved Caplets config, root, and auth paths.").option("--json", "print JSON output").option("--format <format>", "output format: plain, markdown, md, or json", parseOutputFormat).action((options) => {
-		const paths = resolveCliConfigPaths(envConfigPath(), io.authDir);
+		const paths = resolveCliConfigPaths(currentConfigPath(), io.authDir);
 		if (options.json || options.format === "json") {
 			writeOut(`${JSON.stringify(paths, null, 2)}\n`);
 			return;
@@ -5530,7 +9409,19 @@ function createProgram(io = {}) {
 	});
 	const auth = program.command("auth").description("Manage OAuth credentials for remote servers.");
 	auth.command("login").description("Authenticate a configured remote OAuth server.").argument("<server>", "configured server ID").option("--no-open", "print the authorization URL without opening a browser").action(async (serverId, options) => {
-		const configPath = envConfigPath();
+		const remote = remoteClientForCli(io);
+		if (remote) {
+			const started = await remote.request("auth_login_start", { server: serverId });
+			if (started.authorizationUrl) {
+				writeOut(`Open this URL to authorize ${serverId}:\n${started.authorizationUrl}\n`);
+				if (options.open !== false) await openBrowser(started.authorizationUrl);
+				writeOut("Complete authentication in your browser. The server callback will store credentials.\n");
+				return;
+			}
+			if (started.authenticated) writeOut(`Authenticated \`${serverId}\`.\n`);
+			return;
+		}
+		const configPath = currentConfigPath();
 		await loginAuth(serverId, {
 			noOpen: options.open === false,
 			writeOut,
@@ -5539,27 +9430,78 @@ function createProgram(io = {}) {
 			...io.authDir ? { authDir: io.authDir } : {}
 		});
 	});
-	auth.command("logout").description("Delete stored OAuth credentials for a server.").argument("<server>", "configured server ID").action((serverId) => {
-		const configPath = envConfigPath();
+	auth.command("logout").description("Delete stored OAuth credentials for a server.").argument("<server>", "configured server ID").action(async (serverId) => {
+		const remote = remoteClientForCli(io);
+		if (remote) {
+			writeOut((await remote.request("auth_logout", { server: serverId })).deleted ? `Deleted remote OAuth credentials for \`${serverId}\`.\n` : `No remote OAuth credentials found for \`${serverId}\`.\n`);
+			return;
+		}
+		const configPath = currentConfigPath();
 		logoutAuth(serverId, {
 			writeOut,
 			...configPath ? { configPath } : {},
 			...io.authDir ? { authDir: io.authDir } : {}
 		});
 	});
-	auth.command("list").description("List servers with stored OAuth credentials.").option("--json", "print JSON output").option("--format <format>", "output format: plain, markdown, md, or json", parseOutputFormat).action((options) => {
-		const configPath = envConfigPath();
+	auth.command("list").description("List servers with stored OAuth credentials.").option("--json", "print JSON output").option("--format <format>", "output format: plain, markdown, md, or json", parseOutputFormat).action(async (options) => {
+		const configPath = currentConfigPath();
+		const format = options.json || options.format === "json" ? "json" : options.format ?? "plain";
+		const remote = remoteClientForCli(io);
+		if (remote) {
+			const rows = await remote.request("auth_list", {});
+			if (format === "json") {
+				writeOut(`${JSON.stringify(rows, null, 2)}\n`);
+				return;
+			}
+			writeOut(formatAuthRows(rows, format));
+			return;
+		}
 		listAuth({
 			writeOut,
-			format: options.json || options.format === "json" ? "json" : options.format ?? "plain",
+			format,
 			...configPath ? { configPath } : {},
 			...io.authDir ? { authDir: io.authDir } : {}
 		});
 	});
 	return program;
 }
-function envConfigPath() {
-	return process.env.CAPLETS_CONFIG?.trim() || void 0;
+function envConfigPath(env) {
+	return env.CAPLETS_CONFIG?.trim() || void 0;
+}
+function remoteClientForCli(io) {
+	const env = io.env ?? process.env;
+	if (resolveCapletsMode({}, env).mode !== "remote") return;
+	return new RemoteControlClient(resolveCapletsServer(io.fetch ? { fetch: io.fetch } : {}, env));
+}
+async function openBrowser(url) {
+	const { spawn } = await import("node:child_process");
+	spawn(process.platform === "darwin" ? "open" : process.platform === "win32" ? "cmd" : "xdg-open", process.platform === "win32" ? [
+		"/c",
+		"start",
+		"",
+		url
+	] : [url], {
+		stdio: "ignore",
+		detached: true
+	}).unref();
+}
+function remoteCommandForOperation(operation) {
+	switch (operation) {
+		case "get_caplet":
+		case "check_backend":
+		case "list_tools":
+		case "search_tools":
+		case "get_tool":
+		case "call_tool": return operation;
+		default: return;
+	}
+}
+function remoteAddOptions(options) {
+	const { output, print, global, destinationRoot, ...remoteOptions } = options;
+	if (global) throw new CapletsError("REQUEST_INVALID", "--global is not supported in remote mode; the server controls the add destination.");
+	if (print) throw new CapletsError("REQUEST_INVALID", "--print is not supported in remote mode; the server controls add output.");
+	if (output !== void 0) throw new CapletsError("REQUEST_INVALID", "--output is not supported in remote mode; the server controls the add destination.");
+	return remoteOptions;
 }
 function collect(value, previous) {
 	previous.push(value);
@@ -5602,7 +9544,21 @@ function isPlainObject(value) {
 	return value !== null && typeof value === "object" && !Array.isArray(value);
 }
 async function executeOperation(caplet, request, io) {
-	const configPath = envConfigPath();
+	const command = remoteCommandForOperation(request.operation);
+	if (io.remote && command) {
+		const result = await io.remote.request(command, {
+			caplet,
+			request
+		});
+		const output = cliOutputForOperation(result, {
+			...request,
+			caplet
+		}, io.format ?? "markdown");
+		io.writeOut(typeof output === "string" ? `${output}\n` : `${JSON.stringify(output, null, 2)}\n`);
+		if (isPlainObject(result) && result.isError === true) io.setExitCode(1);
+		return;
+	}
+	const configPath = envConfigPath(io.env ?? process.env);
 	const engine = new CapletsEngine({
 		...configPath ? { configPath } : {},
 		...io.authDir ? { authDir: io.authDir } : {},
@@ -5848,15 +9804,15 @@ function schemaSummary(schema) {
 		required.length > 0 ? `required ${required.join(", ")}` : "no required fields"
 	].filter((part) => Boolean(part)).join("; ");
 }
-function addDestinationRoot(options) {
-	return options.global ? resolveCapletsRoot(resolveConfigPath(envConfigPath())) : resolveProjectCapletsRoot();
+function addDestinationRoot(options, configPath) {
+	return options.global ? resolveCapletsRoot(resolveConfigPath(configPath)) : resolveProjectCapletsRoot();
 }
 function writeAddResult(writeOut, label, result) {
 	if (result.path) {
-		writeOut(`Wrote ${label} Caplet to ${result.path}\n`);
+		writeOut(`Wrote ${result.remote ? "remote " : ""}${label} Caplet to ${result.path}\n`);
 		return;
 	}
 	writeOut(result.text);
 }
 //#endregion
-export { CapletsRuntime, ServerRegistry, capabilityDescription, createProgram, generatedToolInputSchema, handleServerTool, loadConfig, parseConfig, runCli };
+export { CapletsRuntime, ServerRegistry, capabilityDescription, createProgram, generatedToolInputSchema, handleServerTool, loadConfig, parseConfig, runCli, serveCaplets, serveHttp, serveResolvedCaplets, serveStdio };