@comate/zulu 1.4.0-beta.3 → 1.4.0-beta.4

package/comate-engine/assets/skills/create-image/SKILL.md

@@ -41,6 +41,8 @@ Generate new images or edit existing ones using Google's Nano Banana Pro API (Ge
 **macOS / Linux (bash/zsh):**
 
 ```bash
+mkdir -p .comate/images
+
 curl -s -X POST https://comate.baidu-int.com/api/aidevops/autocomate/rest/autowork/v1/generate-image \
   -H "Content-Type: application/json" \
   -H "login-name: ${COMATE_USERNAME_ENCRYPTED}" \
@@ -49,7 +51,7 @@ curl -s -X POST https://comate.baidu-int.com/api/aidevops/autocomate/rest/autowo
     "resolution": "1K"
   }' \
   | jq -r '.candidates[0].content.parts[] | select(.inlineData) | .inlineData.data' \
-  | base64 --decode > output-name.png
+  | base64 --decode > .comate/images/output-name.png
 ```
 
 **Windows (PowerShell):**
@@ -70,8 +72,9 @@ $imgBase64 = $response.candidates[0].content.parts |
   Where-Object { $_.inlineData } |
   Select-Object -First 1 -ExpandProperty inlineData |
   Select-Object -ExpandProperty data
+New-Item -ItemType Directory -Force -Path ".comate/images" | Out-Null
 [System.IO.File]::WriteAllBytes(
-  (Join-Path (Get-Location) "output-name.png"),
+  (Join-Path (Get-Location) ".comate\images\output-name.png"),
   [System.Convert]::FromBase64String($imgBase64)
 )
 ```
@@ -103,12 +106,13 @@ cat > /tmp/request.json << EOF
 EOF
 
 # Step 3: send request
+mkdir -p .comate/images
 curl -s -X POST https://comate.baidu-int.com/api/aidevops/autocomate/rest/autowork/v1/generate-image \
   -H "Content-Type: application/json" \
   -H "login-name: ${COMATE_USERNAME_ENCRYPTED}" \
   -d @/tmp/request.json \
   | jq -r '.candidates[0].content.parts[] | select(.inlineData) | .inlineData.data' \
-  | base64 --decode > output-name.png
+  | base64 --decode > .comate/images/output-name.png
 ```
 
 **Windows (PowerShell):**
@@ -146,8 +150,9 @@ $outBase64 = $response.candidates[0].content.parts |
   Select-Object -First 1 -ExpandProperty inlineData |
 Select-Object -ExpandProperty data
 
+New-Item -ItemType Directory -Force -Path ".comate\images" | Out-Null
 [System.IO.File]::WriteAllBytes(
-  (Join-Path (Get-Location) "output-name.png"),
+  (Join-Path (Get-Location) ".comate\images\output-name.png"),
   [System.Convert]::FromBase64String($outBase64)
 )
 ```
@@ -222,11 +227,11 @@ $resolution = if     ($maxDim -ge 3000) { "4K" }
 ## Output
 
 - Saves PNG to `.comate/images` directory, if directory is not exist, you need to create it.
-- Script outputs the full path to the generated image
-- **Do not read the image back** - display the image using markdown syntax: `![image](/absolute/path/to/image.png)`
-- **Display the image path only once** using an absolute path (e.g. `/home/user/project/.comate/images/output-name.png`)
-- Absolute paths are REQUIRED (e.g. paths starting with `/` on Unix or `C:\` on Windows);
-- do NOT use relative paths (e.g. `./output.png` or `images/output.png` formats are forbidden);
+- Script outputs the relative path to the generated image
+- **Do not read the image back** - display the image using markdown syntax: `![image](relative/path/to/image.png)`
+- **Display the image path only once** using a relative path (e.g. `.comate/images/output-name.png`)
+- Relative paths are REQUIRED (e.g. paths starting with `./` or directly with the directory name);
+- do NOT use absolute paths (e.g. paths starting with `/` on Unix or `C:\` on Windows are forbidden);
 - do NOT repeat the path multiple times in the conversation
 
 ---

package/comate-engine/assets/skills/create-skill/SKILL.md

@@ -79,7 +79,6 @@ Based on the user interview, fill in these components:
 
 - **name**: Skill identifier
 - **description**: When to trigger, what it does. This is the primary triggering mechanism - include both what the skill does AND specific contexts for when to use it. All "when to use" info goes here, not in the body. Note: currently Comate has a tendency to "undertrigger" skills -- to not use them when they'd be useful. To combat this, please make the skill descriptions a little bit "pushy". So for instance, instead of "How to build a simple fast dashboard to display internal Anthropic data.", you might write "How to build a simple fast dashboard to display internal Anthropic data. Make sure to use this skill whenever the user mentions dashboards, data visualization, internal metrics, or wants to display any kind of company data, even if they don't explicitly ask for a 'dashboard.'"
-- **compatibility**: Required tools, dependencies (optional, rarely needed)
 - **the rest of the skill :)**
 
 ### Skill Writing Guide
@@ -446,4 +445,4 @@ Repeating one more time the core loop here for emphasis:
 - Repeat until you and the user are satisfied
 - Package the final skill and return it to the user.
 
-Please add steps to your TodoList, if you have such a thing, to make sure you don't forget.
+Please add steps to your TodoList, if you have such a thing, to make sure you don't forget.

package/comate-engine/assets/skills/get-ugate-token/SKILL.md

@@ -15,21 +15,23 @@ metadata:
 **核心特性：**
 - 所有 token 都是永久有效的
 - 支持用户手动输入 token
+- **仅沙盒环境支持 ugate/邮箱授权开关管理，Mac 和 Windows 环境不支持**
 - 用户名: ${COMATE_USERNAME}
-- 用户名加密: ${COMATE_USERNAME_ENCRYPTED}
-
+- skill 所在的路径是：${COMATE_SKILL_DIR}，
 
 ## 文件结构
 
 ```
-${COMATE_SKILL_DIR}/
+get-ugate-token/
 ├── SKILL.md           # 技能说明文档
 └── getUgateToken.py   # Python 主脚本
 ```
 
-## 工作流程
+## 功能列表
+
+### 1. Token 管理
 
-### 1. 手动输入 Token
+#### 手动输入 Token
 
 **当用户发送格式为 `ugate token: xxxx` 或 `ugate token：xxxx`（中文冒号）的消息时：**
 
@@ -41,17 +43,17 @@ ${COMATE_SKILL_DIR}/
 
 ```bash
 # 用户发送消息：ugate token: eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9...
-USER_MESSAGE="ugate token: eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9..." python3 ${COMATE_SKILL_DIR}/getUgateToken.py ${COMATE_USERNAME} 2>&1
+USER_MESSAGE="ugate token: eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9..." python3 getUgateToken.py ${COMATE_USERNAME} 2>&1
 TOKEN_SAVED:Token 已保存
 eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9...
 ```
 
-### 2. 检查缓存的 token
+#### 检查缓存的 token
 
 - 检查文件 `~/.config/uuap/.eac_ugate_token_${COMATE_USERNAME}` 是否存在
 - 如果文件存在，直接返回缓存的 token（永久有效）
 
-### 3. 需要手动获取 token
+#### 需要手动获取 token
 
 如果缓存不存在：
 
@@ -63,6 +65,74 @@ eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9...
 - 复制页面内容
 - 将内容发送给技能调用者
 
+### 2. 授权开关管理
+
+通过 `aigate-cli policy` 命令管理 ugate 和邮箱授权开关。
+
+#### 开启 Ugate 用户授权
+
+**触发关键词：**
+- 开启ugate / 开启 ugate / 打开ugate / 打开 ugate
+- 开启我的ugate / 开启我的 ugate
+- 开启ugate授权 / 开启 ugate 授权
+- 开启用户授权 / 打开用户授权
+- 身份授权开启 / 开启身份授权 / 打开身份授权
+
+**执行命令：** `aigate-cli policy -c=on -n=ugate`
+
+**示例：**
+```bash
+USER_MESSAGE="开启我的ugate授权" python3 ${COMATE_SKILL_DIR}/getUgateToken.py ${COMATE_USERNAME}
+# 输出: POLICY_RESULT:✅ Ugate 用户授权已开启
+```
+
+#### 关闭 Ugate 用户授权
+
+**触发关键词：**
+- 关闭ugate / 关闭 ugate / 取消ugate / 取消 ugate
+- 关闭我的ugate / 关闭我的 ugate
+- 关闭ugate授权 / 关闭 ugate 授权
+- 关闭用户授权 / 取消用户授权
+- 身份授权取消 / 取消身份授权 / 关闭身份授权
+
+**执行命令：** `aigate-cli policy -c=off -n=ugate`
+
+**示例：**
+```bash
+USER_MESSAGE="关闭ugate授权" python3 ${COMATE_SKILL_DIR}/getUgateToken.py ${COMATE_USERNAME}
+# 输出: POLICY_RESULT:✅ Ugate 用户授权已关闭
+```
+
+#### 开启邮箱授权
+
+**触发关键词：**
+- 开启邮箱 / 打开邮箱 / 开启邮箱授权
+- 开启我的邮箱 / 打开我的邮箱授权
+- 邮箱授权开启 / 邮箱开启
+
+**执行命令：** `aigate-cli policy -c=on -n=mail`
+
+**示例：**
+```bash
+USER_MESSAGE="开启邮箱授权" python3 ${COMATE_SKILL_DIR}/getUgateToken.py ${COMATE_USERNAME}
+# 输出: POLICY_RESULT:✅ 邮箱授权已开启
+```
+
+#### 关闭邮箱授权
+
+**触发关键词：**
+- 关闭邮箱 / 取消邮箱 / 关闭邮箱授权
+- 关闭我的邮箱 / 取消我的邮箱授权
+- 邮箱授权关闭 / 邮箱关闭
+
+**执行命令：** `aigate-cli policy -c=off -n=mail`
+
+**示例：**
+```bash
+USER_MESSAGE="关闭邮箱授权" python3 ${COMATE_SKILL_DIR}/getUgateToken.py ${COMATE_USERNAME}
+# 输出: POLICY_RESULT:✅ 邮箱授权已关闭
+```
+
 ## 使用方法
 
 ```bash
@@ -71,6 +141,12 @@ python3 ${COMATE_SKILL_DIR}/getUgateToken.py ${COMATE_USERNAME}
 
 # 手动输入 token（通过 USER_MESSAGE 环境变量）
 USER_MESSAGE="ugate token: eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9..." python3 ${COMATE_SKILL_DIR}/getUgateToken.py ${COMATE_USERNAME}
+
+# 开启 ugate 授权
+USER_MESSAGE="开启ugate授权" python3 ${COMATE_SKILL_DIR}/getUgateToken.py ${COMATE_USERNAME}
+
+# 关闭邮箱授权
+USER_MESSAGE="关闭邮箱授权" python3 ${COMATE_SKILL_DIR}/getUgateToken.py ${COMATE_USERNAME}
 ```
 
 ## 输出格式
@@ -95,10 +171,17 @@ eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9...
 脚本会输出到 stderr 并以退出码 2 退出：
 
 ```bash
-$ python3 getUgateToken.py ${COMATE_USERNAME} 2>&1
+$ python3 ${COMATE_SKILL_DIR}/getUgateToken.py ${COMATE_USERNAME} 2>&1
 NEED_MANUAL_TOKEN:请点击 https://uuap.baidu.com/agent/token 获取token，然后复制内容发送给我
 ```
 
+### Policy 操作场景
+
+```bash
+$ USER_MESSAGE="开启ugate授权" python3 ${COMATE_SKILL_DIR}/getUgateToken.py ${COMATE_USERNAME}
+POLICY_RESULT:✅ Ugate 用户授权已开启
+```
+
 ## 强制刷新
 
 当用户消息中包含以下关键词时，会忽略缓存：
@@ -124,7 +207,7 @@ USER_MESSAGE="刷新ugate" python3 ${COMATE_SKILL_DIR}/getUgateToken.py ${COMATE
 
 ## 环境变量依赖
 
-- `USER_MESSAGE` - 用户原始消息（可选，用于判断是否强制刷新或手动输入 token）
+- `USER_MESSAGE` - 用户原始消息（可选，用于判断操作意图）
 
 ## 缓存机制
 
@@ -149,8 +232,8 @@ USER_MESSAGE="刷新ugate" python3 ${COMATE_SKILL_DIR}/getUgateToken.py ${COMATE
 
 ## 退出码说明
 
-- **0**: 成功，token 已返回
-- **1**: 错误（参数缺失等）
+- **0**: 成功（token 返回或 policy 操作成功）
+- **1**: 错误（参数缺失、policy 操作失败等）
 - **2**: 需要手动获取 token（缓存无效，请提示用户访问 https://uuap.baidu.com/agent/token）
 
 ## 注意事项
@@ -158,4 +241,5 @@ USER_MESSAGE="刷新ugate" python3 ${COMATE_SKILL_DIR}/getUgateToken.py ${COMATE
 - token 会缓存到本地文件中，避免重复获取
 - 每个用户有独立的缓存文件，互不干扰
 - 所有 token 都是永久有效的
-- **手动输入 token 格式：** `ugate token: <token内容>` 或 `ugate token：<token内容>`（中文冒号）
+- **手动输入 token 格式：** `ugate token: <token内容>` 或 `ugate token：<token内容>`（中文冒号）
+- **Policy 操作依赖：** 需要系统已安装 `aigate-cli` 命令行工具，按说说明请参考：https://ku.baidu-int.com/knowledge/HFVrC7hq1Q/HXFtYvbMQj/TNoZ2M6o-t/dDqIxL3md2Nm0X

package/comate-engine/assets/skills/get-ugate-token/getUgateToken.py

@@ -2,13 +2,16 @@
 # -*- coding: utf-8 -*-
 """
 获取并缓存 ugate token（多用户版本，永久有效）
+支持管理 ugate/邮箱授权开关
 """
 
 import os
 import sys
 import json
 import re
+import subprocess
 from pathlib import Path
+from shutil import which
 
 # 配置常量
 CACHE_DIR = Path.home() / ".config" / "uuap"
@@ -29,6 +32,36 @@ FORCE_REFRESH_KEYWORDS = [
     "忽略缓存",
 ]
 
+# Policy 操作关键词
+POLICY_KEYWORDS = {
+    "ugate_on": [
+        "开启ugate", "开启 ugate", "打开ugate", "打开 ugate",
+        "开启我的ugate", "开启我的 ugate", "打开我的ugate", "打开我的 ugate",
+        "开启ugate授权", "开启 ugate 授权", "打开ugate授权", "打开 ugate 授权",
+        "开启我的ugate授权", "开启我的 ugate 授权", "ugate授权开启", "ugate 授权开启",
+        "开启用户授权", "打开用户授权",
+        "身份授权开启", "开启身份授权", "打开身份授权",
+    ],
+    "ugate_off": [
+        "关闭ugate", "关闭 ugate", "取消ugate", "取消 ugate",
+        "关闭我的ugate", "关闭我的 ugate", "取消我的ugate", "取消我的 ugate",
+        "关闭ugate授权", "关闭 ugate 授权", "取消ugate授权", "取消 ugate 授权",
+        "关闭我的ugate授权", "关闭我的 ugate 授权", "ugate授权关闭", "ugate 授权关闭",
+        "关闭用户授权", "取消用户授权",
+        "身份授权取消", "取消身份授权", "关闭身份授权",
+    ],
+    "mail_on": [
+        "开启邮箱", "打开邮箱", "开启邮箱授权", "打开邮箱授权",
+        "开启我的邮箱", "打开我的邮箱", "开启我的邮箱授权", "打开我的邮箱授权",
+        "邮箱授权开启", "邮箱开启",
+    ],
+    "mail_off": [
+        "关闭邮箱", "取消邮箱", "关闭邮箱授权", "取消邮箱授权",
+        "关闭我的邮箱", "取消我的邮箱", "关闭我的邮箱授权", "取消我的邮箱授权",
+        "邮箱授权关闭", "邮箱关闭",
+    ],
+}
+
 
 def get_cache_file(username):
     """根据用户名获取对应的缓存文件路径"""
@@ -44,6 +77,59 @@ def should_force_refresh(user_message):
     return any(keyword in user_message_lower for keyword in FORCE_REFRESH_KEYWORDS)
 
 
+def detect_policy_action(user_message):
+    """
+    检测用户消息是否包含 policy 操作意图
+    
+    Returns:
+        tuple: (action, name) 例如 ('on', 'ugate') 或 ('off', 'mail')，如果无匹配则返回 None
+    """
+    if not user_message:
+        return None
+    
+    for action_type, keywords in POLICY_KEYWORDS.items():
+        for keyword in keywords:
+            if keyword in user_message:
+                parts = action_type.split('_')
+                return (parts[1], parts[0])  # ('on', 'ugate') 或 ('off', 'mail')
+    
+    return None
+
+def execute_policy(command, name):
+    """
+    执行 aigate-cli policy 命令
+    
+    Args:
+        command: 'on' 或 'off'
+        name: 'ugate' 或 'mail'
+    
+    Returns:
+        tuple: (success, message)
+    """
+    try:
+        result = subprocess.run(
+            ['aigate-cli', 'policy', '-c=' + command, '-n=' + name],
+            capture_output=True,
+            text=True,
+            timeout=30
+        )
+        
+        if result.returncode == 0:
+            action_text = "开启" if command == "on" else "关闭"
+            name_text = "Ugate 用户授权" if name == "ugate" else "邮箱授权"
+            return (True, f"✅ {name_text}已{action_text}")
+        else:
+            error_msg = result.stderr.strip() if result.stderr else "未知错误"
+            return (False, f"❌ 操作失败: {error_msg}")
+    
+    except FileNotFoundError:
+        return (False, "❌ aigate-cli 命令未找到，请确认已安装")
+    except subprocess.TimeoutExpired:
+        return (False, "❌ 操作超时")
+    except Exception as e:
+        return (False, f"❌ 执行出错: {str(e)}")
+
+
 def extract_manual_token(user_message):
     """
     从用户消息中提取手动输入的 token
@@ -119,10 +205,18 @@ def main():
 
     username = sys.argv[1]
 
-    # 获取用户消息（用于判断是否强制刷新或手动输入 token）
+    # 获取用户消息（用于判断操作意图）
     user_message = os.environ.get('USER_MESSAGE', '')
 
-    # 1. 检查用户是否手动输入了 token（格式：ugate token: xxxx）
+    # 1. 检测是否为 policy 操作
+    policy_action = detect_policy_action(user_message)
+    if policy_action:
+        command, name = policy_action
+        success, message = execute_policy(command, name)
+        print(f"POLICY_RESULT:{message}")
+        sys.exit(0 if success else 1)
+
+    # 2. 检查用户是否手动输入了 token（格式：ugate token: xxxx）
     manual_token = extract_manual_token(user_message)
     if manual_token:
         # 保存到缓存（永久有效）
@@ -131,17 +225,17 @@ def main():
         print(manual_token)
         return
 
-    # 2. 检查是否需要强制刷新
+    # 3. 检查是否需要强制刷新
     force_refresh = should_force_refresh(user_message)
 
-    # 3. 尝试从缓存获取（除非强制刷新）
+    # 4. 尝试从缓存获取（除非强制刷新）
     if not force_refresh:
         cached_token = get_cached_token(username)
         if cached_token:
             print(cached_token)
             return
 
-    # 4. 缓存不存在或强制刷新，提示用户手动获取 token
+    # 5. 缓存不存在或强制刷新，提示用户手动获取 token
     print(f"NEED_MANUAL_TOKEN:请点击 https://uuap.baidu.com/agent/token 获取token，然后复制内容发送给我", file=sys.stderr)
     sys.exit(2)