@creativeintelligence/abbie 0.1.6 → 0.1.7

package/dist/lib/tmux/redaction.d.ts

@@ -1,57 +0,0 @@
-/**
- * Redaction utilities for tmux context.
- * Detects and redacts sensitive data like API keys, tokens, and credentials.
- */
-export type RedactMode = "balanced" | "strict";
-/**
- * Redact sensitive tokens within a string.
- */
-export declare function redactTokens(text: string): string;
-/**
- * Check if a line should be fully redacted.
- */
-export declare function shouldRedactLine(line: string): boolean;
-/**
- * Redact a single line of text.
- */
-export declare function redactLine(line: string): string;
-/**
- * Redact sensitive data from text content.
- * In strict mode, redacts more aggressively.
- */
-export declare function redactContent(text: string, _mode?: RedactMode): {
-    content: string;
-    wasRedacted: boolean;
-};
-/**
- * Check if a command is considered sensitive.
- */
-export declare function isSensitiveCommand(command: string): boolean;
-/**
- * Filter patterns for deny/allow lists.
- */
-export interface FilterConfig {
-    denySessions?: string[];
-    denyWindows?: string[];
-    denyPaths?: string[];
-    denyCommands?: string[];
-    includeSessions?: string[];
-    includeWindows?: string[];
-}
-/**
- * Check if a session should be filtered out.
- */
-export declare function shouldFilterSession(sessionName: string, config: FilterConfig): boolean;
-/**
- * Check if a window should be filtered out.
- */
-export declare function shouldFilterWindow(windowName: string, config: FilterConfig): boolean;
-/**
- * Check if a path should be filtered out.
- */
-export declare function shouldFilterPath(path: string, config: FilterConfig): boolean;
-/**
- * Check if a command should be filtered out.
- */
-export declare function shouldFilterCommand(command: string, config: FilterConfig): boolean;
-//# sourceMappingURL=redaction.d.ts.map

package/dist/lib/tmux/redaction.js

@@ -1,152 +0,0 @@
-/**
- * Redaction utilities for tmux context.
- * Detects and redacts sensitive data like API keys, tokens, and credentials.
- */
-const REDACTED_MARKER = "***REDACTED***";
-/**
- * Pattern definitions for sensitive data.
- */
-const PATTERNS = {
-    // OpenAI/OpenRouter/Anthropic-style keys
-    openaiKey: /sk-[A-Za-z0-9_-]{16,}/g,
-    anthropicKey: /sk-ant-[A-Za-z0-9_-]{16,}/g,
-    // GitHub tokens
-    githubPat: /ghp_[A-Za-z0-9]{20,}/g,
-    githubPatNew: /github_pat_[A-Za-z0-9_]{20,}/g,
-    githubOther: /gh[ours]_[A-Za-z0-9]{20,}/g,
-    // Slack tokens
-    slackToken: /xox[baprs]-[A-Za-z0-9-]{10,}/g,
-    // URLs with user:pass
-    urlWithAuth: /https?:\/\/[^:]+:[^@]+@[^\s'"]+/g,
-    // PEM private keys (multiline)
-    pemKey: /-----BEGIN\s+(?:[A-Z\s]+)?PRIVATE\s+KEY-----[\s\S]*?-----END\s+(?:[A-Z\s]+)?PRIVATE\s+KEY-----/g,
-    // AWS keys
-    awsAccessKey: /AKIA[A-Z0-9]{16}/g,
-    // Generic secret-looking patterns (base64-ish long strings after common key names)
-    genericSecret: /(?:api[_-]?key|secret[_-]?key|access[_-]?token|auth[_-]?token)\s*[:=]\s*["']?[A-Za-z0-9+/=_-]{20,}["']?/gi,
-};
-/**
- * Line-level patterns that should cause entire line redaction.
- */
-const LINE_PATTERNS = [
-    // Common secret assignments (case-insensitive)
-    // Matches: API_KEY=, SECRET=, SECRET_KEY=, PASSWORD=, AUTH_TOKEN=, PRIVATE_KEY=, etc.
-    /(?:\S*(?:API_KEY|SECRET|TOKEN|PASSWORD|PASS|PRIVATE_KEY)\S*)\s*=/i,
-    // export with secret names
-    /export\s+(?:\S*(?:KEY|TOKEN|SECRET|PASSWORD|PASS)\S*)\s*=/i,
-];
-/**
- * Commands that typically contain sensitive output and should be fully redacted in strict mode.
- */
-const SENSITIVE_COMMANDS = ["pass", "vault", "1password", "op", "aws configure"];
-/**
- * Redact sensitive tokens within a string.
- */
-export function redactTokens(text) {
-    let result = text;
-    // Apply all token patterns
-    for (const pattern of Object.values(PATTERNS)) {
-        result = result.replace(pattern, REDACTED_MARKER);
-    }
-    return result;
-}
-/**
- * Check if a line should be fully redacted.
- */
-export function shouldRedactLine(line) {
-    return LINE_PATTERNS.some((pattern) => pattern.test(line));
-}
-/**
- * Redact a single line of text.
- */
-export function redactLine(line) {
-    // First check if entire line should be redacted
-    if (shouldRedactLine(line)) {
-        return REDACTED_MARKER;
-    }
-    // Otherwise, apply token-level redaction
-    return redactTokens(line);
-}
-/**
- * Redact sensitive data from text content.
- * In strict mode, redacts more aggressively.
- */
-export function redactContent(text, _mode = "balanced") {
-    const lines = text.split("\n");
-    let wasRedacted = false;
-    const redactedLines = lines.map((line) => {
-        const redacted = redactLine(line);
-        if (redacted !== line) {
-            wasRedacted = true;
-        }
-        return redacted;
-    });
-    return {
-        content: redactedLines.join("\n"),
-        wasRedacted,
-    };
-}
-/**
- * Check if a command is considered sensitive.
- */
-export function isSensitiveCommand(command) {
-    const lowerCmd = command.toLowerCase();
-    return SENSITIVE_COMMANDS.some((sc) => lowerCmd.includes(sc));
-}
-/**
- * Check if a session should be filtered out.
- */
-export function shouldFilterSession(sessionName, config) {
-    // If include list is specified, only include those
-    if (config.includeSessions?.length) {
-        return !config.includeSessions.some((pattern) => matchPattern(sessionName, pattern));
-    }
-    // Otherwise, check deny list
-    if (config.denySessions?.length) {
-        return config.denySessions.some((pattern) => matchPattern(sessionName, pattern));
-    }
-    return false;
-}
-/**
- * Check if a window should be filtered out.
- */
-export function shouldFilterWindow(windowName, config) {
-    // If include list is specified, only include those
-    if (config.includeWindows?.length) {
-        return !config.includeWindows.some((pattern) => matchPattern(windowName, pattern));
-    }
-    // Otherwise, check deny list
-    if (config.denyWindows?.length) {
-        return config.denyWindows.some((pattern) => matchPattern(windowName, pattern));
-    }
-    return false;
-}
-/**
- * Check if a path should be filtered out.
- */
-export function shouldFilterPath(path, config) {
-    if (config.denyPaths?.length) {
-        return config.denyPaths.some((pattern) => matchPattern(path, pattern));
-    }
-    return false;
-}
-/**
- * Check if a command should be filtered out.
- */
-export function shouldFilterCommand(command, config) {
-    if (config.denyCommands?.length) {
-        return config.denyCommands.some((pattern) => matchPattern(command, pattern));
-    }
-    return false;
-}
-/**
- * Simple glob-like pattern matching (supports * wildcards).
- */
-function matchPattern(value, pattern) {
-    // Convert glob pattern to regex
-    const regexPattern = pattern
-        .replace(/[.+^${}()|[\]\\]/g, "\\$&") // Escape special chars except *
-        .replace(/\*/g, ".*"); // Convert * to .*
-    const regex = new RegExp(`^${regexPattern}$`, "i");
-    return regex.test(value);
-}

package/dist/lib/web/analytics.d.ts

@@ -1,63 +0,0 @@
-/**
- * Web analytics integration for agents web server.
- *
- * Provides middleware for tracking API calls and utilities for
- * browser-side PostHog initialization.
- */
-import type { Hono as HonoApp, MiddlewareHandler } from "hono";
-type HonoConstructor = new (...args: never[]) => HonoApp;
-interface WebAnalyticsClient {
-    init(): Promise<void>;
-    trackPageView(path: string, properties?: Record<string, unknown>): void;
-    trackApiCall(endpoint: string, method: string, properties?: {
-        status_code?: number;
-        duration_ms?: number;
-        agent?: string;
-        session_id?: string;
-    }): void;
-    trackSessionInteraction(action: "viewed" | "started" | "stopped" | "prompted", properties?: {
-        session_id?: string;
-        agent?: string;
-        project?: string;
-    }): void;
-    trackTmuxInteraction(action: "window_selected" | "pane_viewed" | "keys_sent", properties?: {
-        window?: string;
-        pane?: number;
-    }): void;
-}
-/**
- * Initialize web analytics. Safe to call multiple times.
- */
-export declare function initWebAnalytics(): Promise<void>;
-/**
- * Get the web analytics client.
- */
-export declare function getWebAnalytics(): WebAnalyticsClient;
-/**
- * Convenience export for direct access.
- */
-export declare const webAnalytics: WebAnalyticsClient;
-/**
- * Get Hono middleware for tracking API requests.
- * Returns no-op middleware if analytics unavailable.
- */
-export declare function getAnalyticsMiddleware(): MiddlewareHandler;
-/**
- * Create analytics API routes for Hono.
- * Returns null if analytics unavailable.
- */
-export declare function createAnalyticsRoutes(Hono: HonoConstructor): HonoApp | null;
-/**
- * Get PostHog configuration for browser client.
- */
-export declare function getWebConfig(): Promise<{
-    enabled: boolean;
-    posthog_key: string;
-    api_host: string;
-    distinct_id: string;
-} | null>;
-/**
- * Get browser-side PostHog initialization script.
- */
-export declare function getBrowserScript(): Promise<string>;
-export {};

package/dist/lib/web/analytics.js

@@ -1,168 +0,0 @@
-/**
- * Web analytics integration for agents web server.
- *
- * Provides middleware for tracking API calls and utilities for
- * browser-side PostHog initialization.
- */
-import { accessSync, constants, existsSync, realpathSync } from "node:fs";
-import { homedir } from "node:os";
-import { delimiter, dirname, join } from "node:path";
-import { pathToFileURL } from "node:url";
-// No-op client when analytics unavailable
-const noopWebAnalytics = {
-    init: async () => { },
-    trackPageView: () => { },
-    trackApiCall: () => { },
-    trackSessionInteraction: () => { },
-    trackTmuxInteraction: () => { },
-};
-let _webAnalytics = noopWebAnalytics;
-let _analyticsMiddleware = null;
-let _createAnalyticsRoutes = null;
-let _getWebConfig = null;
-let _getBrowserScript = null;
-let initialized = false;
-function findOnPath(cmd) {
-    const pathVar = process.env.PATH;
-    if (!pathVar)
-        return undefined;
-    for (const dir of pathVar.split(delimiter)) {
-        if (!dir)
-            continue;
-        const candidate = join(dir, cmd);
-        try {
-            accessSync(candidate, constants.X_OK);
-            return candidate;
-        }
-        catch {
-            // continue
-        }
-    }
-    return undefined;
-}
-function findAnalyticsWebPath() {
-    const envOverride = process.env.AGENTS_ANALYTICS_WEB_PATH;
-    if (envOverride && existsSync(envOverride)) {
-        return envOverride;
-    }
-    const analyticsBin = findOnPath("analytics");
-    if (analyticsBin) {
-        try {
-            const resolved = realpathSync(analyticsBin);
-            const root = join(dirname(resolved), "..");
-            const candidate = join(root, "dist", "lib", "web.js");
-            if (existsSync(candidate)) {
-                return candidate;
-            }
-        }
-        catch {
-            // continue
-        }
-    }
-    // Common dev layout: ~/Developer/utils/analytics
-    const home = process.env.HOME || homedir();
-    const devCandidate = join(home, "Developer", "utils", "analytics", "dist", "lib", "web.js");
-    if (existsSync(devCandidate)) {
-        return devCandidate;
-    }
-    return undefined;
-}
-/**
- * Initialize web analytics. Safe to call multiple times.
- */
-export async function initWebAnalytics() {
-    if (initialized)
-        return;
-    try {
-        const webPath = findAnalyticsWebPath();
-        if (!webPath) {
-            console.log("[analytics] web module not found - tracking disabled");
-            initialized = true;
-            return;
-        }
-        const mod = (await import(pathToFileURL(webPath).href));
-        await mod.webAnalytics.init();
-        _webAnalytics = mod.webAnalytics;
-        _analyticsMiddleware = mod.analyticsMiddleware;
-        _createAnalyticsRoutes = mod.createAnalyticsRoutes;
-        _getWebConfig = mod.getWebConfig;
-        _getBrowserScript = mod.getBrowserScript;
-        initialized = true;
-        console.log("[analytics] web tracking initialized");
-    }
-    catch (err) {
-        console.log("[analytics] failed to initialize:", err);
-        initialized = true;
-    }
-}
-/**
- * Get the web analytics client.
- */
-export function getWebAnalytics() {
-    return _webAnalytics;
-}
-/**
- * Convenience export for direct access.
- */
-export const webAnalytics = new Proxy({}, {
-    get(_, prop) {
-        const record = _webAnalytics;
-        return record[prop];
-    },
-});
-/**
- * Get Hono middleware for tracking API requests.
- * Returns no-op middleware if analytics unavailable.
- */
-export function getAnalyticsMiddleware() {
-    if (_analyticsMiddleware) {
-        return _analyticsMiddleware();
-    }
-    // No-op middleware
-    return async (_c, next) => {
-        await next();
-    };
-}
-/**
- * Create analytics API routes for Hono.
- * Returns null if analytics unavailable.
- */
-export function createAnalyticsRoutes(Hono) {
-    if (_createAnalyticsRoutes) {
-        return _createAnalyticsRoutes(Hono);
-    }
-    return null;
-}
-/**
- * Get PostHog configuration for browser client.
- */
-export async function getWebConfig() {
-    if (_getWebConfig) {
-        const result = await _getWebConfig();
-        if (typeof result !== "object" || result === null)
-            return null;
-        const record = result;
-        if (typeof record.enabled !== "boolean" ||
-            typeof record.posthog_key !== "string" ||
-            typeof record.api_host !== "string" ||
-            typeof record.distinct_id !== "string") {
-            return null;
-        }
-        return {
-            enabled: record.enabled,
-            posthog_key: record.posthog_key,
-            api_host: record.api_host,
-            distinct_id: record.distinct_id,
-        };
-    }
-    return null;
-}
-/**
- * Get browser-side PostHog initialization script.
- */
-export async function getBrowserScript() {
-    if (_getBrowserScript) {
-        return _getBrowserScript();
-    }
-    return "<!-- Analytics disabled -->";
-}

package/dist/lib/web/server.d.ts

@@ -1,26 +0,0 @@
-/**
- * Web server for agents web UI.
- * Uses Hono for HTTP routing and Bun for WebSocket.
- */
-export interface ServerOptions {
-    port: number;
-    host: string;
-    staticDir?: string;
-}
-/** Minimal WebSocket interface that works with Bun's ServerWebSocket */
-interface WebSocketLike {
-    send(data: string | ArrayBufferLike | Blob | ArrayBufferView): number | undefined;
-}
-export interface WebSocketClient {
-    ws: WebSocketLike;
-    subscriptions: Set<string>;
-}
-/**
- * Broadcast a message to all subscribed clients.
- */
-declare function broadcast(channel: string, data: unknown): void;
-/**
- * Create and start the web server.
- */
-export declare function createServer(options: ServerOptions): Promise<Bun.Server<undefined>>;
-export { broadcast };