npm - @elizaos/autonomous - Versions diffs - 2.0.0-alpha.10 - Mend

@elizaos/autonomous 2.0.0-alpha.10

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (241) hide show

package/LICENSE +21 -0
package/package.json +270 -0
package/src/actions/emote.ts +101 -0
package/src/actions/restart.ts +101 -0
package/src/actions/send-message.ts +168 -0
package/src/actions/stream-control.ts +439 -0
package/src/actions/switch-stream-source.ts +126 -0
package/src/actions/terminal.ts +186 -0
package/src/api/agent-admin-routes.ts +178 -0
package/src/api/agent-lifecycle-routes.ts +129 -0
package/src/api/agent-model.ts +143 -0
package/src/api/agent-transfer-routes.ts +211 -0
package/src/api/apps-routes.ts +210 -0
package/src/api/auth-routes.ts +90 -0
package/src/api/bsc-trade.ts +736 -0
package/src/api/bug-report-routes.ts +161 -0
package/src/api/character-routes.ts +421 -0
package/src/api/cloud-billing-routes.ts +598 -0
package/src/api/cloud-compat-routes.ts +192 -0
package/src/api/cloud-routes.ts +529 -0
package/src/api/cloud-status-routes.ts +234 -0
package/src/api/compat-utils.ts +154 -0
package/src/api/connector-health.ts +135 -0
package/src/api/coordinator-wiring.ts +179 -0
package/src/api/credit-detection.ts +47 -0
package/src/api/database.ts +1357 -0
package/src/api/diagnostics-routes.ts +389 -0
package/src/api/drop-service.ts +205 -0
package/src/api/early-logs.ts +111 -0
package/src/api/http-helpers.ts +252 -0
package/src/api/index.ts +85 -0
package/src/api/knowledge-routes.ts +1189 -0
package/src/api/knowledge-service-loader.ts +92 -0
package/src/api/memory-bounds.ts +121 -0
package/src/api/memory-routes.ts +349 -0
package/src/api/merkle-tree.ts +239 -0
package/src/api/models-routes.ts +72 -0
package/src/api/nfa-routes.ts +169 -0
package/src/api/nft-verify.ts +188 -0
package/src/api/og-tracker.ts +72 -0
package/src/api/parse-action-block.ts +145 -0
package/src/api/permissions-routes.ts +222 -0
package/src/api/plugin-validation.ts +355 -0
package/src/api/provider-switch-config.ts +455 -0
package/src/api/registry-routes.ts +165 -0
package/src/api/registry-service.ts +292 -0
package/src/api/route-helpers.ts +21 -0
package/src/api/sandbox-routes.ts +1480 -0
package/src/api/server.ts +17674 -0
package/src/api/signal-routes.ts +265 -0
package/src/api/stream-persistence.ts +297 -0
package/src/api/stream-route-state.ts +48 -0
package/src/api/stream-routes.ts +1046 -0
package/src/api/stream-voice-routes.ts +208 -0
package/src/api/streaming-text.ts +129 -0
package/src/api/streaming-types.ts +23 -0
package/src/api/subscription-routes.ts +283 -0
package/src/api/terminal-run-limits.ts +31 -0
package/src/api/training-backend-check.ts +40 -0
package/src/api/training-routes.ts +314 -0
package/src/api/training-service-like.ts +46 -0
package/src/api/trajectory-routes.ts +714 -0
package/src/api/trigger-routes.ts +438 -0
package/src/api/twitter-verify.ts +226 -0
package/src/api/tx-service.ts +193 -0
package/src/api/wallet-dex-prices.ts +206 -0
package/src/api/wallet-evm-balance.ts +989 -0
package/src/api/wallet-routes.ts +505 -0
package/src/api/wallet-rpc.ts +523 -0
package/src/api/wallet-trading-profile.ts +694 -0
package/src/api/wallet.ts +745 -0
package/src/api/whatsapp-routes.ts +282 -0
package/src/api/zip-utils.ts +130 -0
package/src/auth/anthropic.ts +63 -0
package/src/auth/apply-stealth.ts +38 -0
package/src/auth/claude-code-stealth.ts +141 -0
package/src/auth/credentials.ts +226 -0
package/src/auth/index.ts +18 -0
package/src/auth/openai-codex.ts +94 -0
package/src/auth/types.ts +24 -0
package/src/awareness/registry.ts +220 -0
package/src/bin.ts +10 -0
package/src/cli/index.ts +36 -0
package/src/cli/parse-duration.ts +43 -0
package/src/cloud/auth.test.ts +370 -0
package/src/cloud/auth.ts +176 -0
package/src/cloud/backup.test.ts +150 -0
package/src/cloud/backup.ts +50 -0
package/src/cloud/base-url.ts +45 -0
package/src/cloud/bridge-client.test.ts +481 -0
package/src/cloud/bridge-client.ts +307 -0
package/src/cloud/cloud-manager.test.ts +223 -0
package/src/cloud/cloud-manager.ts +151 -0
package/src/cloud/cloud-proxy.test.ts +122 -0
package/src/cloud/cloud-proxy.ts +52 -0
package/src/cloud/index.ts +23 -0
package/src/cloud/reconnect.test.ts +178 -0
package/src/cloud/reconnect.ts +108 -0
package/src/cloud/validate-url.test.ts +147 -0
package/src/cloud/validate-url.ts +176 -0
package/src/config/character-schema.ts +44 -0
package/src/config/config.ts +149 -0
package/src/config/env-vars.ts +86 -0
package/src/config/includes.ts +196 -0
package/src/config/index.ts +15 -0
package/src/config/object-utils.ts +10 -0
package/src/config/paths.ts +92 -0
package/src/config/plugin-auto-enable.ts +520 -0
package/src/config/schema.ts +1342 -0
package/src/config/telegram-custom-commands.ts +99 -0
package/src/config/types.agent-defaults.ts +342 -0
package/src/config/types.agents.ts +112 -0
package/src/config/types.gateway.ts +243 -0
package/src/config/types.hooks.ts +124 -0
package/src/config/types.messages.ts +201 -0
package/src/config/types.milady.ts +791 -0
package/src/config/types.tools.ts +416 -0
package/src/config/types.ts +7 -0
package/src/config/zod-schema.agent-runtime.ts +777 -0
package/src/config/zod-schema.core.ts +778 -0
package/src/config/zod-schema.hooks.ts +139 -0
package/src/config/zod-schema.providers-core.ts +1126 -0
package/src/config/zod-schema.session.ts +98 -0
package/src/config/zod-schema.ts +865 -0
package/src/contracts/apps.ts +46 -0
package/src/contracts/awareness.ts +56 -0
package/src/contracts/config.ts +172 -0
package/src/contracts/drop.ts +21 -0
package/src/contracts/index.ts +8 -0
package/src/contracts/onboarding.ts +592 -0
package/src/contracts/permissions.ts +52 -0
package/src/contracts/verification.ts +9 -0
package/src/contracts/wallet.ts +503 -0
package/src/diagnostics/integration-observability.ts +132 -0
package/src/emotes/catalog.ts +655 -0
package/src/external-modules.d.ts +7 -0
package/src/hooks/discovery.test.ts +357 -0
package/src/hooks/discovery.ts +231 -0
package/src/hooks/eligibility.ts +146 -0
package/src/hooks/hooks.test.ts +320 -0
package/src/hooks/index.ts +8 -0
package/src/hooks/loader.test.ts +418 -0
package/src/hooks/loader.ts +256 -0
package/src/hooks/registry.test.ts +168 -0
package/src/hooks/registry.ts +74 -0
package/src/hooks/types.ts +121 -0
package/src/index.ts +19 -0
package/src/onboarding-presets.ts +828 -0
package/src/plugins/custom-rtmp/index.ts +40 -0
package/src/providers/admin-trust.ts +76 -0
package/src/providers/session-bridge.ts +143 -0
package/src/providers/session-utils.ts +42 -0
package/src/providers/simple-mode.ts +113 -0
package/src/providers/ui-catalog.ts +135 -0
package/src/providers/workspace-provider.ts +213 -0
package/src/providers/workspace.ts +497 -0
package/src/runtime/agent-event-service.ts +57 -0
package/src/runtime/cloud-onboarding.test.ts +489 -0
package/src/runtime/cloud-onboarding.ts +408 -0
package/src/runtime/core-plugins.ts +53 -0
package/src/runtime/custom-actions.ts +605 -0
package/src/runtime/eliza.ts +4941 -0
package/src/runtime/embedding-presets.ts +73 -0
package/src/runtime/index.ts +8 -0
package/src/runtime/milady-plugin.ts +180 -0
package/src/runtime/onboarding-names.ts +76 -0
package/src/runtime/release-plugin-policy.ts +119 -0
package/src/runtime/restart.ts +59 -0
package/src/runtime/trajectory-persistence.ts +2584 -0
package/src/runtime/version.ts +6 -0
package/src/security/audit-log.ts +222 -0
package/src/security/network-policy.ts +91 -0
package/src/server/index.ts +6 -0
package/src/services/agent-export.ts +976 -0
package/src/services/app-manager.ts +755 -0
package/src/services/browser-capture.ts +215 -0
package/src/services/coding-agent-context.ts +355 -0
package/src/services/fallback-training-service.ts +196 -0
package/src/services/index.ts +17 -0
package/src/services/mcp-marketplace.ts +327 -0
package/src/services/plugin-manager-types.ts +185 -0
package/src/services/privy-wallets.ts +352 -0
package/src/services/registry-client-app-meta.ts +201 -0
package/src/services/registry-client-endpoints.ts +253 -0
package/src/services/registry-client-local.ts +485 -0
package/src/services/registry-client-network.ts +173 -0
package/src/services/registry-client-queries.ts +176 -0
package/src/services/registry-client-types.ts +104 -0
package/src/services/registry-client.ts +366 -0
package/src/services/remote-signing-service.ts +261 -0
package/src/services/sandbox-engine.ts +753 -0
package/src/services/sandbox-manager.ts +503 -0
package/src/services/self-updater.ts +213 -0
package/src/services/signal-pairing.ts +189 -0
package/src/services/signing-policy.ts +230 -0
package/src/services/skill-catalog-client.ts +195 -0
package/src/services/skill-marketplace.ts +909 -0
package/src/services/stream-manager.ts +707 -0
package/src/services/tts-stream-bridge.ts +465 -0
package/src/services/update-checker.ts +163 -0
package/src/services/version-compat.ts +367 -0
package/src/services/whatsapp-pairing.ts +279 -0
package/src/shared/ui-catalog-prompt.ts +1158 -0
package/src/test-support/process-helpers.ts +35 -0
package/src/test-support/route-test-helpers.ts +113 -0
package/src/test-support/test-helpers.ts +304 -0
package/src/testing/index.ts +3 -0
package/src/triggers/action.ts +342 -0
package/src/triggers/runtime.ts +432 -0
package/src/triggers/scheduling.ts +472 -0
package/src/triggers/types.ts +133 -0
package/src/types/app-hyperscape-routes-shim.d.ts +29 -0
package/src/types/external-modules.d.ts +7 -0
package/src/utils/exec-safety.ts +23 -0
package/src/utils/number-parsing.ts +112 -0
package/src/utils/spoken-text.ts +65 -0
package/src/version-resolver.ts +60 -0
package/test/api/agent-admin-routes.test.ts +160 -0
package/test/api/agent-lifecycle-routes.test.ts +164 -0
package/test/api/agent-transfer-routes.test.ts +136 -0
package/test/api/apps-routes.test.ts +140 -0
package/test/api/auth-routes.test.ts +160 -0
package/test/api/bug-report-routes.test.ts +88 -0
package/test/api/knowledge-routes.test.ts +73 -0
package/test/api/lifecycle.test.ts +342 -0
package/test/api/memory-routes.test.ts +74 -0
package/test/api/models-routes.test.ts +112 -0
package/test/api/nfa-routes.test.ts +78 -0
package/test/api/permissions-routes.test.ts +185 -0
package/test/api/registry-routes.test.ts +157 -0
package/test/api/signal-routes.test.ts +113 -0
package/test/api/subscription-routes.test.ts +90 -0
package/test/api/trigger-routes.test.ts +87 -0
package/test/api/wallet-routes.observability.test.ts +191 -0
package/test/api/wallet-routes.test.ts +502 -0
package/test/diagnostics/integration-observability.test.ts +135 -0
package/test/security/audit-log.test.ts +229 -0
package/test/security/network-policy.test.ts +143 -0
package/test/services/version-compat.test.ts +127 -0
package/tsconfig.build.json +21 -0
package/tsconfig.json +19 -0

package/src/config/zod-schema.providers-core.ts ADDED Viewed

@@ -0,0 +1,1126 @@
+import { z } from "zod";
+import {
+  normalizeTelegramCommandDescription,
+  normalizeTelegramCommandName,
+  resolveTelegramCustomCommands,
+} from "./telegram-custom-commands";
+import { ToolPolicySchema } from "./zod-schema.agent-runtime";
+import {
+  BlockStreamingChunkSchema,
+  BlockStreamingCoalesceSchema,
+  ChannelHeartbeatVisibilitySchema,
+  DmConfigSchema,
+  DmPolicySchema,
+  ExecutableTokenSchema,
+  GroupPolicySchema,
+  MarkdownConfigSchema,
+  MSTeamsReplyStyleSchema,
+  ProviderCommandsSchema,
+  ReplyToModeSchema,
+  RetryConfigSchema,
+  requireOpenAllowFrom,
+} from "./zod-schema.core";
+const ToolPolicyBySenderSchema = z
+  .record(z.string(), ToolPolicySchema)
+  .optional();
+const TelegramInlineButtonsScopeSchema = z.enum([
+  "off",
+  "dm",
+  "group",
+  "all",
+  "allowlist",
+]);
+const TelegramCapabilitiesSchema = z.union([
+  z.array(z.string()),
+  z
+    .object({
+      inlineButtons: TelegramInlineButtonsScopeSchema.optional(),
+    })
+    .strict(),
+]);
+export const TelegramTopicSchema = z
+  .object({
+    requireMention: z.boolean().optional(),
+    skills: z.array(z.string()).optional(),
+    enabled: z.boolean().optional(),
+    allowFrom: z.array(z.union([z.string(), z.number()])).optional(),
+    systemPrompt: z.string().optional(),
+  })
+  .strict();
+export const TelegramGroupSchema = z
+  .object({
+    requireMention: z.boolean().optional(),
+    tools: ToolPolicySchema,
+    toolsBySender: ToolPolicyBySenderSchema,
+    skills: z.array(z.string()).optional(),
+    enabled: z.boolean().optional(),
+    allowFrom: z.array(z.union([z.string(), z.number()])).optional(),
+    systemPrompt: z.string().optional(),
+    topics: z.record(z.string(), TelegramTopicSchema.optional()).optional(),
+  })
+  .strict();
+const TelegramCustomCommandSchema = z
+  .object({
+    command: z.string().transform(normalizeTelegramCommandName),
+    description: z.string().transform(normalizeTelegramCommandDescription),
+  })
+  .strict();
+const validateTelegramCustomCommands = (
+  value: { customCommands?: Array<{ command?: string; description?: string }> },
+  ctx: z.RefinementCtx,
+) => {
+  if (!value.customCommands || value.customCommands.length === 0) {
+    return;
+  }
+  const { issues } = resolveTelegramCustomCommands({
+    commands: value.customCommands,
+    checkReserved: false,
+    checkDuplicates: false,
+  });
+  for (const issue of issues) {
+    ctx.addIssue({
+      code: z.ZodIssueCode.custom,
+      path: ["customCommands", issue.index, issue.field],
+      message: issue.message,
+    });
+  }
+};
+export const TelegramAccountSchemaBase = z
+  .object({
+    name: z.string().optional(),
+    capabilities: TelegramCapabilitiesSchema.optional(),
+    markdown: MarkdownConfigSchema,
+    enabled: z.boolean().optional(),
+    commands: ProviderCommandsSchema,
+    customCommands: z.array(TelegramCustomCommandSchema).optional(),
+    configWrites: z.boolean().optional(),
+    dmPolicy: DmPolicySchema.optional().default("pairing"),
+    botToken: z.string().optional(),
+    tokenFile: z.string().optional(),
+    replyToMode: ReplyToModeSchema.optional(),
+    groups: z.record(z.string(), TelegramGroupSchema.optional()).optional(),
+    allowFrom: z.array(z.union([z.string(), z.number()])).optional(),
+    groupAllowFrom: z.array(z.union([z.string(), z.number()])).optional(),
+    groupPolicy: GroupPolicySchema.optional().default("allowlist"),
+    historyLimit: z.number().int().min(0).optional(),
+    dmHistoryLimit: z.number().int().min(0).optional(),
+    dms: z.record(z.string(), DmConfigSchema.optional()).optional(),
+    textChunkLimit: z.number().int().positive().optional(),
+    chunkMode: z.enum(["length", "newline"]).optional(),
+    blockStreaming: z.boolean().optional(),
+    draftChunk: BlockStreamingChunkSchema.optional(),
+    blockStreamingCoalesce: BlockStreamingCoalesceSchema.optional(),
+    streamMode: z
+      .enum(["off", "partial", "block"])
+      .optional()
+      .default("partial"),
+    mediaMaxMb: z.number().positive().optional(),
+    timeoutSeconds: z.number().int().positive().optional(),
+    retry: RetryConfigSchema,
+    network: z
+      .object({
+        autoSelectFamily: z.boolean().optional(),
+      })
+      .strict()
+      .optional(),
+    proxy: z.string().optional(),
+    webhookUrl: z.string().optional(),
+    webhookSecret: z.string().optional(),
+    webhookPath: z.string().optional(),
+    actions: z
+      .object({
+        reactions: z.boolean().optional(),
+        sendMessage: z.boolean().optional(),
+        deleteMessage: z.boolean().optional(),
+        sticker: z.boolean().optional(),
+      })
+      .strict()
+      .optional(),
+    reactionNotifications: z.enum(["off", "own", "all"]).optional(),
+    reactionLevel: z.enum(["off", "ack", "minimal", "extensive"]).optional(),
+    heartbeat: ChannelHeartbeatVisibilitySchema,
+    linkPreview: z.boolean().optional(),
+  })
+  .strict();
+export const TelegramAccountSchema = TelegramAccountSchemaBase.superRefine(
+  (value, ctx) => {
+    requireOpenAllowFrom({
+      policy: value.dmPolicy,
+      allowFrom: value.allowFrom,
+      ctx,
+      path: ["allowFrom"],
+      message:
+        'channels.telegram.dmPolicy="open" requires channels.telegram.allowFrom to include "*"',
+    });
+    validateTelegramCustomCommands(value, ctx);
+  },
+);
+export const TelegramConfigSchema = TelegramAccountSchemaBase.extend({
+  accounts: z.record(z.string(), TelegramAccountSchema.optional()).optional(),
+}).superRefine((value, ctx) => {
+  requireOpenAllowFrom({
+    policy: value.dmPolicy,
+    allowFrom: value.allowFrom,
+    ctx,
+    path: ["allowFrom"],
+    message:
+      'channels.telegram.dmPolicy="open" requires channels.telegram.allowFrom to include "*"',
+  });
+  validateTelegramCustomCommands(value, ctx);
+  const baseWebhookUrl =
+    typeof value.webhookUrl === "string" ? value.webhookUrl.trim() : "";
+  const baseWebhookSecret =
+    typeof value.webhookSecret === "string" ? value.webhookSecret.trim() : "";
+  if (baseWebhookUrl && !baseWebhookSecret) {
+    ctx.addIssue({
+      code: z.ZodIssueCode.custom,
+      message:
+        "channels.telegram.webhookUrl requires channels.telegram.webhookSecret",
+      path: ["webhookSecret"],
+    });
+  }
+  if (!value.accounts) {
+    return;
+  }
+  for (const [accountId, account] of Object.entries(value.accounts)) {
+    if (!account) {
+      continue;
+    }
+    if (account.enabled === false) {
+      continue;
+    }
+    const accountWebhookUrl =
+      typeof account.webhookUrl === "string" ? account.webhookUrl.trim() : "";
+    if (!accountWebhookUrl) {
+      continue;
+    }
+    const accountSecret =
+      typeof account.webhookSecret === "string"
+        ? account.webhookSecret.trim()
+        : "";
+    if (!accountSecret && !baseWebhookSecret) {
+      ctx.addIssue({
+        code: z.ZodIssueCode.custom,
+        message:
+          "channels.telegram.accounts.*.webhookUrl requires channels.telegram.webhookSecret or channels.telegram.accounts.*.webhookSecret",
+        path: ["accounts", accountId, "webhookSecret"],
+      });
+    }
+  }
+});
+export const DiscordDmSchema = z
+  .object({
+    enabled: z.boolean().optional(),
+    policy: DmPolicySchema.optional().default("pairing"),
+    allowFrom: z.array(z.union([z.string(), z.number()])).optional(),
+    groupEnabled: z.boolean().optional(),
+    groupChannels: z.array(z.union([z.string(), z.number()])).optional(),
+  })
+  .strict()
+  .superRefine((value, ctx) => {
+    requireOpenAllowFrom({
+      policy: value.policy,
+      allowFrom: value.allowFrom,
+      ctx,
+      path: ["allowFrom"],
+      message:
+        'channels.discord.dm.policy="open" requires channels.discord.dm.allowFrom to include "*"',
+    });
+  });
+export const DiscordGuildChannelSchema = z
+  .object({
+    allow: z.boolean().optional(),
+    requireMention: z.boolean().optional(),
+    tools: ToolPolicySchema,
+    toolsBySender: ToolPolicyBySenderSchema,
+    skills: z.array(z.string()).optional(),
+    enabled: z.boolean().optional(),
+    users: z.array(z.union([z.string(), z.number()])).optional(),
+    systemPrompt: z.string().optional(),
+    autoThread: z.boolean().optional(),
+  })
+  .strict();
+export const DiscordGuildSchema = z
+  .object({
+    slug: z.string().optional(),
+    requireMention: z.boolean().optional(),
+    tools: ToolPolicySchema,
+    toolsBySender: ToolPolicyBySenderSchema,
+    reactionNotifications: z
+      .enum(["off", "own", "all", "allowlist"])
+      .optional(),
+    users: z.array(z.union([z.string(), z.number()])).optional(),
+    channels: z
+      .record(z.string(), DiscordGuildChannelSchema.optional())
+      .optional(),
+  })
+  .strict();
+export const DiscordAccountSchema = z
+  .object({
+    name: z.string().optional(),
+    capabilities: z.array(z.string()).optional(),
+    markdown: MarkdownConfigSchema,
+    enabled: z.boolean().optional(),
+    commands: ProviderCommandsSchema,
+    configWrites: z.boolean().optional(),
+    token: z.string().optional(),
+    allowBots: z.boolean().optional(),
+    groupPolicy: GroupPolicySchema.optional().default("allowlist"),
+    historyLimit: z.number().int().min(0).optional(),
+    dmHistoryLimit: z.number().int().min(0).optional(),
+    dms: z.record(z.string(), DmConfigSchema.optional()).optional(),
+    textChunkLimit: z.number().int().positive().optional(),
+    chunkMode: z.enum(["length", "newline"]).optional(),
+    blockStreaming: z.boolean().optional(),
+    blockStreamingCoalesce: BlockStreamingCoalesceSchema.optional(),
+    maxLinesPerMessage: z.number().int().positive().optional(),
+    mediaMaxMb: z.number().positive().optional(),
+    retry: RetryConfigSchema,
+    actions: z
+      .object({
+        reactions: z.boolean().optional(),
+        stickers: z.boolean().optional(),
+        emojiUploads: z.boolean().optional(),
+        stickerUploads: z.boolean().optional(),
+        polls: z.boolean().optional(),
+        permissions: z.boolean().optional(),
+        messages: z.boolean().optional(),
+        threads: z.boolean().optional(),
+        pins: z.boolean().optional(),
+        search: z.boolean().optional(),
+        memberInfo: z.boolean().optional(),
+        roleInfo: z.boolean().optional(),
+        roles: z.boolean().optional(),
+        channelInfo: z.boolean().optional(),
+        voiceStatus: z.boolean().optional(),
+        events: z.boolean().optional(),
+        moderation: z.boolean().optional(),
+        channels: z.boolean().optional(),
+        presence: z.boolean().optional(),
+      })
+      .strict()
+      .optional(),
+    replyToMode: ReplyToModeSchema.optional(),
+    dm: DiscordDmSchema.optional(),
+    guilds: z.record(z.string(), DiscordGuildSchema.optional()).optional(),
+    heartbeat: ChannelHeartbeatVisibilitySchema,
+    execApprovals: z
+      .object({
+        enabled: z.boolean().optional(),
+        approvers: z.array(z.union([z.string(), z.number()])).optional(),
+        agentFilter: z.array(z.string()).optional(),
+        sessionFilter: z.array(z.string()).optional(),
+      })
+      .strict()
+      .optional(),
+    intents: z
+      .object({
+        presence: z.boolean().optional(),
+        guildMembers: z.boolean().optional(),
+      })
+      .strict()
+      .optional(),
+    pluralkit: z
+      .object({
+        enabled: z.boolean().optional(),
+        token: z.string().optional(),
+      })
+      .strict()
+      .optional(),
+  })
+  .strict();
+export const DiscordConfigSchema = DiscordAccountSchema.extend({
+  accounts: z.record(z.string(), DiscordAccountSchema.optional()).optional(),
+});
+export const GoogleChatDmSchema = z
+  .object({
+    enabled: z.boolean().optional(),
+    policy: DmPolicySchema.optional().default("pairing"),
+    allowFrom: z.array(z.union([z.string(), z.number()])).optional(),
+  })
+  .strict()
+  .superRefine((value, ctx) => {
+    requireOpenAllowFrom({
+      policy: value.policy,
+      allowFrom: value.allowFrom,
+      ctx,
+      path: ["allowFrom"],
+      message:
+        'channels.googlechat.dm.policy="open" requires channels.googlechat.dm.allowFrom to include "*"',
+    });
+  });
+export const GoogleChatGroupSchema = z
+  .object({
+    enabled: z.boolean().optional(),
+    allow: z.boolean().optional(),
+    requireMention: z.boolean().optional(),
+    users: z.array(z.union([z.string(), z.number()])).optional(),
+    systemPrompt: z.string().optional(),
+  })
+  .strict();
+export const GoogleChatAccountSchema = z
+  .object({
+    name: z.string().optional(),
+    capabilities: z.array(z.string()).optional(),
+    enabled: z.boolean().optional(),
+    configWrites: z.boolean().optional(),
+    allowBots: z.boolean().optional(),
+    requireMention: z.boolean().optional(),
+    groupPolicy: GroupPolicySchema.optional().default("allowlist"),
+    groupAllowFrom: z.array(z.union([z.string(), z.number()])).optional(),
+    groups: z.record(z.string(), GoogleChatGroupSchema.optional()).optional(),
+    serviceAccount: z
+      .union([z.string(), z.record(z.string(), z.unknown())])
+      .optional(),
+    serviceAccountFile: z.string().optional(),
+    audienceType: z.enum(["app-url", "project-number"]).optional(),
+    audience: z.string().optional(),
+    webhookPath: z.string().optional(),
+    webhookUrl: z.string().optional(),
+    botUser: z.string().optional(),
+    historyLimit: z.number().int().min(0).optional(),
+    dmHistoryLimit: z.number().int().min(0).optional(),
+    dms: z.record(z.string(), DmConfigSchema.optional()).optional(),
+    textChunkLimit: z.number().int().positive().optional(),
+    chunkMode: z.enum(["length", "newline"]).optional(),
+    blockStreaming: z.boolean().optional(),
+    blockStreamingCoalesce: BlockStreamingCoalesceSchema.optional(),
+    mediaMaxMb: z.number().positive().optional(),
+    replyToMode: ReplyToModeSchema.optional(),
+    actions: z
+      .object({
+        reactions: z.boolean().optional(),
+      })
+      .strict()
+      .optional(),
+    dm: GoogleChatDmSchema.optional(),
+    typingIndicator: z.enum(["none", "message", "reaction"]).optional(),
+  })
+  .strict();
+export const GoogleChatConfigSchema = GoogleChatAccountSchema.extend({
+  accounts: z.record(z.string(), GoogleChatAccountSchema.optional()).optional(),
+  defaultAccount: z.string().optional(),
+});
+export const SlackDmSchema = z
+  .object({
+    enabled: z.boolean().optional(),
+    policy: DmPolicySchema.optional().default("pairing"),
+    allowFrom: z.array(z.union([z.string(), z.number()])).optional(),
+    groupEnabled: z.boolean().optional(),
+    groupChannels: z.array(z.union([z.string(), z.number()])).optional(),
+    replyToMode: ReplyToModeSchema.optional(),
+  })
+  .strict()
+  .superRefine((value, ctx) => {
+    requireOpenAllowFrom({
+      policy: value.policy,
+      allowFrom: value.allowFrom,
+      ctx,
+      path: ["allowFrom"],
+      message:
+        'channels.slack.dm.policy="open" requires channels.slack.dm.allowFrom to include "*"',
+    });
+  });
+export const SlackChannelSchema = z
+  .object({
+    enabled: z.boolean().optional(),
+    allow: z.boolean().optional(),
+    requireMention: z.boolean().optional(),
+    tools: ToolPolicySchema,
+    toolsBySender: ToolPolicyBySenderSchema,
+    allowBots: z.boolean().optional(),
+    users: z.array(z.union([z.string(), z.number()])).optional(),
+    skills: z.array(z.string()).optional(),
+    systemPrompt: z.string().optional(),
+  })
+  .strict();
+export const SlackThreadSchema = z
+  .object({
+    historyScope: z.enum(["thread", "channel"]).optional(),
+    inheritParent: z.boolean().optional(),
+  })
+  .strict();
+const SlackReplyToModeByChatTypeSchema = z
+  .object({
+    direct: ReplyToModeSchema.optional(),
+    group: ReplyToModeSchema.optional(),
+    channel: ReplyToModeSchema.optional(),
+  })
+  .strict();
+export const SlackAccountSchema = z
+  .object({
+    name: z.string().optional(),
+    mode: z.enum(["socket", "http"]).optional(),
+    signingSecret: z.string().optional(),
+    webhookPath: z.string().optional(),
+    capabilities: z.array(z.string()).optional(),
+    markdown: MarkdownConfigSchema,
+    enabled: z.boolean().optional(),
+    commands: ProviderCommandsSchema,
+    configWrites: z.boolean().optional(),
+    botToken: z.string().optional(),
+    appToken: z.string().optional(),
+    userToken: z.string().optional(),
+    userTokenReadOnly: z.boolean().optional().default(true),
+    allowBots: z.boolean().optional(),
+    requireMention: z.boolean().optional(),
+    groupPolicy: GroupPolicySchema.optional().default("allowlist"),
+    historyLimit: z.number().int().min(0).optional(),
+    dmHistoryLimit: z.number().int().min(0).optional(),
+    dms: z.record(z.string(), DmConfigSchema.optional()).optional(),
+    textChunkLimit: z.number().int().positive().optional(),
+    chunkMode: z.enum(["length", "newline"]).optional(),
+    blockStreaming: z.boolean().optional(),
+    blockStreamingCoalesce: BlockStreamingCoalesceSchema.optional(),
+    mediaMaxMb: z.number().positive().optional(),
+    reactionNotifications: z
+      .enum(["off", "own", "all", "allowlist"])
+      .optional(),
+    reactionAllowlist: z.array(z.union([z.string(), z.number()])).optional(),
+    replyToMode: ReplyToModeSchema.optional(),
+    replyToModeByChatType: SlackReplyToModeByChatTypeSchema.optional(),
+    thread: SlackThreadSchema.optional(),
+    actions: z
+      .object({
+        reactions: z.boolean().optional(),
+        messages: z.boolean().optional(),
+        pins: z.boolean().optional(),
+        search: z.boolean().optional(),
+        permissions: z.boolean().optional(),
+        memberInfo: z.boolean().optional(),
+        channelInfo: z.boolean().optional(),
+        emojiList: z.boolean().optional(),
+      })
+      .strict()
+      .optional(),
+    slashCommand: z
+      .object({
+        enabled: z.boolean().optional(),
+        name: z.string().optional(),
+        sessionPrefix: z.string().optional(),
+        ephemeral: z.boolean().optional(),
+      })
+      .strict()
+      .optional(),
+    dm: SlackDmSchema.optional(),
+    channels: z.record(z.string(), SlackChannelSchema.optional()).optional(),
+    heartbeat: ChannelHeartbeatVisibilitySchema,
+  })
+  .strict();
+export const SlackConfigSchema = SlackAccountSchema.extend({
+  mode: z.enum(["socket", "http"]).optional().default("socket"),
+  signingSecret: z.string().optional(),
+  webhookPath: z.string().optional().default("/slack/events"),
+  accounts: z.record(z.string(), SlackAccountSchema.optional()).optional(),
+}).superRefine((value, ctx) => {
+  const baseMode = value.mode ?? "socket";
+  if (baseMode === "http" && !value.signingSecret) {
+    ctx.addIssue({
+      code: z.ZodIssueCode.custom,
+      message:
+        'channels.slack.mode="http" requires channels.slack.signingSecret',
+      path: ["signingSecret"],
+    });
+  }
+  if (!value.accounts) {
+    return;
+  }
+  for (const [accountId, account] of Object.entries(value.accounts)) {
+    if (!account) {
+      continue;
+    }
+    if (account.enabled === false) {
+      continue;
+    }
+    const accountMode = account.mode ?? baseMode;
+    if (accountMode !== "http") {
+      continue;
+    }
+    const accountSecret = account.signingSecret ?? value.signingSecret;
+    if (!accountSecret) {
+      ctx.addIssue({
+        code: z.ZodIssueCode.custom,
+        message:
+          'channels.slack.accounts.*.mode="http" requires channels.slack.signingSecret or channels.slack.accounts.*.signingSecret',
+        path: ["accounts", accountId, "signingSecret"],
+      });
+    }
+  }
+});
+export const SignalAccountSchemaBase = z
+  .object({
+    name: z.string().optional(),
+    capabilities: z.array(z.string()).optional(),
+    markdown: MarkdownConfigSchema,
+    enabled: z.boolean().optional(),
+    configWrites: z.boolean().optional(),
+    account: z.string().optional(),
+    httpUrl: z.string().optional(),
+    httpHost: z.string().optional(),
+    httpPort: z.number().int().positive().optional(),
+    cliPath: ExecutableTokenSchema.optional(),
+    autoStart: z.boolean().optional(),
+    startupTimeoutMs: z.number().int().min(1000).max(120000).optional(),
+    receiveMode: z
+      .union([z.literal("on-start"), z.literal("manual")])
+      .optional(),
+    ignoreAttachments: z.boolean().optional(),
+    ignoreStories: z.boolean().optional(),
+    sendReadReceipts: z.boolean().optional(),
+    dmPolicy: DmPolicySchema.optional().default("pairing"),
+    allowFrom: z.array(z.union([z.string(), z.number()])).optional(),
+    groupAllowFrom: z.array(z.union([z.string(), z.number()])).optional(),
+    groupPolicy: GroupPolicySchema.optional().default("allowlist"),
+    historyLimit: z.number().int().min(0).optional(),
+    dmHistoryLimit: z.number().int().min(0).optional(),
+    dms: z.record(z.string(), DmConfigSchema.optional()).optional(),
+    textChunkLimit: z.number().int().positive().optional(),
+    chunkMode: z.enum(["length", "newline"]).optional(),
+    blockStreaming: z.boolean().optional(),
+    blockStreamingCoalesce: BlockStreamingCoalesceSchema.optional(),
+    mediaMaxMb: z.number().int().positive().optional(),
+    reactionNotifications: z
+      .enum(["off", "own", "all", "allowlist"])
+      .optional(),
+    reactionAllowlist: z.array(z.union([z.string(), z.number()])).optional(),
+    actions: z
+      .object({
+        reactions: z.boolean().optional(),
+      })
+      .strict()
+      .optional(),
+    reactionLevel: z.enum(["off", "ack", "minimal", "extensive"]).optional(),
+    heartbeat: ChannelHeartbeatVisibilitySchema,
+  })
+  .strict();
+export const SignalAccountSchema = SignalAccountSchemaBase.superRefine(
+  (value, ctx) => {
+    requireOpenAllowFrom({
+      policy: value.dmPolicy,
+      allowFrom: value.allowFrom,
+      ctx,
+      path: ["allowFrom"],
+      message:
+        'channels.signal.dmPolicy="open" requires channels.signal.allowFrom to include "*"',
+    });
+  },
+);
+export const SignalConfigSchema = SignalAccountSchemaBase.extend({
+  accounts: z.record(z.string(), SignalAccountSchema.optional()).optional(),
+}).superRefine((value, ctx) => {
+  requireOpenAllowFrom({
+    policy: value.dmPolicy,
+    allowFrom: value.allowFrom,
+    ctx,
+    path: ["allowFrom"],
+    message:
+      'channels.signal.dmPolicy="open" requires channels.signal.allowFrom to include "*"',
+  });
+});
+export const IMessageAccountSchemaBase = z
+  .object({
+    name: z.string().optional(),
+    capabilities: z.array(z.string()).optional(),
+    markdown: MarkdownConfigSchema,
+    enabled: z.boolean().optional(),
+    configWrites: z.boolean().optional(),
+    cliPath: ExecutableTokenSchema.optional(),
+    dbPath: z.string().optional(),
+    remoteHost: z.string().optional(),
+    service: z
+      .union([z.literal("imessage"), z.literal("sms"), z.literal("auto")])
+      .optional(),
+    region: z.string().optional(),
+    dmPolicy: DmPolicySchema.optional().default("pairing"),
+    allowFrom: z.array(z.union([z.string(), z.number()])).optional(),
+    groupAllowFrom: z.array(z.union([z.string(), z.number()])).optional(),
+    groupPolicy: GroupPolicySchema.optional().default("allowlist"),
+    historyLimit: z.number().int().min(0).optional(),
+    dmHistoryLimit: z.number().int().min(0).optional(),
+    dms: z.record(z.string(), DmConfigSchema.optional()).optional(),
+    includeAttachments: z.boolean().optional(),
+    mediaMaxMb: z.number().int().positive().optional(),
+    textChunkLimit: z.number().int().positive().optional(),
+    chunkMode: z.enum(["length", "newline"]).optional(),
+    blockStreaming: z.boolean().optional(),
+    blockStreamingCoalesce: BlockStreamingCoalesceSchema.optional(),
+    groups: z
+      .record(
+        z.string(),
+        z
+          .object({
+            requireMention: z.boolean().optional(),
+            tools: ToolPolicySchema,
+            toolsBySender: ToolPolicyBySenderSchema,
+          })
+          .strict()
+          .optional(),
+      )
+      .optional(),
+    heartbeat: ChannelHeartbeatVisibilitySchema,
+  })
+  .strict();
+export const IMessageAccountSchema = IMessageAccountSchemaBase.superRefine(
+  (value, ctx) => {
+    requireOpenAllowFrom({
+      policy: value.dmPolicy,
+      allowFrom: value.allowFrom,
+      ctx,
+      path: ["allowFrom"],
+      message:
+        'channels.imessage.dmPolicy="open" requires channels.imessage.allowFrom to include "*"',
+    });
+  },
+);
+export const IMessageConfigSchema = IMessageAccountSchemaBase.extend({
+  accounts: z.record(z.string(), IMessageAccountSchema.optional()).optional(),
+}).superRefine((value, ctx) => {
+  requireOpenAllowFrom({
+    policy: value.dmPolicy,
+    allowFrom: value.allowFrom,
+    ctx,
+    path: ["allowFrom"],
+    message:
+      'channels.imessage.dmPolicy="open" requires channels.imessage.allowFrom to include "*"',
+  });
+});
+const BlueBubblesAllowFromEntry = z.union([z.string(), z.number()]);
+const BlueBubblesActionSchema = z
+  .object({
+    reactions: z.boolean().optional(),
+    edit: z.boolean().optional(),
+    unsend: z.boolean().optional(),
+    reply: z.boolean().optional(),
+    sendWithEffect: z.boolean().optional(),
+    renameGroup: z.boolean().optional(),
+    setGroupIcon: z.boolean().optional(),
+    addParticipant: z.boolean().optional(),
+    removeParticipant: z.boolean().optional(),
+    leaveGroup: z.boolean().optional(),
+    sendAttachment: z.boolean().optional(),
+  })
+  .strict()
+  .optional();
+const BlueBubblesGroupConfigSchema = z
+  .object({
+    requireMention: z.boolean().optional(),
+    tools: ToolPolicySchema,
+    toolsBySender: ToolPolicyBySenderSchema,
+  })
+  .strict();
+export const BlueBubblesAccountSchemaBase = z
+  .object({
+    name: z.string().optional(),
+    capabilities: z.array(z.string()).optional(),
+    markdown: MarkdownConfigSchema,
+    configWrites: z.boolean().optional(),
+    enabled: z.boolean().optional(),
+    serverUrl: z.string().optional(),
+    password: z.string().optional(),
+    webhookPath: z.string().optional(),
+    dmPolicy: DmPolicySchema.optional().default("pairing"),
+    allowFrom: z.array(BlueBubblesAllowFromEntry).optional(),
+    groupAllowFrom: z.array(BlueBubblesAllowFromEntry).optional(),
+    groupPolicy: GroupPolicySchema.optional().default("allowlist"),
+    historyLimit: z.number().int().min(0).optional(),
+    dmHistoryLimit: z.number().int().min(0).optional(),
+    dms: z.record(z.string(), DmConfigSchema.optional()).optional(),
+    textChunkLimit: z.number().int().positive().optional(),
+    chunkMode: z.enum(["length", "newline"]).optional(),
+    mediaMaxMb: z.number().int().positive().optional(),
+    sendReadReceipts: z.boolean().optional(),
+    blockStreaming: z.boolean().optional(),
+    blockStreamingCoalesce: BlockStreamingCoalesceSchema.optional(),
+    groups: z
+      .record(z.string(), BlueBubblesGroupConfigSchema.optional())
+      .optional(),
+    heartbeat: ChannelHeartbeatVisibilitySchema,
+  })
+  .strict();
+export const BlueBubblesAccountSchema =
+  BlueBubblesAccountSchemaBase.superRefine((value, ctx) => {
+    requireOpenAllowFrom({
+      policy: value.dmPolicy,
+      allowFrom: value.allowFrom,
+      ctx,
+      path: ["allowFrom"],
+      message:
+        'channels.bluebubbles.accounts.*.dmPolicy="open" requires allowFrom to include "*"',
+    });
+  });
+export const BlueBubblesConfigSchema = BlueBubblesAccountSchemaBase.extend({
+  accounts: z
+    .record(z.string(), BlueBubblesAccountSchema.optional())
+    .optional(),
+  actions: BlueBubblesActionSchema,
+}).superRefine((value, ctx) => {
+  requireOpenAllowFrom({
+    policy: value.dmPolicy,
+    allowFrom: value.allowFrom,
+    ctx,
+    path: ["allowFrom"],
+    message:
+      'channels.bluebubbles.dmPolicy="open" requires channels.bluebubbles.allowFrom to include "*"',
+  });
+});
+// ── Retake.tv streaming connector ──────────────────────────────────────────
+export const RetakeConfigSchema = z
+  .object({
+    enabled: z.boolean().optional(),
+    accessToken: z.string().optional(),
+    apiUrl: z.string().url().optional(),
+    captureUrl: z.string().optional(),
+  })
+  .strict();
+// ── Twitch chat connector schema ──────────────────────────────────────────
+export const TwitchConnectorConfigSchema = z
+  .object({
+    enabled: z.boolean().optional(),
+    username: z.string().optional(),
+    clientId: z.string().optional(),
+    accessToken: z.string().optional(),
+    clientSecret: z.string().optional(),
+    refreshToken: z.string().optional(),
+    channel: z.string().optional(),
+    channels: z.string().optional(),
+    requireMention: z.boolean().optional(),
+    allowedRoles: z.string().optional(),
+  })
+  .strict();
+// ── Streaming destination schemas ──────────────────────────────────────────
+export const TwitchStreamConfigSchema = z
+  .object({
+    enabled: z.boolean().optional(),
+    streamKey: z.string().optional(),
+  })
+  .strict();
+export const YoutubeStreamConfigSchema = z
+  .object({
+    enabled: z.boolean().optional(),
+    streamKey: z.string().optional(),
+    rtmpUrl: z.string().url().optional(),
+  })
+  .strict();
+export const CustomRtmpConfigSchema = z
+  .object({
+    enabled: z.boolean().optional(),
+    rtmpUrl: z.string().optional(),
+    rtmpKey: z.string().optional(),
+  })
+  .strict();
+export const PumpfunStreamConfigSchema = z
+  .object({
+    enabled: z.boolean().optional(),
+    streamKey: z.string().optional(),
+    rtmpUrl: z.string().optional(),
+  })
+  .strict();
+export const XStreamConfigSchema = z
+  .object({
+    enabled: z.boolean().optional(),
+    streamKey: z.string().optional(),
+    rtmpUrl: z.string().optional(),
+  })
+  .strict();
+export const MSTeamsChannelSchema = z
+  .object({
+    requireMention: z.boolean().optional(),
+    tools: ToolPolicySchema,
+    toolsBySender: ToolPolicyBySenderSchema,
+    replyStyle: MSTeamsReplyStyleSchema.optional(),
+  })
+  .strict();
+export const MSTeamsTeamSchema = z
+  .object({
+    requireMention: z.boolean().optional(),
+    tools: ToolPolicySchema,
+    toolsBySender: ToolPolicyBySenderSchema,
+    replyStyle: MSTeamsReplyStyleSchema.optional(),
+    channels: z.record(z.string(), MSTeamsChannelSchema.optional()).optional(),
+  })
+  .strict();
+export const MSTeamsConfigSchema = z
+  .object({
+    enabled: z.boolean().optional(),
+    capabilities: z.array(z.string()).optional(),
+    markdown: MarkdownConfigSchema,
+    configWrites: z.boolean().optional(),
+    appId: z.string().optional(),
+    appPassword: z.string().optional(),
+    tenantId: z.string().optional(),
+    webhook: z
+      .object({
+        port: z.number().int().positive().optional(),
+        path: z.string().optional(),
+      })
+      .strict()
+      .optional(),
+    dmPolicy: DmPolicySchema.optional().default("pairing"),
+    allowFrom: z.array(z.string()).optional(),
+    groupAllowFrom: z.array(z.string()).optional(),
+    groupPolicy: GroupPolicySchema.optional().default("allowlist"),
+    textChunkLimit: z.number().int().positive().optional(),
+    chunkMode: z.enum(["length", "newline"]).optional(),
+    blockStreamingCoalesce: BlockStreamingCoalesceSchema.optional(),
+    mediaAllowHosts: z.array(z.string()).optional(),
+    mediaAuthAllowHosts: z.array(z.string()).optional(),
+    requireMention: z.boolean().optional(),
+    historyLimit: z.number().int().min(0).optional(),
+    dmHistoryLimit: z.number().int().min(0).optional(),
+    dms: z.record(z.string(), DmConfigSchema.optional()).optional(),
+    replyStyle: MSTeamsReplyStyleSchema.optional(),
+    teams: z.record(z.string(), MSTeamsTeamSchema.optional()).optional(),
+    /** Max media size in MB (default: 100MB for OneDrive upload support). */
+    mediaMaxMb: z.number().positive().optional(),
+    /** SharePoint site ID for file uploads in group chats/channels (e.g., "contoso.sharepoint.com,guid1,guid2") */
+    sharePointSiteId: z.string().optional(),
+    heartbeat: ChannelHeartbeatVisibilitySchema,
+  })
+  .strict()
+  .superRefine((value, ctx) => {
+    requireOpenAllowFrom({
+      policy: value.dmPolicy,
+      allowFrom: value.allowFrom,
+      ctx,
+      path: ["allowFrom"],
+      message:
+        'channels.msteams.dmPolicy="open" requires channels.msteams.allowFrom to include "*"',
+    });
+  });
+export const WhatsAppAccountSchema = z
+  .object({
+    name: z.string().optional(),
+    capabilities: z.array(z.string()).optional(),
+    markdown: MarkdownConfigSchema,
+    configWrites: z.boolean().optional(),
+    enabled: z.boolean().optional(),
+    sendReadReceipts: z.boolean().optional(),
+    messagePrefix: z.string().optional(),
+    /** Override auth directory for this WhatsApp account (Baileys multi-file auth state). */
+    authDir: z.string().optional(),
+    dmPolicy: DmPolicySchema.optional().default("pairing"),
+    selfChatMode: z.boolean().optional(),
+    allowFrom: z.array(z.string()).optional(),
+    groupAllowFrom: z.array(z.string()).optional(),
+    groupPolicy: GroupPolicySchema.optional().default("allowlist"),
+    historyLimit: z.number().int().min(0).optional(),
+    dmHistoryLimit: z.number().int().min(0).optional(),
+    dms: z.record(z.string(), DmConfigSchema.optional()).optional(),
+    textChunkLimit: z.number().int().positive().optional(),
+    chunkMode: z.enum(["length", "newline"]).optional(),
+    mediaMaxMb: z.number().int().positive().optional(),
+    blockStreaming: z.boolean().optional(),
+    blockStreamingCoalesce: BlockStreamingCoalesceSchema.optional(),
+    groups: z
+      .record(
+        z.string(),
+        z
+          .object({
+            requireMention: z.boolean().optional(),
+            tools: ToolPolicySchema,
+            toolsBySender: ToolPolicyBySenderSchema,
+          })
+          .strict()
+          .optional(),
+      )
+      .optional(),
+    ackReaction: z
+      .object({
+        emoji: z.string().optional(),
+        direct: z.boolean().optional().default(true),
+        group: z
+          .enum(["always", "mentions", "never"])
+          .optional()
+          .default("mentions"),
+      })
+      .strict()
+      .optional(),
+    debounceMs: z.number().int().nonnegative().optional().default(0),
+    heartbeat: ChannelHeartbeatVisibilitySchema,
+  })
+  .strict()
+  .superRefine((value, ctx) => {
+    if (value.dmPolicy !== "open") {
+      return;
+    }
+    const allow = (value.allowFrom ?? [])
+      .map((v) => String(v).trim())
+      .filter(Boolean);
+    if (allow.includes("*")) {
+      return;
+    }
+    ctx.addIssue({
+      code: z.ZodIssueCode.custom,
+      path: ["allowFrom"],
+      message:
+        'channels.whatsapp.accounts.*.dmPolicy="open" requires allowFrom to include "*"',
+    });
+  });
+export const WhatsAppConfigSchema = z
+  .object({
+    accounts: z.record(z.string(), WhatsAppAccountSchema.optional()).optional(),
+    capabilities: z.array(z.string()).optional(),
+    markdown: MarkdownConfigSchema,
+    configWrites: z.boolean().optional(),
+    sendReadReceipts: z.boolean().optional(),
+    dmPolicy: DmPolicySchema.optional().default("pairing"),
+    messagePrefix: z.string().optional(),
+    selfChatMode: z.boolean().optional(),
+    allowFrom: z.array(z.string()).optional(),
+    groupAllowFrom: z.array(z.string()).optional(),
+    groupPolicy: GroupPolicySchema.optional().default("allowlist"),
+    historyLimit: z.number().int().min(0).optional(),
+    dmHistoryLimit: z.number().int().min(0).optional(),
+    dms: z.record(z.string(), DmConfigSchema.optional()).optional(),
+    textChunkLimit: z.number().int().positive().optional(),
+    chunkMode: z.enum(["length", "newline"]).optional(),
+    mediaMaxMb: z.number().int().positive().optional().default(50),
+    blockStreaming: z.boolean().optional(),
+    blockStreamingCoalesce: BlockStreamingCoalesceSchema.optional(),
+    actions: z
+      .object({
+        reactions: z.boolean().optional(),
+        sendMessage: z.boolean().optional(),
+        polls: z.boolean().optional(),
+      })
+      .strict()
+      .optional(),
+    groups: z
+      .record(
+        z.string(),
+        z
+          .object({
+            requireMention: z.boolean().optional(),
+            tools: ToolPolicySchema,
+            toolsBySender: ToolPolicyBySenderSchema,
+          })
+          .strict()
+          .optional(),
+      )
+      .optional(),
+    ackReaction: z
+      .object({
+        emoji: z.string().optional(),
+        direct: z.boolean().optional().default(true),
+        group: z
+          .enum(["always", "mentions", "never"])
+          .optional()
+          .default("mentions"),
+      })
+      .strict()
+      .optional(),
+    debounceMs: z.number().int().nonnegative().optional().default(0),
+    heartbeat: ChannelHeartbeatVisibilitySchema,
+  })
+  .strict()
+  .superRefine((value, ctx) => {
+    if (value.dmPolicy !== "open") {
+      return;
+    }
+    const allow = (value.allowFrom ?? [])
+      .map((v) => String(v).trim())
+      .filter(Boolean);
+    if (allow.includes("*")) {
+      return;
+    }
+    ctx.addIssue({
+      code: z.ZodIssueCode.custom,
+      path: ["allowFrom"],
+      message:
+        'channels.whatsapp.dmPolicy="open" requires channels.whatsapp.allowFrom to include "*"',
+    });
+  });
+export const TwitterConfigSchema = z
+  .object({
+    enabled: z.boolean().optional(),
+    // Authentication
+    apiKey: z.string().optional(),
+    apiSecretKey: z.string().optional(),
+    accessToken: z.string().optional(),
+    accessTokenSecret: z.string().optional(),
+    // Posting configuration
+    postEnable: z.boolean().optional().default(true),
+    postImmediately: z.boolean().optional().default(false),
+    postIntervalMin: z.number().int().positive().optional().default(90),
+    postIntervalMax: z.number().int().positive().optional().default(180),
+    postIntervalVariance: z.number().min(0).max(1).optional().default(0.1),
+    // Interaction settings
+    searchEnable: z.boolean().optional().default(false),
+    autoRespondMentions: z.boolean().optional().default(true),
+    enableActionProcessing: z.boolean().optional().default(true),
+    timelineAlgorithm: z
+      .enum(["weighted", "latest"])
+      .optional()
+      .default("weighted"),
+    // DM settings
+    dmPolicy: DmPolicySchema.optional().default("pairing"),
+    // Safety and testing
+    dryRun: z.boolean().optional().default(false),
+    retryLimit: z.number().int().positive().optional().default(3),
+    pollInterval: z.number().int().positive().optional().default(120),
+    // Advanced
+    maxTweetLength: z.number().int().positive().optional().default(4000),
+    configWrites: z.boolean().optional(),
+  })
+  .strict();
+export type TwitterConfig = z.infer<typeof TwitterConfigSchema>;