@elizaos/plugin-shell 2.0.0-alpha.4 → 2.0.0-alpha.537

package/dist/index.js

@@ -4,21 +4,35 @@ var __getProtoOf = Object.getPrototypeOf;
 var __defProp = Object.defineProperty;
 var __getOwnPropNames = Object.getOwnPropertyNames;
 var __hasOwnProp = Object.prototype.hasOwnProperty;
+function __accessProp(key) {
+  return this[key];
+}
+var __toESMCache_node;
+var __toESMCache_esm;
 var __toESM = (mod, isNodeMode, target) => {
+  var canCache = mod != null && typeof mod === "object";
+  if (canCache) {
+    var cache = isNodeMode ? __toESMCache_node ??= new WeakMap : __toESMCache_esm ??= new WeakMap;
+    var cached = cache.get(mod);
+    if (cached)
+      return cached;
+  }
   target = mod != null ? __create(__getProtoOf(mod)) : {};
   const to = isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target;
   for (let key of __getOwnPropNames(mod))
     if (!__hasOwnProp.call(to, key))
       __defProp(to, key, {
-        get: () => mod[key],
+        get: __accessProp.bind(mod, key),
         enumerable: true
       });
+  if (canCache)
+    cache.set(mod, to);
   return to;
 };
 var __commonJS = (cb, mod) => () => (mod || cb((mod = { exports: {} }).exports, mod), mod.exports);
 var __require = /* @__PURE__ */ createRequire(import.meta.url);
 
-// ../../../node_modules/.bun/@lydell+node-pty@1.1.0/node_modules/@lydell/node-pty/eventEmitter2.js
+// ../../../node_modules/@lydell/node-pty/eventEmitter2.js
 var require_eventEmitter2 = __commonJS((exports) => {
   Object.defineProperty(exports, "__esModule", { value: true });
   var EventEmitter2 = function() {
@@ -63,7 +77,7 @@ var require_eventEmitter2 = __commonJS((exports) => {
   exports.EventEmitter2 = EventEmitter2;
 });
 
-// ../../../node_modules/.bun/@lydell+node-pty@1.1.0/node_modules/@lydell/node-pty/terminal.js
+// ../../../node_modules/@lydell/node-pty/terminal.js
 var require_terminal = __commonJS((exports) => {
   Object.defineProperty(exports, "__esModule", { value: true });
   var events_1 = __require("events");
@@ -251,7 +265,7 @@ var require_terminal = __commonJS((exports) => {
   exports.Terminal = Terminal;
 });
 
-// ../../../node_modules/.bun/@lydell+node-pty@1.1.0/node_modules/@lydell/node-pty/shared/conout.js
+// ../../../node_modules/@lydell/node-pty/shared/conout.js
 var require_conout = __commonJS((exports) => {
   Object.defineProperty(exports, "__esModule", { value: true });
   function getWorkerPipeName(conoutPipeName) {
@@ -260,9 +274,9 @@ var require_conout = __commonJS((exports) => {
   exports.getWorkerPipeName = getWorkerPipeName;
 });
 
-// ../../../node_modules/.bun/@lydell+node-pty@1.1.0/node_modules/@lydell/node-pty/windowsConoutConnection.js
+// ../../../node_modules/@lydell/node-pty/windowsConoutConnection.js
 var require_windowsConoutConnection = __commonJS((exports) => {
-  var __dirname = "/Users/shawwalters/eliza-ok/node_modules/.bun/@lydell+node-pty@1.1.0/node_modules/@lydell/node-pty";
+  var __dirname = "/Users/shawwalters/eliza-workspace/milady/node_modules/@lydell/node-pty";
   var __awaiter = exports && exports.__awaiter || function(thisArg, _arguments, P, generator) {
     function adopt(value) {
       return value instanceof P ? value : new P(function(resolve) {
@@ -435,7 +449,7 @@ var require_windowsConoutConnection = __commonJS((exports) => {
   exports.ConoutConnection = ConoutConnection;
 });
 
-// ../../../node_modules/.bun/@lydell+node-pty@1.1.0/node_modules/@lydell/node-pty/package.json
+// ../../../node_modules/@lydell/node-pty/package.json
 var require_package = __commonJS((exports, module) => {
   module.exports = {
     name: "@lydell/node-pty",
@@ -470,7 +484,7 @@ var require_package = __commonJS((exports, module) => {
   };
 });
 
-// ../../../node_modules/.bun/@lydell+node-pty@1.1.0/node_modules/@lydell/node-pty/requireBinary.js
+// ../../../node_modules/@lydell/node-pty/requireBinary.js
 var require_requireBinary = __commonJS((exports) => {
   Object.defineProperty(exports, "__esModule", { value: true });
   var PACKAGE_NAME = "@lydell/node-pty-" + process.platform + "-" + process.arch;
@@ -511,9 +525,9 @@ Your platform (` + process.platform + "-" + process.arch + ") might not be suppo
   }
 });
 
-// ../../../node_modules/.bun/@lydell+node-pty@1.1.0/node_modules/@lydell/node-pty/windowsPtyAgent.js
+// ../../../node_modules/@lydell/node-pty/windowsPtyAgent.js
 var require_windowsPtyAgent = __commonJS((exports) => {
-  var __dirname = "/Users/shawwalters/eliza-ok/node_modules/.bun/@lydell+node-pty@1.1.0/node_modules/@lydell/node-pty";
+  var __dirname = "/Users/shawwalters/eliza-workspace/milady/node_modules/@lydell/node-pty";
   Object.defineProperty(exports, "__esModule", { value: true });
   var fs5 = __require("fs");
   var path6 = __require("path");
@@ -729,7 +743,7 @@ var require_windowsPtyAgent = __commonJS((exports) => {
   }
 });
 
-// ../../../node_modules/.bun/@lydell+node-pty@1.1.0/node_modules/@lydell/node-pty/utils.js
+// ../../../node_modules/@lydell/node-pty/utils.js
 var require_utils = __commonJS((exports) => {
   Object.defineProperty(exports, "__esModule", { value: true });
   function assign(target) {
@@ -747,7 +761,7 @@ var require_utils = __commonJS((exports) => {
   exports.assign = assign;
 });
 
-// ../../../node_modules/.bun/@lydell+node-pty@1.1.0/node_modules/@lydell/node-pty/windowsTerminal.js
+// ../../../node_modules/@lydell/node-pty/windowsTerminal.js
 var require_windowsTerminal = __commonJS((exports) => {
   var __extends = exports && exports.__extends || function() {
     var extendStatics = function(d, b) {
@@ -925,7 +939,7 @@ var require_windowsTerminal = __commonJS((exports) => {
   exports.WindowsTerminal = WindowsTerminal;
 });
 
-// ../../../node_modules/.bun/@lydell+node-pty@1.1.0/node_modules/@lydell/node-pty/unixTerminal.js
+// ../../../node_modules/@lydell/node-pty/unixTerminal.js
 var require_unixTerminal = __commonJS((exports) => {
   var __extends = exports && exports.__extends || function() {
     var extendStatics = function(d, b) {
@@ -1171,7 +1185,7 @@ var require_unixTerminal = __commonJS((exports) => {
   exports.UnixTerminal = UnixTerminal;
 });
 
-// ../../../node_modules/.bun/@lydell+node-pty@1.1.0/node_modules/@lydell/node-pty/index.js
+// ../../../node_modules/@lydell/node-pty/index.js
 var require_node_pty = __commonJS((exports) => {
   Object.defineProperty(exports, "__esModule", { value: true });
   var terminalCtor;
@@ -1212,26 +1226,6 @@ var coreActionsSpec = {
       description: "Clears the recorded history of shell commands for the current conversation",
       similes: ["RESET_SHELL", "CLEAR_TERMINAL", "CLEAR_HISTORY", "RESET_HISTORY"],
       parameters: []
-    },
-    {
-      name: "EXECUTE_COMMAND",
-      description: "Execute shell commands including brew install, npm install, apt-get, system commands, file operations, directory navigation, and scripts.",
-      similes: [
-        "RUN_COMMAND",
-        "SHELL_COMMAND",
-        "TERMINAL_COMMAND",
-        "EXEC",
-        "RUN",
-        "EXECUTE",
-        "CREATE_FILE",
-        "WRITE_FILE",
-        "MAKE_FILE",
-        "INSTALL",
-        "BREW_INSTALL",
-        "NPM_INSTALL",
-        "APT_INSTALL"
-      ],
-      parameters: []
     }
   ]
 };
@@ -1243,26 +1237,6 @@ var allActionsSpec = {
       description: "Clears the recorded history of shell commands for the current conversation",
       similes: ["RESET_SHELL", "CLEAR_TERMINAL", "CLEAR_HISTORY", "RESET_HISTORY"],
       parameters: []
-    },
-    {
-      name: "EXECUTE_COMMAND",
-      description: "Execute shell commands including brew install, npm install, apt-get, system commands, file operations, directory navigation, and scripts.",
-      similes: [
-        "RUN_COMMAND",
-        "SHELL_COMMAND",
-        "TERMINAL_COMMAND",
-        "EXEC",
-        "RUN",
-        "EXECUTE",
-        "CREATE_FILE",
-        "WRITE_FILE",
-        "MAKE_FILE",
-        "INSTALL",
-        "BREW_INSTALL",
-        "NPM_INSTALL",
-        "APT_INSTALL"
-      ],
-      parameters: []
     }
   ]
 };
@@ -1335,7 +1309,8 @@ var clearHistory = {
   name: spec.name,
   similes: spec.similes ? [...spec.similes] : [],
   description: spec.description,
-  validate: async (runtime, message, _state) => {
+  descriptionCompressed: spec.descriptionCompressed,
+  validate: async (runtime, message, _state, _options) => {
     const shellService = runtime.getService("shell");
     if (!shellService) {
       return false;
@@ -1343,9 +1318,7 @@ var clearHistory = {
     const text = message.content.text?.toLowerCase() || "";
     const clearKeywords = ["clear", "reset", "delete", "remove", "clean"];
     const historyKeywords = ["history", "terminal", "shell", "command"];
-    const hasClearKeyword = clearKeywords.some((keyword) => text.includes(keyword));
-    const hasHistoryKeyword = historyKeywords.some((keyword) => text.includes(keyword));
-    return hasClearKeyword && hasHistoryKeyword;
+    return clearKeywords.some((keyword) => text.includes(keyword)) && historyKeywords.some((keyword) => text.includes(keyword));
   },
   handler: async (runtime, message, _state, _options, callback) => {
     const shellService = runtime.getService("shell");
@@ -1382,389 +1355,12 @@ var clearHistory = {
   },
   examples: spec.examples ?? []
 };
-// actions/executeCommand.ts
-import {
-  composePromptFromState,
-  logger as logger2,
-  ModelType,
-  parseJSONObjectFromText
-} from "@elizaos/core";
-
-// generated/prompts/typescript/prompts.ts
-var commandExtractionTemplate = `# Extracting shell command from request
-{{recentMessages}}
-
-# Instructions: {{senderName}} wants to execute a shell command. Extract the COMPLETE shell command they want to run.
-
-IMPORTANT: 
-1. Always return the FULL executable shell command, not just the content or partial command.
-2. If the user mentions installing something, create the appropriate brew/npm/apt command.
-3. If the user directly provides a command (like "brew install X"), use it exactly as provided.
-4. ALWAYS extract a command if the user is asking for ANY kind of system operation.
-
-Common patterns:
-- "run ls -la" -> command: "ls -la"
-- "execute npm test" -> command: "npm test"
-- "show me the files" or "list files" -> command: "ls -la"
-- "what's in this directory" -> command: "ls -la"
-- "check git status" -> command: "git status"
-- "navigate to src folder" -> command: "cd src"
-- "create a file called test.txt" -> command: "touch test.txt"
-- "write hello world to a file" -> command: "echo 'hello world' > file.txt"
-- "create hello.js with javascript code" -> command: "echo 'console.log(\\"Hello, World!\\");' > hello.js"
-- "create hello_world.py and write a python hello world script inside" -> command: "echo 'print(\\"Hello, World!\\")' > hello_world.py"
-- "make a new directory" -> command: "mkdir newdir"
-- "list files inside your filesystem" -> command: "ls -la"
-- "install orbstack" or "brew install orbstack" -> command: "brew install orbstack"
-- "install mullvad vpn" -> command: "brew install --cask mullvad-vpn"
-- "get system info" -> command: "system_profiler SPHardwareDataType"
-- "check memory usage" -> command: "vm_stat"
-- "install package" -> command: "brew install <package>"
-
-Special cases:
-- "Run it in your shell" or "execute it" -> Extract the command from previous context
-- "Install these" -> Look for package names in previous messages
-- Direct commands should be used exactly as provided
-
-Key rules:
-1. For file creation with content, use: echo 'content' > filename
-2. For listing files, use: ls -la (not just ls)
-3. Always include the echo command when writing to files
-4. Include all flags and arguments
-5. When user says "run it", "execute it", or similar, they want you to run the command
-
-Your response must be formatted as a JSON block:
-\`\`\`json
-{
-  "command": "<complete shell command to execute>"
-}
-\`\`\``;
-
-// actions/executeCommand.ts
-var extractCommand = async (runtime, _message, state) => {
-  const prompt = composePromptFromState({
-    state,
-    template: commandExtractionTemplate
-  });
-  for (let i = 0;i < 3; i++) {
-    const response = await runtime.useModel(ModelType.TEXT_SMALL, {
-      prompt
-    });
-    const parsedResponse = parseJSONObjectFromText(response);
-    if (parsedResponse?.command) {
-      return { command: parsedResponse.command };
-    }
-  }
-  return null;
-};
-var spec2 = requireActionSpec("EXECUTE_COMMAND");
-var executeCommand = {
-  name: spec2.name,
-  similes: spec2.similes ? [...spec2.similes] : [],
-  description: spec2.description,
-  validate: async (runtime, message, _state) => {
-    const shellService = runtime.getService("shell");
-    if (!shellService) {
-      return false;
-    }
-    const text = message.content.text?.toLowerCase() || "";
-    const commandKeywords = [
-      "run",
-      "execute",
-      "command",
-      "shell",
-      "install",
-      "brew",
-      "npm",
-      "create",
-      "file",
-      "directory",
-      "folder",
-      "list",
-      "show",
-      "system",
-      "info",
-      "check",
-      "status",
-      "cd",
-      "ls",
-      "mkdir",
-      "echo",
-      "cat",
-      "touch",
-      "git",
-      "build",
-      "test"
-    ];
-    const hasCommandKeyword = commandKeywords.some((keyword) => text.includes(keyword));
-    const hasDirectCommand = /^(brew|npm|apt|git|ls|cd|echo|cat|touch|mkdir|rm|mv|cp)\s/i.test(message.content.text || "");
-    return hasCommandKeyword || hasDirectCommand;
-  },
-  handler: async (runtime, message, state, _options, callback) => {
-    const shellService = runtime.getService("shell");
-    if (!shellService) {
-      if (callback) {
-        await callback({
-          text: "Shell service is not available.",
-          source: message.content.source
-        });
-      }
-      return { success: false, error: "Shell service is not available." };
-    }
-    const commandInfo = await extractCommand(runtime, message, state);
-    if (!commandInfo?.command) {
-      logger2.error("Failed to extract command from message:", message.content.text);
-      if (callback) {
-        await callback({
-          text: "Could not determine which command to execute. Please specify a shell command.",
-          source: message.content.source
-        });
-      }
-      return { success: false, error: "Could not extract command." };
-    }
-    logger2.info(`Extracted command: "${commandInfo.command}"`);
-    try {
-      const conversationId = message.roomId || message.agentId;
-      const result = await shellService.executeCommand(commandInfo.command, conversationId);
-      let responseText = "";
-      if (result.success) {
-        responseText = `Command executed successfully in ${result.executedIn}
-
-`;
-        if (result.stdout) {
-          responseText += `Output:
-\`\`\`
-${result.stdout}
-\`\`\``;
-        } else {
-          responseText += "Command completed with no output.";
-        }
-      } else {
-        responseText = `Command failed with exit code ${result.exitCode} in ${result.executedIn}
-
-`;
-        if (result.error) {
-          responseText += `Error: ${result.error}
-`;
-        }
-        if (result.stderr) {
-          responseText += `
-Error output:
-\`\`\`
-${result.stderr}
-\`\`\``;
-        }
-      }
-      const response = {
-        text: responseText,
-        source: message.content.source
-      };
-      if (callback) {
-        await callback(response);
-      }
-      return { success: result.success, text: responseText };
-    } catch (error) {
-      logger2.error("Error executing command:", error);
-      const errorMessage = error instanceof Error ? error.message : String(error);
-      if (callback) {
-        await callback({
-          text: `Failed to execute command: ${errorMessage}`,
-          source: message.content.source
-        });
-      }
-      return { success: false, error: errorMessage };
-    }
-  },
-  examples: spec2.examples ?? []
-};
-// actions/processAction.ts
-import { composePromptFromState as composePromptFromState2, logger as logger3, ModelType as ModelType2 } from "@elizaos/core";
-var processActionTemplate = `You are helping extract process management parameters from user messages.
-
-Recent conversation:
-{{recentMessages}}
-
-Based on the conversation, extract the process action parameters:
-- action: The action to perform (list, poll, log, write, send-keys, submit, paste, kill, clear, remove)
-- sessionId: The session ID (required for all actions except "list")
-- data: Data to write (for "write" action)
-- keys: Array of key tokens (for "send-keys" action)
-- literal: Literal string to send (for "send-keys" action)
-- text: Text to paste (for "paste" action)
-- eof: Whether to close stdin after write (for "write" action)
-- offset: Log offset (for "log" action)
-- limit: Log limit (for "log" action)
-
-Respond with a JSON object containing the extracted parameters:
-\`\`\`json
-{
-  "action": "list|poll|log|write|send-keys|submit|paste|kill|clear|remove",
-  "sessionId": "optional-session-id",
-  "data": "optional-data",
-  "keys": ["optional", "key", "tokens"],
-  "literal": "optional-literal",
-  "text": "optional-paste-text",
-  "eof": false,
-  "offset": 0,
-  "limit": 100
-}
-\`\`\``;
-function extractJsonFromResponse(response) {
-  const jsonMatch = response.match(/```json\s*([\s\S]*?)\s*```/);
-  if (jsonMatch?.[1]) {
-    try {
-      return JSON.parse(jsonMatch[1]);
-    } catch {}
-  }
-  try {
-    const trimmed = response.trim();
-    if (trimmed.startsWith("{") && trimmed.endsWith("}")) {
-      return JSON.parse(trimmed);
-    }
-  } catch {}
-  return null;
-}
-var processAction = {
-  name: "MANAGE_PROCESS",
-  similes: [
-    "PROCESS_LIST",
-    "PROCESS_POLL",
-    "PROCESS_LOG",
-    "PROCESS_WRITE",
-    "PROCESS_KILL",
-    "LIST_SESSIONS",
-    "POLL_SESSION",
-    "KILL_SESSION",
-    "CHECK_PROCESS",
-    "SEND_KEYS"
-  ],
-  description: "Manage running shell/exec sessions: list, poll, log, write, send-keys, submit, paste, kill, clear, remove",
-  validate: async (_runtime, message) => {
-    const text = message.content.text?.toLowerCase() || "";
-    const processKeywords = [
-      "process",
-      "session",
-      "sessions",
-      "list",
-      "poll",
-      "log",
-      "write",
-      "send-keys",
-      "send keys",
-      "submit",
-      "paste",
-      "kill",
-      "clear",
-      "remove",
-      "running",
-      "background"
-    ];
-    const actionKeywords = [
-      "check",
-      "show",
-      "get",
-      "view",
-      "manage",
-      "stop",
-      "terminate",
-      "status"
-    ];
-    const hasProcessKeyword = processKeywords.some((kw) => text.includes(kw));
-    const hasActionKeyword = actionKeywords.some((kw) => text.includes(kw));
-    return hasProcessKeyword || hasActionKeyword && text.includes("session");
-  },
-  handler: async (runtime, message, state) => {
-    const shellService = runtime.getService("shell");
-    if (!shellService) {
-      return {
-        success: false,
-        text: "Shell service is not available.",
-        error: "Shell service not found"
-      };
-    }
-    const composedState = state ?? await runtime.composeState(message);
-    const prompt = composePromptFromState2({
-      state: composedState,
-      template: processActionTemplate
-    });
-    let params = null;
-    const text = message.content.text?.toLowerCase() || "";
-    if (text.includes("list") && (text.includes("session") || text.includes("process"))) {
-      params = { action: "list" };
-    } else {
-      try {
-        const response = await runtime.useModel(ModelType2.TEXT_SMALL, {
-          prompt
-        });
-        params = extractJsonFromResponse(String(response));
-      } catch (error) {
-        logger3.error("Failed to extract process parameters:", error);
-      }
-    }
-    if (!params) {
-      params = { action: "list" };
-    }
-    const result = await shellService.processAction(params);
-    return {
-      success: result.success,
-      text: result.message
-    };
-  },
-  examples: [
-    [
-      {
-        name: "{{user1}}",
-        content: { text: "List all running processes" }
-      },
-      {
-        name: "{{agentName}}",
-        content: {
-          text: `Here are the running sessions:
-calm-harbor running 5m30s :: npm install
-brisk-reef completed 2m15s :: git status`,
-          action: "MANAGE_PROCESS"
-        }
-      }
-    ],
-    [
-      {
-        name: "{{user1}}",
-        content: { text: "Check the status of session calm-harbor" }
-      },
-      {
-        name: "{{agentName}}",
-        content: {
-          text: `Session calm-harbor is still running.
-
-Output:
-npm WARN deprecated...
-
-Process still running.`,
-          action: "MANAGE_PROCESS"
-        }
-      }
-    ],
-    [
-      {
-        name: "{{user1}}",
-        content: { text: "Kill the session brisk-reef" }
-      },
-      {
-        name: "{{agentName}}",
-        content: {
-          text: "Killed session brisk-reef.",
-          action: "MANAGE_PROCESS"
-        }
-      }
-    ]
-  ]
-};
 // approvals/allowlist.ts
 import crypto2 from "node:crypto";
 import fs from "node:fs";
 import os from "node:os";
 import path from "node:path";
-import { logger as logger4 } from "@elizaos/core";
+import { logger as logger2 } from "@elizaos/core";
 
 // approvals/types.ts
 var DEFAULT_SAFE_BINS = [
@@ -1902,12 +1498,12 @@ function readApprovalsSnapshot() {
   try {
     parsed = JSON.parse(raw);
   } catch (parseError) {
-    logger4.warn({ src: "exec-approval", parseError, filePath }, "Failed to parse approval config snapshot - file may be corrupted");
+    logger2.warn({ src: "exec-approval", parseError, filePath }, "Failed to parse approval config snapshot - file may be corrupted");
     parsed = null;
   }
   const file = parsed?.version === 1 ? normalizeApprovals(parsed) : normalizeApprovals({ version: 1, agents: {} });
   if (parsed && parsed.version !== 1) {
-    logger4.warn({ src: "exec-approval", version: parsed.version, filePath }, "Approval config snapshot has unexpected version");
+    logger2.warn({ src: "exec-approval", version: parsed.version, filePath }, "Approval config snapshot has unexpected version");
   }
   return {
     path: filePath,
@@ -1921,7 +1517,7 @@ function loadApprovals() {
   const filePath = getApprovalFilePath();
   try {
     if (!fs.existsSync(filePath)) {
-      logger4.debug({ src: "exec-approval", filePath }, "Approval config file does not exist, using defaults");
+      logger2.debug({ src: "exec-approval", filePath }, "Approval config file does not exist, using defaults");
       return normalizeApprovals({ version: 1, agents: {} });
     }
     const raw = fs.readFileSync(filePath, "utf8");
@@ -1929,16 +1525,16 @@ function loadApprovals() {
     try {
       parsed = JSON.parse(raw);
     } catch (parseError) {
-      logger4.error({ src: "exec-approval", parseError, filePath }, "Failed to parse approval config JSON - file may be corrupted. Using defaults.");
+      logger2.error({ src: "exec-approval", parseError, filePath }, "Failed to parse approval config JSON - file may be corrupted. Using defaults.");
       return normalizeApprovals({ version: 1, agents: {} });
     }
     if (parsed?.version !== 1) {
-      logger4.warn({ src: "exec-approval", version: parsed?.version, filePath }, "Approval config has unexpected version, using defaults");
+      logger2.warn({ src: "exec-approval", version: parsed?.version, filePath }, "Approval config has unexpected version, using defaults");
       return normalizeApprovals({ version: 1, agents: {} });
     }
     return normalizeApprovals(parsed);
   } catch (error) {
-    logger4.error({ src: "exec-approval", error, filePath }, "Failed to load approval config - using defaults. This may indicate a permissions issue.");
+    logger2.error({ src: "exec-approval", error, filePath }, "Failed to load approval config - using defaults. This may indicate a permissions issue.");
     return normalizeApprovals({ version: 1, agents: {} });
   }
 }
@@ -1954,7 +1550,7 @@ function saveApprovals(file) {
       fs.chmodSync(filePath, 384);
     } catch {}
   } catch (error) {
-    logger4.error({ src: "exec-approval", error, filePath }, "Failed to save approval configuration");
+    logger2.error({ src: "exec-approval", error, filePath }, "Failed to save approval configuration");
     throw new Error(`Failed to save approval configuration to ${filePath}: ${error}`);
   }
 }
@@ -1973,7 +1569,7 @@ function ensureApprovals() {
   try {
     saveApprovals(updated);
   } catch (error) {
-    logger4.warn({ src: "exec-approval", error }, "Failed to save approval config during ensureApprovals - " + "returning in-memory config. Changes will not persist.");
+    logger2.warn({ src: "exec-approval", error }, "Failed to save approval config during ensureApprovals - " + "returning in-memory config. Changes will not persist.");
     throw error;
   }
   return updated;
@@ -1995,7 +1591,7 @@ function resolveApprovals(agentId, overrides) {
   try {
     file = ensureApprovals();
   } catch (error) {
-    logger4.warn({ src: "exec-approval", error }, "Could not ensure approval config exists - using read-only config");
+    logger2.warn({ src: "exec-approval", error }, "Could not ensure approval config exists - using read-only config");
     file = loadApprovals();
   }
   return resolveApprovalsFromFile({
@@ -2137,7 +1733,7 @@ function recordAllowlistUse(approvals, agentId, entry, command, resolvedPath) {
     saveApprovals(approvals);
     return true;
   } catch (error) {
-    logger4.warn({ src: "exec-approval", error, pattern: entry.pattern }, "Failed to record allowlist usage - continuing without update");
+    logger2.warn({ src: "exec-approval", error, pattern: entry.pattern }, "Failed to record allowlist usage - continuing without update");
     return false;
   }
 }
@@ -2148,11 +1744,11 @@ function addAllowlistEntry(approvals, agentId, pattern) {
   const allowlist = Array.isArray(existing.allowlist) ? existing.allowlist : [];
   const trimmed = pattern.trim();
   if (!trimmed) {
-    logger4.warn({ src: "exec-approval" }, "Attempted to add empty pattern to allowlist");
+    logger2.warn({ src: "exec-approval" }, "Attempted to add empty pattern to allowlist");
     return false;
   }
   if (allowlist.some((entry) => entry.pattern === trimmed)) {
-    logger4.debug({ src: "exec-approval", pattern: trimmed }, "Pattern already in allowlist");
+    logger2.debug({ src: "exec-approval", pattern: trimmed }, "Pattern already in allowlist");
     return false;
   }
   allowlist.push({
@@ -2164,15 +1760,19 @@ function addAllowlistEntry(approvals, agentId, pattern) {
   approvals.agents = agents;
   try {
     saveApprovals(approvals);
-    logger4.info({ src: "exec-approval", pattern: trimmed, agentId: target }, "Added pattern to allowlist");
+    logger2.info({ src: "exec-approval", pattern: trimmed, agentId: target }, "Added pattern to allowlist");
     return true;
   } catch (error) {
-    logger4.error({ src: "exec-approval", error, pattern: trimmed }, "Failed to save allowlist after adding entry");
+    logger2.error({ src: "exec-approval", error, pattern: trimmed }, "Failed to save allowlist after adding entry");
     return false;
   }
 }
 function minSecurity(a, b) {
-  const order = { deny: 0, allowlist: 1, full: 2 };
+  const order = {
+    deny: 0,
+    allowlist: 1,
+    full: 2
+  };
   return order[a] <= order[b] ? a : b;
 }
 function maxAsk(a, b) {
@@ -2494,7 +2094,11 @@ function analyzeShellCommand(params) {
       }
       const segments2 = parseSegmentsFromParts(pipelineSplit.segments, params.cwd, params.env);
       if (!segments2) {
-        return { ok: false, reason: "unable to parse shell segment", segments: [] };
+        return {
+          ok: false,
+          reason: "unable to parse shell segment",
+          segments: []
+        };
       }
       chains.push(segments2);
       allSegments.push(...segments2);
@@ -2525,7 +2129,11 @@ function analyzeWindowsCommand(params) {
   }
   const argv = tokenizeWindowsSegment(params.command);
   if (!argv || argv.length === 0) {
-    return { ok: false, reason: "unable to parse windows command", segments: [] };
+    return {
+      ok: false,
+      reason: "unable to parse windows command",
+      segments: []
+    };
   }
   return {
     ok: true,
@@ -2780,7 +2388,10 @@ function evaluateExecAllowlist(params) {
     skillBins: params.skillBins,
     autoAllowSkills: params.autoAllowSkills
   });
-  return { allowlistSatisfied: result.satisfied, allowlistMatches: result.matches };
+  return {
+    allowlistSatisfied: result.satisfied,
+    allowlistMatches: result.matches
+  };
 }
 function evaluateShellAllowlist(params) {
   const chainParts = isWindowsPlatform(params.platform) ? null : splitCommandChain(params.command);
@@ -2861,7 +2472,7 @@ function requiresExecApproval(params) {
   return params.ask === "always" || params.ask === "on-miss" && params.security === "allowlist" && (!params.analysisOk || !params.allowlistSatisfied);
 }
 // approvals/service.ts
-import { logger as logger5, Service } from "@elizaos/core";
+import { logger as logger3, Service } from "@elizaos/core";
 var EXEC_APPROVAL_OPTIONS = [
   { name: "allow-once", description: "Allow this one time" },
   { name: "allow-always", description: "Always allow this" },
@@ -2884,7 +2495,7 @@ class ExecApprovalService extends Service {
     try {
       service.approvalConfig = resolveApprovals(runtime.agentId);
     } catch (error) {
-      logger5.error({ src: "service:exec_approval", error, agentId: runtime.agentId }, "Failed to load approval config during startup - using in-memory defaults. " + "Approvals may not persist. Check file permissions for ~/.eliza/exec-approvals.json");
+      logger3.error({ src: "service:exec_approval", error, agentId: runtime.agentId }, "Failed to load approval config during startup - using in-memory defaults. " + "Approvals may not persist. Check file permissions for ~/.eliza/exec-approvals.json");
       service.approvalConfig = {
         path: "",
         socketPath: "",
@@ -2905,11 +2516,11 @@ class ExecApprovalService extends Service {
         file: { version: 1, agents: {} }
       };
     }
-    logger5.info({ src: "service:exec_approval", agentId: runtime.agentId }, "ExecApprovalService started");
+    logger3.info({ src: "service:exec_approval", agentId: runtime.agentId }, "ExecApprovalService started");
     return service;
   }
   async stop() {
-    logger5.debug({ src: "service:exec_approval" }, "ExecApprovalService stopped");
+    logger3.debug({ src: "service:exec_approval" }, "ExecApprovalService stopped");
   }
   loadConfig(agentId) {
     this.approvalConfig = resolveApprovals(agentId ?? this.runtime?.agentId);
@@ -2981,7 +2592,7 @@ class ExecApprovalService extends Service {
         }
       }
       if (recordingFailed) {
-        logger5.debug({ src: "service:exec_approval", command: params.command }, "Some allowlist usage records failed to save - command will still proceed");
+        logger3.debug({ src: "service:exec_approval", command: params.command }, "Some allowlist usage records failed to save - command will still proceed");
       }
       return {
         allowed: true,
@@ -3037,7 +2648,7 @@ class ExecApprovalService extends Service {
   async requestApproval(request) {
     const approvalService = this.runtime?.getService("approval");
     if (!approvalService) {
-      logger5.warn({ src: "service:exec_approval" }, "ApprovalService not available, denying by default");
+      logger3.warn({ src: "service:exec_approval" }, "ApprovalService not available, denying by default");
       return {
         decision: "deny",
         timedOut: false
@@ -3085,7 +2696,7 @@ class ExecApprovalService extends Service {
   async requestApprovalAsync(request, callbacks) {
     const approvalService = this.runtime?.getService("approval");
     if (!approvalService) {
-      logger5.warn({ src: "service:exec_approval" }, "ApprovalService not available");
+      logger3.warn({ src: "service:exec_approval" }, "ApprovalService not available");
       if (callbacks?.onDenied) {
         await callbacks.onDenied();
       }
@@ -3156,13 +2767,14 @@ class ExecApprovalService extends Service {
   }
   async getPendingApprovals(roomId) {
     if (!this.runtime) {
-      logger5.warn({ src: "service:exec_approval" }, "Cannot get pending approvals - runtime not available");
+      logger3.warn({ src: "service:exec_approval" }, "Cannot get pending approvals - runtime not available");
       return [];
     }
     try {
       const tasks = await this.runtime.getTasks({
         roomId,
-        tags: ["AWAITING_CHOICE", "EXEC"]
+        tags: ["AWAITING_CHOICE", "EXEC"],
+        agentIds: [this.runtime.agentId]
       });
       if (!tasks)
         return [];
@@ -3180,7 +2792,7 @@ class ExecApprovalService extends Service {
         };
       });
     } catch (error) {
-      logger5.error({ src: "service:exec_approval", error, roomId }, "Failed to get pending approvals");
+      logger3.error({ src: "service:exec_approval", error, roomId }, "Failed to get pending approvals");
       return [];
     }
   }
@@ -3198,19 +2810,21 @@ function mapOptionToDecision(option) {
 // providers/shellHistoryProvider.ts
 import {
   addHeader,
-  logger as logger6
+  logger as logger4
 } from "@elizaos/core";
 var MAX_OUTPUT_LENGTH = 8000;
 var TRUNCATE_SEGMENT_LENGTH = 4000;
-var spec3 = requireProviderSpec("SHELL_HISTORY");
+var spec2 = requireProviderSpec("SHELL_HISTORY");
 var shellHistoryProvider = {
-  name: spec3.name,
+  name: spec2.name,
   description: "Provides recent shell command history, current working directory, and file operations within the restricted environment",
+  descriptionCompressed: "Recent shell history, cwd, and file ops in restricted env.",
   position: 99,
+  dynamic: true,
   get: async (runtime, message, _state) => {
     const shellService = runtime.getService("shell");
     if (!shellService) {
-      logger6.warn("[shellHistoryProvider] Shell service not found");
+      logger4.warn("[shellHistoryProvider] Shell service not found");
       return {
         values: {
           shellHistory: "Shell service is not available",
@@ -3310,15 +2924,81 @@ ${addHeader("# Shell History (Last 10)", historyText)}${fileOpsText}`;
     };
   }
 };
+// providers/terminalUsage.ts
+import {
+  validateActionKeywords,
+  validateActionRegex
+} from "@elizaos/core";
+var terminalUsageProvider = {
+  name: "terminalUsage",
+  description: "Terminal usage instructions",
+  descriptionCompressed: "Terminal usage instructions.",
+  dynamic: true,
+  relevanceKeywords: [
+    "terminalusage",
+    "terminalusageprovider",
+    "plugin",
+    "shell",
+    "status",
+    "state",
+    "context",
+    "info",
+    "details",
+    "chat",
+    "conversation",
+    "agent",
+    "room",
+    "channel"
+  ],
+  get: async (_runtime, _message, _state) => {
+    const __providerKeywords = [
+      "terminalusage",
+      "terminalusageprovider",
+      "plugin",
+      "shell",
+      "status",
+      "state",
+      "context",
+      "info",
+      "details",
+      "chat",
+      "conversation",
+      "agent",
+      "room",
+      "channel"
+    ];
+    const __providerRegex = new RegExp(`\\b(${__providerKeywords.join("|")})\\b`, "i");
+    const __recentMessages = _state?.recentMessagesData || [];
+    const __isRelevant = validateActionKeywords(_message, __recentMessages, __providerKeywords) || validateActionRegex(_message, __recentMessages, __providerRegex);
+    if (!__isRelevant) {
+      return { text: "" };
+    }
+    const settings = _runtime.character?.settings;
+    if (settings?.DISABLE_TERMINAL) {
+      return { text: "" };
+    }
+    return {
+      text: [
+        "## Terminal",
+        "",
+        "You can run shell commands in the user's embedded terminal using the SHELL_COMMAND action.",
+        "Use this when the user asks you to run a command, execute a script, install packages, etc.",
+        "The terminal auto-opens and shows the command output in real time."
+      ].join(`
+`)
+    };
+  }
+};
+
 // services/shellService.ts
 import path6 from "node:path";
-import { logger as logger9, Service as Service2 } from "@elizaos/core";
+import { logger as logger7, Service as Service2 } from "@elizaos/core";
 import spawn2 from "cross-spawn";
 
 // utils/config.ts
 import fs3 from "node:fs";
 import path3 from "node:path";
-import { logger as logger7 } from "@elizaos/core";
+import { logger as logger5 } from "@elizaos/core";
 import { z } from "zod";
 var configSchema = z.object({
   enabled: z.boolean(),
@@ -3387,7 +3067,7 @@ function loadShellConfig() {
       throw new Error(`SHELL_ALLOWED_DIRECTORY is not a directory: ${allowedDirectory}`);
     }
     config.allowedDirectory = path3.resolve(allowedDirectory);
-    logger7.info(`Shell plugin enabled with allowed directory: ${config.allowedDirectory}, ` + `background: ${allowBackground}, timeout: ${timeout}ms`);
+    logger5.info(`Shell plugin enabled with allowed directory: ${config.allowedDirectory}, ` + `background: ${allowBackground}, timeout: ${timeout}ms`);
   } catch (error) {
     if (error instanceof Error && "code" in error && error.code === "ENOENT") {
       throw new Error(`SHELL_ALLOWED_DIRECTORY does not exist: ${allowedDirectory}`);
@@ -3398,13 +3078,13 @@ function loadShellConfig() {
 }
 // utils/pathUtils.ts
 import path4 from "node:path";
-import { logger as logger8 } from "@elizaos/core";
+import { logger as logger6 } from "@elizaos/core";
 function validatePath(commandPath, allowedDir, currentDir) {
   const resolvedPath = path4.resolve(currentDir, commandPath);
   const normalizedPath = path4.normalize(resolvedPath);
   const normalizedAllowed = path4.normalize(allowedDir);
   if (!normalizedPath.startsWith(normalizedAllowed)) {
-    logger8.warn(`Path validation failed: ${normalizedPath} is outside allowed directory ${normalizedAllowed}`);
+    logger6.warn(`Path validation failed: ${normalizedPath} is outside allowed directory ${normalizedAllowed}`);
     return null;
   }
   return normalizedPath;
@@ -3414,19 +3094,19 @@ function isSafeCommand(command) {
   const dangerousPatterns = [/\$\(/g, /`[^']*`/g, /\|\s*sudo/g, /;\s*sudo/g, /&\s*&/g, /\|\s*\|/g];
   for (const pattern of pathTraversalPatterns) {
     if (pattern.test(command)) {
-      logger8.warn(`Path traversal detected in command: ${command}`);
+      logger6.warn(`Path traversal detected in command: ${command}`);
       return false;
     }
   }
   for (const pattern of dangerousPatterns) {
     if (pattern.test(command)) {
-      logger8.warn(`Dangerous pattern detected in command: ${command}`);
+      logger6.warn(`Dangerous pattern detected in command: ${command}`);
       return false;
     }
   }
   const pipeCount = (command.match(/\|/g) || []).length;
   if (pipeCount > 1) {
-    logger8.warn(`Multiple pipes detected in command: ${command}`);
+    logger6.warn(`Multiple pipes detected in command: ${command}`);
     return false;
   }
   return true;
@@ -3456,8 +3136,8 @@ var ESC = "\x1B";
 var CR = "\r";
 var TAB = "\t";
 var BACKSPACE = "";
-var BRACKETED_PASTE_START = `${ESC}[200~`;
-var BRACKETED_PASTE_END = `${ESC}[201~`;
+var BRACKETED_PASTE_START2 = `${ESC}[200~`;
+var BRACKETED_PASTE_END2 = `${ESC}[201~`;
 function escapeRegExp(value) {
   return value.replace(/[.*+?^${}()|[\]\\]/g, "\\$&");
 }
@@ -3536,7 +3216,7 @@ var modifiableNamedKeys = new Set([
   "del",
   "dc"
 ]);
-function encodeKeySequence(request) {
+function encodeKeySequence2(request) {
   const warnings = [];
   let data = "";
   if (request.literal) {
@@ -3559,11 +3239,11 @@ function encodeKeySequence(request) {
   }
   return { data, warnings };
 }
-function encodePaste(text, bracketed = true) {
+function encodePaste2(text, bracketed = true) {
   if (!bracketed) {
     return text;
   }
-  return `${BRACKETED_PASTE_START}${text}${BRACKETED_PASTE_END}`;
+  return `${BRACKETED_PASTE_START2}${text}${BRACKETED_PASTE_END2}`;
 }
 function encodeKeyToken(raw, warnings) {
   const token = raw.trim();
@@ -3700,7 +3380,7 @@ function parseHexByte(raw) {
   return value;
 }
 var DSR_PATTERN = new RegExp(`${ESC}\\[\\??6n`, "g");
-function stripDsrRequests(input) {
+function stripDsrRequests2(input) {
   let requests = 0;
   const cleaned = input.replace(DSR_PATTERN, () => {
     requests += 1;
@@ -3708,7 +3388,7 @@ function stripDsrRequests(input) {
   });
   return { cleaned, requests };
 }
-function buildCursorPositionResponse(row = 1, col = 1) {
+function buildCursorPositionResponse2(row = 1, col = 1) {
   return `\x1B[${row};${col}R`;
 }
 
@@ -3743,7 +3423,7 @@ function resolveShellFromPath(name) {
   }
   return;
 }
-function getShellConfig() {
+function getShellConfig2() {
   if (process.platform === "win32") {
     return {
       shell: resolvePowerShellPath(),
@@ -3765,7 +3445,7 @@ function getShellConfig() {
   const shell = envShell && envShell.length > 0 ? envShell : "sh";
   return { shell, args: ["-c"] };
 }
-function sanitizeBinaryOutput(text) {
+function sanitizeBinaryOutput2(text) {
   const scrubbed = text.replace(/[\p{Format}\p{Surrogate}]/gu, "");
   if (!scrubbed) {
     return scrubbed;
@@ -3787,7 +3467,7 @@ function sanitizeBinaryOutput(text) {
   }
   return chunks.join("");
 }
-function killProcessTree(pid) {
+function killProcessTree2(pid) {
   if (process.platform === "win32") {
     try {
       spawn("taskkill", ["/F", "/T", "/PID", String(pid)], {
@@ -3805,13 +3485,13 @@ function killProcessTree(pid) {
     } catch {}
   }
 }
-function killSession(session) {
+function killSession2(session) {
   const pid = session.pid ?? session.child?.pid;
   if (pid) {
-    killProcessTree(pid);
+    killProcessTree2(pid);
   }
 }
-function coerceEnv(env) {
+function coerceEnv2(env) {
   const record = {};
   if (!env) {
     return record;
@@ -3823,7 +3503,7 @@ function coerceEnv(env) {
   }
   return record;
 }
-function resolveWorkdir(workdir, warnings) {
+function resolveWorkdir2(workdir, warnings) {
   const current = safeCwd();
   const fallback = current ?? homedir();
   try {
@@ -3843,13 +3523,13 @@ function safeCwd() {
     return null;
   }
 }
-function clampNumber(value, defaultValue, min, max) {
+function clampNumber2(value, defaultValue, min, max) {
   if (value === undefined || Number.isNaN(value)) {
     return defaultValue;
   }
   return Math.min(Math.max(value, min), max);
 }
-function readEnvInt(key) {
+function readEnvInt2(key) {
   const raw = process.env[key];
   if (!raw) {
     return;
@@ -3857,14 +3537,14 @@ function readEnvInt(key) {
   const parsed = Number.parseInt(raw, 10);
   return Number.isFinite(parsed) ? parsed : undefined;
 }
-function chunkString(input, limit = CHUNK_LIMIT) {
+function chunkString2(input, limit = CHUNK_LIMIT) {
   const chunks = [];
   for (let i = 0;i < input.length; i += limit) {
     chunks.push(input.slice(i, i + limit));
   }
   return chunks;
 }
-function sliceUtf16Safe(str, start, end) {
+function sliceUtf16Safe2(str, start, end) {
   const effectiveEnd = end ?? str.length;
   if (start < 0) {
     const adjustedStart = Math.max(0, str.length + start);
@@ -3872,14 +3552,14 @@ function sliceUtf16Safe(str, start, end) {
   }
   return str.slice(start, effectiveEnd);
 }
-function truncateMiddle(str, max) {
+function truncateMiddle2(str, max) {
   if (str.length <= max) {
     return str;
   }
   const half = Math.floor((max - 3) / 2);
-  return `${sliceUtf16Safe(str, 0, half)}...${sliceUtf16Safe(str, -half)}`;
+  return `${sliceUtf16Safe2(str, 0, half)}...${sliceUtf16Safe2(str, -half)}`;
 }
-function sliceLogLines(text, offset, limit) {
+function sliceLogLines2(text, offset, limit) {
   if (!text) {
     return { slice: "", totalLines: 0, totalChars: 0 };
   }
@@ -3901,7 +3581,7 @@ function sliceLogLines(text, offset, limit) {
   return { slice: lines.slice(start, end).join(`
 `), totalLines, totalChars };
 }
-function deriveSessionName(command) {
+function deriveSessionName2(command) {
   const tokens = tokenizeCommand(command);
   if (tokens.length === 0) {
     return;
@@ -3914,7 +3594,7 @@ function deriveSessionName(command) {
   if (!target) {
     return verb;
   }
-  const cleaned = truncateMiddle(stripQuotes(target), 48);
+  const cleaned = truncateMiddle2(stripQuotes(target), 48);
   return `${stripQuotes(verb)} ${cleaned}`;
 }
 function tokenizeCommand(command) {
@@ -3928,7 +3608,7 @@ function stripQuotes(value) {
   }
   return trimmed;
 }
-function formatDuration(ms) {
+function formatDuration2(ms) {
   if (ms < 1000) {
     return `${ms}ms`;
   }
@@ -3940,7 +3620,7 @@ function formatDuration(ms) {
   const rem = seconds % 60;
   return `${minutes}m${rem.toString().padStart(2, "0")}s`;
 }
-function pad(str, width) {
+function pad2(str, width) {
   if (str.length >= width) {
     return str;
   }
@@ -4359,9 +4039,9 @@ function stopSweeper() {
 }
 
 // services/shellService.ts
-var DEFAULT_MAX_OUTPUT = clampNumber(readEnvInt("SHELL_MAX_OUTPUT_CHARS"), 200000, 1000, 200000);
-var DEFAULT_PENDING_MAX_OUTPUT = clampNumber(readEnvInt("SHELL_PENDING_MAX_OUTPUT_CHARS"), 200000, 1000, 200000);
-var DEFAULT_BACKGROUND_MS = clampNumber(readEnvInt("SHELL_BACKGROUND_MS"), 1e4, 10, 120000);
+var DEFAULT_MAX_OUTPUT = clampNumber2(readEnvInt2("SHELL_MAX_OUTPUT_CHARS"), 200000, 1000, 200000);
+var DEFAULT_PENDING_MAX_OUTPUT = clampNumber2(readEnvInt2("SHELL_PENDING_MAX_OUTPUT_CHARS"), 200000, 1000, 200000);
+var DEFAULT_BACKGROUND_MS = clampNumber2(readEnvInt2("SHELL_BACKGROUND_MS"), 1e4, 10, 120000);
 var DEFAULT_TIMEOUT_SEC = 1800;
 
 class ShellService extends Service2 {
@@ -4379,21 +4059,21 @@ class ShellService extends Service2 {
   }
   static async start(runtime) {
     const instance = new ShellService(runtime);
-    logger9.info("Shell service initialized with PTY, background execution, and history tracking");
+    logger7.info("Shell service initialized with PTY, background execution, and history tracking");
     return instance;
   }
   async stop() {
     const runningSessions2 = listRunningSessions();
     for (const session of runningSessions2) {
       try {
-        killSession(session);
-        logger9.debug(`Killed shell session: ${session.id}`);
+        killSession2(session);
+        logger7.debug(`Killed shell session: ${session.id}`);
       } catch (err) {
-        logger9.warn(`Failed to kill shell session ${session.id}: ${err}`);
+        logger7.warn(`Failed to kill shell session ${session.id}: ${err}`);
       }
     }
     this.commandHistory.clear();
-    logger9.info(`Shell service stopped, cleaned up ${runningSessions2.length} running sessions`);
+    logger7.info(`Shell service stopped, cleaned up ${runningSessions2.length} running sessions`);
   }
   get capabilityDescription() {
     return "Execute shell commands with PTY support, background execution, and session management";
@@ -4412,6 +4092,42 @@ class ShellService extends Service2 {
         executedIn: this.currentDirectory
       };
     }
+    if (this.runtime && this.runtime.sandboxMode) {
+      const hostApiUrl = this.runtime.getSetting("SANDBOX_HOST_API_URL") ?? "http://localhost:2138";
+      const runtimeFetch = this.runtime.fetch ?? globalThis.fetch;
+      logger7.info(`[shell:sandbox] routing exec to ${hostApiUrl}: ${command.substring(0, 100)}`);
+      try {
+        const response = await runtimeFetch(`${hostApiUrl}/api/sandbox/exec`, {
+          method: "POST",
+          headers: { "Content-Type": "application/json" },
+          body: JSON.stringify({
+            command,
+            workdir: this.currentDirectory,
+            timeoutMs: 30000
+          })
+        });
+        const result2 = await response.json();
+        logger7.info(`[shell:sandbox] exec completed: exit=${result2.exitCode} duration=${result2.durationMs}ms`);
+        return {
+          success: result2.exitCode === 0,
+          stdout: result2.stdout,
+          stderr: result2.stderr,
+          exitCode: result2.exitCode,
+          executedIn: this.currentDirectory
+        };
+      } catch (err) {
+        const errMsg = err instanceof Error ? err.message : String(err);
+        logger7.error(`[shell:sandbox] exec failed: ${errMsg}`);
+        return {
+          success: false,
+          stdout: "",
+          stderr: `Sandbox exec failed: ${errMsg}`,
+          exitCode: 1,
+          error: "Sandbox remote execution failed",
+          executedIn: this.currentDirectory
+        };
+      }
+    }
     const trimmedCommand = command.trim();
     if (!isSafeCommand(trimmedCommand)) {
       return {
@@ -4490,10 +4206,10 @@ class ShellService extends Service2 {
     if (!allowBackground && (backgroundRequested || yieldRequested)) {
       warnings.push("Warning: background execution is disabled; running synchronously.");
     }
-    const yieldWindow = allowBackground ? backgroundRequested ? 0 : clampNumber(options.yieldMs ?? defaultBackgroundMs, defaultBackgroundMs, 10, 120000) : null;
+    const yieldWindow = allowBackground ? backgroundRequested ? 0 : clampNumber2(options.yieldMs ?? defaultBackgroundMs, defaultBackgroundMs, 10, 120000) : null;
     const rawWorkdir = options.workdir?.trim() || this.currentDirectory || process.cwd();
-    const workdir = resolveWorkdir(rawWorkdir, warnings);
-    const baseEnv = coerceEnv(process.env);
+    const workdir = resolveWorkdir2(rawWorkdir, warnings);
+    const baseEnv = coerceEnv2(process.env);
     const mergedEnv = options.env ? { ...baseEnv, ...options.env } : baseEnv;
     const timeoutSec = typeof options.timeout === "number" && options.timeout > 0 ? options.timeout : DEFAULT_TIMEOUT_SEC;
     const usePty = options.pty === true;
@@ -4603,7 +4319,7 @@ class ShellService extends Service2 {
         runtimeMs: Date.now() - s.startedAt,
         cwd: s.cwd,
         command: s.command,
-        name: deriveSessionName(s.command),
+        name: deriveSessionName2(s.command),
         tail: s.tail,
         truncated: s.truncated
       }));
@@ -4615,7 +4331,7 @@ class ShellService extends Service2 {
         runtimeMs: s.endedAt - s.startedAt,
         cwd: s.cwd,
         command: s.command,
-        name: deriveSessionName(s.command),
+        name: deriveSessionName2(s.command),
         tail: s.tail,
         truncated: s.truncated,
         exitCode: s.exitCode ?? undefined,
@@ -4623,8 +4339,8 @@ class ShellService extends Service2 {
       }));
       const sessions = [...running, ...finished2].slice().sort((a, b) => b.startedAt - a.startedAt);
       const lines = sessions.map((s) => {
-        const label = s.name ? truncateMiddle(s.name, 80) : truncateMiddle(s.command, 120);
-        return `${s.sessionId} ${pad(s.status, 9)} ${formatDuration(s.runtimeMs)} :: ${label}`;
+        const label = s.name ? truncateMiddle2(s.name, 80) : truncateMiddle2(s.command, 120);
+        return `${s.sessionId} ${pad2(s.status, 9)} ${formatDuration2(s.runtimeMs)} :: ${label}`;
       });
       return {
         success: true,
@@ -4657,7 +4373,7 @@ Process exited with ${scopedFinished.exitSignal ? `signal ${scopedFinished.exitS
                 sessionId: params.sessionId,
                 exitCode: scopedFinished.exitCode ?? undefined,
                 aggregated: scopedFinished.aggregated,
-                name: deriveSessionName(scopedFinished.command)
+                name: deriveSessionName2(scopedFinished.command)
               }
             };
           }
@@ -4695,7 +4411,7 @@ Process still running.`),
             sessionId: params.sessionId,
             exitCode: exited ? exitCode : undefined,
             aggregated: scopedSession.aggregated,
-            name: deriveSessionName(scopedSession.command)
+            name: deriveSessionName2(scopedSession.command)
           }
         };
       }
@@ -4707,7 +4423,7 @@ Process still running.`),
               message: `Session ${params.sessionId} is not backgrounded.`
             };
           }
-          const { slice, totalLines, totalChars } = sliceLogLines(scopedSession.aggregated, params.offset, params.limit);
+          const { slice, totalLines, totalChars } = sliceLogLines2(scopedSession.aggregated, params.offset, params.limit);
           return {
             success: true,
             message: slice || "(no output yet)",
@@ -4717,12 +4433,12 @@ Process still running.`),
               totalLines,
               totalChars,
               truncated: scopedSession.truncated,
-              name: deriveSessionName(scopedSession.command)
+              name: deriveSessionName2(scopedSession.command)
             }
           };
         }
         if (scopedFinished) {
-          const { slice, totalLines, totalChars } = sliceLogLines(scopedFinished.aggregated, params.offset, params.limit);
+          const { slice, totalLines, totalChars } = sliceLogLines2(scopedFinished.aggregated, params.offset, params.limit);
           const status = scopedFinished.status === "completed" ? "completed" : "failed";
           return {
             success: true,
@@ -4735,7 +4451,7 @@ Process still running.`),
               truncated: scopedFinished.truncated,
               exitCode: scopedFinished.exitCode ?? undefined,
               exitSignal: scopedFinished.exitSignal ?? undefined,
-              name: deriveSessionName(scopedFinished.command)
+              name: deriveSessionName2(scopedFinished.command)
             }
           };
         }
@@ -4780,7 +4496,7 @@ Process still running.`),
           message: `Wrote ${(params.data ?? "").length} bytes to session ${params.sessionId}${params.eof ? " (stdin closed)" : ""}.`,
           data: {
             sessionId: params.sessionId,
-            name: deriveSessionName(scopedSession.command)
+            name: deriveSessionName2(scopedSession.command)
           }
         };
       }
@@ -4804,7 +4520,7 @@ Process still running.`),
             message: `Session ${params.sessionId} stdin is not writable.`
           };
         }
-        const { data, warnings } = encodeKeySequence({
+        const { data, warnings } = encodeKeySequence2({
           keys: params.keys,
           hex: params.hex,
           literal: params.literal
@@ -4828,7 +4544,7 @@ Warnings:
 - `)}` : ""),
           data: {
             sessionId: params.sessionId,
-            name: deriveSessionName(scopedSession.command)
+            name: deriveSessionName2(scopedSession.command)
           }
         };
       }
@@ -4865,7 +4581,7 @@ Warnings:
           message: `Submitted session ${params.sessionId} (sent CR).`,
           data: {
             sessionId: params.sessionId,
-            name: deriveSessionName(scopedSession.command)
+            name: deriveSessionName2(scopedSession.command)
           }
         };
       }
@@ -4889,7 +4605,7 @@ Warnings:
             message: `Session ${params.sessionId} stdin is not writable.`
           };
         }
-        const payload = encodePaste(params.text ?? "", params.bracketed !== false);
+        const payload = encodePaste2(params.text ?? "", params.bracketed !== false);
         if (!payload) {
           return { success: false, message: "No paste text provided." };
         }
@@ -4906,7 +4622,7 @@ Warnings:
           message: `Pasted ${params.text?.length ?? 0} chars to session ${params.sessionId}.`,
           data: {
             sessionId: params.sessionId,
-            name: deriveSessionName(scopedSession.command)
+            name: deriveSessionName2(scopedSession.command)
           }
         };
       }
@@ -4923,12 +4639,12 @@ Warnings:
             message: `Session ${params.sessionId} is not backgrounded.`
           };
         }
-        killSession(scopedSession);
+        killSession2(scopedSession);
         markExited(scopedSession, null, "SIGKILL", "failed");
         return {
           success: true,
           message: `Killed session ${params.sessionId}.`,
-          data: { name: deriveSessionName(scopedSession.command) }
+          data: { name: deriveSessionName2(scopedSession.command) }
         };
       }
       case "clear": {
@@ -4946,12 +4662,12 @@ Warnings:
       }
       case "remove": {
         if (scopedSession) {
-          killSession(scopedSession);
+          killSession2(scopedSession);
           markExited(scopedSession, null, "SIGKILL", "failed");
           return {
             success: true,
             message: `Removed session ${params.sessionId}.`,
-            data: { name: deriveSessionName(scopedSession.command) }
+            data: { name: deriveSessionName2(scopedSession.command) }
           };
         }
         if (scopedFinished) {
@@ -5000,7 +4716,7 @@ Warnings:
     const session = this.getSession(id);
     if (!session)
       return false;
-    killSession(session);
+    killSession2(session);
     markExited(session, null, "SIGKILL", "killed");
     return true;
   }
@@ -5013,7 +4729,7 @@ Warnings:
   }
   clearCommandHistory(conversationId) {
     this.commandHistory.delete(conversationId);
-    logger9.info(`Cleared command history for conversation: ${conversationId}`);
+    logger7.info(`Cleared command history for conversation: ${conversationId}`);
   }
   getCurrentDirectory(_conversationId) {
     return this.currentDirectory;
@@ -5073,12 +4789,12 @@ Warnings:
       if (useShell) {
         cmd = "sh";
         args = ["-c", command];
-        logger9.info(`Executing shell command: sh -c "${command}" in ${this.currentDirectory}`);
+        logger7.info(`Executing shell command: sh -c "${command}" in ${this.currentDirectory}`);
       } else {
         const parts = command.split(/\s+/);
         cmd = parts[0];
         args = parts.slice(1);
-        logger9.info(`Executing command: ${cmd} ${args.join(" ")} in ${this.currentDirectory}`);
+        logger7.info(`Executing command: ${cmd} ${args.join(" ")} in ${this.currentDirectory}`);
       }
       let stdout = "";
       let stderr = "";
@@ -5149,7 +4865,7 @@ Command timed out`,
     let pty = null;
     let stdin;
     if (opts.usePty) {
-      const { shell, args: shellArgs } = getShellConfig();
+      const { shell, args: shellArgs } = getShellConfig2();
       try {
         const ptyModule = await Promise.resolve().then(() => __toESM(require_node_pty(), 1));
         const spawnPty = ptyModule.spawn ?? ptyModule.default?.spawn;
@@ -5183,12 +4899,12 @@ Command timed out`,
       } catch (err) {
         const errText = String(err);
         const warning = `Warning: PTY spawn failed (${errText}); retrying without PTY.`;
-        logger9.warn(`exec: PTY spawn failed (${errText}); retrying without PTY.`);
+        logger7.warn(`exec: PTY spawn failed (${errText}); retrying without PTY.`);
         opts.warnings.push(warning);
       }
     }
     if (!pty) {
-      const { shell, args: shellArgs } = getShellConfig();
+      const { shell, args: shellArgs } = getShellConfig2();
       const proc = spawn2(shell, [...shellArgs, opts.command], {
         cwd: opts.workdir,
         env: opts.env,
@@ -5261,7 +4977,7 @@ ${reason}` : reason
     };
     const onTimeout = () => {
       timedOut = true;
-      killSession(session);
+      killSession2(session);
       if (!timeoutFinalizeTimer) {
         timeoutFinalizeTimer = setTimeout(() => {
           finalizeTimeout();
@@ -5279,24 +4995,24 @@ ${reason}` : reason
       }
     };
     const handleStdout = (data) => {
-      const str = sanitizeBinaryOutput(data.toString());
-      for (const chunk of chunkString(str)) {
+      const str = sanitizeBinaryOutput2(data.toString());
+      for (const chunk of chunkString2(str)) {
         appendOutput(session, "stdout", chunk);
         emitUpdate();
       }
     };
     const handleStderr = (data) => {
-      const str = sanitizeBinaryOutput(data.toString());
-      for (const chunk of chunkString(str)) {
+      const str = sanitizeBinaryOutput2(data.toString());
+      for (const chunk of chunkString2(str)) {
         appendOutput(session, "stderr", chunk);
         emitUpdate();
       }
     };
     if (pty) {
-      const cursorResponse = buildCursorPositionResponse();
+      const cursorResponse = buildCursorPositionResponse2();
       pty.onData((data) => {
         const raw = data.toString();
-        const { cleaned, requests } = stripDsrRequests(raw);
+        const { cleaned, requests } = stripDsrRequests2(raw);
         if (requests > 0) {
           for (let i = 0;i < requests; i += 1) {
             pty.write(cursorResponse);
@@ -5392,7 +5108,7 @@ ${String(err)}` : String(err);
       session,
       startedAt,
       promise,
-      kill: () => killSession(session)
+      kill: () => killSession2(session)
     };
   }
   addToHistory(conversationId, command, result, fileOperations) {
@@ -5472,27 +5188,28 @@ ${String(err)}` : String(err);
 // index.ts
 var shellPlugin = {
   name: "shell",
-  description: "Execute shell commands with PTY support, background execution, session management, and approval workflows",
+  description: "Shell observability and history management providers",
   services: [ShellService, ExecApprovalService],
-  actions: [executeCommand, clearHistory, processAction],
-  providers: [shellHistoryProvider]
+  actions: [clearHistory],
+  providers: [shellHistoryProvider, terminalUsageProvider]
 };
-var typescript_default = shellPlugin;
+var plugin_shell_default = shellPlugin;
 export {
   validatePath,
-  truncateMiddle,
+  truncateMiddle2 as truncateMiddle,
   trimWithCap,
+  terminalUsageProvider,
   tail,
-  stripDsrRequests,
+  stripDsrRequests2 as stripDsrRequests,
   spawnWithFallback,
-  sliceUtf16Safe,
-  sliceLogLines,
+  sliceUtf16Safe2 as sliceUtf16Safe,
+  sliceLogLines2 as sliceLogLines,
   shellPlugin,
   shellHistoryProvider,
   setJobTtlMs,
   saveApprovals,
-  sanitizeBinaryOutput,
-  resolveWorkdir,
+  sanitizeBinaryOutput2 as sanitizeBinaryOutput,
+  resolveWorkdir2 as resolveWorkdir,
   resolveSafeBins,
   resolveCommandResolution,
   resolveCommandFromArgv,
@@ -5501,10 +5218,9 @@ export {
   resetProcessRegistryForTests,
   requiresExecApproval,
   recordAllowlistUse,
-  readEnvInt,
+  readEnvInt2 as readEnvInt,
   readApprovalsSnapshot,
-  processAction,
-  pad,
+  pad2 as pad,
   normalizeSafeBins,
   normalizeApprovals,
   minSecurity,
@@ -5516,36 +5232,35 @@ export {
   loadApprovals,
   listRunningSessions,
   listFinishedSessions,
-  killSession,
-  killProcessTree,
+  killSession2 as killSession,
+  killProcessTree2 as killProcessTree,
   isSafeCommand,
   isSafeBinUsage,
   isForbiddenCommand,
-  getShellConfig,
+  getShellConfig2 as getShellConfig,
   getSession,
   getFinishedSession,
   getApprovalSocketPath,
   getApprovalFilePath,
   formatSpawnError,
-  formatDuration,
+  formatDuration2 as formatDuration,
   extractBaseCommand,
-  executeCommand,
   evaluateShellAllowlist,
   evaluateExecAllowlist,
   ensureApprovals,
-  encodePaste,
-  encodeKeySequence,
+  encodePaste2 as encodePaste,
+  encodeKeySequence2 as encodeKeySequence,
   drainSession,
-  deriveSessionName,
+  deriveSessionName2 as deriveSessionName,
   deleteSession,
-  typescript_default as default,
+  plugin_shell_default as default,
   createSessionSlug,
-  coerceEnv,
+  coerceEnv2 as coerceEnv,
   clearHistory,
   clearFinished,
-  clampNumber,
-  chunkString,
-  buildCursorPositionResponse,
+  clampNumber2 as clampNumber,
+  chunkString2 as chunkString,
+  buildCursorPositionResponse2 as buildCursorPositionResponse,
   appendOutput,
   analyzeShellCommand,
   addSession,
@@ -5555,8 +5270,8 @@ export {
   EXEC_APPROVAL_DEFAULTS,
   DEFAULT_SAFE_BINS,
   DEFAULT_FORBIDDEN_COMMANDS,
-  BRACKETED_PASTE_START,
-  BRACKETED_PASTE_END
+  BRACKETED_PASTE_START2 as BRACKETED_PASTE_START,
+  BRACKETED_PASTE_END2 as BRACKETED_PASTE_END
 };
 
-//# debugId=97DD6F9F41EC7B7A64756E2164756E21
+//# debugId=D974DA05B88C09D864756E2164756E21