npm - @everywheredev/cli - Versions diffs - 0.0.5 - Mend

@everywheredev/cli 0.0.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (309) hide show

package/README.md +135 -0
package/bin/pocketdev.js +19 -0
package/dist/agent/agent-loop.d.ts +40 -0
package/dist/agent/agent-loop.d.ts.map +1 -0
package/dist/agent/agent-loop.js +162 -0
package/dist/agent/agent-loop.js.map +1 -0
package/dist/agent/approval.d.ts +38 -0
package/dist/agent/approval.d.ts.map +1 -0
package/dist/agent/approval.js +55 -0
package/dist/agent/approval.js.map +1 -0
package/dist/agent/run-tracker.d.ts +26 -0
package/dist/agent/run-tracker.d.ts.map +1 -0
package/dist/agent/run-tracker.js +43 -0
package/dist/agent/run-tracker.js.map +1 -0
package/dist/auth/device-flow.d.ts +61 -0
package/dist/auth/device-flow.d.ts.map +1 -0
package/dist/auth/device-flow.js +141 -0
package/dist/auth/device-flow.js.map +1 -0
package/dist/auth/hydra-oauth-auth-provider.d.ts +35 -0
package/dist/auth/hydra-oauth-auth-provider.d.ts.map +1 -0
package/dist/auth/hydra-oauth-auth-provider.js +153 -0
package/dist/auth/hydra-oauth-auth-provider.js.map +1 -0
package/dist/auth/keychain.d.ts +42 -0
package/dist/auth/keychain.d.ts.map +1 -0
package/dist/auth/keychain.js +138 -0
package/dist/auth/keychain.js.map +1 -0
package/dist/auth/pkce.d.ts +20 -0
package/dist/auth/pkce.d.ts.map +1 -0
package/dist/auth/pkce.js +44 -0
package/dist/auth/pkce.js.map +1 -0
package/dist/auth/ports.d.ts +25 -0
package/dist/auth/ports.d.ts.map +1 -0
package/dist/auth/ports.js +8 -0
package/dist/auth/ports.js.map +1 -0
package/dist/commands/activity.d.ts +17 -0
package/dist/commands/activity.d.ts.map +1 -0
package/dist/commands/activity.js +54 -0
package/dist/commands/activity.js.map +1 -0
package/dist/commands/agent.d.ts +25 -0
package/dist/commands/agent.d.ts.map +1 -0
package/dist/commands/agent.js +80 -0
package/dist/commands/agent.js.map +1 -0
package/dist/commands/agents.d.ts +9 -0
package/dist/commands/agents.d.ts.map +1 -0
package/dist/commands/agents.js +28 -0
package/dist/commands/agents.js.map +1 -0
package/dist/commands/commits.d.ts +16 -0
package/dist/commands/commits.d.ts.map +1 -0
package/dist/commands/commits.js +39 -0
package/dist/commands/commits.js.map +1 -0
package/dist/commands/diff.d.ts +15 -0
package/dist/commands/diff.d.ts.map +1 -0
package/dist/commands/diff.js +27 -0
package/dist/commands/diff.js.map +1 -0
package/dist/commands/expose.d.ts +15 -0
package/dist/commands/expose.d.ts.map +1 -0
package/dist/commands/expose.js +39 -0
package/dist/commands/expose.js.map +1 -0
package/dist/commands/index.d.ts +7 -0
package/dist/commands/index.d.ts.map +1 -0
package/dist/commands/index.js +12 -0
package/dist/commands/index.js.map +1 -0
package/dist/commands/login.d.ts +9 -0
package/dist/commands/login.d.ts.map +1 -0
package/dist/commands/login.js +27 -0
package/dist/commands/login.js.map +1 -0
package/dist/commands/logout.d.ts +9 -0
package/dist/commands/logout.d.ts.map +1 -0
package/dist/commands/logout.js +24 -0
package/dist/commands/logout.js.map +1 -0
package/dist/commands/me.d.ts +10 -0
package/dist/commands/me.d.ts.map +1 -0
package/dist/commands/me.js +25 -0
package/dist/commands/me.js.map +1 -0
package/dist/commands/open.d.ts +16 -0
package/dist/commands/open.d.ts.map +1 -0
package/dist/commands/open.js +34 -0
package/dist/commands/open.js.map +1 -0
package/dist/commands/ports.d.ts +75 -0
package/dist/commands/ports.d.ts.map +1 -0
package/dist/commands/ports.js +78 -0
package/dist/commands/ports.js.map +1 -0
package/dist/commands/profile.d.ts +21 -0
package/dist/commands/profile.d.ts.map +1 -0
package/dist/commands/profile.js +93 -0
package/dist/commands/profile.js.map +1 -0
package/dist/commands/push.d.ts +18 -0
package/dist/commands/push.d.ts.map +1 -0
package/dist/commands/push.js +116 -0
package/dist/commands/push.js.map +1 -0
package/dist/commands/registry.d.ts +15 -0
package/dist/commands/registry.d.ts.map +1 -0
package/dist/commands/registry.js +45 -0
package/dist/commands/registry.js.map +1 -0
package/dist/commands/request.d.ts +25 -0
package/dist/commands/request.d.ts.map +1 -0
package/dist/commands/request.js +58 -0
package/dist/commands/request.js.map +1 -0
package/dist/commands/resume.d.ts +22 -0
package/dist/commands/resume.d.ts.map +1 -0
package/dist/commands/resume.js +69 -0
package/dist/commands/resume.js.map +1 -0
package/dist/commands/save.d.ts +34 -0
package/dist/commands/save.d.ts.map +1 -0
package/dist/commands/save.js +141 -0
package/dist/commands/save.js.map +1 -0
package/dist/commands/session.d.ts +9 -0
package/dist/commands/session.d.ts.map +1 -0
package/dist/commands/session.js +282 -0
package/dist/commands/session.js.map +1 -0
package/dist/commands/skills/markdown-loader.d.ts +19 -0
package/dist/commands/skills/markdown-loader.d.ts.map +1 -0
package/dist/commands/skills/markdown-loader.js +108 -0
package/dist/commands/skills/markdown-loader.js.map +1 -0
package/dist/commands/skills/registry.d.ts +23 -0
package/dist/commands/skills/registry.d.ts.map +1 -0
package/dist/commands/skills/registry.js +45 -0
package/dist/commands/skills/registry.js.map +1 -0
package/dist/commands/terminal.d.ts +19 -0
package/dist/commands/terminal.d.ts.map +1 -0
package/dist/commands/terminal.js +39 -0
package/dist/commands/terminal.js.map +1 -0
package/dist/commands/tree.d.ts +16 -0
package/dist/commands/tree.d.ts.map +1 -0
package/dist/commands/tree.js +44 -0
package/dist/commands/tree.js.map +1 -0
package/dist/commands/undo.d.ts +18 -0
package/dist/commands/undo.d.ts.map +1 -0
package/dist/commands/undo.js +46 -0
package/dist/commands/undo.js.map +1 -0
package/dist/config/config-store.d.ts +19 -0
package/dist/config/config-store.d.ts.map +1 -0
package/dist/config/config-store.js +199 -0
package/dist/config/config-store.js.map +1 -0
package/dist/config/defaults.d.ts +22 -0
package/dist/config/defaults.d.ts.map +1 -0
package/dist/config/defaults.js +38 -0
package/dist/config/defaults.js.map +1 -0
package/dist/config/ports.d.ts +60 -0
package/dist/config/ports.d.ts.map +1 -0
package/dist/config/ports.js +8 -0
package/dist/config/ports.js.map +1 -0
package/dist/config/profile-constants.d.ts +4 -0
package/dist/config/profile-constants.d.ts.map +1 -0
package/dist/config/profile-constants.js +10 -0
package/dist/config/profile-constants.js.map +1 -0
package/dist/config/profile.d.ts +84 -0
package/dist/config/profile.d.ts.map +1 -0
package/dist/config/profile.js +66 -0
package/dist/config/profile.js.map +1 -0
package/dist/contract/index.d.ts +193 -0
package/dist/contract/index.d.ts.map +1 -0
package/dist/contract/index.js +14 -0
package/dist/contract/index.js.map +1 -0
package/dist/core/app.d.ts +35 -0
package/dist/core/app.d.ts.map +1 -0
package/dist/core/app.js +86 -0
package/dist/core/app.js.map +1 -0
package/dist/core/command-router.d.ts +29 -0
package/dist/core/command-router.d.ts.map +1 -0
package/dist/core/command-router.js +61 -0
package/dist/core/command-router.js.map +1 -0
package/dist/core/errors.d.ts +39 -0
package/dist/core/errors.d.ts.map +1 -0
package/dist/core/errors.js +106 -0
package/dist/core/errors.js.map +1 -0
package/dist/core/preflight.d.ts +16 -0
package/dist/core/preflight.d.ts.map +1 -0
package/dist/core/preflight.js +38 -0
package/dist/core/preflight.js.map +1 -0
package/dist/core/repl.d.ts +18 -0
package/dist/core/repl.d.ts.map +1 -0
package/dist/core/repl.js +128 -0
package/dist/core/repl.js.map +1 -0
package/dist/di/container.d.ts +13 -0
package/dist/di/container.d.ts.map +1 -0
package/dist/di/container.js +160 -0
package/dist/di/container.js.map +1 -0
package/dist/di/tokens.d.ts +20 -0
package/dist/di/tokens.d.ts.map +1 -0
package/dist/di/tokens.js +22 -0
package/dist/di/tokens.js.map +1 -0
package/dist/index.d.ts +9 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +59 -0
package/dist/index.js.map +1 -0
package/dist/render/ink-renderer.d.ts +28 -0
package/dist/render/ink-renderer.d.ts.map +1 -0
package/dist/render/ink-renderer.js +174 -0
package/dist/render/ink-renderer.js.map +1 -0
package/dist/render/plain-renderer.d.ts +16 -0
package/dist/render/plain-renderer.d.ts.map +1 -0
package/dist/render/plain-renderer.js +38 -0
package/dist/render/plain-renderer.js.map +1 -0
package/dist/render/ports.d.ts +12 -0
package/dist/render/ports.d.ts.map +1 -0
package/dist/render/ports.js +10 -0
package/dist/render/ports.js.map +1 -0
package/dist/render/raw-renderer.d.ts +11 -0
package/dist/render/raw-renderer.d.ts.map +1 -0
package/dist/render/raw-renderer.js +68 -0
package/dist/render/raw-renderer.js.map +1 -0
package/dist/render/repl-input.d.ts +15 -0
package/dist/render/repl-input.d.ts.map +1 -0
package/dist/render/repl-input.js +102 -0
package/dist/render/repl-input.js.map +1 -0
package/dist/session/file-session-store.d.ts +26 -0
package/dist/session/file-session-store.d.ts.map +1 -0
package/dist/session/file-session-store.js +174 -0
package/dist/session/file-session-store.js.map +1 -0
package/dist/session/ports.d.ts +50 -0
package/dist/session/ports.d.ts.map +1 -0
package/dist/session/ports.js +6 -0
package/dist/session/ports.js.map +1 -0
package/dist/sync/git-sync.d.ts +16 -0
package/dist/sync/git-sync.d.ts.map +1 -0
package/dist/sync/git-sync.js +28 -0
package/dist/sync/git-sync.js.map +1 -0
package/dist/sync/git.d.ts +12 -0
package/dist/sync/git.d.ts.map +1 -0
package/dist/sync/git.js +100 -0
package/dist/sync/git.js.map +1 -0
package/dist/sync/reconciler.d.ts +36 -0
package/dist/sync/reconciler.d.ts.map +1 -0
package/dist/sync/reconciler.js +143 -0
package/dist/sync/reconciler.js.map +1 -0
package/dist/sync/walk.d.ts +23 -0
package/dist/sync/walk.d.ts.map +1 -0
package/dist/sync/walk.js +81 -0
package/dist/sync/walk.js.map +1 -0
package/dist/sync/watch.d.ts +13 -0
package/dist/sync/watch.d.ts.map +1 -0
package/dist/sync/watch.js +75 -0
package/dist/sync/watch.js.map +1 -0
package/dist/tools/git-diff.d.ts +16 -0
package/dist/tools/git-diff.d.ts.map +1 -0
package/dist/tools/git-diff.js +25 -0
package/dist/tools/git-diff.js.map +1 -0
package/dist/tools/http-request.d.ts +25 -0
package/dist/tools/http-request.d.ts.map +1 -0
package/dist/tools/http-request.js +41 -0
package/dist/tools/http-request.js.map +1 -0
package/dist/tools/index.d.ts +7 -0
package/dist/tools/index.d.ts.map +1 -0
package/dist/tools/index.js +22 -0
package/dist/tools/index.js.map +1 -0
package/dist/tools/ports.d.ts +58 -0
package/dist/tools/ports.d.ts.map +1 -0
package/dist/tools/ports.js +17 -0
package/dist/tools/ports.js.map +1 -0
package/dist/tools/read-file.d.ts +16 -0
package/dist/tools/read-file.d.ts.map +1 -0
package/dist/tools/read-file.js +24 -0
package/dist/tools/read-file.js.map +1 -0
package/dist/tools/registry.d.ts +10 -0
package/dist/tools/registry.d.ts.map +1 -0
package/dist/tools/registry.js +28 -0
package/dist/tools/registry.js.map +1 -0
package/dist/tools/run-command.d.ts +20 -0
package/dist/tools/run-command.d.ts.map +1 -0
package/dist/tools/run-command.js +65 -0
package/dist/tools/run-command.js.map +1 -0
package/dist/tools/write-file.d.ts +24 -0
package/dist/tools/write-file.d.ts.map +1 -0
package/dist/tools/write-file.js +60 -0
package/dist/tools/write-file.js.map +1 -0
package/dist/transport/composite-transport.d.ts +30 -0
package/dist/transport/composite-transport.d.ts.map +1 -0
package/dist/transport/composite-transport.js +71 -0
package/dist/transport/composite-transport.js.map +1 -0
package/dist/transport/device-browser.d.ts +19 -0
package/dist/transport/device-browser.d.ts.map +1 -0
package/dist/transport/device-browser.js +243 -0
package/dist/transport/device-browser.js.map +1 -0
package/dist/transport/device-git.d.ts +14 -0
package/dist/transport/device-git.d.ts.map +1 -0
package/dist/transport/device-git.js +107 -0
package/dist/transport/device-git.js.map +1 -0
package/dist/transport/device-http.d.ts +10 -0
package/dist/transport/device-http.d.ts.map +1 -0
package/dist/transport/device-http.js +96 -0
package/dist/transport/device-http.js.map +1 -0
package/dist/transport/device-terminal.d.ts +44 -0
package/dist/transport/device-terminal.d.ts.map +1 -0
package/dist/transport/device-terminal.js +140 -0
package/dist/transport/device-terminal.js.map +1 -0
package/dist/transport/http-transport.d.ts +26 -0
package/dist/transport/http-transport.d.ts.map +1 -0
package/dist/transport/http-transport.js +125 -0
package/dist/transport/http-transport.js.map +1 -0
package/dist/transport/ports.d.ts +67 -0
package/dist/transport/ports.d.ts.map +1 -0
package/dist/transport/ports.js +11 -0
package/dist/transport/ports.js.map +1 -0
package/dist/transport/reconnect.d.ts +44 -0
package/dist/transport/reconnect.d.ts.map +1 -0
package/dist/transport/reconnect.js +69 -0
package/dist/transport/reconnect.js.map +1 -0
package/dist/transport/terminal-transport.d.ts +28 -0
package/dist/transport/terminal-transport.d.ts.map +1 -0
package/dist/transport/terminal-transport.js +63 -0
package/dist/transport/terminal-transport.js.map +1 -0
package/dist/transport/ws-stream-transport.d.ts +66 -0
package/dist/transport/ws-stream-transport.d.ts.map +1 -0
package/dist/transport/ws-stream-transport.js +246 -0
package/dist/transport/ws-stream-transport.js.map +1 -0
package/package.json +65 -0
package/scripts/ensure-node-pty.mjs +52 -0
package/scripts/smoke.mjs +52 -0

package/README.md ADDED Viewed

@@ -0,0 +1,135 @@
+# @everywheredev/cli
+A **Claude-Code-style TypeScript terminal client** for the PocketDev host. It is a *thin client to the
+Go host* — it never owns the filesystem, git, PTY, or AI agent. It browses/edits the project, streams
+the terminal and activity feed, drives the HTTP proxy, and runs AI prompts, working **identically**
+against a **LOCAL** host (loopback + Personal Access Token over Tailscale) or a **FULL-REMOTE** host
+(cloud + Ory Hydra OAuth2), selected by a per-host **connection profile**.
+> Full design: [`docs/architecture/cli.md`](../docs/architecture/cli.md).
+## Install
+```sh
+npm i -g @everywheredev/cli  # provides the `pocketdev` binary
+```
+Standalone single-file builds (Bun / Node SEA / pkg) for macOS/Linux are planned so it runs without a
+Node toolchain, including over SSH.
+### Local development install
+To put the `pocketdev` command on your PATH from this working copy (no registry, no publish) — needs
+**Node ≥ 20**:
+```sh
+make cli-link            # from repo root: npm install + npm link (auto-builds via `prepare`)
+# or, from cli/:  npm link
+```
+`npm link` symlinks this package globally, so `pocketdev` points at your source. After editing,
+rebuild and the linked command picks it up — keep a watcher running for a tight loop:
+```sh
+npm run build:watch      # rebuild dist/ on every save (run in a spare terminal)
+```
+Validate the **published** shape (the eventual `npm i -g @everywheredev/cli` experience) without touching
+the registry — `npm pack` builds the exact tarball `files` would ship (`bin/`, `dist/`, `README.md`):
+```sh
+npm pack                                  # → everywheredev-cli-0.1.0.tgz
+npm i -g ./everywheredev-cli-0.1.0.tgz    # install it like a real user would
+npm rm -g @everywheredev/cli              # ...then remove and re-link for dev
+```
+Remove the dev link with `make cli-unlink` (or `npm unlink -g @everywheredev/cli`).
+## Quick start
+```sh
+# LOCAL-ONLY (free): point at the host on 127.0.0.1:4317 with a Personal Access Token.
+export POCKETDEV_MODE=local
+export POCKETDEV_TOKEN=<pat>
+pocketdev tree
+pocketdev open src/index.ts
+pocketdev agent "refactor the parser and run tests"
+# FULL-REMOTE (premium): device-grant login against Ory Hydra, then the same commands.
+pocketdev --profile cloud login
+pocketdev --profile cloud agents
+```
+## Architecture (foundation)
+The pipeline mirrors Claude Code: **entry binary → DI composition root → command/router →
+agent + tool loop (approval gate) → transport → renderer**, with a session/transcript model and
+layered settings underneath.
+Every external dependency is an injected **interface (port)**; concretes are wired **once** at the DI
+composition root (`src/di/container.ts`, [tsyringe](https://github.com/microsoft/tsyringe)). That root
+is the *only* place that branches on `POCKETDEV_MODE` (`local` | `remote`) — nothing downstream
+branches on mode, so the command/tool/agent layer is byte-identical across both.
+| Seam (port) | LOCAL concrete | REMOTE concrete |
+| --- | --- | --- |
+| `AuthProvider` | `SharedTokenAuthProvider` (PAT / `POCKETDEV_TOKEN`) | `HydraOAuthAuthProvider` (device grant + PKCE) |
+| `HttpPort` | `HttpTransport` → `http://127.0.0.1:4317` | `HttpTransport` → `https://…` |
+| `StreamPort` | `WsStreamTransport` → `ws://…/ws` | `WsStreamTransport` → `wss://…/ws` |
+| `TerminalPort` | `TerminalTransport` over the stream | same |
+| `SessionStore` | `FileSessionStore` (JSONL + `/api/sessions`) | same |
+### Layout
+```
+cli/
+├─ bin/pocketdev.js              # shebang shim → dist/index.js
+└─ src/
+   ├─ index.ts                   # bootstrap: reflect-metadata, buildContainer, route
+   ├─ di/{container,tokens}.ts    # composition root (ONLY local/remote wiring) + injection tokens
+   ├─ core/{app,command-router,errors}.ts
+   ├─ config/{ports,config-store,profile,defaults}.ts   # precedence flags>env>project>user>defaults
+   ├─ transport/{ports,http-transport,ws-stream-transport,terminal-transport,composite-transport,reconnect}.ts
+   ├─ auth/{ports,shared-token-auth-provider,hydra-oauth-auth-provider,device-flow,pkce,keychain}.ts
+   ├─ session/{ports,file-session-store}.ts
+   └─ contract/index.ts          # thin re-export of @pocketdev/contract types (no drift)
+```
+## Configuration & precedence
+Highest wins:
+```
+1. CLI flags        --host, --mode, --profile, --token, --print/-p, --json, --no-tty
+2. Environment      POCKETDEV_MODE, POCKETDEV_HOST, POCKETDEV_PORT (4317), POCKETDEV_TOKEN,
+                    POCKETDEV_PROJECT_ROOT, POCKETDEV_MAX_FILE_BYTES,
+                    KRATOS_PUBLIC_URL, HYDRA_PUBLIC_URL, OIDC_ISSUER
+3. Project config   ./.pocketdev/config.json
+4. User config      ~/.pocketdev/config.json
+5. Built-in defaults
+```
+Server-only variables (`DATABASE_URL`, `REDIS_URL`, `CASBIN_WATCHER_CHANNEL`, `STRIPE_*`,
+`*_ADMIN_URL`) are **not** consumed by the CLI — they belong to the host.
+## Authentication
+- **LOCAL** — `Authorization: Bearer $POCKETDEV_TOKEN`; the host validates with a constant-time
+  compare. `pocketdev login` is a verify round-trip. No keychain, no browser.
+- **REMOTE** — OAuth2 **Device Authorization Grant + PKCE** (RFC 8628 + 7636) against Ory Hydra;
+  access JWT used as the same Bearer header for REST and the WS handshake; tokens stored in the OS
+  keychain with a chmod-0600 file fallback for headless/CI.
+## Scripts
+```sh
+npm run build       # tsc → dist/
+npm run build:watch # tsc --watch → rebuild dist/ on save (pairs with `npm link`)
+npm run dev         # run from source via tsx
+npm test            # vitest
+npm run typecheck   # tsc --noEmit
+```
+## License
+Proprietary — internal PocketDev component.

package/bin/pocketdev.js ADDED Viewed

@@ -0,0 +1,19 @@
+#!/usr/bin/env node
+// PocketDev CLI entry shim.
+//
+// This is the published `pocketdev` binary (see package.json "bin"). It is a thin loader whose
+// only job is to hand control to the compiled bootstrap in dist/index.js. Keeping the shim tiny
+// means the real wiring (DI composition root, mode selection, routing) lives in TypeScript and is
+// fully testable — the shim itself has nothing to test.
+//
+// `reflect-metadata` is imported first (before any decorated class loads) because tsyringe relies
+// on emitted design-time type metadata for constructor injection.
+import "reflect-metadata";
+import { main } from "../dist/index.js";
+main(process.argv.slice(2)).catch((err) => {
+  // Last-resort guard: the bootstrap maps known failures to CliError with friendly hints; anything
+  // reaching here is unexpected. Print and exit non-zero so CI/pipes observe the failure.
+  process.stderr.write(`${err?.stack ?? err}\n`);
+  process.exit(1);
+});

package/dist/agent/agent-loop.d.ts ADDED Viewed

@@ -0,0 +1,40 @@
+import type { Renderer } from "../render/ports.js";
+import type { SessionStore } from "../session/ports.js";
+import type { HttpPort, StreamPort } from "../transport/ports.js";
+import { ApprovalGate } from "./approval.js";
+import { RunTracker } from "./run-tracker.js";
+/** Arguments for one agent prompt. */
+export interface PromptRequest {
+    prompt: string;
+    agentId?: string;
+    context?: string;
+    attachments?: string[];
+    /** Session to attribute the turns to (REPL); when absent, transcript is skipped. */
+    sessionId?: string;
+}
+/** Outcome of a completed run. */
+export interface RunOutcome {
+    runId: string;
+    agent: string;
+    code?: number;
+    error?: string;
+    /** Files the run touched, in first-seen order (for `/undo`). */
+    touchedPaths: string[];
+}
+export declare class AgentLoop {
+    private readonly http;
+    private readonly stream;
+    private readonly renderer;
+    private readonly approval;
+    private readonly tracker;
+    private readonly sessions;
+    constructor(http: HttpPort, stream: StreamPort, renderer: Renderer, approval: ApprovalGate, tracker: RunTracker, sessions: SessionStore);
+    /**
+     * Run one prompt to completion. Resolves when the host emits `agent:end` for this run.
+     * `signal` aborts streaming (the host run itself is cancelled by the host on disconnect).
+     */
+    run(req: PromptRequest, signal: AbortSignal): Promise<RunOutcome>;
+    /** Run the approval gate for a tool event and record it for the transcript + undo. */
+    private handleTool;
+}
+//# sourceMappingURL=agent-loop.d.ts.map

package/dist/agent/agent-loop.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"agent-loop.d.ts","sourceRoot":"","sources":["../../src/agent/agent-loop.ts"],"names":[],"mappings":"AAaA,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AACnD,OAAO,KAAK,EAAE,YAAY,EAAkB,MAAM,qBAAqB,CAAC;AACxE,OAAO,KAAK,EAAE,QAAQ,EAAE,UAAU,EAAe,MAAM,uBAAuB,CAAC;AAC/E,OAAO,EAAE,YAAY,EAAmB,MAAM,eAAe,CAAC;AAC9D,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAE9C,sCAAsC;AACtC,MAAM,WAAW,aAAa;IAC5B,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;IACvB,oFAAoF;IACpF,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,kCAAkC;AAClC,MAAM,WAAW,UAAU;IACzB,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,gEAAgE;IAChE,YAAY,EAAE,MAAM,EAAE,CAAC;CACxB;AASD,qBAAa,SAAS;IAElB,OAAO,CAAC,QAAQ,CAAC,IAAI;IACrB,OAAO,CAAC,QAAQ,CAAC,MAAM;IACvB,OAAO,CAAC,QAAQ,CAAC,QAAQ;IACzB,OAAO,CAAC,QAAQ,CAAC,QAAQ;IACzB,OAAO,CAAC,QAAQ,CAAC,OAAO;IACxB,OAAO,CAAC,QAAQ,CAAC,QAAQ;gBALR,IAAI,EAAE,QAAQ,EACd,MAAM,EAAE,UAAU,EAClB,QAAQ,EAAE,QAAQ,EAClB,QAAQ,EAAE,YAAY,EACtB,OAAO,EAAE,UAAU,EACnB,QAAQ,EAAE,YAAY;IAGzC;;;OAGG;IACG,GAAG,CAAC,GAAG,EAAE,aAAa,EAAE,MAAM,EAAE,WAAW,GAAG,OAAO,CAAC,UAAU,CAAC;IAoFvE,sFAAsF;YACxE,UAAU;CAiBzB"}

package/dist/agent/agent-loop.js ADDED Viewed

@@ -0,0 +1,162 @@
+// src/agent/agent-loop.ts — the agent + tool loop (cli.md §7).
+//
+// Flow:  prompt → POST /api/agent/prompt {runId} → stream agent:output / agent:tool /
+//        agent:end over the WS → approval gate on write/exec tools → render → transcript.
+//
+// The host runs the model and APPLIES edits server-side (enforcing Casbin); the CLI renders
+// the stream, runs the LOCAL approval gate (UX only), tracks runId for /undo and resume, and
+// appends turns to the SessionStore. DIP: depends only on ports + the gate/tracker.
+import { randomUUID } from "node:crypto";
+import { CliError } from "../core/errors.js";
+export class AgentLoop {
+    http;
+    stream;
+    renderer;
+    approval;
+    tracker;
+    sessions;
+    constructor(http, stream, renderer, approval, tracker, sessions) {
+        this.http = http;
+        this.stream = stream;
+        this.renderer = renderer;
+        this.approval = approval;
+        this.tracker = tracker;
+        this.sessions = sessions;
+    }
+    /**
+     * Run one prompt to completion. Resolves when the host emits `agent:end` for this run.
+     * `signal` aborts streaming (the host run itself is cancelled by the host on disconnect).
+     */
+    async run(req, signal) {
+        await this.stream.connect();
+        // Subscribe BEFORE issuing the prompt so we never miss the first chunk. Until the POST
+        // returns the runId, `activeRunId` is undefined and handlers accept any run; once set we
+        // filter strictly on it.
+        let activeRunId;
+        const subs = [];
+        // The user's turn is appended immediately (crash-safe) for resume.
+        if (req.sessionId) {
+            await this.sessions.append(req.sessionId, makeTurn("user", req.prompt));
+        }
+        let outputBuffer = "";
+        const toolCalls = [];
+        const result = new Promise((resolve, reject) => {
+            const onOutput = (p) => {
+                if (activeRunId && p.runId !== activeRunId)
+                    return;
+                outputBuffer += p.chunk;
+                this.renderer.stream(p.chunk);
+            };
+            const onTool = (p) => {
+                if (activeRunId && p.runId !== activeRunId)
+                    return;
+                // Defer the async approval so the synchronous event handler stays cheap.
+                void this.handleTool(p, toolCalls);
+            };
+            const onEnd = (p) => {
+                if (activeRunId && p.runId !== activeRunId)
+                    return;
+                cleanup();
+                this.tracker.end(p.runId, { code: p.code, error: p.error });
+                const run = this.tracker.get(p.runId);
+                const touchedPaths = run?.touchedPaths ?? [];
+                // Append the agent's turn (collected output + tool calls) to the transcript.
+                if (req.sessionId) {
+                    const turn = makeTurn("agent", outputBuffer, p.runId);
+                    if (toolCalls.length)
+                        turn.toolCalls = toolCalls;
+                    void this.sessions.append(req.sessionId, turn);
+                }
+                if (p.error) {
+                    this.renderer.error(`agent run ${shortId(p.runId)} failed: ${p.error}`);
+                }
+                else if (touchedPaths.length) {
+                    // Offer undo for the first touched path (the REPL surfaces the full list).
+                    this.renderer.stream(`\n[run ${shortId(p.runId)} done — undo with: pocketdev undo ${p.runId} <path>]\n`);
+                }
+                resolve({ runId: p.runId, agent: run?.agent ?? "", code: p.code, error: p.error, touchedPaths });
+            };
+            const onAbort = () => {
+                cleanup();
+                reject(new CliError("network", "agent run aborted before completion."));
+            };
+            const cleanup = () => {
+                for (const off of subs)
+                    off();
+                signal.removeEventListener("abort", onAbort);
+            };
+            subs.push(this.stream.on("agent:output", onOutput));
+            subs.push(this.stream.on("agent:tool", onTool));
+            subs.push(this.stream.on("agent:end", onEnd));
+            signal.addEventListener("abort", onAbort, { once: true });
+        });
+        // Now issue the prompt; map 422 (agent unavailable) to a friendly CliError upstream.
+        const res = await this.http.post("/api/agent/prompt", {
+            ...(req.agentId ? { agentId: req.agentId } : {}),
+            prompt: req.prompt,
+            ...(req.context ? { context: req.context } : {}),
+            ...(req.attachments ? { attachments: req.attachments } : {}),
+        });
+        activeRunId = res.runId;
+        this.tracker.begin(res.runId, res.agent);
+        return result;
+    }
+    /** Run the approval gate for a tool event and record it for the transcript + undo. */
+    async handleTool(p, toolCalls) {
+        const path = typeof p.path === "string" ? p.path : undefined;
+        const action = normalizeAction(p.action);
+        const sideEffect = sideEffectFor(p.kind);
+        if (path)
+            this.tracker.touch(p.runId, path);
+        toolCalls.push({ kind: kindFor(p.kind), action, path });
+        // Reads are auto-allowed by the default policy; writes/execs prompt the user.
+        const allowed = await this.approval.guard({ name: toolName(p.kind, action), sideEffect, path });
+        if (!allowed) {
+            this.renderer.error(`Denied ${toolName(p.kind, action)}${path ? ` on ${path}` : ""}.`, "The host may have already applied this server-side; review with `pocketdev diff`.");
+        }
+    }
+}
+// ── helpers ───────────────────────────────────────────────────────────────────
+function makeTurn(role, text, runId) {
+    return { id: randomUUID(), role, text, at: Date.now(), ...(runId ? { runId } : {}) };
+}
+function sideEffectFor(kind) {
+    switch (kind) {
+        case "read":
+            return "read";
+        case "file":
+            return "write";
+        case "cmd":
+            return "exec";
+        default:
+            return "exec";
+    }
+}
+function kindFor(kind) {
+    switch (kind) {
+        case "read":
+            return "read";
+        case "file":
+            return "file";
+        case "cmd":
+            return "cmd";
+        default:
+            return "cmd";
+    }
+}
+function normalizeAction(action) {
+    if (action === "create" || action === "modify" || action === "delete")
+        return action;
+    return undefined;
+}
+function toolName(kind, action) {
+    if (kind === "file")
+        return action ? `file:${action}` : "file";
+    if (kind === "cmd")
+        return "command";
+    return "read";
+}
+function shortId(id) {
+    return id.slice(0, 8);
+}
+//# sourceMappingURL=agent-loop.js.map

package/dist/agent/agent-loop.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"agent-loop.js","sourceRoot":"","sources":["../../src/agent/agent-loop.ts"],"names":[],"mappings":"AAAA,+DAA+D;AAC/D,EAAE;AACF,sFAAsF;AACtF,0FAA0F;AAC1F,EAAE;AACF,4FAA4F;AAC5F,6FAA6F;AAC7F,oFAAoF;AAEpF,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAGzC,OAAO,EAAE,QAAQ,EAAE,MAAM,mBAAmB,CAAC;AAkC7C,MAAM,OAAO,SAAS;IAED;IACA;IACA;IACA;IACA;IACA;IANnB,YACmB,IAAc,EACd,MAAkB,EAClB,QAAkB,EAClB,QAAsB,EACtB,OAAmB,EACnB,QAAsB;QALtB,SAAI,GAAJ,IAAI,CAAU;QACd,WAAM,GAAN,MAAM,CAAY;QAClB,aAAQ,GAAR,QAAQ,CAAU;QAClB,aAAQ,GAAR,QAAQ,CAAc;QACtB,YAAO,GAAP,OAAO,CAAY;QACnB,aAAQ,GAAR,QAAQ,CAAc;IACtC,CAAC;IAEJ;;;OAGG;IACH,KAAK,CAAC,GAAG,CAAC,GAAkB,EAAE,MAAmB;QAC/C,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;QAE5B,uFAAuF;QACvF,yFAAyF;QACzF,yBAAyB;QACzB,IAAI,WAA+B,CAAC;QACpC,MAAM,IAAI,GAAkB,EAAE,CAAC;QAE/B,mEAAmE;QACnE,IAAI,GAAG,CAAC,SAAS,EAAE,CAAC;YAClB,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,GAAG,CAAC,SAAS,EAAE,QAAQ,CAAC,MAAM,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC;QAC1E,CAAC;QAED,IAAI,YAAY,GAAG,EAAE,CAAC;QACtB,MAAM,SAAS,GAAe,EAAE,CAAC;QAEjC,MAAM,MAAM,GAAG,IAAI,OAAO,CAAa,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACzD,MAAM,QAAQ,GAAG,CAAC,CAAiC,EAAE,EAAE;gBACrD,IAAI,WAAW,IAAI,CAAC,CAAC,KAAK,KAAK,WAAW;oBAAE,OAAO;gBACnD,YAAY,IAAI,CAAC,CAAC,KAAK,CAAC;gBACxB,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;YAChC,CAAC,CAAC;YAEF,MAAM,MAAM,GAAG,CAAC,CAAY,EAAE,EAAE;gBAC9B,IAAI,WAAW,IAAI,CAAC,CAAC,KAAK,KAAK,WAAW;oBAAE,OAAO;gBACnD,yEAAyE;gBACzE,KAAK,IAAI,CAAC,UAAU,CAAC,CAAC,EAAE,SAAS,CAAC,CAAC;YACrC,CAAC,CAAC;YAEF,MAAM,KAAK,GAAG,CAAC,CAA8B,EAAE,EAAE;gBAC/C,IAAI,WAAW,IAAI,CAAC,CAAC,KAAK,KAAK,WAAW;oBAAE,OAAO;gBACnD,OAAO,EAAE,CAAC;gBACV,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC;gBAC5D,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;gBACtC,MAAM,YAAY,GAAG,GAAG,EAAE,YAAY,IAAI,EAAE,CAAC;gBAE7C,6EAA6E;gBAC7E,IAAI,GAAG,CAAC,SAAS,EAAE,CAAC;oBAClB,MAAM,IAAI,GAAG,QAAQ,CAAC,OAAO,EAAE,YAAY,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC;oBACtD,IAAI,SAAS,CAAC,MAAM;wBAAE,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;oBACjD,KAAK,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,GAAG,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;gBACjD,CAAC;gBAED,IAAI,CAAC,CAAC,KAAK,EAAE,CAAC;oBACZ,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,aAAa,OAAO,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC;gBAC1E,CAAC;qBAAM,IAAI,YAAY,CAAC,MAAM,EAAE,CAAC;oBAC/B,2EAA2E;oBAC3E,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,UAAU,OAAO,CAAC,CAAC,CAAC,KAAK,CAAC,qCAAqC,CAAC,CAAC,KAAK,YAAY,CAAC,CAAC;gBAC3G,CAAC;gBAED,OAAO,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,KAAK,EAAE,KAAK,EAAE,GAAG,EAAE,KAAK,IAAI,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC,KAAK,EAAE,YAAY,EAAE,CAAC,CAAC;YACnG,CAAC,CAAC;YAEF,MAAM,OAAO,GAAG,GAAG,EAAE;gBACnB,OAAO,EAAE,CAAC;gBACV,MAAM,CAAC,IAAI,QAAQ,CAAC,SAAS,EAAE,sCAAsC,CAAC,CAAC,CAAC;YAC1E,CAAC,CAAC;YAEF,MAAM,OAAO,GAAG,GAAG,EAAE;gBACnB,KAAK,MAAM,GAAG,IAAI,IAAI;oBAAE,GAAG,EAAE,CAAC;gBAC9B,MAAM,CAAC,mBAAmB,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;YAC/C,CAAC,CAAC;YAEF,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,cAAc,EAAE,QAAQ,CAAC,CAAC,CAAC;YACpD,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,YAAY,EAAE,MAAM,CAAC,CAAC,CAAC;YAChD,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,WAAW,EAAE,KAAK,CAAC,CAAC,CAAC;YAC9C,MAAM,CAAC,gBAAgB,CAAC,OAAO,EAAE,OAAO,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC;QAC5D,CAAC,CAAC,CAAC;QAEH,qFAAqF;QACrF,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,IAAI,CAAiB,mBAAmB,EAAE;YACpE,GAAG,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,OAAO,EAAE,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAChD,MAAM,EAAE,GAAG,CAAC,MAAM;YAClB,GAAG,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,OAAO,EAAE,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAChD,GAAG,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,GAAG,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;SAC7D,CAAC,CAAC;QAEH,WAAW,GAAG,GAAG,CAAC,KAAK,CAAC;QACxB,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,EAAE,GAAG,CAAC,KAAK,CAAC,CAAC;QAEzC,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,sFAAsF;IAC9E,KAAK,CAAC,UAAU,CAAC,CAAY,EAAE,SAAqB;QAC1D,MAAM,IAAI,GAAG,OAAO,CAAC,CAAC,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;QAC7D,MAAM,MAAM,GAAG,eAAe,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;QACzC,MAAM,UAAU,GAAG,aAAa,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;QAEzC,IAAI,IAAI;YAAE,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QAC5C,SAAS,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC;QAExD,8EAA8E;QAC9E,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,IAAI,EAAE,QAAQ,CAAC,CAAC,CAAC,IAAI,EAAE,MAAM,CAAC,EAAE,UAAU,EAAE,IAAI,EAAE,CAAC,CAAC;QAChG,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,IAAI,CAAC,QAAQ,CAAC,KAAK,CACjB,UAAU,QAAQ,CAAC,CAAC,CAAC,IAAI,EAAE,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,OAAO,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,GAAG,EACjE,mFAAmF,CACpF,CAAC;QACJ,CAAC;IACH,CAAC;CACF;AAED,iFAAiF;AAEjF,SAAS,QAAQ,CAAC,IAAkB,EAAE,IAAY,EAAE,KAAc;IAChE,OAAO,EAAE,EAAE,EAAE,UAAU,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,EAAE,IAAI,CAAC,GAAG,EAAE,EAAE,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC;AACvF,CAAC;AAED,SAAS,aAAa,CAAC,IAAuB;IAC5C,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,MAAM;YACT,OAAO,MAAM,CAAC;QAChB,KAAK,MAAM;YACT,OAAO,OAAO,CAAC;QACjB,KAAK,KAAK;YACR,OAAO,MAAM,CAAC;QAChB;YACE,OAAO,MAAM,CAAC;IAClB,CAAC;AACH,CAAC;AAED,SAAS,OAAO,CAAC,IAAuB;IACtC,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,MAAM;YACT,OAAO,MAAM,CAAC;QAChB,KAAK,MAAM;YACT,OAAO,MAAM,CAAC;QAChB,KAAK,KAAK;YACR,OAAO,KAAK,CAAC;QACf;YACE,OAAO,KAAK,CAAC;IACjB,CAAC;AACH,CAAC;AAED,SAAS,eAAe,CAAC,MAAe;IACtC,IAAI,MAAM,KAAK,QAAQ,IAAI,MAAM,KAAK,QAAQ,IAAI,MAAM,KAAK,QAAQ;QAAE,OAAO,MAAM,CAAC;IACrF,OAAO,SAAS,CAAC;AACnB,CAAC;AAED,SAAS,QAAQ,CAAC,IAAuB,EAAE,MAA2B;IACpE,IAAI,IAAI,KAAK,MAAM;QAAE,OAAO,MAAM,CAAC,CAAC,CAAC,QAAQ,MAAM,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC;IAC/D,IAAI,IAAI,KAAK,KAAK;QAAE,OAAO,SAAS,CAAC;IACrC,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,SAAS,OAAO,CAAC,EAAU;IACzB,OAAO,EAAE,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;AACxB,CAAC"}

package/dist/agent/approval.d.ts ADDED Viewed

@@ -0,0 +1,38 @@
+import type { Renderer } from "../render/ports.js";
+/** Side effect class drives the gate: reads pass freely, writes/execs are gated. */
+export type SideEffect = "read" | "write" | "exec";
+/** A normalized request the gate reasons about (from a host `agent:tool` event or a Tool). */
+export interface ToolRequest {
+    readonly name: string;
+    readonly sideEffect: SideEffect;
+    readonly path?: string;
+}
+export type Decision = "ask" | "allow" | "deny";
+/**
+ * PermissionPolicy decides ask/allow/deny per tool. Implementations are pluggable (OCP):
+ * a default policy, a "yolo" auto-allow policy for `--dangerously-allow-all`, or a config
+ * driven rule set. The gate depends only on this interface (DIP).
+ */
+export interface PermissionPolicy {
+    decide(tool: ToolRequest): Decision;
+}
+/**
+ * Default policy: reads are always allowed, writes/execs ask, unless a rule has been
+ * remembered via `remember()` (the "always" answer) for that tool name.
+ */
+export declare class DefaultPermissionPolicy implements PermissionPolicy {
+    private readonly autoAllowAll;
+    private readonly allowed;
+    constructor(autoAllowAll?: boolean);
+    decide(tool: ToolRequest): Decision;
+    /** Remember an "always" answer for the rest of the session. */
+    remember(toolName: string): void;
+}
+export declare class ApprovalGate {
+    private readonly policy;
+    private readonly renderer;
+    constructor(policy: PermissionPolicy, renderer: Renderer);
+    /** Returns true if the tool may proceed (the host still re-checks via Casbin). */
+    guard(tool: ToolRequest): Promise<boolean>;
+}
+//# sourceMappingURL=approval.d.ts.map

package/dist/agent/approval.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"approval.d.ts","sourceRoot":"","sources":["../../src/agent/approval.ts"],"names":[],"mappings":"AAOA,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AAEnD,oFAAoF;AACpF,MAAM,MAAM,UAAU,GAAG,MAAM,GAAG,OAAO,GAAG,MAAM,CAAC;AAEnD,8FAA8F;AAC9F,MAAM,WAAW,WAAW;IAC1B,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,UAAU,EAAE,UAAU,CAAC;IAChC,QAAQ,CAAC,IAAI,CAAC,EAAE,MAAM,CAAC;CACxB;AAED,MAAM,MAAM,QAAQ,GAAG,KAAK,GAAG,OAAO,GAAG,MAAM,CAAC;AAEhD;;;;GAIG;AACH,MAAM,WAAW,gBAAgB;IAC/B,MAAM,CAAC,IAAI,EAAE,WAAW,GAAG,QAAQ,CAAC;CACrC;AAED;;;GAGG;AACH,qBAAa,uBAAwB,YAAW,gBAAgB;IAGlD,OAAO,CAAC,QAAQ,CAAC,YAAY;IAFzC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAqB;gBAEhB,YAAY,UAAQ;IAEjD,MAAM,CAAC,IAAI,EAAE,WAAW,GAAG,QAAQ;IAOnC,+DAA+D;IAC/D,QAAQ,CAAC,QAAQ,EAAE,MAAM,GAAG,IAAI;CAGjC;AAED,qBAAa,YAAY;IAErB,OAAO,CAAC,QAAQ,CAAC,MAAM;IACvB,OAAO,CAAC,QAAQ,CAAC,QAAQ;gBADR,MAAM,EAAE,gBAAgB,EACxB,QAAQ,EAAE,QAAQ;IAGrC,kFAAkF;IAC5E,KAAK,CAAC,IAAI,EAAE,WAAW,GAAG,OAAO,CAAC,OAAO,CAAC;CAkBjD"}

package/dist/agent/approval.js ADDED Viewed

@@ -0,0 +1,55 @@
+// src/agent/approval.ts — ApprovalGate + PermissionPolicy (cli.md §7).
+//
+// The approval gate is a LOCAL UX convenience. It is NEVER the sole guard: the host
+// independently authorizes every action via Casbin server-side. The gate prompts the user
+// before a write/exec tool is applied, and supports "always" to remember a decision for the
+// rest of the session.
+/**
+ * Default policy: reads are always allowed, writes/execs ask, unless a rule has been
+ * remembered via `remember()` (the "always" answer) for that tool name.
+ */
+export class DefaultPermissionPolicy {
+    autoAllowAll;
+    allowed = new Set();
+    constructor(autoAllowAll = false) {
+        this.autoAllowAll = autoAllowAll;
+    }
+    decide(tool) {
+        if (this.autoAllowAll)
+            return "allow";
+        if (tool.sideEffect === "read")
+            return "allow";
+        if (this.allowed.has(tool.name))
+            return "allow";
+        return "ask";
+    }
+    /** Remember an "always" answer for the rest of the session. */
+    remember(toolName) {
+        this.allowed.add(toolName);
+    }
+}
+export class ApprovalGate {
+    policy;
+    renderer;
+    constructor(policy, renderer) {
+        this.policy = policy;
+        this.renderer = renderer;
+    }
+    /** Returns true if the tool may proceed (the host still re-checks via Casbin). */
+    async guard(tool) {
+        switch (this.policy.decide(tool)) {
+            case "allow":
+                return true;
+            case "deny":
+                return false;
+            case "ask": {
+                const answer = await this.renderer.prompt(`Allow ${tool.name}${tool.path ? ` on ${tool.path}` : ""}?`, ["yes", "no", "always"]);
+                if (answer === "always" && this.policy instanceof DefaultPermissionPolicy) {
+                    this.policy.remember(tool.name);
+                }
+                return answer !== "no";
+            }
+        }
+    }
+}
+//# sourceMappingURL=approval.js.map

package/dist/agent/approval.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"approval.js","sourceRoot":"","sources":["../../src/agent/approval.ts"],"names":[],"mappings":"AAAA,uEAAuE;AACvE,EAAE;AACF,oFAAoF;AACpF,0FAA0F;AAC1F,4FAA4F;AAC5F,uBAAuB;AAyBvB;;;GAGG;AACH,MAAM,OAAO,uBAAuB;IAGL;IAFZ,OAAO,GAAG,IAAI,GAAG,EAAU,CAAC;IAE7C,YAA6B,eAAe,KAAK;QAApB,iBAAY,GAAZ,YAAY,CAAQ;IAAG,CAAC;IAErD,MAAM,CAAC,IAAiB;QACtB,IAAI,IAAI,CAAC,YAAY;YAAE,OAAO,OAAO,CAAC;QACtC,IAAI,IAAI,CAAC,UAAU,KAAK,MAAM;YAAE,OAAO,OAAO,CAAC;QAC/C,IAAI,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC;YAAE,OAAO,OAAO,CAAC;QAChD,OAAO,KAAK,CAAC;IACf,CAAC;IAED,+DAA+D;IAC/D,QAAQ,CAAC,QAAgB;QACvB,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IAC7B,CAAC;CACF;AAED,MAAM,OAAO,YAAY;IAEJ;IACA;IAFnB,YACmB,MAAwB,EACxB,QAAkB;QADlB,WAAM,GAAN,MAAM,CAAkB;QACxB,aAAQ,GAAR,QAAQ,CAAU;IAClC,CAAC;IAEJ,kFAAkF;IAClF,KAAK,CAAC,KAAK,CAAC,IAAiB;QAC3B,QAAQ,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC;YACjC,KAAK,OAAO;gBACV,OAAO,IAAI,CAAC;YACd,KAAK,MAAM;gBACT,OAAO,KAAK,CAAC;YACf,KAAK,KAAK,CAAC,CAAC,CAAC;gBACX,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CACvC,SAAS,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,OAAO,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,GAAG,EAC3D,CAAC,KAAK,EAAE,IAAI,EAAE,QAAQ,CAAC,CACxB,CAAC;gBACF,IAAI,MAAM,KAAK,QAAQ,IAAI,IAAI,CAAC,MAAM,YAAY,uBAAuB,EAAE,CAAC;oBAC1E,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;gBAClC,CAAC;gBACD,OAAO,MAAM,KAAK,IAAI,CAAC;YACzB,CAAC;QACH,CAAC;IACH,CAAC;CACF"}

package/dist/agent/run-tracker.d.ts ADDED Viewed

@@ -0,0 +1,26 @@
+export interface TrackedRun {
+    readonly runId: string;
+    readonly agent: string;
+    readonly startedAt: number;
+    /** Paths the run created/modified, in first-seen order (for undo offers). */
+    readonly touchedPaths: string[];
+    endedAt?: number;
+    code?: number;
+    error?: string;
+}
+export declare class RunTracker {
+    private readonly runs;
+    begin(runId: string, agent: string): TrackedRun;
+    /** Record a file path a tool touched during a run (deduplicated, order-preserving). */
+    touch(runId: string, path: string): void;
+    end(runId: string, result: {
+        code?: number;
+        error?: string;
+    }): void;
+    get(runId: string): TrackedRun | undefined;
+    /** runIds still streaming — replayed in ResumeState after a reconnect. */
+    inFlight(): string[];
+    /** Most recent run (for `/undo` with no explicit runId). */
+    latest(): TrackedRun | undefined;
+}
+//# sourceMappingURL=run-tracker.d.ts.map

package/dist/agent/run-tracker.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"run-tracker.d.ts","sourceRoot":"","sources":["../../src/agent/run-tracker.ts"],"names":[],"mappings":"AAKA,MAAM,WAAW,UAAU;IACzB,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAC;IACvB,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAC;IACvB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAC;IAC3B,6EAA6E;IAC7E,QAAQ,CAAC,YAAY,EAAE,MAAM,EAAE,CAAC;IAChC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,qBAAa,UAAU;IACrB,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAiC;IAEtD,KAAK,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,UAAU;IAM/C,uFAAuF;IACvF,KAAK,CAAC,KAAK,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,IAAI;IAKxC,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE;QAAE,IAAI,CAAC,EAAE,MAAM,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,IAAI;IASnE,GAAG,CAAC,KAAK,EAAE,MAAM,GAAG,UAAU,GAAG,SAAS;IAI1C,0EAA0E;IAC1E,QAAQ,IAAI,MAAM,EAAE;IAIpB,4DAA4D;IAC5D,MAAM,IAAI,UAAU,GAAG,SAAS;CAOjC"}

package/dist/agent/run-tracker.js ADDED Viewed

@@ -0,0 +1,43 @@
+// src/agent/run-tracker.ts — tracks agent runs for /undo and reconnect/resume.
+//
+// SRP: remember which runIds are in-flight (so the StreamPort can resume them after a drop)
+// and which file paths a run touched (so `/undo runId path` can offer the right targets).
+export class RunTracker {
+    runs = new Map();
+    begin(runId, agent) {
+        const run = { runId, agent, startedAt: Date.now(), touchedPaths: [] };
+        this.runs.set(runId, run);
+        return run;
+    }
+    /** Record a file path a tool touched during a run (deduplicated, order-preserving). */
+    touch(runId, path) {
+        const run = this.runs.get(runId);
+        if (run && !run.touchedPaths.includes(path))
+            run.touchedPaths.push(path);
+    }
+    end(runId, result) {
+        const run = this.runs.get(runId);
+        if (run) {
+            run.endedAt = Date.now();
+            run.code = result.code;
+            run.error = result.error;
+        }
+    }
+    get(runId) {
+        return this.runs.get(runId);
+    }
+    /** runIds still streaming — replayed in ResumeState after a reconnect. */
+    inFlight() {
+        return [...this.runs.values()].filter((r) => r.endedAt === undefined).map((r) => r.runId);
+    }
+    /** Most recent run (for `/undo` with no explicit runId). */
+    latest() {
+        let newest;
+        for (const r of this.runs.values()) {
+            if (!newest || r.startedAt > newest.startedAt)
+                newest = r;
+        }
+        return newest;
+    }
+}
+//# sourceMappingURL=run-tracker.js.map

package/dist/agent/run-tracker.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"run-tracker.js","sourceRoot":"","sources":["../../src/agent/run-tracker.ts"],"names":[],"mappings":"AAAA,+EAA+E;AAC/E,EAAE;AACF,4FAA4F;AAC5F,0FAA0F;AAa1F,MAAM,OAAO,UAAU;IACJ,IAAI,GAAG,IAAI,GAAG,EAAsB,CAAC;IAEtD,KAAK,CAAC,KAAa,EAAE,KAAa;QAChC,MAAM,GAAG,GAAe,EAAE,KAAK,EAAE,KAAK,EAAE,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE,EAAE,YAAY,EAAE,EAAE,EAAE,CAAC;QAClF,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;QAC1B,OAAO,GAAG,CAAC;IACb,CAAC;IAED,uFAAuF;IACvF,KAAK,CAAC,KAAa,EAAE,IAAY;QAC/B,MAAM,GAAG,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QACjC,IAAI,GAAG,IAAI,CAAC,GAAG,CAAC,YAAY,CAAC,QAAQ,CAAC,IAAI,CAAC;YAAE,GAAG,CAAC,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC3E,CAAC;IAED,GAAG,CAAC,KAAa,EAAE,MAAyC;QAC1D,MAAM,GAAG,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QACjC,IAAI,GAAG,EAAE,CAAC;YACR,GAAG,CAAC,OAAO,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YACzB,GAAG,CAAC,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC;YACvB,GAAG,CAAC,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC;QAC3B,CAAC;IACH,CAAC;IAED,GAAG,CAAC,KAAa;QACf,OAAO,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;IAC9B,CAAC;IAED,0EAA0E;IAC1E,QAAQ;QACN,OAAO,CAAC,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,KAAK,SAAS,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;IAC5F,CAAC;IAED,4DAA4D;IAC5D,MAAM;QACJ,IAAI,MAA8B,CAAC;QACnC,KAAK,MAAM,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,EAAE,CAAC;YACnC,IAAI,CAAC,MAAM,IAAI,CAAC,CAAC,SAAS,GAAG,MAAM,CAAC,SAAS;gBAAE,MAAM,GAAG,CAAC,CAAC;QAC5D,CAAC;QACD,OAAO,MAAM,CAAC;IAChB,CAAC;CACF"}

package/dist/auth/device-flow.d.ts ADDED Viewed

@@ -0,0 +1,61 @@
+/** OIDC discovery document fields we use. */
+export interface OidcDiscovery {
+    issuer: string;
+    device_authorization_endpoint: string;
+    token_endpoint: string;
+    revocation_endpoint?: string;
+    jwks_uri: string;
+}
+/** RFC 8628 device-authorization response. */
+export interface DeviceAuthResponse {
+    device_code: string;
+    user_code: string;
+    verification_uri: string;
+    verification_uri_complete?: string;
+    expires_in: number;
+    interval?: number;
+}
+/** Token endpoint success response. */
+export interface TokenSet {
+    access_token: string;
+    token_type: string;
+    expires_in?: number;
+    refresh_token?: string;
+    id_token?: string;
+    scope?: string;
+    /** Absolute epoch-ms expiry computed from `expires_in` at receipt. */
+    expiresAt?: number;
+}
+export interface DeviceFlowConfig {
+    oidcIssuer: string;
+    clientId: string;
+    scopes: readonly string[];
+}
+/** Injected so the device flow stays testable and dependency-free (no global fetch coupling). */
+export type Fetch = typeof fetch;
+/** Called once with the user_code + verification URL so the renderer can prompt the user. */
+export type DevicePrompt = (info: {
+    userCode: string;
+    verificationUri: string;
+    verificationUriComplete?: string;
+    expiresIn: number;
+}) => void;
+export declare class DeviceFlow {
+    private readonly cfg;
+    private readonly fetchImpl;
+    private readonly sleep;
+    constructor(cfg: DeviceFlowConfig, fetchImpl?: Fetch, sleep?: (ms: number) => Promise<void>);
+    /** Discover the OIDC endpoints via /.well-known/openid-configuration. */
+    discover(): Promise<OidcDiscovery>;
+    /**
+     * Run the full grant: discover → request device code (with PKCE challenge) → prompt → poll.
+     * Resolves with a TokenSet (access + optional refresh/id tokens) on user approval.
+     */
+    authorize(prompt: DevicePrompt): Promise<TokenSet>;
+    /** Refresh an access token using a refresh_token grant. */
+    refresh(refreshToken: string): Promise<TokenSet>;
+    /** Revoke a token (refresh or access) at logout, if the issuer exposes a revocation endpoint. */
+    revoke(token: string): Promise<void>;
+    private poll;
+}
+//# sourceMappingURL=device-flow.d.ts.map

package/dist/auth/device-flow.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"device-flow.d.ts","sourceRoot":"","sources":["../../src/auth/device-flow.ts"],"names":[],"mappings":"AAUA,6CAA6C;AAC7C,MAAM,WAAW,aAAa;IAC5B,MAAM,EAAE,MAAM,CAAC;IACf,6BAA6B,EAAE,MAAM,CAAC;IACtC,cAAc,EAAE,MAAM,CAAC;IACvB,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,8CAA8C;AAC9C,MAAM,WAAW,kBAAkB;IACjC,WAAW,EAAE,MAAM,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,gBAAgB,EAAE,MAAM,CAAC;IACzB,yBAAyB,CAAC,EAAE,MAAM,CAAC;IACnC,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED,uCAAuC;AACvC,MAAM,WAAW,QAAQ;IACvB,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,sEAAsE;IACtE,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,gBAAgB;IAC/B,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,SAAS,MAAM,EAAE,CAAC;CAC3B;AAED,iGAAiG;AACjG,MAAM,MAAM,KAAK,GAAG,OAAO,KAAK,CAAC;AAEjC,6FAA6F;AAC7F,MAAM,MAAM,YAAY,GAAG,CAAC,IAAI,EAAE;IAChC,QAAQ,EAAE,MAAM,CAAC;IACjB,eAAe,EAAE,MAAM,CAAC;IACxB,uBAAuB,CAAC,EAAE,MAAM,CAAC;IACjC,SAAS,EAAE,MAAM,CAAC;CACnB,KAAK,IAAI,CAAC;AAEX,qBAAa,UAAU;IAEnB,OAAO,CAAC,QAAQ,CAAC,GAAG;IACpB,OAAO,CAAC,QAAQ,CAAC,SAAS;IAC1B,OAAO,CAAC,QAAQ,CAAC,KAAK;gBAFL,GAAG,EAAE,gBAAgB,EACrB,SAAS,GAAE,KAAa,EACxB,KAAK,GAAE,CAAC,EAAE,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAgB;IAGtE,yEAAyE;IACnE,QAAQ,IAAI,OAAO,CAAC,aAAa,CAAC;IAYxC;;;OAGG;IACG,SAAS,CAAC,MAAM,EAAE,YAAY,GAAG,OAAO,CAAC,QAAQ,CAAC;IA+BxD,2DAA2D;IACrD,OAAO,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO,CAAC,QAAQ,CAAC;IAkBtD,iGAAiG;IAC3F,MAAM,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;YAY5B,IAAI;CAyCnB"}