@hopping-dev/hub 0.1.0

package/dist/local/notifier.js

@@ -0,0 +1,110 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.showNotification = showNotification;
+const child_process_1 = require("child_process");
+const os = __importStar(require("os"));
+const sanitize_1 = require("./sanitize");
+/**
+ * 發送跨平台桌面通知（fire-and-forget）。
+ *
+ * - macOS：osascript display notification
+ * - Linux：notify-send
+ * - Windows：PowerShell BalloonTip
+ *
+ * 任何失敗（命令不存在、無 GUI session、權限拒絕）均靜默降級（logger.warn），
+ * 不影響審核流程。
+ */
+async function showNotification(opts, logger) {
+    const platform = os.platform();
+    try {
+        await runNotification(opts, platform);
+    }
+    catch (err) {
+        logger.warn('showNotification: failed (non-fatal)', {
+            platform,
+            error: err instanceof Error ? err.message : String(err),
+        });
+    }
+}
+function runNotification(opts, platform) {
+    return new Promise((resolve, reject) => {
+        if (platform === 'darwin') {
+            const { title, subtitle = 'Approval Required', message, soundEnabled = true } = opts;
+            const sound = soundEnabled ? ` sound name "Glass"` : '';
+            const script = `display notification "${(0, sanitize_1.sanitizeAppleScript)(message)}" with title "${(0, sanitize_1.sanitizeAppleScript)(title)}" subtitle "${(0, sanitize_1.sanitizeAppleScript)(subtitle)}"${sound}`;
+            (0, child_process_1.execFile)('osascript', ['-e', script], (err) => {
+                if (err)
+                    reject(err);
+                else
+                    resolve();
+            });
+            return;
+        }
+        if (platform === 'linux') {
+            const { title, message } = opts;
+            (0, child_process_1.execFile)('notify-send', ['-u', 'critical', title, message], (err) => {
+                if (err)
+                    reject(err);
+                else
+                    resolve();
+            });
+            return;
+        }
+        if (platform === 'win32') {
+            const title = (0, sanitize_1.sanitizePowerShell)(opts.title);
+            const message = (0, sanitize_1.sanitizePowerShell)(opts.message);
+            const script = [
+                '[void][System.Reflection.Assembly]::LoadWithPartialName("System.Windows.Forms")',
+                '$notify = New-Object System.Windows.Forms.NotifyIcon',
+                '$notify.Icon = [System.Drawing.SystemIcons]::Information',
+                '$notify.Visible = $true',
+                `$notify.ShowBalloonTip(5000, "${title}", "${message}", [System.Windows.Forms.ToolTipIcon]::Info)`,
+                'Start-Sleep -Milliseconds 500',
+                '$notify.Dispose()',
+            ].join('; ');
+            (0, child_process_1.execFile)('powershell', ['-NoProfile', '-Command', script], (err) => {
+                if (err)
+                    reject(err);
+                else
+                    resolve();
+            });
+            return;
+        }
+        // 不支援的平台：靜默略過
+        resolve();
+    });
+}
+//# sourceMappingURL=notifier.js.map

package/dist/local/notifier.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"notifier.js","sourceRoot":"","sources":["../../src/local/notifier.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA0BA,4CAUC;AApCD,iDAAyC;AACzC,uCAAyB;AAEzB,yCAAqE;AAarE;;;;;;;;;GASG;AACI,KAAK,UAAU,gBAAgB,CAAC,IAAyB,EAAE,MAAc;IAC9E,MAAM,QAAQ,GAAG,EAAE,CAAC,QAAQ,EAAE,CAAC;IAC/B,IAAI,CAAC;QACH,MAAM,eAAe,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;IACxC,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,CAAC,IAAI,CAAC,sCAAsC,EAAE;YAClD,QAAQ;YACR,KAAK,EAAE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC;SACxD,CAAC,CAAC;IACL,CAAC;AACH,CAAC;AAED,SAAS,eAAe,CAAC,IAAyB,EAAE,QAAgB;IAClE,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,IAAI,QAAQ,KAAK,QAAQ,EAAE,CAAC;YAC1B,MAAM,EAAE,KAAK,EAAE,QAAQ,GAAG,mBAAmB,EAAE,OAAO,EAAE,YAAY,GAAG,IAAI,EAAE,GAAG,IAAI,CAAC;YACrF,MAAM,KAAK,GAAG,YAAY,CAAC,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,EAAE,CAAC;YACxD,MAAM,MAAM,GAAG,yBAAyB,IAAA,8BAAmB,EAAC,OAAO,CAAC,iBAAiB,IAAA,8BAAmB,EAAC,KAAK,CAAC,eAAe,IAAA,8BAAmB,EAAC,QAAQ,CAAC,IAAI,KAAK,EAAE,CAAC;YACvK,IAAA,wBAAQ,EAAC,WAAW,EAAE,CAAC,IAAI,EAAE,MAAM,CAAC,EAAE,CAAC,GAAiB,EAAE,EAAE;gBAC1D,IAAI,GAAG;oBAAE,MAAM,CAAC,GAAG,CAAC,CAAC;;oBAChB,OAAO,EAAE,CAAC;YACjB,CAAC,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QAED,IAAI,QAAQ,KAAK,OAAO,EAAE,CAAC;YACzB,MAAM,EAAE,KAAK,EAAE,OAAO,EAAE,GAAG,IAAI,CAAC;YAChC,IAAA,wBAAQ,EAAC,aAAa,EAAE,CAAC,IAAI,EAAE,UAAU,EAAE,KAAK,EAAE,OAAO,CAAC,EAAE,CAAC,GAAG,EAAE,EAAE;gBAClE,IAAI,GAAG;oBAAE,MAAM,CAAC,GAAG,CAAC,CAAC;;oBAChB,OAAO,EAAE,CAAC;YACjB,CAAC,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QAED,IAAI,QAAQ,KAAK,OAAO,EAAE,CAAC;YACzB,MAAM,KAAK,GAAG,IAAA,6BAAkB,EAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC7C,MAAM,OAAO,GAAG,IAAA,6BAAkB,EAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YACjD,MAAM,MAAM,GAAG;gBACb,iFAAiF;gBACjF,sDAAsD;gBACtD,0DAA0D;gBAC1D,yBAAyB;gBACzB,iCAAiC,KAAK,OAAO,OAAO,8CAA8C;gBAClG,+BAA+B;gBAC/B,mBAAmB;aACpB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACb,IAAA,wBAAQ,EAAC,YAAY,EAAE,CAAC,YAAY,EAAE,UAAU,EAAE,MAAM,CAAC,EAAE,CAAC,GAAG,EAAE,EAAE;gBACjE,IAAI,GAAG;oBAAE,MAAM,CAAC,GAAG,CAAC,CAAC;;oBAChB,OAAO,EAAE,CAAC;YACjB,CAAC,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QAED,cAAc;QACd,OAAO,EAAE,CAAC;IACZ,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/local/sanitize.d.ts

@@ -0,0 +1,20 @@
+/**
+ * 跨平台字串安全化工具（REQ-HUB-032/033）
+ *
+ * 用於 notifier.ts 和 approval-dialog.ts 中，
+ * 確保用戶輸入不會破壞 shell 命令語法或造成注入。
+ */
+/**
+ * 安全化字串以用於 AppleScript 字串字面值（雙引號界定）。
+ * - 反斜線 → 正斜線（避免轉義問題）
+ * - 雙引號 → 單引號（避免字串提前終止）
+ */
+export declare function sanitizeAppleScript(s: string): string;
+/**
+ * 安全化字串以用於 PowerShell 雙引號字串。
+ * - 雙引號 → 單引號（避免字串提前終止）
+ * - 反引號移除（PowerShell 轉義字元）
+ * - `$` 移除（避免變數展開和子表達式執行，如 `$env:PATH` 或 `$(cmd)`）
+ */
+export declare function sanitizePowerShell(s: string): string;
+//# sourceMappingURL=sanitize.d.ts.map

package/dist/local/sanitize.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sanitize.d.ts","sourceRoot":"","sources":["../../src/local/sanitize.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH;;;;GAIG;AACH,wBAAgB,mBAAmB,CAAC,CAAC,EAAE,MAAM,GAAG,MAAM,CAErD;AAED;;;;;GAKG;AACH,wBAAgB,kBAAkB,CAAC,CAAC,EAAE,MAAM,GAAG,MAAM,CAEpD"}

package/dist/local/sanitize.js

@@ -0,0 +1,28 @@
+"use strict";
+/**
+ * 跨平台字串安全化工具（REQ-HUB-032/033）
+ *
+ * 用於 notifier.ts 和 approval-dialog.ts 中，
+ * 確保用戶輸入不會破壞 shell 命令語法或造成注入。
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.sanitizeAppleScript = sanitizeAppleScript;
+exports.sanitizePowerShell = sanitizePowerShell;
+/**
+ * 安全化字串以用於 AppleScript 字串字面值（雙引號界定）。
+ * - 反斜線 → 正斜線（避免轉義問題）
+ * - 雙引號 → 單引號（避免字串提前終止）
+ */
+function sanitizeAppleScript(s) {
+    return s.replace(/\\/g, '/').replace(/"/g, "'");
+}
+/**
+ * 安全化字串以用於 PowerShell 雙引號字串。
+ * - 雙引號 → 單引號（避免字串提前終止）
+ * - 反引號移除（PowerShell 轉義字元）
+ * - `$` 移除（避免變數展開和子表達式執行，如 `$env:PATH` 或 `$(cmd)`）
+ */
+function sanitizePowerShell(s) {
+    return s.replace(/"/g, "'").replace(/`/g, '').replace(/\$/g, '');
+}
+//# sourceMappingURL=sanitize.js.map

package/dist/local/sanitize.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sanitize.js","sourceRoot":"","sources":["../../src/local/sanitize.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;AAOH,kDAEC;AAQD,gDAEC;AAjBD;;;;GAIG;AACH,SAAgB,mBAAmB,CAAC,CAAS;IAC3C,OAAO,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;AAClD,CAAC;AAED;;;;;GAKG;AACH,SAAgB,kBAAkB,CAAC,CAAS;IAC1C,OAAO,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;AACnE,CAAC"}

package/dist/mcp/file-extractor.d.ts

@@ -0,0 +1,11 @@
+/**
+ * Extract file paths from toolInput based on tool type.
+ *
+ * - For Write/Edit/Read/Glob/Grep/NotebookEdit: extract from `file_path`, `path`, `notebook_path`
+ * - For Bash: use regex to find paths in `command` string
+ * - For other tools: scan string values for path-like patterns
+ *
+ * @returns Deduplicated array of file paths (may be empty)
+ */
+export declare function extractFilePaths(toolName: string, toolInput: Record<string, unknown>): string[];
+//# sourceMappingURL=file-extractor.d.ts.map

package/dist/mcp/file-extractor.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"file-extractor.d.ts","sourceRoot":"","sources":["../../src/mcp/file-extractor.ts"],"names":[],"mappings":"AAwBA;;;;;;;;GAQG;AACH,wBAAgB,gBAAgB,CAAC,QAAQ,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,MAAM,EAAE,CA+B/F"}

package/dist/mcp/file-extractor.js

@@ -0,0 +1,74 @@
+"use strict";
+// ============================================
+// File Path Extractor
+// Extracts relevant file paths from toolInput
+// ============================================
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.extractFilePaths = extractFilePaths;
+/**
+ * Regex for extracting file paths from shell commands.
+ * Matches absolute paths (/...) and relative paths (./ or ../)
+ * Does not attempt full shell parsing — extracts obvious paths only.
+ */
+const FILE_PATH_REGEX = /(?:^|\s)((?:\/|\.\.?\/)[^\s;|&><'"]+)/g;
+/**
+ * Tools that have a direct file_path or path field in toolInput.
+ */
+const DIRECT_PATH_TOOLS = new Set([
+    'Write',
+    'Edit',
+    'Read',
+    'Glob',
+    'Grep',
+    'NotebookEdit',
+]);
+/**
+ * Extract file paths from toolInput based on tool type.
+ *
+ * - For Write/Edit/Read/Glob/Grep/NotebookEdit: extract from `file_path`, `path`, `notebook_path`
+ * - For Bash: use regex to find paths in `command` string
+ * - For other tools: scan string values for path-like patterns
+ *
+ * @returns Deduplicated array of file paths (may be empty)
+ */
+function extractFilePaths(toolName, toolInput) {
+    const paths = new Set();
+    if (DIRECT_PATH_TOOLS.has(toolName)) {
+        // Direct extraction from known fields
+        for (const key of ['file_path', 'path', 'notebook_path']) {
+            const val = toolInput[key];
+            if (typeof val === 'string' && val.length > 0) {
+                paths.add(val);
+            }
+        }
+        return [...paths];
+    }
+    if (toolName === 'Bash') {
+        const command = toolInput['command'];
+        if (typeof command === 'string') {
+            extractPathsFromString(command, paths);
+        }
+        return [...paths];
+    }
+    // Generic: scan all string values
+    for (const key of Object.keys(toolInput)) {
+        const val = toolInput[key];
+        if (typeof val === 'string' && val.length > 0) {
+            extractPathsFromString(val, paths);
+        }
+    }
+    return [...paths];
+}
+function extractPathsFromString(text, paths) {
+    let match;
+    // Reset regex state
+    FILE_PATH_REGEX.lastIndex = 0;
+    while ((match = FILE_PATH_REGEX.exec(text)) !== null) {
+        const p = match[1].trim();
+        // Filter out common false positives
+        if (p.length > 1 && !p.startsWith('//')) {
+            paths.add(p);
+        }
+    }
+}
+//# sourceMappingURL=file-extractor.js.map

package/dist/mcp/file-extractor.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"file-extractor.js","sourceRoot":"","sources":["../../src/mcp/file-extractor.ts"],"names":[],"mappings":";AAAA,+CAA+C;AAC/C,sBAAsB;AACtB,8CAA8C;AAC9C,+CAA+C;;AA8B/C,4CA+BC;AA3DD;;;;GAIG;AACH,MAAM,eAAe,GAAG,wCAAwC,CAAC;AAEjE;;GAEG;AACH,MAAM,iBAAiB,GAAwB,IAAI,GAAG,CAAC;IACrD,OAAO;IACP,MAAM;IACN,MAAM;IACN,MAAM;IACN,MAAM;IACN,cAAc;CACf,CAAC,CAAC;AAEH;;;;;;;;GAQG;AACH,SAAgB,gBAAgB,CAAC,QAAgB,EAAE,SAAkC;IACnF,MAAM,KAAK,GAAG,IAAI,GAAG,EAAU,CAAC;IAEhC,IAAI,iBAAiB,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;QACpC,sCAAsC;QACtC,KAAK,MAAM,GAAG,IAAI,CAAC,WAAW,EAAE,MAAM,EAAE,eAAe,CAAC,EAAE,CAAC;YACzD,MAAM,GAAG,GAAG,SAAS,CAAC,GAAG,CAAC,CAAC;YAC3B,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,GAAG,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAC9C,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YACjB,CAAC;QACH,CAAC;QACD,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC;IACpB,CAAC;IAED,IAAI,QAAQ,KAAK,MAAM,EAAE,CAAC;QACxB,MAAM,OAAO,GAAG,SAAS,CAAC,SAAS,CAAC,CAAC;QACrC,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;YAChC,sBAAsB,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;QACzC,CAAC;QACD,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC;IACpB,CAAC;IAED,kCAAkC;IAClC,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC;QACzC,MAAM,GAAG,GAAG,SAAS,CAAC,GAAG,CAAC,CAAC;QAC3B,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,GAAG,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC9C,sBAAsB,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;QACrC,CAAC;IACH,CAAC;IAED,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC;AACpB,CAAC;AAED,SAAS,sBAAsB,CAAC,IAAY,EAAE,KAAkB;IAC9D,IAAI,KAA6B,CAAC;IAClC,oBAAoB;IACpB,eAAe,CAAC,SAAS,GAAG,CAAC,CAAC;IAC9B,OAAO,CAAC,KAAK,GAAG,eAAe,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;QACrD,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QAC1B,oCAAoC;QACpC,IAAI,CAAC,CAAC,MAAM,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;YACxC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;QACf,CAAC;IACH,CAAC;AACH,CAAC"}

package/dist/mcp/risk-level.d.ts

@@ -0,0 +1,44 @@
+/**
+ * Risk Level 評估模組
+ *
+ * 從 tools.ts 提取的共用函式，供 IpcWatcher 和 hopping.check 共用。
+ * 負責：
+ *   1. deriveRiskLevel — 依 PolicyEngine finalAction + content pattern 推導風險等級
+ *   2. CRITICAL_PATTERNS — 高風險內容匹配（rm -rf, DROP TABLE 等）
+ *   3. OPERATION_TYPE_DESCRIPTIONS — OperationType → 人類可讀描述
+ */
+import type { PolicyAction, RiskLevel, ProgressUpdatePayload } from '@hopping/shared';
+/** OperationType → 可讀描述映射（供 toolContext.description） */
+export declare const OPERATION_TYPE_DESCRIPTIONS: Record<string, string>;
+/**
+ * Content patterns that indicate critical risk level.
+ * These override the policy-based risk level when detected.
+ */
+export declare const CRITICAL_PATTERNS: ReadonlyArray<{
+    test: RegExp;
+    label: string;
+}>;
+/**
+ * 推導風險等級
+ *
+ * 1. 先掃描 content 是否匹配 CRITICAL_PATTERNS（critical 覆蓋所有 policy 判斷）
+ * 2. 再依 PolicyEngine finalAction 推導：ALLOW → low, ASK → medium, WARN → high
+ *
+ * @param finalAction - PolicyEngine 評估結果
+ * @param toolName - 被審核的工具名稱
+ * @param toolInput - 工具參數
+ */
+export declare function deriveRiskLevel(finalAction: PolicyAction, toolName: string, toolInput: Record<string, unknown>): RiskLevel;
+/**
+ * 建構 YOLO 觀測模式的 progress_update payload
+ * 供 tools.ts（handleCheck）和 watcher.ts（handlePendingFile）共用
+ */
+export declare function buildYoloProgressPayload(params: {
+    agentId: string;
+    sessionId: string;
+    toolName: string;
+    riskLevel: RiskLevel;
+    timestamp: string;
+    filePaths?: string[];
+}): ProgressUpdatePayload;
+//# sourceMappingURL=risk-level.d.ts.map

package/dist/mcp/risk-level.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"risk-level.d.ts","sourceRoot":"","sources":["../../src/mcp/risk-level.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,KAAK,EAAE,YAAY,EAAE,SAAS,EAAE,qBAAqB,EAAE,MAAM,iBAAiB,CAAC;AAMtF,wDAAwD;AACxD,eAAO,MAAM,2BAA2B,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAO9D,CAAC;AAMF;;;GAGG;AACH,eAAO,MAAM,iBAAiB,EAAE,aAAa,CAAC;IAAE,IAAI,EAAE,MAAM,CAAC;IAAC,KAAK,EAAE,MAAM,CAAA;CAAE,CAY5E,CAAC;AAiCF;;;;;;;;;GASG;AACH,wBAAgB,eAAe,CAC7B,WAAW,EAAE,YAAY,EACzB,QAAQ,EAAE,MAAM,EAChB,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GACjC,SAAS,CAoBX;AAMD;;;GAGG;AACH,wBAAgB,wBAAwB,CAAC,MAAM,EAAE;IAC/C,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,SAAS,CAAC;IACrB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,CAAC,EAAE,MAAM,EAAE,CAAC;CACtB,GAAG,qBAAqB,CAYxB"}

package/dist/mcp/risk-level.js

@@ -0,0 +1,127 @@
+"use strict";
+/**
+ * Risk Level 評估模組
+ *
+ * 從 tools.ts 提取的共用函式，供 IpcWatcher 和 hopping.check 共用。
+ * 負責：
+ *   1. deriveRiskLevel — 依 PolicyEngine finalAction + content pattern 推導風險等級
+ *   2. CRITICAL_PATTERNS — 高風險內容匹配（rm -rf, DROP TABLE 等）
+ *   3. OPERATION_TYPE_DESCRIPTIONS — OperationType → 人類可讀描述
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.CRITICAL_PATTERNS = exports.OPERATION_TYPE_DESCRIPTIONS = void 0;
+exports.deriveRiskLevel = deriveRiskLevel;
+exports.buildYoloProgressPayload = buildYoloProgressPayload;
+// ============================================
+// Operation Type Descriptions (REQ-HUB-002 toolContext)
+// ============================================
+/** OperationType → 可讀描述映射（供 toolContext.description） */
+exports.OPERATION_TYPE_DESCRIPTIONS = {
+    shell_execute: 'Execute shell command',
+    file_write: 'Write/edit file',
+    file_read: 'Read file',
+    network_read: 'Network request',
+    sensitive_action: 'Sensitive operation',
+    unknown: 'Unknown operation',
+};
+// ============================================
+// Critical Content Patterns
+// ============================================
+/**
+ * Content patterns that indicate critical risk level.
+ * These override the policy-based risk level when detected.
+ */
+exports.CRITICAL_PATTERNS = [
+    { test: /\brm\s+-[a-z]*r[a-z]*f\s+\//i, label: 'rm -rf /' },
+    { test: /\bDROP\s+(?:DATABASE|TABLE|SCHEMA)\b/i, label: 'DROP DATABASE/TABLE' },
+    { test: /\bTRUNCATE\s+TABLE\b/i, label: 'TRUNCATE TABLE' },
+    {
+        test: /(?:^|\s|\/)\.env(?!\.(?:example|sample|template)\b)(?:\.\w+)?\b/,
+        label: '.env file access',
+    },
+    { test: /\b(?:id_rsa|id_ed25519|\.pem)\b/, label: 'private key access' },
+    { test: /\bgit\s+push\s+.*--force\b/i, label: 'git force push' },
+    { test: /\bformat\s+[A-Za-z]:\b/i, label: 'disk format' },
+    { test: /\bmkfs\b/i, label: 'filesystem create' },
+];
+// ============================================
+// Risk Level Derivation
+// ============================================
+/**
+ * Recursively collect all string values from a nested structure.
+ * Avoids JSON.stringify to prevent JSON syntax characters interfering with regex matching.
+ */
+function collectStrings(value, out) {
+    if (typeof value === 'string') {
+        out.push(value);
+    }
+    else if (Array.isArray(value)) {
+        for (const item of value) {
+            collectStrings(item, out);
+        }
+    }
+    else if (value !== null && typeof value === 'object') {
+        for (const key of Object.keys(value)) {
+            collectStrings(value[key], out);
+        }
+    }
+}
+/**
+ * Build a single string from tool input for content-based risk scanning.
+ */
+function buildContentString(toolName, toolInput) {
+    const parts = [toolName];
+    collectStrings(toolInput, parts);
+    return parts.join(' ');
+}
+/**
+ * 推導風險等級
+ *
+ * 1. 先掃描 content 是否匹配 CRITICAL_PATTERNS（critical 覆蓋所有 policy 判斷）
+ * 2. 再依 PolicyEngine finalAction 推導：ALLOW → low, ASK → medium, WARN → high
+ *
+ * @param finalAction - PolicyEngine 評估結果
+ * @param toolName - 被審核的工具名稱
+ * @param toolInput - 工具參數
+ */
+function deriveRiskLevel(finalAction, toolName, toolInput) {
+    // Check for critical content patterns first
+    const contentToScan = buildContentString(toolName, toolInput);
+    for (const { test } of exports.CRITICAL_PATTERNS) {
+        if (test.test(contentToScan)) {
+            return 'critical';
+        }
+    }
+    // Fall back to policy-based risk level
+    switch (finalAction) {
+        case 'ALLOW':
+            return 'low';
+        case 'ASK':
+            return 'medium';
+        case 'WARN':
+            return 'high';
+        default:
+            return 'medium';
+    }
+}
+// ============================================
+// YOLO Observe Mode Helpers
+// ============================================
+/**
+ * 建構 YOLO 觀測模式的 progress_update payload
+ * 供 tools.ts（handleCheck）和 watcher.ts（handlePendingFile）共用
+ */
+function buildYoloProgressPayload(params) {
+    return {
+        agentId: params.agentId,
+        sessionId: params.sessionId,
+        message: `🔍 [YOLO] ${params.toolName} auto-approved (${params.riskLevel})`,
+        timestamp: params.timestamp,
+        messageType: 'yolo_observation',
+        toolName: params.toolName,
+        riskLevel: params.riskLevel,
+        decision: 'auto_approved',
+        filePaths: params.filePaths,
+    };
+}
+//# sourceMappingURL=risk-level.js.map

package/dist/mcp/risk-level.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"risk-level.js","sourceRoot":"","sources":["../../src/mcp/risk-level.ts"],"names":[],"mappings":";AAAA;;;;;;;;GAQG;;;AAiFH,0CAwBC;AAUD,4DAmBC;AAlID,+CAA+C;AAC/C,wDAAwD;AACxD,+CAA+C;AAE/C,wDAAwD;AAC3C,QAAA,2BAA2B,GAA2B;IACjE,aAAa,EAAE,uBAAuB;IACtC,UAAU,EAAE,iBAAiB;IAC7B,SAAS,EAAE,WAAW;IACtB,YAAY,EAAE,iBAAiB;IAC/B,gBAAgB,EAAE,qBAAqB;IACvC,OAAO,EAAE,mBAAmB;CAC7B,CAAC;AAEF,+CAA+C;AAC/C,4BAA4B;AAC5B,+CAA+C;AAE/C;;;GAGG;AACU,QAAA,iBAAiB,GAAmD;IAC/E,EAAE,IAAI,EAAE,8BAA8B,EAAE,KAAK,EAAE,UAAU,EAAE;IAC3D,EAAE,IAAI,EAAE,uCAAuC,EAAE,KAAK,EAAE,qBAAqB,EAAE;IAC/E,EAAE,IAAI,EAAE,uBAAuB,EAAE,KAAK,EAAE,gBAAgB,EAAE;IAC1D;QACE,IAAI,EAAE,iEAAiE;QACvE,KAAK,EAAE,kBAAkB;KAC1B;IACD,EAAE,IAAI,EAAE,iCAAiC,EAAE,KAAK,EAAE,oBAAoB,EAAE;IACxE,EAAE,IAAI,EAAE,6BAA6B,EAAE,KAAK,EAAE,gBAAgB,EAAE;IAChE,EAAE,IAAI,EAAE,yBAAyB,EAAE,KAAK,EAAE,aAAa,EAAE;IACzD,EAAE,IAAI,EAAE,WAAW,EAAE,KAAK,EAAE,mBAAmB,EAAE;CAClD,CAAC;AAEF,+CAA+C;AAC/C,wBAAwB;AACxB,+CAA+C;AAE/C;;;GAGG;AACH,SAAS,cAAc,CAAC,KAAc,EAAE,GAAa;IACnD,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC9B,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IAClB,CAAC;SAAM,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QAChC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,cAAc,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;QAC5B,CAAC;IACH,CAAC;SAAM,IAAI,KAAK,KAAK,IAAI,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QACvD,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,KAAgC,CAAC,EAAE,CAAC;YAChE,cAAc,CAAE,KAAiC,CAAC,GAAG,CAAC,EAAE,GAAG,CAAC,CAAC;QAC/D,CAAC;IACH,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,kBAAkB,CAAC,QAAgB,EAAE,SAAkC;IAC9E,MAAM,KAAK,GAAa,CAAC,QAAQ,CAAC,CAAC;IACnC,cAAc,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC;IACjC,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AACzB,CAAC;AAED;;;;;;;;;GASG;AACH,SAAgB,eAAe,CAC7B,WAAyB,EACzB,QAAgB,EAChB,SAAkC;IAElC,4CAA4C;IAC5C,MAAM,aAAa,GAAG,kBAAkB,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;IAC9D,KAAK,MAAM,EAAE,IAAI,EAAE,IAAI,yBAAiB,EAAE,CAAC;QACzC,IAAI,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,EAAE,CAAC;YAC7B,OAAO,UAAU,CAAC;QACpB,CAAC;IACH,CAAC;IAED,uCAAuC;IACvC,QAAQ,WAAW,EAAE,CAAC;QACpB,KAAK,OAAO;YACV,OAAO,KAAK,CAAC;QACf,KAAK,KAAK;YACR,OAAO,QAAQ,CAAC;QAClB,KAAK,MAAM;YACT,OAAO,MAAM,CAAC;QAChB;YACE,OAAO,QAAQ,CAAC;IACpB,CAAC;AACH,CAAC;AAED,+CAA+C;AAC/C,4BAA4B;AAC5B,+CAA+C;AAE/C;;;GAGG;AACH,SAAgB,wBAAwB,CAAC,MAOxC;IACC,OAAO;QACL,OAAO,EAAE,MAAM,CAAC,OAAO;QACvB,SAAS,EAAE,MAAM,CAAC,SAAS;QAC3B,OAAO,EAAE,aAAa,MAAM,CAAC,QAAQ,mBAAmB,MAAM,CAAC,SAAS,GAAG;QAC3E,SAAS,EAAE,MAAM,CAAC,SAAS;QAC3B,WAAW,EAAE,kBAAkB;QAC/B,QAAQ,EAAE,MAAM,CAAC,QAAQ;QACzB,SAAS,EAAE,MAAM,CAAC,SAAS;QAC3B,QAAQ,EAAE,eAAe;QACzB,SAAS,EAAE,MAAM,CAAC,SAAS;KAC5B,CAAC;AACJ,CAAC"}

package/dist/mcp/schemas.d.ts

@@ -0,0 +1,83 @@
+import { z } from 'zod';
+export declare const HoppingCheckInputSchema: z.ZodObject<{
+    toolName: z.ZodString;
+    toolInput: z.ZodRecord<z.ZodString, z.ZodUnknown>;
+    sessionId: z.ZodOptional<z.ZodString>;
+    cwd: z.ZodOptional<z.ZodString>;
+    context: z.ZodOptional<z.ZodObject<{
+        recentFiles: z.ZodOptional<z.ZodArray<z.ZodString>>;
+        branch: z.ZodOptional<z.ZodString>;
+        project: z.ZodOptional<z.ZodString>;
+        taskDescription: z.ZodOptional<z.ZodString>;
+        reasoning: z.ZodOptional<z.ZodString>;
+        userPrompt: z.ZodOptional<z.ZodString>;
+    }, z.core.$strip>>;
+}, z.core.$strip>;
+export declare const HoppingReportInputSchema: z.ZodObject<{
+    toolName: z.ZodString;
+    toolParams: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodUnknown>>;
+    result: z.ZodOptional<z.ZodString>;
+    duration: z.ZodOptional<z.ZodNumber>;
+    success: z.ZodOptional<z.ZodBoolean>;
+    filePaths: z.ZodOptional<z.ZodArray<z.ZodString>>;
+    sessionId: z.ZodOptional<z.ZodString>;
+    agentType: z.ZodOptional<z.ZodString>;
+    context: z.ZodOptional<z.ZodObject<{
+        branch: z.ZodOptional<z.ZodString>;
+        project: z.ZodOptional<z.ZodString>;
+        cwd: z.ZodOptional<z.ZodString>;
+        taskCompleted: z.ZodOptional<z.ZodBoolean>;
+    }, z.core.$strip>>;
+}, z.core.$strip>;
+export declare const HoppingStatusInputSchema: z.ZodObject<{
+    query: z.ZodOptional<z.ZodEnum<{
+        pending: "pending";
+        sessions: "sessions";
+        stats: "stats";
+        all: "all";
+    }>>;
+    agentId: z.ZodOptional<z.ZodString>;
+}, z.core.$strip>;
+export declare const HoppingPairInputSchema: z.ZodObject<{
+    pairingCode: z.ZodString;
+    cloudUrl: z.ZodOptional<z.ZodString>;
+}, z.core.$strip>;
+export declare const HoppingRespondInputSchema: z.ZodObject<{
+    approvalId: z.ZodString;
+    decision: z.ZodEnum<{
+        approved: "approved";
+        denied: "denied";
+    }>;
+    reason: z.ZodOptional<z.ZodString>;
+}, z.core.$strip>;
+export declare const HoppingAskInputSchema: z.ZodObject<{
+    question: z.ZodString;
+    responseType: z.ZodEnum<{
+        freetext: "freetext";
+        choice: "choice";
+    }>;
+    options: z.ZodOptional<z.ZodArray<z.ZodObject<{
+        id: z.ZodString;
+        label: z.ZodString;
+        description: z.ZodOptional<z.ZodString>;
+        isOther: z.ZodOptional<z.ZodBoolean>;
+    }, z.core.$strip>>>;
+    placeholder: z.ZodOptional<z.ZodString>;
+    context: z.ZodOptional<z.ZodObject<{
+        taskDescription: z.ZodOptional<z.ZodString>;
+        reasoning: z.ZodOptional<z.ZodString>;
+    }, z.core.$strip>>;
+}, z.core.$strip>;
+export declare const HoppingModeInputSchema: z.ZodObject<{
+    mode: z.ZodEnum<{
+        local: "local";
+        away: "away";
+    }>;
+}, z.core.$strip>;
+/** Backend 配對 API 回傳的 runtime 驗證 schema */
+export declare const PairApiResponseSchema: z.ZodObject<{
+    agentId: z.ZodString;
+    name: z.ZodString;
+    token: z.ZodString;
+}, z.core.$strip>;
+//# sourceMappingURL=schemas.d.ts.map

package/dist/mcp/schemas.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"schemas.d.ts","sourceRoot":"","sources":["../../src/mcp/schemas.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAOxB,eAAO,MAAM,uBAAuB;;;;;;;;;;;;;iBAelC,CAAC;AAEH,eAAO,MAAM,wBAAwB;;;;;;;;;;;;;;;iBAiBnC,CAAC;AAEH,eAAO,MAAM,wBAAwB;;;;;;;;iBAGnC,CAAC;AAEH,eAAO,MAAM,sBAAsB;;;iBAGjC,CAAC;AAEH,eAAO,MAAM,yBAAyB;;;;;;;iBAIpC,CAAC;AAEH,eAAO,MAAM,qBAAqB;;;;;;;;;;;;;;;;;iBAoBhC,CAAC;AAEH,eAAO,MAAM,sBAAsB;;;;;iBAEjC,CAAC;AAEH,2CAA2C;AAC3C,eAAO,MAAM,qBAAqB;;;;iBAIhC,CAAC"}

package/dist/mcp/schemas.js

@@ -0,0 +1,84 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PairApiResponseSchema = exports.HoppingModeInputSchema = exports.HoppingAskInputSchema = exports.HoppingRespondInputSchema = exports.HoppingPairInputSchema = exports.HoppingStatusInputSchema = exports.HoppingReportInputSchema = exports.HoppingCheckInputSchema = void 0;
+const zod_1 = require("zod");
+// ============================================
+// Zod schemas for MCP tool input validation
+// Mirrors shared/types.ts interfaces
+// ============================================
+exports.HoppingCheckInputSchema = zod_1.z.object({
+    toolName: zod_1.z.string(),
+    toolInput: zod_1.z.record(zod_1.z.string(), zod_1.z.unknown()),
+    sessionId: zod_1.z.string().optional(),
+    cwd: zod_1.z.string().optional(),
+    context: zod_1.z
+        .object({
+        recentFiles: zod_1.z.array(zod_1.z.string()).optional(),
+        branch: zod_1.z.string().optional(),
+        project: zod_1.z.string().optional(),
+        taskDescription: zod_1.z.string().optional(),
+        reasoning: zod_1.z.string().optional(),
+        userPrompt: zod_1.z.string().optional(),
+    })
+        .optional(),
+});
+exports.HoppingReportInputSchema = zod_1.z.object({
+    toolName: zod_1.z.string(),
+    toolParams: zod_1.z.record(zod_1.z.string(), zod_1.z.unknown()).optional(),
+    result: zod_1.z.string().optional(),
+    duration: zod_1.z.number().optional(),
+    success: zod_1.z.boolean().optional(),
+    filePaths: zod_1.z.array(zod_1.z.string()).optional(),
+    sessionId: zod_1.z.string().optional(),
+    agentType: zod_1.z.string().optional(),
+    context: zod_1.z
+        .object({
+        branch: zod_1.z.string().optional(),
+        project: zod_1.z.string().optional(),
+        cwd: zod_1.z.string().optional(),
+        taskCompleted: zod_1.z.boolean().optional(),
+    })
+        .optional(),
+});
+exports.HoppingStatusInputSchema = zod_1.z.object({
+    query: zod_1.z.enum(['sessions', 'pending', 'stats', 'all']).optional(),
+    agentId: zod_1.z.string().optional(),
+});
+exports.HoppingPairInputSchema = zod_1.z.object({
+    pairingCode: zod_1.z.string().min(1),
+    cloudUrl: zod_1.z.string().url().optional(),
+});
+exports.HoppingRespondInputSchema = zod_1.z.object({
+    approvalId: zod_1.z.string().min(1),
+    decision: zod_1.z.enum(['approved', 'denied']),
+    reason: zod_1.z.string().optional(),
+});
+exports.HoppingAskInputSchema = zod_1.z.object({
+    question: zod_1.z.string().min(1),
+    responseType: zod_1.z.enum(['choice', 'freetext']),
+    options: zod_1.z
+        .array(zod_1.z.object({
+        id: zod_1.z.string(),
+        label: zod_1.z.string(),
+        description: zod_1.z.string().optional(),
+        isOther: zod_1.z.boolean().optional(),
+    }))
+        .optional(),
+    placeholder: zod_1.z.string().optional(),
+    context: zod_1.z
+        .object({
+        taskDescription: zod_1.z.string().optional(),
+        reasoning: zod_1.z.string().optional(),
+    })
+        .optional(),
+});
+exports.HoppingModeInputSchema = zod_1.z.object({
+    mode: zod_1.z.enum(['local', 'away']),
+});
+/** Backend 配對 API 回傳的 runtime 驗證 schema */
+exports.PairApiResponseSchema = zod_1.z.object({
+    agentId: zod_1.z.string().min(1),
+    name: zod_1.z.string(),
+    token: zod_1.z.string().min(1),
+});
+//# sourceMappingURL=schemas.js.map

package/dist/mcp/schemas.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"schemas.js","sourceRoot":"","sources":["../../src/mcp/schemas.ts"],"names":[],"mappings":";;;AAAA,6BAAwB;AAExB,+CAA+C;AAC/C,4CAA4C;AAC5C,qCAAqC;AACrC,+CAA+C;AAElC,QAAA,uBAAuB,GAAG,OAAC,CAAC,MAAM,CAAC;IAC9C,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE;IACpB,SAAS,EAAE,OAAC,CAAC,MAAM,CAAC,OAAC,CAAC,MAAM,EAAE,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC;IAC5C,SAAS,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAChC,GAAG,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC1B,OAAO,EAAE,OAAC;SACP,MAAM,CAAC;QACN,WAAW,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;QAC3C,MAAM,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;QAC7B,OAAO,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;QAC9B,eAAe,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;QACtC,SAAS,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;QAChC,UAAU,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;KAClC,CAAC;SACD,QAAQ,EAAE;CACd,CAAC,CAAC;AAEU,QAAA,wBAAwB,GAAG,OAAC,CAAC,MAAM,CAAC;IAC/C,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE;IACpB,UAAU,EAAE,OAAC,CAAC,MAAM,CAAC,OAAC,CAAC,MAAM,EAAE,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,CAAC,QAAQ,EAAE;IACxD,MAAM,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC7B,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC/B,OAAO,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IAC/B,SAAS,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACzC,SAAS,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAChC,SAAS,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAChC,OAAO,EAAE,OAAC;SACP,MAAM,CAAC;QACN,MAAM,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;QAC7B,OAAO,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;QAC9B,GAAG,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;QAC1B,aAAa,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;KACtC,CAAC;SACD,QAAQ,EAAE;CACd,CAAC,CAAC;AAEU,QAAA,wBAAwB,GAAG,OAAC,CAAC,MAAM,CAAC;IAC/C,KAAK,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE,SAAS,EAAE,OAAO,EAAE,KAAK,CAAC,CAAC,CAAC,QAAQ,EAAE;IACjE,OAAO,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CAC/B,CAAC,CAAC;AAEU,QAAA,sBAAsB,GAAG,OAAC,CAAC,MAAM,CAAC;IAC7C,WAAW,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IAC9B,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE;CACtC,CAAC,CAAC;AAEU,QAAA,yBAAyB,GAAG,OAAC,CAAC,MAAM,CAAC;IAChD,UAAU,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IAC7B,QAAQ,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;IACxC,MAAM,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CAC9B,CAAC,CAAC;AAEU,QAAA,qBAAqB,GAAG,OAAC,CAAC,MAAM,CAAC;IAC5C,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IAC3B,YAAY,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,QAAQ,EAAE,UAAU,CAAC,CAAC;IAC5C,OAAO,EAAE,OAAC;SACP,KAAK,CACJ,OAAC,CAAC,MAAM,CAAC;QACP,EAAE,EAAE,OAAC,CAAC,MAAM,EAAE;QACd,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE;QACjB,WAAW,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;QAClC,OAAO,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;KAChC,CAAC,CACH;SACA,QAAQ,EAAE;IACb,WAAW,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAClC,OAAO,EAAE,OAAC;SACP,MAAM,CAAC;QACN,eAAe,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;QACtC,SAAS,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;KACjC,CAAC;SACD,QAAQ,EAAE;CACd,CAAC,CAAC;AAEU,QAAA,sBAAsB,GAAG,OAAC,CAAC,MAAM,CAAC;IAC7C,IAAI,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;CAChC,CAAC,CAAC;AAEH,2CAA2C;AAC9B,QAAA,qBAAqB,GAAG,OAAC,CAAC,MAAM,CAAC;IAC5C,OAAO,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IAC1B,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE;IAChB,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;CACzB,CAAC,CAAC"}

package/dist/mcp/summary.d.ts

@@ -0,0 +1,11 @@
+/**
+ * Generate a human-readable summary from toolName + toolInput.
+ *
+ * Design principles:
+ * - Max 200 chars (fits push notifications)
+ * - English (technical content is inherently English)
+ * - No sensitive content leakage (passwords, tokens, secrets)
+ * - Graceful fallback for unknown tools
+ */
+export declare function generateSummary(toolName: string, toolInput: Record<string, unknown>): string;
+//# sourceMappingURL=summary.d.ts.map

package/dist/mcp/summary.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"summary.d.ts","sourceRoot":"","sources":["../../src/mcp/summary.ts"],"names":[],"mappings":"AAQA;;;;;;;;GAQG;AACH,wBAAgB,eAAe,CAAC,QAAQ,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,MAAM,CA+B5F"}