@indigoai-us/hq-cloud 5.11.1 → 5.11.3

package/dist/watcher.js

@@ -17,20 +17,24 @@ export class SyncWatcher {
     watcher = null;
     hqRoot;
     ctx;
+    author;
     shouldSync;
     pendingChanges = new Map();
     debounceTimer = null;
     processing = false;
-    constructor(hqRoot, ctx) {
+    constructor(hqRoot, ctx, author) {
         this.hqRoot = hqRoot;
         this.ctx = ctx;
+        this.author = author;
         this.shouldSync = createIgnoreFilter(hqRoot);
     }
     start() {
         if (this.watcher)
             return;
         this.watcher = watch(this.hqRoot, {
-            ignored: (filePath) => !this.shouldSync(filePath),
+            // Forward chokidar's stats hint so dir-only gitignore patterns
+            // (`foo/`) match directory entries during the descent decision.
+            ignored: (filePath, stats) => !this.shouldSync(filePath, stats?.isDirectory()),
             persistent: true,
             ignoreInitial: true,
             awaitWriteFinish: {
@@ -91,7 +95,9 @@ export class SyncWatcher {
                     const existing = journal.files[relativePath];
                     if (existing && existing.hash === hash)
                         continue;
-                    const { etag } = await uploadFile(this.ctx, change.absolutePath, relativePath);
+                    const { etag } = this.author
+                        ? await uploadFile(this.ctx, change.absolutePath, relativePath, this.author)
+                        : await uploadFile(this.ctx, change.absolutePath, relativePath);
                     updateEntry(journal, relativePath, hash, stat.size, "up", etag);
                 }
             }

package/dist/watcher.js.map

@@ -1 +1 @@
-{"version":3,"file":"watcher.js","sourceRoot":"","sources":["../src/watcher.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AACzB,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAC7B,OAAO,EAAE,KAAK,EAAE,MAAM,UAAU,CAAC;AAGjC,OAAO,EAAE,kBAAkB,EAAE,iBAAiB,EAAE,MAAM,aAAa,CAAC;AACpE,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,QAAQ,EAAE,WAAW,EAAE,MAAM,cAAc,CAAC;AAChF,OAAO,EAAE,UAAU,EAAE,gBAAgB,EAAE,MAAM,SAAS,CAAC;AAEvD,MAAM,WAAW,GAAG,IAAI,CAAC;AAQzB,MAAM,OAAO,WAAW;IACd,OAAO,GAAqB,IAAI,CAAC;IACjC,MAAM,CAAS;IACf,GAAG,CAAgB;IACnB,UAAU,CAAgC;IAC1C,cAAc,GAAG,IAAI,GAAG,EAAyB,CAAC;IAClD,aAAa,GAAyC,IAAI,CAAC;IAC3D,UAAU,GAAG,KAAK,CAAC;IAE3B,YAAY,MAAc,EAAE,GAAkB;QAC5C,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,GAAG,GAAG,GAAG,CAAC;QACf,IAAI,CAAC,UAAU,GAAG,kBAAkB,CAAC,MAAM,CAAC,CAAC;IAC/C,CAAC;IAED,KAAK;QACH,IAAI,IAAI,CAAC,OAAO;YAAE,OAAO;QAEzB,IAAI,CAAC,OAAO,GAAG,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE;YAChC,OAAO,EAAE,CAAC,QAAgB,EAAE,EAAE,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC;YACzD,UAAU,EAAE,IAAI;YAChB,aAAa,EAAE,IAAI;YACnB,gBAAgB,EAAE;gBAChB,kBAAkB,EAAE,GAAG;gBACvB,YAAY,EAAE,GAAG;aAClB;SACF,CAAC,CAAC;QAEH,IAAI,CAAC,OAAO;aACT,EAAE,CAAC,KAAK,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;aAC5C,EAAE,CAAC,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC;aAClD,EAAE,CAAC,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC;aAClD,EAAE,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE,CAAC,OAAO,CAAC,KAAK,CAAC,gBAAgB,EAAE,GAAG,CAAC,CAAC,CAAC;IAChE,CAAC;IAED,IAAI;QACF,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YACjB,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;YACrB,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC;QACtB,CAAC;QACD,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;YACvB,YAAY,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;YACjC,IAAI,CAAC,aAAa,GAAG,IAAI,CAAC;QAC5B,CAAC;IACH,CAAC;IAEO,WAAW,CAAC,IAAiC,EAAE,YAAoB;QACzE,MAAM,YAAY,GAAG,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,MAAM,EAAE,YAAY,CAAC,CAAC;QAE9D,oCAAoC;QACpC,IAAI,IAAI,KAAK,QAAQ,IAAI,CAAC,iBAAiB,CAAC,YAAY,CAAC,EAAE,CAAC;YAC1D,OAAO;QACT,CAAC;QAED,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,YAAY,EAAE;YACpC,IAAI;YACJ,YAAY;YACZ,YAAY;SACb,CAAC,CAAC;QAEH,4DAA4D;QAC5D,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;YACvB,YAAY,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;QACnC,CAAC;QACD,IAAI,CAAC,aAAa,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,KAAK,EAAE,EAAE,WAAW,CAAC,CAAC;IACnE,CAAC;IAEO,KAAK,CAAC,KAAK;QACjB,IAAI,IAAI,CAAC,UAAU,IAAI,IAAI,CAAC,cAAc,CAAC,IAAI,KAAK,CAAC;YAAE,OAAO;QAC9D,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC;QAEvB,MAAM,KAAK,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QAC3C,IAAI,CAAC,cAAc,CAAC,KAAK,EAAE,CAAC;QAE5B,MAAM,OAAO,GAAG,WAAW,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QAE3C,KAAK,MAAM,CAAC,YAAY,EAAE,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;YAC3C,IAAI,CAAC;gBACH,IAAI,MAAM,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;oBAC7B,MAAM,gBAAgB,CAAC,IAAI,CAAC,GAAG,EAAE,YAAY,CAAC,CAAC;oBAC/C,OAAO,OAAO,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC;gBACrC,CAAC;qBAAM,CAAC;oBACN,MAAM,IAAI,GAAG,QAAQ,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;oBAC3C,MAAM,IAAI,GAAG,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;oBAE9C,mCAAmC;oBACnC,MAAM,QAAQ,GAAG,OAAO,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC;oBAC7C,IAAI,QAAQ,IAAI,QAAQ,CAAC,IAAI,KAAK,IAAI;wBAAE,SAAS;oBAEjD,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,UAAU,CAAC,IAAI,CAAC,GAAG,EAAE,MAAM,CAAC,YAAY,EAAE,YAAY,CAAC,CAAC;oBAC/E,WAAW,CAAC,OAAO,EAAE,YAAY,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,CAAC,CAAC;gBAClE,CAAC;YACH,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,OAAO,CAAC,KAAK,CACX,eAAe,YAAY,IAAI,EAC/B,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CACzC,CAAC;gBACF,0BAA0B;gBAC1B,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,YAAY,EAAE,MAAM,CAAC,CAAC;YAChD,CAAC;QACH,CAAC;QAED,kEAAkE;QAClE,uDAAuD;QACvD,OAAO,CAAC,QAAQ,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAC5C,YAAY,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;QACrC,IAAI,CAAC,UAAU,GAAG,KAAK,CAAC;QAExB,0DAA0D;QAC1D,IAAI,IAAI,CAAC,cAAc,CAAC,IAAI,GAAG,CAAC,EAAE,CAAC;YACjC,IAAI,CAAC,aAAa,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,KAAK,EAAE,EAAE,WAAW,CAAC,CAAC;QACnE,CAAC;IACH,CAAC;CACF"}
+{"version":3,"file":"watcher.js","sourceRoot":"","sources":["../src/watcher.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AACzB,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAC7B,OAAO,EAAE,KAAK,EAAE,MAAM,UAAU,CAAC;AAGjC,OAAO,EAAE,kBAAkB,EAAE,iBAAiB,EAAE,MAAM,aAAa,CAAC;AACpE,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,QAAQ,EAAE,WAAW,EAAE,MAAM,cAAc,CAAC;AAChF,OAAO,EAAE,UAAU,EAAE,gBAAgB,EAAE,MAAM,SAAS,CAAC;AAGvD,MAAM,WAAW,GAAG,IAAI,CAAC;AAQzB,MAAM,OAAO,WAAW;IACd,OAAO,GAAqB,IAAI,CAAC;IACjC,MAAM,CAAS;IACf,GAAG,CAAgB;IACnB,MAAM,CAAgB;IACtB,UAAU,CAAiD;IAC3D,cAAc,GAAG,IAAI,GAAG,EAAyB,CAAC;IAClD,aAAa,GAAyC,IAAI,CAAC;IAC3D,UAAU,GAAG,KAAK,CAAC;IAE3B,YAAY,MAAc,EAAE,GAAkB,EAAE,MAAqB;QACnE,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,GAAG,GAAG,GAAG,CAAC;QACf,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,UAAU,GAAG,kBAAkB,CAAC,MAAM,CAAC,CAAC;IAC/C,CAAC;IAED,KAAK;QACH,IAAI,IAAI,CAAC,OAAO;YAAE,OAAO;QAEzB,IAAI,CAAC,OAAO,GAAG,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE;YAChC,+DAA+D;YAC/D,gEAAgE;YAChE,OAAO,EAAE,CAAC,QAAgB,EAAE,KAAgB,EAAE,EAAE,CAC9C,CAAC,IAAI,CAAC,UAAU,CAAC,QAAQ,EAAE,KAAK,EAAE,WAAW,EAAE,CAAC;YAClD,UAAU,EAAE,IAAI;YAChB,aAAa,EAAE,IAAI;YACnB,gBAAgB,EAAE;gBAChB,kBAAkB,EAAE,GAAG;gBACvB,YAAY,EAAE,GAAG;aAClB;SACF,CAAC,CAAC;QAEH,IAAI,CAAC,OAAO;aACT,EAAE,CAAC,KAAK,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;aAC5C,EAAE,CAAC,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC;aAClD,EAAE,CAAC,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC;aAClD,EAAE,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE,CAAC,OAAO,CAAC,KAAK,CAAC,gBAAgB,EAAE,GAAG,CAAC,CAAC,CAAC;IAChE,CAAC;IAED,IAAI;QACF,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YACjB,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;YACrB,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC;QACtB,CAAC;QACD,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;YACvB,YAAY,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;YACjC,IAAI,CAAC,aAAa,GAAG,IAAI,CAAC;QAC5B,CAAC;IACH,CAAC;IAEO,WAAW,CAAC,IAAiC,EAAE,YAAoB;QACzE,MAAM,YAAY,GAAG,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,MAAM,EAAE,YAAY,CAAC,CAAC;QAE9D,oCAAoC;QACpC,IAAI,IAAI,KAAK,QAAQ,IAAI,CAAC,iBAAiB,CAAC,YAAY,CAAC,EAAE,CAAC;YAC1D,OAAO;QACT,CAAC;QAED,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,YAAY,EAAE;YACpC,IAAI;YACJ,YAAY;YACZ,YAAY;SACb,CAAC,CAAC;QAEH,4DAA4D;QAC5D,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;YACvB,YAAY,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;QACnC,CAAC;QACD,IAAI,CAAC,aAAa,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,KAAK,EAAE,EAAE,WAAW,CAAC,CAAC;IACnE,CAAC;IAEO,KAAK,CAAC,KAAK;QACjB,IAAI,IAAI,CAAC,UAAU,IAAI,IAAI,CAAC,cAAc,CAAC,IAAI,KAAK,CAAC;YAAE,OAAO;QAC9D,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC;QAEvB,MAAM,KAAK,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QAC3C,IAAI,CAAC,cAAc,CAAC,KAAK,EAAE,CAAC;QAE5B,MAAM,OAAO,GAAG,WAAW,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QAE3C,KAAK,MAAM,CAAC,YAAY,EAAE,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;YAC3C,IAAI,CAAC;gBACH,IAAI,MAAM,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;oBAC7B,MAAM,gBAAgB,CAAC,IAAI,CAAC,GAAG,EAAE,YAAY,CAAC,CAAC;oBAC/C,OAAO,OAAO,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC;gBACrC,CAAC;qBAAM,CAAC;oBACN,MAAM,IAAI,GAAG,QAAQ,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;oBAC3C,MAAM,IAAI,GAAG,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;oBAE9C,mCAAmC;oBACnC,MAAM,QAAQ,GAAG,OAAO,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC;oBAC7C,IAAI,QAAQ,IAAI,QAAQ,CAAC,IAAI,KAAK,IAAI;wBAAE,SAAS;oBAEjD,MAAM,EAAE,IAAI,EAAE,GAAG,IAAI,CAAC,MAAM;wBAC1B,CAAC,CAAC,MAAM,UAAU,CAAC,IAAI,CAAC,GAAG,EAAE,MAAM,CAAC,YAAY,EAAE,YAAY,EAAE,IAAI,CAAC,MAAM,CAAC;wBAC5E,CAAC,CAAC,MAAM,UAAU,CAAC,IAAI,CAAC,GAAG,EAAE,MAAM,CAAC,YAAY,EAAE,YAAY,CAAC,CAAC;oBAClE,WAAW,CAAC,OAAO,EAAE,YAAY,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,CAAC,CAAC;gBAClE,CAAC;YACH,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,OAAO,CAAC,KAAK,CACX,eAAe,YAAY,IAAI,EAC/B,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CACzC,CAAC;gBACF,0BAA0B;gBAC1B,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,YAAY,EAAE,MAAM,CAAC,CAAC;YAChD,CAAC;QACH,CAAC;QAED,kEAAkE;QAClE,uDAAuD;QACvD,OAAO,CAAC,QAAQ,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAC5C,YAAY,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;QACrC,IAAI,CAAC,UAAU,GAAG,KAAK,CAAC;QAExB,0DAA0D;QAC1D,IAAI,IAAI,CAAC,cAAc,CAAC,IAAI,GAAG,CAAC,EAAE,CAAC;YACjC,IAAI,CAAC,aAAa,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,KAAK,EAAE,EAAE,WAAW,CAAC,CAAC;QACnE,CAAC;IACH,CAAC;CACF"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@indigoai-us/hq-cloud",
-  "version": "5.11.1",
+  "version": "5.11.3",
   "description": "HQ by Indigo cloud sync engine — bidirectional S3 sync for mobile access",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",

package/src/bin/sync-runner.test.ts

@@ -1419,6 +1419,88 @@ describe("personal slot fanout", () => {
   });
 });
 
+// ---------------------------------------------------------------------------
+// watch mode (Auto-sync Beta) — argv-level contract only
+// ---------------------------------------------------------------------------
+//
+// hq-sync-runner today exits after one pass. Auto-sync (Beta) extends it with
+// `--watch` (stay alive) and `--poll-remote-ms <n>` (delay between remote
+// pulls). These tests pin the parser-level contract: the flags exist, accept
+// valid values, and reject malformed ones. Loop-lifecycle behavior (timer
+// injection, graceful shutdown on SIGTERM) belongs in a follow-up test once
+// the dep-injection seam is chosen — kept out of this seed file deliberately.
+
+describe("watch mode argv parsing", () => {
+  it("rejects --watch today (will pass once implemented)", async () => {
+    // Failing-test seed: --watch is currently an unknown argument. After the
+    // parser learns it, this assertion flips to the new shape below.
+    const deps = makeDeps();
+    const code = await runRunner(["--companies", "--watch"], deps);
+    // Once implemented: code should be 0 (or whatever a one-shot watch run
+    // returns under the test deps), and the argv error must NOT contain
+    // "Unknown argument".
+    expect(deps.stderr.raw()).not.toContain("Unknown argument: --watch");
+    // Code is asserted to be non-1 to flag the parser change without
+    // committing to exact loop-exit semantics yet.
+    expect(code).not.toBe(1);
+  });
+
+  it("rejects --poll-remote-ms with a missing value", async () => {
+    const deps = makeDeps();
+    const code = await runRunner(
+      ["--companies", "--watch", "--poll-remote-ms"],
+      deps,
+    );
+    expect(code).toBe(1);
+    expect(deps.stderr.raw()).toContain("--poll-remote-ms requires a value");
+  });
+
+  it("rejects --poll-remote-ms with a non-integer value", async () => {
+    const deps = makeDeps();
+    const code = await runRunner(
+      ["--companies", "--watch", "--poll-remote-ms", "abc"],
+      deps,
+    );
+    expect(code).toBe(1);
+    expect(deps.stderr.raw()).toContain("--poll-remote-ms");
+  });
+
+  it("rejects a non-positive --poll-remote-ms (no zero, no negative)", async () => {
+    const deps = makeDeps();
+    const code = await runRunner(
+      ["--companies", "--watch", "--poll-remote-ms", "0"],
+      deps,
+    );
+    expect(code).toBe(1);
+    expect(deps.stderr.raw()).toContain("--poll-remote-ms");
+  });
+
+  it("accepts --poll-remote-ms 600000 (the menubar's 10-minute pin)", async () => {
+    const deps = makeDeps({
+      createVaultClient: () => makeVaultStub({ memberships: [] }),
+    });
+    const code = await runRunner(
+      ["--companies", "--watch", "--poll-remote-ms", "600000"],
+      deps,
+    );
+    expect(deps.stderr.raw()).not.toContain("Unknown argument");
+    expect(deps.stderr.raw()).not.toContain("--poll-remote-ms");
+    // No memberships → setup-needed exit on the first pass; under test deps
+    // that's a 0 exit. The point of this test is to pin that 600000 parses.
+    expect(code).toBe(0);
+  });
+
+  it("rejects --poll-remote-ms outside watch mode (the flag has no meaning otherwise)", async () => {
+    const deps = makeDeps();
+    const code = await runRunner(
+      ["--companies", "--poll-remote-ms", "600000"],
+      deps,
+    );
+    expect(code).toBe(1);
+    expect(deps.stderr.raw()).toContain("--poll-remote-ms requires --watch");
+  });
+});
+
 // ---------------------------------------------------------------------------
 // Re-initialize for each test (mock state hygiene)
 // ---------------------------------------------------------------------------

package/src/bin/sync-runner.ts

@@ -78,6 +78,7 @@ import type {
 import { share as defaultShare } from "../cli/share.js";
 import type { ShareOptions, ShareResult } from "../cli/share.js";
 import type { ConflictStrategy } from "../cli/conflict.js";
+import type { UploadAuthor } from "../s3.js";
 
 /**
  * Sync direction for a run.
@@ -348,6 +349,10 @@ interface ParsedArgs {
   onConflict: ConflictStrategy;
   hqRoot: string;
   direction: Direction;
+  /** Auto-sync (Beta): keep the runner alive after the first pass. */
+  watch: boolean;
+  /** Auto-sync (Beta): ms between remote-pull passes. Required when watch=true. */
+  pollRemoteMs?: number;
 }
 
 function parseArgs(argv: string[]): ParsedArgs | { error: string } {
@@ -356,6 +361,8 @@ function parseArgs(argv: string[]): ParsedArgs | { error: string } {
   let onConflict: ConflictStrategy = "abort";
   let hqRoot = DEFAULT_HQ_ROOT;
   let direction: Direction = "pull";
+  let watch = false;
+  let pollRemoteMs: number | undefined;
 
   for (let i = 0; i < argv.length; i++) {
     const arg = argv[i];
@@ -391,6 +398,21 @@ function parseArgs(argv: string[]): ParsedArgs | { error: string } {
         hqRoot = argv[++i];
         if (!hqRoot) return { error: "--hq-root requires a value" };
         break;
+      case "--watch":
+        watch = true;
+        break;
+      case "--poll-remote-ms": {
+        const val = argv[++i];
+        if (!val) return { error: "--poll-remote-ms requires a value" };
+        const n = Number(val);
+        if (!Number.isInteger(n) || n <= 0) {
+          return {
+            error: `--poll-remote-ms must be a positive integer (ms), got: ${val}`,
+          };
+        }
+        pollRemoteMs = n;
+        break;
+      }
       case "--json":
         // Accepted but ignored — ndjson is the only output mode.
         break;
@@ -405,8 +427,11 @@ function parseArgs(argv: string[]): ParsedArgs | { error: string } {
   if (!companies && !company) {
     return { error: "Pass --companies or --company <slug>" };
   }
+  if (pollRemoteMs !== undefined && !watch) {
+    return { error: "--poll-remote-ms requires --watch" };
+  }
 
-  return { companies, company, onConflict, hqRoot, direction };
+  return { companies, company, onConflict, hqRoot, direction, watch, pollRemoteMs };
 }
 
 // ---------------------------------------------------------------------------
@@ -490,6 +515,22 @@ export async function runRunner(
   const client =
     deps.createVaultClient?.(vaultConfig) ?? new VaultClient(vaultConfig);
 
+  // ---- resolve identity claims -----------------------------------------
+  // Read the cached idToken claims once. Two consumers downstream:
+  //   1. The claim-dance (only fires in `--companies` mode for setup-needed
+  //      invitees).
+  //   2. The S3 upload author (every share() call stamps `Metadata['created-by']`
+  //      with `claims.email` so the hq-console vault UI's CREATED BY column
+  //      attributes the file to the syncing user).
+  // Resolved here (not inside `parsed.companies`) so single-company runs also
+  // get author attribution. `null` is fine — share() simply omits the metadata.
+  const getClaims = deps.getIdTokenClaims ?? defaultGetIdTokenClaims;
+  const claims = getClaims();
+  const uploadAuthor: UploadAuthor | undefined =
+    claims?.sub && claims?.email
+      ? { userSub: claims.sub, email: claims.email }
+      : undefined;
+
   // ---- resolve targets --------------------------------------------------
   let memberships: Pick<Membership, "companyUid">[];
   try {
@@ -497,8 +538,6 @@ export async function runRunner(
       // Before giving up on memberships, run the claim-dance: new users signed
       // in via the tray may have email-keyed invites waiting for them. Without
       // this, an invited user would see "setup-needed" on every tray click.
-      const getClaims = deps.getIdTokenClaims ?? defaultGetIdTokenClaims;
-      const claims = getClaims();
       if (claims) {
         await runClaimDance(client, claims, stderr);
       }
@@ -715,6 +754,7 @@ export async function runRunner(
           // next pull because the remote object is still listable.
           propagateDeletes: true,
           onEvent: tagAndEmit,
+          ...(uploadAuthor ? { author: uploadAuthor } : {}),
         });
       }
 
@@ -895,8 +935,41 @@ const isDirectInvocation = (() => {
   }
 })();
 
+/**
+ * Auto-sync (Beta) watch loop. Re-runs the one-shot runner every
+ * `pollRemoteMs` until the process is killed (SIGTERM from the menubar's
+ * stop_daemon command) or until a pass returns a non-zero exit code (hard
+ * error worth surfacing to the operator). `setup-needed` and `auth-error`
+ * exit 0 today and so will retry — acceptable noise for the beta; deal with
+ * it via a richer return shape if it shows up in Sentry.
+ */
+export async function runRunnerWithLoop(argv: string[]): Promise<number> {
+  if (!argv.includes("--watch")) {
+    return runRunner(argv);
+  }
+  const pollIdx = argv.indexOf("--poll-remote-ms");
+  const pollMs =
+    pollIdx >= 0 && argv[pollIdx + 1] ? Number(argv[pollIdx + 1]) : 600_000;
+
+  // Strip --watch / --poll-remote-ms before delegating: the parser inside
+  // runRunner accepts them, but we don't want runRunner to think it's
+  // re-entering watch mode each iteration.
+  const passArgv = argv.filter((a, i) => {
+    if (a === "--watch") return false;
+    if (a === "--poll-remote-ms") return false;
+    if (i > 0 && argv[i - 1] === "--poll-remote-ms") return false;
+    return true;
+  });
+
+  while (true) {
+    const code = await runRunner(passArgv);
+    if (code !== 0) return code;
+    await new Promise<void>((resolve) => setTimeout(resolve, pollMs));
+  }
+}
+
 if (isDirectInvocation) {
-  runRunner(process.argv.slice(2))
+  runRunnerWithLoop(process.argv.slice(2))
     .then((code) => process.exit(code))
     .catch((err) => {
       process.stderr.write(

package/src/cli/share.test.ts

@@ -481,6 +481,54 @@ describe("share", () => {
     expect(journal.files["fresh.md"].remoteEtag).toBe("new-upload-etag");
   });
 
+  it("forwards UploadAuthor to uploadFile when present (created-by metadata)", async () => {
+    // Regression: hq-console vault UI's CREATED BY column was always blank
+    // because the sync engine never stamped Metadata['created-by'] on PUT.
+    // share() now accepts an `author` and threads it to s3.uploadFile so
+    // every synced file lands in S3 with the syncer's identity attached.
+    const companyRoot = path.join(tmpDir, "companies", "acme");
+    fs.mkdirSync(companyRoot, { recursive: true });
+    const testFile = path.join(companyRoot, "attribution.md");
+    fs.writeFileSync(testFile, "attributed content");
+
+    await share({
+      paths: [testFile],
+      company: "acme",
+      vaultConfig: mockConfig,
+      hqRoot: tmpDir,
+      author: { userSub: "abc-123", email: "alice@example.com" },
+    });
+
+    expect(uploadFile).toHaveBeenCalledWith(
+      expect.anything(),
+      testFile,
+      "attribution.md",
+      { userSub: "abc-123", email: "alice@example.com" },
+    );
+  });
+
+  it("omits author arg when not provided (back-compat)", async () => {
+    // share() must remain a 3-arg call to uploadFile when no author is
+    // configured — older test stubs and external integrations rely on it.
+    const companyRoot = path.join(tmpDir, "companies", "acme");
+    fs.mkdirSync(companyRoot, { recursive: true });
+    const testFile = path.join(companyRoot, "no-author.md");
+    fs.writeFileSync(testFile, "anonymous");
+
+    await share({
+      paths: [testFile],
+      company: "acme",
+      vaultConfig: mockConfig,
+      hqRoot: tmpDir,
+    });
+
+    expect(uploadFile).toHaveBeenCalledWith(
+      expect.anything(),
+      testFile,
+      "no-author.md",
+    );
+  });
+
   it("skipUnchanged=false (default) uploads even when hash matches", async () => {
     const companyRoot = path.join(tmpDir, "companies", "acme");
     fs.mkdirSync(companyRoot, { recursive: true });

package/src/cli/share.ts

@@ -10,6 +10,7 @@ import * as path from "path";
 import type { EntityContext, VaultServiceConfig, SyncJournal } from "../types.js";
 import { resolveEntityContext, isExpiringSoon, refreshEntityContext } from "../context.js";
 import { uploadFile, headRemoteFile, deleteRemoteFile } from "../s3.js";
+import type { UploadAuthor } from "../s3.js";
 import { readJournal, writeJournal, hashFile, updateEntry, removeEntry, normalizeEtag } from "../journal.js";
 import { createIgnoreFilter, isWithinSizeLimit } from "../ignore.js";
 import { resolveConflict } from "./conflict.js";
@@ -184,6 +185,14 @@ export interface ShareOptions {
    * full-tree bidirectional runner opts in.
    */
   propagateDeletes?: boolean;
+  /**
+   * Identity stamped onto each uploaded object's S3 user metadata
+   * (`created-by`, `created-by-sub`, `created-at`). The hq-console vault UI
+   * reads `Metadata['created-by']` for its "CREATED BY" column; uploads
+   * without an author leave that column blank for every file synced via
+   * this engine. The runner pipes Cognito idToken claims through here.
+   */
+  author?: UploadAuthor;
 }
 
 export interface ShareResult {
@@ -383,7 +392,9 @@ export async function share(options: ShareOptions): Promise<ShareResult> {
     try {
       const stat = fs.statSync(absolutePath);
 
-      const { etag } = await uploadFile(ctx, absolutePath, relativePath);
+      const { etag } = options.author
+        ? await uploadFile(ctx, absolutePath, relativePath, options.author)
+        : await uploadFile(ctx, absolutePath, relativePath);
 
       // Update journal with optional message; capture the post-upload ETag
       // so the next sync can distinguish "remote moved since we last wrote"
@@ -513,7 +524,7 @@ function collectFiles(
   paths: string[],
   hqRoot: string,
   syncRoot: string,
-  filter: (p: string) => boolean,
+  filter: (p: string, isDir?: boolean) => boolean,
 ): { absolutePath: string; relativePath: string }[] {
   const results: { absolutePath: string; relativePath: string }[] = [];
 
@@ -532,6 +543,7 @@ function collectFiles(
 
     const stat = fs.statSync(absolutePath);
     if (stat.isDirectory()) {
+      if (!filter(absolutePath, true)) continue;
       results.push(...walkDir(absolutePath, syncRoot, filter));
     } else if (stat.isFile()) {
       const relativePath = path.relative(syncRoot, absolutePath);
@@ -547,7 +559,7 @@ function collectFiles(
 function walkDir(
   dir: string,
   syncRoot: string,
-  filter: (p: string) => boolean,
+  filter: (p: string, isDir?: boolean) => boolean,
 ): { absolutePath: string; relativePath: string }[] {
   const results: { absolutePath: string; relativePath: string }[] = [];
   if (!fs.existsSync(dir)) return results;
@@ -555,9 +567,12 @@ function walkDir(
   const entries = fs.readdirSync(dir, { withFileTypes: true });
   for (const entry of entries) {
     const absolutePath = path.join(dir, entry.name);
-    if (!filter(absolutePath)) continue;
+    const isDir = entry.isDirectory();
+    // Pass the dir hint so dir-only ignore/include patterns (`foo/`)
+    // resolve correctly for the descent decision.
+    if (!filter(absolutePath, isDir)) continue;
 
-    if (entry.isDirectory()) {
+    if (isDir) {
       results.push(...walkDir(absolutePath, syncRoot, filter));
     } else if (entry.isFile()) {
       results.push({

package/src/ignore.test.ts

@@ -110,6 +110,80 @@ describe("createIgnoreFilter", () => {
     expect(shouldSync(path.join(hqRoot, "personal/journal/2026-04-26.md"))).toBe(false);
   });
 
+  it("allowlist mode: directory entries match dir-suffix include patterns (walker descent)", () => {
+    // Regression: walkDir tests directory entries when deciding whether to
+    // descend. The `ignore` lib only matches dir-only patterns like
+    // `companies/*/knowledge/` against paths that end with `/`. The filter
+    // accepts an `isDir` hint and appends the trailing slash before probing,
+    // mirroring how git itself decides (it knows from the index whether
+    // each entry is a tree or a blob). Without the hint the walker would
+    // see `companies/indigo/knowledge` -> not allowed -> never descend ->
+    // entire subtree silently lost. Files inside still work because
+    // `ignore` walks ancestors internally; the bug only bites the descent
+    // decision for directory entries.
+    fs.writeFileSync(
+      path.join(hqRoot, ".hqinclude"),
+      "companies/*/knowledge/\ncompanies/*/projects/\n.claude/\n",
+    );
+    const shouldSync = createIgnoreFilter(hqRoot);
+    // Directory entries must be allowed when the caller hints isDir=true.
+    expect(shouldSync(path.join(hqRoot, "companies/indigo/knowledge"), true)).toBe(true);
+    expect(shouldSync(path.join(hqRoot, "companies/indigo/projects"), true)).toBe(true);
+    expect(shouldSync(path.join(hqRoot, ".claude"), true)).toBe(true);
+    // Files inside still resolve correctly without the hint.
+    expect(shouldSync(path.join(hqRoot, "companies/indigo/knowledge/x.md"))).toBe(true);
+    expect(shouldSync(path.join(hqRoot, ".claude/settings.json"))).toBe(true);
+    // Non-allowlisted siblings stay excluded — privacy guarantee intact.
+    expect(shouldSync(path.join(hqRoot, "companies/indigo/data"), true)).toBe(false);
+    expect(shouldSync(path.join(hqRoot, "companies/indigo/workers"), true)).toBe(false);
+  });
+
+  it("allowlist mode: walker descends through intermediate ancestor dirs", () => {
+    // Full gitignore semantics: a walker starting at hqRoot must be able to
+    // descend through `companies/` and `companies/indigo/` to reach the
+    // allowlisted leaf `companies/*/knowledge/`. The ancestor matcher
+    // permits this for dir-mode queries while keeping files directly inside
+    // those intermediate dirs excluded — privacy invariant intact.
+    fs.writeFileSync(
+      path.join(hqRoot, ".hqinclude"),
+      "companies/*/knowledge/\n",
+    );
+    const shouldSync = createIgnoreFilter(hqRoot);
+    // Intermediate directories along the path to the leaf are descent-allowed.
+    expect(shouldSync(path.join(hqRoot, "companies"), true)).toBe(true);
+    expect(shouldSync(path.join(hqRoot, "companies/indigo"), true)).toBe(true);
+    // The leaf itself is allowed.
+    expect(shouldSync(path.join(hqRoot, "companies/indigo/knowledge"), true)).toBe(true);
+    // Files directly inside intermediate dirs are still excluded — only the
+    // dir is descent-allowed, the dir's loose files are not.
+    expect(shouldSync(path.join(hqRoot, "companies/indigo/notes.md"))).toBe(false);
+    expect(shouldSync(path.join(hqRoot, "companies/README.md"))).toBe(false);
+    // Files inside the allowlisted leaf still sync.
+    expect(shouldSync(path.join(hqRoot, "companies/indigo/knowledge/x.md"))).toBe(true);
+  });
+
+  it("dir-only ignore patterns honor the isDir hint symmetrically", () => {
+    // Gitignore semantics: a trailing-slash pattern (`foo/`) matches only
+    // directories, never files of the same name. The filter applies this
+    // on BOTH layers — exclude and include — by appending `/` to the probe
+    // when the caller passes isDir=true, and leaving it as-is otherwise.
+    // This guarantees:
+    //   - a directory `node_modules` is excluded (descent skipped),
+    //   - but a regular file literally named `node_modules` is NOT
+    //     mistakenly excluded by the dir-only pattern.
+    fs.writeFileSync(path.join(hqRoot, ".hqignore"), "build/\n");
+    const shouldSync = createIgnoreFilter(hqRoot);
+    // Directory `build` matches the dir-only exclusion.
+    expect(shouldSync(path.join(hqRoot, "build"), true)).toBe(false);
+    // A file literally named `build` (not a dir) does NOT match `build/`.
+    // This is the asymmetry that previous PR comments warned about and
+    // that the isDir hint resolves cleanly.
+    expect(shouldSync(path.join(hqRoot, "build"), false)).toBe(true);
+    // Default-call (no hint) is treated as "not a directory" — matches
+    // gitignore's blob-default and preserves the file-side guarantee.
+    expect(shouldSync(path.join(hqRoot, "build"))).toBe(true);
+  });
+
   it("allowlist mode: exclusion layers still subtract on top", () => {
     // Even when a subtree is allowlisted, default ignores like node_modules/
     // and .env must still apply. Otherwise an allowlisted subdir would sync

package/src/ignore.ts

@@ -105,7 +105,79 @@ function readIgnoreFile(filePath: string): string | null {
   }
 }
 
-export function createIgnoreFilter(hqRoot: string): (filePath: string) => boolean {
+/**
+ * Compile a depth-anchored ancestor matcher from .hqinclude content.
+ *
+ * Git itself never asks "should I descend into this dir?" — it walks its
+ * index and checks each file directly. Our walkers/watchers don't have an
+ * index, so they have to make a descent decision per directory. To preserve
+ * full gitignore semantics in allowlist mode, we must allow descent into
+ * every ancestor of any include pattern. We can't reuse the `ignore` lib
+ * for this because gitignore's `foo/*\/` would also match `foo/x/y/z/` —
+ * recursing into the dir — which would defeat the privacy invariant.
+ *
+ * The matcher therefore checks an ancestor candidate against each include
+ * pattern's prefix segments at the EXACT same depth, with `*` and `?`
+ * resolved per-segment. `**` segments are treated as wildcards that match
+ * any single segment here — sufficient for descent decisions, since the
+ * include matcher itself still gates files.
+ */
+function compileAncestorMatcher(
+  includeContent: string,
+): ((relDir: string) => boolean) | null {
+  const prefixes: RegExp[][] = [];
+  for (const raw of includeContent.split(/\r?\n/)) {
+    const line = raw.trim();
+    if (!line || line.startsWith("#") || line.startsWith("!")) continue;
+    const stripped = line.replace(/^\//, "").replace(/\/$/, "");
+    if (!stripped.includes("/")) continue;
+    const segs = stripped.split("/").map(segmentToRegex);
+    for (let i = 1; i < segs.length; i++) {
+      prefixes.push(segs.slice(0, i));
+    }
+  }
+  if (!prefixes.length) return null;
+  return (relDir: string): boolean => {
+    const parts = relDir.split("/");
+    for (const pat of prefixes) {
+      if (pat.length !== parts.length) continue;
+      let ok = true;
+      for (let i = 0; i < pat.length; i++) {
+        if (!pat[i].test(parts[i])) {
+          ok = false;
+          break;
+        }
+      }
+      if (ok) return true;
+    }
+    return false;
+  };
+}
+
+function segmentToRegex(seg: string): RegExp {
+  // Translate a single gitignore path segment to an anchored regex. `*` and
+  // `**` both match any single segment here (segments never contain `/`),
+  // `?` matches one char. Everything else is escaped literal.
+  let body = "";
+  for (let i = 0; i < seg.length; i++) {
+    const ch = seg[i];
+    if (ch === "*") {
+      if (seg[i + 1] === "*") i++;
+      body += "[^/]*";
+    } else if (ch === "?") {
+      body += "[^/]";
+    } else if (/[.+^${}()|[\]\\]/.test(ch)) {
+      body += "\\" + ch;
+    } else {
+      body += ch;
+    }
+  }
+  return new RegExp(`^${body}$`);
+}
+
+export function createIgnoreFilter(
+  hqRoot: string,
+): (filePath: string, isDir?: boolean) => boolean {
   const ig = ignore();
 
   // Layer 1: baseline defaults
@@ -130,13 +202,37 @@ export function createIgnoreFilter(hqRoot: string): (filePath: string) => boolea
   // still skipped.
   const hqinclude = readIgnoreFile(path.join(hqRoot, ".hqinclude"));
   const includeMatcher = hqinclude ? ignore().add(hqinclude) : null;
-
-  return (filePath: string): boolean => {
+  // Ancestor matcher: matches every directory that lies on the path to an
+  // include pattern. Consulted ONLY for `isDir=true` queries so a walker can
+  // descend through `companies/` and `companies/indigo/` to reach the leaf
+  // `companies/*/knowledge/`. Files directly inside those intermediate dirs
+  // remain excluded — this is the privacy invariant of allowlist mode.
+  const ancestorMatcher = hqinclude ? compileAncestorMatcher(hqinclude) : null;
+
+  return (filePath: string, isDir = false): boolean => {
     const relative = path.relative(hqRoot, filePath);
     if (!relative || relative.startsWith("..")) return true; // outside HQ root
-    if (ig.ignores(relative)) return false;
-    if (includeMatcher && !includeMatcher.ignores(relative)) return false;
-    return true;
+
+    // Gitignore dir-only patterns (`foo/`) only match candidate paths that
+    // end with `/`. The `ignore` lib has no stat awareness, so when the
+    // caller knows the entry is a directory we hand the matcher the
+    // canonical trailing-slash form. This mirrors how git itself decides:
+    // it knows from the index whether each entry is a tree or a blob.
+    // Applied symmetrically to BOTH layers — exclude and include — to
+    // preserve full gitignore semantics on both sides.
+    const probe = isDir && !relative.endsWith("/") ? relative + "/" : relative;
+
+    if (ig.ignores(probe)) return false;
+    if (!includeMatcher) return true;
+    if (includeMatcher.ignores(probe)) return true;
+    // Directory query that didn't match the include pattern itself — allow
+    // if it's an ancestor of one (so the walker can descend to the leaf).
+    if (isDir && ancestorMatcher) {
+      // Ancestor matching is depth-anchored, so feed it the slashless form.
+      const relDir = relative.replace(/\/$/, "");
+      if (relDir && ancestorMatcher(relDir)) return true;
+    }
+    return false;
   };
 }
 

package/src/index.ts

@@ -20,7 +20,7 @@ export {
   headRemoteFile,
 } from "./s3.js";
 
-export type { RemoteFile } from "./s3.js";
+export type { RemoteFile, UploadAuthor } from "./s3.js";
 
 export {
   readJournal,