npm - @kodelyth/matrix - Versions diffs - 2026.5.39 → 2026.5.42 - Mend

@kodelyth/matrix 2026.5.39 → 2026.5.42

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (321) hide show

package/CHANGELOG.md +321 -0
package/SPEC-SUPPORT.md +116 -0
package/api.ts +38 -0
package/auth-presence.ts +56 -0
package/channel-plugin-api.ts +3 -0
package/cli-metadata.ts +11 -0
package/contract-api.ts +17 -0
package/dist/account-selection-Y50DNJ2l.js +158 -0
package/dist/active-client-CmFdvPdO.js +20 -0
package/dist/api.js +12 -0
package/dist/approval-handler.runtime-BIi4fL0R.js +377 -0
package/dist/approval-ids-BGHK7PnZ.js +7 -0
package/dist/approval-reaction-auth-CL0-nCNV.js +27 -0
package/dist/approval-reactions-nDm2x-K5.js +162 -0
package/dist/async-lock-SsmtFXtt.js +19 -0
package/dist/auth-presence.js +26 -0
package/dist/backup-health-3BHbHxyd.js +60 -0
package/dist/channel-C0kCyTNB.js +1380 -0
package/dist/channel-plugin-api.js +2 -0
package/dist/channel.runtime-CdrdEN-0.js +250 -0
package/dist/cli-FtY6Nuzw.js +1338 -0
package/dist/cli-metadata-Dkwua7CB.js +22 -0
package/dist/cli-metadata.js +2 -0
package/dist/client-BnohYygh.js +25 -0
package/dist/client-PhrTwuC4.js +30 -0
package/dist/client-bootstrap-Mcj8ChJ5.js +114 -0
package/dist/config-paths-DVvt6vM3.js +114 -0
package/dist/config-schema-BMGOlhdI.js +308 -0
package/dist/config-secret-input.runtime-Dv_4Br_f.js +2 -0
package/dist/contract-api.js +8 -0
package/dist/create-client-J0htTaRj.js +64 -0
package/dist/credentials-B7GsBbgQ.js +56 -0
package/dist/credentials-read-8fE4qoWs.js +112 -0
package/dist/credentials-write.runtime-BibplB4Y.js +17 -0
package/dist/crypto-node.runtime-D9qxgRPa.js +12 -0
package/dist/crypto-runtime-1pKW4O2F.js +1214 -0
package/dist/deps-DVpDS81G.js +208 -0
package/dist/device-health-Ct2wDSPG.js +16 -0
package/dist/directory-live-i3T8uORc.js +150 -0
package/dist/doctor-contract-BLzYHl_9.js +246 -0
package/dist/doctor-contract-api.js +2 -0
package/dist/doctor-diR5gE7D.js +153 -0
package/dist/draft-stream-HpPJ_VJt.js +143 -0
package/dist/encryption-guidance-BNEgckrZ.js +15 -0
package/dist/env-auth-UFiTGkDM.js +63 -0
package/dist/env-vars-EQKQv-FE.js +63 -0
package/dist/errors-BETj3zr9.js +17 -0
package/dist/exec-approval-resolver-BxPorU_t.js +15 -0
package/dist/helper-api.js +4 -0
package/dist/http-client-DoQgbQsU.js +331 -0
package/dist/index.js +46 -0
package/dist/legacy-crypto-inspector-zK0hDCbt.js +41 -0
package/dist/legacy-crypto-restore-DSFIXuDo.js +85 -0
package/dist/logging-Df7aPD1z.js +99 -0
package/dist/matrix-migration.runtime-BNoT1Prt.js +525 -0
package/dist/media-text-ZhGA8Pcs.js +146 -0
package/dist/messages-CRA9WGg0.js +140 -0
package/dist/migration-snapshot-backup-BR-xD7Ew.js +69 -0
package/dist/migration-snapshot.runtime-BLcy_Nvw.js +2 -0
package/dist/monitor-DQm7_13y.js +4331 -0
package/dist/plugin-entry.handlers.runtime.js +51 -0
package/dist/probe.runtime-CjJS53Kz.js +3 -0
package/dist/profile-update-DqkPgZ1P.js +68 -0
package/dist/reaction-common-CmVLzP-u.js +71 -0
package/dist/reaction-events-D0nUJuZV.js +121 -0
package/dist/record-shared-DGvSFn5M.js +2 -0
package/dist/resolve-targets-ChECUzD2.js +140 -0
package/dist/resolver.runtime-hdY3n0GO.js +5 -0
package/dist/rolldown-runtime-DUslC3ob.js +14 -0
package/dist/route-xRKj_ESW.js +161 -0
package/dist/runtime-B-Fyrmxo.js +8 -0
package/dist/runtime-api-BYXXkxq2.js +24 -0
package/dist/runtime-api.js +25 -0
package/dist/runtime-heavy-api.js +3 -0
package/dist/runtime-lwTSy9Yt.js +6 -0
package/dist/runtime-setter-api.js +2 -0
package/dist/sdk-Jhq7mLtD.js +1704 -0
package/dist/secret-contract-DEMcDsjl.js +120 -0
package/dist/secret-contract-api.js +2 -0
package/dist/send-CJunc6QM.js +1517 -0
package/dist/setup-bootstrap-rJ0qZWPe.js +62 -0
package/dist/setup-core-BEYoXF3J.js +677 -0
package/dist/setup-entry.js +19 -0
package/dist/setup-plugin-api.js +43 -0
package/dist/setup-surface-c28ON6jq.js +537 -0
package/dist/shared-D6MFMnpG.js +642 -0
package/dist/startup-abort-B2J3MU_h.js +109 -0
package/dist/startup-verification-CkD4Cwce.js +132 -0
package/dist/storage-nyO0DOFE.js +281 -0
package/dist/storage-paths-BTAketfg.js +52 -0
package/dist/subagent-hooks-api-Dr_xnMRG.js +170 -0
package/dist/subagent-hooks-api.js +2 -0
package/dist/sync-state-Bx0gPaGA.js +12 -0
package/dist/target-ids-Bsazo8si.js +77 -0
package/dist/test-api.js +4 -0
package/dist/thread-binding-api-IGU0-L70.js +17 -0
package/dist/thread-binding-api.js +2 -0
package/dist/thread-bindings-FjAZmDUP.js +352 -0
package/dist/thread-bindings-runtime.js +2 -0
package/dist/thread-bindings-shared-fvfP7jVs.js +97 -0
package/dist/timeout-abort-signal-DpSHDHhR.js +2 -0
package/dist/tool-actions.runtime-Cbo7YcYZ.js +532 -0
package/dist/url-validation-DlrXNjAE.js +36 -0
package/dist/verification-7tDPRpJU.js +345 -0
package/doctor-contract-api.ts +1 -0
package/helper-api.ts +3 -0
package/index.ts +55 -0
package/klaw.plugin.json +3 -891
package/package.json +4 -4
package/plugin-entry.handlers.runtime.ts +1 -0
package/runtime-api.ts +72 -0
package/runtime-heavy-api.ts +1 -0
package/runtime-setter-api.ts +3 -0
package/secret-contract-api.ts +5 -0
package/setup-entry.ts +17 -0
package/setup-plugin-api.ts +3 -0
package/src/account-selection.ts +223 -0
package/src/actions.ts +346 -0
package/src/approval-auth.ts +25 -0
package/src/approval-handler.runtime.ts +592 -0
package/src/approval-ids.ts +6 -0
package/src/approval-native.ts +345 -0
package/src/approval-reaction-auth.ts +45 -0
package/src/approval-reactions.ts +313 -0
package/src/auth-precedence.ts +61 -0
package/src/channel-account-paths.ts +97 -0
package/src/channel.runtime.ts +17 -0
package/src/channel.setup.ts +48 -0
package/src/channel.ts +667 -0
package/src/cli-metadata.ts +19 -0
package/src/cli.ts +2298 -0
package/src/config-adapter.ts +41 -0
package/src/config-schema.ts +159 -0
package/src/config-ui-hints.ts +56 -0
package/src/directory-live.ts +238 -0
package/src/doctor-contract.ts +287 -0
package/src/doctor.ts +262 -0
package/src/env-vars.ts +92 -0
package/src/exec-approval-resolver.ts +23 -0
package/src/exec-approvals.ts +287 -0
package/src/group-mentions.ts +41 -0
package/src/legacy-crypto-inspector-availability.ts +60 -0
package/src/legacy-crypto.ts +531 -0
package/src/legacy-state.ts +156 -0
package/src/matrix/account-config.ts +175 -0
package/src/matrix/accounts.ts +194 -0
package/src/matrix/actions/client.ts +31 -0
package/src/matrix/actions/devices.ts +34 -0
package/src/matrix/actions/limits.ts +6 -0
package/src/matrix/actions/messages.ts +129 -0
package/src/matrix/actions/pins.ts +63 -0
package/src/matrix/actions/polls.ts +109 -0
package/src/matrix/actions/profile.ts +37 -0
package/src/matrix/actions/reactions.ts +59 -0
package/src/matrix/actions/room.ts +71 -0
package/src/matrix/actions/summary.ts +88 -0
package/src/matrix/actions/types.ts +63 -0
package/src/matrix/actions/verification.ts +589 -0
package/src/matrix/actions.ts +37 -0
package/src/matrix/active-client.ts +26 -0
package/src/matrix/async-lock.ts +18 -0
package/src/matrix/backup-health.ts +124 -0
package/src/matrix/client/config-runtime-api.ts +9 -0
package/src/matrix/client/config-secret-input.runtime.ts +1 -0
package/src/matrix/client/config.ts +853 -0
package/src/matrix/client/create-client.ts +105 -0
package/src/matrix/client/env-auth.ts +95 -0
package/src/matrix/client/file-sync-store.ts +289 -0
package/src/matrix/client/logging.ts +140 -0
package/src/matrix/client/migration-snapshot.runtime.ts +1 -0
package/src/matrix/client/private-network-host.ts +1 -0
package/src/matrix/client/runtime.ts +4 -0
package/src/matrix/client/shared.ts +316 -0
package/src/matrix/client/storage.ts +543 -0
package/src/matrix/client/types.ts +50 -0
package/src/matrix/client/url-validation.ts +73 -0
package/src/matrix/client-bootstrap.ts +173 -0
package/src/matrix/client.ts +23 -0
package/src/matrix/config-paths.ts +31 -0
package/src/matrix/config-update.ts +292 -0
package/src/matrix/credentials-read.ts +208 -0
package/src/matrix/credentials-write.runtime.ts +35 -0
package/src/matrix/credentials.ts +95 -0
package/src/matrix/deps.ts +309 -0
package/src/matrix/device-health.ts +29 -0
package/src/matrix/direct-management.ts +349 -0
package/src/matrix/direct-room.ts +128 -0
package/src/matrix/draft-stream.ts +225 -0
package/src/matrix/encryption-guidance.ts +24 -0
package/src/matrix/errors.ts +21 -0
package/src/matrix/format.ts +426 -0
package/src/matrix/legacy-crypto-inspector.ts +95 -0
package/src/matrix/media-errors.ts +20 -0
package/src/matrix/media-text.ts +162 -0
package/src/matrix/monitor/access-state.ts +145 -0
package/src/matrix/monitor/ack-config.ts +27 -0
package/src/matrix/monitor/allowlist.ts +89 -0
package/src/matrix/monitor/auto-join.ts +86 -0
package/src/matrix/monitor/config.ts +569 -0
package/src/matrix/monitor/context-summary.ts +43 -0
package/src/matrix/monitor/direct.ts +296 -0
package/src/matrix/monitor/events.ts +397 -0
package/src/matrix/monitor/handler.ts +2266 -0
package/src/matrix/monitor/inbound-dedupe.ts +267 -0
package/src/matrix/monitor/index.ts +540 -0
package/src/matrix/monitor/legacy-crypto-restore.ts +139 -0
package/src/matrix/monitor/location.ts +108 -0
package/src/matrix/monitor/media.ts +119 -0
package/src/matrix/monitor/mentions.ts +256 -0
package/src/matrix/monitor/reaction-events.ts +197 -0
package/src/matrix/monitor/recent-invite.ts +30 -0
package/src/matrix/monitor/replies.ts +136 -0
package/src/matrix/monitor/reply-context.ts +92 -0
package/src/matrix/monitor/room-history.ts +301 -0
package/src/matrix/monitor/room-info.ts +126 -0
package/src/matrix/monitor/rooms.ts +52 -0
package/src/matrix/monitor/route.ts +179 -0
package/src/matrix/monitor/runtime-api.ts +28 -0
package/src/matrix/monitor/startup-verification.ts +237 -0
package/src/matrix/monitor/startup.ts +218 -0
package/src/matrix/monitor/status.ts +120 -0
package/src/matrix/monitor/sync-lifecycle.ts +91 -0
package/src/matrix/monitor/task-runner.ts +38 -0
package/src/matrix/monitor/test-events.ts +21 -0
package/src/matrix/monitor/thread-context.ts +108 -0
package/src/matrix/monitor/threads.ts +85 -0
package/src/matrix/monitor/types.ts +30 -0
package/src/matrix/monitor/verification-events.ts +643 -0
package/src/matrix/monitor/verification-utils.ts +46 -0
package/src/matrix/outbound-media-runtime.ts +1 -0
package/src/matrix/poll-summary.ts +110 -0
package/src/matrix/poll-types.ts +429 -0
package/src/matrix/probe.runtime.ts +4 -0
package/src/matrix/probe.ts +97 -0
package/src/matrix/profile.ts +184 -0
package/src/matrix/reaction-common.ts +147 -0
package/src/matrix/sdk/crypto-bootstrap.ts +438 -0
package/src/matrix/sdk/crypto-facade.ts +242 -0
package/src/matrix/sdk/crypto-node.runtime.ts +17 -0
package/src/matrix/sdk/crypto-runtime.ts +14 -0
package/src/matrix/sdk/decrypt-bridge.ts +410 -0
package/src/matrix/sdk/event-helpers.ts +83 -0
package/src/matrix/sdk/http-client.ts +87 -0
package/src/matrix/sdk/idb-persistence-lock.ts +51 -0
package/src/matrix/sdk/idb-persistence.ts +288 -0
package/src/matrix/sdk/logger.ts +108 -0
package/src/matrix/sdk/read-response-with-limit.ts +19 -0
package/src/matrix/sdk/recovery-key-store.ts +453 -0
package/src/matrix/sdk/timeout-abort-signal.ts +1 -0
package/src/matrix/sdk/transport-runtime-api.ts +18 -0
package/src/matrix/sdk/transport.ts +352 -0
package/src/matrix/sdk/types.ts +245 -0
package/src/matrix/sdk/verification-manager.ts +795 -0
package/src/matrix/sdk/verification-status.ts +23 -0
package/src/matrix/sdk.ts +2152 -0
package/src/matrix/send/client.ts +93 -0
package/src/matrix/send/formatting.ts +189 -0
package/src/matrix/send/media.ts +244 -0
package/src/matrix/send/targets.ts +104 -0
package/src/matrix/send/types.ts +131 -0
package/src/matrix/send.ts +660 -0
package/src/matrix/session-store-metadata.ts +108 -0
package/src/matrix/startup-abort.ts +44 -0
package/src/matrix/subagent-hooks.ts +308 -0
package/src/matrix/sync-state.ts +27 -0
package/src/matrix/target-ids.ts +79 -0
package/src/matrix/thread-bindings-shared.ts +206 -0
package/src/matrix/thread-bindings.ts +580 -0
package/src/matrix-migration.runtime.ts +9 -0
package/src/migration-config.ts +243 -0
package/src/migration-snapshot-backup.ts +116 -0
package/src/migration-snapshot.ts +53 -0
package/src/onboarding.ts +775 -0
package/src/outbound.ts +248 -0
package/src/plugin-entry.runtime.js +115 -0
package/src/plugin-entry.runtime.ts +70 -0
package/src/profile-update.ts +71 -0
package/src/record-shared.ts +3 -0
package/src/resolve-targets.ts +175 -0
package/src/resolver.runtime.ts +5 -0
package/src/resolver.ts +21 -0
package/src/runtime-api.ts +106 -0
package/src/runtime.ts +13 -0
package/src/secret-contract.ts +174 -0
package/src/session-route.ts +126 -0
package/src/setup-bootstrap.ts +102 -0
package/src/setup-config.ts +222 -0
package/src/setup-contract.ts +90 -0
package/src/setup-core.ts +146 -0
package/src/setup-dm-policy.ts +15 -0
package/src/setup-surface.ts +4 -0
package/src/startup-maintenance.ts +114 -0
package/src/storage-paths.ts +92 -0
package/src/thread-binding-api.ts +23 -0
package/src/tool-actions.runtime.ts +1 -0
package/src/tool-actions.ts +498 -0
package/src/types.ts +257 -0
package/subagent-hooks-api.ts +31 -0
package/test-api.ts +21 -0
package/thread-binding-api.ts +4 -0
package/thread-bindings-runtime.ts +4 -0
package/tsconfig.json +16 -0
package/api.js +0 -7
package/auth-presence.js +0 -7
package/channel-plugin-api.js +0 -7
package/cli-metadata.js +0 -7
package/contract-api.js +0 -7
package/doctor-contract-api.js +0 -7
package/helper-api.js +0 -7
package/index.js +0 -7
package/plugin-entry.handlers.runtime.js +0 -7
package/runtime-api.js +0 -7
package/runtime-heavy-api.js +0 -7
package/runtime-setter-api.js +0 -7
package/secret-contract-api.js +0 -7
package/setup-entry.js +0 -7
package/setup-plugin-api.js +0 -7
package/subagent-hooks-api.js +0 -7
package/test-api.js +0 -7
package/thread-binding-api.js +0 -7
package/thread-bindings-runtime.js +0 -7

package/dist/startup-abort-B2J3MU_h.js ADDED Viewed

@@ -0,0 +1,109 @@
+import { t as getMatrixRuntime } from "./runtime-B-Fyrmxo.js";
+import { format } from "node:util";
+import { redactSensitiveText } from "klaw/plugin-sdk/logging-core";
+//#region extensions/matrix/src/matrix/sdk/logger.ts
+function noop() {}
+let forceConsoleLogging = false;
+function setMatrixConsoleLogging(enabled) {
+	forceConsoleLogging = enabled;
+}
+function resolveRuntimeLogger(module) {
+	if (forceConsoleLogging) return null;
+	try {
+		return getMatrixRuntime().logging.getChildLogger({ module: `matrix:${module}` });
+	} catch {
+		return null;
+	}
+}
+function formatMessage(module, messageOrObject) {
+	if (messageOrObject.length === 0) return `[${module}]`;
+	return redactSensitiveText(`[${module}] ${format(...messageOrObject)}`);
+}
+var ConsoleLogger = class {
+	emit(level, module, ...messageOrObject) {
+		const runtimeLogger = resolveRuntimeLogger(module);
+		const message = formatMessage(module, messageOrObject);
+		if (runtimeLogger) {
+			if (level === "debug") {
+				runtimeLogger.debug?.(message);
+				return;
+			}
+			runtimeLogger[level](message);
+			return;
+		}
+		if (level === "debug") {
+			console.debug(message);
+			return;
+		}
+		console[level](message);
+	}
+	trace(module, ...messageOrObject) {
+		this.emit("debug", module, ...messageOrObject);
+	}
+	debug(module, ...messageOrObject) {
+		this.emit("debug", module, ...messageOrObject);
+	}
+	info(module, ...messageOrObject) {
+		this.emit("info", module, ...messageOrObject);
+	}
+	warn(module, ...messageOrObject) {
+		this.emit("warn", module, ...messageOrObject);
+	}
+	error(module, ...messageOrObject) {
+		this.emit("error", module, ...messageOrObject);
+	}
+};
+let activeLogger = new ConsoleLogger();
+const LogService = {
+	setLogger(logger) {
+		activeLogger = logger;
+	},
+	trace(module, ...messageOrObject) {
+		activeLogger.trace(module, ...messageOrObject);
+	},
+	debug(module, ...messageOrObject) {
+		activeLogger.debug(module, ...messageOrObject);
+	},
+	info(module, ...messageOrObject) {
+		activeLogger.info(module, ...messageOrObject);
+	},
+	warn(module, ...messageOrObject) {
+		activeLogger.warn(module, ...messageOrObject);
+	},
+	error(module, ...messageOrObject) {
+		activeLogger.error(module, ...messageOrObject);
+	}
+};
+//#endregion
+//#region extensions/matrix/src/matrix/startup-abort.ts
+function createMatrixStartupAbortError() {
+	const error = /* @__PURE__ */ new Error("Matrix startup aborted");
+	error.name = "AbortError";
+	return error;
+}
+function throwIfMatrixStartupAborted(abortSignal) {
+	if (abortSignal?.aborted === true) throw createMatrixStartupAbortError();
+}
+function isMatrixStartupAbortError(error) {
+	return error instanceof Error && error.name === "AbortError";
+}
+async function awaitMatrixStartupWithAbort(promise, abortSignal) {
+	if (!abortSignal) return await promise;
+	if (abortSignal.aborted) throw createMatrixStartupAbortError();
+	return await new Promise((resolve, reject) => {
+		const onAbort = () => {
+			abortSignal.removeEventListener("abort", onAbort);
+			reject(createMatrixStartupAbortError());
+		};
+		abortSignal.addEventListener("abort", onAbort, { once: true });
+		promise.then((value) => {
+			abortSignal.removeEventListener("abort", onAbort);
+			resolve(value);
+		}, (error) => {
+			abortSignal.removeEventListener("abort", onAbort);
+			reject(error);
+		});
+	});
+}
+//#endregion
+export { ConsoleLogger as a, setMatrixConsoleLogging as c, throwIfMatrixStartupAborted as i, createMatrixStartupAbortError as n, LogService as o, isMatrixStartupAbortError as r, noop as s, awaitMatrixStartupWithAbort as t };

package/dist/startup-verification-CkD4Cwce.js ADDED Viewed

@@ -0,0 +1,132 @@
+import { t as formatMatrixErrorMessage } from "./errors-BETj3zr9.js";
+import { a as resolveMatrixStoragePaths } from "./storage-nyO0DOFE.js";
+import path from "node:path";
+import { readJsonFileWithFallback, writeJsonFileAtomically } from "klaw/plugin-sdk/json-store";
+import fs from "node:fs/promises";
+//#region extensions/matrix/src/matrix/monitor/startup-verification.ts
+const STARTUP_VERIFICATION_STATE_FILENAME = "startup-verification.json";
+const DEFAULT_STARTUP_VERIFICATION_MODE = "if-unverified";
+const DEFAULT_STARTUP_VERIFICATION_COOLDOWN_HOURS = 24;
+const DEFAULT_STARTUP_VERIFICATION_FAILURE_COOLDOWN_MS = 3600 * 1e3;
+function normalizeCooldownHours(value) {
+	if (typeof value !== "number" || !Number.isFinite(value)) return DEFAULT_STARTUP_VERIFICATION_COOLDOWN_HOURS;
+	return Math.max(0, value);
+}
+function resolveStartupVerificationStatePath(params) {
+	const storagePaths = resolveMatrixStoragePaths({
+		homeserver: params.auth.homeserver,
+		userId: params.auth.userId,
+		accessToken: params.auth.accessToken,
+		accountId: params.auth.accountId,
+		deviceId: params.auth.deviceId,
+		env: params.env
+	});
+	return path.join(storagePaths.rootDir, STARTUP_VERIFICATION_STATE_FILENAME);
+}
+async function readStartupVerificationState(filePath) {
+	const { value } = await readJsonFileWithFallback(filePath, null);
+	return value && typeof value === "object" ? value : null;
+}
+async function clearStartupVerificationState(filePath) {
+	await fs.rm(filePath, { force: true }).catch(() => {});
+}
+function resolveStateCooldownMs(state, cooldownMs) {
+	if (state?.outcome === "failed") return Math.min(cooldownMs, DEFAULT_STARTUP_VERIFICATION_FAILURE_COOLDOWN_MS);
+	return cooldownMs;
+}
+function resolveRetryAfterMs(params) {
+	const attemptedAtMs = Date.parse(params.attemptedAt ?? "");
+	if (!Number.isFinite(attemptedAtMs)) return;
+	const remaining = attemptedAtMs + params.cooldownMs - params.nowMs;
+	return remaining > 0 ? remaining : void 0;
+}
+function shouldHonorCooldown(params) {
+	if (!params.state || params.stateCooldownMs <= 0) return false;
+	if (params.state.userId && params.verification.userId && params.state.userId !== params.verification.userId) return false;
+	if (params.state.deviceId && params.verification.deviceId && params.state.deviceId !== params.verification.deviceId) return false;
+	return resolveRetryAfterMs({
+		attemptedAt: params.state.attemptedAt,
+		cooldownMs: params.stateCooldownMs,
+		nowMs: params.nowMs
+	}) !== void 0;
+}
+function hasPendingSelfVerification(verifications) {
+	return verifications.some((entry) => entry.isSelfVerification && !entry.completed && entry.pending);
+}
+async function ensureMatrixStartupVerification(params) {
+	if (params.auth.encryption !== true || !params.client.crypto) return { kind: "unsupported" };
+	const verification = await params.client.getOwnDeviceVerificationStatus();
+	const statePath = params.stateFilePath ?? resolveStartupVerificationStatePath({
+		auth: params.auth,
+		env: params.env
+	});
+	if (verification.verified) {
+		await clearStartupVerificationState(statePath);
+		return {
+			kind: "verified",
+			verification
+		};
+	}
+	if ((params.accountConfig.startupVerification ?? DEFAULT_STARTUP_VERIFICATION_MODE) === "off") {
+		await clearStartupVerificationState(statePath);
+		return {
+			kind: "disabled",
+			verification
+		};
+	}
+	if (hasPendingSelfVerification(await params.client.crypto.listVerifications().catch(() => []))) return {
+		kind: "pending",
+		verification
+	};
+	const cooldownMs = normalizeCooldownHours(params.accountConfig.startupVerificationCooldownHours) * 60 * 60 * 1e3;
+	const nowMs = params.nowMs ?? Date.now();
+	const state = await readStartupVerificationState(statePath);
+	const stateCooldownMs = resolveStateCooldownMs(state, cooldownMs);
+	if (shouldHonorCooldown({
+		state,
+		verification,
+		stateCooldownMs,
+		nowMs
+	})) return {
+		kind: "cooldown",
+		verification,
+		retryAfterMs: resolveRetryAfterMs({
+			attemptedAt: state?.attemptedAt,
+			cooldownMs: stateCooldownMs,
+			nowMs
+		})
+	};
+	try {
+		const request = await params.client.crypto.requestVerification({ ownUser: true });
+		await writeJsonFileAtomically(statePath, {
+			userId: verification.userId,
+			deviceId: verification.deviceId,
+			attemptedAt: new Date(nowMs).toISOString(),
+			outcome: "requested",
+			requestId: request.id,
+			transactionId: request.transactionId
+		});
+		return {
+			kind: "requested",
+			verification,
+			requestId: request.id,
+			transactionId: request.transactionId ?? void 0
+		};
+	} catch (err) {
+		const error = formatMatrixErrorMessage(err);
+		await writeJsonFileAtomically(statePath, {
+			userId: verification.userId,
+			deviceId: verification.deviceId,
+			attemptedAt: new Date(nowMs).toISOString(),
+			outcome: "failed",
+			error
+		}).catch(() => {});
+		return {
+			kind: "request-failed",
+			verification,
+			error
+		};
+	}
+}
+//#endregion
+export { ensureMatrixStartupVerification };

package/dist/storage-nyO0DOFE.js ADDED Viewed

@@ -0,0 +1,281 @@
+import { a as resolveMatrixDefaultOrOnlyAccountId, n as requiresExplicitMatrixDefaultAccount } from "./account-selection-Y50DNJ2l.js";
+import { t as getMatrixRuntime } from "./runtime-B-Fyrmxo.js";
+import { n as resolveMatrixAccountStorageRoot, s as resolveMatrixLegacyFlatStoragePaths } from "./storage-paths-BTAketfg.js";
+import { normalizeAccountId } from "klaw/plugin-sdk/account-id";
+import fs from "node:fs";
+import os from "node:os";
+import path from "node:path";
+import { loadJsonFile, saveJsonFile } from "klaw/plugin-sdk/json-store";
+//#region extensions/matrix/src/matrix/client/storage.ts
+const DEFAULT_ACCOUNT_KEY = "default";
+const STORAGE_META_FILENAME = "storage-meta.json";
+const THREAD_BINDINGS_FILENAME = "thread-bindings.json";
+const LEGACY_CRYPTO_MIGRATION_FILENAME = "legacy-crypto-migration.json";
+const RECOVERY_KEY_FILENAME = "recovery-key.json";
+const IDB_SNAPSHOT_FILENAME = "crypto-idb-snapshot.json";
+const STARTUP_VERIFICATION_FILENAME = "startup-verification.json";
+function resolveLegacyStoragePaths(env = process.env) {
+	const legacy = resolveMatrixLegacyFlatStoragePaths(getMatrixRuntime().state.resolveStateDir(env, os.homedir));
+	return {
+		storagePath: legacy.storagePath,
+		cryptoPath: legacy.cryptoPath
+	};
+}
+function assertLegacyMigrationAccountSelection(params) {
+	const cfg = getMatrixRuntime().config.current();
+	if (!cfg.channels?.matrix || typeof cfg.channels.matrix !== "object") return;
+	if (requiresExplicitMatrixDefaultAccount(cfg)) throw new Error("Legacy Matrix client storage cannot be migrated automatically because multiple Matrix accounts are configured and channels.matrix.defaultAccount is not set.");
+	const selectedAccountId = normalizeAccountId(resolveMatrixDefaultOrOnlyAccountId(cfg));
+	const currentAccountId = normalizeAccountId(params.accountKey);
+	if (selectedAccountId !== currentAccountId) throw new Error(`Legacy Matrix client storage targets account "${selectedAccountId}", but the current client is starting account "${currentAccountId}". Start the selected account first so flat legacy storage is not migrated into the wrong account directory.`);
+}
+function scoreStorageRoot(rootDir) {
+	let score = 0;
+	if (fs.existsSync(path.join(rootDir, "bot-storage.json"))) score += 8;
+	if (fs.existsSync(path.join(rootDir, "crypto"))) score += 8;
+	if (fs.existsSync(path.join(rootDir, THREAD_BINDINGS_FILENAME))) score += 4;
+	if (fs.existsSync(path.join(rootDir, LEGACY_CRYPTO_MIGRATION_FILENAME))) score += 3;
+	if (fs.existsSync(path.join(rootDir, RECOVERY_KEY_FILENAME))) score += 2;
+	if (fs.existsSync(path.join(rootDir, IDB_SNAPSHOT_FILENAME))) score += 2;
+	if (fs.existsSync(path.join(rootDir, STORAGE_META_FILENAME))) score += 1;
+	return score;
+}
+function resolveStorageRootMtimeMs(rootDir) {
+	try {
+		return fs.statSync(rootDir).mtimeMs;
+	} catch {
+		return 0;
+	}
+}
+function readStoredRootMetadata(rootDir) {
+	const metadata = {};
+	const parsed = loadJsonFile(path.join(rootDir, STORAGE_META_FILENAME));
+	if (parsed) {
+		if (typeof parsed.homeserver === "string" && parsed.homeserver.trim()) metadata.homeserver = parsed.homeserver.trim();
+		if (typeof parsed.userId === "string" && parsed.userId.trim()) metadata.userId = parsed.userId.trim();
+		if (typeof parsed.accountId === "string" && parsed.accountId.trim()) metadata.accountId = parsed.accountId.trim();
+		if (typeof parsed.accessTokenHash === "string" && parsed.accessTokenHash.trim()) metadata.accessTokenHash = parsed.accessTokenHash.trim();
+		if (typeof parsed.deviceId === "string" && parsed.deviceId.trim()) metadata.deviceId = parsed.deviceId.trim();
+		if (parsed.currentTokenStateClaimed === true) metadata.currentTokenStateClaimed = true;
+		if (typeof parsed.createdAt === "string" && parsed.createdAt.trim()) metadata.createdAt = parsed.createdAt.trim();
+	}
+	const verification = loadJsonFile(path.join(rootDir, STARTUP_VERIFICATION_FILENAME));
+	if (!metadata.deviceId && typeof verification?.deviceId === "string" && verification.deviceId.trim()) metadata.deviceId = verification.deviceId.trim();
+	return metadata;
+}
+function isCompatibleStorageRoot(params) {
+	const metadata = readStoredRootMetadata(params.candidateRootDir);
+	if (metadata.homeserver && metadata.homeserver !== params.homeserver) return false;
+	if (metadata.userId && metadata.userId !== params.userId) return false;
+	if (metadata.accountId && normalizeAccountId(metadata.accountId) !== normalizeAccountId(params.accountKey)) return false;
+	if (params.deviceId && metadata.deviceId && metadata.deviceId.trim() && metadata.deviceId.trim() !== params.deviceId.trim()) return false;
+	if (params.requireExplicitDeviceMatch && params.deviceId && (!metadata.deviceId || metadata.deviceId.trim() !== params.deviceId.trim())) return false;
+	return true;
+}
+function resolvePreferredMatrixStorageRoot(params) {
+	const parentDir = path.dirname(params.canonicalRootDir);
+	const bestCurrentScore = scoreStorageRoot(params.canonicalRootDir);
+	let best = {
+		rootDir: params.canonicalRootDir,
+		tokenHash: params.canonicalTokenHash,
+		score: bestCurrentScore,
+		mtimeMs: resolveStorageRootMtimeMs(params.canonicalRootDir)
+	};
+	if (!params.deviceId?.trim()) return {
+		rootDir: best.rootDir,
+		tokenHash: best.tokenHash
+	};
+	const canonicalMetadata = readStoredRootMetadata(params.canonicalRootDir);
+	if (canonicalMetadata.accessTokenHash === params.canonicalTokenHash && canonicalMetadata.deviceId?.trim() === params.deviceId.trim() && canonicalMetadata.currentTokenStateClaimed === true) return {
+		rootDir: best.rootDir,
+		tokenHash: best.tokenHash
+	};
+	let siblingEntries = [];
+	try {
+		siblingEntries = fs.readdirSync(parentDir, { withFileTypes: true });
+	} catch {
+		return {
+			rootDir: best.rootDir,
+			tokenHash: best.tokenHash
+		};
+	}
+	for (const entry of siblingEntries) {
+		if (!entry.isDirectory()) continue;
+		if (entry.name === params.canonicalTokenHash) continue;
+		const candidateRootDir = path.join(parentDir, entry.name);
+		if (!isCompatibleStorageRoot({
+			candidateRootDir,
+			homeserver: params.homeserver,
+			userId: params.userId,
+			accountKey: params.accountKey,
+			deviceId: params.deviceId,
+			requireExplicitDeviceMatch: Boolean(params.deviceId)
+		})) continue;
+		const candidateScore = scoreStorageRoot(candidateRootDir);
+		if (candidateScore <= 0) continue;
+		const candidateMtimeMs = resolveStorageRootMtimeMs(candidateRootDir);
+		if (candidateScore > best.score || best.rootDir !== params.canonicalRootDir && candidateScore === best.score && candidateMtimeMs > best.mtimeMs) best = {
+			rootDir: candidateRootDir,
+			tokenHash: entry.name,
+			score: candidateScore,
+			mtimeMs: candidateMtimeMs
+		};
+	}
+	return {
+		rootDir: best.rootDir,
+		tokenHash: best.tokenHash
+	};
+}
+function resolveMatrixStoragePaths(params) {
+	const env = params.env ?? process.env;
+	const canonical = resolveMatrixAccountStorageRoot({
+		stateDir: params.stateDir ?? getMatrixRuntime().state.resolveStateDir(env, os.homedir),
+		homeserver: params.homeserver,
+		userId: params.userId,
+		accessToken: params.accessToken,
+		accountId: params.accountId
+	});
+	const { rootDir, tokenHash } = resolvePreferredMatrixStorageRoot({
+		canonicalRootDir: canonical.rootDir,
+		canonicalTokenHash: canonical.tokenHash,
+		homeserver: params.homeserver,
+		userId: params.userId,
+		accountKey: canonical.accountKey,
+		deviceId: params.deviceId
+	});
+	return {
+		rootDir,
+		storagePath: path.join(rootDir, "bot-storage.json"),
+		cryptoPath: path.join(rootDir, "crypto"),
+		metaPath: path.join(rootDir, STORAGE_META_FILENAME),
+		recoveryKeyPath: path.join(rootDir, "recovery-key.json"),
+		idbSnapshotPath: path.join(rootDir, IDB_SNAPSHOT_FILENAME),
+		accountKey: canonical.accountKey,
+		tokenHash
+	};
+}
+function resolveMatrixStateFilePath(params) {
+	const storagePaths = resolveMatrixStoragePaths({
+		homeserver: params.auth.homeserver,
+		userId: params.auth.userId,
+		accessToken: params.auth.accessToken,
+		accountId: params.accountId ?? params.auth.accountId,
+		deviceId: params.auth.deviceId,
+		env: params.env,
+		stateDir: params.stateDir
+	});
+	return path.join(storagePaths.rootDir, params.filename);
+}
+async function maybeMigrateLegacyStorage(params) {
+	const legacy = resolveLegacyStoragePaths(params.env);
+	const hasLegacyStorage = fs.existsSync(legacy.storagePath);
+	const hasLegacyCrypto = fs.existsSync(legacy.cryptoPath);
+	if (!hasLegacyStorage && !hasLegacyCrypto) return;
+	const hasTargetStorage = fs.existsSync(params.storagePaths.storagePath);
+	const hasTargetCrypto = fs.existsSync(params.storagePaths.cryptoPath);
+	const shouldMigrateStorage = hasLegacyStorage && !hasTargetStorage;
+	const shouldMigrateCrypto = hasLegacyCrypto && !hasTargetCrypto;
+	if (!shouldMigrateStorage && !shouldMigrateCrypto) return;
+	assertLegacyMigrationAccountSelection({ accountKey: params.storagePaths.accountKey });
+	const logger = getMatrixRuntime().logging.getChildLogger({ module: "matrix-storage" });
+	const { maybeCreateMatrixMigrationSnapshot } = await import("./migration-snapshot.runtime-BLcy_Nvw.js");
+	await maybeCreateMatrixMigrationSnapshot({
+		trigger: "matrix-client-fallback",
+		env: params.env,
+		log: logger
+	});
+	fs.mkdirSync(params.storagePaths.rootDir, { recursive: true });
+	const moved = [];
+	const skippedExistingTargets = [];
+	try {
+		if (shouldMigrateStorage) moveLegacyStoragePathOrThrow({
+			sourcePath: legacy.storagePath,
+			targetPath: params.storagePaths.storagePath,
+			label: "sync store",
+			moved
+		});
+		else if (hasLegacyStorage) skippedExistingTargets.push(`- sync store remains at ${legacy.storagePath} because ${params.storagePaths.storagePath} already exists`);
+		if (shouldMigrateCrypto) moveLegacyStoragePathOrThrow({
+			sourcePath: legacy.cryptoPath,
+			targetPath: params.storagePaths.cryptoPath,
+			label: "crypto store",
+			moved
+		});
+		else if (hasLegacyCrypto) skippedExistingTargets.push(`- crypto store remains at ${legacy.cryptoPath} because ${params.storagePaths.cryptoPath} already exists`);
+	} catch (err) {
+		const rollbackError = rollbackLegacyMoves(moved);
+		throw new Error(rollbackError ? `Failed migrating legacy Matrix client storage: ${String(err)}. Rollback also failed: ${rollbackError}` : `Failed migrating legacy Matrix client storage: ${String(err)}`, { cause: err });
+	}
+	if (moved.length > 0) logger.info(`matrix: migrated legacy client storage into ${params.storagePaths.rootDir}\n${moved.map((entry) => `- ${entry.label}: ${entry.sourcePath} -> ${entry.targetPath}`).join("\n")}`);
+	if (skippedExistingTargets.length > 0) logger.warn?.(`matrix: legacy client storage still exists in the flat path because some account-scoped targets already existed.\n${skippedExistingTargets.join("\n")}`);
+}
+function moveLegacyStoragePathOrThrow(params) {
+	if (!fs.existsSync(params.sourcePath)) return;
+	if (fs.existsSync(params.targetPath)) throw new Error(`legacy Matrix ${params.label} target already exists (${params.targetPath}); refusing to overwrite it automatically`);
+	fs.renameSync(params.sourcePath, params.targetPath);
+	params.moved.push({
+		sourcePath: params.sourcePath,
+		targetPath: params.targetPath,
+		label: params.label
+	});
+}
+function rollbackLegacyMoves(moved) {
+	for (const entry of moved.toReversed()) try {
+		if (!fs.existsSync(entry.targetPath) || fs.existsSync(entry.sourcePath)) continue;
+		fs.renameSync(entry.targetPath, entry.sourcePath);
+	} catch (err) {
+		return `${entry.label} (${entry.targetPath} -> ${entry.sourcePath}): ${String(err)}`;
+	}
+	return null;
+}
+function writeStoredRootMetadata(metaPath, payload) {
+	try {
+		saveJsonFile(metaPath, payload);
+		return true;
+	} catch {
+		return false;
+	}
+}
+function writeStorageMeta(params) {
+	const existing = readStoredRootMetadata(params.storagePaths.rootDir);
+	return writeStoredRootMetadata(params.storagePaths.metaPath, {
+		homeserver: params.homeserver,
+		userId: params.userId,
+		accountId: params.accountId ?? DEFAULT_ACCOUNT_KEY,
+		accessTokenHash: params.storagePaths.tokenHash,
+		deviceId: params.deviceId ?? null,
+		currentTokenStateClaimed: params.currentTokenStateClaimed ?? existing.currentTokenStateClaimed === true,
+		createdAt: existing.createdAt ?? (/* @__PURE__ */ new Date()).toISOString()
+	});
+}
+function claimCurrentTokenStorageState(params) {
+	const metadata = readStoredRootMetadata(params.rootDir);
+	if (!metadata.accessTokenHash?.trim()) return false;
+	return writeStoredRootMetadata(path.join(params.rootDir, STORAGE_META_FILENAME), {
+		homeserver: metadata.homeserver,
+		userId: metadata.userId,
+		accountId: metadata.accountId ?? DEFAULT_ACCOUNT_KEY,
+		accessTokenHash: metadata.accessTokenHash,
+		deviceId: metadata.deviceId ?? null,
+		currentTokenStateClaimed: true,
+		createdAt: metadata.createdAt ?? (/* @__PURE__ */ new Date()).toISOString()
+	});
+}
+function repairCurrentTokenStorageMetaDeviceId(params) {
+	return writeStorageMeta({
+		storagePaths: resolveMatrixStoragePaths({
+			homeserver: params.homeserver,
+			userId: params.userId,
+			accessToken: params.accessToken,
+			accountId: params.accountId,
+			env: params.env,
+			stateDir: params.stateDir
+		}),
+		homeserver: params.homeserver,
+		userId: params.userId,
+		accountId: params.accountId,
+		deviceId: params.deviceId
+	});
+}
+//#endregion
+export { resolveMatrixStoragePaths as a, resolveMatrixStateFilePath as i, maybeMigrateLegacyStorage as n, writeStorageMeta as o, repairCurrentTokenStorageMetaDeviceId as r, claimCurrentTokenStorageState as t };

package/dist/storage-paths-BTAketfg.js ADDED Viewed

@@ -0,0 +1,52 @@
+import { DEFAULT_ACCOUNT_ID, normalizeAccountId } from "klaw/plugin-sdk/account-id";
+import { normalizeLowercaseStringOrEmpty } from "klaw/plugin-sdk/string-coerce-runtime";
+import path from "node:path";
+import crypto from "node:crypto";
+//#region extensions/matrix/src/storage-paths.ts
+function sanitizeMatrixPathSegment(value) {
+	return normalizeLowercaseStringOrEmpty(value).replace(/[^a-z0-9._-]+/g, "_").replace(/^_+|_+$/g, "") || "unknown";
+}
+function resolveMatrixHomeserverKey(homeserver) {
+	try {
+		const url = new URL(homeserver);
+		if (url.host) return sanitizeMatrixPathSegment(url.host);
+	} catch {}
+	return sanitizeMatrixPathSegment(homeserver);
+}
+function hashMatrixAccessToken(accessToken) {
+	return crypto.createHash("sha256").update(accessToken).digest("hex").slice(0, 16);
+}
+function resolveMatrixCredentialsFilename(accountId) {
+	const normalized = normalizeAccountId(accountId);
+	return normalized === DEFAULT_ACCOUNT_ID ? "credentials.json" : `credentials-${normalized}.json`;
+}
+function resolveMatrixCredentialsDir(stateDir) {
+	return path.join(stateDir, "credentials", "matrix");
+}
+function resolveMatrixCredentialsPath(params) {
+	return path.join(resolveMatrixCredentialsDir(params.stateDir), resolveMatrixCredentialsFilename(params.accountId));
+}
+function resolveMatrixLegacyFlatStoreRoot(stateDir) {
+	return path.join(stateDir, "matrix");
+}
+function resolveMatrixLegacyFlatStoragePaths(stateDir) {
+	const rootDir = resolveMatrixLegacyFlatStoreRoot(stateDir);
+	return {
+		rootDir,
+		storagePath: path.join(rootDir, "bot-storage.json"),
+		cryptoPath: path.join(rootDir, "crypto")
+	};
+}
+function resolveMatrixAccountStorageRoot(params) {
+	const accountKey = sanitizeMatrixPathSegment(params.accountId ?? DEFAULT_ACCOUNT_ID);
+	const userKey = sanitizeMatrixPathSegment(params.userId);
+	const serverKey = resolveMatrixHomeserverKey(params.homeserver);
+	const tokenHash = hashMatrixAccessToken(params.accessToken);
+	return {
+		rootDir: path.join(params.stateDir, "matrix", "accounts", accountKey, `${serverKey}__${userKey}`, tokenHash),
+		accountKey,
+		tokenHash
+	};
+}
+//#endregion
+export { resolveMatrixCredentialsPath as a, resolveMatrixLegacyFlatStoreRoot as c, resolveMatrixCredentialsFilename as i, sanitizeMatrixPathSegment as l, resolveMatrixAccountStorageRoot as n, resolveMatrixHomeserverKey as o, resolveMatrixCredentialsDir as r, resolveMatrixLegacyFlatStoragePaths as s, hashMatrixAccessToken as t };