npm - @larksuite/openclaw-lark - Versions diffs - 2026.3.9 - Mend

@larksuite/openclaw-lark 2026.3.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (689) hide show

package/LICENSE +10 -0
package/README.md +283 -0
package/index.d.ts +37 -0
package/index.d.ts.map +1 -0
package/index.js +119 -0
package/index.js.map +1 -0
package/openclaw.plugin.json +10 -0
package/package.json +47 -0
package/skills/feishu-bitable/SKILL.md +248 -0
package/skills/feishu-bitable/references/examples.md +813 -0
package/skills/feishu-bitable/references/field-properties.md +763 -0
package/skills/feishu-bitable/references/record-values.md +911 -0
package/skills/feishu-calendar/SKILL.md +244 -0
package/skills/feishu-channel-rules/SKILL.md +18 -0
package/skills/feishu-channel-rules/references/markdown-syntax.md +138 -0
package/skills/feishu-create-doc/SKILL.md +719 -0
package/skills/feishu-fetch-doc/SKILL.md +93 -0
package/skills/feishu-im-read/SKILL.md +163 -0
package/skills/feishu-task/SKILL.md +293 -0
package/skills/feishu-troubleshoot/SKILL.md +70 -0
package/skills/feishu-update-doc/SKILL.md +285 -0
package/src/card/builder.d.ts +100 -0
package/src/card/builder.d.ts.map +1 -0
package/src/card/builder.js +381 -0
package/src/card/builder.js.map +1 -0
package/src/card/cardkit.d.ts +91 -0
package/src/card/cardkit.d.ts.map +1 -0
package/src/card/cardkit.js +182 -0
package/src/card/cardkit.js.map +1 -0
package/src/card/flush-controller.d.ts +46 -0
package/src/card/flush-controller.d.ts.map +1 -0
package/src/card/flush-controller.js +135 -0
package/src/card/flush-controller.js.map +1 -0
package/src/card/markdown-style.d.ts +17 -0
package/src/card/markdown-style.d.ts.map +1 -0
package/src/card/markdown-style.js +98 -0
package/src/card/markdown-style.js.map +1 -0
package/src/card/reply-dispatcher-types.d.ts +121 -0
package/src/card/reply-dispatcher-types.d.ts.map +1 -0
package/src/card/reply-dispatcher-types.js +58 -0
package/src/card/reply-dispatcher-types.js.map +1 -0
package/src/card/reply-dispatcher.d.ts +16 -0
package/src/card/reply-dispatcher.d.ts.map +1 -0
package/src/card/reply-dispatcher.js +293 -0
package/src/card/reply-dispatcher.js.map +1 -0
package/src/card/reply-mode.d.ts +39 -0
package/src/card/reply-mode.d.ts.map +1 -0
package/src/card/reply-mode.js +66 -0
package/src/card/reply-mode.js.map +1 -0
package/src/card/streaming-card-controller.d.ts +88 -0
package/src/card/streaming-card-controller.d.ts.map +1 -0
package/src/card/streaming-card-controller.js +717 -0
package/src/card/streaming-card-controller.js.map +1 -0
package/src/card/unavailable-guard.d.ts +36 -0
package/src/card/unavailable-guard.d.ts.map +1 -0
package/src/card/unavailable-guard.js +84 -0
package/src/card/unavailable-guard.js.map +1 -0
package/src/channel/abort-detect.d.ts +35 -0
package/src/channel/abort-detect.d.ts.map +1 -0
package/src/channel/abort-detect.js +125 -0
package/src/channel/abort-detect.js.map +1 -0
package/src/channel/chat-queue.d.ts +42 -0
package/src/channel/chat-queue.d.ts.map +1 -0
package/src/channel/chat-queue.js +59 -0
package/src/channel/chat-queue.js.map +1 -0
package/src/channel/config-adapter.d.ts +24 -0
package/src/channel/config-adapter.d.ts.map +1 -0
package/src/channel/config-adapter.js +102 -0
package/src/channel/config-adapter.js.map +1 -0
package/src/channel/directory.d.ts +58 -0
package/src/channel/directory.d.ts.map +1 -0
package/src/channel/directory.js +192 -0
package/src/channel/directory.js.map +1 -0
package/src/channel/event-handlers.d.ts +16 -0
package/src/channel/event-handlers.d.ts.map +1 -0
package/src/channel/event-handlers.js +222 -0
package/src/channel/event-handlers.js.map +1 -0
package/src/channel/monitor.d.ts +18 -0
package/src/channel/monitor.d.ts.map +1 -0
package/src/channel/monitor.js +128 -0
package/src/channel/monitor.js.map +1 -0
package/src/channel/onboarding-config.d.ts +18 -0
package/src/channel/onboarding-config.d.ts.map +1 -0
package/src/channel/onboarding-config.js +89 -0
package/src/channel/onboarding-config.js.map +1 -0
package/src/channel/onboarding-migrate.d.ts +26 -0
package/src/channel/onboarding-migrate.d.ts.map +1 -0
package/src/channel/onboarding-migrate.js +68 -0
package/src/channel/onboarding-migrate.js.map +1 -0
package/src/channel/onboarding.d.ts +13 -0
package/src/channel/onboarding.d.ts.map +1 -0
package/src/channel/onboarding.js +297 -0
package/src/channel/onboarding.js.map +1 -0
package/src/channel/plugin.d.ts +14 -0
package/src/channel/plugin.d.ts.map +1 -0
package/src/channel/plugin.js +279 -0
package/src/channel/plugin.js.map +1 -0
package/src/channel/probe.d.ts +15 -0
package/src/channel/probe.d.ts.map +1 -0
package/src/channel/probe.js +22 -0
package/src/channel/probe.js.map +1 -0
package/src/channel/types.d.ts +37 -0
package/src/channel/types.d.ts.map +1 -0
package/src/channel/types.js +8 -0
package/src/channel/types.js.map +1 -0
package/src/commands/auth.d.ts +16 -0
package/src/commands/auth.d.ts.map +1 -0
package/src/commands/auth.js +85 -0
package/src/commands/auth.js.map +1 -0
package/src/commands/diagnose.d.ts +70 -0
package/src/commands/diagnose.d.ts.map +1 -0
package/src/commands/diagnose.js +808 -0
package/src/commands/diagnose.js.map +1 -0
package/src/commands/doctor.d.ts +18 -0
package/src/commands/doctor.d.ts.map +1 -0
package/src/commands/doctor.js +439 -0
package/src/commands/doctor.js.map +1 -0
package/src/commands/index.d.ts +9 -0
package/src/commands/index.d.ts.map +1 -0
package/src/commands/index.js +208 -0
package/src/commands/index.js.map +1 -0
package/src/core/accounts.d.ts +38 -0
package/src/core/accounts.d.ts.map +1 -0
package/src/core/accounts.js +179 -0
package/src/core/accounts.js.map +1 -0
package/src/core/agent-config.d.ts +101 -0
package/src/core/agent-config.d.ts.map +1 -0
package/src/core/agent-config.js +140 -0
package/src/core/agent-config.js.map +1 -0
package/src/core/api-error.d.ts +49 -0
package/src/core/api-error.d.ts.map +1 -0
package/src/core/api-error.js +113 -0
package/src/core/api-error.js.map +1 -0
package/src/core/app-owner-fallback.d.ts +22 -0
package/src/core/app-owner-fallback.d.ts.map +1 -0
package/src/core/app-owner-fallback.js +39 -0
package/src/core/app-owner-fallback.js.map +1 -0
package/src/core/app-scope-checker.d.ts +88 -0
package/src/core/app-scope-checker.d.ts.map +1 -0
package/src/core/app-scope-checker.js +191 -0
package/src/core/app-scope-checker.js.map +1 -0
package/src/core/auth-errors.d.ts +143 -0
package/src/core/auth-errors.d.ts.map +1 -0
package/src/core/auth-errors.js +156 -0
package/src/core/auth-errors.js.map +1 -0
package/src/core/chat-info-cache.d.ts +58 -0
package/src/core/chat-info-cache.d.ts.map +1 -0
package/src/core/chat-info-cache.js +153 -0
package/src/core/chat-info-cache.js.map +1 -0
package/src/core/config-schema.d.ts +449 -0
package/src/core/config-schema.d.ts.map +1 -0
package/src/core/config-schema.js +201 -0
package/src/core/config-schema.js.map +1 -0
package/src/core/device-flow.d.ts +78 -0
package/src/core/device-flow.d.ts.map +1 -0
package/src/core/device-flow.js +213 -0
package/src/core/device-flow.js.map +1 -0
package/src/core/feishu-fetch.d.ts +19 -0
package/src/core/feishu-fetch.d.ts.map +1 -0
package/src/core/feishu-fetch.js +26 -0
package/src/core/feishu-fetch.js.map +1 -0
package/src/core/footer-config.d.ts +25 -0
package/src/core/footer-config.d.ts.map +1 -0
package/src/core/footer-config.js +40 -0
package/src/core/footer-config.js.map +1 -0
package/src/core/lark-client.d.ts +109 -0
package/src/core/lark-client.d.ts.map +1 -0
package/src/core/lark-client.js +354 -0
package/src/core/lark-client.js.map +1 -0
package/src/core/lark-logger.d.ts +24 -0
package/src/core/lark-logger.d.ts.map +1 -0
package/src/core/lark-logger.js +155 -0
package/src/core/lark-logger.js.map +1 -0
package/src/core/lark-ticket.d.ts +30 -0
package/src/core/lark-ticket.d.ts.map +1 -0
package/src/core/lark-ticket.js +36 -0
package/src/core/lark-ticket.js.map +1 -0
package/src/core/message-unavailable.d.ts +54 -0
package/src/core/message-unavailable.d.ts.map +1 -0
package/src/core/message-unavailable.js +131 -0
package/src/core/message-unavailable.js.map +1 -0
package/src/core/owner-policy.d.ts +32 -0
package/src/core/owner-policy.d.ts.map +1 -0
package/src/core/owner-policy.js +53 -0
package/src/core/owner-policy.js.map +1 -0
package/src/core/permission-url.d.ts +23 -0
package/src/core/permission-url.d.ts.map +1 -0
package/src/core/permission-url.js +73 -0
package/src/core/permission-url.js.map +1 -0
package/src/core/raw-request.d.ts +28 -0
package/src/core/raw-request.d.ts.map +1 -0
package/src/core/raw-request.js +63 -0
package/src/core/raw-request.js.map +1 -0
package/src/core/scope-manager.d.ts +169 -0
package/src/core/scope-manager.d.ts.map +1 -0
package/src/core/scope-manager.js +214 -0
package/src/core/scope-manager.js.map +1 -0
package/src/core/security-check.d.ts +73 -0
package/src/core/security-check.d.ts.map +1 -0
package/src/core/security-check.js +175 -0
package/src/core/security-check.js.map +1 -0
package/src/core/shutdown-hooks.d.ts +23 -0
package/src/core/shutdown-hooks.d.ts.map +1 -0
package/src/core/shutdown-hooks.js +57 -0
package/src/core/shutdown-hooks.js.map +1 -0
package/src/core/targets.d.ts +50 -0
package/src/core/targets.d.ts.map +1 -0
package/src/core/targets.js +128 -0
package/src/core/targets.js.map +1 -0
package/src/core/token-store.d.ts +55 -0
package/src/core/token-store.d.ts.map +1 -0
package/src/core/token-store.js +315 -0
package/src/core/token-store.js.map +1 -0
package/src/core/tool-client.d.ts +177 -0
package/src/core/tool-client.d.ts.map +1 -0
package/src/core/tool-client.js +381 -0
package/src/core/tool-client.js.map +1 -0
package/src/core/tool-scopes.d.ts +154 -0
package/src/core/tool-scopes.d.ts.map +1 -0
package/src/core/tool-scopes.js +326 -0
package/src/core/tool-scopes.js.map +1 -0
package/src/core/tools-config.d.ts +35 -0
package/src/core/tools-config.d.ts.map +1 -0
package/src/core/tools-config.js +88 -0
package/src/core/tools-config.js.map +1 -0
package/src/core/types.d.ts +88 -0
package/src/core/types.d.ts.map +1 -0
package/src/core/types.js +12 -0
package/src/core/types.js.map +1 -0
package/src/core/uat-client.d.ts +47 -0
package/src/core/uat-client.d.ts.map +1 -0
package/src/core/uat-client.js +173 -0
package/src/core/uat-client.js.map +1 -0
package/src/core/version.d.ts +26 -0
package/src/core/version.d.ts.map +1 -0
package/src/core/version.js +50 -0
package/src/core/version.js.map +1 -0
package/src/messaging/converters/audio.d.ts +9 -0
package/src/messaging/converters/audio.d.ts.map +1 -0
package/src/messaging/converters/audio.js +22 -0
package/src/messaging/converters/audio.js.map +1 -0
package/src/messaging/converters/calendar.d.ts +14 -0
package/src/messaging/converters/calendar.d.ts.map +1 -0
package/src/messaging/converters/calendar.js +51 -0
package/src/messaging/converters/calendar.js.map +1 -0
package/src/messaging/converters/content-converter.d.ts +42 -0
package/src/messaging/converters/content-converter.d.ts.map +1 -0
package/src/messaging/converters/content-converter.js +107 -0
package/src/messaging/converters/content-converter.js.map +1 -0
package/src/messaging/converters/file.d.ts +9 -0
package/src/messaging/converters/file.d.ts.map +1 -0
package/src/messaging/converters/file.js +21 -0
package/src/messaging/converters/file.js.map +1 -0
package/src/messaging/converters/folder.d.ts +9 -0
package/src/messaging/converters/folder.d.ts.map +1 -0
package/src/messaging/converters/folder.js +21 -0
package/src/messaging/converters/folder.js.map +1 -0
package/src/messaging/converters/hongbao.d.ts +9 -0
package/src/messaging/converters/hongbao.d.ts.map +1 -0
package/src/messaging/converters/hongbao.js +17 -0
package/src/messaging/converters/hongbao.js.map +1 -0
package/src/messaging/converters/image.d.ts +9 -0
package/src/messaging/converters/image.d.ts.map +1 -0
package/src/messaging/converters/image.js +19 -0
package/src/messaging/converters/image.js.map +1 -0
package/src/messaging/converters/index.d.ts +9 -0
package/src/messaging/converters/index.d.ts.map +1 -0
package/src/messaging/converters/index.js +51 -0
package/src/messaging/converters/index.js.map +1 -0
package/src/messaging/converters/interactive/card-converter.d.ts +77 -0
package/src/messaging/converters/interactive/card-converter.d.ts.map +1 -0
package/src/messaging/converters/interactive/card-converter.js +1174 -0
package/src/messaging/converters/interactive/card-converter.js.map +1 -0
package/src/messaging/converters/interactive/card-utils.d.ts +10 -0
package/src/messaging/converters/interactive/card-utils.d.ts.map +1 -0
package/src/messaging/converters/interactive/card-utils.js +43 -0
package/src/messaging/converters/interactive/card-utils.js.map +1 -0
package/src/messaging/converters/interactive/index.d.ts +9 -0
package/src/messaging/converters/interactive/index.d.ts.map +1 -0
package/src/messaging/converters/interactive/index.js +22 -0
package/src/messaging/converters/interactive/index.js.map +1 -0
package/src/messaging/converters/interactive/legacy.d.ts +12 -0
package/src/messaging/converters/interactive/legacy.d.ts.map +1 -0
package/src/messaging/converters/interactive/legacy.js +58 -0
package/src/messaging/converters/interactive/legacy.js.map +1 -0
package/src/messaging/converters/interactive/types.d.ts +24 -0
package/src/messaging/converters/interactive/types.d.ts.map +1 -0
package/src/messaging/converters/interactive/types.js +25 -0
package/src/messaging/converters/interactive/types.js.map +1 -0
package/src/messaging/converters/location.d.ts +9 -0
package/src/messaging/converters/location.d.ts.map +1 -0
package/src/messaging/converters/location.js +20 -0
package/src/messaging/converters/location.js.map +1 -0
package/src/messaging/converters/merge-forward.d.ts +33 -0
package/src/messaging/converters/merge-forward.d.ts.map +1 -0
package/src/messaging/converters/merge-forward.js +226 -0
package/src/messaging/converters/merge-forward.js.map +1 -0
package/src/messaging/converters/post.d.ts +12 -0
package/src/messaging/converters/post.d.ts.map +1 -0
package/src/messaging/converters/post.js +136 -0
package/src/messaging/converters/post.js.map +1 -0
package/src/messaging/converters/share.d.ts +10 -0
package/src/messaging/converters/share.d.ts.map +1 -0
package/src/messaging/converters/share.js +24 -0
package/src/messaging/converters/share.js.map +1 -0
package/src/messaging/converters/sticker.d.ts +9 -0
package/src/messaging/converters/sticker.d.ts.map +1 -0
package/src/messaging/converters/sticker.js +19 -0
package/src/messaging/converters/sticker.js.map +1 -0
package/src/messaging/converters/system.d.ts +13 -0
package/src/messaging/converters/system.d.ts.map +1 -0
package/src/messaging/converters/system.js +33 -0
package/src/messaging/converters/system.js.map +1 -0
package/src/messaging/converters/text.d.ts +9 -0
package/src/messaging/converters/text.d.ts.map +1 -0
package/src/messaging/converters/text.js +15 -0
package/src/messaging/converters/text.js.map +1 -0
package/src/messaging/converters/todo.d.ts +9 -0
package/src/messaging/converters/todo.d.ts.map +1 -0
package/src/messaging/converters/todo.js +42 -0
package/src/messaging/converters/todo.js.map +1 -0
package/src/messaging/converters/types.d.ts +108 -0
package/src/messaging/converters/types.d.ts.map +1 -0
package/src/messaging/converters/types.js +8 -0
package/src/messaging/converters/types.js.map +1 -0
package/src/messaging/converters/unknown.d.ts +9 -0
package/src/messaging/converters/unknown.d.ts.map +1 -0
package/src/messaging/converters/unknown.js +17 -0
package/src/messaging/converters/unknown.js.map +1 -0
package/src/messaging/converters/utils.d.ts +23 -0
package/src/messaging/converters/utils.d.ts.map +1 -0
package/src/messaging/converters/utils.js +52 -0
package/src/messaging/converters/utils.js.map +1 -0
package/src/messaging/converters/video-chat.d.ts +9 -0
package/src/messaging/converters/video-chat.d.ts.map +1 -0
package/src/messaging/converters/video-chat.js +24 -0
package/src/messaging/converters/video-chat.js.map +1 -0
package/src/messaging/converters/video.d.ts +9 -0
package/src/messaging/converters/video.d.ts.map +1 -0
package/src/messaging/converters/video.js +33 -0
package/src/messaging/converters/video.js.map +1 -0
package/src/messaging/converters/vote.d.ts +9 -0
package/src/messaging/converters/vote.d.ts.map +1 -0
package/src/messaging/converters/vote.js +25 -0
package/src/messaging/converters/vote.js.map +1 -0
package/src/messaging/inbound/dedup.d.ts +60 -0
package/src/messaging/inbound/dedup.d.ts.map +1 -0
package/src/messaging/inbound/dedup.js +117 -0
package/src/messaging/inbound/dedup.js.map +1 -0
package/src/messaging/inbound/dispatch-builders.d.ts +84 -0
package/src/messaging/inbound/dispatch-builders.d.ts.map +1 -0
package/src/messaging/inbound/dispatch-builders.js +153 -0
package/src/messaging/inbound/dispatch-builders.js.map +1 -0
package/src/messaging/inbound/dispatch-commands.d.ts +28 -0
package/src/messaging/inbound/dispatch-commands.d.ts.map +1 -0
package/src/messaging/inbound/dispatch-commands.js +113 -0
package/src/messaging/inbound/dispatch-commands.js.map +1 -0
package/src/messaging/inbound/dispatch-context.d.ts +68 -0
package/src/messaging/inbound/dispatch-context.d.ts.map +1 -0
package/src/messaging/inbound/dispatch-context.js +137 -0
package/src/messaging/inbound/dispatch-context.js.map +1 -0
package/src/messaging/inbound/dispatch.d.ts +48 -0
package/src/messaging/inbound/dispatch.d.ts.map +1 -0
package/src/messaging/inbound/dispatch.js +193 -0
package/src/messaging/inbound/dispatch.js.map +1 -0
package/src/messaging/inbound/enrich.d.ts +103 -0
package/src/messaging/inbound/enrich.d.ts.map +1 -0
package/src/messaging/inbound/enrich.js +228 -0
package/src/messaging/inbound/enrich.js.map +1 -0
package/src/messaging/inbound/gate-effects.d.ts +24 -0
package/src/messaging/inbound/gate-effects.d.ts.map +1 -0
package/src/messaging/inbound/gate-effects.js +44 -0
package/src/messaging/inbound/gate-effects.js.map +1 -0
package/src/messaging/inbound/gate.d.ts +61 -0
package/src/messaging/inbound/gate.d.ts.map +1 -0
package/src/messaging/inbound/gate.js +234 -0
package/src/messaging/inbound/gate.js.map +1 -0
package/src/messaging/inbound/handler.d.ts +36 -0
package/src/messaging/inbound/handler.d.ts.map +1 -0
package/src/messaging/inbound/handler.js +174 -0
package/src/messaging/inbound/handler.js.map +1 -0
package/src/messaging/inbound/media-resolver.d.ts +33 -0
package/src/messaging/inbound/media-resolver.d.ts.map +1 -0
package/src/messaging/inbound/media-resolver.js +88 -0
package/src/messaging/inbound/media-resolver.js.map +1 -0
package/src/messaging/inbound/mention.d.ts +40 -0
package/src/messaging/inbound/mention.d.ts.map +1 -0
package/src/messaging/inbound/mention.js +82 -0
package/src/messaging/inbound/mention.js.map +1 -0
package/src/messaging/inbound/parse-io.d.ts +51 -0
package/src/messaging/inbound/parse-io.d.ts.map +1 -0
package/src/messaging/inbound/parse-io.js +82 -0
package/src/messaging/inbound/parse-io.js.map +1 -0
package/src/messaging/inbound/parse.d.ts +29 -0
package/src/messaging/inbound/parse.d.ts.map +1 -0
package/src/messaging/inbound/parse.js +107 -0
package/src/messaging/inbound/parse.js.map +1 -0
package/src/messaging/inbound/permission.d.ts +18 -0
package/src/messaging/inbound/permission.d.ts.map +1 -0
package/src/messaging/inbound/permission.js +41 -0
package/src/messaging/inbound/permission.js.map +1 -0
package/src/messaging/inbound/policy.d.ts +95 -0
package/src/messaging/inbound/policy.d.ts.map +1 -0
package/src/messaging/inbound/policy.js +161 -0
package/src/messaging/inbound/policy.js.map +1 -0
package/src/messaging/inbound/reaction-handler.d.ts +62 -0
package/src/messaging/inbound/reaction-handler.d.ts.map +1 -0
package/src/messaging/inbound/reaction-handler.js +221 -0
package/src/messaging/inbound/reaction-handler.js.map +1 -0
package/src/messaging/inbound/user-name-cache.d.ts +83 -0
package/src/messaging/inbound/user-name-cache.d.ts.map +1 -0
package/src/messaging/inbound/user-name-cache.js +242 -0
package/src/messaging/inbound/user-name-cache.js.map +1 -0
package/src/messaging/outbound/actions.d.ts +17 -0
package/src/messaging/outbound/actions.d.ts.map +1 -0
package/src/messaging/outbound/actions.js +310 -0
package/src/messaging/outbound/actions.js.map +1 -0
package/src/messaging/outbound/chat-manage.d.ts +65 -0
package/src/messaging/outbound/chat-manage.d.ts.map +1 -0
package/src/messaging/outbound/chat-manage.js +112 -0
package/src/messaging/outbound/chat-manage.js.map +1 -0
package/src/messaging/outbound/deliver.d.ts +156 -0
package/src/messaging/outbound/deliver.d.ts.map +1 -0
package/src/messaging/outbound/deliver.js +299 -0
package/src/messaging/outbound/deliver.js.map +1 -0
package/src/messaging/outbound/fetch.d.ts +13 -0
package/src/messaging/outbound/fetch.d.ts.map +1 -0
package/src/messaging/outbound/fetch.js +13 -0
package/src/messaging/outbound/fetch.js.map +1 -0
package/src/messaging/outbound/forward.d.ts +27 -0
package/src/messaging/outbound/forward.d.ts.map +1 -0
package/src/messaging/outbound/forward.js +49 -0
package/src/messaging/outbound/forward.js.map +1 -0
package/src/messaging/outbound/media-url-utils.d.ts +30 -0
package/src/messaging/outbound/media-url-utils.d.ts.map +1 -0
package/src/messaging/outbound/media-url-utils.js +131 -0
package/src/messaging/outbound/media-url-utils.js.map +1 -0
package/src/messaging/outbound/media.d.ts +256 -0
package/src/messaging/outbound/media.d.ts.map +1 -0
package/src/messaging/outbound/media.js +749 -0
package/src/messaging/outbound/media.js.map +1 -0
package/src/messaging/outbound/outbound.d.ts +90 -0
package/src/messaging/outbound/outbound.d.ts.map +1 -0
package/src/messaging/outbound/outbound.js +112 -0
package/src/messaging/outbound/outbound.js.map +1 -0
package/src/messaging/outbound/reactions.d.ts +125 -0
package/src/messaging/outbound/reactions.d.ts.map +1 -0
package/src/messaging/outbound/reactions.js +379 -0
package/src/messaging/outbound/reactions.js.map +1 -0
package/src/messaging/outbound/send.d.ts +136 -0
package/src/messaging/outbound/send.d.ts.map +1 -0
package/src/messaging/outbound/send.js +289 -0
package/src/messaging/outbound/send.js.map +1 -0
package/src/messaging/outbound/typing.d.ts +61 -0
package/src/messaging/outbound/typing.d.ts.map +1 -0
package/src/messaging/outbound/typing.js +136 -0
package/src/messaging/outbound/typing.js.map +1 -0
package/src/messaging/shared/message-lookup.d.ts +55 -0
package/src/messaging/shared/message-lookup.d.ts.map +1 -0
package/src/messaging/shared/message-lookup.js +118 -0
package/src/messaging/shared/message-lookup.js.map +1 -0
package/src/messaging/types.d.ts +177 -0
package/src/messaging/types.d.ts.map +1 -0
package/src/messaging/types.js +11 -0
package/src/messaging/types.js.map +1 -0
package/src/tools/auto-auth.d.ts +57 -0
package/src/tools/auto-auth.d.ts.map +1 -0
package/src/tools/auto-auth.js +925 -0
package/src/tools/auto-auth.js.map +1 -0
package/src/tools/helpers.d.ts +220 -0
package/src/tools/helpers.d.ts.map +1 -0
package/src/tools/helpers.js +298 -0
package/src/tools/helpers.js.map +1 -0
package/src/tools/mcp/doc/create.d.ts +13 -0
package/src/tools/mcp/doc/create.d.ts.map +1 -0
package/src/tools/mcp/doc/create.js +45 -0
package/src/tools/mcp/doc/create.js.map +1 -0
package/src/tools/mcp/doc/fetch.d.ts +13 -0
package/src/tools/mcp/doc/fetch.d.ts.map +1 -0
package/src/tools/mcp/doc/fetch.js +37 -0
package/src/tools/mcp/doc/fetch.js.map +1 -0
package/src/tools/mcp/doc/index.d.ts +13 -0
package/src/tools/mcp/doc/index.d.ts.map +1 -0
package/src/tools/mcp/doc/index.js +42 -0
package/src/tools/mcp/doc/index.js.map +1 -0
package/src/tools/mcp/doc/update.d.ts +13 -0
package/src/tools/mcp/doc/update.d.ts.map +1 -0
package/src/tools/mcp/doc/update.js +62 -0
package/src/tools/mcp/doc/update.js.map +1 -0
package/src/tools/mcp/shared.d.ts +58 -0
package/src/tools/mcp/shared.d.ts.map +1 -0
package/src/tools/mcp/shared.js +224 -0
package/src/tools/mcp/shared.js.map +1 -0
package/src/tools/oapi/bitable/app-table-field.d.ts +17 -0
package/src/tools/oapi/bitable/app-table-field.d.ts.map +1 -0
package/src/tools/oapi/bitable/app-table-field.js +224 -0
package/src/tools/oapi/bitable/app-table-field.js.map +1 -0
package/src/tools/oapi/bitable/app-table-record.d.ts +21 -0
package/src/tools/oapi/bitable/app-table-record.d.ts.map +1 -0
package/src/tools/oapi/bitable/app-table-record.js +449 -0
package/src/tools/oapi/bitable/app-table-record.js.map +1 -0
package/src/tools/oapi/bitable/app-table-view.d.ts +18 -0
package/src/tools/oapi/bitable/app-table-view.d.ts.map +1 -0
package/src/tools/oapi/bitable/app-table-view.js +197 -0
package/src/tools/oapi/bitable/app-table-view.js.map +1 -0
package/src/tools/oapi/bitable/app-table.d.ts +20 -0
package/src/tools/oapi/bitable/app-table.d.ts.map +1 -0
package/src/tools/oapi/bitable/app-table.js +249 -0
package/src/tools/oapi/bitable/app-table.js.map +1 -0
package/src/tools/oapi/bitable/app.d.ts +19 -0
package/src/tools/oapi/bitable/app.d.ts.map +1 -0
package/src/tools/oapi/bitable/app.js +188 -0
package/src/tools/oapi/bitable/app.js.map +1 -0
package/src/tools/oapi/bitable/index.d.ts +10 -0
package/src/tools/oapi/bitable/index.d.ts.map +1 -0
package/src/tools/oapi/bitable/index.js +10 -0
package/src/tools/oapi/bitable/index.js.map +1 -0
package/src/tools/oapi/calendar/calendar.d.ts +16 -0
package/src/tools/oapi/calendar/calendar.d.ts.map +1 -0
package/src/tools/oapi/calendar/calendar.js +124 -0
package/src/tools/oapi/calendar/calendar.js.map +1 -0
package/src/tools/oapi/calendar/event-attendee.d.ts +17 -0
package/src/tools/oapi/calendar/event-attendee.d.ts.map +1 -0
package/src/tools/oapi/calendar/event-attendee.js +275 -0
package/src/tools/oapi/calendar/event-attendee.js.map +1 -0
package/src/tools/oapi/calendar/event.d.ts +17 -0
package/src/tools/oapi/calendar/event.d.ts.map +1 -0
package/src/tools/oapi/calendar/event.js +721 -0
package/src/tools/oapi/calendar/event.js.map +1 -0
package/src/tools/oapi/calendar/freebusy.d.ts +14 -0
package/src/tools/oapi/calendar/freebusy.d.ts.map +1 -0
package/src/tools/oapi/calendar/freebusy.js +113 -0
package/src/tools/oapi/calendar/freebusy.js.map +1 -0
package/src/tools/oapi/calendar/index.d.ts +9 -0
package/src/tools/oapi/calendar/index.d.ts.map +1 -0
package/src/tools/oapi/calendar/index.js +9 -0
package/src/tools/oapi/calendar/index.js.map +1 -0
package/src/tools/oapi/chat/chat.d.ts +17 -0
package/src/tools/oapi/chat/chat.d.ts.map +1 -0
package/src/tools/oapi/chat/chat.js +126 -0
package/src/tools/oapi/chat/chat.js.map +1 -0
package/src/tools/oapi/chat/index.d.ts +11 -0
package/src/tools/oapi/chat/index.d.ts.map +1 -0
package/src/tools/oapi/chat/index.js +16 -0
package/src/tools/oapi/chat/index.js.map +1 -0
package/src/tools/oapi/chat/members.d.ts +12 -0
package/src/tools/oapi/chat/members.d.ts.map +1 -0
package/src/tools/oapi/chat/members.js +83 -0
package/src/tools/oapi/chat/members.js.map +1 -0
package/src/tools/oapi/common/get-user.d.ts +13 -0
package/src/tools/oapi/common/get-user.d.ts.map +1 -0
package/src/tools/oapi/common/get-user.js +108 -0
package/src/tools/oapi/common/get-user.js.map +1 -0
package/src/tools/oapi/common/index.d.ts +7 -0
package/src/tools/oapi/common/index.d.ts.map +1 -0
package/src/tools/oapi/common/index.js +7 -0
package/src/tools/oapi/common/index.js.map +1 -0
package/src/tools/oapi/common/search-user.d.ts +12 -0
package/src/tools/oapi/common/search-user.d.ts.map +1 -0
package/src/tools/oapi/common/search-user.js +75 -0
package/src/tools/oapi/common/search-user.js.map +1 -0
package/src/tools/oapi/drive/doc-comments.d.ts +16 -0
package/src/tools/oapi/drive/doc-comments.d.ts.map +1 -0
package/src/tools/oapi/drive/doc-comments.js +288 -0
package/src/tools/oapi/drive/doc-comments.js.map +1 -0
package/src/tools/oapi/drive/doc-media.d.ts +20 -0
package/src/tools/oapi/drive/doc-media.d.ts.map +1 -0
package/src/tools/oapi/drive/doc-media.js +337 -0
package/src/tools/oapi/drive/doc-media.js.map +1 -0
package/src/tools/oapi/drive/file.d.ts +20 -0
package/src/tools/oapi/drive/file.d.ts.map +1 -0
package/src/tools/oapi/drive/file.js +485 -0
package/src/tools/oapi/drive/file.js.map +1 -0
package/src/tools/oapi/drive/index.d.ts +13 -0
package/src/tools/oapi/drive/index.d.ts.map +1 -0
package/src/tools/oapi/drive/index.js +37 -0
package/src/tools/oapi/drive/index.js.map +1 -0
package/src/tools/oapi/helpers.d.ts +174 -0
package/src/tools/oapi/helpers.d.ts.map +1 -0
package/src/tools/oapi/helpers.js +341 -0
package/src/tools/oapi/helpers.js.map +1 -0
package/src/tools/oapi/im/format-messages.d.ts +51 -0
package/src/tools/oapi/im/format-messages.d.ts.map +1 -0
package/src/tools/oapi/im/format-messages.js +166 -0
package/src/tools/oapi/im/format-messages.js.map +1 -0
package/src/tools/oapi/im/index.d.ts +11 -0
package/src/tools/oapi/im/index.d.ts.map +1 -0
package/src/tools/oapi/im/index.js +18 -0
package/src/tools/oapi/im/index.js.map +1 -0
package/src/tools/oapi/im/message-read.d.ts +14 -0
package/src/tools/oapi/im/message-read.d.ts.map +1 -0
package/src/tools/oapi/im/message-read.js +412 -0
package/src/tools/oapi/im/message-read.js.map +1 -0
package/src/tools/oapi/im/message.d.ts +17 -0
package/src/tools/oapi/im/message.d.ts.map +1 -0
package/src/tools/oapi/im/message.js +171 -0
package/src/tools/oapi/im/message.js.map +1 -0
package/src/tools/oapi/im/resource.d.ts +14 -0
package/src/tools/oapi/im/resource.d.ts.map +1 -0
package/src/tools/oapi/im/resource.js +152 -0
package/src/tools/oapi/im/resource.js.map +1 -0
package/src/tools/oapi/im/time-utils.d.ts +47 -0
package/src/tools/oapi/im/time-utils.d.ts.map +1 -0
package/src/tools/oapi/im/time-utils.js +202 -0
package/src/tools/oapi/im/time-utils.js.map +1 -0
package/src/tools/oapi/im/user-name-uat.d.ts +24 -0
package/src/tools/oapi/im/user-name-uat.d.ts.map +1 -0
package/src/tools/oapi/im/user-name-uat.js +128 -0
package/src/tools/oapi/im/user-name-uat.js.map +1 -0
package/src/tools/oapi/index.d.ts +12 -0
package/src/tools/oapi/index.d.ts.map +1 -0
package/src/tools/oapi/index.js +59 -0
package/src/tools/oapi/index.js.map +1 -0
package/src/tools/oapi/sdk-types.d.ts +97 -0
package/src/tools/oapi/sdk-types.d.ts.map +1 -0
package/src/tools/oapi/sdk-types.js +13 -0
package/src/tools/oapi/sdk-types.js.map +1 -0
package/src/tools/oapi/search/doc-search.d.ts +14 -0
package/src/tools/oapi/search/doc-search.d.ts.map +1 -0
package/src/tools/oapi/search/doc-search.js +203 -0
package/src/tools/oapi/search/doc-search.js.map +1 -0
package/src/tools/oapi/search/index.d.ts +13 -0
package/src/tools/oapi/search/index.d.ts.map +1 -0
package/src/tools/oapi/search/index.js +34 -0
package/src/tools/oapi/search/index.js.map +1 -0
package/src/tools/oapi/sheets/index.d.ts +13 -0
package/src/tools/oapi/sheets/index.d.ts.map +1 -0
package/src/tools/oapi/sheets/index.js +32 -0
package/src/tools/oapi/sheets/index.js.map +1 -0
package/src/tools/oapi/sheets/sheet.d.ts +17 -0
package/src/tools/oapi/sheets/sheet.d.ts.map +1 -0
package/src/tools/oapi/sheets/sheet.js +652 -0
package/src/tools/oapi/sheets/sheet.js.map +1 -0
package/src/tools/oapi/task/comment.d.ts +16 -0
package/src/tools/oapi/task/comment.d.ts.map +1 -0
package/src/tools/oapi/task/comment.js +142 -0
package/src/tools/oapi/task/comment.js.map +1 -0
package/src/tools/oapi/task/index.d.ts +9 -0
package/src/tools/oapi/task/index.d.ts.map +1 -0
package/src/tools/oapi/task/index.js +9 -0
package/src/tools/oapi/task/index.js.map +1 -0
package/src/tools/oapi/task/subtask.d.ts +15 -0
package/src/tools/oapi/task/subtask.d.ts.map +1 -0
package/src/tools/oapi/task/subtask.js +164 -0
package/src/tools/oapi/task/subtask.js.map +1 -0
package/src/tools/oapi/task/task.d.ts +17 -0
package/src/tools/oapi/task/task.d.ts.map +1 -0
package/src/tools/oapi/task/task.js +346 -0
package/src/tools/oapi/task/task.js.map +1 -0
package/src/tools/oapi/task/tasklist.d.ts +22 -0
package/src/tools/oapi/task/tasklist.d.ts.map +1 -0
package/src/tools/oapi/task/tasklist.js +323 -0
package/src/tools/oapi/task/tasklist.js.map +1 -0
package/src/tools/oapi/wiki/index.d.ts +13 -0
package/src/tools/oapi/wiki/index.d.ts.map +1 -0
package/src/tools/oapi/wiki/index.js +35 -0
package/src/tools/oapi/wiki/index.js.map +1 -0
package/src/tools/oapi/wiki/space-node.d.ts +18 -0
package/src/tools/oapi/wiki/space-node.d.ts.map +1 -0
package/src/tools/oapi/wiki/space-node.js +253 -0
package/src/tools/oapi/wiki/space-node.js.map +1 -0
package/src/tools/oapi/wiki/space.d.ts +16 -0
package/src/tools/oapi/wiki/space.d.ts.map +1 -0
package/src/tools/oapi/wiki/space.js +132 -0
package/src/tools/oapi/wiki/space.js.map +1 -0
package/src/tools/oauth-batch-auth.d.ts +12 -0
package/src/tools/oauth-batch-auth.d.ts.map +1 -0
package/src/tools/oauth-batch-auth.js +142 -0
package/src/tools/oauth-batch-auth.js.map +1 -0
package/src/tools/oauth-cards.d.ts +27 -0
package/src/tools/oauth-cards.d.ts.map +1 -0
package/src/tools/oauth-cards.js +251 -0
package/src/tools/oauth-cards.js.map +1 -0
package/src/tools/oauth.d.ts +48 -0
package/src/tools/oauth.d.ts.map +1 -0
package/src/tools/oauth.js +619 -0
package/src/tools/oauth.js.map +1 -0
package/src/tools/onboarding-auth.d.ts +28 -0
package/src/tools/onboarding-auth.d.ts.map +1 -0
package/src/tools/onboarding-auth.js +131 -0
package/src/tools/onboarding-auth.js.map +1 -0
package/src/tools/tat/im/index.d.ts +16 -0
package/src/tools/tat/im/index.d.ts.map +1 -0
package/src/tools/tat/im/index.js +19 -0
package/src/tools/tat/im/index.js.map +1 -0
package/src/tools/tat/im/resource.d.ts +16 -0
package/src/tools/tat/im/resource.d.ts.map +1 -0
package/src/tools/tat/im/resource.js +158 -0
package/src/tools/tat/im/resource.js.map +1 -0

package/src/core/shutdown-hooks.d.ts ADDED Viewed

@@ -0,0 +1,23 @@
+/** @internal — test-only reset. */
+export declare function _resetShutdownHooks(): void;
+/**
+ * Register a cleanup callback to run during graceful shutdown.
+ *
+ * @param key - Unique identifier for this hook (duplicate keys overwrite).
+ * @param cleanup - Async function to execute on shutdown.
+ * @returns An unregister function — call it when the resource is
+ *          released normally (e.g. card streaming completes).
+ */
+export declare function registerShutdownHook(key: string, cleanup: () => Promise<void>): () => void;
+/**
+ * Drain all registered shutdown hooks (best-effort, bounded by deadline).
+ *
+ * @param opts - Optional configuration.
+ * @param opts.deadlineMs - Maximum time to wait for all hooks (default 5000).
+ * @param opts.log - Logger function for progress/error output.
+ */
+export declare function drainShutdownHooks(opts?: {
+    deadlineMs?: number;
+    log?: (...args: unknown[]) => void;
+}): Promise<void>;
+//# sourceMappingURL=shutdown-hooks.d.ts.map

package/src/core/shutdown-hooks.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"shutdown-hooks.d.ts","sourceRoot":"","sources":["../../../src/core/shutdown-hooks.ts"],"names":[],"mappings":"AAWA,mCAAmC;AACnC,wBAAgB,mBAAmB,IAAI,IAAI,CAE1C;AAED;;;;;;;GAOG;AACH,wBAAgB,oBAAoB,CAAC,GAAG,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,GAAG,MAAM,IAAI,CAK1F;AAED;;;;;;GAMG;AACH,wBAAsB,kBAAkB,CAAC,IAAI,CAAC,EAAE;IAC9C,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,EAAE,OAAO,EAAE,KAAK,IAAI,CAAC;CACpC,GAAG,OAAO,CAAC,IAAI,CAAC,CA0BhB"}

package/src/core/shutdown-hooks.js ADDED Viewed

@@ -0,0 +1,57 @@
+// SPDX-License-Identifier: MIT
+/**
+ * Process-level graceful shutdown hook registry.
+ *
+ * Provides a singleton Map of async cleanup callbacks, drained
+ * during graceful shutdown by the channel monitor.
+ */
+const hooks = new Map();
+/** @internal — test-only reset. */
+export function _resetShutdownHooks() {
+    hooks.clear();
+}
+/**
+ * Register a cleanup callback to run during graceful shutdown.
+ *
+ * @param key - Unique identifier for this hook (duplicate keys overwrite).
+ * @param cleanup - Async function to execute on shutdown.
+ * @returns An unregister function — call it when the resource is
+ *          released normally (e.g. card streaming completes).
+ */
+export function registerShutdownHook(key, cleanup) {
+    hooks.set(key, cleanup);
+    return () => {
+        hooks.delete(key);
+    };
+}
+/**
+ * Drain all registered shutdown hooks (best-effort, bounded by deadline).
+ *
+ * @param opts - Optional configuration.
+ * @param opts.deadlineMs - Maximum time to wait for all hooks (default 5000).
+ * @param opts.log - Logger function for progress/error output.
+ */
+export async function drainShutdownHooks(opts) {
+    if (hooks.size === 0)
+        return;
+    const log = opts?.log;
+    const deadline = opts?.deadlineMs ?? 5000;
+    log?.(`graceful shutdown: draining ${hooks.size} cleanup hook(s)`);
+    const entries = Array.from(hooks.entries());
+    hooks.clear();
+    const promises = entries.map(async ([key, cleanup]) => {
+        try {
+            await cleanup();
+            log?.(`graceful shutdown: hook "${key}" done`);
+        }
+        catch (err) {
+            log?.(`graceful shutdown: hook "${key}" failed: ${String(err)}`);
+        }
+    });
+    let timer;
+    const timeoutPromise = new Promise((resolve) => {
+        timer = setTimeout(resolve, deadline);
+    });
+    await Promise.race([Promise.allSettled(promises).then(() => clearTimeout(timer)), timeoutPromise]);
+}
+//# sourceMappingURL=shutdown-hooks.js.map

package/src/core/shutdown-hooks.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"shutdown-hooks.js","sourceRoot":"","sources":["../../../src/core/shutdown-hooks.ts"],"names":[],"mappings":"AAAA,+BAA+B;AAE/B;;;;;GAKG;AAEH,MAAM,KAAK,GAAG,IAAI,GAAG,EAA+B,CAAC;AAErD,mCAAmC;AACnC,MAAM,UAAU,mBAAmB;IACjC,KAAK,CAAC,KAAK,EAAE,CAAC;AAChB,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,oBAAoB,CAAC,GAAW,EAAE,OAA4B;IAC5E,KAAK,CAAC,GAAG,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;IACxB,OAAO,GAAG,EAAE;QACV,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;IACpB,CAAC,CAAC;AACJ,CAAC;AAED;;;;;;GAMG;AACH,MAAM,CAAC,KAAK,UAAU,kBAAkB,CAAC,IAGxC;IACC,IAAI,KAAK,CAAC,IAAI,KAAK,CAAC;QAAE,OAAO;IAE7B,MAAM,GAAG,GAAG,IAAI,EAAE,GAAG,CAAC;IACtB,MAAM,QAAQ,GAAG,IAAI,EAAE,UAAU,IAAI,IAAI,CAAC;IAE1C,GAAG,EAAE,CAAC,+BAA+B,KAAK,CAAC,IAAI,kBAAkB,CAAC,CAAC;IAEnE,MAAM,OAAO,GAAG,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;IAC5C,KAAK,CAAC,KAAK,EAAE,CAAC;IAEd,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,KAAK,EAAE,CAAC,GAAG,EAAE,OAAO,CAAC,EAAE,EAAE;QACpD,IAAI,CAAC;YACH,MAAM,OAAO,EAAE,CAAC;YAChB,GAAG,EAAE,CAAC,4BAA4B,GAAG,QAAQ,CAAC,CAAC;QACjD,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,GAAG,EAAE,CAAC,4BAA4B,GAAG,aAAa,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QACnE,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,IAAI,KAAgD,CAAC;IACrD,MAAM,cAAc,GAAG,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,EAAE;QACnD,KAAK,GAAG,UAAU,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;IACxC,CAAC,CAAC,CAAC;IAEH,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC,EAAE,cAAc,CAAC,CAAC,CAAC;AACrG,CAAC"}

package/src/core/targets.d.ts ADDED Viewed

@@ -0,0 +1,50 @@
+/**
+ * Copyright (c) 2026 ByteDance Ltd. and/or its affiliates
+ * SPDX-License-Identifier: MIT
+ *
+ * Feishu target ID parsing and formatting utilities.
+ *
+ * Feishu uses several namespaced identifier prefixes:
+ *   - `oc_*`  -- chat (group / DM) IDs
+ *   - `ou_*`  -- open user IDs
+ *   - plain alphanumeric strings -- user IDs from the tenant directory
+ *
+ * This module provides helpers to detect, normalise, and format these IDs
+ * for both internal routing and outbound Feishu API calls.
+ */
+import type { FeishuIdType } from './types';
+/**
+ * Detect the Feishu ID type from a raw identifier string.
+ *
+ * Returns `null` when the string does not match any known pattern.
+ */
+export declare function detectIdType(id: string): FeishuIdType | null;
+/**
+ * Strip OpenClaw routing prefixes (`chat:`, `user:`, `open_id:`) from a
+ * raw target string, returning the bare Feishu identifier.
+ *
+ * Returns `null` when the input is empty or falsy.
+ */
+export declare function normalizeFeishuTarget(raw: string): string | null;
+/**
+ * Add the appropriate OpenClaw routing prefix to a bare Feishu identifier.
+ *
+ * When `type` is omitted, the prefix is inferred via `detectIdType`.
+ */
+export declare function formatFeishuTarget(id: string, type?: FeishuIdType): string;
+/**
+ * Determine the `receive_id_type` query parameter for the Feishu send-message
+ * API based on the target identifier.
+ */
+export declare function resolveReceiveIdType(id: string): 'chat_id' | 'open_id' | 'user_id';
+/**
+ * 规范化 message_id，去除合成后缀（如 `om_xxx:auth-complete` → `om_xxx`）。
+ */
+export declare function normalizeMessageId(messageId: string): string;
+export declare function normalizeMessageId(messageId: string | undefined): string | undefined;
+/**
+ * Return `true` when a raw string looks like it could be a Feishu target
+ * (either an OpenClaw-tagged form or a native prefix).
+ */
+export declare function looksLikeFeishuId(raw: string): boolean;
+//# sourceMappingURL=targets.d.ts.map

package/src/core/targets.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"targets.d.ts","sourceRoot":"","sources":["../../../src/core/targets.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAEH,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAqB5C;;;;GAIG;AACH,wBAAgB,YAAY,CAAC,EAAE,EAAE,MAAM,GAAG,YAAY,GAAG,IAAI,CAO5D;AAMD;;;;;GAKG;AACH,wBAAgB,qBAAqB,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI,CAiBhE;AAMD;;;;GAIG;AACH,wBAAgB,kBAAkB,CAAC,EAAE,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,YAAY,GAAG,MAAM,CAK1E;AAMD;;;GAGG;AACH,wBAAgB,oBAAoB,CAAC,EAAE,EAAE,MAAM,GAAG,SAAS,GAAG,SAAS,GAAG,SAAS,CAKlF;AAMD;;GAEG;AACH,wBAAgB,kBAAkB,CAAC,SAAS,EAAE,MAAM,GAAG,MAAM,CAAC;AAC9D,wBAAgB,kBAAkB,CAAC,SAAS,EAAE,MAAM,GAAG,SAAS,GAAG,MAAM,GAAG,SAAS,CAAC;AAYtF;;;GAGG;AACH,wBAAgB,iBAAiB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAStD"}

package/src/core/targets.js ADDED Viewed

@@ -0,0 +1,128 @@
+/**
+ * Copyright (c) 2026 ByteDance Ltd. and/or its affiliates
+ * SPDX-License-Identifier: MIT
+ *
+ * Feishu target ID parsing and formatting utilities.
+ *
+ * Feishu uses several namespaced identifier prefixes:
+ *   - `oc_*`  -- chat (group / DM) IDs
+ *   - `ou_*`  -- open user IDs
+ *   - plain alphanumeric strings -- user IDs from the tenant directory
+ *
+ * This module provides helpers to detect, normalise, and format these IDs
+ * for both internal routing and outbound Feishu API calls.
+ */
+// ---------------------------------------------------------------------------
+// Known prefix patterns
+// ---------------------------------------------------------------------------
+const CHAT_PREFIX = 'oc_';
+const OPEN_ID_PREFIX = 'ou_';
+// Canonical routing prefixes used inside OpenClaw (not Feishu-native).
+const TAG_CHAT = 'chat:';
+const TAG_USER = 'user:';
+const TAG_OPEN_ID = 'open_id:';
+// Feishu channel prefix (used by SDK for some routing scenarios).
+const TAG_FEISHU = 'feishu:';
+// ---------------------------------------------------------------------------
+// Detection
+// ---------------------------------------------------------------------------
+/**
+ * Detect the Feishu ID type from a raw identifier string.
+ *
+ * Returns `null` when the string does not match any known pattern.
+ */
+export function detectIdType(id) {
+    if (!id)
+        return null;
+    if (id.startsWith(CHAT_PREFIX))
+        return 'chat_id';
+    if (id.startsWith(OPEN_ID_PREFIX))
+        return 'open_id';
+    // Plain alphanumeric strings (no prefix) are treated as tenant user IDs.
+    if (/^[a-zA-Z0-9]+$/.test(id))
+        return 'user_id';
+    return null;
+}
+// ---------------------------------------------------------------------------
+// Normalisation
+// ---------------------------------------------------------------------------
+/**
+ * Strip OpenClaw routing prefixes (`chat:`, `user:`, `open_id:`) from a
+ * raw target string, returning the bare Feishu identifier.
+ *
+ * Returns `null` when the input is empty or falsy.
+ */
+export function normalizeFeishuTarget(raw) {
+    if (!raw)
+        return null;
+    const trimmed = raw.trim();
+    if (!trimmed)
+        return null;
+    // Handle Feishu channel prefix (e.g., "feishu:ou_xxx" -> "ou_xxx")
+    if (trimmed.startsWith(TAG_FEISHU)) {
+        const inner = trimmed.slice(TAG_FEISHU.length).trim();
+        if (inner)
+            return inner;
+    }
+    if (trimmed.startsWith(TAG_CHAT))
+        return trimmed.slice(TAG_CHAT.length);
+    if (trimmed.startsWith(TAG_USER))
+        return trimmed.slice(TAG_USER.length);
+    if (trimmed.startsWith(TAG_OPEN_ID))
+        return trimmed.slice(TAG_OPEN_ID.length);
+    return trimmed;
+}
+// ---------------------------------------------------------------------------
+// Formatting
+// ---------------------------------------------------------------------------
+/**
+ * Add the appropriate OpenClaw routing prefix to a bare Feishu identifier.
+ *
+ * When `type` is omitted, the prefix is inferred via `detectIdType`.
+ */
+export function formatFeishuTarget(id, type) {
+    const resolved = type ?? detectIdType(id);
+    if (resolved === 'chat_id')
+        return `${TAG_CHAT}${id}`;
+    return `${TAG_USER}${id}`;
+}
+// ---------------------------------------------------------------------------
+// API receive-ID resolution
+// ---------------------------------------------------------------------------
+/**
+ * Determine the `receive_id_type` query parameter for the Feishu send-message
+ * API based on the target identifier.
+ */
+export function resolveReceiveIdType(id) {
+    if (id.startsWith(CHAT_PREFIX))
+        return 'chat_id';
+    if (id.startsWith(OPEN_ID_PREFIX))
+        return 'open_id';
+    // Default to open_id for any other pattern (safer for outbound API calls).
+    return 'open_id';
+}
+export function normalizeMessageId(messageId) {
+    if (!messageId)
+        return undefined;
+    const colonIndex = messageId.indexOf(':');
+    if (colonIndex >= 0)
+        return messageId.slice(0, colonIndex);
+    return messageId;
+}
+// ---------------------------------------------------------------------------
+// Quick predicate
+// ---------------------------------------------------------------------------
+/**
+ * Return `true` when a raw string looks like it could be a Feishu target
+ * (either an OpenClaw-tagged form or a native prefix).
+ */
+export function looksLikeFeishuId(raw) {
+    if (!raw)
+        return false;
+    return (raw.startsWith(TAG_CHAT) ||
+        raw.startsWith(TAG_USER) ||
+        raw.startsWith(TAG_OPEN_ID) ||
+        raw.startsWith(CHAT_PREFIX) ||
+        raw.startsWith(OPEN_ID_PREFIX));
+}
+//# sourceMappingURL=targets.js.map

package/src/core/targets.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"targets.js","sourceRoot":"","sources":["../../../src/core/targets.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAIH,8EAA8E;AAC9E,wBAAwB;AACxB,8EAA8E;AAE9E,MAAM,WAAW,GAAG,KAAK,CAAC;AAC1B,MAAM,cAAc,GAAG,KAAK,CAAC;AAE7B,uEAAuE;AACvE,MAAM,QAAQ,GAAG,OAAO,CAAC;AACzB,MAAM,QAAQ,GAAG,OAAO,CAAC;AACzB,MAAM,WAAW,GAAG,UAAU,CAAC;AAE/B,kEAAkE;AAClE,MAAM,UAAU,GAAG,SAAS,CAAC;AAE7B,8EAA8E;AAC9E,YAAY;AACZ,8EAA8E;AAE9E;;;;GAIG;AACH,MAAM,UAAU,YAAY,CAAC,EAAU;IACrC,IAAI,CAAC,EAAE;QAAE,OAAO,IAAI,CAAC;IACrB,IAAI,EAAE,CAAC,UAAU,CAAC,WAAW,CAAC;QAAE,OAAO,SAAS,CAAC;IACjD,IAAI,EAAE,CAAC,UAAU,CAAC,cAAc,CAAC;QAAE,OAAO,SAAS,CAAC;IACpD,yEAAyE;IACzE,IAAI,gBAAgB,CAAC,IAAI,CAAC,EAAE,CAAC;QAAE,OAAO,SAAS,CAAC;IAChD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,8EAA8E;AAC9E,gBAAgB;AAChB,8EAA8E;AAE9E;;;;;GAKG;AACH,MAAM,UAAU,qBAAqB,CAAC,GAAW;IAC/C,IAAI,CAAC,GAAG;QAAE,OAAO,IAAI,CAAC;IAEtB,MAAM,OAAO,GAAG,GAAG,CAAC,IAAI,EAAE,CAAC;IAC3B,IAAI,CAAC,OAAO;QAAE,OAAO,IAAI,CAAC;IAE1B,mEAAmE;IACnE,IAAI,OAAO,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QACnC,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,CAAC;QACtD,IAAI,KAAK;YAAE,OAAO,KAAK,CAAC;IAC1B,CAAC;IAED,IAAI,OAAO,CAAC,UAAU,CAAC,QAAQ,CAAC;QAAE,OAAO,OAAO,CAAC,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;IACxE,IAAI,OAAO,CAAC,UAAU,CAAC,QAAQ,CAAC;QAAE,OAAO,OAAO,CAAC,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;IACxE,IAAI,OAAO,CAAC,UAAU,CAAC,WAAW,CAAC;QAAE,OAAO,OAAO,CAAC,KAAK,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC;IAE9E,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,8EAA8E;AAC9E,aAAa;AACb,8EAA8E;AAE9E;;;;GAIG;AACH,MAAM,UAAU,kBAAkB,CAAC,EAAU,EAAE,IAAmB;IAChE,MAAM,QAAQ,GAAG,IAAI,IAAI,YAAY,CAAC,EAAE,CAAC,CAAC;IAE1C,IAAI,QAAQ,KAAK,SAAS;QAAE,OAAO,GAAG,QAAQ,GAAG,EAAE,EAAE,CAAC;IACtD,OAAO,GAAG,QAAQ,GAAG,EAAE,EAAE,CAAC;AAC5B,CAAC;AAED,8EAA8E;AAC9E,4BAA4B;AAC5B,8EAA8E;AAE9E;;;GAGG;AACH,MAAM,UAAU,oBAAoB,CAAC,EAAU;IAC7C,IAAI,EAAE,CAAC,UAAU,CAAC,WAAW,CAAC;QAAE,OAAO,SAAS,CAAC;IACjD,IAAI,EAAE,CAAC,UAAU,CAAC,cAAc,CAAC;QAAE,OAAO,SAAS,CAAC;IACpD,2EAA2E;IAC3E,OAAO,SAAS,CAAC;AACnB,CAAC;AAWD,MAAM,UAAU,kBAAkB,CAAC,SAA6B;IAC9D,IAAI,CAAC,SAAS;QAAE,OAAO,SAAS,CAAC;IACjC,MAAM,UAAU,GAAG,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;IAC1C,IAAI,UAAU,IAAI,CAAC;QAAE,OAAO,SAAS,CAAC,KAAK,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;IAC3D,OAAO,SAAS,CAAC;AACnB,CAAC;AAED,8EAA8E;AAC9E,kBAAkB;AAClB,8EAA8E;AAE9E;;;GAGG;AACH,MAAM,UAAU,iBAAiB,CAAC,GAAW;IAC3C,IAAI,CAAC,GAAG;QAAE,OAAO,KAAK,CAAC;IACvB,OAAO,CACL,GAAG,CAAC,UAAU,CAAC,QAAQ,CAAC;QACxB,GAAG,CAAC,UAAU,CAAC,QAAQ,CAAC;QACxB,GAAG,CAAC,UAAU,CAAC,WAAW,CAAC;QAC3B,GAAG,CAAC,UAAU,CAAC,WAAW,CAAC;QAC3B,GAAG,CAAC,UAAU,CAAC,cAAc,CAAC,CAC/B,CAAC;AACJ,CAAC"}

package/src/core/token-store.d.ts ADDED Viewed

@@ -0,0 +1,55 @@
+/**
+ * Copyright (c) 2026 ByteDance Ltd. and/or its affiliates
+ * SPDX-License-Identifier: MIT
+ *
+ * UAT (User Access Token) persistent storage with cross-platform support.
+ *
+ * Stores OAuth token data using OS-native credential services so that tokens
+ * survive process restarts without introducing plain-text local files.
+ *
+ * Platform backends:
+ *   macOS   – Keychain Access via `security` CLI
+ *   Linux   – AES-256-GCM encrypted files (XDG_DATA_HOME)
+ *   Windows – AES-256-GCM encrypted files (%LOCALAPPDATA%)
+ *
+ * Storage layout:
+ *   Service  = "openclaw-feishu-uat"
+ *   Account  = "{appId}:{userOpenId}"
+ *   Password = JSON-serialised StoredUAToken
+ */
+export interface StoredUAToken {
+    userOpenId: string;
+    appId: string;
+    accessToken: string;
+    refreshToken: string;
+    expiresAt: number;
+    refreshExpiresAt: number;
+    scope: string;
+    grantedAt: number;
+}
+/** Mask a token for safe logging: only the last 4 chars are visible. */
+export declare function maskToken(token: string): string;
+/**
+ * Read the stored UAT for a given (appId, userOpenId) pair.
+ * Returns `null` when no entry exists or the payload is unparseable.
+ */
+export declare function getStoredToken(appId: string, userOpenId: string): Promise<StoredUAToken | null>;
+/**
+ * Persist a UAT using the platform credential store.
+ *
+ * Overwrites any existing entry for the same (appId, userOpenId).
+ */
+export declare function setStoredToken(token: StoredUAToken): Promise<void>;
+/**
+ * Remove a stored UAT from the credential store.
+ */
+export declare function removeStoredToken(appId: string, userOpenId: string): Promise<void>;
+/**
+ * Determine the freshness of a stored token.
+ *
+ * - `"valid"`         – access_token is still good (expires > 5 min from now)
+ * - `"needs_refresh"` – access_token expired/expiring but refresh_token is valid
+ * - `"expired"`       – both tokens are expired; re-authorization required
+ */
+export declare function tokenStatus(token: StoredUAToken): 'valid' | 'needs_refresh' | 'expired';
+//# sourceMappingURL=token-store.d.ts.map

package/src/core/token-store.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"token-store.d.ts","sourceRoot":"","sources":["../../../src/core/token-store.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;GAkBG;AAkBH,MAAM,WAAW,aAAa;IAC5B,UAAU,EAAE,MAAM,CAAC;IACnB,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,MAAM,CAAC;IAClB,gBAAgB,EAAE,MAAM,CAAC;IACzB,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,CAAC;CACnB;AAmBD,wEAAwE;AACxE,wBAAgB,SAAS,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CAG/C;AAqPD;;;GAGG;AACH,wBAAsB,cAAc,CAAC,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,GAAG,IAAI,CAAC,CAQrG;AAED;;;;GAIG;AACH,wBAAsB,cAAc,CAAC,KAAK,EAAE,aAAa,GAAG,OAAO,CAAC,IAAI,CAAC,CAKxE;AAED;;GAEG;AACH,wBAAsB,iBAAiB,CAAC,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAGxF;AAMD;;;;;;GAMG;AACH,wBAAgB,WAAW,CAAC,KAAK,EAAE,aAAa,GAAG,OAAO,GAAG,eAAe,GAAG,SAAS,CASvF"}

package/src/core/token-store.js ADDED Viewed

@@ -0,0 +1,315 @@
+/**
+ * Copyright (c) 2026 ByteDance Ltd. and/or its affiliates
+ * SPDX-License-Identifier: MIT
+ *
+ * UAT (User Access Token) persistent storage with cross-platform support.
+ *
+ * Stores OAuth token data using OS-native credential services so that tokens
+ * survive process restarts without introducing plain-text local files.
+ *
+ * Platform backends:
+ *   macOS   – Keychain Access via `security` CLI
+ *   Linux   – AES-256-GCM encrypted files (XDG_DATA_HOME)
+ *   Windows – AES-256-GCM encrypted files (%LOCALAPPDATA%)
+ *
+ * Storage layout:
+ *   Service  = "openclaw-feishu-uat"
+ *   Account  = "{appId}:{userOpenId}"
+ *   Password = JSON-serialised StoredUAToken
+ */
+import { execFile as execFileCb } from 'node:child_process';
+import { promisify } from 'node:util';
+import { mkdir, unlink, readFile, writeFile, chmod } from 'node:fs/promises';
+import { join } from 'node:path';
+import { homedir } from 'node:os';
+import { randomBytes, createCipheriv, createDecipheriv } from 'node:crypto';
+import { larkLogger } from './lark-logger';
+const log = larkLogger('core/token-store');
+const execFile = promisify(execFileCb);
+// ---------------------------------------------------------------------------
+// Constants
+// ---------------------------------------------------------------------------
+const KEYCHAIN_SERVICE = 'openclaw-feishu-uat';
+/** Refresh proactively when access_token expires within this window. */
+const REFRESH_AHEAD_MS = 5 * 60 * 1000; // 5 minutes
+// ---------------------------------------------------------------------------
+// Helpers
+// ---------------------------------------------------------------------------
+function accountKey(appId, userOpenId) {
+    return `${appId}:${userOpenId}`;
+}
+/** Mask a token for safe logging: only the last 4 chars are visible. */
+export function maskToken(token) {
+    if (token.length <= 8)
+        return '****';
+    return `****${token.slice(-4)}`;
+}
+// ---------------------------------------------------------------------------
+// macOS backend – Keychain Access via `security` CLI
+// ---------------------------------------------------------------------------
+const darwinBackend = {
+    async get(service, account) {
+        try {
+            const { stdout } = await execFile('security', ['find-generic-password', '-s', service, '-a', account, '-w']);
+            return stdout.trim() || null;
+        }
+        catch {
+            return null;
+        }
+    },
+    async set(service, account, data) {
+        // Delete first – `add-generic-password` fails if the item already exists.
+        try {
+            await execFile('security', ['delete-generic-password', '-s', service, '-a', account]);
+        }
+        catch {
+            // Not found – fine.
+        }
+        await execFile('security', ['add-generic-password', '-s', service, '-a', account, '-w', data]);
+    },
+    async remove(service, account) {
+        try {
+            await execFile('security', ['delete-generic-password', '-s', service, '-a', account]);
+        }
+        catch {
+            // Already absent – fine.
+        }
+    },
+};
+// ---------------------------------------------------------------------------
+// Linux backend – AES-256-GCM encrypted files (XDG Base Directory)
+//
+// Headless Linux servers typically lack D-Bus / GNOME Keyring, so we store
+// tokens as AES-256-GCM encrypted files instead of using `secret-tool`.
+//
+// Storage path: ${XDG_DATA_HOME:-~/.local/share}/openclaw-feishu-uat/
+// ---------------------------------------------------------------------------
+const LINUX_UAT_DIR = join(process.env.XDG_DATA_HOME || join(homedir(), '.local', 'share'), 'openclaw-feishu-uat');
+const MASTER_KEY_PATH = join(LINUX_UAT_DIR, 'master.key');
+const MASTER_KEY_BYTES = 32; // AES-256
+const IV_BYTES = 12; // GCM recommended
+const TAG_BYTES = 16; // GCM auth tag
+/** Convert account key to a filesystem-safe filename. */
+function linuxSafeFileName(account) {
+    return account.replace(/[^a-zA-Z0-9._-]/g, '_') + '.enc';
+}
+/** Ensure the credentials directory exists with mode 0700. */
+async function ensureLinuxCredDir() {
+    await mkdir(LINUX_UAT_DIR, { recursive: true, mode: 0o700 });
+}
+/**
+ * Load or create the 32-byte master key.
+ *
+ * On first run, generates a random key and writes it to disk (mode 0600).
+ * On subsequent runs, reads the existing key file.
+ */
+async function getMasterKey() {
+    try {
+        const key = await readFile(MASTER_KEY_PATH);
+        if (key.length === MASTER_KEY_BYTES)
+            return key;
+        log.warn('master key has unexpected length, regenerating');
+    }
+    catch (err) {
+        if (!(err instanceof Error) || err.code !== 'ENOENT') {
+            log.warn(`failed to read master key: ${err instanceof Error ? err.message : err}`);
+        }
+    }
+    await ensureLinuxCredDir();
+    const key = randomBytes(MASTER_KEY_BYTES);
+    await writeFile(MASTER_KEY_PATH, key, { mode: 0o600 });
+    await chmod(MASTER_KEY_PATH, 0o600);
+    log.info('generated new master key for encrypted file storage');
+    return key;
+}
+/** AES-256-GCM encrypt. Returns [12-byte IV][16-byte tag][ciphertext]. */
+function encryptData(plaintext, key) {
+    const iv = randomBytes(IV_BYTES);
+    const cipher = createCipheriv('aes-256-gcm', key, iv);
+    const enc = Buffer.concat([cipher.update(plaintext, 'utf8'), cipher.final()]);
+    return Buffer.concat([iv, cipher.getAuthTag(), enc]);
+}
+/** AES-256-GCM decrypt. Returns plaintext or `null` on failure. */
+function decryptData(data, key) {
+    if (data.length < IV_BYTES + TAG_BYTES)
+        return null;
+    try {
+        const iv = data.subarray(0, IV_BYTES);
+        const tag = data.subarray(IV_BYTES, IV_BYTES + TAG_BYTES);
+        const enc = data.subarray(IV_BYTES + TAG_BYTES);
+        const decipher = createDecipheriv('aes-256-gcm', key, iv);
+        decipher.setAuthTag(tag);
+        return Buffer.concat([decipher.update(enc), decipher.final()]).toString('utf8');
+    }
+    catch {
+        return null;
+    }
+}
+const linuxBackend = {
+    async get(_service, account) {
+        try {
+            const key = await getMasterKey();
+            const data = await readFile(join(LINUX_UAT_DIR, linuxSafeFileName(account)));
+            return decryptData(data, key);
+        }
+        catch {
+            return null;
+        }
+    },
+    async set(_service, account, data) {
+        const key = await getMasterKey();
+        await ensureLinuxCredDir();
+        const filePath = join(LINUX_UAT_DIR, linuxSafeFileName(account));
+        const encrypted = encryptData(data, key);
+        await writeFile(filePath, encrypted, { mode: 0o600 });
+        await chmod(filePath, 0o600);
+    },
+    async remove(_service, account) {
+        try {
+            await unlink(join(LINUX_UAT_DIR, linuxSafeFileName(account)));
+        }
+        catch {
+            // Already absent – fine.
+        }
+    },
+};
+// ---------------------------------------------------------------------------
+// Windows backend – AES-256-GCM encrypted files
+//
+// Replaces the previous DPAPI-via-PowerShell approach which was unreliable
+// (PowerShell cold-start latency, execution policy restrictions, cmd.exe
+// command-line length limits, and unavailability in containers).
+//
+// Uses the same AES-256-GCM scheme as the Linux backend with its own
+// independent storage directory and master key.
+//
+// Storage path: %LOCALAPPDATA%\openclaw-feishu-uat\
+// ---------------------------------------------------------------------------
+const WIN32_UAT_DIR = join(process.env.LOCALAPPDATA ?? join(process.env.USERPROFILE ?? homedir(), 'AppData', 'Local'), KEYCHAIN_SERVICE);
+const WIN32_MASTER_KEY_PATH = join(WIN32_UAT_DIR, 'master.key');
+/** Convert account key to a filesystem-safe filename (whitelist approach). */
+function win32SafeFileName(account) {
+    return account.replace(/[^a-zA-Z0-9._-]/g, '_') + '.enc';
+}
+async function ensureWin32CredDir() {
+    await mkdir(WIN32_UAT_DIR, { recursive: true });
+}
+async function getWin32MasterKey() {
+    try {
+        const key = await readFile(WIN32_MASTER_KEY_PATH);
+        if (key.length === MASTER_KEY_BYTES)
+            return key;
+        log.warn('win32 master key has unexpected length, regenerating');
+    }
+    catch (err) {
+        if (!(err instanceof Error) || err.code !== 'ENOENT') {
+            log.warn(`failed to read win32 master key: ${err instanceof Error ? err.message : err}`);
+        }
+    }
+    await ensureWin32CredDir();
+    const key = randomBytes(MASTER_KEY_BYTES);
+    await writeFile(WIN32_MASTER_KEY_PATH, key);
+    log.info('generated new master key for win32 encrypted file storage');
+    return key;
+}
+const win32Backend = {
+    async get(_service, account) {
+        try {
+            const key = await getWin32MasterKey();
+            const data = await readFile(join(WIN32_UAT_DIR, win32SafeFileName(account)));
+            return decryptData(data, key);
+        }
+        catch {
+            return null;
+        }
+    },
+    async set(_service, account, data) {
+        const key = await getWin32MasterKey();
+        await ensureWin32CredDir();
+        const filePath = join(WIN32_UAT_DIR, win32SafeFileName(account));
+        const encrypted = encryptData(data, key);
+        await writeFile(filePath, encrypted);
+    },
+    async remove(_service, account) {
+        try {
+            await unlink(join(WIN32_UAT_DIR, win32SafeFileName(account)));
+        }
+        catch {
+            // Already absent – fine.
+        }
+    },
+};
+// ---------------------------------------------------------------------------
+// Platform selection
+// ---------------------------------------------------------------------------
+function createBackend() {
+    switch (process.platform) {
+        case 'darwin':
+            return darwinBackend;
+        case 'linux':
+            return linuxBackend;
+        case 'win32':
+            return win32Backend;
+        default:
+            log.warn(`unsupported platform "${process.platform}", falling back to macOS backend`);
+            return darwinBackend;
+    }
+}
+const backend = createBackend();
+// ---------------------------------------------------------------------------
+// Public API – Credential operations
+// ---------------------------------------------------------------------------
+/**
+ * Read the stored UAT for a given (appId, userOpenId) pair.
+ * Returns `null` when no entry exists or the payload is unparseable.
+ */
+export async function getStoredToken(appId, userOpenId) {
+    try {
+        const json = await backend.get(KEYCHAIN_SERVICE, accountKey(appId, userOpenId));
+        if (!json)
+            return null;
+        return JSON.parse(json);
+    }
+    catch {
+        return null;
+    }
+}
+/**
+ * Persist a UAT using the platform credential store.
+ *
+ * Overwrites any existing entry for the same (appId, userOpenId).
+ */
+export async function setStoredToken(token) {
+    const key = accountKey(token.appId, token.userOpenId);
+    const payload = JSON.stringify(token);
+    await backend.set(KEYCHAIN_SERVICE, key, payload);
+    log.info(`saved UAT for ${token.userOpenId} (at:${maskToken(token.accessToken)})`);
+}
+/**
+ * Remove a stored UAT from the credential store.
+ */
+export async function removeStoredToken(appId, userOpenId) {
+    await backend.remove(KEYCHAIN_SERVICE, accountKey(appId, userOpenId));
+    log.info(`removed UAT for ${userOpenId}`);
+}
+// ---------------------------------------------------------------------------
+// Token validity check
+// ---------------------------------------------------------------------------
+/**
+ * Determine the freshness of a stored token.
+ *
+ * - `"valid"`         – access_token is still good (expires > 5 min from now)
+ * - `"needs_refresh"` – access_token expired/expiring but refresh_token is valid
+ * - `"expired"`       – both tokens are expired; re-authorization required
+ */
+export function tokenStatus(token) {
+    const now = Date.now();
+    if (now < token.expiresAt - REFRESH_AHEAD_MS) {
+        return 'valid';
+    }
+    if (now < token.refreshExpiresAt) {
+        return 'needs_refresh';
+    }
+    return 'expired';
+}
+//# sourceMappingURL=token-store.js.map