@linkedclaw/cli 0.1.5 → 0.1.7

package/dist/bin.js

@@ -4287,7 +4287,8 @@ var SessionSchema = external_exports.object({
   max_credits: external_exports.number().int(),
   agreed_quote: external_exports.record(external_exports.unknown()).nullable().optional(),
   manifest_id: external_exports.string().nullable().optional(),
-  arbitrator: external_exports.string().nullable().optional()
+  arbitrator: external_exports.string().nullable().optional(),
+  on_behalf_of_id: external_exports.string().nullable().optional()
 }).passthrough();
 var TrustScoreSchema = external_exports.object({
   score: external_exports.number().int(),
@@ -4424,7 +4425,8 @@ var ReceiptSchema = external_exports.object({
   requester_rating: external_exports.number().int().nullable().optional(),
   rating_comment: external_exports.string().nullable().optional(),
   verified: external_exports.boolean().optional(),
-  finalized: external_exports.boolean().optional()
+  finalized: external_exports.boolean().optional(),
+  on_behalf_of_id: external_exports.string().nullable().optional()
 }).passthrough();
 var RateReceiptResultSchema = external_exports.object({
   receipt_id: external_exports.string().optional(),
@@ -4570,17 +4572,50 @@ var CommonsLogEventSchema = external_exports.object({
 }).passthrough();
 
 // ../../sdk/consumer-ts/dist/client.js
+var GigTaskCreationError = class extends Error {
+  mandate;
+  cause;
+  constructor(mandate, cause) {
+    super(`Gig task creation failed after mandate ${mandate.mandate_id} was issued: ${cause.message}`);
+    this.mandate = mandate;
+    this.cause = cause;
+    this.name = "GigTaskCreationError";
+  }
+};
 var ConsumerClient = class {
-  baseUrl;
+  // Substrate / network surface — identity, sessions, mandates, registration.
+  networkUrl;
+  // First-party service product surface — where Gig PA et al expose their
+  // resource APIs. Distinct from networkUrl per LAYER_SYSTEM §8: services are
+  // L5 service agents, not the network.
+  serviceUrl;
   apiKey;
   fetchImpl;
-  constructor(baseUrl, apiKey, options) {
-    this.baseUrl = baseUrl.replace(/\/+$/, "");
+  _gigPaAgentIdCache;
+  constructor(networkUrl, apiKey, options) {
+    this.networkUrl = networkUrl.replace(/\/+$/, "");
+    this.serviceUrl = options?.serviceUrl !== void 0 ? options.serviceUrl.replace(/\/+$/, "") : void 0;
     this.apiKey = apiKey;
     this.fetchImpl = options?.fetch ?? fetch;
   }
+  async _resolveGigPaAgentId() {
+    if (!this._gigPaAgentIdCache) {
+      const data = await this.request("/api/v1/resolve/gig-pa-operator/gig-platform-agent", { method: "GET" }, AgentSchema);
+      this._gigPaAgentIdCache = data.agent_id;
+    }
+    return this._gigPaAgentIdCache;
+  }
   async request(path2, init, schema) {
-    const res = await this.fetchImpl(`${this.baseUrl}${path2}`, {
+    return this._call(this.networkUrl, path2, init, schema);
+  }
+  async serviceRequest(path2, init, schema) {
+    if (this.serviceUrl === void 0) {
+      throw new Error("ConsumerClient.serviceUrl is not set. Methods that talk to first-party service surfaces (e.g. Gig PA's /api/v1/gig-tasks/*) require a serviceUrl because services are L5 service agents, not part of the network. Pass { serviceUrl: <gig_pa_url> } in options.");
+    }
+    return this._call(this.serviceUrl, path2, init, schema);
+  }
+  async _call(baseUrl, path2, init, schema) {
+    const res = await this.fetchImpl(`${baseUrl}${path2}`, {
       ...init,
       headers: {
         "Content-Type": "application/json",
@@ -4609,7 +4644,7 @@ var ConsumerClient = class {
   }
   // ───────── Identity / Auth ─────────
   /** @implements POST /api/v1/register */
-  static async register(baseUrl, params = {}, options) {
+  static async register(networkUrl, params = {}, options) {
     const fetchImpl = options?.fetch ?? fetch;
     const body = { role: params.role ?? "requester" };
     if (params.email !== void 0)
@@ -4618,7 +4653,7 @@ var ConsumerClient = class {
       body.handle = params.handle;
     if (params.displayName !== void 0)
       body.display_name = params.displayName;
-    const res = await fetchImpl(`${baseUrl.replace(/\/+$/, "")}/api/v1/register`, {
+    const res = await fetchImpl(`${networkUrl.replace(/\/+$/, "")}/api/v1/register`, {
       method: "POST",
       headers: {
         "Content-Type": "application/json"
@@ -4682,6 +4717,10 @@ var ConsumerClient = class {
       })
     }, InvokeResultSchema);
   }
+  /** @implements POST /api/v1/agents/{agent_id}/messages */
+  async deliverAgentMessage(agentId, payload) {
+    return this.request(`/api/v1/agents/${encodeURIComponent(agentId)}/messages`, { method: "POST", body: JSON.stringify({ payload }) }, external_exports.record(external_exports.unknown()));
+  }
   async getTrustScore(agentId, options) {
     return this.request(`/api/v1/agents/${agentId}/trust${this.queryString({
       capability: options?.capability
@@ -4715,6 +4754,16 @@ var ConsumerClient = class {
   async getSession(sessionId) {
     return this.request(`/api/v1/sessions/${encodeURIComponent(sessionId)}`, { method: "GET" }, SessionSchema);
   }
+  /** @implements POST /api/v1/sessions/{session_id}/activate
+   *
+   * Required by the requester after WS SESSION_ACCEPT to flip the DB-side
+   * session record from `pending` to `active`. Without this call, subsequent
+   * `POST /messages` will reject with 409 once cloud notices the WS dropped
+   * (status flips `pending` → `interrupted` on heartbeat watchdog).
+   */
+  async activateSession(sessionId) {
+    return this.request(`/api/v1/sessions/${encodeURIComponent(sessionId)}/activate`, { method: "POST", body: JSON.stringify({}) }, external_exports.record(external_exports.unknown()));
+  }
   /** @implements POST /api/v1/sessions/{session_id}/end */
   async endSession(sessionId, options) {
     const body = {};
@@ -4736,40 +4785,88 @@ var ConsumerClient = class {
     })}`, { method: "GET" }, SessionEventListSchema);
   }
   // ───────── Gig PA (requester) ─────────
-  /** @implements GET /api/v1/gig_pa/tasks/ */
+  /** @implements GET /api/v1/gig-tasks/ */
   async listGigTasks(options) {
-    return this.request(`/api/v1/gig_pa/tasks/${this.queryString({
+    return this.serviceRequest(`/api/v1/gig-tasks/${this.queryString({
       status: options?.status,
       capability: options?.capability
     })}`, { method: "GET" }, external_exports.array(GigTaskSchema));
   }
-  /** @implements POST /api/v1/gig_pa/tasks/ */
+  /** @implements POST /api/v1/gig-tasks/ */
   async createGigTask(body) {
-    return this.request("/api/v1/gig_pa/tasks/", { method: "POST", body: JSON.stringify(body) }, GigTaskSchema);
+    return this.serviceRequest("/api/v1/gig-tasks/", { method: "POST", body: JSON.stringify(body) }, GigTaskSchema);
+  }
+  async createGigTaskWithMandate(options) {
+    const { principal_agent_id, capability, instruction, target_providers, credits_per_provider, mandate_expires_at, gig_pa_agent_id, deadline, idempotency_key, mandate_id: preIssuedMandateId, ...taskExtra } = options;
+    let issuedMandate;
+    let resolvedMandateId = preIssuedMandateId;
+    if (!resolvedMandateId) {
+      const gigPaAgentId = gig_pa_agent_id ?? await this._resolveGigPaAgentId();
+      const mandateHeaders = {};
+      if (idempotency_key)
+        mandateHeaders["Idempotency-Key"] = `${idempotency_key}:mandate`;
+      issuedMandate = await this.request("/api/v1/mandates", {
+        method: "POST",
+        body: JSON.stringify({
+          principal_agent_id,
+          delegate_agent_id: gigPaAgentId,
+          scope: ["session.open"],
+          scope_params: { "session.open": { max_credits_per_op: credits_per_provider } },
+          budget: target_providers * credits_per_provider,
+          expires_at: mandate_expires_at
+        }),
+        headers: mandateHeaders
+      }, MandateRecordSchema);
+      resolvedMandateId = issuedMandate.mandate_id;
+    }
+    const taskHeaders = {};
+    if (idempotency_key)
+      taskHeaders["Idempotency-Key"] = idempotency_key;
+    const taskBody = {
+      capability,
+      instruction,
+      target_providers,
+      credits_per_provider,
+      mandate_id: resolvedMandateId,
+      ...taskExtra
+    };
+    if (deadline)
+      taskBody.deadline = deadline;
+    let task;
+    try {
+      task = await this.serviceRequest("/api/v1/gig-tasks/", { method: "POST", body: JSON.stringify(taskBody), headers: taskHeaders }, GigTaskSchema);
+    } catch (err) {
+      if (issuedMandate && err instanceof Error) {
+        throw new GigTaskCreationError(issuedMandate, err);
+      }
+      throw err;
+    }
+    const mandate = issuedMandate ?? { mandate_id: resolvedMandateId };
+    return { task, mandate };
   }
-  /** @implements GET /api/v1/gig_pa/tasks/policy */
+  /** @implements GET /api/v1/gig-tasks/policy */
   async getGigTaskPolicy() {
-    return this.request("/api/v1/gig_pa/tasks/policy", { method: "GET" }, GigTaskPolicySchema);
+    return this.serviceRequest("/api/v1/gig-tasks/policy", { method: "GET" }, GigTaskPolicySchema);
   }
-  /** @implements GET /api/v1/gig_pa/tasks/{task_id} */
+  /** @implements GET /api/v1/gig-tasks/{task_id} */
   async getGigTask(taskId) {
-    return this.request(`/api/v1/gig_pa/tasks/${encodeURIComponent(taskId)}`, { method: "GET" }, GigTaskSchema);
+    return this.serviceRequest(`/api/v1/gig-tasks/${encodeURIComponent(taskId)}`, { method: "GET" }, GigTaskSchema);
   }
-  /** @implements POST /api/v1/gig_pa/tasks/{task_id}/results/{result_id}/verify */
+  /** @implements POST /api/v1/gig-tasks/{task_id}/results/{result_id}/verify */
   async verifyGigTaskResult(taskId, resultId, body) {
-    return this.request(`/api/v1/gig_pa/tasks/${encodeURIComponent(taskId)}/results/${encodeURIComponent(resultId)}/verify`, { method: "POST", body: JSON.stringify(body ?? {}) }, GigTaskVerifyResultSchema);
+    return this.serviceRequest(`/api/v1/gig-tasks/${encodeURIComponent(taskId)}/results/${encodeURIComponent(resultId)}/verify`, { method: "POST", body: JSON.stringify(body ?? {}) }, GigTaskVerifyResultSchema);
   }
-  /** @implements POST /api/v1/gig_pa/tasks/{task_id}/results/{result_id}/review */
+  /** @implements POST /api/v1/gig-tasks/{task_id}/results/{result_id}/review */
   async reviewGigTaskResult(taskId, resultId, body) {
-    return this.request(`/api/v1/gig_pa/tasks/${encodeURIComponent(taskId)}/results/${encodeURIComponent(resultId)}/review`, { method: "POST", body: JSON.stringify(body) }, GigTaskVerifyResultSchema);
+    return this.serviceRequest(`/api/v1/gig-tasks/${encodeURIComponent(taskId)}/results/${encodeURIComponent(resultId)}/review`, { method: "POST", body: JSON.stringify(body) }, GigTaskVerifyResultSchema);
   }
-  /** @implements POST /api/v1/gig_pa/tasks/{task_id}/release */
+  /** @implements POST /api/v1/gig-tasks/{task_id}/release */
   async releaseGigTask(taskId) {
-    return this.request(`/api/v1/gig_pa/tasks/${encodeURIComponent(taskId)}/release`, { method: "POST", body: JSON.stringify({}) }, GigTaskActionResultSchema);
+    return this.serviceRequest(`/api/v1/gig-tasks/${encodeURIComponent(taskId)}/release`, { method: "POST", body: JSON.stringify({}) }, GigTaskActionResultSchema);
   }
-  /** @implements POST /api/v1/gig_pa/tasks/{task_id}/cancel */
+  /** @implements POST /api/v1/gig-tasks/{task_id}/cancel */
   async cancelGigTask(taskId, reason) {
-    return this.request(`/api/v1/gig_pa/tasks/${encodeURIComponent(taskId)}/cancel`, { method: "POST", body: JSON.stringify(reason !== void 0 ? { reason } : {}) }, GigTaskActionResultSchema);
+    return this.serviceRequest(`/api/v1/gig-tasks/${encodeURIComponent(taskId)}/cancel`, { method: "POST", body: JSON.stringify(reason !== void 0 ? { reason } : {}) }, GigTaskActionResultSchema);
   }
   // ───────── Credits ─────────
   /** @implements GET /api/v1/credits */
@@ -4883,10 +4980,6 @@ var ConsumerClient = class {
   async revokeMandate(mandateId) {
     await this.request(`/api/v1/mandates/${encodeURIComponent(mandateId)}`, { method: "DELETE" }, external_exports.unknown());
   }
-  /** @implements POST /api/v1/mandates/transport */
-  async createTransportMandate(body) {
-    return this.request("/api/v1/mandates/transport", { method: "POST", body: JSON.stringify(body) }, MandateRecordSchema);
-  }
   // ───────── Observability ─────────
   /** @implements GET /api/v1/events/verify */
   async verifyEvents(options) {
@@ -4905,21 +4998,21 @@ var ConsumerClient = class {
   // ───────── Health (no auth required) ─────────
   /** @implements GET /health */
   async health() {
-    const res = await this.fetchImpl(`${this.baseUrl}/health`, { method: "GET" });
+    const res = await this.fetchImpl(`${this.networkUrl}/health`, { method: "GET" });
     if (!res.ok)
       throw new Error(`LinkedClaw /health ${res.status}`);
     return HealthStatusSchema.parse(await res.json());
   }
   /** @implements GET /health/ready */
   async healthReady() {
-    const res = await this.fetchImpl(`${this.baseUrl}/health/ready`, { method: "GET" });
+    const res = await this.fetchImpl(`${this.networkUrl}/health/ready`, { method: "GET" });
     if (!res.ok)
       throw new Error(`LinkedClaw /health/ready ${res.status}`);
     return HealthStatusSchema.parse(await res.json());
   }
   /** @implements GET /metrics */
   async metrics() {
-    const res = await this.fetchImpl(`${this.baseUrl}/metrics`, { method: "GET" });
+    const res = await this.fetchImpl(`${this.networkUrl}/metrics`, { method: "GET" });
     if (!res.ok)
       throw new Error(`LinkedClaw /metrics ${res.status}`);
     return res.text();
@@ -5648,11 +5741,15 @@ var RequesterFlows = class {
     return this.client.discover({ capability, ...extra });
   }
   /**
-   * Open a session. HTTP create → WS handshake (SESSION_CREATE/ACCEPT) → done.
+   * Open a session.
+   *
+   * Default: pure HTTP — `POST /sessions` then `POST /activate`. Cloud
+   * drives the SESSION_CREATE handshake to the provider server-side. No
+   * WebSocket opens on the requester side; no `agentId` registration
+   * required.
    *
-   * Default transport is /ws — native providers register there
-   * (`SkillConfig.try_acp=False` upstream default). Set `tryAcp: true` to try
-   * /acp first; on opt-in, falls back to /ws when the recipient isn't on /acp.
+   * `tryAcp: true` opts into the legacy WS handshake path for OpenClaw
+   * sub-agent / ACP-routed scenarios — see {@link HireParams.tryAcp}.
    */
   async hire(params) {
     const session = await this.client.createSession({
@@ -5662,9 +5759,9 @@ var RequesterFlows = class {
       ...params.referredBy !== void 0 ? { referred_by: params.referredBy } : {}
     });
     if (params.autoActivate === false) return { session, activated: false };
-    const relayUrl = params.relayUrl ?? DEFAULT_RELAY_URL;
     try {
       if (params.tryAcp) {
+        const relayUrl = params.relayUrl ?? DEFAULT_RELAY_URL;
         const acpUrl = relayUrl.replace(/\/ws$/, "/acp");
         try {
           await this.attemptHandshake(acpUrl, session.session_id, params, ACP_CONNECT_TIMEOUT_MS);
@@ -5672,9 +5769,8 @@ var RequesterFlows = class {
           if (!(err instanceof TransportMissError)) throw err;
           await this.attemptHandshake(relayUrl, session.session_id, params, SESSION_ACCEPT_TIMEOUT_MS);
         }
-      } else {
-        await this.attemptHandshake(relayUrl, session.session_id, params, SESSION_ACCEPT_TIMEOUT_MS);
       }
+      await this.client.activateSession(session.session_id);
     } catch (err) {
       await this.client.endSession(session.session_id, {}).catch(() => {
       });
@@ -5685,7 +5781,14 @@ var RequesterFlows = class {
     }
     return { session, activated: true };
   }
+  // tryAcp:true path only. Default `hire()` no longer calls this — see the
+  // method comment on `hire`. Kept for OpenClaw sub-agent integration.
   async attemptHandshake(url, sessionId, params, connectTimeoutMs) {
+    if (!params.agentId) {
+      throw new Error(
+        "attemptHandshake (tryAcp:true) requires `agentId` in HireParams \u2014 the WS IDENTIFY frame validates listing ownership. Use the default HTTP path (omit tryAcp) if you don't have a registered agent listing."
+      );
+    }
     const ws = new WebSocket2(url);
     try {
       await new Promise((resolve3, reject) => {