npm - @omnizap-system/omnizap - Versions diffs - 2.6.1 → 2.6.2 - Mend

@omnizap-system/omnizap 2.6.1 → 2.6.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (156) hide show

package/.env.example +54 -9
package/.github/workflows/ci.yml +3 -3
package/.github/workflows/security-runner-hardening.yml +1 -1
package/.github/workflows/security-zap-full-scan.yml +1 -0
package/app/config/index.js +2 -0
package/app/configParts/adminIdentity.js +5 -5
package/app/configParts/baileysConfig.js +226 -55
package/app/configParts/groupUtils.js +5 -0
package/app/configParts/messagePersistenceService.js +143 -3
package/app/configParts/sessionConfig.js +157 -0
package/app/connection/baileysCompatibility.test.js +1 -1
package/app/connection/groupOwnerWriteStateResolver.js +109 -0
package/app/connection/socketController.js +625 -124
package/app/connection/socketController.multiSession.test.js +108 -0
package/app/controllers/messageController.js +1 -1
package/app/controllers/messagePipeline/commandMiddleware.js +12 -10
package/app/controllers/messagePipeline/conversationMiddleware.js +2 -1
package/app/controllers/messagePipeline/messagePipelineMiddlewares.test.js +104 -0
package/app/controllers/messagePipeline/preProcessingMiddlewares.js +80 -2
package/app/controllers/messageProcessingPipeline.js +88 -9
package/app/controllers/messageProcessingPipeline.test.js +200 -0
package/app/modules/adminModule/AGENT.md +1 -1
package/app/modules/adminModule/commandConfig.json +3318 -1347
package/app/modules/adminModule/groupCommandHandlers.js +856 -14
package/app/modules/adminModule/groupCommandHandlers.test.js +375 -9
package/app/modules/adminModule/groupWarningRepository.js +152 -0
package/app/modules/aiModule/AGENT.md +47 -30
package/app/modules/aiModule/aiConfigRuntime.js +1 -0
package/app/modules/aiModule/catCommand.js +132 -25
package/app/modules/aiModule/commandConfig.json +114 -28
package/app/modules/analyticsModule/messageAnalysisEventRepository.js +54 -6
package/app/modules/gameModule/AGENT.md +1 -1
package/app/modules/gameModule/commandConfig.json +29 -0
package/app/modules/menuModule/AGENT.md +1 -1
package/app/modules/menuModule/commandConfig.json +45 -10
package/app/modules/menuModule/menuCatalogService.js +190 -0
package/app/modules/menuModule/menuCommandUsageRepository.js +109 -0
package/app/modules/menuModule/menuDynamicService.js +511 -0
package/app/modules/menuModule/menuDynamicService.test.js +141 -0
package/app/modules/menuModule/menus.js +36 -5
package/app/modules/playModule/AGENT.md +10 -5
package/app/modules/playModule/commandConfig.json +74 -16
package/app/modules/playModule/playCommandConstants.js +13 -7
package/app/modules/playModule/playCommandCore.js +4 -6
package/app/modules/playModule/{playCommandYtDlpClient.js → playCommandMediaClient.js} +684 -332
package/app/modules/playModule/playConfigRuntime.js +5 -6
package/app/modules/playModule/playModuleCriticalFlows.test.js +44 -59
package/app/modules/quoteModule/AGENT.md +1 -1
package/app/modules/quoteModule/commandConfig.json +29 -0
package/app/modules/rpgPokemonModule/AGENT.md +1 -1
package/app/modules/rpgPokemonModule/commandConfig.json +29 -0
package/app/modules/statsModule/AGENT.md +1 -1
package/app/modules/statsModule/commandConfig.json +58 -0
package/app/modules/stickerModule/AGENT.md +1 -1
package/app/modules/stickerModule/commandConfig.json +145 -0
package/app/modules/stickerPackModule/AGENT.md +1 -1
package/app/modules/stickerPackModule/autoPackCollectorService.js +5 -1
package/app/modules/stickerPackModule/commandConfig.json +29 -0
package/app/modules/stickerPackModule/stickerAutoPackByTagsRuntime.js +1 -1
package/app/modules/stickerPackModule/stickerPackCommandHandlers.js +78 -57
package/app/modules/stickerPackModule/stickerPackService.js +13 -6
package/app/modules/systemMetricsModule/AGENT.md +1 -1
package/app/modules/systemMetricsModule/commandConfig.json +29 -0
package/app/modules/tiktokModule/AGENT.md +1 -1
package/app/modules/tiktokModule/commandConfig.json +29 -0
package/app/modules/userModule/AGENT.md +1 -1
package/app/modules/userModule/commandConfig.json +29 -0
package/app/modules/waifuPicsModule/AGENT.md +57 -27
package/app/modules/waifuPicsModule/commandConfig.json +87 -0
package/app/observability/metrics.js +136 -0
package/app/services/ai/commandConfigEnrichmentService.js +229 -47
package/app/services/ai/geminiService.js +131 -7
package/app/services/ai/geminiService.test.js +59 -2
package/app/services/ai/moduleAiHelpCoreService.js +33 -4
package/app/services/group/groupMetadataService.js +24 -1
package/app/services/infra/dbWriteQueue.js +51 -21
package/app/services/messaging/newsBroadcastService.js +843 -27
package/app/services/multiSession/assignmentBalancerService.js +457 -0
package/app/services/multiSession/groupOwnershipRepository.js +381 -0
package/app/services/multiSession/groupOwnershipService.js +890 -0
package/app/services/multiSession/groupOwnershipService.test.js +309 -0
package/app/services/multiSession/sessionRegistryService.js +293 -0
package/app/store/aiPromptStore.js +36 -19
package/app/store/groupConfigStore.js +41 -5
package/app/store/premiumUserStore.js +21 -7
package/app/utils/antiLink/antiLinkModule.js +352 -16
package/app/workers/aiHelperContinuousLearningWorker.js +512 -0
package/database/index.js +6 -0
package/database/migrations/20260307_d0_hardening_down.sql +1 -1
package/database/migrations/20260314_d7_canonical_sender_down.sql +1 -1
package/database/migrations/20260406_d30_security_analytics_down.sql +1 -1
package/database/migrations/20260411_d35_group_community_metadata_down.sql +59 -0
package/database/migrations/20260411_d35_group_community_metadata_up.sql +62 -0
package/database/migrations/20260412_d36_system_config_tables_down.sql +32 -0
package/database/migrations/20260412_d36_system_config_tables_up.sql +66 -0
package/database/migrations/20260413_d37_group_user_warnings_down.sql +11 -0
package/database/migrations/20260413_d37_group_user_warnings_up.sql +24 -0
package/database/migrations/20260414_d38_multi_session_foundation_down.sql +72 -0
package/database/migrations/20260414_d38_multi_session_foundation_up.sql +125 -0
package/database/migrations/20260414_d39_multi_session_cutover_down.sql +103 -0
package/database/migrations/20260414_d39_multi_session_cutover_up.sql +83 -0
package/database/schema.sql +102 -1
package/docker-compose.yml +4 -1
package/docs/compliance/acceptable-use-policy-2026-03-07.md +1 -1
package/docs/compliance/privacy-policy-2026-03-07.md +2 -2
package/docs/security/dsar-lgpd-runbook-2026-03-07.md +1 -1
package/docs/security/network-hardening-runbook-2026-03-07.md +53 -0
package/docs/security/omnizap-static-security-headers.conf +25 -0
package/ecosystem.prod.config.cjs +31 -11
package/index.js +52 -18
package/observability/alert-rules.yml +20 -0
package/observability/grafana/dashboards/omnizap-system-admin.json +229 -0
package/observability/mysql-setup.sql +4 -4
package/observability/system-admin-observability.md +26 -0
package/package.json +12 -5
package/public/comandos/commands-catalog.json +2253 -78
package/public/js/apps/commandsReactApp.js +267 -87
package/public/js/apps/createPackApp.js +3 -3
package/public/js/apps/stickersApp.js +255 -103
package/public/js/apps/termsReactApp.js +57 -8
package/public/js/apps/userPasswordResetReactApp.js +406 -0
package/public/js/apps/userReactApp.js +96 -47
package/public/js/apps/userSystemAdmReactApp.js +1506 -0
package/public/pages/politica-de-privacidade.html +1 -1
package/public/pages/stickers.html +5 -5
package/public/pages/termos-de-uso-texto-integral.html +1 -1
package/public/pages/termos-de-uso.html +1 -1
package/public/pages/user-password-reset.html +3 -4
package/public/pages/user-systemadm.html +8 -462
package/public/pages/user.html +1 -1
package/scripts/clear-whatsapp-session.sh +123 -0
package/scripts/core-ai-mode.mjs +163 -0
package/scripts/deploy.sh +10 -0
package/scripts/enrich-command-config-ux-openai.mjs +492 -0
package/scripts/generate-commands-catalog.mjs +155 -0
package/scripts/new-whatsapp-session.sh +317 -0
package/scripts/security-web-surface-check.mjs +218 -0
package/server/controllers/admin/adminPanelHandlers.js +253 -3
package/server/controllers/admin/systemAdminController.js +267 -0
package/server/controllers/sticker/stickerCatalogController.js +9 -23
package/server/controllers/system/contactController.js +9 -17
package/server/controllers/system/stickerCatalogSystemContext.js +27 -6
package/server/controllers/system/systemController.js +254 -1
package/server/controllers/userController.js +6 -0
package/server/email/emailTemplateService.js +3 -2
package/server/http/httpServer.js +8 -4
package/server/middleware/securityHeaders.js +20 -1
package/server/routes/admin/systemAdminRouter.js +6 -0
package/server/routes/indexRouter.js +30 -6
package/server/routes/observability/grafanaProxyRouter.js +254 -0
package/server/routes/static/staticPageRouter.js +27 -1
package/server/utils/publicContact.js +31 -0
package/utils/whatsapp/contactEnv.js +39 -0
package/vite.config.mjs +2 -1
package/app/modules/playModule/local/installYtDlp.js +0 -25
package/app/modules/playModule/local/ytDlpInstaller.js +0 -28

package/app/services/multiSession/groupOwnershipRepository.js ADDED Viewed

@@ -0,0 +1,381 @@
+import { executeQuery, TABLES } from '../../../database/index.js';
+const GROUP_ASSIGNMENT_TABLE = TABLES.GROUP_ASSIGNMENT;
+const GROUP_ASSIGNMENT_HISTORY_TABLE = TABLES.GROUP_ASSIGNMENT_HISTORY;
+const MAX_GROUP_JID_LENGTH = 255;
+const MAX_SESSION_ID_LENGTH = 64;
+const MAX_REASON_LENGTH = 64;
+const MAX_CHANGED_BY_LENGTH = 64;
+const toDateOrNull = (value) => {
+  if (!value) return null;
+  if (value instanceof Date) {
+    return Number.isNaN(value.getTime()) ? null : value;
+  }
+  const parsed = new Date(value);
+  return Number.isNaN(parsed.getTime()) ? null : parsed;
+};
+const toPositiveInt = (value, fallback = 1) => {
+  const parsed = Number.parseInt(String(value ?? ''), 10);
+  if (!Number.isFinite(parsed) || parsed <= 0) return fallback;
+  return parsed;
+};
+const toBool = (value) => value === true || value === 1 || value === '1';
+const parseJson = (value) => {
+  if (!value) return null;
+  if (typeof value === 'object') return value;
+  try {
+    return JSON.parse(String(value));
+  } catch {
+    return null;
+  }
+};
+const serializeJson = (value) => {
+  if (value === undefined || value === null) return null;
+  if (typeof value === 'string') {
+    const normalized = value.trim();
+    return normalized || null;
+  }
+  try {
+    return JSON.stringify(value);
+  } catch {
+    return null;
+  }
+};
+export const normalizeGroupJid = (value) => {
+  const normalized = String(value || '')
+    .trim()
+    .slice(0, MAX_GROUP_JID_LENGTH);
+  return normalized || null;
+};
+export const normalizeSessionId = (value) => {
+  const normalized = String(value || '')
+    .trim()
+    .slice(0, MAX_SESSION_ID_LENGTH);
+  return normalized || null;
+};
+export const normalizeReason = (value) => {
+  if (value === undefined || value === null) return null;
+  const normalized = String(value)
+    .trim()
+    .slice(0, MAX_REASON_LENGTH);
+  return normalized || null;
+};
+export const normalizeChangedBy = (value) => {
+  const normalized = String(value || 'system')
+    .trim()
+    .slice(0, MAX_CHANGED_BY_LENGTH);
+  return normalized || 'system';
+};
+export const normalizeAssignmentRow = (row = null) => {
+  if (!row) return null;
+  return {
+    groupJid: normalizeGroupJid(row.group_jid),
+    ownerSessionId: normalizeSessionId(row.owner_session_id),
+    leaseExpiresAt: toDateOrNull(row.lease_expires_at),
+    cooldownUntil: toDateOrNull(row.cooldown_until),
+    assignmentVersion: toPositiveInt(row.assignment_version, 1),
+    pinned: toBool(row.pinned),
+    lastReason: normalizeReason(row.last_reason),
+    createdAt: toDateOrNull(row.created_at),
+    updatedAt: toDateOrNull(row.updated_at),
+  };
+};
+const ASSIGNMENT_SELECT_COLUMNS = `group_jid,
+  owner_session_id,
+  lease_expires_at,
+  cooldown_until,
+  assignment_version,
+  pinned,
+  last_reason,
+  created_at,
+  updated_at`;
+const clampLimit = (value, fallback = 200, min = 1, max = 5_000) => {
+  const parsed = Number.parseInt(String(value ?? ''), 10);
+  if (!Number.isFinite(parsed)) return fallback;
+  return Math.max(min, Math.min(max, parsed));
+};
+export const getAssignment = async (groupJid, connection = null) => {
+  const safeGroupJid = normalizeGroupJid(groupJid);
+  if (!safeGroupJid) return null;
+  const rows = await executeQuery(
+    `SELECT ${ASSIGNMENT_SELECT_COLUMNS}
+       FROM ${GROUP_ASSIGNMENT_TABLE}
+      WHERE group_jid = ?
+      LIMIT 1`,
+    [safeGroupJid],
+    connection,
+  );
+  return normalizeAssignmentRow(rows?.[0] || null);
+};
+export const getAssignmentForUpdate = async (groupJid, connection) => {
+  const safeGroupJid = normalizeGroupJid(groupJid);
+  if (!safeGroupJid) return null;
+  if (!connection) {
+    throw new Error('getAssignmentForUpdate requer connection transacional.');
+  }
+  const rows = await executeQuery(
+    `SELECT ${ASSIGNMENT_SELECT_COLUMNS}
+       FROM ${GROUP_ASSIGNMENT_TABLE}
+      WHERE group_jid = ?
+      LIMIT 1
+      FOR UPDATE`,
+    [safeGroupJid],
+    connection,
+  );
+  return normalizeAssignmentRow(rows?.[0] || null);
+};
+export const listAssignments = async (
+  {
+    groupJid = null,
+    ownerSessionId = null,
+    includeExpired = true,
+    limit = 200,
+  } = {},
+  connection = null,
+) => {
+  const safeGroupJid = normalizeGroupJid(groupJid);
+  const safeOwnerSessionId = normalizeSessionId(ownerSessionId);
+  const safeLimit = clampLimit(limit, 200, 1, 5_000);
+  const where = [];
+  const params = [];
+  if (safeGroupJid) {
+    where.push('group_jid = ?');
+    params.push(safeGroupJid);
+  }
+  if (safeOwnerSessionId) {
+    where.push('owner_session_id = ?');
+    params.push(safeOwnerSessionId);
+  }
+  if (!includeExpired) {
+    where.push('lease_expires_at > UTC_TIMESTAMP()');
+  }
+  const whereSql = where.length > 0 ? `WHERE ${where.join(' AND ')}` : '';
+  const rows = await executeQuery(
+    `SELECT ${ASSIGNMENT_SELECT_COLUMNS}
+       FROM ${GROUP_ASSIGNMENT_TABLE}
+      ${whereSql}
+      ORDER BY updated_at DESC
+      LIMIT ${safeLimit}`,
+    params,
+    connection,
+  );
+  return (Array.isArray(rows) ? rows : [])
+    .map((row) => normalizeAssignmentRow(row))
+    .filter(Boolean);
+};
+export const createAssignment = async (
+  { groupJid, ownerSessionId, leaseExpiresAt, cooldownUntil = null, pinned = false, reason = null, assignmentVersion = 1 } = {},
+  connection = null,
+) => {
+  const safeGroupJid = normalizeGroupJid(groupJid);
+  const safeOwnerSessionId = normalizeSessionId(ownerSessionId);
+  const safeLeaseExpiresAt = toDateOrNull(leaseExpiresAt);
+  if (!safeGroupJid || !safeOwnerSessionId || !safeLeaseExpiresAt) {
+    throw new Error('createAssignment requer groupJid, ownerSessionId e leaseExpiresAt validos.');
+  }
+  await executeQuery(
+    `INSERT INTO ${GROUP_ASSIGNMENT_TABLE}
+      (group_jid, owner_session_id, lease_expires_at, cooldown_until, assignment_version, pinned, last_reason)
+      VALUES (?, ?, ?, ?, ?, ?, ?)`,
+    [safeGroupJid, safeOwnerSessionId, safeLeaseExpiresAt, toDateOrNull(cooldownUntil), toPositiveInt(assignmentVersion, 1), toBool(pinned) ? 1 : 0, normalizeReason(reason)],
+    connection,
+  );
+  return getAssignment(safeGroupJid, connection);
+};
+export const updateAssignmentOwner = async (
+  { groupJid, ownerSessionId, leaseExpiresAt, reason = null, bumpVersion = true, cooldownUntil = undefined, pinned = undefined } = {},
+  connection = null,
+) => {
+  const safeGroupJid = normalizeGroupJid(groupJid);
+  const safeOwnerSessionId = normalizeSessionId(ownerSessionId);
+  const safeLeaseExpiresAt = toDateOrNull(leaseExpiresAt);
+  if (!safeGroupJid || !safeOwnerSessionId || !safeLeaseExpiresAt) {
+    throw new Error('updateAssignmentOwner requer groupJid, ownerSessionId e leaseExpiresAt validos.');
+  }
+  const sets = ['owner_session_id = ?', 'lease_expires_at = ?', 'last_reason = ?'];
+  const params = [safeOwnerSessionId, safeLeaseExpiresAt, normalizeReason(reason)];
+  if (cooldownUntil !== undefined) {
+    sets.push('cooldown_until = ?');
+    params.push(toDateOrNull(cooldownUntil));
+  }
+  if (pinned !== undefined) {
+    sets.push('pinned = ?');
+    params.push(toBool(pinned) ? 1 : 0);
+  }
+  if (bumpVersion) {
+    sets.push('assignment_version = assignment_version + 1');
+  }
+  params.push(safeGroupJid);
+  await executeQuery(
+    `UPDATE ${GROUP_ASSIGNMENT_TABLE}
+        SET ${sets.join(', ')}
+      WHERE group_jid = ?`,
+    params,
+    connection,
+  );
+  return getAssignment(safeGroupJid, connection);
+};
+export const updateAssignmentLease = async (
+  { groupJid, ownerSessionId, leaseExpiresAt, reason = undefined } = {},
+  connection = null,
+) => {
+  const safeGroupJid = normalizeGroupJid(groupJid);
+  const safeOwnerSessionId = normalizeSessionId(ownerSessionId);
+  const safeLeaseExpiresAt = toDateOrNull(leaseExpiresAt);
+  if (!safeGroupJid || !safeOwnerSessionId || !safeLeaseExpiresAt) {
+    throw new Error('updateAssignmentLease requer groupJid, ownerSessionId e leaseExpiresAt validos.');
+  }
+  const sets = ['lease_expires_at = ?'];
+  const params = [safeLeaseExpiresAt];
+  if (reason !== undefined) {
+    sets.push('last_reason = ?');
+    params.push(normalizeReason(reason));
+  }
+  params.push(safeGroupJid, safeOwnerSessionId);
+  await executeQuery(
+    `UPDATE ${GROUP_ASSIGNMENT_TABLE}
+        SET ${sets.join(', ')}
+      WHERE group_jid = ? AND owner_session_id = ?`,
+    params,
+    connection,
+  );
+  return getAssignment(safeGroupJid, connection);
+};
+export const expireAssignment = async (
+  { groupJid, ownerSessionId = null, reason = null, bumpVersion = true, leaseExpiresAt = new Date() } = {},
+  connection = null,
+) => {
+  const safeGroupJid = normalizeGroupJid(groupJid);
+  if (!safeGroupJid) {
+    throw new Error('expireAssignment requer groupJid valido.');
+  }
+  const safeOwnerSessionId = normalizeSessionId(ownerSessionId);
+  const safeLeaseExpiresAt = toDateOrNull(leaseExpiresAt) || new Date();
+  const sets = ['lease_expires_at = ?', 'last_reason = ?'];
+  if (bumpVersion) {
+    sets.push('assignment_version = assignment_version + 1');
+  }
+  const params = [safeLeaseExpiresAt, normalizeReason(reason), safeGroupJid];
+  let where = 'group_jid = ?';
+  if (safeOwnerSessionId) {
+    where += ' AND owner_session_id = ?';
+    params.push(safeOwnerSessionId);
+  }
+  await executeQuery(
+    `UPDATE ${GROUP_ASSIGNMENT_TABLE}
+        SET ${sets.join(', ')}
+      WHERE ${where}`,
+    params,
+    connection,
+  );
+  return getAssignment(safeGroupJid, connection);
+};
+export const renewLeasesByOwner = async (
+  {
+    ownerSessionId,
+    leaseExpiresAt,
+    reason = null,
+    now = undefined,
+  } = {},
+  connection = null,
+) => {
+  const safeOwnerSessionId = normalizeSessionId(ownerSessionId);
+  const safeLeaseExpiresAt = toDateOrNull(leaseExpiresAt);
+  const safeNow = now === undefined ? new Date() : toDateOrNull(now) || new Date();
+  if (!safeOwnerSessionId || !safeLeaseExpiresAt) {
+    throw new Error('renewLeasesByOwner requer ownerSessionId e leaseExpiresAt validos.');
+  }
+  const result = await executeQuery(
+    `UPDATE ${GROUP_ASSIGNMENT_TABLE}
+        SET lease_expires_at = ?,
+            last_reason = ?
+      WHERE owner_session_id = ?
+        AND lease_expires_at > ?`,
+    [safeLeaseExpiresAt, normalizeReason(reason), safeOwnerSessionId, safeNow],
+    connection,
+  );
+  return Number(result?.affectedRows || 0);
+};
+export const insertAssignmentHistory = async (
+  { groupJid, previousSessionId = null, newSessionId, changeReason = null, changedBy = 'system', assignmentVersion = 1, metadata = null } = {},
+  connection = null,
+) => {
+  const safeGroupJid = normalizeGroupJid(groupJid);
+  const safePreviousSessionId = normalizeSessionId(previousSessionId);
+  const safeNewSessionId = normalizeSessionId(newSessionId) || safePreviousSessionId;
+  const safeChangedBy = normalizeChangedBy(changedBy);
+  const safeVersion = toPositiveInt(assignmentVersion, 1);
+  if (!safeGroupJid || !safeNewSessionId) {
+    throw new Error('insertAssignmentHistory requer groupJid e newSessionId validos.');
+  }
+  const result = await executeQuery(
+    `INSERT INTO ${GROUP_ASSIGNMENT_HISTORY_TABLE}
+      (group_jid, previous_session_id, new_session_id, change_reason, changed_by, assignment_version, metadata)
+      VALUES (?, ?, ?, ?, ?, ?, ?)`,
+    [safeGroupJid, safePreviousSessionId, safeNewSessionId, normalizeReason(changeReason), safeChangedBy, safeVersion, serializeJson(metadata)],
+    connection,
+  );
+  return {
+    id: Number(result?.insertId || 0),
+    groupJid: safeGroupJid,
+    previousSessionId: safePreviousSessionId,
+    newSessionId: safeNewSessionId,
+    changeReason: normalizeReason(changeReason),
+    changedBy: safeChangedBy,
+    assignmentVersion: safeVersion,
+    metadata: parseJson(serializeJson(metadata)),
+  };
+};