@openacp/cli 2026.401.4 → 2026.401.7

package/dist/cli.js

@@ -9756,11 +9756,13 @@ function formatToolSummary(name, rawInput, displaySummary) {
     return desc ? `\u{1F9E0} Agent: ${desc}` : `\u{1F527} ${name}`;
   }
   if (lowerName === "webfetch" || lowerName === "web_fetch") {
-    const url = String(args2.url ?? "").slice(0, 60);
+    const raw = args2.url ?? "";
+    const url = (raw !== "undefined" ? String(raw) : "").slice(0, 60);
     return url ? `\u{1F310} Fetch ${url}` : `\u{1F527} ${name}`;
   }
   if (lowerName === "websearch" || lowerName === "web_search") {
-    const query = String(args2.query ?? "").slice(0, 60);
+    const raw = args2.query ?? "";
+    const query = (raw !== "undefined" ? String(raw) : "").slice(0, 60);
     return query ? `\u{1F310} Search "${query}"` : `\u{1F527} ${name}`;
   }
   return `\u{1F527} ${name}`;
@@ -9789,10 +9791,12 @@ function formatToolTitle(name, rawInput, displayTitle) {
     return String(args2.description ?? name).slice(0, 60);
   }
   if (["webfetch", "web_fetch"].includes(lowerName)) {
-    return String(args2.url ?? name).slice(0, 60);
+    const url = typeof args2.url === "string" && args2.url !== "undefined" ? args2.url : null;
+    return (url ?? name).slice(0, 60);
   }
   if (["websearch", "web_search"].includes(lowerName)) {
-    return String(args2.query ?? name).slice(0, 60);
+    const query = typeof args2.query === "string" && args2.query !== "undefined" ? args2.query : null;
+    return (query ?? name).slice(0, 60);
   }
   return name;
 }
@@ -10070,7 +10074,7 @@ var BYPASS_KEYWORDS;
 var init_bypass_detection = __esm({
   "src/core/utils/bypass-detection.ts"() {
     "use strict";
-    BYPASS_KEYWORDS = ["bypass", "dangerous", "skip", "dontask", "dont_ask", "auto_accept"];
+    BYPASS_KEYWORDS = ["bypass", "dangerous", "auto_accept"];
   }
 });
 
@@ -10093,7 +10097,7 @@ function setupDangerousModeCallbacks(bot, core) {
       }
       const registry = core.lifecycleManager?.serviceRegistry?.get("command-registry");
       if (registry) {
-        await registry.execute(wantOn ? "/bypass on" : "/bypass off", {
+        await registry.execute(wantOn ? "/bypass_permissions on" : "/bypass_permissions off", {
           raw: wantOn ? "on" : "off",
           sessionId,
           channelId: "telegram",
@@ -10147,104 +10151,6 @@ function setupDangerousModeCallbacks(bot, core) {
     }
   });
 }
-async function handleEnableDangerous(ctx, core) {
-  const threadId = ctx.message?.message_thread_id;
-  if (!threadId) {
-    await ctx.reply("\u26A0\uFE0F This command only works inside a session topic.", {
-      parse_mode: "HTML"
-    });
-    return;
-  }
-  const session = await core.getOrResumeSession(
-    "telegram",
-    String(threadId)
-  );
-  if (session) {
-    if (session.clientOverrides.bypassPermissions) {
-      await ctx.reply("\u2620\uFE0F Bypass is already enabled.", {
-        parse_mode: "HTML"
-      });
-      return;
-    }
-    session.clientOverrides.bypassPermissions = true;
-    core.sessionManager.patchRecord(session.id, { clientOverrides: session.clientOverrides }).catch(() => {
-    });
-  } else {
-    const record = core.sessionManager.getRecordByThread(
-      "telegram",
-      String(threadId)
-    );
-    if (!record || record.status === "cancelled" || record.status === "error") {
-      await ctx.reply("\u26A0\uFE0F No active session in this topic.", {
-        parse_mode: "HTML"
-      });
-      return;
-    }
-    if (record.clientOverrides?.bypassPermissions ?? record.dangerousMode) {
-      await ctx.reply("\u2620\uFE0F Bypass is already enabled.", {
-        parse_mode: "HTML"
-      });
-      return;
-    }
-    core.sessionManager.patchRecord(record.sessionId, { clientOverrides: { bypassPermissions: true } }).catch(() => {
-    });
-  }
-  await ctx.reply(
-    `\u2620\uFE0F <b>Bypass Permissions enabled</b>
-
-All permission requests will be auto-approved \u2014 the agent can run any action without asking.
-
-Use /disable_bypass to turn this off.`,
-    { parse_mode: "HTML" }
-  );
-}
-async function handleDisableDangerous(ctx, core) {
-  const threadId = ctx.message?.message_thread_id;
-  if (!threadId) {
-    await ctx.reply("\u26A0\uFE0F This command only works inside a session topic.", {
-      parse_mode: "HTML"
-    });
-    return;
-  }
-  const session = await core.getOrResumeSession(
-    "telegram",
-    String(threadId)
-  );
-  if (session) {
-    if (!session.clientOverrides.bypassPermissions) {
-      await ctx.reply("\u{1F510} Bypass is already disabled.", {
-        parse_mode: "HTML"
-      });
-      return;
-    }
-    session.clientOverrides.bypassPermissions = false;
-    core.sessionManager.patchRecord(session.id, { clientOverrides: session.clientOverrides }).catch(() => {
-    });
-  } else {
-    const record = core.sessionManager.getRecordByThread(
-      "telegram",
-      String(threadId)
-    );
-    if (!record || record.status === "cancelled" || record.status === "error") {
-      await ctx.reply("\u26A0\uFE0F No active session in this topic.", {
-        parse_mode: "HTML"
-      });
-      return;
-    }
-    if (!(record.clientOverrides?.bypassPermissions ?? record.dangerousMode)) {
-      await ctx.reply("\u{1F510} Bypass is already disabled.", {
-        parse_mode: "HTML"
-      });
-      return;
-    }
-    core.sessionManager.patchRecord(record.sessionId, { clientOverrides: { bypassPermissions: false } }).catch(() => {
-    });
-  }
-  await ctx.reply(
-    "\u{1F510} <b>Bypass Permissions disabled</b>\n\nYou will be asked to approve risky actions.",
-    { parse_mode: "HTML" }
-  );
-}
 function buildSessionControlKeyboard(sessionId, dangerousMode, voiceMode) {
   return new InlineKeyboard().text(
     dangerousMode ? "\u{1F510} Disable Bypass Permissions" : "\u2620\uFE0F Enable Bypass Permissions",
@@ -10659,9 +10565,6 @@ async function createSessionDirect(ctx, core, chatId, agentName, workspace, onCo
       }
     );
     onControlMessage?.(session.id, controlMsg.message_id);
-    await core.sessionManager.patchRecord(session.id, {
-      platform: { topicId: threadId }
-    });
     return threadId ?? null;
   } catch (err) {
     log15.error({ err }, "Session creation failed");
@@ -10741,9 +10644,6 @@ async function handleNewChat(ctx, core, chatId, onControlMessage) {
       }
     );
     onControlMessage?.(session.id, controlMsg.message_id);
-    await core.sessionManager.patchRecord(session.id, {
-      platform: { topicId: newThreadId }
-    });
   } catch (err) {
     if (newThreadId) {
       try {
@@ -11322,8 +11222,7 @@ Each session gets its own topic \u2014 chat there to work with the agent.
 /menu \u2014 Show action menu
 
 \u{1F512} <b>Session Options</b>
-/enable_bypass \u2014 Auto-approve permissions
-/disable_bypass \u2014 Restore permission prompts
+/bypass_permissions \u2014 Toggle bypass permissions
 /handoff \u2014 Continue session in terminal
 /archive \u2014 Archive session topic
 /clear \u2014 Clear assistant history
@@ -12305,9 +12204,6 @@ Repo: <code>${escapeHtml4(repoPath)}</code>`,
       }
     );
     onControlMessage?.(session.id, controlMsg.message_id);
-    await core.sessionManager.patchRecord(session.id, {
-      platform: { topicId: threadId }
-    });
   } catch (err) {
     log17.error({ err }, "Resume session creation failed");
     if (threadId) {
@@ -13779,8 +13675,6 @@ function setupCommands(bot, core, chatId, assistant) {
   bot.command("install", (ctx) => handleInstall(ctx, core));
   bot.command("help", (ctx) => handleHelp(ctx));
   bot.command("menu", (ctx) => handleMenu(ctx));
-  bot.command("enable_bypass", (ctx) => handleEnableDangerous(ctx, core));
-  bot.command("disable_bypass", (ctx) => handleDisableDangerous(ctx, core));
   bot.command("restart", (ctx) => handleRestart(ctx, core));
   bot.command("update", (ctx) => handleUpdate(ctx, core));
   bot.command("integrate", (ctx) => handleIntegrate(ctx, core));
@@ -13888,14 +13782,6 @@ var init_commands3 = __esm({
       { command: "install", description: "Install a new agent" },
       { command: "help", description: "Help" },
       { command: "menu", description: "Show menu" },
-      {
-        command: "enable_bypass",
-        description: "Auto-approve all permission requests (session only)"
-      },
-      {
-        command: "disable_bypass",
-        description: "Restore normal permission prompts (session only)"
-      },
       { command: "integrate", description: "Manage agent integrations" },
       { command: "handoff", description: "Continue this session in your terminal" },
       { command: "clear", description: "Clear assistant history" },
@@ -13909,7 +13795,11 @@ var init_commands3 = __esm({
       { command: "verbosity", description: "Deprecated: use /outputmode instead" },
       { command: "outputmode", description: "Control output display level (low/medium/high)" },
       { command: "resume", description: "Resume with conversation history from Entire checkpoints" },
-      { command: "switch", description: "Switch agent in current session" }
+      { command: "switch", description: "Switch agent in current session" },
+      { command: "mode", description: "Change session mode" },
+      { command: "model", description: "Change AI model" },
+      { command: "thought", description: "Change thinking level" },
+      { command: "bypass_permissions", description: "Toggle bypass permissions (on/off)" }
     ];
   }
 });
@@ -14113,8 +14003,8 @@ A notification also appears in the Notifications topic with a link to the reques
 
 ### Bypass permissions
 Auto-approves ALL permission requests \u2014 the agent runs any command without asking.
-- Enable: \`/enable_bypass\` or tap the \u2620\uFE0F button in the session
-- Disable: \`/disable_bypass\` or tap the \u{1F510} button
+- Toggle: \`/bypass_permissions on\` or tap the \u2620\uFE0F button in the session
+- Disable: \`/bypass_permissions off\` or tap the \u{1F510} button
 - \u26A0\uFE0F Use with caution \u2014 the agent can execute anything
 
 ### Session timeout
@@ -14190,8 +14080,7 @@ Just chat naturally: "How do I create a session?", "What's the status?", "Someth
 | \`/sessions\` | Anywhere | List all sessions |
 | \`/agents\` | Anywhere | Browse & install agents from ACP Registry |
 | \`/install <name>\` | Anywhere | Install an agent |
-| \`/enable_bypass\` | Session topic | Auto-approve all permissions |
-| \`/disable_bypass\` | Session topic | Restore permission prompts |
+| \`/bypass_permissions\` | Session topic | Toggle bypass permissions (on/off) |
 | \`/handoff\` | Session topic | Transfer session to terminal |
 | \`/clear\` | Assistant topic | Clear assistant history |
 | \`/menu\` | Anywhere | Show action menu |
@@ -14385,7 +14274,7 @@ Override config with env vars:
 
 ### Permission request not showing
 - Check Notifications topic for the alert
-- Try \`/enable_bypass\` to auto-approve (if you trust the agent)
+- Try \`/bypass_permissions on\` to auto-approve (if you trust the agent)
 
 ### Session disappeared after restart
 - Sessions persist across restarts
@@ -14890,6 +14779,13 @@ function buildTitle(entry, kind) {
     }
     return capitalize(entry.name);
   }
+  if (kind === "fetch" || kind === "web") {
+    const url = typeof input2.url === "string" ? input2.url : null;
+    if (url && url !== "undefined") return url.length > 60 ? url.slice(0, 57) + "..." : url;
+    const query = typeof input2.query === "string" ? input2.query : null;
+    if (query && query !== "undefined") return query.length > 60 ? query.slice(0, 57) + "..." : query;
+    return capitalize(entry.name);
+  }
   if (entry.name.toLowerCase() === "skill" && typeof input2.skill === "string" && input2.skill) {
     return input2.skill;
   }
@@ -16444,9 +16340,10 @@ var init_adapter2 = __esm({
       controlMsgIds = /* @__PURE__ */ new Map();
       /** Store control message ID in memory + persist to session record */
       storeControlMsgId(sessionId, msgId) {
-        this.storeControlMsgId(sessionId, msgId);
+        this.controlMsgIds.set(sessionId, msgId);
+        const record = this.core.sessionManager.getSessionRecord(sessionId);
         this.core.sessionManager.patchRecord(sessionId, {
-          platform: { controlMsgId: msgId }
+          platform: { ...record?.platform ?? {}, controlMsgId: msgId }
         }).catch(() => {
         });
       }
@@ -18826,7 +18723,14 @@ var init_debug_tracer = __esm({
             this.dirCreated = true;
           }
           const filePath = path38.join(this.logDir, `${this.sessionId}_${layer}.jsonl`);
-          const line = JSON.stringify({ ts: Date.now(), ...data }) + "\n";
+          const seen = /* @__PURE__ */ new WeakSet();
+          const line = JSON.stringify({ ts: Date.now(), ...data }, (_key, value) => {
+            if (typeof value === "object" && value !== null) {
+              if (seen.has(value)) return "[Circular]";
+              seen.add(value);
+            }
+            return value;
+          }) + "\n";
           fs35.appendFileSync(filePath, line);
         } catch {
         }
@@ -19660,8 +19564,9 @@ Additionally, include a [TTS]...[/TTS] block with a spoken-friendly summary of y
       activate() {
         this.transition("active");
       }
-      /** Transition to error — from initializing or active */
+      /** Transition to error — from initializing or active. Idempotent if already in error. */
       fail(reason) {
+        if (this._status === "error") return;
         this.transition("error");
         this.emit("error", new Error(reason));
       }
@@ -23913,7 +23818,7 @@ function registerCategoryCommand(registry, core, category, commandName) {
 }
 function registerDangerousCommand(registry, core) {
   registry.register({
-    name: "bypass",
+    name: "bypass_permissions",
     description: "Auto-approve all permission requests (skip confirmation prompts)",
     usage: "[on|off]",
     category: "system",
@@ -23940,17 +23845,17 @@ function registerDangerousCommand(registry, core) {
           return {
             type: "menu",
             title: "\u2620\uFE0F Bypass is ON \u2014 all permissions are auto-approved",
-            options: [{ label: "\u{1F510} Turn off bypass", command: "/bypass off" }]
+            options: [{ label: "\u{1F510} Turn off bypass", command: "/bypass_permissions off" }]
           };
         }
         return {
           type: "menu",
           title: "\u{1F510} Bypass is OFF \u2014 you will be asked before risky actions",
-          options: [{ label: "\u2620\uFE0F Turn on bypass", command: "/bypass on" }]
+          options: [{ label: "\u2620\uFE0F Turn on bypass", command: "/bypass_permissions on" }]
         };
       }
       if (raw !== "on" && raw !== "off") {
-        return { type: "error", message: "Use **/bypass on** or **/bypass off**." };
+        return { type: "error", message: "Use **/bypass_permissions on** or **/bypass_permissions off**." };
       }
       const wantOn = raw === "on";
       if (wantOn === isCurrentlyBypassing) {