@openacp/cli 2026.401.4 → 2026.401.7

package/dist/index.js

@@ -2412,8 +2412,7 @@ Each session gets its own topic \u2014 chat there to work with the agent.
 /menu \u2014 Show action menu
 
 \u{1F512} <b>Session Options</b>
-/enable_bypass \u2014 Auto-approve permissions
-/disable_bypass \u2014 Restore permission prompts
+/bypass_permissions \u2014 Toggle bypass permissions
 /handoff \u2014 Continue session in terminal
 /archive \u2014 Archive session topic
 /clear \u2014 Clear assistant history
@@ -3178,7 +3177,14 @@ var DebugTracer = class {
         this.dirCreated = true;
       }
       const filePath = path6.join(this.logDir, `${this.sessionId}_${layer}.jsonl`);
-      const line = JSON.stringify({ ts: Date.now(), ...data }) + "\n";
+      const seen = /* @__PURE__ */ new WeakSet();
+      const line = JSON.stringify({ ts: Date.now(), ...data }, (_key, value) => {
+        if (typeof value === "object" && value !== null) {
+          if (seen.has(value)) return "[Circular]";
+          seen.add(value);
+        }
+        return value;
+      }) + "\n";
       fs7.appendFileSync(filePath, line);
     } catch {
     }
@@ -3971,8 +3977,9 @@ var Session = class extends TypedEmitter {
   activate() {
     this.transition("active");
   }
-  /** Transition to error — from initializing or active */
+  /** Transition to error — from initializing or active. Idempotent if already in error. */
   fail(reason) {
+    if (this._status === "error") return;
     this.transition("error");
     this.emit("error", new Error(reason));
   }
@@ -4831,7 +4838,7 @@ var SessionManager = class {
 init_log();
 
 // src/core/utils/bypass-detection.ts
-var BYPASS_KEYWORDS = ["bypass", "dangerous", "skip", "dontask", "dont_ask", "auto_accept"];
+var BYPASS_KEYWORDS = ["bypass", "dangerous", "auto_accept"];
 function isPermissionBypass(value) {
   const lower = value.toLowerCase();
   return BYPASS_KEYWORDS.some((kw) => lower.includes(kw));
@@ -10565,11 +10572,13 @@ function formatToolSummary(name, rawInput, displaySummary) {
     return desc ? `\u{1F9E0} Agent: ${desc}` : `\u{1F527} ${name}`;
   }
   if (lowerName === "webfetch" || lowerName === "web_fetch") {
-    const url = String(args.url ?? "").slice(0, 60);
+    const raw = args.url ?? "";
+    const url = (raw !== "undefined" ? String(raw) : "").slice(0, 60);
     return url ? `\u{1F310} Fetch ${url}` : `\u{1F527} ${name}`;
   }
   if (lowerName === "websearch" || lowerName === "web_search") {
-    const query = String(args.query ?? "").slice(0, 60);
+    const raw = args.query ?? "";
+    const query = (raw !== "undefined" ? String(raw) : "").slice(0, 60);
     return query ? `\u{1F310} Search "${query}"` : `\u{1F527} ${name}`;
   }
   return `\u{1F527} ${name}`;
@@ -10598,10 +10607,12 @@ function formatToolTitle(name, rawInput, displayTitle) {
     return String(args.description ?? name).slice(0, 60);
   }
   if (["webfetch", "web_fetch"].includes(lowerName)) {
-    return String(args.url ?? name).slice(0, 60);
+    const url = typeof args.url === "string" && args.url !== "undefined" ? args.url : null;
+    return (url ?? name).slice(0, 60);
   }
   if (["websearch", "web_search"].includes(lowerName)) {
-    return String(args.query ?? name).slice(0, 60);
+    const query = typeof args.query === "string" && args.query !== "undefined" ? args.query : null;
+    return (query ?? name).slice(0, 60);
   }
   return name;
 }
@@ -11530,6 +11541,13 @@ function buildTitle(entry, kind) {
     }
     return capitalize(entry.name);
   }
+  if (kind === "fetch" || kind === "web") {
+    const url = typeof input2.url === "string" ? input2.url : null;
+    if (url && url !== "undefined") return url.length > 60 ? url.slice(0, 57) + "..." : url;
+    const query = typeof input2.query === "string" ? input2.query : null;
+    if (query && query !== "undefined") return query.length > 60 ? query.slice(0, 57) + "..." : query;
+    return capitalize(entry.name);
+  }
   if (entry.name.toLowerCase() === "skill" && typeof input2.skill === "string" && input2.skill) {
     return input2.skill;
   }
@@ -11743,8 +11761,8 @@ A notification also appears in the Notifications topic with a link to the reques
 
 ### Bypass permissions
 Auto-approves ALL permission requests \u2014 the agent runs any command without asking.
-- Enable: \`/enable_bypass\` or tap the \u2620\uFE0F button in the session
-- Disable: \`/disable_bypass\` or tap the \u{1F510} button
+- Toggle: \`/bypass_permissions on\` or tap the \u2620\uFE0F button in the session
+- Disable: \`/bypass_permissions off\` or tap the \u{1F510} button
 - \u26A0\uFE0F Use with caution \u2014 the agent can execute anything
 
 ### Session timeout
@@ -11820,8 +11838,7 @@ Just chat naturally: "How do I create a session?", "What's the status?", "Someth
 | \`/sessions\` | Anywhere | List all sessions |
 | \`/agents\` | Anywhere | Browse & install agents from ACP Registry |
 | \`/install <name>\` | Anywhere | Install an agent |
-| \`/enable_bypass\` | Session topic | Auto-approve all permissions |
-| \`/disable_bypass\` | Session topic | Restore permission prompts |
+| \`/bypass_permissions\` | Session topic | Toggle bypass permissions (on/off) |
 | \`/handoff\` | Session topic | Transfer session to terminal |
 | \`/clear\` | Assistant topic | Clear assistant history |
 | \`/menu\` | Anywhere | Show action menu |
@@ -12015,7 +12032,7 @@ Override config with env vars:
 
 ### Permission request not showing
 - Check Notifications topic for the alert
-- Try \`/enable_bypass\` to auto-approve (if you trust the agent)
+- Try \`/bypass_permissions on\` to auto-approve (if you trust the agent)
 
 ### Session disappeared after restart
 - Sessions persist across restarts
@@ -12335,7 +12352,7 @@ function setupDangerousModeCallbacks(bot, core) {
       }
       const registry = core.lifecycleManager?.serviceRegistry?.get("command-registry");
       if (registry) {
-        await registry.execute(wantOn ? "/bypass on" : "/bypass off", {
+        await registry.execute(wantOn ? "/bypass_permissions on" : "/bypass_permissions off", {
           raw: wantOn ? "on" : "off",
           sessionId,
           channelId: "telegram",
@@ -12389,104 +12406,6 @@ function setupDangerousModeCallbacks(bot, core) {
     }
   });
 }
-async function handleEnableDangerous(ctx, core) {
-  const threadId = ctx.message?.message_thread_id;
-  if (!threadId) {
-    await ctx.reply("\u26A0\uFE0F This command only works inside a session topic.", {
-      parse_mode: "HTML"
-    });
-    return;
-  }
-  const session = await core.getOrResumeSession(
-    "telegram",
-    String(threadId)
-  );
-  if (session) {
-    if (session.clientOverrides.bypassPermissions) {
-      await ctx.reply("\u2620\uFE0F Bypass is already enabled.", {
-        parse_mode: "HTML"
-      });
-      return;
-    }
-    session.clientOverrides.bypassPermissions = true;
-    core.sessionManager.patchRecord(session.id, { clientOverrides: session.clientOverrides }).catch(() => {
-    });
-  } else {
-    const record = core.sessionManager.getRecordByThread(
-      "telegram",
-      String(threadId)
-    );
-    if (!record || record.status === "cancelled" || record.status === "error") {
-      await ctx.reply("\u26A0\uFE0F No active session in this topic.", {
-        parse_mode: "HTML"
-      });
-      return;
-    }
-    if (record.clientOverrides?.bypassPermissions ?? record.dangerousMode) {
-      await ctx.reply("\u2620\uFE0F Bypass is already enabled.", {
-        parse_mode: "HTML"
-      });
-      return;
-    }
-    core.sessionManager.patchRecord(record.sessionId, { clientOverrides: { bypassPermissions: true } }).catch(() => {
-    });
-  }
-  await ctx.reply(
-    `\u2620\uFE0F <b>Bypass Permissions enabled</b>
-
-All permission requests will be auto-approved \u2014 the agent can run any action without asking.
-
-Use /disable_bypass to turn this off.`,
-    { parse_mode: "HTML" }
-  );
-}
-async function handleDisableDangerous(ctx, core) {
-  const threadId = ctx.message?.message_thread_id;
-  if (!threadId) {
-    await ctx.reply("\u26A0\uFE0F This command only works inside a session topic.", {
-      parse_mode: "HTML"
-    });
-    return;
-  }
-  const session = await core.getOrResumeSession(
-    "telegram",
-    String(threadId)
-  );
-  if (session) {
-    if (!session.clientOverrides.bypassPermissions) {
-      await ctx.reply("\u{1F510} Bypass is already disabled.", {
-        parse_mode: "HTML"
-      });
-      return;
-    }
-    session.clientOverrides.bypassPermissions = false;
-    core.sessionManager.patchRecord(session.id, { clientOverrides: session.clientOverrides }).catch(() => {
-    });
-  } else {
-    const record = core.sessionManager.getRecordByThread(
-      "telegram",
-      String(threadId)
-    );
-    if (!record || record.status === "cancelled" || record.status === "error") {
-      await ctx.reply("\u26A0\uFE0F No active session in this topic.", {
-        parse_mode: "HTML"
-      });
-      return;
-    }
-    if (!(record.clientOverrides?.bypassPermissions ?? record.dangerousMode)) {
-      await ctx.reply("\u{1F510} Bypass is already disabled.", {
-        parse_mode: "HTML"
-      });
-      return;
-    }
-    core.sessionManager.patchRecord(record.sessionId, { clientOverrides: { bypassPermissions: false } }).catch(() => {
-    });
-  }
-  await ctx.reply(
-    "\u{1F510} <b>Bypass Permissions disabled</b>\n\nYou will be asked to approve risky actions.",
-    { parse_mode: "HTML" }
-  );
-}
 function buildSessionControlKeyboard(sessionId, dangerousMode, voiceMode) {
   return new InlineKeyboard().text(
     dangerousMode ? "\u{1F510} Disable Bypass Permissions" : "\u2620\uFE0F Enable Bypass Permissions",
@@ -12893,9 +12812,6 @@ async function createSessionDirect(ctx, core, chatId, agentName, workspace, onCo
       }
     );
     onControlMessage?.(session.id, controlMsg.message_id);
-    await core.sessionManager.patchRecord(session.id, {
-      platform: { topicId: threadId }
-    });
     return threadId ?? null;
   } catch (err) {
     log19.error({ err }, "Session creation failed");
@@ -12975,9 +12891,6 @@ async function handleNewChat(ctx, core, chatId, onControlMessage) {
       }
     );
     onControlMessage?.(session.id, controlMsg.message_id);
-    await core.sessionManager.patchRecord(session.id, {
-      platform: { topicId: newThreadId }
-    });
   } catch (err) {
     if (newThreadId) {
       try {
@@ -14042,9 +13955,6 @@ Repo: <code>${escapeHtml(repoPath)}</code>`,
       }
     );
     onControlMessage?.(session.id, controlMsg.message_id);
-    await core.sessionManager.patchRecord(session.id, {
-      platform: { topicId: threadId }
-    });
   } catch (err) {
     log21.error({ err }, "Resume session creation failed");
     if (threadId) {
@@ -14768,8 +14678,6 @@ function setupCommands(bot, core, chatId, assistant) {
   bot.command("install", (ctx) => handleInstall(ctx, core));
   bot.command("help", (ctx) => handleHelp(ctx));
   bot.command("menu", (ctx) => handleMenu(ctx));
-  bot.command("enable_bypass", (ctx) => handleEnableDangerous(ctx, core));
-  bot.command("disable_bypass", (ctx) => handleDisableDangerous(ctx, core));
   bot.command("restart", (ctx) => handleRestart(ctx, core));
   bot.command("update", (ctx) => handleUpdate(ctx, core));
   bot.command("integrate", (ctx) => handleIntegrate(ctx, core));
@@ -14852,14 +14760,6 @@ var STATIC_COMMANDS = [
   { command: "install", description: "Install a new agent" },
   { command: "help", description: "Help" },
   { command: "menu", description: "Show menu" },
-  {
-    command: "enable_bypass",
-    description: "Auto-approve all permission requests (session only)"
-  },
-  {
-    command: "disable_bypass",
-    description: "Restore normal permission prompts (session only)"
-  },
   { command: "integrate", description: "Manage agent integrations" },
   { command: "handoff", description: "Continue this session in your terminal" },
   { command: "clear", description: "Clear assistant history" },
@@ -14873,7 +14773,11 @@ var STATIC_COMMANDS = [
   { command: "verbosity", description: "Deprecated: use /outputmode instead" },
   { command: "outputmode", description: "Control output display level (low/medium/high)" },
   { command: "resume", description: "Resume with conversation history from Entire checkpoints" },
-  { command: "switch", description: "Switch agent in current session" }
+  { command: "switch", description: "Switch agent in current session" },
+  { command: "mode", description: "Change session mode" },
+  { command: "model", description: "Change AI model" },
+  { command: "thought", description: "Change thinking level" },
+  { command: "bypass_permissions", description: "Toggle bypass permissions (on/off)" }
 ];
 
 // src/plugins/telegram/permissions.ts
@@ -16169,9 +16073,10 @@ var TelegramAdapter = class extends MessagingAdapter {
   controlMsgIds = /* @__PURE__ */ new Map();
   /** Store control message ID in memory + persist to session record */
   storeControlMsgId(sessionId, msgId) {
-    this.storeControlMsgId(sessionId, msgId);
+    this.controlMsgIds.set(sessionId, msgId);
+    const record = this.core.sessionManager.getSessionRecord(sessionId);
     this.core.sessionManager.patchRecord(sessionId, {
-      platform: { controlMsgId: msgId }
+      platform: { ...record?.platform ?? {}, controlMsgId: msgId }
     }).catch(() => {
     });
   }