@openclaw/zalouser 2026.5.2 → 2026.5.3-beta.2

package/dist/runtime-QNU7vLgI.js

@@ -0,0 +1,106 @@
+import { normalizeOptionalLowercaseString } from "openclaw/plugin-sdk/text-runtime";
+import { createPluginRuntimeStore } from "openclaw/plugin-sdk/runtime-store";
+//#region extensions/zalouser/src/group-policy.ts
+function toGroupCandidate(value) {
+	return value?.trim() ?? "";
+}
+function normalizeZalouserGroupSlug(raw) {
+	const trimmed = normalizeOptionalLowercaseString(raw) ?? "";
+	if (!trimmed) return "";
+	return trimmed.replace(/^#/, "").replace(/[^a-z0-9]+/g, "-").replace(/^-+|-+$/g, "");
+}
+function buildZalouserGroupCandidates(params) {
+	const seen = /* @__PURE__ */ new Set();
+	const out = [];
+	const push = (value) => {
+		const normalized = toGroupCandidate(value);
+		if (!normalized || seen.has(normalized)) return;
+		seen.add(normalized);
+		out.push(normalized);
+	};
+	const groupId = toGroupCandidate(params.groupId);
+	const groupChannel = toGroupCandidate(params.groupChannel);
+	const groupName = toGroupCandidate(params.groupName);
+	push(groupId);
+	if (params.includeGroupIdAlias === true && groupId) push(`group:${groupId}`);
+	if (params.allowNameMatching !== false) {
+		push(groupChannel);
+		push(groupName);
+		if (groupName) push(normalizeZalouserGroupSlug(groupName));
+	}
+	if (params.includeWildcard !== false) push("*");
+	return out;
+}
+function findZalouserGroupEntry(groups, candidates) {
+	if (!groups) return;
+	for (const candidate of candidates) {
+		const entry = groups[candidate];
+		if (entry) return entry;
+	}
+}
+function isZalouserGroupEntryAllowed(entry) {
+	if (!entry) return false;
+	return entry.allow !== false && entry.enabled !== false;
+}
+//#endregion
+//#region extensions/zalouser/src/message-sid.ts
+function toMessageSidPart(value) {
+	if (typeof value === "string") return value.trim();
+	if (typeof value === "number" && Number.isFinite(value)) return String(Math.trunc(value));
+	return "";
+}
+function parseZalouserMessageSidFull(value) {
+	const raw = toMessageSidPart(value);
+	if (!raw) return null;
+	const [msgIdPart, cliMsgIdPart] = raw.split(":").map((entry) => entry.trim());
+	if (!msgIdPart || !cliMsgIdPart) return null;
+	return {
+		msgId: msgIdPart,
+		cliMsgId: cliMsgIdPart
+	};
+}
+function resolveZalouserReactionMessageIds(params) {
+	const explicitMessageId = toMessageSidPart(params.messageId);
+	const explicitCliMsgId = toMessageSidPart(params.cliMsgId);
+	if (explicitMessageId && explicitCliMsgId) return {
+		msgId: explicitMessageId,
+		cliMsgId: explicitCliMsgId
+	};
+	const parsedFromCurrent = parseZalouserMessageSidFull(params.currentMessageId);
+	if (parsedFromCurrent) return parsedFromCurrent;
+	const currentRaw = toMessageSidPart(params.currentMessageId);
+	if (!currentRaw) return null;
+	if (explicitMessageId && !explicitCliMsgId) return {
+		msgId: explicitMessageId,
+		cliMsgId: currentRaw
+	};
+	if (!explicitMessageId && explicitCliMsgId) return {
+		msgId: currentRaw,
+		cliMsgId: explicitCliMsgId
+	};
+	return {
+		msgId: currentRaw,
+		cliMsgId: currentRaw
+	};
+}
+function formatZalouserMessageSidFull(params) {
+	const msgId = toMessageSidPart(params.msgId);
+	const cliMsgId = toMessageSidPart(params.cliMsgId);
+	if (!msgId && !cliMsgId) return;
+	if (msgId && cliMsgId) return `${msgId}:${cliMsgId}`;
+	return msgId || cliMsgId || void 0;
+}
+function resolveZalouserMessageSid(params) {
+	const msgId = toMessageSidPart(params.msgId);
+	const cliMsgId = toMessageSidPart(params.cliMsgId);
+	if (msgId || cliMsgId) return msgId || cliMsgId;
+	return toMessageSidPart(params.fallback) || void 0;
+}
+//#endregion
+//#region extensions/zalouser/src/runtime.ts
+const { setRuntime: setZalouserRuntime, getRuntime: getZalouserRuntime } = createPluginRuntimeStore({
+	pluginId: "zalouser",
+	errorMessage: "Zalouser runtime not initialized"
+});
+//#endregion
+export { resolveZalouserReactionMessageIds as a, isZalouserGroupEntryAllowed as c, resolveZalouserMessageSid as i, setZalouserRuntime as n, buildZalouserGroupCandidates as o, formatZalouserMessageSidFull as r, findZalouserGroupEntry as s, getZalouserRuntime as t };

package/dist/runtime-api.js

@@ -0,0 +1,22 @@
+import { n as zalouserSetupWizard } from "./setup-surface-NCOuKu-l.js";
+import { n as setZalouserRuntime } from "./runtime-QNU7vLgI.js";
+import { n as zalouserSetupAdapter, t as createZalouserSetupWizardProxy } from "./setup-core-CqipqY98.js";
+import { t as zalouserPlugin } from "./channel-ou_w_2j-.js";
+import { n as isZalouserMutableGroupEntry, t as collectZalouserSecurityAuditFindings } from "./security-audit-BZLhil-V.js";
+import { t as zalouserSetupPlugin } from "./channel.setup-CiDeBFrn.js";
+import { t as createZalouserTool } from "./api-BRwdUWuS.js";
+import { buildBaseAccountStatusSnapshot } from "openclaw/plugin-sdk/status-helpers";
+import { formatAllowFromLowercase, mergeAllowlist, summarizeMapping } from "openclaw/plugin-sdk/allow-from";
+import { DEFAULT_ACCOUNT_ID, buildChannelConfigSchema, normalizeAccountId } from "openclaw/plugin-sdk/core";
+import { isDangerousNameMatchingEnabled } from "openclaw/plugin-sdk/dangerous-name-runtime";
+import { chunkTextForOutbound } from "openclaw/plugin-sdk/text-chunking";
+import { deliverTextOrMediaReply, isNumericTargetId, resolveSendableOutboundReplyParts, sendPayloadWithChunkedTextAndMedia } from "openclaw/plugin-sdk/reply-payload";
+import { createChannelPairingController } from "openclaw/plugin-sdk/channel-pairing";
+import { resolvePreferredOpenClawTmpDir } from "openclaw/plugin-sdk/temp-path";
+import { loadOutboundMediaFromUrl } from "openclaw/plugin-sdk/outbound-media";
+import { resolveDefaultGroupPolicy, resolveOpenProviderRuntimeGroupPolicy, warnMissingProviderGroupPolicyFallbackOnce } from "openclaw/plugin-sdk/runtime-group-policy";
+import { resolveInboundMentionDecision } from "openclaw/plugin-sdk/channel-inbound";
+import { createChannelReplyPipeline } from "openclaw/plugin-sdk/channel-reply-pipeline";
+import { resolveSenderCommandAuthorization } from "openclaw/plugin-sdk/command-auth";
+import { evaluateGroupRouteAccessForPolicy, resolveSenderScopedGroupPolicy } from "openclaw/plugin-sdk/group-access";
+export { DEFAULT_ACCOUNT_ID, buildBaseAccountStatusSnapshot, buildChannelConfigSchema, chunkTextForOutbound, collectZalouserSecurityAuditFindings, createChannelPairingController, createChannelReplyPipeline, createZalouserSetupWizardProxy, createZalouserTool, deliverTextOrMediaReply, evaluateGroupRouteAccessForPolicy, formatAllowFromLowercase, isDangerousNameMatchingEnabled, isNumericTargetId, isZalouserMutableGroupEntry, loadOutboundMediaFromUrl, mergeAllowlist, normalizeAccountId, resolveDefaultGroupPolicy, resolveInboundMentionDecision, resolveOpenProviderRuntimeGroupPolicy, resolvePreferredOpenClawTmpDir, resolveSendableOutboundReplyParts, resolveSenderCommandAuthorization, resolveSenderScopedGroupPolicy, sendPayloadWithChunkedTextAndMedia, setZalouserRuntime, summarizeMapping, warnMissingProviderGroupPolicyFallbackOnce, zalouserPlugin, zalouserSetupAdapter, zalouserSetupPlugin, zalouserSetupWizard };

package/dist/secret-contract-api.js

@@ -0,0 +1,5 @@
+//#region extensions/zalouser/secret-contract-api.ts
+const secretTargetRegistryEntries = [];
+function collectRuntimeConfigAssignments() {}
+//#endregion
+export { collectRuntimeConfigAssignments, secretTargetRegistryEntries };

package/dist/security-audit-BZLhil-V.js

@@ -0,0 +1,34 @@
+import { isDangerousNameMatchingEnabled } from "openclaw/plugin-sdk/dangerous-name-runtime";
+//#region extensions/zalouser/src/security-audit.ts
+function isZalouserMutableGroupEntry(raw) {
+	const text = raw.trim();
+	if (!text || text === "*") return false;
+	const normalized = text.replace(/^(zalouser|zlu):/i, "").replace(/^group:/i, "").trim();
+	if (!normalized) return false;
+	if (/^\d+$/.test(normalized)) return false;
+	return !/^g-\S+$/i.test(normalized);
+}
+function collectZalouserSecurityAuditFindings(params) {
+	const zalouserCfg = params.account.config ?? {};
+	const accountId = params.accountId?.trim() || params.account.accountId || "default";
+	const dangerousNameMatchingEnabled = isDangerousNameMatchingEnabled(zalouserCfg);
+	const zalouserPathPrefix = params.orderedAccountIds.length > 1 || params.hasExplicitAccountPath ? `channels.zalouser.accounts.${accountId}` : "channels.zalouser";
+	const mutableGroupEntries = /* @__PURE__ */ new Set();
+	const groups = zalouserCfg.groups;
+	if (groups && typeof groups === "object" && !Array.isArray(groups)) for (const key of Object.keys(groups)) {
+		if (!isZalouserMutableGroupEntry(key)) continue;
+		mutableGroupEntries.add(`${zalouserPathPrefix}.groups:${key}`);
+	}
+	if (mutableGroupEntries.size === 0) return [];
+	const examples = Array.from(mutableGroupEntries).slice(0, 5);
+	const more = mutableGroupEntries.size > examples.length ? ` (+${mutableGroupEntries.size - examples.length} more)` : "";
+	return [{
+		checkId: "channels.zalouser.groups.mutable_entries",
+		severity: dangerousNameMatchingEnabled ? "info" : "warn",
+		title: dangerousNameMatchingEnabled ? "Zalouser group routing uses break-glass name matching" : "Zalouser group routing contains mutable group entries",
+		detail: dangerousNameMatchingEnabled ? `Zalouser group-name routing is explicitly enabled via dangerouslyAllowNameMatching. This mutable-identity mode is operator-selected break-glass behavior and out-of-scope for vulnerability reports by itself. Found: ${examples.join(", ")}${more}.` : `Zalouser group auth is ID-only by default, so unresolved group-name or slug entries are ignored for auth and can drift from the intended trusted group. Found: ${examples.join(", ")}${more}.`,
+		remediation: dangerousNameMatchingEnabled ? "Prefer stable Zalo group IDs (for example group:<id> or provider-native g- ids), then disable dangerouslyAllowNameMatching." : "Prefer stable Zalo group IDs in channels.zalouser.groups, or explicitly opt in with dangerouslyAllowNameMatching=true if you accept mutable group-name matching."
+	}];
+}
+//#endregion
+export { isZalouserMutableGroupEntry as n, collectZalouserSecurityAuditFindings as t };