@openparachute/agent 0.1.1 → 0.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (598) hide show
  1. package/.parachute/module.json +124 -8
  2. package/LICENSE +2 -16
  3. package/README.md +118 -166
  4. package/package.json +32 -43
  5. package/scripts/spawn-agent.ts +371 -0
  6. package/src/_parked/interactive-spawn.test.ts +324 -0
  7. package/src/_parked/interactive-spawn.ts +701 -0
  8. package/src/agent-defs.test.ts +1504 -0
  9. package/src/agent-defs.ts +1702 -0
  10. package/src/agent-mcp-config.test.ts +115 -0
  11. package/src/agent-mcp-config.ts +115 -0
  12. package/src/agents.test.ts +360 -0
  13. package/src/agents.ts +379 -0
  14. package/src/auth.test.ts +46 -0
  15. package/src/auth.ts +140 -0
  16. package/src/backends/attached-queue.test.ts +376 -0
  17. package/src/backends/attached-queue.ts +372 -0
  18. package/src/backends/programmatic.test.ts +1715 -0
  19. package/src/backends/programmatic.ts +927 -0
  20. package/src/backends/registry.test.ts +1494 -0
  21. package/src/backends/registry.ts +1202 -0
  22. package/src/backends/stream-json.test.ts +570 -0
  23. package/src/backends/stream-json.ts +392 -0
  24. package/src/backends/types.ts +223 -0
  25. package/src/bridge.ts +417 -0
  26. package/src/channel-backend-wiring.test.ts +237 -0
  27. package/src/credentials.test.ts +274 -0
  28. package/src/credentials.ts +380 -0
  29. package/src/cron.test.ts +342 -0
  30. package/src/cron.ts +380 -0
  31. package/src/daemon-agent-def-api.test.ts +166 -0
  32. package/src/daemon-agent-defs-api.test.ts +953 -0
  33. package/src/daemon-agent-env-api.test.ts +338 -0
  34. package/src/daemon-attached-queue-store.test.ts +65 -0
  35. package/src/daemon-config-api.test.ts +962 -0
  36. package/src/daemon-jobs-api.test.ts +271 -0
  37. package/src/daemon-vault-chat.test.ts +250 -0
  38. package/src/daemon.test.ts +746 -0
  39. package/src/daemon.ts +3314 -0
  40. package/src/def-vaults.test.ts +136 -0
  41. package/src/def-vaults.ts +165 -0
  42. package/src/delivery-state.test.ts +110 -0
  43. package/src/delivery-state.ts +154 -0
  44. package/src/effective-env.test.ts +114 -0
  45. package/src/effective-env.ts +184 -0
  46. package/src/env-compat.ts +39 -0
  47. package/src/grants.test.ts +638 -0
  48. package/src/grants.ts +675 -0
  49. package/src/hub-jwt.test.ts +161 -0
  50. package/src/hub-jwt.ts +182 -0
  51. package/src/jobs.test.ts +245 -0
  52. package/src/jobs.ts +266 -0
  53. package/src/mcp-http.test.ts +265 -0
  54. package/src/mcp-http.ts +771 -0
  55. package/src/mint-token.test.ts +152 -0
  56. package/src/mint-token.ts +139 -0
  57. package/src/module-manifest.test.ts +158 -0
  58. package/src/oauth-discovery.ts +134 -0
  59. package/src/programmatic-wiring.test.ts +838 -0
  60. package/src/registry.test.ts +227 -0
  61. package/src/registry.ts +228 -0
  62. package/src/resolve-port.test.ts +64 -0
  63. package/src/routing.test.ts +184 -0
  64. package/src/routing.ts +76 -0
  65. package/src/runner.test.ts +506 -0
  66. package/src/runner.ts +255 -0
  67. package/src/sandbox/config.test.ts +150 -0
  68. package/src/sandbox/config.ts +102 -0
  69. package/src/sandbox/egress.test.ts +113 -0
  70. package/src/sandbox/egress.ts +123 -0
  71. package/src/sandbox/index.ts +180 -0
  72. package/src/sandbox/live-seatbelt.test.ts +277 -0
  73. package/src/sandbox/mounts.test.ts +154 -0
  74. package/src/sandbox/mounts.ts +133 -0
  75. package/src/sandbox/sandbox.test.ts +168 -0
  76. package/src/sandbox/types.ts +382 -0
  77. package/src/services-manifest.test.ts +106 -0
  78. package/src/services-manifest.ts +95 -0
  79. package/src/spa-serve.test.ts +116 -0
  80. package/src/spa-serve.ts +116 -0
  81. package/src/spawn-agent-cli.test.ts +172 -0
  82. package/src/spawn-agent.test.ts +1218 -0
  83. package/src/spawn-agent.ts +569 -0
  84. package/src/spawn-deps.test.ts +54 -0
  85. package/src/spawn-deps.ts +166 -0
  86. package/src/telegram/api.ts +153 -0
  87. package/src/terminal-assets.test.ts +50 -0
  88. package/src/terminal-assets.ts +79 -0
  89. package/src/terminal-ui.ts +305 -0
  90. package/src/terminal.test.ts +530 -0
  91. package/src/terminal.ts +458 -0
  92. package/src/transport.ts +270 -0
  93. package/src/transports/http-ui.test.ts +455 -0
  94. package/src/transports/http-ui.ts +201 -0
  95. package/src/transports/telegram.test.ts +174 -0
  96. package/src/transports/telegram.ts +426 -0
  97. package/src/transports/vault.test.ts +2011 -0
  98. package/src/transports/vault.ts +1790 -0
  99. package/src/ui-kit.test.ts +178 -0
  100. package/src/ui-kit.ts +402 -0
  101. package/tsconfig.json +8 -14
  102. package/web/ui/tsconfig.json +2 -1
  103. package/.claude/scheduled_tasks.lock +0 -1
  104. package/.claude/settings.json +0 -5
  105. package/.claude/skills/add-atomic-chat-tool/SKILL.md +0 -243
  106. package/.claude/skills/add-atomic-chat-tool/atomic-chat-mcp-stdio.ts +0 -229
  107. package/.claude/skills/add-codex/SKILL.md +0 -161
  108. package/.claude/skills/add-dashboard/SKILL.md +0 -138
  109. package/.claude/skills/add-dashboard/resources/dashboard-pusher.ts +0 -495
  110. package/.claude/skills/add-emacs/SKILL.md +0 -296
  111. package/.claude/skills/add-gcal-tool/SKILL.md +0 -210
  112. package/.claude/skills/add-gchat/REMOVE.md +0 -6
  113. package/.claude/skills/add-gchat/SKILL.md +0 -92
  114. package/.claude/skills/add-gchat/VERIFY.md +0 -3
  115. package/.claude/skills/add-github/REMOVE.md +0 -6
  116. package/.claude/skills/add-github/SKILL.md +0 -148
  117. package/.claude/skills/add-github/VERIFY.md +0 -3
  118. package/.claude/skills/add-gmail-tool/SKILL.md +0 -229
  119. package/.claude/skills/add-imessage/REMOVE.md +0 -6
  120. package/.claude/skills/add-imessage/SKILL.md +0 -113
  121. package/.claude/skills/add-imessage/VERIFY.md +0 -3
  122. package/.claude/skills/add-karpathy-llm-wiki/SKILL.md +0 -110
  123. package/.claude/skills/add-karpathy-llm-wiki/llm-wiki.md +0 -75
  124. package/.claude/skills/add-linear/REMOVE.md +0 -6
  125. package/.claude/skills/add-linear/SKILL.md +0 -168
  126. package/.claude/skills/add-linear/VERIFY.md +0 -3
  127. package/.claude/skills/add-macos-statusbar/SKILL.md +0 -133
  128. package/.claude/skills/add-macos-statusbar/add/src/statusbar.swift +0 -147
  129. package/.claude/skills/add-matrix/REMOVE.md +0 -6
  130. package/.claude/skills/add-matrix/SKILL.md +0 -148
  131. package/.claude/skills/add-matrix/VERIFY.md +0 -3
  132. package/.claude/skills/add-ollama-provider/SKILL.md +0 -179
  133. package/.claude/skills/add-ollama-tool/SKILL.md +0 -193
  134. package/.claude/skills/add-opencode/SKILL.md +0 -229
  135. package/.claude/skills/add-parallel/SKILL.md +0 -290
  136. package/.claude/skills/add-resend/REMOVE.md +0 -6
  137. package/.claude/skills/add-resend/SKILL.md +0 -93
  138. package/.claude/skills/add-resend/VERIFY.md +0 -3
  139. package/.claude/skills/add-signal/REMOVE.md +0 -13
  140. package/.claude/skills/add-signal/SKILL.md +0 -318
  141. package/.claude/skills/add-signal/VERIFY.md +0 -5
  142. package/.claude/skills/add-slack/REMOVE.md +0 -6
  143. package/.claude/skills/add-slack/SKILL.md +0 -112
  144. package/.claude/skills/add-slack/VERIFY.md +0 -3
  145. package/.claude/skills/add-teams/REMOVE.md +0 -6
  146. package/.claude/skills/add-teams/SKILL.md +0 -207
  147. package/.claude/skills/add-teams/VERIFY.md +0 -3
  148. package/.claude/skills/add-vercel/SKILL.md +0 -147
  149. package/.claude/skills/add-vercel/container-skills/vercel-cli/SKILL.md +0 -103
  150. package/.claude/skills/add-webex/REMOVE.md +0 -6
  151. package/.claude/skills/add-webex/SKILL.md +0 -88
  152. package/.claude/skills/add-webex/VERIFY.md +0 -3
  153. package/.claude/skills/add-wechat/REMOVE.md +0 -49
  154. package/.claude/skills/add-wechat/SKILL.md +0 -170
  155. package/.claude/skills/add-wechat/scripts/wire-dm.ts +0 -172
  156. package/.claude/skills/add-whatsapp/SKILL.md +0 -264
  157. package/.claude/skills/add-whatsapp-cloud/REMOVE.md +0 -6
  158. package/.claude/skills/add-whatsapp-cloud/SKILL.md +0 -95
  159. package/.claude/skills/add-whatsapp-cloud/VERIFY.md +0 -3
  160. package/.claude/skills/claw/SKILL.md +0 -131
  161. package/.claude/skills/claw/scripts/claw +0 -374
  162. package/.claude/skills/convert-to-apple-container/SKILL.md +0 -212
  163. package/.claude/skills/customize/SKILL.md +0 -110
  164. package/.claude/skills/debug/SKILL.md +0 -349
  165. package/.claude/skills/get-qodo-rules/SKILL.md +0 -122
  166. package/.claude/skills/get-qodo-rules/references/output-format.md +0 -41
  167. package/.claude/skills/get-qodo-rules/references/pagination.md +0 -33
  168. package/.claude/skills/get-qodo-rules/references/repository-scope.md +0 -26
  169. package/.claude/skills/init-first-agent/SKILL.md +0 -120
  170. package/.claude/skills/init-onecli/SKILL.md +0 -270
  171. package/.claude/skills/manage-channels/SKILL.md +0 -87
  172. package/.claude/skills/manage-mounts/SKILL.md +0 -47
  173. package/.claude/skills/migrate-from-openclaw/MIGRATE_CRONS.md +0 -100
  174. package/.claude/skills/migrate-from-openclaw/SKILL.md +0 -447
  175. package/.claude/skills/migrate-from-openclaw/scripts/discover-openclaw.ts +0 -734
  176. package/.claude/skills/migrate-from-openclaw/scripts/extract-channel-credentials.ts +0 -476
  177. package/.claude/skills/migrate-nanoclaw/SKILL.md +0 -484
  178. package/.claude/skills/migrate-nanoclaw/diagnostics.md +0 -51
  179. package/.claude/skills/qodo-pr-resolver/SKILL.md +0 -326
  180. package/.claude/skills/qodo-pr-resolver/resources/providers.md +0 -329
  181. package/.claude/skills/update-nanoclaw/SKILL.md +0 -243
  182. package/.claude/skills/update-nanoclaw/diagnostics.md +0 -48
  183. package/.claude/skills/update-skills/SKILL.md +0 -130
  184. package/.claude/skills/use-native-credential-proxy/SKILL.md +0 -167
  185. package/.claude/skills/x-integration/SKILL.md +0 -417
  186. package/.claude/skills/x-integration/agent.ts +0 -243
  187. package/.claude/skills/x-integration/host.ts +0 -155
  188. package/.claude/skills/x-integration/lib/browser.ts +0 -148
  189. package/.claude/skills/x-integration/lib/config.ts +0 -62
  190. package/.claude/skills/x-integration/scripts/like.ts +0 -56
  191. package/.claude/skills/x-integration/scripts/post.ts +0 -66
  192. package/.claude/skills/x-integration/scripts/quote.ts +0 -80
  193. package/.claude/skills/x-integration/scripts/reply.ts +0 -74
  194. package/.claude/skills/x-integration/scripts/retweet.ts +0 -62
  195. package/.claude/skills/x-integration/scripts/setup.ts +0 -87
  196. package/.github/CODEOWNERS +0 -10
  197. package/.github/PULL_REQUEST_TEMPLATE.md +0 -18
  198. package/.github/workflows/bump-version.yml +0 -35
  199. package/.github/workflows/ci.yml +0 -39
  200. package/.github/workflows/label-pr.yml +0 -40
  201. package/.github/workflows/update-tokens.yml +0 -43
  202. package/.husky/pre-commit +0 -1
  203. package/.mcp.json +0 -3
  204. package/.nvmrc +0 -1
  205. package/.prettierrc +0 -4
  206. package/CHANGELOG.md +0 -221
  207. package/CLAUDE.md +0 -307
  208. package/CODE_OF_CONDUCT.md +0 -128
  209. package/CONTRIBUTING.md +0 -159
  210. package/CONTRIBUTORS.md +0 -26
  211. package/LICENSE-NANOCLAW-MIT +0 -21
  212. package/README_ja.md +0 -194
  213. package/README_zh.md +0 -194
  214. package/assets/nanoclaw-favicon.png +0 -0
  215. package/assets/nanoclaw-icon.png +0 -0
  216. package/assets/nanoclaw-logo-dark.png +0 -0
  217. package/assets/nanoclaw-logo.png +0 -0
  218. package/assets/nanoclaw-profile.jpeg +0 -0
  219. package/assets/nanoclaw-sales.png +0 -0
  220. package/assets/social-preview.jpg +0 -0
  221. package/config-examples/mount-allowlist.json +0 -25
  222. package/container/.dockerignore +0 -2
  223. package/container/CLAUDE.md +0 -21
  224. package/container/Dockerfile +0 -121
  225. package/container/agent-runner/bun.lock +0 -243
  226. package/container/agent-runner/package.json +0 -22
  227. package/container/agent-runner/scripts/sdk-signal-probe.ts +0 -169
  228. package/container/agent-runner/src/config.ts +0 -55
  229. package/container/agent-runner/src/db/connection.ts +0 -267
  230. package/container/agent-runner/src/db/index.ts +0 -20
  231. package/container/agent-runner/src/db/messages-in.ts +0 -138
  232. package/container/agent-runner/src/db/messages-out.ts +0 -143
  233. package/container/agent-runner/src/db/session-routing.ts +0 -30
  234. package/container/agent-runner/src/db/session-state.test.ts +0 -100
  235. package/container/agent-runner/src/db/session-state.ts +0 -79
  236. package/container/agent-runner/src/destinations.ts +0 -135
  237. package/container/agent-runner/src/formatter.test.ts +0 -167
  238. package/container/agent-runner/src/formatter.ts +0 -260
  239. package/container/agent-runner/src/index.ts +0 -110
  240. package/container/agent-runner/src/integration.test.ts +0 -121
  241. package/container/agent-runner/src/mcp-tools/agents.instructions.md +0 -26
  242. package/container/agent-runner/src/mcp-tools/agents.ts +0 -66
  243. package/container/agent-runner/src/mcp-tools/core.instructions.md +0 -27
  244. package/container/agent-runner/src/mcp-tools/core.ts +0 -262
  245. package/container/agent-runner/src/mcp-tools/index.ts +0 -22
  246. package/container/agent-runner/src/mcp-tools/interactive.instructions.md +0 -22
  247. package/container/agent-runner/src/mcp-tools/interactive.ts +0 -169
  248. package/container/agent-runner/src/mcp-tools/scheduling.instructions.md +0 -40
  249. package/container/agent-runner/src/mcp-tools/scheduling.ts +0 -299
  250. package/container/agent-runner/src/mcp-tools/self-mod.instructions.md +0 -25
  251. package/container/agent-runner/src/mcp-tools/self-mod.ts +0 -120
  252. package/container/agent-runner/src/mcp-tools/server.ts +0 -54
  253. package/container/agent-runner/src/mcp-tools/types.ts +0 -6
  254. package/container/agent-runner/src/poll-loop.test.ts +0 -248
  255. package/container/agent-runner/src/poll-loop.ts +0 -437
  256. package/container/agent-runner/src/providers/claude.ts +0 -379
  257. package/container/agent-runner/src/providers/factory.test.ts +0 -19
  258. package/container/agent-runner/src/providers/factory.ts +0 -13
  259. package/container/agent-runner/src/providers/index.ts +0 -6
  260. package/container/agent-runner/src/providers/mock.ts +0 -77
  261. package/container/agent-runner/src/providers/provider-registry.ts +0 -33
  262. package/container/agent-runner/src/providers/types.ts +0 -82
  263. package/container/agent-runner/src/scheduling/task-script.ts +0 -121
  264. package/container/agent-runner/src/timezone.test.ts +0 -93
  265. package/container/agent-runner/src/timezone.ts +0 -107
  266. package/container/agent-runner/tsconfig.json +0 -14
  267. package/container/build.sh +0 -48
  268. package/container/entrypoint.sh +0 -16
  269. package/container/skills/agent-browser/SKILL.md +0 -159
  270. package/container/skills/frontend-engineer/SKILL.md +0 -157
  271. package/container/skills/self-customize/SKILL.md +0 -87
  272. package/container/skills/slack-formatting/SKILL.md +0 -94
  273. package/container/skills/vercel-cli/SKILL.md +0 -111
  274. package/container/skills/welcome/SKILL.md +0 -85
  275. package/docs/APPLE-CONTAINER-NETWORKING.md +0 -90
  276. package/docs/BRANCH-FORK-MAINTENANCE.md +0 -81
  277. package/docs/README.md +0 -25
  278. package/docs/SDK_DEEP_DIVE.md +0 -643
  279. package/docs/SECURITY.md +0 -162
  280. package/docs/agent-runner-details.md +0 -749
  281. package/docs/api-details.md +0 -365
  282. package/docs/architecture-diagram.html +0 -422
  283. package/docs/architecture-diagram.md +0 -215
  284. package/docs/architecture.md +0 -751
  285. package/docs/audit/2026-04-30-channel-endpoint-audit.md +0 -36
  286. package/docs/build-and-runtime.md +0 -80
  287. package/docs/cross-mount-stress/README.md +0 -112
  288. package/docs/cross-mount-stress/container-writer-retry.mjs +0 -55
  289. package/docs/cross-mount-stress/container-writer-slow.mjs +0 -42
  290. package/docs/cross-mount-stress/container-writer.mjs +0 -47
  291. package/docs/cross-mount-stress/host-writer-retry.mjs +0 -55
  292. package/docs/cross-mount-stress/host-writer-slow.mjs +0 -43
  293. package/docs/cross-mount-stress/host-writer.mjs +0 -47
  294. package/docs/db-central.md +0 -316
  295. package/docs/db-session.md +0 -183
  296. package/docs/db.md +0 -119
  297. package/docs/design/2026-04-29-vault-management-ui.md +0 -231
  298. package/docs/design/2026-04-30-channel-wiring-rework.md +0 -234
  299. package/docs/design/2026-05-01-channel-wiring-approvals-deep-dive.md +0 -272
  300. package/docs/design/2026-05-02-channel-policy-and-approval-routing.md +0 -250
  301. package/docs/docker-sandboxes.md +0 -359
  302. package/docs/isolation-model.md +0 -88
  303. package/docs/ollama.md +0 -79
  304. package/docs/parachute-integration.md +0 -109
  305. package/docs/post-night-rebirth-reflections.md +0 -151
  306. package/eslint.config.js +0 -32
  307. package/pnpm-workspace.yaml +0 -8
  308. package/repo-tokens/README.md +0 -113
  309. package/repo-tokens/action.yml +0 -186
  310. package/repo-tokens/badge.svg +0 -23
  311. package/repo-tokens/examples/green.svg +0 -14
  312. package/repo-tokens/examples/red.svg +0 -14
  313. package/repo-tokens/examples/yellow-green.svg +0 -14
  314. package/repo-tokens/examples/yellow.svg +0 -14
  315. package/scripts/chat.ts +0 -101
  316. package/scripts/cleanup-sessions.sh +0 -150
  317. package/scripts/init-cli-agent.ts +0 -171
  318. package/scripts/init-first-agent.ts +0 -377
  319. package/scripts/parachute.ts +0 -158
  320. package/scripts/run-migrations.ts +0 -105
  321. package/scripts/sanity-live-poll.ts +0 -95
  322. package/scripts/seed-discord.ts +0 -79
  323. package/scripts/test-v2-agent.ts +0 -106
  324. package/scripts/test-v2-channel-e2e.ts +0 -265
  325. package/scripts/test-v2-host.ts +0 -184
  326. package/src/channels/adapter.ts +0 -214
  327. package/src/channels/ask-question.ts +0 -46
  328. package/src/channels/channel-registry.test.ts +0 -421
  329. package/src/channels/channel-registry.ts +0 -313
  330. package/src/channels/chat-sdk-bridge.test.ts +0 -84
  331. package/src/channels/chat-sdk-bridge.ts +0 -652
  332. package/src/channels/cli.ts +0 -276
  333. package/src/channels/discord.ts +0 -90
  334. package/src/channels/index.ts +0 -17
  335. package/src/channels/telegram-markdown-sanitize.test.ts +0 -78
  336. package/src/channels/telegram-markdown-sanitize.ts +0 -55
  337. package/src/channels/telegram-pairing.test.ts +0 -254
  338. package/src/channels/telegram-pairing.ts +0 -339
  339. package/src/channels/telegram.ts +0 -279
  340. package/src/channels/trust-hint.test.ts +0 -48
  341. package/src/channels/trust-hint.ts +0 -75
  342. package/src/claude-md-compose.migrate.test.ts +0 -64
  343. package/src/claude-md-compose.ts +0 -205
  344. package/src/command-gate.ts +0 -63
  345. package/src/config.test.ts +0 -93
  346. package/src/config.ts +0 -108
  347. package/src/container-config.ts +0 -167
  348. package/src/container-runner.test.ts +0 -32
  349. package/src/container-runner.ts +0 -576
  350. package/src/container-runtime.test.ts +0 -169
  351. package/src/container-runtime.ts +0 -92
  352. package/src/db/_bun-sqlite-shim.ts +0 -88
  353. package/src/db/agent-activity.test.ts +0 -155
  354. package/src/db/agent-activity.ts +0 -121
  355. package/src/db/agent-groups.ts +0 -77
  356. package/src/db/connection.migrate.test.ts +0 -143
  357. package/src/db/connection.ts +0 -224
  358. package/src/db/db-v2.test.ts +0 -440
  359. package/src/db/dropped-messages.ts +0 -44
  360. package/src/db/index.ts +0 -40
  361. package/src/db/messaging-groups.ts +0 -252
  362. package/src/db/migrations/001-initial.ts +0 -112
  363. package/src/db/migrations/002-chat-sdk-state.ts +0 -36
  364. package/src/db/migrations/008-dropped-messages.ts +0 -27
  365. package/src/db/migrations/009-drop-pending-credentials.ts +0 -13
  366. package/src/db/migrations/010-engage-modes.ts +0 -103
  367. package/src/db/migrations/011-pending-sender-approvals.ts +0 -40
  368. package/src/db/migrations/012-channel-registration.ts +0 -48
  369. package/src/db/migrations/013-approval-render-metadata.ts +0 -27
  370. package/src/db/migrations/014-secrets.ts +0 -44
  371. package/src/db/migrations/015-secrets-drop-host-pattern.ts +0 -18
  372. package/src/db/migrations/016-secret-assignments.ts +0 -30
  373. package/src/db/migrations/017-agent-activity.ts +0 -40
  374. package/src/db/migrations/018-oauth-app-configs.ts +0 -34
  375. package/src/db/migrations/019-oauth-app-connections.ts +0 -48
  376. package/src/db/migrations/020-agent-app-connections.ts +0 -28
  377. package/src/db/migrations/021-pending-oauth-states.ts +0 -35
  378. package/src/db/migrations/022-app-connections-provider.ts +0 -25
  379. package/src/db/migrations/023-agent-group-secret-mode.test.ts +0 -124
  380. package/src/db/migrations/023-agent-group-secret-mode.ts +0 -65
  381. package/src/db/migrations/024-collapse-approvals.test.ts +0 -249
  382. package/src/db/migrations/024-collapse-approvals.ts +0 -182
  383. package/src/db/migrations/025-secret-mode-check.test.ts +0 -155
  384. package/src/db/migrations/025-secret-mode-check.ts +0 -49
  385. package/src/db/migrations/026-user-dms-bot-id.test.ts +0 -116
  386. package/src/db/migrations/026-user-dms-bot-id.ts +0 -54
  387. package/src/db/migrations/027-provider-credentials.ts +0 -41
  388. package/src/db/migrations/_test-helpers.ts +0 -41
  389. package/src/db/migrations/index.ts +0 -127
  390. package/src/db/migrations/module-agent-to-agent-destinations.ts +0 -84
  391. package/src/db/migrations/module-approvals-pending-approvals.ts +0 -42
  392. package/src/db/migrations/module-approvals-title-options.ts +0 -40
  393. package/src/db/schema.ts +0 -258
  394. package/src/db/session-db.test.ts +0 -93
  395. package/src/db/session-db.ts +0 -325
  396. package/src/db/sessions.ts +0 -241
  397. package/src/delivery.test.ts +0 -148
  398. package/src/delivery.ts +0 -445
  399. package/src/env.ts +0 -74
  400. package/src/group-folder.test.ts +0 -35
  401. package/src/group-folder.ts +0 -44
  402. package/src/group-init.ts +0 -92
  403. package/src/host-core.test.ts +0 -456
  404. package/src/host-sweep.test.ts +0 -146
  405. package/src/host-sweep.ts +0 -287
  406. package/src/index.ts +0 -227
  407. package/src/install-slug.ts +0 -33
  408. package/src/log.test.ts +0 -81
  409. package/src/log.ts +0 -117
  410. package/src/mcp/http.ts +0 -72
  411. package/src/mcp/server.ts +0 -92
  412. package/src/mcp/stdio.ts +0 -51
  413. package/src/mcp/tools/activity.ts +0 -88
  414. package/src/mcp/tools/agent-groups.ts +0 -183
  415. package/src/mcp/tools/approvals.ts +0 -122
  416. package/src/mcp/tools/channels.ts +0 -199
  417. package/src/mcp/tools/index.ts +0 -27
  418. package/src/mcp/tools/oauth.ts +0 -48
  419. package/src/mcp/tools/secrets.ts +0 -169
  420. package/src/mcp/tools/sessions.ts +0 -135
  421. package/src/mcp/types.ts +0 -51
  422. package/src/modules/agent-to-agent/agent-route.test.ts +0 -46
  423. package/src/modules/agent-to-agent/agent-route.ts +0 -223
  424. package/src/modules/agent-to-agent/create-agent.ts +0 -127
  425. package/src/modules/agent-to-agent/db/agent-destinations.ts +0 -135
  426. package/src/modules/agent-to-agent/index.ts +0 -22
  427. package/src/modules/agent-to-agent/write-destinations.ts +0 -59
  428. package/src/modules/approvals/agent.md +0 -45
  429. package/src/modules/approvals/index.ts +0 -21
  430. package/src/modules/approvals/picks.test.ts +0 -291
  431. package/src/modules/approvals/primitive.ts +0 -279
  432. package/src/modules/approvals/project.md +0 -27
  433. package/src/modules/approvals/response-handler.ts +0 -87
  434. package/src/modules/index.ts +0 -24
  435. package/src/modules/interactive/agent.md +0 -21
  436. package/src/modules/interactive/index.ts +0 -69
  437. package/src/modules/interactive/project.md +0 -12
  438. package/src/modules/mount-security/index.ts +0 -448
  439. package/src/modules/mount-security/migrate.test.ts +0 -91
  440. package/src/modules/permissions/access.ts +0 -28
  441. package/src/modules/permissions/channel-approval.test.ts +0 -389
  442. package/src/modules/permissions/channel-approval.ts +0 -188
  443. package/src/modules/permissions/db/agent-group-members.ts +0 -44
  444. package/src/modules/permissions/db/pending-channel-approvals.test.ts +0 -86
  445. package/src/modules/permissions/db/pending-channel-approvals.ts +0 -66
  446. package/src/modules/permissions/db/pending-sender-approvals.ts +0 -60
  447. package/src/modules/permissions/db/user-dms.ts +0 -58
  448. package/src/modules/permissions/db/user-roles.ts +0 -85
  449. package/src/modules/permissions/db/users.ts +0 -38
  450. package/src/modules/permissions/index.ts +0 -421
  451. package/src/modules/permissions/permissions.test.ts +0 -358
  452. package/src/modules/permissions/sender-approval.test.ts +0 -470
  453. package/src/modules/permissions/sender-approval.ts +0 -165
  454. package/src/modules/permissions/user-dm.ts +0 -200
  455. package/src/modules/provider-credentials/db.ts +0 -121
  456. package/src/modules/provider-credentials/index.ts +0 -12
  457. package/src/modules/provider-credentials/spawn.test.ts +0 -206
  458. package/src/modules/provider-credentials/spawn.ts +0 -114
  459. package/src/modules/scheduling/actions.ts +0 -113
  460. package/src/modules/scheduling/db.test.ts +0 -282
  461. package/src/modules/scheduling/db.ts +0 -148
  462. package/src/modules/scheduling/index.ts +0 -34
  463. package/src/modules/scheduling/recurrence.test.ts +0 -98
  464. package/src/modules/scheduling/recurrence.ts +0 -54
  465. package/src/modules/self-mod/agent.md +0 -30
  466. package/src/modules/self-mod/apply.ts +0 -85
  467. package/src/modules/self-mod/index.ts +0 -30
  468. package/src/modules/self-mod/project.md +0 -39
  469. package/src/modules/self-mod/request.ts +0 -91
  470. package/src/modules/typing/index.ts +0 -165
  471. package/src/oauth/agent-app-connections.ts +0 -103
  472. package/src/oauth/app-configs.test.ts +0 -64
  473. package/src/oauth/app-configs.ts +0 -114
  474. package/src/oauth/app-connections.test.ts +0 -109
  475. package/src/oauth/app-connections.ts +0 -178
  476. package/src/oauth/crypto.ts +0 -56
  477. package/src/oauth/flow.ts +0 -104
  478. package/src/oauth/providers/google.test.ts +0 -38
  479. package/src/oauth/providers/google.ts +0 -46
  480. package/src/oauth/providers/index.ts +0 -48
  481. package/src/oauth/state-store.test.ts +0 -54
  482. package/src/oauth/state-store.ts +0 -93
  483. package/src/parachute/README.md +0 -27
  484. package/src/parachute/create-agent.test.ts +0 -83
  485. package/src/parachute/create-agent.ts +0 -122
  486. package/src/parachute/group-status.test.ts +0 -165
  487. package/src/parachute/group-status.ts +0 -136
  488. package/src/parachute/types.ts +0 -41
  489. package/src/parachute/vault-mcp.test.ts +0 -251
  490. package/src/parachute/vault-mcp.ts +0 -232
  491. package/src/platform-id.test.ts +0 -104
  492. package/src/platform-id.ts +0 -109
  493. package/src/providers/index.ts +0 -6
  494. package/src/providers/provider-container-registry.ts +0 -58
  495. package/src/response-registry.ts +0 -45
  496. package/src/router.ts +0 -530
  497. package/src/secrets/crypto.test.ts +0 -45
  498. package/src/secrets/crypto.ts +0 -55
  499. package/src/secrets/index.ts +0 -355
  500. package/src/secrets/master-key.ts +0 -70
  501. package/src/secrets/secrets.test.ts +0 -354
  502. package/src/session-manager.migrate.test.ts +0 -59
  503. package/src/session-manager.ts +0 -433
  504. package/src/startup-bootstrap.test.ts +0 -226
  505. package/src/startup-bootstrap.ts +0 -207
  506. package/src/state-sqlite.ts +0 -182
  507. package/src/timezone.test.ts +0 -64
  508. package/src/timezone.ts +0 -37
  509. package/src/types.ts +0 -230
  510. package/src/web/auth.test.ts +0 -335
  511. package/src/web/auth.ts +0 -214
  512. package/src/web/discord-validate.test.ts +0 -77
  513. package/src/web/discord-validate.ts +0 -88
  514. package/src/web/hub-discovery.test.ts +0 -98
  515. package/src/web/hub-discovery.ts +0 -69
  516. package/src/web/routes/activity.ts +0 -106
  517. package/src/web/routes/agent-provider.test.ts +0 -282
  518. package/src/web/routes/agent-provider.ts +0 -309
  519. package/src/web/routes/approvals.ts +0 -185
  520. package/src/web/routes/apps.ts +0 -434
  521. package/src/web/routes/channels-mg-detail.test.ts +0 -324
  522. package/src/web/routes/channels-mga-detail.test.ts +0 -425
  523. package/src/web/routes/channels.ts +0 -489
  524. package/src/web/routes/oauth-providers.ts +0 -42
  525. package/src/web/routes/secrets.test.ts +0 -175
  526. package/src/web/routes/secrets.ts +0 -282
  527. package/src/web/routes/sessions.ts +0 -123
  528. package/src/web/routes/settings.test.ts +0 -106
  529. package/src/web/routes/settings.ts +0 -247
  530. package/src/web/routes/setup-status.ts +0 -205
  531. package/src/web/routes/vaults.test.ts +0 -389
  532. package/src/web/routes/vaults.ts +0 -225
  533. package/src/web/server-version.test.ts +0 -16
  534. package/src/web/server.ts +0 -1003
  535. package/src/web/services-manifest.test.ts +0 -120
  536. package/src/web/services-manifest.ts +0 -61
  537. package/src/web/static-serve.test.ts +0 -255
  538. package/src/web/static-serve.ts +0 -104
  539. package/src/web/telegram-validate.test.ts +0 -116
  540. package/src/web/telegram-validate.ts +0 -107
  541. package/src/web/vault-proxy.test.ts +0 -214
  542. package/src/web/vault-proxy.ts +0 -120
  543. package/src/web/wire-channel.ts +0 -181
  544. package/src/webhook-server.ts +0 -134
  545. package/vitest.config.ts +0 -18
  546. package/web/README.md +0 -63
  547. package/web/ui/index.html +0 -13
  548. package/web/ui/package.json +0 -35
  549. package/web/ui/pnpm-lock.yaml +0 -2164
  550. package/web/ui/scripts/verify-base.mjs +0 -31
  551. package/web/ui/src/App.tsx +0 -88
  552. package/web/ui/src/components/ActivityFeed.tsx +0 -444
  553. package/web/ui/src/components/AgentGroupPicker.tsx +0 -263
  554. package/web/ui/src/components/AgentProviderCards.tsx +0 -220
  555. package/web/ui/src/components/CredentialForm.tsx +0 -214
  556. package/web/ui/src/components/ScopeGrants.tsx +0 -74
  557. package/web/ui/src/components/StatusDot.tsx +0 -43
  558. package/web/ui/src/components/VaultPicker.tsx +0 -127
  559. package/web/ui/src/components/setup/AdapterInstallStep.tsx +0 -178
  560. package/web/ui/src/components/setup/AgentGroupStep.tsx +0 -43
  561. package/web/ui/src/components/setup/ChannelPickStep.tsx +0 -74
  562. package/web/ui/src/components/setup/DoneStep.tsx +0 -49
  563. package/web/ui/src/components/setup/PrereqStep.tsx +0 -129
  564. package/web/ui/src/components/setup/TestConnectionStep.tsx +0 -108
  565. package/web/ui/src/components/setup/TestMessageStep.tsx +0 -104
  566. package/web/ui/src/components/setup/WireChannelStep.tsx +0 -166
  567. package/web/ui/src/components/setup/types.ts +0 -105
  568. package/web/ui/src/lib/api.test.ts +0 -410
  569. package/web/ui/src/lib/api.ts +0 -1210
  570. package/web/ui/src/lib/auth.test.ts +0 -139
  571. package/web/ui/src/lib/auth.ts +0 -348
  572. package/web/ui/src/lib/channel-adapters.ts +0 -136
  573. package/web/ui/src/main.tsx +0 -19
  574. package/web/ui/src/routes/ApprovalsList.tsx +0 -294
  575. package/web/ui/src/routes/Apps.tsx +0 -613
  576. package/web/ui/src/routes/ChannelWireDetail.test.tsx +0 -233
  577. package/web/ui/src/routes/ChannelWireDetail.tsx +0 -403
  578. package/web/ui/src/routes/ChannelsList.tsx +0 -158
  579. package/web/ui/src/routes/GroupDetail.tsx +0 -755
  580. package/web/ui/src/routes/GroupList.tsx +0 -187
  581. package/web/ui/src/routes/MessagingGroupDetail.test.tsx +0 -233
  582. package/web/ui/src/routes/MessagingGroupDetail.tsx +0 -306
  583. package/web/ui/src/routes/NewGroupWizard.tsx +0 -390
  584. package/web/ui/src/routes/OAuthCallback.tsx +0 -56
  585. package/web/ui/src/routes/SecretsList.tsx +0 -921
  586. package/web/ui/src/routes/SessionsList.tsx +0 -220
  587. package/web/ui/src/routes/SettingsAgentProvider.tsx +0 -109
  588. package/web/ui/src/routes/SettingsApprovals.tsx +0 -234
  589. package/web/ui/src/routes/SetupWizard.tsx +0 -219
  590. package/web/ui/src/routes/VaultDetail.test.tsx +0 -361
  591. package/web/ui/src/routes/VaultDetail.tsx +0 -960
  592. package/web/ui/src/routes/VaultsList.tsx +0 -295
  593. package/web/ui/src/routes/WireChannelPage.tsx +0 -413
  594. package/web/ui/src/styles.css +0 -608
  595. package/web/ui/src/test/setup.ts +0 -23
  596. package/web/ui/src/vite-env.d.ts +0 -10
  597. package/web/ui/vite.config.ts +0 -34
  598. package/web/ui/vitest.config.ts +0 -25
@@ -1,470 +0,0 @@
1
- /**
2
- * Integration tests for the unknown-sender request_approval flow
3
- * (ACTION-ITEMS item 5).
4
- *
5
- * Covers:
6
- * - request_approval policy fires `requestSenderApproval` on first unknown
7
- * message from a sender
8
- * - In-flight dedup: second message from the same sender while pending is
9
- * silently dropped (no second card, no second row)
10
- * - Approve path: member added, original message replayed via routeInbound,
11
- * container woken
12
- * - Deny path: pending row deleted, no member added
13
- */
14
- import fs from 'fs';
15
- import { beforeEach, afterEach, describe, expect, it, vi } from 'vitest';
16
-
17
- import { initTestDb, closeDb, runMigrations } from '../../db/index.js';
18
- import { createAgentGroup } from '../../db/agent-groups.js';
19
- import { createMessagingGroup, createMessagingGroupAgent } from '../../db/messaging-groups.js';
20
- import { upsertUser } from './db/users.js';
21
- import { grantRole } from './db/user-roles.js';
22
-
23
- // Mock container runner — prevent actual docker spawn.
24
- vi.mock('../../container-runner.js', () => ({
25
- wakeContainer: vi.fn().mockResolvedValue(undefined),
26
- isContainerRunning: vi.fn().mockReturnValue(false),
27
- getActiveContainerCount: vi.fn().mockReturnValue(0),
28
- killContainer: vi.fn(),
29
- }));
30
-
31
- // Mock delivery adapter — record card deliveries for assertions.
32
- const deliverMock = vi.fn().mockResolvedValue('plat-msg-id');
33
- vi.mock('../../delivery.js', () => ({
34
- getDeliveryAdapter: () => ({
35
- deliver: deliverMock,
36
- }),
37
- }));
38
-
39
- // Mock ensureUserDm to return the approver's existing messaging group
40
- // instead of hitting a real openDM RPC.
41
- vi.mock('./user-dm.js', () => ({
42
- ensureUserDm: vi.fn(async (userId: string) => {
43
- const { getDb } = await import('../../db/connection.js');
44
- const row = getDb()
45
- .prepare(
46
- `SELECT mg.* FROM messaging_groups mg
47
- JOIN user_dms ud ON ud.messaging_group_id = mg.id
48
- WHERE ud.user_id = ?`,
49
- )
50
- .get(userId);
51
- return row;
52
- }),
53
- }));
54
-
55
- vi.mock('../../config.js', async () => {
56
- const actual = await vi.importActual('../../config.js');
57
- return { ...actual, DATA_DIR: '/tmp/paraclaw-test-sender-approval' };
58
- });
59
-
60
- const TEST_DIR = '/tmp/paraclaw-test-sender-approval';
61
-
62
- function now() {
63
- return new Date().toISOString();
64
- }
65
-
66
- beforeEach(async () => {
67
- if (fs.existsSync(TEST_DIR)) fs.rmSync(TEST_DIR, { recursive: true });
68
- fs.mkdirSync(TEST_DIR, { recursive: true });
69
- const db = initTestDb();
70
- runMigrations(db);
71
-
72
- // Side-effect imports: register hooks (permissions module) AFTER the
73
- // mocks are in place so the access gate / response handler pick up the
74
- // mocked delivery + user-dm helpers.
75
- await import('./index.js');
76
-
77
- // Fixtures: agent group, messaging group with request_approval, wiring,
78
- // owner + DM messaging group for approver delivery.
79
- createAgentGroup({ id: 'ag-1', name: 'Agent', folder: 'agent', agent_provider: null, created_at: now() });
80
-
81
- createMessagingGroup({
82
- id: 'mg-chat',
83
- channel_type: 'telegram',
84
- platform_id: 'chat-123',
85
- name: 'Group Chat',
86
- is_group: 1,
87
- unknown_sender_policy: 'request_approval',
88
- created_at: now(),
89
- });
90
- createMessagingGroupAgent({
91
- id: 'mga-1',
92
- messaging_group_id: 'mg-chat',
93
- agent_group_id: 'ag-1',
94
- engage_mode: 'pattern',
95
- engage_pattern: '.',
96
- sender_scope: 'all',
97
- ignored_message_policy: 'drop',
98
- session_mode: 'shared',
99
- priority: 0,
100
- created_at: now(),
101
- });
102
-
103
- // Owner user + their DM messaging group (pickApprover + ensureUserDm target).
104
- upsertUser({ id: 'telegram:owner', kind: 'telegram', display_name: 'Owner', created_at: now() });
105
- grantRole({
106
- user_id: 'telegram:owner',
107
- role: 'owner',
108
- agent_group_id: null,
109
- granted_by: null,
110
- granted_at: now(),
111
- });
112
- createMessagingGroup({
113
- id: 'mg-dm-owner',
114
- channel_type: 'telegram',
115
- platform_id: 'dm-owner',
116
- name: 'Owner DM',
117
- is_group: 0,
118
- unknown_sender_policy: 'public',
119
- created_at: now(),
120
- });
121
- const { getDb } = await import('../../db/connection.js');
122
- getDb()
123
- .prepare(
124
- `INSERT INTO user_dms (user_id, channel_type, messaging_group_id, resolved_at)
125
- VALUES (?, ?, ?, ?)`,
126
- )
127
- .run('telegram:owner', 'telegram', 'mg-dm-owner', now());
128
-
129
- deliverMock.mockClear();
130
- });
131
-
132
- afterEach(() => {
133
- closeDb();
134
- if (fs.existsSync(TEST_DIR)) fs.rmSync(TEST_DIR, { recursive: true });
135
- });
136
-
137
- function stranger(text: string) {
138
- return {
139
- channelType: 'telegram',
140
- platformId: 'chat-123',
141
- threadId: null,
142
- message: {
143
- id: `stranger-${Math.random().toString(36).slice(2, 8)}`,
144
- kind: 'chat' as const,
145
- content: JSON.stringify({
146
- senderId: 'tg:stranger',
147
- senderName: 'Stranger',
148
- text,
149
- }),
150
- timestamp: now(),
151
- },
152
- };
153
- }
154
-
155
- describe('unknown-sender request_approval flow', () => {
156
- it('delivers an approval card on first unknown message', async () => {
157
- const { routeInbound } = await import('../../router.js');
158
- await routeInbound(stranger('hi'));
159
-
160
- // Wait for the fire-and-forget requestSenderApproval to resolve.
161
- await new Promise((r) => setTimeout(r, 10));
162
-
163
- expect(deliverMock).toHaveBeenCalledTimes(1);
164
- const [channel, platformId, thread, kind, content] = deliverMock.mock.calls[0];
165
- expect(channel).toBe('telegram');
166
- expect(platformId).toBe('dm-owner'); // delivered to owner's DM
167
- expect(thread).toBeNull();
168
- expect(kind).toBe('chat-sdk');
169
- const payload = JSON.parse(content as string);
170
- expect(payload.type).toBe('ask_question');
171
- expect(payload.questionId).toMatch(/^nsa-/);
172
-
173
- const { getDb } = await import('../../db/connection.js');
174
- const rows = getDb().prepare('SELECT * FROM pending_sender_approvals').all();
175
- expect(rows).toHaveLength(1);
176
- });
177
-
178
- it('dedups a second message from the same stranger while pending', async () => {
179
- const { routeInbound } = await import('../../router.js');
180
- await routeInbound(stranger('hello'));
181
- await new Promise((r) => setTimeout(r, 10));
182
- await routeInbound(stranger('are you there?'));
183
- await new Promise((r) => setTimeout(r, 10));
184
-
185
- expect(deliverMock).toHaveBeenCalledTimes(1);
186
- const { getDb } = await import('../../db/connection.js');
187
- const count = (getDb().prepare('SELECT COUNT(*) AS c FROM pending_sender_approvals').get() as { c: number }).c;
188
- expect(count).toBe(1);
189
- });
190
-
191
- it('approve → adds member and replays the original message', async () => {
192
- const { routeInbound } = await import('../../router.js');
193
- const { getResponseHandlers } = await import('../../response-registry.js');
194
- const { wakeContainer } = await import('../../container-runner.js');
195
- (wakeContainer as unknown as ReturnType<typeof vi.fn>).mockClear();
196
-
197
- await routeInbound(stranger('please let me in'));
198
- await new Promise((r) => setTimeout(r, 10));
199
-
200
- const { getDb } = await import('../../db/connection.js');
201
- const pending = getDb().prepare('SELECT id FROM pending_sender_approvals').get() as { id: string };
202
- expect(pending).toBeDefined();
203
-
204
- // Fire the approve click through the response-handler chain.
205
- for (const handler of getResponseHandlers()) {
206
- const claimed = await handler({
207
- questionId: pending.id,
208
- value: 'approve',
209
- // Chat SDK's onAction surfaces the raw platform userId (e.g. Telegram
210
- // chat id). The permissions handler namespaces it with channelType to
211
- // match users(id).
212
- userId: 'owner',
213
- channelType: 'telegram',
214
- platformId: 'dm-owner',
215
- threadId: null,
216
- });
217
- if (claimed) break;
218
- }
219
-
220
- // Member row added for the stranger against the wired agent group.
221
- const member = getDb()
222
- .prepare('SELECT 1 AS x FROM agent_group_members WHERE user_id = ? AND agent_group_id = ?')
223
- .get('tg:stranger', 'ag-1');
224
- expect(member).toBeDefined();
225
-
226
- // Pending row cleared.
227
- const stillPending = getDb().prepare('SELECT COUNT(*) AS c FROM pending_sender_approvals').get() as { c: number };
228
- expect(stillPending.c).toBe(0);
229
-
230
- // Message replayed + container woken.
231
- expect(wakeContainer).toHaveBeenCalled();
232
- });
233
-
234
- it('deny → deletes the pending row without adding a member', async () => {
235
- const { routeInbound } = await import('../../router.js');
236
- const { getResponseHandlers } = await import('../../response-registry.js');
237
-
238
- await routeInbound(stranger('hello'));
239
- await new Promise((r) => setTimeout(r, 10));
240
-
241
- const { getDb } = await import('../../db/connection.js');
242
- const pending = getDb().prepare('SELECT id FROM pending_sender_approvals').get() as { id: string };
243
- expect(pending).toBeDefined();
244
-
245
- for (const handler of getResponseHandlers()) {
246
- const claimed = await handler({
247
- questionId: pending.id,
248
- value: 'reject',
249
- userId: 'owner', // raw platform id — handler namespaces with channelType
250
- channelType: 'telegram',
251
- platformId: 'dm-owner',
252
- threadId: null,
253
- });
254
- if (claimed) break;
255
- }
256
-
257
- const count = (getDb().prepare('SELECT COUNT(*) AS c FROM pending_sender_approvals').get() as { c: number }).c;
258
- expect(count).toBe(0);
259
- const member = getDb()
260
- .prepare('SELECT 1 AS x FROM agent_group_members WHERE user_id = ? AND agent_group_id = ?')
261
- .get('tg:stranger', 'ag-1');
262
- expect(member).toBeUndefined();
263
- });
264
-
265
- it('approve_and_allow → admits the sender, flips MG policy to public, and emits an audit log', async () => {
266
- const { routeInbound } = await import('../../router.js');
267
- const { getResponseHandlers } = await import('../../response-registry.js');
268
- const { getMessagingGroup } = await import('../../db/messaging-groups.js');
269
- const { log } = await import('../../log.js');
270
-
271
- const infoSpy = vi.spyOn(log, 'info');
272
-
273
- await routeInbound(stranger('let everyone in'));
274
- await new Promise((r) => setTimeout(r, 10));
275
-
276
- const { getDb } = await import('../../db/connection.js');
277
- const pending = getDb().prepare('SELECT id FROM pending_sender_approvals').get() as { id: string };
278
- expect(pending).toBeDefined();
279
-
280
- for (const handler of getResponseHandlers()) {
281
- const claimed = await handler({
282
- questionId: pending.id,
283
- value: 'approve_and_allow',
284
- userId: 'owner',
285
- channelType: 'telegram',
286
- platformId: 'dm-owner',
287
- threadId: null,
288
- });
289
- if (claimed) break;
290
- }
291
-
292
- // Sender admitted (same as 'approve' branch).
293
- const member = getDb()
294
- .prepare('SELECT 1 AS x FROM agent_group_members WHERE user_id = ? AND agent_group_id = ?')
295
- .get('tg:stranger', 'ag-1');
296
- expect(member).toBeDefined();
297
-
298
- // MG flipped to public so future strangers skip the gate.
299
- const mg = getMessagingGroup('mg-chat');
300
- expect(mg?.unknown_sender_policy).toBe('public');
301
-
302
- // Audit log entry includes operator + MG + before-state for traceability.
303
- const auditCalls = infoSpy.mock.calls.filter(([, data]) => {
304
- return (
305
- typeof data === 'object' &&
306
- data !== null &&
307
- (data as { audit?: string }).audit === 'sender_approval_policy_flip'
308
- );
309
- });
310
- expect(auditCalls).toHaveLength(1);
311
- const [, auditFields] = auditCalls[0] as [string, Record<string, unknown>];
312
- expect(auditFields).toMatchObject({
313
- messagingGroupId: 'mg-chat',
314
- agentGroupId: 'ag-1',
315
- approverId: 'telegram:owner',
316
- fromPolicy: 'request_approval',
317
- toPolicy: 'public',
318
- });
319
-
320
- // Pending row cleared.
321
- const stillPending = (getDb().prepare('SELECT COUNT(*) AS c FROM pending_sender_approvals').get() as { c: number })
322
- .c;
323
- expect(stillPending).toBe(0);
324
-
325
- infoSpy.mockRestore();
326
- });
327
-
328
- it('approve_and_allow → idempotent on already-public MG, audit still fires with fromPolicy=public', async () => {
329
- // Pre-flip the MG to public to simulate a second click after a prior
330
- // always-allow has already happened. The button is shown unconditionally
331
- // (Aaron's call) so this branch can fire even when policy is already
332
- // public.
333
- const { updateMessagingGroup, getMessagingGroup } = await import('../../db/messaging-groups.js');
334
- updateMessagingGroup('mg-chat', { unknown_sender_policy: 'public' });
335
-
336
- // With public policy, the access gate skips the unknown-sender flow —
337
- // so we can't trigger the approval via routeInbound. Seed the pending
338
- // row directly to exercise just the click handler. Upsert the sender
339
- // user first so addMember's FK to users(id) holds.
340
- upsertUser({ id: 'tg:later-stranger', kind: 'telegram', display_name: 'Later', created_at: now() });
341
- const { createPendingSenderApproval } = await import('./db/pending-sender-approvals.js');
342
- const approvalId = 'nsa-test-idempotent';
343
- createPendingSenderApproval({
344
- id: approvalId,
345
- messaging_group_id: 'mg-chat',
346
- agent_group_id: 'ag-1',
347
- sender_identity: 'tg:later-stranger',
348
- sender_name: 'Later',
349
- original_message: JSON.stringify(stranger('hello again')),
350
- approver_user_id: 'telegram:owner',
351
- created_at: now(),
352
- title: 'New sender',
353
- options_json: '[]',
354
- });
355
-
356
- const { log } = await import('../../log.js');
357
- const infoSpy = vi.spyOn(log, 'info');
358
-
359
- const { getResponseHandlers } = await import('../../response-registry.js');
360
- for (const handler of getResponseHandlers()) {
361
- const claimed = await handler({
362
- questionId: approvalId,
363
- value: 'approve_and_allow',
364
- userId: 'owner',
365
- channelType: 'telegram',
366
- platformId: 'dm-owner',
367
- threadId: null,
368
- });
369
- if (claimed) break;
370
- }
371
-
372
- // Policy stays public (no regression).
373
- expect(getMessagingGroup('mg-chat')?.unknown_sender_policy).toBe('public');
374
-
375
- // Audit log fires with fromPolicy='public' so the click is traceable
376
- // even when the DB write was a no-op.
377
- const auditCalls = infoSpy.mock.calls.filter(([, data]) => {
378
- return (
379
- typeof data === 'object' &&
380
- data !== null &&
381
- (data as { audit?: string }).audit === 'sender_approval_policy_flip'
382
- );
383
- });
384
- expect(auditCalls).toHaveLength(1);
385
- const [, auditFields] = auditCalls[0] as [string, Record<string, unknown>];
386
- expect(auditFields).toMatchObject({ fromPolicy: 'public', toPolicy: 'public' });
387
-
388
- infoSpy.mockRestore();
389
- });
390
-
391
- it('rejects clicks from an unauthorized user (prevents self-admit via forwarded card)', async () => {
392
- // Stranger triggers the approval flow; card goes to the owner.
393
- const { routeInbound } = await import('../../router.js');
394
- const { getResponseHandlers } = await import('../../response-registry.js');
395
-
396
- await routeInbound(stranger('can I play'));
397
- await new Promise((r) => setTimeout(r, 10));
398
-
399
- const { getDb } = await import('../../db/connection.js');
400
- const pending = getDb().prepare('SELECT id FROM pending_sender_approvals').get() as { id: string };
401
- expect(pending).toBeDefined();
402
-
403
- // A random user (not the stranger, not the owner, not an admin) tries to
404
- // click the approval — e.g. they got the card forwarded. Should be
405
- // rejected without admitting them.
406
- for (const handler of getResponseHandlers()) {
407
- const claimed = await handler({
408
- questionId: pending.id,
409
- value: 'approve',
410
- userId: 'random-bystander', // not owner, not admin
411
- channelType: 'telegram',
412
- platformId: 'dm-random',
413
- threadId: null,
414
- });
415
- if (claimed) break;
416
- }
417
-
418
- // No member added for the stranger.
419
- const member = getDb()
420
- .prepare('SELECT 1 AS x FROM agent_group_members WHERE user_id = ? AND agent_group_id = ?')
421
- .get('tg:stranger', 'ag-1');
422
- expect(member).toBeUndefined();
423
-
424
- // Pending row is still there — a legitimate approver can still act on it.
425
- const stillPending = (getDb().prepare('SELECT COUNT(*) AS c FROM pending_sender_approvals').get() as { c: number })
426
- .c;
427
- expect(stillPending).toBe(1);
428
- });
429
-
430
- it('accepts a click from a global admin even if they are not the designated approver', async () => {
431
- // Pre-seed a separate admin user so we can click as them.
432
- upsertUser({ id: 'telegram:admin-bob', kind: 'telegram', display_name: 'Bob', created_at: now() });
433
- grantRole({
434
- user_id: 'telegram:admin-bob',
435
- role: 'admin',
436
- agent_group_id: null,
437
- granted_by: 'telegram:owner',
438
- granted_at: now(),
439
- });
440
-
441
- const { routeInbound } = await import('../../router.js');
442
- const { getResponseHandlers } = await import('../../response-registry.js');
443
-
444
- await routeInbound(stranger('knock knock'));
445
- await new Promise((r) => setTimeout(r, 10));
446
-
447
- const { getDb } = await import('../../db/connection.js');
448
- const pending = getDb().prepare('SELECT id FROM pending_sender_approvals').get() as { id: string };
449
- expect(pending).toBeDefined();
450
-
451
- // Admin clicks approve (not the designated approver, which was owner).
452
- for (const handler of getResponseHandlers()) {
453
- const claimed = await handler({
454
- questionId: pending.id,
455
- value: 'approve',
456
- userId: 'admin-bob',
457
- channelType: 'telegram',
458
- platformId: 'dm-bob',
459
- threadId: null,
460
- });
461
- if (claimed) break;
462
- }
463
-
464
- // Stranger admitted thanks to the admin's authority.
465
- const member = getDb()
466
- .prepare('SELECT 1 AS x FROM agent_group_members WHERE user_id = ? AND agent_group_id = ?')
467
- .get('tg:stranger', 'ag-1');
468
- expect(member).toBeDefined();
469
- });
470
- });
@@ -1,165 +0,0 @@
1
- /**
2
- * Unknown-sender approval flow.
3
- *
4
- * When `messaging_groups.unknown_sender_policy = 'request_approval'` and a
5
- * non-member writes into a wired chat, the access gate drops the routing
6
- * attempt and calls `requestSenderApproval` to:
7
- *
8
- * 1. Pick an eligible approver (owner / admin of the agent group).
9
- * 2. Open / reuse a DM to that approver on a reachable channel.
10
- * 3. Deliver an Approve / Deny card.
11
- * 4. Record a pending_sender_approvals row that holds the original message
12
- * so it can be re-routed on approve.
13
- *
14
- * On approve: the handler in index.ts adds an agent_group_members row for
15
- * the sender and re-invokes routeInbound with the stored event — the second
16
- * routing attempt passes the gate because the user is now a member.
17
- *
18
- * Failure modes (logged + row NOT created, so the dedup gate lets a future
19
- * attempt try again):
20
- * - No eligible approver in user_roles — fresh install, no owner yet.
21
- * - Approver has no reachable DM (no user_dms row + channel can't
22
- * openDM) — e.g. owner hasn't registered on any channel we're wired to.
23
- * - Delivery adapter missing.
24
- *
25
- * Dedup: `pending_sender_approvals` has UNIQUE(messaging_group_id,
26
- * sender_identity). A retry / rapid second message from the same unknown
27
- * sender is silently dropped (no duplicate card sent).
28
- */
29
- import { normalizeOptions, type RawOption } from '../../channels/ask-question.js';
30
- import { getMessagingGroup } from '../../db/messaging-groups.js';
31
- import { getDeliveryAdapter } from '../../delivery.js';
32
- import { log } from '../../log.js';
33
- import { decodePlatformIdAs } from '../../platform-id.js';
34
- import type { InboundEvent } from '../../channels/adapter.js';
35
- import { appendFallbackNotice, pickApprovalDelivery, pickApprover } from '../approvals/primitive.js';
36
- import { createPendingSenderApproval, hasInFlightSenderApproval } from './db/pending-sender-approvals.js';
37
-
38
- // Three-button card per design doc PR #75 phase 4. The "always allow" branch
39
- // flips the messaging group's unknown_sender_policy to 'public' so future
40
- // strangers walk through with no gate. Shown unconditionally — even on
41
- // 'strict' MGs that wouldn't normally render this card — so the operator can
42
- // recover from a too-restrictive default with one click. The handler short-
43
- // circuits if the policy is already 'public', so the click is idempotent.
44
- const APPROVAL_OPTIONS: RawOption[] = [
45
- { label: 'Allow', selectedLabel: '✅ Allowed', value: 'approve' },
46
- { label: 'Allow & open channel', selectedLabel: '✅ Channel opened', value: 'approve_and_allow' },
47
- { label: 'Deny', selectedLabel: '❌ Denied', value: 'reject' },
48
- ];
49
-
50
- function generateId(): string {
51
- return `nsa-${Date.now()}-${Math.random().toString(36).slice(2, 8)}`;
52
- }
53
-
54
- export interface RequestSenderApprovalInput {
55
- messagingGroupId: string;
56
- agentGroupId: string;
57
- senderIdentity: string; // namespaced user id (channel_type:handle)
58
- senderName: string | null;
59
- event: InboundEvent;
60
- }
61
-
62
- export async function requestSenderApproval(input: RequestSenderApprovalInput): Promise<void> {
63
- const { messagingGroupId, agentGroupId, senderIdentity, senderName, event } = input;
64
-
65
- // In-flight dedup: don't spam the admin if the same unknown sender
66
- // retries while a card is already pending.
67
- if (hasInFlightSenderApproval(messagingGroupId, senderIdentity)) {
68
- log.debug('Unknown-sender approval already in flight — dropping retry', {
69
- messagingGroupId,
70
- senderIdentity,
71
- });
72
- return;
73
- }
74
-
75
- const approvers = pickApprover(agentGroupId);
76
- if (approvers.length === 0) {
77
- log.warn('Unknown-sender approval skipped — no owner or admin configured', {
78
- messagingGroupId,
79
- agentGroupId,
80
- senderIdentity,
81
- });
82
- return;
83
- }
84
-
85
- const originMg = getMessagingGroup(messagingGroupId);
86
- const originChannelType = originMg?.channel_type ?? '';
87
- const originBotId = originMg ? decodePlatformIdAs(originMg.platform_id, 'v2').botId : null;
88
- const target = await pickApprovalDelivery(approvers, originChannelType, originBotId);
89
- if (!target) {
90
- log.warn('Unknown-sender approval skipped — no DM channel for any approver', {
91
- messagingGroupId,
92
- agentGroupId,
93
- senderIdentity,
94
- });
95
- return;
96
- }
97
-
98
- const approvalId = generateId();
99
- const senderDisplay = senderName && senderName.length > 0 ? senderName : senderIdentity;
100
- const originName = originMg?.name ?? `a ${originChannelType} channel`;
101
-
102
- const title = '👤 New sender';
103
- const question = `${senderDisplay} wants to talk to your agent in ${originName}. Allow?`;
104
- const options = normalizeOptions(APPROVAL_OPTIONS);
105
-
106
- createPendingSenderApproval({
107
- id: approvalId,
108
- messaging_group_id: messagingGroupId,
109
- agent_group_id: agentGroupId,
110
- sender_identity: senderIdentity,
111
- sender_name: senderName,
112
- original_message: JSON.stringify(event),
113
- approver_user_id: target.userId,
114
- created_at: new Date().toISOString(),
115
- title,
116
- options_json: JSON.stringify(options),
117
- });
118
-
119
- const adapter = getDeliveryAdapter();
120
- if (!adapter) {
121
- // Without a delivery adapter, the card can't be sent. Log + leave the
122
- // row in place so the admin can see it via DB or manual tooling; the
123
- // dedup gate will suppress further cards until it's cleared.
124
- log.error('Unknown-sender approval row created but no delivery adapter is wired', {
125
- approvalId,
126
- });
127
- return;
128
- }
129
-
130
- try {
131
- await adapter.deliver(
132
- target.messagingGroup.channel_type,
133
- target.messagingGroup.platform_id,
134
- null,
135
- 'chat-sdk',
136
- JSON.stringify({
137
- type: 'ask_question',
138
- questionId: approvalId,
139
- title,
140
- question: appendFallbackNotice(question, target.viaFallbackBot, originBotId),
141
- options,
142
- }),
143
- );
144
- log.info('Unknown-sender approval card delivered', {
145
- approvalId,
146
- senderIdentity,
147
- approver: target.userId,
148
- messagingGroupId,
149
- agentGroupId,
150
- });
151
- } catch (err) {
152
- log.error('Unknown-sender approval card delivery failed', {
153
- approvalId,
154
- err,
155
- });
156
- }
157
- }
158
-
159
- /**
160
- * Option value the admin clicked that means "allow" — shared with the
161
- * response handler so the two sides can't drift.
162
- */
163
- export const APPROVE_VALUE = 'approve';
164
- export const APPROVE_AND_ALLOW_VALUE = 'approve_and_allow';
165
- export const REJECT_VALUE = 'reject';