@pingagent/sdk 0.1.10 → 0.1.12

package/dist/web-server.js

@@ -11,9 +11,11 @@ import {
   getActiveSessionFilePath,
   getSessionBindingAlertsFilePath,
   getSessionMapFilePath,
+  getTrustRecommendationActionLabel,
   loadIdentity,
   normalizeTrustPolicyDoc,
   readCurrentActiveSessionKey,
+  readIngressRuntimeStatus,
   readSessionBindingAlerts,
   readSessionBindings,
   removeSessionBinding,
@@ -21,12 +23,13 @@ import {
   summarizeTrustPolicyAudit,
   updateStoredToken,
   upsertTrustPolicyRecommendation
-} from "./chunk-2Y6YRKTO.js";
+} from "./chunk-BLHMTUID.js";
 
 // src/web-server.ts
 import * as fs from "fs";
 import * as http from "http";
 import * as path from "path";
+import { spawnSync } from "child_process";
 import { SCHEMA_TEXT } from "@pingagent/schemas";
 
 // src/host-panel-html.ts
@@ -75,6 +78,30 @@ function getHostPanelHtml() {
       padding: 16px;
       box-shadow: 0 14px 40px rgba(0, 0, 0, 0.22);
     }
+    .status-strip {
+      display: flex;
+      justify-content: space-between;
+      gap: 16px;
+      align-items: flex-start;
+      flex-wrap: wrap;
+    }
+    .status-main { display: grid; gap: 8px; }
+    .status-main h2 { margin: 0; font-size: 18px; }
+    .status-state {
+      display: inline-flex;
+      align-items: center;
+      gap: 8px;
+      width: fit-content;
+      padding: 6px 12px;
+      border-radius: 999px;
+      font-size: 12px;
+      letter-spacing: 0.08em;
+      text-transform: uppercase;
+      border: 1px solid #334155;
+    }
+    .status-state.ready { background: rgba(34, 197, 94, 0.12); color: #86efac; border-color: rgba(34, 197, 94, 0.35); }
+    .status-state.degraded { background: rgba(248, 113, 113, 0.14); color: #fecaca; border-color: rgba(248, 113, 113, 0.45); }
+    .quickstart-row { display: flex; gap: 8px; flex-wrap: wrap; margin-top: 8px; }
     .card h2, .card h3 { margin: 0 0 12px; font-size: 16px; }
     .stats .value { font-size: 28px; font-weight: 700; margin-top: 6px; }
     .runtime-layout { grid-template-columns: minmax(260px, 340px) minmax(0, 1fr); align-items: start; }
@@ -126,6 +153,20 @@ function getHostPanelHtml() {
     }
     .empty { color: #94a3b8; font-size: 13px; }
     .link-row { display: flex; gap: 10px; margin-top: 20px; }
+    .toolbar-row { display: flex; justify-content: space-between; gap: 10px; align-items: center; flex-wrap: wrap; margin-bottom: 12px; }
+    .toolbar-actions { display: flex; gap: 8px; flex-wrap: wrap; align-items: center; }
+    .mode-toggle { display: inline-flex; gap: 6px; padding: 4px; border-radius: 999px; border: 1px solid #334155; background: #020617; }
+    .mode-toggle button {
+      border: 0;
+      background: transparent;
+      color: #94a3b8;
+      border-radius: 999px;
+      padding: 6px 10px;
+      cursor: pointer;
+    }
+    .mode-toggle button.active { background: #0f766e; color: #ecfeff; }
+    .summary-pills { display: flex; gap: 8px; flex-wrap: wrap; margin-top: 8px; }
+    .summary-pills .pill { font-size: 11px; }
     @media (max-width: 1000px) {
       .layout { grid-template-columns: 1fr; }
       .sidebar { border-right: none; border-bottom: 1px solid #1e293b; }
@@ -155,15 +196,31 @@ function getHostPanelHtml() {
         </div>
         <div class="header-actions">
           <span class="pill" id="runtimeModePill">runtime_mode=bridge</span>
+          <span class="pill" id="receiveModePill">receive_mode=webhook</span>
           <span class="pill" id="policyPathPill">policy=\u2026</span>
+          <button class="secondary-btn" id="fixHooksBtn" style="width:auto">Fix OpenClaw Hooks</button>
+          <button class="secondary-btn" id="publicLinkBtn" style="width:auto">Public Link</button>
+          <button class="secondary-btn" id="contactCardBtn" style="width:auto">Contact Card</button>
+          <a class="secondary-btn" href="/a/demo" target="_blank" rel="noreferrer" style="width:auto">Try Demo Agent</a>
         </div>
       </div>
 
       <section id="runtimePanel" class="panel active">
+        <div class="card" id="activationCard" style="margin-bottom:16px"></div>
         <div class="grid stats" id="statsGrid"></div>
         <div class="grid runtime-layout" style="margin-top:16px">
           <div class="card">
-            <h2>Recent Sessions</h2>
+            <div class="toolbar-row">
+              <h2 style="margin:0">Recent Sessions</h2>
+              <div class="toolbar-actions">
+                <button class="secondary-btn" id="toggleUnreadBtn" style="width:auto">Unread only: off</button>
+                <button class="secondary-btn" id="nextUnreadBtn" style="width:auto">Next unread</button>
+                <div class="mode-toggle" aria-label="Runtime detail mode">
+                  <button id="detailModeBasicBtn" class="active" type="button">Basic</button>
+                  <button id="detailModeAdvancedBtn" type="button">Advanced</button>
+                </div>
+              </div>
+            </div>
             <div class="sessions" id="sessionList"></div>
           </div>
           <div class="grid">
@@ -253,19 +310,67 @@ function getHostPanelHtml() {
             <div class="audit-list" id="policyAuditList"></div>
           </div>
         </div>
+
+        <div class="card" style="margin-top:16px">
+          <h2>Profile + Capability Card</h2>
+          <div class="form-grid">
+            <label class="label">Display name</label>
+            <input id="profileDisplayName" placeholder="Agent name">
+            <label class="label">Bio</label>
+            <textarea id="profileBio" placeholder="What this agent does"></textarea>
+            <label class="label">Tags (comma separated)</label>
+            <input id="profileTags" placeholder="coding, devops">
+            <label class="label">Legacy capabilities (comma separated)</label>
+            <input id="profileCapabilities" placeholder="coding, testing">
+            <label class="label">Capability summary</label>
+            <textarea id="capabilityCardSummary" placeholder="Short machine-readable summary"></textarea>
+            <label class="label">Accepts new work</label>
+            <select id="capabilityCardAcceptsNewWork">
+              <option value="">(unspecified)</option>
+              <option value="true">true</option>
+              <option value="false">false</option>
+            </select>
+            <label class="label">Preferred contact mode</label>
+            <select id="capabilityCardContactMode">
+              <option value="">(unspecified)</option>
+              <option value="dm">dm</option>
+              <option value="task">task</option>
+              <option value="either">either</option>
+            </select>
+            <label class="label">Capability entries JSON</label>
+            <textarea id="capabilityCardItems" placeholder='[{"id":"coding","label":"Coding","accepts_tasks":true}]'></textarea>
+            <div class="row-actions">
+              <button class="action-btn" id="saveProfileBtn">Save Profile</button>
+            </div>
+          </div>
+        </div>
       </section>
     </main>
   </div>
 
   <script>
+    const initialQuery = (function () {
+      const params = new URLSearchParams(window.location.search);
+      const profile = params.get('profile');
+      const sessionKey = params.get('session_key');
+      const view = params.get('view');
+      return {
+        profile: profile && profile.trim() ? profile.trim() : null,
+        sessionKey: sessionKey && sessionKey.trim() ? sessionKey.trim() : null,
+        view: view === 'policy' ? 'policy' : 'runtime',
+      };
+    })();
+
     const state = {
-      selectedProfile: sessionStorage.getItem('pingagent_host_panel_profile') || null,
-      currentTab: 'runtime',
+      selectedProfile: initialQuery.profile || sessionStorage.getItem('pingagent_host_panel_profile') || null,
+      currentTab: initialQuery.view,
       profiles: [],
       overview: null,
       session: null,
       policy: null,
-      selectedSessionKey: null,
+      selectedSessionKey: initialQuery.sessionKey || null,
+      detailMode: sessionStorage.getItem('pingagent_host_panel_detail_mode') || 'basic',
+      showUnreadOnly: false,
     };
 
     function esc(value) {
@@ -277,11 +382,57 @@ function getHostPanelHtml() {
         .replace(/'/g, '&#39;');
     }
 
+    function parseCsvList(value) {
+      return String(value == null ? '' : value)
+        .split(',')
+        .map(function (item) { return item.trim(); })
+        .filter(Boolean);
+    }
+
     function fmtTs(value) {
       if (!value) return '-';
       try { return new Date(value).toLocaleString(); } catch { return String(value); }
     }
 
+    function syncUrlState() {
+      const url = new URL(window.location.href);
+      if (state.selectedProfile) url.searchParams.set('profile', state.selectedProfile);
+      else url.searchParams.delete('profile');
+      if (state.selectedSessionKey) url.searchParams.set('session_key', state.selectedSessionKey);
+      else url.searchParams.delete('session_key');
+      url.searchParams.set('view', state.currentTab === 'policy' ? 'policy' : 'runtime');
+      history.replaceState(null, '', url.pathname + (url.search ? url.search : ''));
+    }
+
+    function setDetailMode(mode) {
+      state.detailMode = mode === 'advanced' ? 'advanced' : 'basic';
+      sessionStorage.setItem('pingagent_host_panel_detail_mode', state.detailMode);
+      document.getElementById('detailModeBasicBtn').classList.toggle('active', state.detailMode === 'basic');
+      document.getElementById('detailModeAdvancedBtn').classList.toggle('active', state.detailMode === 'advanced');
+      if (state.overview) renderOverview();
+      if (state.session) renderSession();
+    }
+
+    function buildSessionLink(sessionKey) {
+      const url = new URL(window.location.href);
+      if (state.selectedProfile) url.searchParams.set('profile', state.selectedProfile);
+      else url.searchParams.delete('profile');
+      if (sessionKey) url.searchParams.set('session_key', sessionKey);
+      else url.searchParams.delete('session_key');
+      url.searchParams.set('view', 'runtime');
+      return url.toString();
+    }
+
+    async function copyText(text, fallbackLabel) {
+      try {
+        await navigator.clipboard.writeText(text);
+        window.alert((fallbackLabel || 'Copied') + ':
+' + text);
+      } catch {
+        window.prompt(fallbackLabel || 'Copy', text);
+      }
+    }
+
     async function api(path, opts) {
       let url = path;
       if (state.selectedProfile) {
@@ -331,6 +482,7 @@ function getHostPanelHtml() {
       document.getElementById('navPolicy').classList.toggle('active', tab === 'policy');
       document.getElementById('runtimePanel').classList.toggle('active', tab === 'runtime');
       document.getElementById('policyPanel').classList.toggle('active', tab === 'policy');
+      syncUrlState();
     }
 
     function renderHeader() {
@@ -338,20 +490,148 @@ function getHostPanelHtml() {
       const profileLabel = state.selectedProfile ? 'profile=' + state.selectedProfile : 'Select profile';
       const title = overview ? ('Host Panel \xB7 ' + overview.did) : 'PingAgent Host Panel';
       const tier = overview && overview.subscription ? overview.subscription.tier : null;
+      const receiveMode = overview && overview.ingressRuntime ? overview.ingressRuntime.receive_mode : 'webhook';
       document.getElementById('headerTitle').textContent = title;
       document.getElementById('headerSubtitle').textContent = overview
         ? (profileLabel + ' \xB7 ' + overview.serverUrl + (tier ? (' \xB7 tier=' + tier) : '') + ' \xB7 sessions=' + overview.sessionsTotal + ' \xB7 unread=' + overview.unreadTotal)
         : profileLabel;
       document.getElementById('runtimeModePill').textContent = overview ? ('runtime_mode=' + overview.runtimeMode) : 'runtime_mode=\u2026';
+      document.getElementById('receiveModePill').textContent = 'receive_mode=' + receiveMode;
       document.getElementById('policyPathPill').textContent = overview ? ('policy=' + overview.trustPolicyPath) : 'policy=\u2026';
+      document.getElementById('fixHooksBtn').textContent = receiveMode === 'polling_degraded' || (overview && overview.ingressRuntime && overview.ingressRuntime.hooks_last_error) ? 'Fix now' : 'Fix OpenClaw Hooks';
+    }
+
+    function ingressStatusModel(overview) {
+      const ingress = overview && overview.ingressRuntime ? overview.ingressRuntime : null;
+      const degraded = !ingress || ingress.receive_mode === 'polling_degraded' || !!ingress.hooks_last_error;
+      return {
+        degraded: degraded,
+        label: degraded ? 'Degraded' : 'Ready',
+        className: degraded ? 'degraded' : 'ready',
+        detail: degraded
+          ? (ingress && ingress.hooks_last_error ? ingress.hooks_last_error : 'Webhook ingress is degraded. Fix hooks or keep running on polling fallback.')
+          : 'Webhook ingress is healthy. New inbound messages land on the main runtime path.',
+      };
+    }
+
+    function recommendationActionLabel(item) {
+      if (!item) return 'Apply Recommendation';
+      if (item.status === 'dismissed' || item.status === 'superseded') return 'Reopen';
+      if (item.status === 'applied') return 'Applied';
+      if (item.primary_action_label) return item.primary_action_label;
+      if (item.policy === 'contact' && item.action === 'approve') return 'Approve + remember sender';
+      if (item.policy === 'contact' && item.action === 'manual') return 'Keep contact manual';
+      if (item.policy === 'contact' && item.action === 'reject') return 'Block this sender';
+      if (item.policy === 'task' && item.action === 'bridge') return 'Keep tasks manual';
+      if (item.policy === 'task' && item.action === 'execute') return 'Allow tasks from this sender';
+      if (item.policy === 'task' && item.action === 'deny') return 'Block tasks from this sender';
+      return 'Apply Recommendation';
+    }
+
+    function formatCapabilityCardEditor(card) {
+      if (!card) return '';
+      try {
+        return JSON.stringify(Array.isArray(card.capabilities) ? card.capabilities : [], null, 2);
+      } catch {
+        return '';
+      }
+    }
+
+    function renderSummaryBlock(summary) {
+      if (!summary) {
+        return '<div class="empty">No carry-forward summary yet. Save one below to make delegation and session continuation cheaper.</div>';
+      }
+      const parts = [
+        summary.objective ? '<div><span class="label">Objective</span><div style="margin-top:6px">' + esc(summary.objective) + '</div></div>' : '',
+        summary.context ? '<div><span class="label">Context</span><div style="margin-top:6px">' + esc(summary.context) + '</div></div>' : '',
+        summary.constraints ? '<div><span class="label">Constraints</span><div style="margin-top:6px">' + esc(summary.constraints) + '</div></div>' : '',
+        summary.decisions ? '<div><span class="label">Decisions</span><div style="margin-top:6px">' + esc(summary.decisions) + '</div></div>' : '',
+        summary.open_questions ? '<div><span class="label">Open Questions</span><div style="margin-top:6px">' + esc(summary.open_questions) + '</div></div>' : '',
+        summary.next_action ? '<div><span class="label">Next Action</span><div style="margin-top:6px">' + esc(summary.next_action) + '</div></div>' : '',
+        summary.handoff_ready_text ? '<div><span class="label">Handoff Ready</span><pre style="margin-top:6px">' + esc(summary.handoff_ready_text) + '</pre></div>' : '',
+      ].filter(Boolean);
+      parts.push('<div class="muted small">updated=' + esc(fmtTs(summary.updated_at)) + '</div>');
+      return parts.join('');
+    }
+
+    function renderHandoffBlock(handoff) {
+      if (!handoff) return '';
+      return '' +
+        '<div style="margin-top:8px;padding:10px 12px;border:1px solid #1d4ed8;border-radius:10px;background:rgba(30,64,175,0.18)">' +
+          '<div class="label">Handoff</div>' +
+          (handoff.objective ? '<div class="muted small" style="margin-top:6px">objective=' + esc(handoff.objective) + '</div>' : '') +
+          (handoff.priority ? '<div class="muted small">priority=' + esc(handoff.priority) + '</div>' : '') +
+          (handoff.success_criteria ? '<div class="muted small">success=' + esc(handoff.success_criteria) + '</div>' : '') +
+          (handoff.callback_session_key ? '<div class="muted small">callback=' + esc(handoff.callback_session_key) + '</div>' : '') +
+          (handoff.delegated_by || handoff.delegated_to
+            ? '<div class="muted small">delegated_by=' + esc(handoff.delegated_by || '(unknown)') + ' \xB7 delegated_to=' + esc(handoff.delegated_to || '(unknown)') + '</div>'
+            : '') +
+          (handoff.carry_forward_summary
+            ? '<pre style="margin-top:8px">' + esc(handoff.carry_forward_summary) + '</pre>'
+            : '') +
+        '</div>';
+    }
+
+    function getOverviewSessions() {
+      return state.overview && Array.isArray(state.overview.sessions) ? state.overview.sessions : [];
+    }
+
+    function getVisibleSessions() {
+      const sessions = getOverviewSessions();
+      return state.showUnreadOnly
+        ? sessions.filter(function (session) { return Number(session.unread_count || 0) > 0; })
+        : sessions;
+    }
+
+    function syncSelectedSessionFromOverview() {
+      const allSessions = getOverviewSessions();
+      const visibleSessions = getVisibleSessions();
+      if (!allSessions.length) {
+        state.selectedSessionKey = null;
+        state.session = null;
+        return;
+      }
+      const hasSelected = allSessions.some(function (session) { return session.session_key === state.selectedSessionKey; });
+      if (!hasSelected) {
+        state.selectedSessionKey = visibleSessions.length ? visibleSessions[0].session_key : allSessions[0].session_key;
+        return;
+      }
+      if (state.showUnreadOnly) {
+        const stillVisible = visibleSessions.some(function (session) { return session.session_key === state.selectedSessionKey; });
+        if (!stillVisible) state.selectedSessionKey = visibleSessions.length ? visibleSessions[0].session_key : null;
+      }
     }
 
     function renderOverview() {
       const overview = state.overview;
       if (!overview) return;
+      syncSelectedSessionFromOverview();
+      const ingressState = ingressStatusModel(overview);
+      document.getElementById('activationCard').innerHTML =
+        '<div class="status-strip">' +
+          '<div class="status-main">' +
+            '<h2>Activation</h2>' +
+            '<div class="status-state ' + ingressState.className + '">' + esc(ingressState.label) + '</div>' +
+            '<div class="muted small">' + esc(ingressState.detail) + '</div>' +
+            '<div class="muted small">Public link: ' + esc(overview.publicSelf && overview.publicSelf.public_url ? overview.publicSelf.public_url : '(not ready yet)') + '</div>' +
+          '</div>' +
+          '<div style="min-width:320px">' +
+            '<div class="label">Quick Start</div>' +
+            '<div class="quickstart-row">' +
+              '<button class="action-btn demo-preset-btn" data-preset="hello">Demo: hello</button>' +
+              '<button class="secondary-btn demo-preset-btn" data-preset="delegate">Demo: delegate</button>' +
+              '<button class="secondary-btn demo-preset-btn" data-preset="trust">Demo: trust</button>' +
+            '</div>' +
+            '<div class="quickstart-row">' +
+              '<button class="secondary-btn" id="copyPublicLinkBtn">Copy Public Link</button>' +
+              '<button class="secondary-btn" id="makeContactCardBtn">Share Contact Card</button>' +
+            '</div>' +
+          '</div>' +
+        '</div>';
       const subscription = overview.subscription || null;
       const stats = [
         { label: 'Plan', value: subscription ? subscription.tier : 'ghost', sub: subscription ? subscription.summary : 'subscription unavailable' },
+        { label: 'Ingress', value: overview.ingressRuntime ? overview.ingressRuntime.receive_mode : 'webhook', sub: overview.ingressRuntime && overview.ingressRuntime.reason ? overview.ingressRuntime.reason : 'OpenClaw ingress receive mode' },
         { label: 'Relay', value: subscription ? (subscription.usage.relay_today + '/' + subscription.usage.relay_limit) : '-', sub: subscription ? ('retention=' + subscription.retention_label) : 'daily relay usage' },
         { label: 'Alias', value: subscription ? (subscription.usage.alias_count + '/' + subscription.usage.alias_limit) : '-', sub: subscription ? (subscription.audit_export_allowed ? 'audit export enabled' : 'audit export off on this plan') : 'identity limits' },
         { label: 'Sessions', value: overview.sessionsTotal, sub: JSON.stringify(overview.trustCounts || {}) },
@@ -359,29 +639,33 @@ function getHostPanelHtml() {
         { label: 'Tasks', value: overview.tasksTotal, sub: 'recent local task threads' },
         { label: 'Audit', value: overview.auditSummary.total_events, sub: 'policy / runtime audit events' },
         { label: 'Recommendations', value: overview.recommendationSummary ? overview.recommendationSummary.total : overview.recommendations.length, sub: overview.recommendationSummary ? JSON.stringify(overview.recommendationSummary.by_status || {}) : 'learned policy suggestions' },
+        { label: 'Public Link', value: overview.publicSelf && overview.publicSelf.public_url ? 'ready' : 'disabled', sub: overview.publicSelf && overview.publicSelf.public_url ? overview.publicSelf.public_url : 'create a hosted shareable profile link' },
       ];
       document.getElementById('statsGrid').innerHTML = stats.map(function (item) {
         return '<div class="card"><div class="label">' + esc(item.label) + '</div><div class="value">' + esc(item.value) + '</div><div class="muted small">' + esc(item.sub) + '</div></div>';
       }).join('');
 
-      const sessions = Array.isArray(overview.sessions) ? overview.sessions : [];
+      const toggleUnreadBtn = document.getElementById('toggleUnreadBtn');
+      if (toggleUnreadBtn) toggleUnreadBtn.textContent = 'Unread only: ' + (state.showUnreadOnly ? 'on' : 'off');
+      const sessions = getVisibleSessions();
       if (!sessions.length) {
-        document.getElementById('sessionList').innerHTML = '<div class="empty">No sessions yet.</div>';
+        document.getElementById('sessionList').innerHTML = '<div class="empty">' + (state.showUnreadOnly ? 'No unread sessions.' : 'No sessions yet.') + '</div>';
       } else {
-        if (!state.selectedSessionKey) state.selectedSessionKey = sessions[0].session_key;
         document.getElementById('sessionList').innerHTML = sessions.map(function (session) {
           const active = session.session_key === state.selectedSessionKey ? ' active' : '';
           const badges = [
             '<span class="badge ' + esc(session.trust_state) + '">' + esc(session.trust_state) + '</span>',
             session.binding_alert
-              ? '<button type="button" class="badge alert rebind-badge-btn" data-session="' + esc(session.session_key) + '" data-conversation="' + esc(session.conversation_id || '') + '" data-bound-session="' + esc(session.mapped_work_session || '') + '" data-remote-did="' + esc(session.remote_did || '') + '" title="' + esc(session.binding_alert.message || 'Rebind this conversation to the current chat session') + '">Needs rebind</button>'
+              ? '<button type="button" class="badge alert rebind-badge-btn" data-session="' + esc(session.session_key) + '" data-conversation="' + esc(session.conversation_id || '') + '" data-bound-session="' + esc(session.mapped_work_session || '') + '" data-remote-did="' + esc(session.remote_did || '') + '" title="OpenClaw chat link needs attention">Needs reconnect</button>'
               : '',
           ].filter(Boolean).join('');
           return '<div class="session-row' + active + '" data-session="' + esc(session.session_key) + '">' +
-            '<div class="top"><strong>' + esc(session.remote_did || session.conversation_id || 'unknown') + '</strong><div style="display:flex;gap:6px;flex-wrap:wrap;justify-content:flex-end">' + badges + '</div></div>' +
-            '<div class="muted small" style="margin-top:6px">conversation=' + esc(session.conversation_id || '(none)') + '</div>' +
+            '<div class="top"><strong>' + esc(session.remote_did || session.session_key || 'unknown') + '</strong><div style="display:flex;gap:6px;flex-wrap:wrap;justify-content:flex-end">' + badges + '</div></div>' +
             '<div class="muted small">unread=' + esc(session.unread_count) + ' \xB7 last=' + esc(fmtTs(session.last_remote_activity_at || session.updated_at)) + '</div>' +
-            '<div class="muted small">work_session=' + esc(session.mapped_work_session || '(unbound)') + (session.is_active_work_session ? ' \xB7 active_chat=true' : '') + '</div>' +
+            (state.detailMode === 'advanced'
+              ? '<div class="muted small" style="margin-top:6px">conversation=' + esc(session.conversation_id || '(none)') + '</div>' +
+                '<div class="muted small">work_session=' + esc(session.mapped_work_session || '(unbound)') + (session.is_active_work_session ? ' \xB7 active_chat=true' : '') + '</div>'
+              : '') +
             '<div class="muted small" style="margin-top:6px">' + esc(session.last_message_preview || '(no preview)') + '</div>' +
           '</div>';
         }).join('');
@@ -416,6 +700,7 @@ function getHostPanelHtml() {
               '<div class="muted small">updated=' + esc(fmtTs(task.updated_at)) + '</div>' +
               (task.result_summary ? '<div style="margin-top:8px">' + esc(task.result_summary) + '</div>' : '') +
               (task.error_message ? '<div style="margin-top:8px;color:#fca5a5">' + esc(task.error_message) + '</div>' : '') +
+              renderHandoffBlock(task.handoff) +
             '</div>';
           }).join('')
         : '<div class="empty">No recent task threads.</div>';
@@ -433,6 +718,56 @@ function getHostPanelHtml() {
               : '') +
           '</div>' + document.getElementById('taskList').innerHTML;
       }
+
+      document.querySelectorAll('.demo-preset-btn').forEach(function (btn) {
+        btn.addEventListener('click', async function () {
+          const preset = btn.getAttribute('data-preset');
+          const result = await api('/api/runtime/demo', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({ preset: preset }),
+          });
+          window.alert(result.sent
+            ? ('Demo agent messaged.
+
+conversation=' + result.conversation_id)
+            : ('Demo agent ready.
+
+conversation=' + result.conversation_id));
+          await refreshAll();
+        });
+      });
+      const copyPublicLinkBtn = document.getElementById('copyPublicLinkBtn');
+      if (copyPublicLinkBtn) {
+        copyPublicLinkBtn.addEventListener('click', async function () {
+          const url = overview.publicSelf && overview.publicSelf.public_url ? overview.publicSelf.public_url : '';
+          if (!url) {
+            window.alert('No public link yet. Use Public Link or refresh after hosted auto-create.');
+            return;
+          }
+          try {
+            await navigator.clipboard.writeText(url);
+            window.alert('Copied public link:
+' + url);
+          } catch {
+            window.prompt('Copy public link', url);
+          }
+        });
+      }
+      const makeContactCardBtn = document.getElementById('makeContactCardBtn');
+      if (makeContactCardBtn) {
+        makeContactCardBtn.addEventListener('click', async function () {
+          const result = await api('/api/public/contact-card', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({
+              target_did: overview && overview.did ? overview.did : undefined,
+            }),
+          });
+          window.alert('Contact card ready:
+' + (result.share_url || '(missing share_url)'));
+        });
+      }
     }
 
     function renderSession() {
@@ -449,32 +784,99 @@ function getHostPanelHtml() {
       const messages = Array.isArray(detail.messages) ? detail.messages : [];
       const auditEvents = Array.isArray(detail.auditEvents) ? detail.auditEvents : [];
       const recommendations = Array.isArray(detail.recommendations) ? detail.recommendations : [];
+      const openRecommendation = recommendations.find(function (item) { return item.status === 'open'; }) || null;
+      const reopenRecommendation = recommendations.find(function (item) { return item.status === 'dismissed' || item.status === 'superseded'; }) || null;
       const binding = detail.binding || null;
       const bindingAlert = detail.bindingAlert || null;
       const activeWorkSession = detail.activeWorkSession || null;
+      const summary = detail.sessionSummary || null;
+      const isAdvanced = state.detailMode === 'advanced';
+      const sessionLink = buildSessionLink(session.session_key);
+      const summaryPills = [];
+      if (contact && contact.action) summaryPills.push('<span class="pill">contact=' + esc(contact.action) + '</span>');
+      if (task && task.action) summaryPills.push('<span class="pill">task=' + esc(task.action) + '</span>');
+      if (session.trust_state) summaryPills.push('<span class="pill">trust=' + esc(session.trust_state) + '</span>');
+      if (Number(session.unread_count || 0) > 0) summaryPills.push('<span class="pill">unread=' + esc(session.unread_count) + '</span>');
+      if (binding && binding.session_key) summaryPills.push('<span class="pill">chat link attached</span>');
+      else if (activeWorkSession) summaryPills.push('<span class="pill">current OpenClaw chat available</span>');
+      const policyBlock = isAdvanced
+        ? '<pre style="margin-top:8px">[Contact]\\naction=' + esc(contact.action) + '\\nsource=' + esc(contact.source) + (contact.matched_rule ? '\\nmatched_rule=' + esc(contact.matched_rule) : '') + '\\n' + esc(contact.explanation) + '\\n\\n[Task]\\naction=' + esc(task.action) + '\\nsource=' + esc(task.source) + (task.matched_rule ? '\\nmatched_rule=' + esc(task.matched_rule) : '') + '\\n' + esc(task.explanation) + '</pre>'
+        : '<div class="summary-pills" style="margin-top:8px">' + summaryPills.join('') + '</div>' +
+          '<div class="muted small" style="margin-top:10px">' + esc(contact.explanation || '(no contact explanation)') + '</div>' +
+          '<div class="muted small" style="margin-top:6px">' + esc(task.explanation || '(no task explanation)') + '</div>';
 
       el.innerHTML = '' +
         '<div class="two-col">' +
           '<div>' +
             '<div class="label">Session</div>' +
             '<div style="margin-top:8px"><strong>' + esc(session.remote_did || '(unknown)') + '</strong></div>' +
-            '<div class="muted small">session=' + esc(session.session_key) + '</div>' +
-            '<div class="muted small">conversation=' + esc(session.conversation_id || '(none)') + '</div>' +
             '<div class="muted small">trust=' + esc(session.trust_state) + ' \xB7 unread=' + esc(session.unread_count) + '</div>' +
             '<div class="muted small">last activity=' + esc(fmtTs(session.last_remote_activity_at || session.updated_at)) + '</div>' +
-            '<div class="muted small" style="margin-top:8px">active_chat_session=' + esc(activeWorkSession || '(none)') + '</div>' +
-            '<div class="muted small">binding=' + esc(binding ? binding.session_key : '(unbound)') + '</div>' +
+            (isAdvanced
+              ? '<div style="margin-top:8px">' +
+                  '<div class="muted small">session=' + esc(session.session_key) + '</div>' +
+                  '<div class="muted small">conversation=' + esc(session.conversation_id || '(none)') + '</div>' +
+                  '<div class="muted small">active_chat_session=' + esc(activeWorkSession || '(none)') + '</div>' +
+                  '<div class="muted small">binding=' + esc(binding ? binding.session_key : '(unbound)') + '</div>' +
+                '</div>'
+              : '') +
+            (openRecommendation
+              ? '<div class="muted small" style="margin-top:8px">trust_action=' + esc(recommendationActionLabel(openRecommendation)) + '</div>'
+              : (reopenRecommendation ? '<div class="muted small" style="margin-top:8px">trust_action=' + esc(recommendationActionLabel(reopenRecommendation)) + '</div>' : '')) +
+            (summaryPills.length ? '<div class="summary-pills">' + summaryPills.join('') + '</div>' : '') +
             (bindingAlert
-              ? '<div style="margin-top:10px;padding:10px 12px;border:1px solid #ef4444;border-radius:10px;background:rgba(127,29,29,0.25);color:#fecaca"><strong>Needs rebind</strong><div class="small" style="margin-top:6px">' + esc(bindingAlert.message || 'Bound work session is missing. Rebind this PingAgent conversation to the current chat session.') + '</div></div>'
+              ? '<div style="margin-top:10px;padding:10px 12px;border:1px solid #ef4444;border-radius:10px;background:rgba(127,29,29,0.25);color:#fecaca"><strong>Needs reconnect</strong><div class="small" style="margin-top:6px">' + esc(isAdvanced ? (bindingAlert.message || 'Bound work session is missing. Rebind this PingAgent conversation to the current chat session.') : 'OpenClaw chat link is stale. Attach this PingAgent session to the current OpenClaw chat.') + '</div></div>'
               : '') +
             '<div class="row-actions">' +
-              '<button class="action-btn bind-current-btn" data-conversation="' + esc(session.conversation_id || '') + '">Bind Current Chat</button>' +
-              '<button class="danger-btn clear-binding-btn" data-conversation="' + esc(session.conversation_id || '') + '">Clear Binding</button>' +
+              (session.trust_state === 'pending'
+                ? '<button class="action-btn approve-session-btn" data-session="' + esc(session.session_key) + '">Approve Contact</button>'
+                : '') +
+              (openRecommendation
+                ? '<button class="action-btn apply-session-recommendation-btn" data-session="' + esc(session.session_key) + '">' + esc(recommendationActionLabel(openRecommendation)) + '</button>'
+                : '') +
+              (openRecommendation
+                ? '<button class="danger-btn dismiss-session-recommendation-btn" data-session="' + esc(session.session_key) + '">Dismiss</button>'
+                : '') +
+              (!openRecommendation && reopenRecommendation
+                ? '<button class="secondary-btn reopen-session-recommendation-btn" data-session="' + esc(session.session_key) + '">Reopen</button>'
+                : '') +
+              '<button class="action-btn bind-current-btn" data-conversation="' + esc(session.conversation_id || '') + '">Attach to Current Chat</button>' +
+              '<button class="secondary-btn mark-read-btn" data-session="' + esc(session.session_key) + '">Mark read</button>' +
+              '<button class="secondary-btn copy-session-link-btn" data-session="' + esc(session.session_key) + '">Copy Session Link</button>' +
+              '<button class="danger-btn clear-binding-btn" data-conversation="' + esc(session.conversation_id || '') + '">Detach Chat Link</button>' +
+            '</div>' +
+            '<div class="form-grid" style="margin-top:16px">' +
+              '<label class="label">Reply in this session</label>' +
+              '<textarea id="sessionReplyInput" placeholder="Send a text reply in this session"></textarea>' +
+              '<div class="row-actions"><button class="action-btn" id="sendSessionReplyBtn">Send Reply</button></div>' +
             '</div>' +
           '</div>' +
           '<div>' +
             '<div class="label">Policy Decisions</div>' +
-            '<pre style="margin-top:8px">[Contact]\\naction=' + esc(contact.action) + '\\nsource=' + esc(contact.source) + (contact.matched_rule ? '\\nmatched_rule=' + esc(contact.matched_rule) : '') + '\\n' + esc(contact.explanation) + '\\n\\n[Task]\\naction=' + esc(task.action) + '\\nsource=' + esc(task.source) + (task.matched_rule ? '\\nmatched_rule=' + esc(task.matched_rule) : '') + '\\n' + esc(task.explanation) + '</pre>' +
+            policyBlock +
+            (isAdvanced && recommendations.length
+              ? '<pre style="margin-top:12px">recommendations_debug=' + esc(JSON.stringify(recommendations.map(function (item) { return { id: item.id, status: item.status, policy: item.policy, action: item.action, current_action: item.current_action, match: item.match, confidence: item.confidence }; }), null, 2)) + '</pre>'
+              : '') +
+            (isAdvanced ? '<div class="muted small" style="margin-top:10px">permalink=' + esc(sessionLink) + '</div>' : '') +
+          '</div>' +
+        '</div>' +
+        '<div class="grid two-col" style="margin-top:16px">' +
+          '<div>' +
+            '<div class="label">Carry-Forward Summary</div>' +
+            '<div style="margin-top:8px">' + renderSummaryBlock(summary) + '</div>' +
+          '</div>' +
+          '<div>' +
+            '<div class="label">Update Summary</div>' +
+            '<div class="form-grid" style="margin-top:8px">' +
+              '<input id="sessionSummaryObjective" placeholder="Objective" value="' + esc(summary && summary.objective ? summary.objective : '') + '">' +
+              '<textarea id="sessionSummaryContext" placeholder="Context">' + esc(summary && summary.context ? summary.context : '') + '</textarea>' +
+              '<textarea id="sessionSummaryConstraints" placeholder="Constraints">' + esc(summary && summary.constraints ? summary.constraints : '') + '</textarea>' +
+              '<textarea id="sessionSummaryDecisions" placeholder="Decisions">' + esc(summary && summary.decisions ? summary.decisions : '') + '</textarea>' +
+              '<textarea id="sessionSummaryOpenQuestions" placeholder="Open questions">' + esc(summary && summary.open_questions ? summary.open_questions : '') + '</textarea>' +
+              '<textarea id="sessionSummaryNextAction" placeholder="Next action">' + esc(summary && summary.next_action ? summary.next_action : '') + '</textarea>' +
+              '<textarea id="sessionSummaryHandoff" placeholder="Handoff-ready summary">' + esc(summary && summary.handoff_ready_text ? summary.handoff_ready_text : '') + '</textarea>' +
+              '<div class="row-actions"><button class="action-btn" id="saveSessionSummaryBtn">Save Summary</button></div>' +
+            '</div>' +
           '</div>' +
         '</div>' +
         '<div class="grid two-col" style="margin-top:16px">' +
@@ -484,15 +886,26 @@ function getHostPanelHtml() {
                 '<div class="muted small">updated=' + esc(fmtTs(taskItem.updated_at)) + '</div>' +
                 (taskItem.result_summary ? '<div style="margin-top:8px">' + esc(taskItem.result_summary) + '</div>' : '') +
                 (taskItem.error_message ? '<div style="margin-top:8px;color:#fca5a5">' + esc(taskItem.error_message) + '</div>' : '') +
+                renderHandoffBlock(taskItem.handoff) +
               '</div>';
             }).join('') : '<div class="empty">No tasks in this session.</div>') +
           '</div></div>' +
           '<div><div class="label">Learned Recommendations</div><div class="recommendation-list" style="margin-top:8px">' +
             (recommendations.length ? recommendations.map(function (item) {
+              const actionButton = item.status === 'open'
+                ? '<button class="action-btn apply-session-recommendation-btn" data-session="' + esc(session.session_key) + '">' + esc(recommendationActionLabel(item)) + '</button>'
+                : '';
+              const dismissButton = item.status === 'open'
+                ? '<button class="danger-btn dismiss-session-recommendation-btn" data-session="' + esc(session.session_key) + '">Dismiss</button>'
+                : '';
+              const reopenButton = (item.status === 'dismissed' || item.status === 'superseded')
+                ? '<button class="secondary-btn reopen-session-recommendation-btn" data-session="' + esc(session.session_key) + '">Reopen</button>'
+                : '';
               return '<div class="recommendation-row"><div class="top"><strong>' + esc(item.policy) + '</strong><span class="badge">' + esc(item.status + ' \xB7 ' + item.action) + '</span></div>' +
-                '<div class="muted small">current=' + esc(item.current_action) + ' \xB7 confidence=' + esc(item.confidence) + '</div>' +
-                '<div class="muted small">match=' + esc(item.match) + '</div>' +
+                (isAdvanced ? '<div class="muted small">current=' + esc(item.current_action) + ' \xB7 confidence=' + esc(item.confidence) + '</div>' : '') +
+                (isAdvanced ? '<div class="muted small">match=' + esc(item.match) + '</div>' : '') +
                 '<div style="margin-top:8px">' + esc(item.reason) + '</div>' +
+                '<div class="row-actions">' + actionButton + dismissButton + reopenButton + '</div>' +
               '</div>';
             }).join('') : '<div class="empty">No learned recommendation for this session.</div>') +
           '</div></div>' +
@@ -500,10 +913,10 @@ function getHostPanelHtml() {
         '<div class="grid two-col" style="margin-top:16px">' +
           '<div><div class="label">Recent Messages</div><div class="message-list" style="margin-top:8px">' +
             (messages.length ? messages.map(function (msg) {
-              const summary = msg.schema === 'pingagent.text@1' && msg.payload && msg.payload.text
+              const messageSummary = msg.schema === 'pingagent.text@1' && msg.payload && msg.payload.text
                 ? msg.payload.text
                 : JSON.stringify(msg.payload || {});
-              return '<div class="message-row"><div class="muted small">' + esc(fmtTs(msg.ts_ms)) + ' \xB7 ' + esc(msg.direction) + ' \xB7 ' + esc(msg.schema) + '</div><div style="margin-top:8px">' + esc(summary) + '</div></div>';
+              return '<div class="message-row"><div class="muted small">' + esc(fmtTs(msg.ts_ms)) + ' \xB7 ' + esc(msg.direction) + ' \xB7 ' + esc(msg.schema) + '</div><div style="margin-top:8px">' + esc(messageSummary) + '</div></div>';
             }).join('') : '<div class="empty">No local message history yet.</div>') +
           '</div></div>' +
           '<div><div class="label">Policy Audit</div><div class="audit-list" style="margin-top:8px">' +
@@ -516,6 +929,24 @@ function getHostPanelHtml() {
           '</div></div>' +
         '</div>';
 
+      el.querySelectorAll('.approve-session-btn').forEach(function (btn) {
+        btn.addEventListener('click', async function () {
+          const sessionKey = btn.getAttribute('data-session');
+          const result = await api('/api/runtime/session/approve', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({ session_key: sessionKey }),
+          });
+          await refreshAll();
+          const promoted = result && result.dm_conversation_id
+            ? getOverviewSessions().find(function (item) { return item.conversation_id === result.dm_conversation_id; })
+            : null;
+          state.selectedSessionKey = promoted ? promoted.session_key : sessionKey;
+          renderOverview();
+          if (state.selectedSessionKey) await loadSession(state.selectedSessionKey);
+          setTab('runtime');
+        });
+      });
       el.querySelectorAll('.bind-current-btn').forEach(function (btn) {
         btn.addEventListener('click', async function () {
           const conversationId = btn.getAttribute('data-conversation');
@@ -523,6 +954,22 @@ function getHostPanelHtml() {
           await promptBindCurrentChat(conversationId);
         });
       });
+      el.querySelectorAll('.mark-read-btn').forEach(function (btn) {
+        btn.addEventListener('click', async function () {
+          await api('/api/runtime/session/mark-read', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({ session_key: btn.getAttribute('data-session') }),
+          });
+          await refreshAll();
+          setTab('runtime');
+        });
+      });
+      el.querySelectorAll('.copy-session-link-btn').forEach(function (btn) {
+        btn.addEventListener('click', async function () {
+          await copyText(buildSessionLink(btn.getAttribute('data-session')), 'Session link');
+        });
+      });
       el.querySelectorAll('.clear-binding-btn').forEach(function (btn) {
         btn.addEventListener('click', async function () {
           await api('/api/runtime/session-bindings/clear', {
@@ -534,6 +981,79 @@ function getHostPanelHtml() {
           setTab('runtime');
         });
       });
+      el.querySelectorAll('.apply-session-recommendation-btn').forEach(function (btn) {
+        btn.addEventListener('click', async function () {
+          await api('/api/runtime/policy/recommendations/apply-session', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({ session_key: btn.getAttribute('data-session') }),
+          });
+          await refreshAll();
+          setTab('runtime');
+        });
+      });
+      el.querySelectorAll('.dismiss-session-recommendation-btn').forEach(function (btn) {
+        btn.addEventListener('click', async function () {
+          await api('/api/runtime/policy/recommendations/dismiss-session', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({ session_key: btn.getAttribute('data-session') }),
+          });
+          await refreshAll();
+          setTab('runtime');
+        });
+      });
+      el.querySelectorAll('.reopen-session-recommendation-btn').forEach(function (btn) {
+        btn.addEventListener('click', async function () {
+          await api('/api/runtime/policy/recommendations/reopen-session', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({ session_key: btn.getAttribute('data-session') }),
+          });
+          await refreshAll();
+          setTab('runtime');
+        });
+      });
+      const sendSessionReplyBtn = document.getElementById('sendSessionReplyBtn');
+      if (sendSessionReplyBtn) {
+        sendSessionReplyBtn.addEventListener('click', async function () {
+          const input = document.getElementById('sessionReplyInput');
+          const message = input.value.trim();
+          if (!message) {
+            window.alert('Reply text is required.');
+            return;
+          }
+          await api('/api/runtime/session/reply', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({ session_key: session.session_key, message: message }),
+          });
+          input.value = '';
+          await refreshAll();
+          setTab('runtime');
+        });
+      }
+      const saveSessionSummaryBtn = document.getElementById('saveSessionSummaryBtn');
+      if (saveSessionSummaryBtn) {
+        saveSessionSummaryBtn.addEventListener('click', async function () {
+          await api('/api/runtime/session-summary', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({
+              session_key: session.session_key,
+              objective: document.getElementById('sessionSummaryObjective').value.trim(),
+              context: document.getElementById('sessionSummaryContext').value.trim(),
+              constraints: document.getElementById('sessionSummaryConstraints').value.trim(),
+              decisions: document.getElementById('sessionSummaryDecisions').value.trim(),
+              open_questions: document.getElementById('sessionSummaryOpenQuestions').value.trim(),
+              next_action: document.getElementById('sessionSummaryNextAction').value.trim(),
+              handoff_ready_text: document.getElementById('sessionSummaryHandoff').value.trim(),
+            }),
+          });
+          await refreshAll();
+          setTab('runtime');
+        });
+      }
     }
 
     async function promptBindCurrentChat(conversationId, previousBinding, remoteDid) {
@@ -543,7 +1063,7 @@ function getHostPanelHtml() {
       const previous = previousBinding || (state.session && state.session.binding ? state.session.binding.session_key : null) || '(unbound)';
       const targetRemoteDid = remoteDid || (state.session && state.session.session ? state.session.session.remote_did : null) || '(unknown)';
       const confirmed = window.confirm(
-        'Rebind this PingAgent conversation to the current chat session?' +
+        'Attach this PingAgent session to the current OpenClaw chat?' +
         '
 
 Conversation: ' + conversationId +
@@ -551,9 +1071,9 @@ Conversation: ' + conversationId +
 Remote DID: ' + targetRemoteDid +
         '
 
-Current chat: ' + (current || '(none)') +
+Current OpenClaw chat: ' + (current || '(none)') +
         '
-Previous binding: ' + previous
+Previous chat link: ' + previous
       );
       if (!confirmed) return;
       await api('/api/runtime/session-bindings/bind-current', {
@@ -568,8 +1088,23 @@ Previous binding: ' + previous
     function renderPolicy() {
       const policy = state.policy;
       if (!policy) return;
+      const profile = state.overview && state.overview.profile ? state.overview.profile : null;
       document.getElementById('contactDefault').value = policy.doc.contact_policy.default_action;
       document.getElementById('taskDefault').value = policy.doc.task_policy.default_action;
+      document.getElementById('profileDisplayName').value = profile && profile.display_name ? profile.display_name : '';
+      document.getElementById('profileBio').value = profile && profile.bio ? profile.bio : '';
+      document.getElementById('profileTags').value = profile && Array.isArray(profile.tags) ? profile.tags.join(', ') : '';
+      document.getElementById('profileCapabilities').value = profile && Array.isArray(profile.capabilities) ? profile.capabilities.join(', ') : '';
+      document.getElementById('capabilityCardSummary').value = profile && profile.capability_card && profile.capability_card.summary ? profile.capability_card.summary : '';
+      document.getElementById('capabilityCardAcceptsNewWork').value =
+        profile && profile.capability_card && typeof profile.capability_card.accepts_new_work === 'boolean'
+          ? String(profile.capability_card.accepts_new_work)
+          : '';
+      document.getElementById('capabilityCardContactMode').value =
+        profile && profile.capability_card && profile.capability_card.preferred_contact_mode
+          ? profile.capability_card.preferred_contact_mode
+          : '';
+      document.getElementById('capabilityCardItems').value = formatCapabilityCardEditor(profile && profile.capability_card ? profile.capability_card : null);
 
       const rules = [];
       policy.doc.contact_policy.rules.forEach(function (rule) {
@@ -610,7 +1145,7 @@ Previous binding: ' + previous
             if (!list.length) return '';
             return '<div><div class="label" style="margin-bottom:8px">' + esc(status) + '</div>' + list.map(function (item) {
               const applyButton = status !== 'applied'
-                ? '<button class="action-btn apply-recommendation-btn" data-recommendation-id="' + esc(item.id) + '">Apply</button>'
+                ? '<button class="action-btn apply-recommendation-btn" data-recommendation-id="' + esc(item.id) + '">' + esc(recommendationActionLabel(item)) + '</button>'
                 : '';
               const dismissButton = status === 'open'
                 ? '<button class="danger-btn dismiss-recommendation-btn" data-recommendation-id="' + esc(item.id) + '">Dismiss</button>'
@@ -672,6 +1207,45 @@ Previous binding: ' + previous
         : '<div class="empty">No audit events yet.</div>';
 
       updateRuleActionOptions();
+
+      const saveProfileBtn = document.getElementById('saveProfileBtn');
+      if (saveProfileBtn) {
+        saveProfileBtn.onclick = async function () {
+          let capabilityItems = [];
+          const rawItems = document.getElementById('capabilityCardItems').value.trim();
+          if (rawItems) {
+            try {
+              const parsed = JSON.parse(rawItems);
+              if (!Array.isArray(parsed)) throw new Error('Capability entries JSON must be an array.');
+              capabilityItems = parsed;
+            } catch (err) {
+              window.alert(err && err.message ? err.message : 'Invalid capability entries JSON');
+              return;
+            }
+          }
+          const acceptsNewWorkValue = document.getElementById('capabilityCardAcceptsNewWork').value;
+          const capabilityCard = {
+            version: '1',
+            summary: document.getElementById('capabilityCardSummary').value.trim() || undefined,
+            accepts_new_work: acceptsNewWorkValue === '' ? undefined : acceptsNewWorkValue === 'true',
+            preferred_contact_mode: document.getElementById('capabilityCardContactMode').value || undefined,
+            capabilities: capabilityItems,
+          };
+          await api('/api/profile', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({
+              display_name: document.getElementById('profileDisplayName').value.trim() || undefined,
+              bio: document.getElementById('profileBio').value.trim() || undefined,
+              tags: parseCsvList(document.getElementById('profileTags').value),
+              capabilities: parseCsvList(document.getElementById('profileCapabilities').value),
+              capability_card: capabilityCard,
+            }),
+          });
+          await refreshAll();
+          setTab('policy');
+        };
+      }
     }
 
     function updateRuleActionOptions() {
@@ -683,14 +1257,15 @@ Previous binding: ' + previous
 
     async function loadOverview() {
       state.overview = await api('/api/runtime/overview');
+      syncSelectedSessionFromOverview();
       renderHeader();
       renderOverview();
-      const sessions = state.overview && Array.isArray(state.overview.sessions) ? state.overview.sessions : [];
-      if (!state.selectedSessionKey && sessions.length) {
-        state.selectedSessionKey = sessions[0].session_key;
-      }
       if (state.selectedSessionKey) {
         await loadSession(state.selectedSessionKey);
+      } else {
+        state.session = null;
+        renderSession();
+        syncUrlState();
       }
     }
 
@@ -698,6 +1273,7 @@ Previous binding: ' + previous
       if (!sessionKey) return;
       state.selectedSessionKey = sessionKey;
       state.session = await api('/api/runtime/session?session_key=' + encodeURIComponent(sessionKey));
+      syncUrlState();
       renderSession();
     }
 
@@ -718,6 +1294,30 @@ Previous binding: ' + previous
 
     document.getElementById('navRuntime').addEventListener('click', function () { setTab('runtime'); });
     document.getElementById('navPolicy').addEventListener('click', function () { setTab('policy'); });
+    document.getElementById('toggleUnreadBtn').addEventListener('click', async function () {
+      state.showUnreadOnly = !state.showUnreadOnly;
+      syncSelectedSessionFromOverview();
+      renderOverview();
+      if (state.selectedSessionKey) await loadSession(state.selectedSessionKey);
+      else {
+        syncUrlState();
+        renderSession();
+      }
+    });
+    document.getElementById('nextUnreadBtn').addEventListener('click', async function () {
+      const unreadSessions = getOverviewSessions().filter(function (session) { return Number(session.unread_count || 0) > 0; });
+      if (!unreadSessions.length) {
+        window.alert('No unread sessions.');
+        return;
+      }
+      const currentIndex = unreadSessions.findIndex(function (session) { return session.session_key === state.selectedSessionKey; });
+      const next = unreadSessions[(currentIndex + 1 + unreadSessions.length) % unreadSessions.length];
+      state.selectedSessionKey = next.session_key;
+      renderOverview();
+      await loadSession(state.selectedSessionKey);
+    });
+    document.getElementById('detailModeBasicBtn').addEventListener('click', function () { setDetailMode('basic'); });
+    document.getElementById('detailModeAdvancedBtn').addEventListener('click', function () { setDetailMode('advanced'); });
     document.getElementById('rulePolicy').addEventListener('change', updateRuleActionOptions);
     document.getElementById('saveDefaultsBtn').addEventListener('click', async function () {
       await api('/api/runtime/policy/defaults', {
@@ -758,11 +1358,54 @@ Previous binding: ' + previous
       document.getElementById('simulateOutput').textContent = JSON.stringify(result, null, 2);
       setTab('policy');
     });
+    document.getElementById('fixHooksBtn').addEventListener('click', async function () {
+      const confirmed = window.confirm('Repair OpenClaw hooks config now? A timestamped backup of openclaw.json will be written first.');
+      if (!confirmed) return;
+      const result = await api('/api/runtime/openclaw/fix-hooks', { method: 'POST' });
+      window.alert((result.ok ? 'Hooks repaired.
+
+' : 'Hooks repair reported an error.
+
+') + (result.stdout || result.stderr || 'No output'));
+      await refreshAll();
+    });
+    document.getElementById('publicLinkBtn').addEventListener('click', async function () {
+      const suggested = state.overview && state.overview.publicSelf && state.overview.publicSelf.public_slug
+        ? state.overview.publicSelf.public_slug
+        : '';
+      const slug = window.prompt('Public share slug (leave empty to use the recommended value):', suggested);
+      if (slug == null) return;
+      const result = await api('/api/public/link', {
+        method: 'POST',
+        headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify({ slug: slug.trim() || undefined, enabled: true }),
+      });
+      window.alert('Public link ready:
+' + (result.public_url || '(missing public_url)'));
+      await refreshAll();
+    });
+    document.getElementById('contactCardBtn').addEventListener('click', async function () {
+      const intro = window.prompt('Optional intro note for this contact card:', '');
+      if (intro == null) return;
+      const result = await api('/api/public/contact-card', {
+        method: 'POST',
+        headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify({
+          target_did: state.overview && state.overview.did ? state.overview.did : undefined,
+          intro_note: intro.trim() || undefined,
+        }),
+      });
+      window.alert('Contact card ready:
+' + (result.share_url || '(missing share_url)'));
+    });
 
     async function init() {
+      setTab(state.currentTab);
+      setDetailMode(state.detailMode);
       await loadProfiles();
       updateRuleActionOptions();
       await refreshAll();
+      syncUrlState();
     }
 
     init().catch(function (error) {
@@ -781,6 +1424,29 @@ function resolvePath(p) {
   if (!p || !p.startsWith("~")) return p;
   return path.join(process.env.HOME || process.env.USERPROFILE || "", p.slice(1));
 }
+function findOpenClawInstallScript() {
+  const explicit = process.env.PINGAGENT_OPENCLAW_INSTALL_BIN?.trim();
+  if (explicit) return { kind: "script", cmd: process.execPath, args: [path.resolve(explicit)] };
+  const repoScript = path.resolve(process.cwd(), "packages", "openclaw-install", "install.mjs");
+  if (fs.existsSync(repoScript)) return { kind: "script", cmd: process.execPath, args: [repoScript] };
+  return null;
+}
+function runOpenClawInstall(args) {
+  const resolved = findOpenClawInstallScript();
+  if (!resolved) {
+    return { ok: false, stdout: "", stderr: "OpenClaw installer script not found locally. Set PINGAGENT_OPENCLAW_INSTALL_BIN." };
+  }
+  const result = spawnSync(resolved.cmd, [...resolved.args, ...args], {
+    encoding: "utf-8",
+    env: process.env
+  });
+  return {
+    ok: result.status === 0,
+    stdout: String(result.stdout ?? ""),
+    stderr: String(result.stderr ?? ""),
+    status: result.status ?? 1
+  };
+}
 function listProfiles(rootDir) {
   const root = resolvePath(rootDir);
   const profiles = [];
@@ -839,6 +1505,30 @@ function listProfiles(rootDir) {
   return profiles;
 }
 var DEFAULT_SERVER_URL = "https://pingagent.chat";
+var OFFICIAL_HOSTED_ORIGIN = new URL(DEFAULT_SERVER_URL).origin;
+var autoPublicLinkAttempts = /* @__PURE__ */ new Set();
+function normalizeOrigin(input) {
+  try {
+    return new URL(String(input ?? "")).origin;
+  } catch {
+    return null;
+  }
+}
+function isOfficialHostedServer(serverUrl) {
+  return normalizeOrigin(serverUrl) === OFFICIAL_HOSTED_ORIGIN;
+}
+async function maybeEnsureHostedPublicLink(ctx) {
+  if (!isOfficialHostedServer(ctx.serverUrl)) return;
+  const key = `${ctx.identityPath}:${normalizeOrigin(ctx.serverUrl)}`;
+  if (autoPublicLinkAttempts.has(key)) return;
+  autoPublicLinkAttempts.add(key);
+  try {
+    const current = await ctx.client.getPublicSelf().catch(() => ({ ok: false }));
+    if (current.ok && current.data?.public_slug) return;
+    await ctx.client.createPublicLink({ enabled: true }).catch(() => ({ ok: false }));
+  } catch {
+  }
+}
 async function getContextForProfile(profile, defaultServerUrl) {
   const identity = loadIdentity(profile.identityPath);
   const serverUrl = identity.serverUrl ?? defaultServerUrl ?? DEFAULT_SERVER_URL;
@@ -1044,11 +1734,14 @@ function describeHostedTier(tier) {
 }
 async function buildRuntimeOverviewPayload(ctx) {
   const client = ctx.client;
+  await maybeEnsureHostedPublicLink(ctx);
   await client.listConversations({ type: "dm" });
   const sessionManager = client.getSessionManager();
+  const sessionSummaryManager = client.getSessionSummaryManager();
   const taskManager = client.getTaskThreadManager();
+  const taskHandoffManager = client.getTaskHandoffManager();
   const historyManager = client.getHistoryManager();
-  if (!sessionManager || !taskManager || !historyManager) {
+  if (!sessionManager || !sessionSummaryManager || !taskManager || !taskHandoffManager || !historyManager) {
     throw new Error("Runtime overview requires a writable local store");
   }
   const sessions = sessionManager.listRecentSessions(24);
@@ -1071,6 +1764,10 @@ async function buildRuntimeOverviewPayload(ctx) {
   const runtimeMode = getRuntimeMode();
   const subRes = await client.getSubscription().catch(() => ({ ok: false }));
   const subscription = subRes.ok && subRes.data ? subRes.data : null;
+  const publicSelfRes = await client.getPublicSelf().catch(() => ({ ok: false }));
+  const publicSelf = publicSelfRes.ok && publicSelfRes.data ? publicSelfRes.data : null;
+  const profileRes = await client.getProfile().catch(() => ({ ok: false }));
+  const profile = profileRes.ok && profileRes.data ? profileRes.data : null;
   const recommendationState = syncTrustRecommendations(ctx.storePath, {
     policyDoc: policy,
     sessions,
@@ -1082,6 +1779,7 @@ async function buildRuntimeOverviewPayload(ctx) {
   const unreadTotal = sessions.reduce((sum, session) => sum + session.unread_count, 0);
   const sessionBindings = readSessionBindings();
   const sessionBindingAlerts = readSessionBindingAlerts();
+  const ingressRuntime = readIngressRuntimeStatus();
   const activeWorkSession = readCurrentActiveSessionKey();
   const bindingByConversation = new Map(sessionBindings.map((row) => [row.conversation_id, row.session_key]));
   const bindingAlertByConversation = new Map(sessionBindingAlerts.map((row) => [row.conversation_id, row]));
@@ -1096,6 +1794,7 @@ async function buildRuntimeOverviewPayload(ctx) {
     trustPolicyPath: getTrustPolicyPath(ctx.identityPath),
     activeWorkSessionFile: getActiveSessionFilePath(),
     activeWorkSession,
+    ingressRuntime,
     sessionMapPath: getSessionMapFilePath(),
     sessionBindingAlertsPath: getSessionBindingAlertsFilePath(),
     sessionBindings,
@@ -1111,6 +1810,8 @@ async function buildRuntimeOverviewPayload(ctx) {
       retention_label: formatRetentionLabel(subscription.limits.store_forward_ttl_ms),
       audit_export_allowed: !!subscription.limits.audit_export_allowed
     } : null,
+    publicSelf,
+    profile,
     policyDefaults: {
       contact: policy.contact_policy.enabled ? policy.contact_policy.default_action : "disabled",
       task: policy.task_policy.enabled ? policy.task_policy.default_action : "disabled"
@@ -1122,22 +1823,31 @@ async function buildRuntimeOverviewPayload(ctx) {
     recommendationSummary: recommendationState.summary,
     sessions: sessions.map((session) => ({
       ...session,
+      session_summary: sessionSummaryManager.get(session.session_key),
       mapped_work_session: session.conversation_id ? bindingByConversation.get(session.conversation_id) ?? null : null,
       binding_alert: session.conversation_id ? bindingAlertByConversation.get(session.conversation_id) ?? null : null,
       is_active_work_session: session.session_key === activeWorkSession,
       latest_messages: session.conversation_id ? historyManager.listRecent(session.conversation_id, 3) : []
     })),
-    tasks: refreshedTasks,
+    tasks: refreshedTasks.map((task) => ({
+      ...task,
+      handoff: taskHandoffManager.get(task.task_id)
+    })),
     auditSummary,
-    recommendations: recommendationState.recommendations
+    recommendations: recommendationState.recommendations.map((item) => ({
+      ...item,
+      primary_action_label: getTrustRecommendationActionLabel(item)
+    }))
   };
 }
 async function buildSessionOverviewPayload(ctx, sessionKey) {
   const client = ctx.client;
   const sessionManager = client.getSessionManager();
+  const sessionSummaryManager = client.getSessionSummaryManager();
   const taskManager = client.getTaskThreadManager();
+  const taskHandoffManager = client.getTaskHandoffManager();
   const historyManager = client.getHistoryManager();
-  if (!sessionManager || !taskManager || !historyManager) {
+  if (!sessionManager || !sessionSummaryManager || !taskManager || !taskHandoffManager || !historyManager) {
     throw new Error("Session overview requires a writable local store");
   }
   const session = sessionKey ? sessionManager.get(sessionKey) : sessionManager.getActiveSession() ?? sessionManager.listRecentSessions(1)[0] ?? null;
@@ -1173,6 +1883,8 @@ async function buildSessionOverviewPayload(ctx, sessionKey) {
   });
   return {
     session,
+    sessionSummary: sessionSummaryManager.get(session.session_key),
+    ingressRuntime: readIngressRuntimeStatus(),
     binding,
     bindingAlert,
     activeWorkSession,
@@ -1180,12 +1892,30 @@ async function buildSessionOverviewPayload(ctx, sessionKey) {
     sessionMapPath: getSessionMapFilePath(),
     sessionBindingAlertsPath: getSessionBindingAlertsFilePath(),
     policyExplain: buildPolicyDecisionShape(ctx.identityPath, session.remote_did, { runtimeMode: getRuntimeMode() }),
-    tasks,
+    tasks: tasks.map((task) => ({
+      ...task,
+      handoff: taskHandoffManager.get(task.task_id)
+    })),
     messages,
     auditEvents,
-    recommendations: recommendationState.recommendations.filter((item) => item.remote_did === session.remote_did)
+    recommendations: recommendationState.recommendations.filter((item) => item.remote_did === session.remote_did).map((item) => ({
+      ...item,
+      primary_action_label: getTrustRecommendationActionLabel(item)
+    }))
   };
 }
+function resolveSessionForInput(sessionManager, input) {
+  if (!sessionManager) return null;
+  const sessionKey = String(input.session_key ?? "").trim();
+  const conversationId = String(input.conversation_id ?? "").trim();
+  const remoteDid = String(input.remote_did ?? "").trim();
+  let session = sessionKey ? sessionManager.get(sessionKey) : null;
+  if (!session && conversationId) session = sessionManager.getByConversationId(conversationId);
+  if (!session && remoteDid) {
+    session = sessionManager.listRecentSessions(100).find((item) => item.remote_did === remoteDid) ?? null;
+  }
+  return session ?? sessionManager.getActiveSession() ?? sessionManager.listRecentSessions(1)[0] ?? null;
+}
 async function handleApi(pathname, req, ctx) {
   const client = ctx.client;
   const contactManager = ctx.contactManager;
@@ -1196,10 +1926,139 @@ async function handleApi(pathname, req, ctx) {
     return { did: myDid, serverUrl };
   }
   if (parts[0] === "runtime") {
+    if (parts[1] === "session-summary") {
+      const sessionManager = client.getSessionManager();
+      const sessionSummaryManager = client.getSessionSummaryManager();
+      if (!sessionManager || !sessionSummaryManager) throw new Error("Session summary requires a writable local store");
+      const url = new URL(req.url || "", "http://x");
+      const body = req.method === "POST" ? await readBody(req) : null;
+      const sessionKey = String(
+        body?.session_key ?? url.searchParams.get("session_key") ?? ""
+      ).trim();
+      const conversationId = String(
+        body?.conversation_id ?? url.searchParams.get("conversation_id") ?? ""
+      ).trim();
+      const remoteDid = String(
+        body?.remote_did ?? url.searchParams.get("remote_did") ?? ""
+      ).trim();
+      const session = sessionKey ? sessionManager.get(sessionKey) : conversationId ? sessionManager.getByConversationId(conversationId) : remoteDid ? sessionManager.listRecentSessions(100).find((item) => item.remote_did === remoteDid) ?? null : sessionManager.getActiveSession() ?? sessionManager.listRecentSessions(1)[0] ?? null;
+      if (!session) throw new Error("No session available");
+      if (req.method === "GET") {
+        return { session, summary: sessionSummaryManager.get(session.session_key) };
+      }
+      const summary = sessionSummaryManager.upsert({
+        session_key: session.session_key,
+        objective: typeof body?.objective === "string" ? body.objective : void 0,
+        context: typeof body?.context === "string" ? body.context : void 0,
+        constraints: typeof body?.constraints === "string" ? body.constraints : void 0,
+        decisions: typeof body?.decisions === "string" ? body.decisions : void 0,
+        open_questions: typeof body?.open_questions === "string" ? body.open_questions : void 0,
+        next_action: typeof body?.next_action === "string" ? body.next_action : void 0,
+        handoff_ready_text: typeof body?.handoff_ready_text === "string" ? body.handoff_ready_text : void 0
+      });
+      return { ok: true, session, summary };
+    }
     if (!parts[1] || parts[1] === "overview") {
       return buildRuntimeOverviewPayload(ctx);
     }
+    if (parts[1] === "receive-mode" && req.method === "GET") {
+      return {
+        runtimeStatusPath: path.resolve(process.env.IM_INGRESS_RUNTIME_STATUS_FILE || ""),
+        status: readIngressRuntimeStatus()
+      };
+    }
+    if (parts[1] === "demo" && req.method === "POST") {
+      const body = await readBody(req);
+      const preset = typeof body?.preset === "string" ? body.preset.trim().toLowerCase() : "";
+      const presetMessages = {
+        hello: "Hello",
+        delegate: "Please show me how task delegation works in PingAgent.",
+        trust: "Show me how trust decisions and recommendations work."
+      };
+      const resolved = await client.resolveAlias("pingagent/demo");
+      if (!resolved.ok || !resolved.data?.did) {
+        throw new Error(resolved.error?.message ?? "Failed to resolve demo agent");
+      }
+      const convo = await client.openConversation(resolved.data.did);
+      if (!convo.ok || !convo.data?.conversation_id) {
+        throw new Error(convo.error?.message ?? "Failed to open demo conversation");
+      }
+      const message = typeof body?.message === "string" && body.message.trim() ? body.message.trim() : presetMessages[preset] ?? "";
+      if (!message) {
+        return {
+          ok: true,
+          did: resolved.data.did,
+          conversation_id: convo.data.conversation_id,
+          preset: preset || null,
+          sent: false
+        };
+      }
+      const sendRes = await client.sendMessage(convo.data.conversation_id, SCHEMA_TEXT, { text: message });
+      if (!sendRes.ok) {
+        throw new Error(sendRes.error?.message ?? "Failed to send demo message");
+      }
+      return {
+        ok: true,
+        did: resolved.data.did,
+        conversation_id: convo.data.conversation_id,
+        preset: preset || null,
+        sent: true,
+        message_id: sendRes.data?.message_id ?? null
+      };
+    }
+    if (parts[1] === "openclaw" && parts[2] === "fix-hooks" && req.method === "POST") {
+      const result = runOpenClawInstall(["fix-hooks"]);
+      return {
+        ok: result.ok,
+        stdout: result.stdout,
+        stderr: result.stderr,
+        status: result.status,
+        receiveMode: readIngressRuntimeStatus()
+      };
+    }
     if (parts[1] === "session") {
+      const sessionManager = ctx.client.getSessionManager();
+      if (!sessionManager) throw new Error("Session actions require a writable local store");
+      if (parts[2] === "reply" && req.method === "POST") {
+        const body = await readBody(req);
+        const session = resolveSessionForInput(sessionManager, body);
+        if (!session?.conversation_id) throw new Error("No session selected");
+        const text = String(body?.message ?? "").trim();
+        if (!text) throw new Error("Missing message");
+        const sendRes = await client.sendMessage(session.conversation_id, SCHEMA_TEXT, { text });
+        if (!sendRes.ok) throw new Error(sendRes.error?.message ?? "Failed to send");
+        sessionManager.focusSession(session.session_key);
+        return {
+          ok: true,
+          session: sessionManager.get(session.session_key),
+          message_id: sendRes.data?.message_id ?? null
+        };
+      }
+      if (parts[2] === "approve" && req.method === "POST") {
+        const body = await readBody(req);
+        const session = resolveSessionForInput(sessionManager, body);
+        if (!session?.conversation_id) throw new Error("No session selected");
+        const approveRes = await client.approveContact(session.conversation_id);
+        if (!approveRes.ok) throw new Error(approveRes.error?.message ?? "Failed to approve contact");
+        sessionManager.focusSession(session.session_key);
+        return {
+          ok: true,
+          session: sessionManager.get(session.session_key),
+          trusted: approveRes.data?.trusted ?? true,
+          dm_conversation_id: approveRes.data?.dm_conversation_id ?? session.conversation_id
+        };
+      }
+      if (parts[2] === "mark-read" && req.method === "POST") {
+        const body = await readBody(req);
+        const session = resolveSessionForInput(sessionManager, body);
+        if (!session?.session_key) throw new Error("No session selected");
+        const updated = sessionManager.markRead(session.session_key);
+        if (!updated) throw new Error("Failed to mark session as read");
+        return {
+          ok: true,
+          session: updated
+        };
+      }
       const url = new URL(req.url || "", "http://x");
       const sessionKey = url.searchParams.get("session_key");
       return buildSessionOverviewPayload(ctx, sessionKey);
@@ -1290,7 +2149,10 @@ async function handleApi(pathname, req, ctx) {
             auditSummary: summarizeTrustPolicyAudit(auditEvents),
             auditEvents,
             recommendationSummary: recommendationState.summary,
-            recommendations: recommendationState.recommendations
+            recommendations: recommendationState.recommendations.map((item) => ({
+              ...item,
+              primary_action_label: getTrustRecommendationActionLabel(item)
+            }))
           };
         } finally {
           auditStore.close();
@@ -1488,6 +2350,141 @@ async function handleApi(pathname, req, ctx) {
           }
         };
       }
+      if (parts[2] === "recommendations" && parts[3] === "apply-session" && req.method === "POST") {
+        const body = await readBody(req);
+        const sessionKey = typeof body?.session_key === "string" ? body.session_key : ctx.client.getSessionManager()?.getActiveSession()?.session_key ?? "";
+        if (!sessionKey) throw new Error("session_key is required");
+        const session = ctx.client.getSessionManager()?.get(sessionKey);
+        if (!session?.remote_did) throw new Error("No active session recommendation target");
+        const doc = readTrustPolicyDoc(ctx.identityPath);
+        const sharedStore = new LocalStore(ctx.storePath);
+        try {
+          const auditManager = new TrustPolicyAuditManager(sharedStore);
+          const recommendationManager = new TrustRecommendationManager(sharedStore);
+          const auditEvents = auditManager.listRecent(200);
+          recommendationManager.sync({
+            policyDoc: doc,
+            sessions: sessionManager.listRecentSessions(100),
+            tasks: taskManager.listRecent(100),
+            auditEvents,
+            runtimeMode,
+            limit: 50
+          });
+          const recommendation = recommendationManager.list({ remoteDid: session.remote_did, status: "open", limit: 1 })[0];
+          if (!recommendation) throw new Error("No open recommendation for this session");
+          const nextDoc = upsertTrustPolicyRecommendation(doc, recommendation);
+          const savedPath = writeTrustPolicyDoc(ctx.identityPath, nextDoc);
+          const stored = recommendationManager.apply(recommendation.id) ?? recommendation;
+          auditManager.record({
+            event_type: "recommendation_applied",
+            policy_scope: recommendation.policy,
+            remote_did: recommendation.remote_did,
+            action: String(recommendation.action),
+            outcome: "recommendation_applied",
+            explanation: recommendation.reason,
+            matched_rule: recommendation.match,
+            detail: { recommendation_id: recommendation.id, session_key: sessionKey }
+          });
+          return { ok: true, path: savedPath, recommendation: stored, doc: nextDoc };
+        } finally {
+          sharedStore.close();
+        }
+      }
+      if (parts[2] === "recommendations" && parts[3] === "dismiss-session" && req.method === "POST") {
+        const body = await readBody(req);
+        const sessionKey = typeof body?.session_key === "string" ? body.session_key : ctx.client.getSessionManager()?.getActiveSession()?.session_key ?? "";
+        if (!sessionKey) throw new Error("session_key is required");
+        const session = ctx.client.getSessionManager()?.get(sessionKey);
+        if (!session?.remote_did) throw new Error("No active session recommendation target");
+        const sharedStore = new LocalStore(ctx.storePath);
+        try {
+          const recommendationManager = new TrustRecommendationManager(sharedStore);
+          const recommendation = recommendationManager.list({ remoteDid: session.remote_did, status: "open", limit: 1 })[0];
+          if (!recommendation) throw new Error("No open recommendation for this session");
+          const stored = recommendationManager.dismiss(recommendation.id) ?? recommendation;
+          new TrustPolicyAuditManager(sharedStore).record({
+            event_type: "recommendation_dismissed",
+            policy_scope: recommendation.policy,
+            remote_did: recommendation.remote_did,
+            action: String(recommendation.action),
+            outcome: "recommendation_dismissed",
+            explanation: recommendation.reason,
+            matched_rule: recommendation.match,
+            detail: { recommendation_id: recommendation.id, session_key: sessionKey }
+          });
+          return { ok: true, recommendation: stored };
+        } finally {
+          sharedStore.close();
+        }
+      }
+      if (parts[2] === "recommendations" && parts[3] === "reopen-session" && req.method === "POST") {
+        const body = await readBody(req);
+        const sessionKey = typeof body?.session_key === "string" ? body.session_key : ctx.client.getSessionManager()?.getActiveSession()?.session_key ?? "";
+        if (!sessionKey) throw new Error("session_key is required");
+        const session = ctx.client.getSessionManager()?.get(sessionKey);
+        if (!session?.remote_did) throw new Error("No active session recommendation target");
+        const sharedStore = new LocalStore(ctx.storePath);
+        try {
+          const recommendationManager = new TrustRecommendationManager(sharedStore);
+          const recommendation = recommendationManager.list({ remoteDid: session.remote_did, status: ["dismissed", "superseded"], limit: 1 })[0];
+          if (!recommendation) throw new Error("No dismissed or superseded recommendation for this session");
+          const stored = recommendationManager.reopen(recommendation.id) ?? recommendation;
+          new TrustPolicyAuditManager(sharedStore).record({
+            event_type: "recommendation_reopened",
+            policy_scope: recommendation.policy,
+            remote_did: recommendation.remote_did,
+            action: String(recommendation.action),
+            outcome: "recommendation_reopened",
+            explanation: recommendation.reason,
+            matched_rule: recommendation.match,
+            detail: { recommendation_id: recommendation.id, session_key: sessionKey }
+          });
+          return { ok: true, recommendation: stored };
+        } finally {
+          sharedStore.close();
+        }
+      }
+    }
+  }
+  if (parts[0] === "public") {
+    if ((!parts[1] || parts[1] === "self") && req.method === "GET") {
+      await maybeEnsureHostedPublicLink(ctx);
+      const res = await client.getPublicSelf();
+      if (!res.ok) throw new Error(res.error?.message ?? "Failed to get public link state");
+      return res.data;
+    }
+    if (parts[1] === "link" && req.method === "POST") {
+      const body = await readBody(req);
+      const res = await client.createPublicLink({
+        slug: typeof body?.slug === "string" ? body.slug : void 0,
+        enabled: typeof body?.enabled === "boolean" ? body.enabled : void 0
+      });
+      if (!res.ok) throw new Error(res.error?.message ?? "Failed to create public link");
+      return res.data;
+    }
+    if (parts[1] === "contact-card" && req.method === "POST") {
+      const body = await readBody(req);
+      const res = await client.createContactCard({
+        target_did: typeof body?.target_did === "string" ? body.target_did : void 0,
+        referrer_did: typeof body?.referrer_did === "string" ? body.referrer_did : void 0,
+        intro_note: typeof body?.intro_note === "string" ? body.intro_note : void 0,
+        message_template: typeof body?.message_template === "string" ? body.message_template : void 0
+      });
+      if (!res.ok) throw new Error(res.error?.message ?? "Failed to create contact card");
+      return res.data;
+    }
+    if (parts[1] === "task-share" && req.method === "POST") {
+      const body = await readBody(req);
+      const res = await client.createTaskShare({
+        task_id: typeof body?.task_id === "string" ? body.task_id : void 0,
+        title: typeof body?.title === "string" ? body.title : void 0,
+        status: typeof body?.status === "string" ? body.status : void 0,
+        summary: String(body?.summary ?? "").trim(),
+        conversation_id: typeof body?.conversation_id === "string" ? body.conversation_id : void 0,
+        redacted_metadata: body?.redacted_metadata && typeof body.redacted_metadata === "object" ? body.redacted_metadata : void 0
+      });
+      if (!res.ok) throw new Error(res.error?.message ?? "Failed to create task share");
+      return res.data;
     }
   }
   if (parts[0] === "profile") {
@@ -1499,11 +2496,12 @@ async function handleApi(pathname, req, ctx) {
     if (req.method === "POST") {
       const body = await readBody(req);
       const profile = {};
-      if (body?.display_name != null) profile.display_name = body.display_name;
-      if (body?.bio != null) profile.bio = body.bio;
-      if (Array.isArray(body?.capabilities)) profile.capabilities = body.capabilities;
+      if (typeof body?.display_name === "string") profile.display_name = body.display_name;
+      if (typeof body?.bio === "string") profile.bio = body.bio;
+      if (Array.isArray(body?.capabilities)) profile.capabilities = body.capabilities.map((value) => String(value ?? "").trim()).filter(Boolean);
       else if (typeof body?.capabilities === "string") profile.capabilities = body.capabilities.split(",").map((s) => s.trim()).filter(Boolean);
-      if (Array.isArray(body?.tags)) profile.tags = body.tags;
+      if (body?.capability_card && typeof body.capability_card === "object") profile.capability_card = body.capability_card;
+      if (Array.isArray(body?.tags)) profile.tags = body.tags.map((value) => String(value ?? "").trim()).filter(Boolean);
       else if (typeof body?.tags === "string") profile.tags = body.tags.split(",").map((s) => s.trim()).filter(Boolean);
       if (typeof body?.discoverable === "boolean") profile.discoverable = body.discoverable;
       const res = await client.updateProfile(profile);