@pingagent/sdk 0.1.9 → 0.1.11

package/dist/web-server.js

@@ -8,17 +8,28 @@ import {
   decideTaskPolicy,
   defaultTrustPolicyDoc,
   ensureTokenValid,
+  getActiveSessionFilePath,
+  getSessionBindingAlertsFilePath,
+  getSessionMapFilePath,
+  getTrustRecommendationActionLabel,
   loadIdentity,
   normalizeTrustPolicyDoc,
+  readCurrentActiveSessionKey,
+  readIngressRuntimeStatus,
+  readSessionBindingAlerts,
+  readSessionBindings,
+  removeSessionBinding,
+  setSessionBinding,
   summarizeTrustPolicyAudit,
   updateStoredToken,
   upsertTrustPolicyRecommendation
-} from "./chunk-PFABO4C7.js";
+} from "./chunk-BLHMTUID.js";
 
 // src/web-server.ts
 import * as fs from "fs";
 import * as http from "http";
 import * as path from "path";
+import { spawnSync } from "child_process";
 import { SCHEMA_TEXT } from "@pingagent/schemas";
 
 // src/host-panel-html.ts
@@ -67,6 +78,30 @@ function getHostPanelHtml() {
       padding: 16px;
       box-shadow: 0 14px 40px rgba(0, 0, 0, 0.22);
     }
+    .status-strip {
+      display: flex;
+      justify-content: space-between;
+      gap: 16px;
+      align-items: flex-start;
+      flex-wrap: wrap;
+    }
+    .status-main { display: grid; gap: 8px; }
+    .status-main h2 { margin: 0; font-size: 18px; }
+    .status-state {
+      display: inline-flex;
+      align-items: center;
+      gap: 8px;
+      width: fit-content;
+      padding: 6px 12px;
+      border-radius: 999px;
+      font-size: 12px;
+      letter-spacing: 0.08em;
+      text-transform: uppercase;
+      border: 1px solid #334155;
+    }
+    .status-state.ready { background: rgba(34, 197, 94, 0.12); color: #86efac; border-color: rgba(34, 197, 94, 0.35); }
+    .status-state.degraded { background: rgba(248, 113, 113, 0.14); color: #fecaca; border-color: rgba(248, 113, 113, 0.45); }
+    .quickstart-row { display: flex; gap: 8px; flex-wrap: wrap; margin-top: 8px; }
     .card h2, .card h3 { margin: 0 0 12px; font-size: 16px; }
     .stats .value { font-size: 28px; font-weight: 700; margin-top: 6px; }
     .runtime-layout { grid-template-columns: minmax(260px, 340px) minmax(0, 1fr); align-items: start; }
@@ -81,10 +116,12 @@ function getHostPanelHtml() {
     .session-row .top, .task-row .top, .recommendation-row .top { display: flex; justify-content: space-between; gap: 12px; align-items: center; }
     .label { font-size: 11px; text-transform: uppercase; letter-spacing: 0.06em; color: #94a3b8; }
     .badge { display: inline-flex; align-items: center; padding: 2px 8px; border-radius: 999px; font-size: 11px; border: 1px solid #334155; }
+    button.badge { cursor: pointer; font: inherit; }
     .badge.trusted { background: rgba(34, 197, 94, 0.12); color: #86efac; border-color: rgba(34, 197, 94, 0.35); }
     .badge.pending { background: rgba(250, 204, 21, 0.12); color: #fde68a; border-color: rgba(250, 204, 21, 0.35); }
     .badge.blocked, .badge.revoked { background: rgba(248, 113, 113, 0.12); color: #fca5a5; border-color: rgba(248, 113, 113, 0.35); }
     .badge.stranger { background: rgba(148, 163, 184, 0.12); color: #cbd5e1; border-color: rgba(148, 163, 184, 0.35); }
+    .badge.alert { background: rgba(248, 113, 113, 0.14); color: #fecaca; border-color: rgba(248, 113, 113, 0.45); }
     .policy-grid { grid-template-columns: repeat(auto-fit, minmax(260px, 1fr)); align-items: start; }
     .two-col { display: grid; grid-template-columns: repeat(auto-fit, minmax(260px, 1fr)); gap: 16px; }
     .panel { display: none; }
@@ -145,11 +182,17 @@ function getHostPanelHtml() {
         </div>
         <div class="header-actions">
           <span class="pill" id="runtimeModePill">runtime_mode=bridge</span>
+          <span class="pill" id="receiveModePill">receive_mode=webhook</span>
           <span class="pill" id="policyPathPill">policy=\u2026</span>
+          <button class="secondary-btn" id="fixHooksBtn" style="width:auto">Fix OpenClaw Hooks</button>
+          <button class="secondary-btn" id="publicLinkBtn" style="width:auto">Public Link</button>
+          <button class="secondary-btn" id="contactCardBtn" style="width:auto">Contact Card</button>
+          <a class="secondary-btn" href="/a/demo" target="_blank" rel="noreferrer" style="width:auto">Try Demo Agent</a>
         </div>
       </div>
 
       <section id="runtimePanel" class="panel active">
+        <div class="card" id="activationCard" style="margin-bottom:16px"></div>
         <div class="grid stats" id="statsGrid"></div>
         <div class="grid runtime-layout" style="margin-top:16px">
           <div class="card">
@@ -243,6 +286,40 @@ function getHostPanelHtml() {
             <div class="audit-list" id="policyAuditList"></div>
           </div>
         </div>
+
+        <div class="card" style="margin-top:16px">
+          <h2>Profile + Capability Card</h2>
+          <div class="form-grid">
+            <label class="label">Display name</label>
+            <input id="profileDisplayName" placeholder="Agent name">
+            <label class="label">Bio</label>
+            <textarea id="profileBio" placeholder="What this agent does"></textarea>
+            <label class="label">Tags (comma separated)</label>
+            <input id="profileTags" placeholder="coding, devops">
+            <label class="label">Legacy capabilities (comma separated)</label>
+            <input id="profileCapabilities" placeholder="coding, testing">
+            <label class="label">Capability summary</label>
+            <textarea id="capabilityCardSummary" placeholder="Short machine-readable summary"></textarea>
+            <label class="label">Accepts new work</label>
+            <select id="capabilityCardAcceptsNewWork">
+              <option value="">(unspecified)</option>
+              <option value="true">true</option>
+              <option value="false">false</option>
+            </select>
+            <label class="label">Preferred contact mode</label>
+            <select id="capabilityCardContactMode">
+              <option value="">(unspecified)</option>
+              <option value="dm">dm</option>
+              <option value="task">task</option>
+              <option value="either">either</option>
+            </select>
+            <label class="label">Capability entries JSON</label>
+            <textarea id="capabilityCardItems" placeholder='[{"id":"coding","label":"Coding","accepts_tasks":true}]'></textarea>
+            <div class="row-actions">
+              <button class="action-btn" id="saveProfileBtn">Save Profile</button>
+            </div>
+          </div>
+        </div>
       </section>
     </main>
   </div>
@@ -267,6 +344,13 @@ function getHostPanelHtml() {
         .replace(/'/g, '&#39;');
     }
 
+    function parseCsvList(value) {
+      return String(value == null ? '' : value)
+        .split(',')
+        .map(function (item) { return item.trim(); })
+        .filter(Boolean);
+    }
+
     function fmtTs(value) {
       if (!value) return '-';
       try { return new Date(value).toLocaleString(); } catch { return String(value); }
@@ -328,20 +412,117 @@ function getHostPanelHtml() {
       const profileLabel = state.selectedProfile ? 'profile=' + state.selectedProfile : 'Select profile';
       const title = overview ? ('Host Panel \xB7 ' + overview.did) : 'PingAgent Host Panel';
       const tier = overview && overview.subscription ? overview.subscription.tier : null;
+      const receiveMode = overview && overview.ingressRuntime ? overview.ingressRuntime.receive_mode : 'webhook';
       document.getElementById('headerTitle').textContent = title;
       document.getElementById('headerSubtitle').textContent = overview
         ? (profileLabel + ' \xB7 ' + overview.serverUrl + (tier ? (' \xB7 tier=' + tier) : '') + ' \xB7 sessions=' + overview.sessionsTotal + ' \xB7 unread=' + overview.unreadTotal)
         : profileLabel;
       document.getElementById('runtimeModePill').textContent = overview ? ('runtime_mode=' + overview.runtimeMode) : 'runtime_mode=\u2026';
+      document.getElementById('receiveModePill').textContent = 'receive_mode=' + receiveMode;
       document.getElementById('policyPathPill').textContent = overview ? ('policy=' + overview.trustPolicyPath) : 'policy=\u2026';
+      document.getElementById('fixHooksBtn').textContent = receiveMode === 'polling_degraded' || (overview && overview.ingressRuntime && overview.ingressRuntime.hooks_last_error) ? 'Fix now' : 'Fix OpenClaw Hooks';
+    }
+
+    function ingressStatusModel(overview) {
+      const ingress = overview && overview.ingressRuntime ? overview.ingressRuntime : null;
+      const degraded = !ingress || ingress.receive_mode === 'polling_degraded' || !!ingress.hooks_last_error;
+      return {
+        degraded: degraded,
+        label: degraded ? 'Degraded' : 'Ready',
+        className: degraded ? 'degraded' : 'ready',
+        detail: degraded
+          ? (ingress && ingress.hooks_last_error ? ingress.hooks_last_error : 'Webhook ingress is degraded. Fix hooks or keep running on polling fallback.')
+          : 'Webhook ingress is healthy. New inbound messages land on the main runtime path.',
+      };
+    }
+
+    function recommendationActionLabel(item) {
+      if (!item) return 'Apply Recommendation';
+      if (item.status === 'dismissed' || item.status === 'superseded') return 'Reopen';
+      if (item.status === 'applied') return 'Applied';
+      if (item.primary_action_label) return item.primary_action_label;
+      if (item.policy === 'contact' && item.action === 'approve') return 'Approve + remember sender';
+      if (item.policy === 'contact' && item.action === 'manual') return 'Keep contact manual';
+      if (item.policy === 'contact' && item.action === 'reject') return 'Block this sender';
+      if (item.policy === 'task' && item.action === 'bridge') return 'Keep tasks manual';
+      if (item.policy === 'task' && item.action === 'execute') return 'Allow tasks from this sender';
+      if (item.policy === 'task' && item.action === 'deny') return 'Block tasks from this sender';
+      return 'Apply Recommendation';
+    }
+
+    function formatCapabilityCardEditor(card) {
+      if (!card) return '';
+      try {
+        return JSON.stringify(Array.isArray(card.capabilities) ? card.capabilities : [], null, 2);
+      } catch {
+        return '';
+      }
+    }
+
+    function renderSummaryBlock(summary) {
+      if (!summary) {
+        return '<div class="empty">No carry-forward summary yet. Save one below to make delegation and session continuation cheaper.</div>';
+      }
+      const parts = [
+        summary.objective ? '<div><span class="label">Objective</span><div style="margin-top:6px">' + esc(summary.objective) + '</div></div>' : '',
+        summary.context ? '<div><span class="label">Context</span><div style="margin-top:6px">' + esc(summary.context) + '</div></div>' : '',
+        summary.constraints ? '<div><span class="label">Constraints</span><div style="margin-top:6px">' + esc(summary.constraints) + '</div></div>' : '',
+        summary.decisions ? '<div><span class="label">Decisions</span><div style="margin-top:6px">' + esc(summary.decisions) + '</div></div>' : '',
+        summary.open_questions ? '<div><span class="label">Open Questions</span><div style="margin-top:6px">' + esc(summary.open_questions) + '</div></div>' : '',
+        summary.next_action ? '<div><span class="label">Next Action</span><div style="margin-top:6px">' + esc(summary.next_action) + '</div></div>' : '',
+        summary.handoff_ready_text ? '<div><span class="label">Handoff Ready</span><pre style="margin-top:6px">' + esc(summary.handoff_ready_text) + '</pre></div>' : '',
+      ].filter(Boolean);
+      parts.push('<div class="muted small">updated=' + esc(fmtTs(summary.updated_at)) + '</div>');
+      return parts.join('');
+    }
+
+    function renderHandoffBlock(handoff) {
+      if (!handoff) return '';
+      return '' +
+        '<div style="margin-top:8px;padding:10px 12px;border:1px solid #1d4ed8;border-radius:10px;background:rgba(30,64,175,0.18)">' +
+          '<div class="label">Handoff</div>' +
+          (handoff.objective ? '<div class="muted small" style="margin-top:6px">objective=' + esc(handoff.objective) + '</div>' : '') +
+          (handoff.priority ? '<div class="muted small">priority=' + esc(handoff.priority) + '</div>' : '') +
+          (handoff.success_criteria ? '<div class="muted small">success=' + esc(handoff.success_criteria) + '</div>' : '') +
+          (handoff.callback_session_key ? '<div class="muted small">callback=' + esc(handoff.callback_session_key) + '</div>' : '') +
+          (handoff.delegated_by || handoff.delegated_to
+            ? '<div class="muted small">delegated_by=' + esc(handoff.delegated_by || '(unknown)') + ' \xB7 delegated_to=' + esc(handoff.delegated_to || '(unknown)') + '</div>'
+            : '') +
+          (handoff.carry_forward_summary
+            ? '<pre style="margin-top:8px">' + esc(handoff.carry_forward_summary) + '</pre>'
+            : '') +
+        '</div>';
     }
 
     function renderOverview() {
       const overview = state.overview;
       if (!overview) return;
+      const ingressState = ingressStatusModel(overview);
+      document.getElementById('activationCard').innerHTML =
+        '<div class="status-strip">' +
+          '<div class="status-main">' +
+            '<h2>Activation</h2>' +
+            '<div class="status-state ' + ingressState.className + '">' + esc(ingressState.label) + '</div>' +
+            '<div class="muted small">' + esc(ingressState.detail) + '</div>' +
+            '<div class="muted small">Public link: ' + esc(overview.publicSelf && overview.publicSelf.public_url ? overview.publicSelf.public_url : '(not ready yet)') + '</div>' +
+          '</div>' +
+          '<div style="min-width:320px">' +
+            '<div class="label">Quick Start</div>' +
+            '<div class="quickstart-row">' +
+              '<button class="action-btn demo-preset-btn" data-preset="hello">Demo: hello</button>' +
+              '<button class="secondary-btn demo-preset-btn" data-preset="delegate">Demo: delegate</button>' +
+              '<button class="secondary-btn demo-preset-btn" data-preset="trust">Demo: trust</button>' +
+            '</div>' +
+            '<div class="quickstart-row">' +
+              '<button class="secondary-btn" id="copyPublicLinkBtn">Copy Public Link</button>' +
+              '<button class="secondary-btn" id="makeContactCardBtn">Share Contact Card</button>' +
+            '</div>' +
+          '</div>' +
+        '</div>';
       const subscription = overview.subscription || null;
       const stats = [
         { label: 'Plan', value: subscription ? subscription.tier : 'ghost', sub: subscription ? subscription.summary : 'subscription unavailable' },
+        { label: 'Ingress', value: overview.ingressRuntime ? overview.ingressRuntime.receive_mode : 'webhook', sub: overview.ingressRuntime && overview.ingressRuntime.reason ? overview.ingressRuntime.reason : 'OpenClaw ingress receive mode' },
         { label: 'Relay', value: subscription ? (subscription.usage.relay_today + '/' + subscription.usage.relay_limit) : '-', sub: subscription ? ('retention=' + subscription.retention_label) : 'daily relay usage' },
         { label: 'Alias', value: subscription ? (subscription.usage.alias_count + '/' + subscription.usage.alias_limit) : '-', sub: subscription ? (subscription.audit_export_allowed ? 'audit export enabled' : 'audit export off on this plan') : 'identity limits' },
         { label: 'Sessions', value: overview.sessionsTotal, sub: JSON.stringify(overview.trustCounts || {}) },
@@ -349,6 +530,7 @@ function getHostPanelHtml() {
         { label: 'Tasks', value: overview.tasksTotal, sub: 'recent local task threads' },
         { label: 'Audit', value: overview.auditSummary.total_events, sub: 'policy / runtime audit events' },
         { label: 'Recommendations', value: overview.recommendationSummary ? overview.recommendationSummary.total : overview.recommendations.length, sub: overview.recommendationSummary ? JSON.stringify(overview.recommendationSummary.by_status || {}) : 'learned policy suggestions' },
+        { label: 'Public Link', value: overview.publicSelf && overview.publicSelf.public_url ? 'ready' : 'disabled', sub: overview.publicSelf && overview.publicSelf.public_url ? overview.publicSelf.public_url : 'create a hosted shareable profile link' },
       ];
       document.getElementById('statsGrid').innerHTML = stats.map(function (item) {
         return '<div class="card"><div class="label">' + esc(item.label) + '</div><div class="value">' + esc(item.value) + '</div><div class="muted small">' + esc(item.sub) + '</div></div>';
@@ -361,11 +543,17 @@ function getHostPanelHtml() {
         if (!state.selectedSessionKey) state.selectedSessionKey = sessions[0].session_key;
         document.getElementById('sessionList').innerHTML = sessions.map(function (session) {
           const active = session.session_key === state.selectedSessionKey ? ' active' : '';
-          const badge = '<span class="badge ' + esc(session.trust_state) + '">' + esc(session.trust_state) + '</span>';
+          const badges = [
+            '<span class="badge ' + esc(session.trust_state) + '">' + esc(session.trust_state) + '</span>',
+            session.binding_alert
+              ? '<button type="button" class="badge alert rebind-badge-btn" data-session="' + esc(session.session_key) + '" data-conversation="' + esc(session.conversation_id || '') + '" data-bound-session="' + esc(session.mapped_work_session || '') + '" data-remote-did="' + esc(session.remote_did || '') + '" title="' + esc(session.binding_alert.message || 'Rebind this conversation to the current chat session') + '">Needs rebind</button>'
+              : '',
+          ].filter(Boolean).join('');
           return '<div class="session-row' + active + '" data-session="' + esc(session.session_key) + '">' +
-            '<div class="top"><strong>' + esc(session.remote_did || session.conversation_id || 'unknown') + '</strong>' + badge + '</div>' +
+            '<div class="top"><strong>' + esc(session.remote_did || session.conversation_id || 'unknown') + '</strong><div style="display:flex;gap:6px;flex-wrap:wrap;justify-content:flex-end">' + badges + '</div></div>' +
             '<div class="muted small" style="margin-top:6px">conversation=' + esc(session.conversation_id || '(none)') + '</div>' +
             '<div class="muted small">unread=' + esc(session.unread_count) + ' \xB7 last=' + esc(fmtTs(session.last_remote_activity_at || session.updated_at)) + '</div>' +
+            '<div class="muted small">work_session=' + esc(session.mapped_work_session || '(unbound)') + (session.is_active_work_session ? ' \xB7 active_chat=true' : '') + '</div>' +
             '<div class="muted small" style="margin-top:6px">' + esc(session.last_message_preview || '(no preview)') + '</div>' +
           '</div>';
         }).join('');
@@ -376,6 +564,20 @@ function getHostPanelHtml() {
             loadSession(state.selectedSessionKey);
           });
         });
+        document.getElementById('sessionList').querySelectorAll('.rebind-badge-btn').forEach(function (btn) {
+          btn.addEventListener('click', async function (event) {
+            event.stopPropagation();
+            const sessionKey = btn.getAttribute('data-session');
+            const conversationId = btn.getAttribute('data-conversation');
+            const previousBinding = btn.getAttribute('data-bound-session');
+            const remoteDid = btn.getAttribute('data-remote-did');
+            if (!sessionKey || !conversationId) return;
+            state.selectedSessionKey = sessionKey;
+            renderOverview();
+            await loadSession(sessionKey);
+            await promptBindCurrentChat(conversationId, previousBinding, remoteDid);
+          });
+        });
       }
 
       const tasks = Array.isArray(overview.tasks) ? overview.tasks : [];
@@ -386,6 +588,7 @@ function getHostPanelHtml() {
               '<div class="muted small">updated=' + esc(fmtTs(task.updated_at)) + '</div>' +
               (task.result_summary ? '<div style="margin-top:8px">' + esc(task.result_summary) + '</div>' : '') +
               (task.error_message ? '<div style="margin-top:8px;color:#fca5a5">' + esc(task.error_message) + '</div>' : '') +
+              renderHandoffBlock(task.handoff) +
             '</div>';
           }).join('')
         : '<div class="empty">No recent task threads.</div>';
@@ -403,6 +606,56 @@ function getHostPanelHtml() {
               : '') +
           '</div>' + document.getElementById('taskList').innerHTML;
       }
+
+      document.querySelectorAll('.demo-preset-btn').forEach(function (btn) {
+        btn.addEventListener('click', async function () {
+          const preset = btn.getAttribute('data-preset');
+          const result = await api('/api/runtime/demo', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({ preset: preset }),
+          });
+          window.alert(result.sent
+            ? ('Demo agent messaged.
+
+conversation=' + result.conversation_id)
+            : ('Demo agent ready.
+
+conversation=' + result.conversation_id));
+          await refreshAll();
+        });
+      });
+      const copyPublicLinkBtn = document.getElementById('copyPublicLinkBtn');
+      if (copyPublicLinkBtn) {
+        copyPublicLinkBtn.addEventListener('click', async function () {
+          const url = overview.publicSelf && overview.publicSelf.public_url ? overview.publicSelf.public_url : '';
+          if (!url) {
+            window.alert('No public link yet. Use Public Link or refresh after hosted auto-create.');
+            return;
+          }
+          try {
+            await navigator.clipboard.writeText(url);
+            window.alert('Copied public link:
+' + url);
+          } catch {
+            window.prompt('Copy public link', url);
+          }
+        });
+      }
+      const makeContactCardBtn = document.getElementById('makeContactCardBtn');
+      if (makeContactCardBtn) {
+        makeContactCardBtn.addEventListener('click', async function () {
+          const result = await api('/api/public/contact-card', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({
+              target_did: overview && overview.did ? overview.did : undefined,
+            }),
+          });
+          window.alert('Contact card ready:
+' + (result.share_url || '(missing share_url)'));
+        });
+      }
     }
 
     function renderSession() {
@@ -419,6 +672,12 @@ function getHostPanelHtml() {
       const messages = Array.isArray(detail.messages) ? detail.messages : [];
       const auditEvents = Array.isArray(detail.auditEvents) ? detail.auditEvents : [];
       const recommendations = Array.isArray(detail.recommendations) ? detail.recommendations : [];
+      const openRecommendation = recommendations.find(function (item) { return item.status === 'open'; }) || null;
+      const reopenRecommendation = recommendations.find(function (item) { return item.status === 'dismissed' || item.status === 'superseded'; }) || null;
+      const binding = detail.binding || null;
+      const bindingAlert = detail.bindingAlert || null;
+      const activeWorkSession = detail.activeWorkSession || null;
+      const summary = detail.sessionSummary || null;
 
       el.innerHTML = '' +
         '<div class="two-col">' +
@@ -429,12 +688,54 @@ function getHostPanelHtml() {
             '<div class="muted small">conversation=' + esc(session.conversation_id || '(none)') + '</div>' +
             '<div class="muted small">trust=' + esc(session.trust_state) + ' \xB7 unread=' + esc(session.unread_count) + '</div>' +
             '<div class="muted small">last activity=' + esc(fmtTs(session.last_remote_activity_at || session.updated_at)) + '</div>' +
+            '<div class="muted small" style="margin-top:8px">active_chat_session=' + esc(activeWorkSession || '(none)') + '</div>' +
+            '<div class="muted small">binding=' + esc(binding ? binding.session_key : '(unbound)') + '</div>' +
+            (openRecommendation
+              ? '<div class="muted small" style="margin-top:8px">trust_action=' + esc(recommendationActionLabel(openRecommendation)) + '</div>'
+              : (reopenRecommendation ? '<div class="muted small" style="margin-top:8px">trust_action=' + esc(recommendationActionLabel(reopenRecommendation)) + '</div>' : '')) +
+            (bindingAlert
+              ? '<div style="margin-top:10px;padding:10px 12px;border:1px solid #ef4444;border-radius:10px;background:rgba(127,29,29,0.25);color:#fecaca"><strong>Needs rebind</strong><div class="small" style="margin-top:6px">' + esc(bindingAlert.message || 'Bound work session is missing. Rebind this PingAgent conversation to the current chat session.') + '</div></div>'
+              : '') +
+            '<div class="row-actions">' +
+              (openRecommendation
+                ? '<button class="action-btn apply-session-recommendation-btn" data-session="' + esc(session.session_key) + '">' + esc(recommendationActionLabel(openRecommendation)) + '</button>'
+                : '') +
+              (openRecommendation
+                ? '<button class="danger-btn dismiss-session-recommendation-btn" data-session="' + esc(session.session_key) + '">Dismiss</button>'
+                : '') +
+              (!openRecommendation && reopenRecommendation
+                ? '<button class="secondary-btn reopen-session-recommendation-btn" data-session="' + esc(session.session_key) + '">Reopen</button>'
+                : '') +
+              '<button class="action-btn bind-current-btn" data-conversation="' + esc(session.conversation_id || '') + '">Bind Current Chat</button>' +
+              '<button class="danger-btn clear-binding-btn" data-conversation="' + esc(session.conversation_id || '') + '">Clear Binding</button>' +
+            '</div>' +
           '</div>' +
           '<div>' +
             '<div class="label">Policy Decisions</div>' +
             '<pre style="margin-top:8px">[Contact]\\naction=' + esc(contact.action) + '\\nsource=' + esc(contact.source) + (contact.matched_rule ? '\\nmatched_rule=' + esc(contact.matched_rule) : '') + '\\n' + esc(contact.explanation) + '\\n\\n[Task]\\naction=' + esc(task.action) + '\\nsource=' + esc(task.source) + (task.matched_rule ? '\\nmatched_rule=' + esc(task.matched_rule) : '') + '\\n' + esc(task.explanation) + '</pre>' +
           '</div>' +
         '</div>' +
+        '<div class="grid two-col" style="margin-top:16px">' +
+          '<div>' +
+            '<div class="label">Carry-Forward Summary</div>' +
+            '<div style="margin-top:8px">' + renderSummaryBlock(summary) + '</div>' +
+          '</div>' +
+          '<div>' +
+            '<div class="label">Update Summary</div>' +
+            '<div class="form-grid" style="margin-top:8px">' +
+              '<input id="sessionSummaryObjective" placeholder="Objective" value="' + esc(summary && summary.objective ? summary.objective : '') + '">' +
+              '<textarea id="sessionSummaryContext" placeholder="Context">' + esc(summary && summary.context ? summary.context : '') + '</textarea>' +
+              '<textarea id="sessionSummaryConstraints" placeholder="Constraints">' + esc(summary && summary.constraints ? summary.constraints : '') + '</textarea>' +
+              '<textarea id="sessionSummaryDecisions" placeholder="Decisions">' + esc(summary && summary.decisions ? summary.decisions : '') + '</textarea>' +
+              '<textarea id="sessionSummaryOpenQuestions" placeholder="Open questions">' + esc(summary && summary.open_questions ? summary.open_questions : '') + '</textarea>' +
+              '<textarea id="sessionSummaryNextAction" placeholder="Next action">' + esc(summary && summary.next_action ? summary.next_action : '') + '</textarea>' +
+              '<textarea id="sessionSummaryHandoff" placeholder="Handoff-ready summary">' + esc(summary && summary.handoff_ready_text ? summary.handoff_ready_text : '') + '</textarea>' +
+              '<div class="row-actions">' +
+                '<button class="action-btn" id="saveSessionSummaryBtn">Save Summary</button>' +
+              '</div>' +
+            '</div>' +
+          '</div>' +
+        '</div>' +
         '<div class="grid two-col" style="margin-top:16px">' +
           '<div><div class="label">Task Threads</div><div class="task-list" style="margin-top:8px">' +
             (tasks.length ? tasks.map(function (taskItem) {
@@ -442,15 +743,26 @@ function getHostPanelHtml() {
                 '<div class="muted small">updated=' + esc(fmtTs(taskItem.updated_at)) + '</div>' +
                 (taskItem.result_summary ? '<div style="margin-top:8px">' + esc(taskItem.result_summary) + '</div>' : '') +
                 (taskItem.error_message ? '<div style="margin-top:8px;color:#fca5a5">' + esc(taskItem.error_message) + '</div>' : '') +
+                renderHandoffBlock(taskItem.handoff) +
               '</div>';
             }).join('') : '<div class="empty">No tasks in this session.</div>') +
           '</div></div>' +
           '<div><div class="label">Learned Recommendations</div><div class="recommendation-list" style="margin-top:8px">' +
             (recommendations.length ? recommendations.map(function (item) {
+              const actionButton = item.status === 'open'
+                ? '<button class="action-btn apply-session-recommendation-btn" data-session="' + esc(session.session_key) + '">' + esc(recommendationActionLabel(item)) + '</button>'
+                : '';
+              const dismissButton = item.status === 'open'
+                ? '<button class="danger-btn dismiss-session-recommendation-btn" data-session="' + esc(session.session_key) + '">Dismiss</button>'
+                : '';
+              const reopenButton = (item.status === 'dismissed' || item.status === 'superseded')
+                ? '<button class="secondary-btn reopen-session-recommendation-btn" data-session="' + esc(session.session_key) + '">Reopen</button>'
+                : '';
               return '<div class="recommendation-row"><div class="top"><strong>' + esc(item.policy) + '</strong><span class="badge">' + esc(item.status + ' \xB7 ' + item.action) + '</span></div>' +
                 '<div class="muted small">current=' + esc(item.current_action) + ' \xB7 confidence=' + esc(item.confidence) + '</div>' +
                 '<div class="muted small">match=' + esc(item.match) + '</div>' +
                 '<div style="margin-top:8px">' + esc(item.reason) + '</div>' +
+                '<div class="row-actions">' + actionButton + dismissButton + reopenButton + '</div>' +
               '</div>';
             }).join('') : '<div class="empty">No learned recommendation for this session.</div>') +
           '</div></div>' +
@@ -473,13 +785,130 @@ function getHostPanelHtml() {
             }).join('') : '<div class="empty">No audit events for this session.</div>') +
           '</div></div>' +
         '</div>';
+
+      el.querySelectorAll('.bind-current-btn').forEach(function (btn) {
+        btn.addEventListener('click', async function () {
+          const conversationId = btn.getAttribute('data-conversation');
+          if (!conversationId) return;
+          await promptBindCurrentChat(conversationId);
+        });
+      });
+      el.querySelectorAll('.clear-binding-btn').forEach(function (btn) {
+        btn.addEventListener('click', async function () {
+          await api('/api/runtime/session-bindings/clear', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({ conversation_id: btn.getAttribute('data-conversation') }),
+          });
+          await refreshAll();
+          setTab('runtime');
+        });
+      });
+      el.querySelectorAll('.apply-session-recommendation-btn').forEach(function (btn) {
+        btn.addEventListener('click', async function () {
+          await api('/api/runtime/policy/recommendations/apply-session', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({ session_key: btn.getAttribute('data-session') }),
+          });
+          await refreshAll();
+          setTab('runtime');
+        });
+      });
+      el.querySelectorAll('.dismiss-session-recommendation-btn').forEach(function (btn) {
+        btn.addEventListener('click', async function () {
+          await api('/api/runtime/policy/recommendations/dismiss-session', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({ session_key: btn.getAttribute('data-session') }),
+          });
+          await refreshAll();
+          setTab('runtime');
+        });
+      });
+      el.querySelectorAll('.reopen-session-recommendation-btn').forEach(function (btn) {
+        btn.addEventListener('click', async function () {
+          await api('/api/runtime/policy/recommendations/reopen-session', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({ session_key: btn.getAttribute('data-session') }),
+          });
+          await refreshAll();
+          setTab('runtime');
+        });
+      });
+      const saveSessionSummaryBtn = document.getElementById('saveSessionSummaryBtn');
+      if (saveSessionSummaryBtn) {
+        saveSessionSummaryBtn.addEventListener('click', async function () {
+          await api('/api/runtime/session-summary', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+              body: JSON.stringify({
+                session_key: session.session_key,
+                objective: document.getElementById('sessionSummaryObjective').value.trim(),
+                context: document.getElementById('sessionSummaryContext').value.trim(),
+                constraints: document.getElementById('sessionSummaryConstraints').value.trim(),
+                decisions: document.getElementById('sessionSummaryDecisions').value.trim(),
+                open_questions: document.getElementById('sessionSummaryOpenQuestions').value.trim(),
+                next_action: document.getElementById('sessionSummaryNextAction').value.trim(),
+                handoff_ready_text: document.getElementById('sessionSummaryHandoff').value.trim(),
+              }),
+            });
+          await refreshAll();
+          setTab('runtime');
+        });
+      }
+    }
+
+    async function promptBindCurrentChat(conversationId, previousBinding, remoteDid) {
+      const current = state.session && state.session.activeWorkSession
+        ? state.session.activeWorkSession
+        : (state.overview && state.overview.activeWorkSession ? state.overview.activeWorkSession : null);
+      const previous = previousBinding || (state.session && state.session.binding ? state.session.binding.session_key : null) || '(unbound)';
+      const targetRemoteDid = remoteDid || (state.session && state.session.session ? state.session.session.remote_did : null) || '(unknown)';
+      const confirmed = window.confirm(
+        'Rebind this PingAgent conversation to the current chat session?' +
+        '
+
+Conversation: ' + conversationId +
+        '
+Remote DID: ' + targetRemoteDid +
+        '
+
+Current chat: ' + (current || '(none)') +
+        '
+Previous binding: ' + previous
+      );
+      if (!confirmed) return;
+      await api('/api/runtime/session-bindings/bind-current', {
+        method: 'POST',
+        headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify({ conversation_id: conversationId }),
+      });
+      await refreshAll();
+      setTab('runtime');
     }
 
     function renderPolicy() {
       const policy = state.policy;
       if (!policy) return;
+      const profile = state.overview && state.overview.profile ? state.overview.profile : null;
       document.getElementById('contactDefault').value = policy.doc.contact_policy.default_action;
       document.getElementById('taskDefault').value = policy.doc.task_policy.default_action;
+      document.getElementById('profileDisplayName').value = profile && profile.display_name ? profile.display_name : '';
+      document.getElementById('profileBio').value = profile && profile.bio ? profile.bio : '';
+      document.getElementById('profileTags').value = profile && Array.isArray(profile.tags) ? profile.tags.join(', ') : '';
+      document.getElementById('profileCapabilities').value = profile && Array.isArray(profile.capabilities) ? profile.capabilities.join(', ') : '';
+      document.getElementById('capabilityCardSummary').value = profile && profile.capability_card && profile.capability_card.summary ? profile.capability_card.summary : '';
+      document.getElementById('capabilityCardAcceptsNewWork').value =
+        profile && profile.capability_card && typeof profile.capability_card.accepts_new_work === 'boolean'
+          ? String(profile.capability_card.accepts_new_work)
+          : '';
+      document.getElementById('capabilityCardContactMode').value =
+        profile && profile.capability_card && profile.capability_card.preferred_contact_mode
+          ? profile.capability_card.preferred_contact_mode
+          : '';
+      document.getElementById('capabilityCardItems').value = formatCapabilityCardEditor(profile && profile.capability_card ? profile.capability_card : null);
 
       const rules = [];
       policy.doc.contact_policy.rules.forEach(function (rule) {
@@ -520,7 +949,7 @@ function getHostPanelHtml() {
             if (!list.length) return '';
             return '<div><div class="label" style="margin-bottom:8px">' + esc(status) + '</div>' + list.map(function (item) {
               const applyButton = status !== 'applied'
-                ? '<button class="action-btn apply-recommendation-btn" data-recommendation-id="' + esc(item.id) + '">Apply</button>'
+                ? '<button class="action-btn apply-recommendation-btn" data-recommendation-id="' + esc(item.id) + '">' + esc(recommendationActionLabel(item)) + '</button>'
                 : '';
               const dismissButton = status === 'open'
                 ? '<button class="danger-btn dismiss-recommendation-btn" data-recommendation-id="' + esc(item.id) + '">Dismiss</button>'
@@ -582,6 +1011,45 @@ function getHostPanelHtml() {
         : '<div class="empty">No audit events yet.</div>';
 
       updateRuleActionOptions();
+
+      const saveProfileBtn = document.getElementById('saveProfileBtn');
+      if (saveProfileBtn) {
+        saveProfileBtn.onclick = async function () {
+          let capabilityItems = [];
+          const rawItems = document.getElementById('capabilityCardItems').value.trim();
+          if (rawItems) {
+            try {
+              const parsed = JSON.parse(rawItems);
+              if (!Array.isArray(parsed)) throw new Error('Capability entries JSON must be an array.');
+              capabilityItems = parsed;
+            } catch (err) {
+              window.alert(err && err.message ? err.message : 'Invalid capability entries JSON');
+              return;
+            }
+          }
+          const acceptsNewWorkValue = document.getElementById('capabilityCardAcceptsNewWork').value;
+          const capabilityCard = {
+            version: '1',
+            summary: document.getElementById('capabilityCardSummary').value.trim() || undefined,
+            accepts_new_work: acceptsNewWorkValue === '' ? undefined : acceptsNewWorkValue === 'true',
+            preferred_contact_mode: document.getElementById('capabilityCardContactMode').value || undefined,
+            capabilities: capabilityItems,
+          };
+          await api('/api/profile', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({
+              display_name: document.getElementById('profileDisplayName').value.trim() || undefined,
+              bio: document.getElementById('profileBio').value.trim() || undefined,
+              tags: parseCsvList(document.getElementById('profileTags').value),
+              capabilities: parseCsvList(document.getElementById('profileCapabilities').value),
+              capability_card: capabilityCard,
+            }),
+          });
+          await refreshAll();
+          setTab('policy');
+        };
+      }
     }
 
     function updateRuleActionOptions() {
@@ -668,6 +1136,46 @@ function getHostPanelHtml() {
       document.getElementById('simulateOutput').textContent = JSON.stringify(result, null, 2);
       setTab('policy');
     });
+    document.getElementById('fixHooksBtn').addEventListener('click', async function () {
+      const confirmed = window.confirm('Repair OpenClaw hooks config now? A timestamped backup of openclaw.json will be written first.');
+      if (!confirmed) return;
+      const result = await api('/api/runtime/openclaw/fix-hooks', { method: 'POST' });
+      window.alert((result.ok ? 'Hooks repaired.
+
+' : 'Hooks repair reported an error.
+
+') + (result.stdout || result.stderr || 'No output'));
+      await refreshAll();
+    });
+    document.getElementById('publicLinkBtn').addEventListener('click', async function () {
+      const suggested = state.overview && state.overview.publicSelf && state.overview.publicSelf.public_slug
+        ? state.overview.publicSelf.public_slug
+        : '';
+      const slug = window.prompt('Public share slug (leave empty to use the recommended value):', suggested);
+      if (slug == null) return;
+      const result = await api('/api/public/link', {
+        method: 'POST',
+        headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify({ slug: slug.trim() || undefined, enabled: true }),
+      });
+      window.alert('Public link ready:
+' + (result.public_url || '(missing public_url)'));
+      await refreshAll();
+    });
+    document.getElementById('contactCardBtn').addEventListener('click', async function () {
+      const intro = window.prompt('Optional intro note for this contact card:', '');
+      if (intro == null) return;
+      const result = await api('/api/public/contact-card', {
+        method: 'POST',
+        headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify({
+          target_did: state.overview && state.overview.did ? state.overview.did : undefined,
+          intro_note: intro.trim() || undefined,
+        }),
+      });
+      window.alert('Contact card ready:
+' + (result.share_url || '(missing share_url)'));
+    });
 
     async function init() {
       await loadProfiles();
@@ -691,6 +1199,29 @@ function resolvePath(p) {
   if (!p || !p.startsWith("~")) return p;
   return path.join(process.env.HOME || process.env.USERPROFILE || "", p.slice(1));
 }
+function findOpenClawInstallScript() {
+  const explicit = process.env.PINGAGENT_OPENCLAW_INSTALL_BIN?.trim();
+  if (explicit) return { kind: "script", cmd: process.execPath, args: [path.resolve(explicit)] };
+  const repoScript = path.resolve(process.cwd(), "packages", "openclaw-install", "install.mjs");
+  if (fs.existsSync(repoScript)) return { kind: "script", cmd: process.execPath, args: [repoScript] };
+  return null;
+}
+function runOpenClawInstall(args) {
+  const resolved = findOpenClawInstallScript();
+  if (!resolved) {
+    return { ok: false, stdout: "", stderr: "OpenClaw installer script not found locally. Set PINGAGENT_OPENCLAW_INSTALL_BIN." };
+  }
+  const result = spawnSync(resolved.cmd, [...resolved.args, ...args], {
+    encoding: "utf-8",
+    env: process.env
+  });
+  return {
+    ok: result.status === 0,
+    stdout: String(result.stdout ?? ""),
+    stderr: String(result.stderr ?? ""),
+    status: result.status ?? 1
+  };
+}
 function listProfiles(rootDir) {
   const root = resolvePath(rootDir);
   const profiles = [];
@@ -749,6 +1280,30 @@ function listProfiles(rootDir) {
   return profiles;
 }
 var DEFAULT_SERVER_URL = "https://pingagent.chat";
+var OFFICIAL_HOSTED_ORIGIN = new URL(DEFAULT_SERVER_URL).origin;
+var autoPublicLinkAttempts = /* @__PURE__ */ new Set();
+function normalizeOrigin(input) {
+  try {
+    return new URL(String(input ?? "")).origin;
+  } catch {
+    return null;
+  }
+}
+function isOfficialHostedServer(serverUrl) {
+  return normalizeOrigin(serverUrl) === OFFICIAL_HOSTED_ORIGIN;
+}
+async function maybeEnsureHostedPublicLink(ctx) {
+  if (!isOfficialHostedServer(ctx.serverUrl)) return;
+  const key = `${ctx.identityPath}:${normalizeOrigin(ctx.serverUrl)}`;
+  if (autoPublicLinkAttempts.has(key)) return;
+  autoPublicLinkAttempts.add(key);
+  try {
+    const current = await ctx.client.getPublicSelf().catch(() => ({ ok: false }));
+    if (current.ok && current.data?.public_slug) return;
+    await ctx.client.createPublicLink({ enabled: true }).catch(() => ({ ok: false }));
+  } catch {
+  }
+}
 async function getContextForProfile(profile, defaultServerUrl) {
   const identity = loadIdentity(profile.identityPath);
   const serverUrl = identity.serverUrl ?? defaultServerUrl ?? DEFAULT_SERVER_URL;
@@ -954,11 +1509,14 @@ function describeHostedTier(tier) {
 }
 async function buildRuntimeOverviewPayload(ctx) {
   const client = ctx.client;
+  await maybeEnsureHostedPublicLink(ctx);
   await client.listConversations({ type: "dm" });
   const sessionManager = client.getSessionManager();
+  const sessionSummaryManager = client.getSessionSummaryManager();
   const taskManager = client.getTaskThreadManager();
+  const taskHandoffManager = client.getTaskHandoffManager();
   const historyManager = client.getHistoryManager();
-  if (!sessionManager || !taskManager || !historyManager) {
+  if (!sessionManager || !sessionSummaryManager || !taskManager || !taskHandoffManager || !historyManager) {
     throw new Error("Runtime overview requires a writable local store");
   }
   const sessions = sessionManager.listRecentSessions(24);
@@ -981,6 +1539,10 @@ async function buildRuntimeOverviewPayload(ctx) {
   const runtimeMode = getRuntimeMode();
   const subRes = await client.getSubscription().catch(() => ({ ok: false }));
   const subscription = subRes.ok && subRes.data ? subRes.data : null;
+  const publicSelfRes = await client.getPublicSelf().catch(() => ({ ok: false }));
+  const publicSelf = publicSelfRes.ok && publicSelfRes.data ? publicSelfRes.data : null;
+  const profileRes = await client.getProfile().catch(() => ({ ok: false }));
+  const profile = profileRes.ok && profileRes.data ? profileRes.data : null;
   const recommendationState = syncTrustRecommendations(ctx.storePath, {
     policyDoc: policy,
     sessions,
@@ -990,6 +1552,12 @@ async function buildRuntimeOverviewPayload(ctx) {
     limit: 12
   });
   const unreadTotal = sessions.reduce((sum, session) => sum + session.unread_count, 0);
+  const sessionBindings = readSessionBindings();
+  const sessionBindingAlerts = readSessionBindingAlerts();
+  const ingressRuntime = readIngressRuntimeStatus();
+  const activeWorkSession = readCurrentActiveSessionKey();
+  const bindingByConversation = new Map(sessionBindings.map((row) => [row.conversation_id, row.session_key]));
+  const bindingAlertByConversation = new Map(sessionBindingAlerts.map((row) => [row.conversation_id, row]));
   const trustCounts = sessions.reduce((acc, session) => {
     acc[session.trust_state] = (acc[session.trust_state] ?? 0) + 1;
     return acc;
@@ -999,6 +1567,13 @@ async function buildRuntimeOverviewPayload(ctx) {
     serverUrl: ctx.serverUrl,
     runtimeMode,
     trustPolicyPath: getTrustPolicyPath(ctx.identityPath),
+    activeWorkSessionFile: getActiveSessionFilePath(),
+    activeWorkSession,
+    ingressRuntime,
+    sessionMapPath: getSessionMapFilePath(),
+    sessionBindingAlertsPath: getSessionBindingAlertsFilePath(),
+    sessionBindings,
+    sessionBindingAlerts,
     subscription: subscription ? {
       tier: subscription.tier,
       summary: describeHostedTier(subscription.tier),
@@ -1010,6 +1585,8 @@ async function buildRuntimeOverviewPayload(ctx) {
       retention_label: formatRetentionLabel(subscription.limits.store_forward_ttl_ms),
       audit_export_allowed: !!subscription.limits.audit_export_allowed
     } : null,
+    publicSelf,
+    profile,
     policyDefaults: {
       contact: policy.contact_policy.enabled ? policy.contact_policy.default_action : "disabled",
       task: policy.task_policy.enabled ? policy.task_policy.default_action : "disabled"
@@ -1021,19 +1598,31 @@ async function buildRuntimeOverviewPayload(ctx) {
     recommendationSummary: recommendationState.summary,
     sessions: sessions.map((session) => ({
       ...session,
+      session_summary: sessionSummaryManager.get(session.session_key),
+      mapped_work_session: session.conversation_id ? bindingByConversation.get(session.conversation_id) ?? null : null,
+      binding_alert: session.conversation_id ? bindingAlertByConversation.get(session.conversation_id) ?? null : null,
+      is_active_work_session: session.session_key === activeWorkSession,
       latest_messages: session.conversation_id ? historyManager.listRecent(session.conversation_id, 3) : []
     })),
-    tasks: refreshedTasks,
+    tasks: refreshedTasks.map((task) => ({
+      ...task,
+      handoff: taskHandoffManager.get(task.task_id)
+    })),
     auditSummary,
-    recommendations: recommendationState.recommendations
+    recommendations: recommendationState.recommendations.map((item) => ({
+      ...item,
+      primary_action_label: getTrustRecommendationActionLabel(item)
+    }))
   };
 }
 async function buildSessionOverviewPayload(ctx, sessionKey) {
   const client = ctx.client;
   const sessionManager = client.getSessionManager();
+  const sessionSummaryManager = client.getSessionSummaryManager();
   const taskManager = client.getTaskThreadManager();
+  const taskHandoffManager = client.getTaskHandoffManager();
   const historyManager = client.getHistoryManager();
-  if (!sessionManager || !taskManager || !historyManager) {
+  if (!sessionManager || !sessionSummaryManager || !taskManager || !taskHandoffManager || !historyManager) {
     throw new Error("Session overview requires a writable local store");
   }
   const session = sessionKey ? sessionManager.get(sessionKey) : sessionManager.getActiveSession() ?? sessionManager.listRecentSessions(1)[0] ?? null;
@@ -1054,6 +1643,11 @@ async function buildSessionOverviewPayload(ctx, sessionKey) {
     auditStore.close();
   }
   const policy = readTrustPolicyDoc(ctx.identityPath);
+  const bindings = readSessionBindings();
+  const bindingAlerts = readSessionBindingAlerts();
+  const binding = session.conversation_id ? bindings.find((row) => row.conversation_id === session.conversation_id) ?? null : null;
+  const bindingAlert = session.conversation_id ? bindingAlerts.find((row) => row.conversation_id === session.conversation_id) ?? null : null;
+  const activeWorkSession = readCurrentActiveSessionKey();
   const recommendationState = syncTrustRecommendations(ctx.storePath, {
     policyDoc: policy,
     sessions: sessionManager.listRecentSessions(50),
@@ -1064,11 +1658,25 @@ async function buildSessionOverviewPayload(ctx, sessionKey) {
   });
   return {
     session,
+    sessionSummary: sessionSummaryManager.get(session.session_key),
+    ingressRuntime: readIngressRuntimeStatus(),
+    binding,
+    bindingAlert,
+    activeWorkSession,
+    activeWorkSessionFile: getActiveSessionFilePath(),
+    sessionMapPath: getSessionMapFilePath(),
+    sessionBindingAlertsPath: getSessionBindingAlertsFilePath(),
     policyExplain: buildPolicyDecisionShape(ctx.identityPath, session.remote_did, { runtimeMode: getRuntimeMode() }),
-    tasks,
+    tasks: tasks.map((task) => ({
+      ...task,
+      handoff: taskHandoffManager.get(task.task_id)
+    })),
     messages,
     auditEvents,
-    recommendations: recommendationState.recommendations.filter((item) => item.remote_did === session.remote_did)
+    recommendations: recommendationState.recommendations.filter((item) => item.remote_did === session.remote_did).map((item) => ({
+      ...item,
+      primary_action_label: getTrustRecommendationActionLabel(item)
+    }))
   };
 }
 async function handleApi(pathname, req, ctx) {
@@ -1081,14 +1689,158 @@ async function handleApi(pathname, req, ctx) {
     return { did: myDid, serverUrl };
   }
   if (parts[0] === "runtime") {
+    if (parts[1] === "session-summary") {
+      const sessionManager = client.getSessionManager();
+      const sessionSummaryManager = client.getSessionSummaryManager();
+      if (!sessionManager || !sessionSummaryManager) throw new Error("Session summary requires a writable local store");
+      const url = new URL(req.url || "", "http://x");
+      const body = req.method === "POST" ? await readBody(req) : null;
+      const sessionKey = String(
+        body?.session_key ?? url.searchParams.get("session_key") ?? ""
+      ).trim();
+      const conversationId = String(
+        body?.conversation_id ?? url.searchParams.get("conversation_id") ?? ""
+      ).trim();
+      const remoteDid = String(
+        body?.remote_did ?? url.searchParams.get("remote_did") ?? ""
+      ).trim();
+      const session = sessionKey ? sessionManager.get(sessionKey) : conversationId ? sessionManager.getByConversationId(conversationId) : remoteDid ? sessionManager.listRecentSessions(100).find((item) => item.remote_did === remoteDid) ?? null : sessionManager.getActiveSession() ?? sessionManager.listRecentSessions(1)[0] ?? null;
+      if (!session) throw new Error("No session available");
+      if (req.method === "GET") {
+        return { session, summary: sessionSummaryManager.get(session.session_key) };
+      }
+      const summary = sessionSummaryManager.upsert({
+        session_key: session.session_key,
+        objective: typeof body?.objective === "string" ? body.objective : void 0,
+        context: typeof body?.context === "string" ? body.context : void 0,
+        constraints: typeof body?.constraints === "string" ? body.constraints : void 0,
+        decisions: typeof body?.decisions === "string" ? body.decisions : void 0,
+        open_questions: typeof body?.open_questions === "string" ? body.open_questions : void 0,
+        next_action: typeof body?.next_action === "string" ? body.next_action : void 0,
+        handoff_ready_text: typeof body?.handoff_ready_text === "string" ? body.handoff_ready_text : void 0
+      });
+      return { ok: true, session, summary };
+    }
     if (!parts[1] || parts[1] === "overview") {
       return buildRuntimeOverviewPayload(ctx);
     }
+    if (parts[1] === "receive-mode" && req.method === "GET") {
+      return {
+        runtimeStatusPath: path.resolve(process.env.IM_INGRESS_RUNTIME_STATUS_FILE || ""),
+        status: readIngressRuntimeStatus()
+      };
+    }
+    if (parts[1] === "demo" && req.method === "POST") {
+      const body = await readBody(req);
+      const preset = typeof body?.preset === "string" ? body.preset.trim().toLowerCase() : "";
+      const presetMessages = {
+        hello: "Hello",
+        delegate: "Please show me how task delegation works in PingAgent.",
+        trust: "Show me how trust decisions and recommendations work."
+      };
+      const resolved = await client.resolveAlias("pingagent/demo");
+      if (!resolved.ok || !resolved.data?.did) {
+        throw new Error(resolved.error?.message ?? "Failed to resolve demo agent");
+      }
+      const convo = await client.openConversation(resolved.data.did);
+      if (!convo.ok || !convo.data?.conversation_id) {
+        throw new Error(convo.error?.message ?? "Failed to open demo conversation");
+      }
+      const message = typeof body?.message === "string" && body.message.trim() ? body.message.trim() : presetMessages[preset] ?? "";
+      if (!message) {
+        return {
+          ok: true,
+          did: resolved.data.did,
+          conversation_id: convo.data.conversation_id,
+          preset: preset || null,
+          sent: false
+        };
+      }
+      const sendRes = await client.sendMessage(convo.data.conversation_id, SCHEMA_TEXT, { text: message });
+      if (!sendRes.ok) {
+        throw new Error(sendRes.error?.message ?? "Failed to send demo message");
+      }
+      return {
+        ok: true,
+        did: resolved.data.did,
+        conversation_id: convo.data.conversation_id,
+        preset: preset || null,
+        sent: true,
+        message_id: sendRes.data?.message_id ?? null
+      };
+    }
+    if (parts[1] === "openclaw" && parts[2] === "fix-hooks" && req.method === "POST") {
+      const result = runOpenClawInstall(["fix-hooks"]);
+      return {
+        ok: result.ok,
+        stdout: result.stdout,
+        stderr: result.stderr,
+        status: result.status,
+        receiveMode: readIngressRuntimeStatus()
+      };
+    }
     if (parts[1] === "session") {
       const url = new URL(req.url || "", "http://x");
       const sessionKey = url.searchParams.get("session_key");
       return buildSessionOverviewPayload(ctx, sessionKey);
     }
+    if (parts[1] === "session-bindings") {
+      if ((!parts[2] || parts[2] === "list") && req.method === "GET") {
+        const url = new URL(req.url || "", "http://x");
+        const conversationId = url.searchParams.get("conversation_id");
+        const rows = conversationId ? readSessionBindings().filter((row) => row.conversation_id === conversationId) : readSessionBindings();
+        return {
+          activeWorkSessionFile: getActiveSessionFilePath(),
+          activeWorkSession: readCurrentActiveSessionKey(),
+          sessionMapPath: getSessionMapFilePath(),
+          sessionBindingAlertsPath: getSessionBindingAlertsFilePath(),
+          alerts: conversationId ? readSessionBindingAlerts().filter((row) => row.conversation_id === conversationId) : readSessionBindingAlerts(),
+          bindings: rows
+        };
+      }
+      if (parts[2] === "bind-current" && req.method === "POST") {
+        const body = await readBody(req);
+        const conversationId = String(body?.conversation_id ?? "").trim();
+        if (!conversationId) throw new Error("conversation_id is required");
+        const current = readCurrentActiveSessionKey();
+        if (!current) {
+          throw new Error(`No active OpenClaw chat session found in ${getActiveSessionFilePath()}`);
+        }
+        const result = setSessionBinding(conversationId, current);
+        return {
+          ok: true,
+          activeWorkSessionFile: getActiveSessionFilePath(),
+          activeWorkSession: current,
+          sessionMapPath: result.path,
+          binding: result.binding
+        };
+      }
+      if (parts[2] === "set" && req.method === "POST") {
+        const body = await readBody(req);
+        const conversationId = String(body?.conversation_id ?? "").trim();
+        const sessionKey = String(body?.session_key ?? "").trim();
+        if (!conversationId || !sessionKey) throw new Error("conversation_id and session_key are required");
+        const result = setSessionBinding(conversationId, sessionKey);
+        return {
+          ok: true,
+          activeWorkSessionFile: getActiveSessionFilePath(),
+          activeWorkSession: readCurrentActiveSessionKey(),
+          sessionMapPath: result.path,
+          binding: result.binding
+        };
+      }
+      if (parts[2] === "clear" && req.method === "POST") {
+        const body = await readBody(req);
+        const conversationId = String(body?.conversation_id ?? "").trim();
+        if (!conversationId) throw new Error("conversation_id is required");
+        const result = removeSessionBinding(conversationId);
+        return {
+          ok: true,
+          removed: result.removed,
+          sessionMapPath: result.path
+        };
+      }
+    }
     if (parts[1] === "policy") {
       const policyPath = getTrustPolicyPath(ctx.identityPath);
       const runtimeMode = getRuntimeMode();
@@ -1118,7 +1870,10 @@ async function handleApi(pathname, req, ctx) {
             auditSummary: summarizeTrustPolicyAudit(auditEvents),
             auditEvents,
             recommendationSummary: recommendationState.summary,
-            recommendations: recommendationState.recommendations
+            recommendations: recommendationState.recommendations.map((item) => ({
+              ...item,
+              primary_action_label: getTrustRecommendationActionLabel(item)
+            }))
           };
         } finally {
           auditStore.close();
@@ -1316,6 +2071,141 @@ async function handleApi(pathname, req, ctx) {
           }
         };
       }
+      if (parts[2] === "recommendations" && parts[3] === "apply-session" && req.method === "POST") {
+        const body = await readBody(req);
+        const sessionKey = typeof body?.session_key === "string" ? body.session_key : ctx.client.getSessionManager()?.getActiveSession()?.session_key ?? "";
+        if (!sessionKey) throw new Error("session_key is required");
+        const session = ctx.client.getSessionManager()?.get(sessionKey);
+        if (!session?.remote_did) throw new Error("No active session recommendation target");
+        const doc = readTrustPolicyDoc(ctx.identityPath);
+        const sharedStore = new LocalStore(ctx.storePath);
+        try {
+          const auditManager = new TrustPolicyAuditManager(sharedStore);
+          const recommendationManager = new TrustRecommendationManager(sharedStore);
+          const auditEvents = auditManager.listRecent(200);
+          recommendationManager.sync({
+            policyDoc: doc,
+            sessions: sessionManager.listRecentSessions(100),
+            tasks: taskManager.listRecent(100),
+            auditEvents,
+            runtimeMode,
+            limit: 50
+          });
+          const recommendation = recommendationManager.list({ remoteDid: session.remote_did, status: "open", limit: 1 })[0];
+          if (!recommendation) throw new Error("No open recommendation for this session");
+          const nextDoc = upsertTrustPolicyRecommendation(doc, recommendation);
+          const savedPath = writeTrustPolicyDoc(ctx.identityPath, nextDoc);
+          const stored = recommendationManager.apply(recommendation.id) ?? recommendation;
+          auditManager.record({
+            event_type: "recommendation_applied",
+            policy_scope: recommendation.policy,
+            remote_did: recommendation.remote_did,
+            action: String(recommendation.action),
+            outcome: "recommendation_applied",
+            explanation: recommendation.reason,
+            matched_rule: recommendation.match,
+            detail: { recommendation_id: recommendation.id, session_key: sessionKey }
+          });
+          return { ok: true, path: savedPath, recommendation: stored, doc: nextDoc };
+        } finally {
+          sharedStore.close();
+        }
+      }
+      if (parts[2] === "recommendations" && parts[3] === "dismiss-session" && req.method === "POST") {
+        const body = await readBody(req);
+        const sessionKey = typeof body?.session_key === "string" ? body.session_key : ctx.client.getSessionManager()?.getActiveSession()?.session_key ?? "";
+        if (!sessionKey) throw new Error("session_key is required");
+        const session = ctx.client.getSessionManager()?.get(sessionKey);
+        if (!session?.remote_did) throw new Error("No active session recommendation target");
+        const sharedStore = new LocalStore(ctx.storePath);
+        try {
+          const recommendationManager = new TrustRecommendationManager(sharedStore);
+          const recommendation = recommendationManager.list({ remoteDid: session.remote_did, status: "open", limit: 1 })[0];
+          if (!recommendation) throw new Error("No open recommendation for this session");
+          const stored = recommendationManager.dismiss(recommendation.id) ?? recommendation;
+          new TrustPolicyAuditManager(sharedStore).record({
+            event_type: "recommendation_dismissed",
+            policy_scope: recommendation.policy,
+            remote_did: recommendation.remote_did,
+            action: String(recommendation.action),
+            outcome: "recommendation_dismissed",
+            explanation: recommendation.reason,
+            matched_rule: recommendation.match,
+            detail: { recommendation_id: recommendation.id, session_key: sessionKey }
+          });
+          return { ok: true, recommendation: stored };
+        } finally {
+          sharedStore.close();
+        }
+      }
+      if (parts[2] === "recommendations" && parts[3] === "reopen-session" && req.method === "POST") {
+        const body = await readBody(req);
+        const sessionKey = typeof body?.session_key === "string" ? body.session_key : ctx.client.getSessionManager()?.getActiveSession()?.session_key ?? "";
+        if (!sessionKey) throw new Error("session_key is required");
+        const session = ctx.client.getSessionManager()?.get(sessionKey);
+        if (!session?.remote_did) throw new Error("No active session recommendation target");
+        const sharedStore = new LocalStore(ctx.storePath);
+        try {
+          const recommendationManager = new TrustRecommendationManager(sharedStore);
+          const recommendation = recommendationManager.list({ remoteDid: session.remote_did, status: ["dismissed", "superseded"], limit: 1 })[0];
+          if (!recommendation) throw new Error("No dismissed or superseded recommendation for this session");
+          const stored = recommendationManager.reopen(recommendation.id) ?? recommendation;
+          new TrustPolicyAuditManager(sharedStore).record({
+            event_type: "recommendation_reopened",
+            policy_scope: recommendation.policy,
+            remote_did: recommendation.remote_did,
+            action: String(recommendation.action),
+            outcome: "recommendation_reopened",
+            explanation: recommendation.reason,
+            matched_rule: recommendation.match,
+            detail: { recommendation_id: recommendation.id, session_key: sessionKey }
+          });
+          return { ok: true, recommendation: stored };
+        } finally {
+          sharedStore.close();
+        }
+      }
+    }
+  }
+  if (parts[0] === "public") {
+    if ((!parts[1] || parts[1] === "self") && req.method === "GET") {
+      await maybeEnsureHostedPublicLink(ctx);
+      const res = await client.getPublicSelf();
+      if (!res.ok) throw new Error(res.error?.message ?? "Failed to get public link state");
+      return res.data;
+    }
+    if (parts[1] === "link" && req.method === "POST") {
+      const body = await readBody(req);
+      const res = await client.createPublicLink({
+        slug: typeof body?.slug === "string" ? body.slug : void 0,
+        enabled: typeof body?.enabled === "boolean" ? body.enabled : void 0
+      });
+      if (!res.ok) throw new Error(res.error?.message ?? "Failed to create public link");
+      return res.data;
+    }
+    if (parts[1] === "contact-card" && req.method === "POST") {
+      const body = await readBody(req);
+      const res = await client.createContactCard({
+        target_did: typeof body?.target_did === "string" ? body.target_did : void 0,
+        referrer_did: typeof body?.referrer_did === "string" ? body.referrer_did : void 0,
+        intro_note: typeof body?.intro_note === "string" ? body.intro_note : void 0,
+        message_template: typeof body?.message_template === "string" ? body.message_template : void 0
+      });
+      if (!res.ok) throw new Error(res.error?.message ?? "Failed to create contact card");
+      return res.data;
+    }
+    if (parts[1] === "task-share" && req.method === "POST") {
+      const body = await readBody(req);
+      const res = await client.createTaskShare({
+        task_id: typeof body?.task_id === "string" ? body.task_id : void 0,
+        title: typeof body?.title === "string" ? body.title : void 0,
+        status: typeof body?.status === "string" ? body.status : void 0,
+        summary: String(body?.summary ?? "").trim(),
+        conversation_id: typeof body?.conversation_id === "string" ? body.conversation_id : void 0,
+        redacted_metadata: body?.redacted_metadata && typeof body.redacted_metadata === "object" ? body.redacted_metadata : void 0
+      });
+      if (!res.ok) throw new Error(res.error?.message ?? "Failed to create task share");
+      return res.data;
     }
   }
   if (parts[0] === "profile") {
@@ -1327,11 +2217,12 @@ async function handleApi(pathname, req, ctx) {
     if (req.method === "POST") {
       const body = await readBody(req);
       const profile = {};
-      if (body?.display_name != null) profile.display_name = body.display_name;
-      if (body?.bio != null) profile.bio = body.bio;
-      if (Array.isArray(body?.capabilities)) profile.capabilities = body.capabilities;
+      if (typeof body?.display_name === "string") profile.display_name = body.display_name;
+      if (typeof body?.bio === "string") profile.bio = body.bio;
+      if (Array.isArray(body?.capabilities)) profile.capabilities = body.capabilities.map((value) => String(value ?? "").trim()).filter(Boolean);
       else if (typeof body?.capabilities === "string") profile.capabilities = body.capabilities.split(",").map((s) => s.trim()).filter(Boolean);
-      if (Array.isArray(body?.tags)) profile.tags = body.tags;
+      if (body?.capability_card && typeof body.capability_card === "object") profile.capability_card = body.capability_card;
+      if (Array.isArray(body?.tags)) profile.tags = body.tags.map((value) => String(value ?? "").trim()).filter(Boolean);
       else if (typeof body?.tags === "string") profile.tags = body.tags.split(",").map((s) => s.trim()).filter(Boolean);
       if (typeof body?.discoverable === "boolean") profile.discoverable = body.discoverable;
       const res = await client.updateProfile(profile);