@pixelbyte-software/pixcode 1.35.0 → 1.35.1

package/server/modules/orchestration/a2a/adapters/qwen.adapter.ts

@@ -1,248 +1,248 @@
-// server/modules/orchestration/a2a/adapters/qwen.adapter.ts
-// Wraps the existing server/qwen-code-cli.js runtime, which emits
-// provider-neutral NormalizedMessage frames over a writer interface.
-
-import crypto from 'node:crypto';
-
-// eslint-disable-next-line boundaries/no-unknown -- qwen-code-cli.js is a top-level CLI runtime not yet classified by eslint.config.js; cleanup deferred.
-import { abortQwenSession, spawnQwen } from '@/qwen-code-cli.js';
-import { AbstractA2AAdapter } from '@/modules/orchestration/a2a/adapters/abstract-a2a.adapter.js';
-import type {
-  AdapterContext,
-  TaskHandle,
-} from '@/modules/orchestration/a2a/adapters/abstract-a2a.adapter.js';
-import type { AgentCard, Part, Task } from '@/modules/orchestration/a2a/types.js';
-import type { NormalizedMessage } from '@/shared/types.js';
-
-interface FakeWriter {
-  send(data: unknown): void;
-  getSessionId(): string | null;
-  setSessionId(sessionId: string): void;
-}
-
-function joinPartsToPrompt(parts: Part[]): string {
-  return parts
-    .map((part) => {
-      if (part.kind === 'text') return part.text;
-      if (part.kind === 'data') return JSON.stringify(part.data);
-      return `[file:${part.name}${part.uri ? ` uri=${part.uri}` : ''}]`;
-    })
-    .join('\n');
-}
-
-function newId(prefix: string): string {
-  return `${prefix}_${crypto.randomBytes(8).toString('hex')}`;
-}
-
-export class QwenA2AAdapter extends AbstractA2AAdapter {
-  readonly id = 'qwen';
-
-  readonly agentCard: AgentCard = {
-    name: 'pixcode-qwen',
-    description: 'Qwen Code CLI, accessed via Pixcode',
-    url: '/a2a/agents/qwen',
-    version: '1.0.0',
-    capabilities: ['streaming', 'fileEdit', 'commandExec', 'mcp'],
-    skills: [
-      {
-        id: 'rapid-prototyping',
-        description: 'Fast implementation and iteration for coding tasks',
-      },
-      {
-        id: 'tool-augmented-editing',
-        description: 'Use CLI tools and MCP servers while editing code',
-      },
-      {
-        id: 'multi-file-refactor',
-        description: 'Coordinate edits across multiple files',
-      },
-    ],
-    authentication: { type: 'bearer' },
-  };
-
-  private readonly active = new Map<string, { sessionId: string | null }>();
-
-  async submitTask(task: Task, ctx: AdapterContext): Promise<TaskHandle> {
-    const promptText = joinPartsToPrompt(
-      task.history[task.history.length - 1]?.parts ?? [],
-    );
-    const session = { sessionId: null as string | null };
-    this.active.set(task.id, session);
-
-    this.emitState(task.id, 'working');
-
-    const fakeWriter: FakeWriter = {
-      send: (data) => this.handleRuntimeFrame(task.id, data, session),
-      getSessionId: () => session.sessionId,
-      setSessionId: (sessionId) => {
-        session.sessionId = sessionId;
-      },
-    };
-
-    const finished = (async () => {
-      try {
-        await spawnQwen(
-          promptText,
-          {
-            cwd: ctx.cwd,
-            model: ctx.model,
-            permissionMode: ctx.permissionMode === 'bypassPermissions' ? 'yolo' : ctx.permissionMode,
-            toolsSettings: ctx.toolsSettings,
-          },
-          fakeWriter,
-        );
-
-        if (this.active.has(task.id)) {
-          this.emitState(task.id, 'completed');
-        }
-      } catch (err) {
-        if (this.active.has(task.id)) {
-          this.emitState(task.id, 'failed', {
-            code: 'ADAPTER_RUNTIME_ERROR',
-            message: err instanceof Error ? err.message : String(err),
-          });
-        }
-      } finally {
-        this.active.delete(task.id);
-      }
-    })();
-
-    return {
-      cancel: () => this.cancelTask(task.id),
-      finished,
-    };
-  }
-
-  async cancelTask(taskId: string): Promise<void> {
-    const session = this.active.get(taskId);
-    if (!session) {
-      this.emitState(taskId, 'canceled');
-      return;
-    }
-
-    this.active.delete(taskId);
-    if (session.sessionId) {
-      abortQwenSession(session.sessionId);
-    }
-    this.emitState(taskId, 'canceled');
-  }
-
-  private handleRuntimeFrame(
-    taskId: string,
-    frame: unknown,
-    session: { sessionId: string | null },
-  ): void {
-    if (!frame || typeof frame !== 'object') return;
-    const message = frame as Partial<NormalizedMessage>;
-
-    if (
-      message.kind === 'session_created' &&
-      typeof message.newSessionId === 'string' &&
-      !session.sessionId
-    ) {
-      session.sessionId = message.newSessionId;
-      return;
-    }
-
-    switch (message.kind) {
-      case 'stream_delta':
-      case 'text': {
-        const text = typeof message.content === 'string' ? message.content : null;
-        if (text && text.trim()) {
-          this.emitMessage(taskId, {
-            messageId: typeof message.id === 'string' ? message.id : newId('msg'),
-            role: 'agent',
-            parts: [{ kind: 'text', text }],
-            taskId,
-          });
-        }
-        return;
-      }
-
-      case 'tool_use': {
-        this.emitArtifact(taskId, {
-          artifactId: typeof message.id === 'string' ? message.id : newId('art'),
-          type: 'command-output',
-          parts: [
-            {
-              kind: 'data',
-              data: {
-                toolName: message.toolName,
-                toolInput: message.toolInput,
-                toolId: message.toolId,
-                toolResult: message.toolResult,
-              },
-            },
-          ],
-          metadata: { source: 'qwen-tool-use' },
-        });
-        return;
-      }
-
-      case 'tool_result': {
-        this.emitArtifact(taskId, {
-          artifactId: typeof message.id === 'string' ? message.id : newId('art'),
-          type: 'command-output',
-          parts: [
-            {
-              kind: 'data',
-              data: {
-                toolId: message.toolId,
-                content: message.content,
-                isError: message.isError,
-              },
-            },
-          ],
-          metadata: { source: 'qwen-tool-result' },
-        });
-        return;
-      }
-
-      case 'status': {
-        this.emitArtifact(taskId, {
-          artifactId: typeof message.id === 'string' ? message.id : newId('art'),
-          type: 'data',
-          parts: [
-            {
-              kind: 'data',
-              data: {
-                kind: 'status',
-                text: message.text,
-                tokens: message.tokens,
-              },
-            },
-          ],
-          metadata: { source: 'qwen-status' },
-        });
-        return;
-      }
-
-      case 'stream_end':
-      case 'complete':
-      case 'session_created':
-        return;
-
-      case 'error': {
-        const text =
-          typeof message.content === 'string' && message.content.length > 0
-            ? message.content
-            : 'Qwen reported an error';
-        this.emitState(taskId, 'failed', {
-          code: 'ADAPTER_RUNTIME_ERROR',
-          message: text,
-        });
-        this.active.delete(taskId);
-        return;
-      }
-
-      default: {
-        this.emitArtifact(taskId, {
-          artifactId: typeof message.id === 'string' ? message.id : newId('art'),
-          type: 'data',
-          parts: [{ kind: 'data', data: message as Record<string, unknown> }],
-          metadata: { source: `qwen-${String(message.kind ?? 'event')}` },
-        });
-      }
-    }
-  }
-}
+// server/modules/orchestration/a2a/adapters/qwen.adapter.ts
+// Wraps the existing server/qwen-code-cli.js runtime, which emits
+// provider-neutral NormalizedMessage frames over a writer interface.
+
+import crypto from 'node:crypto';
+
+// eslint-disable-next-line boundaries/no-unknown -- qwen-code-cli.js is a top-level CLI runtime not yet classified by eslint.config.js; cleanup deferred.
+import { abortQwenSession, spawnQwen } from '@/qwen-code-cli.js';
+import { AbstractA2AAdapter } from '@/modules/orchestration/a2a/adapters/abstract-a2a.adapter.js';
+import type {
+  AdapterContext,
+  TaskHandle,
+} from '@/modules/orchestration/a2a/adapters/abstract-a2a.adapter.js';
+import type { AgentCard, Part, Task } from '@/modules/orchestration/a2a/types.js';
+import type { NormalizedMessage } from '@/shared/types.js';
+
+interface FakeWriter {
+  send(data: unknown): void;
+  getSessionId(): string | null;
+  setSessionId(sessionId: string): void;
+}
+
+function joinPartsToPrompt(parts: Part[]): string {
+  return parts
+    .map((part) => {
+      if (part.kind === 'text') return part.text;
+      if (part.kind === 'data') return JSON.stringify(part.data);
+      return `[file:${part.name}${part.uri ? ` uri=${part.uri}` : ''}]`;
+    })
+    .join('\n');
+}
+
+function newId(prefix: string): string {
+  return `${prefix}_${crypto.randomBytes(8).toString('hex')}`;
+}
+
+export class QwenA2AAdapter extends AbstractA2AAdapter {
+  readonly id = 'qwen';
+
+  readonly agentCard: AgentCard = {
+    name: 'pixcode-qwen',
+    description: 'Qwen Code CLI, accessed via Pixcode',
+    url: '/a2a/agents/qwen',
+    version: '1.0.0',
+    capabilities: ['streaming', 'fileEdit', 'commandExec', 'mcp'],
+    skills: [
+      {
+        id: 'rapid-prototyping',
+        description: 'Fast implementation and iteration for coding tasks',
+      },
+      {
+        id: 'tool-augmented-editing',
+        description: 'Use CLI tools and MCP servers while editing code',
+      },
+      {
+        id: 'multi-file-refactor',
+        description: 'Coordinate edits across multiple files',
+      },
+    ],
+    authentication: { type: 'bearer' },
+  };
+
+  private readonly active = new Map<string, { sessionId: string | null }>();
+
+  async submitTask(task: Task, ctx: AdapterContext): Promise<TaskHandle> {
+    const promptText = joinPartsToPrompt(
+      task.history[task.history.length - 1]?.parts ?? [],
+    );
+    const session = { sessionId: null as string | null };
+    this.active.set(task.id, session);
+
+    this.emitState(task.id, 'working');
+
+    const fakeWriter: FakeWriter = {
+      send: (data) => this.handleRuntimeFrame(task.id, data, session),
+      getSessionId: () => session.sessionId,
+      setSessionId: (sessionId) => {
+        session.sessionId = sessionId;
+      },
+    };
+
+    const finished = (async () => {
+      try {
+        await spawnQwen(
+          promptText,
+          {
+            cwd: ctx.cwd,
+            model: ctx.model,
+            permissionMode: ctx.permissionMode === 'bypassPermissions' ? 'yolo' : ctx.permissionMode,
+            toolsSettings: ctx.toolsSettings,
+          },
+          fakeWriter,
+        );
+
+        if (this.active.has(task.id)) {
+          this.emitState(task.id, 'completed');
+        }
+      } catch (err) {
+        if (this.active.has(task.id)) {
+          this.emitState(task.id, 'failed', {
+            code: 'ADAPTER_RUNTIME_ERROR',
+            message: err instanceof Error ? err.message : String(err),
+          });
+        }
+      } finally {
+        this.active.delete(task.id);
+      }
+    })();
+
+    return {
+      cancel: () => this.cancelTask(task.id),
+      finished,
+    };
+  }
+
+  async cancelTask(taskId: string): Promise<void> {
+    const session = this.active.get(taskId);
+    if (!session) {
+      this.emitState(taskId, 'canceled');
+      return;
+    }
+
+    this.active.delete(taskId);
+    if (session.sessionId) {
+      abortQwenSession(session.sessionId);
+    }
+    this.emitState(taskId, 'canceled');
+  }
+
+  private handleRuntimeFrame(
+    taskId: string,
+    frame: unknown,
+    session: { sessionId: string | null },
+  ): void {
+    if (!frame || typeof frame !== 'object') return;
+    const message = frame as Partial<NormalizedMessage>;
+
+    if (
+      message.kind === 'session_created' &&
+      typeof message.newSessionId === 'string' &&
+      !session.sessionId
+    ) {
+      session.sessionId = message.newSessionId;
+      return;
+    }
+
+    switch (message.kind) {
+      case 'stream_delta':
+      case 'text': {
+        const text = typeof message.content === 'string' ? message.content : null;
+        if (text && text.trim()) {
+          this.emitMessage(taskId, {
+            messageId: typeof message.id === 'string' ? message.id : newId('msg'),
+            role: 'agent',
+            parts: [{ kind: 'text', text }],
+            taskId,
+          });
+        }
+        return;
+      }
+
+      case 'tool_use': {
+        this.emitArtifact(taskId, {
+          artifactId: typeof message.id === 'string' ? message.id : newId('art'),
+          type: 'command-output',
+          parts: [
+            {
+              kind: 'data',
+              data: {
+                toolName: message.toolName,
+                toolInput: message.toolInput,
+                toolId: message.toolId,
+                toolResult: message.toolResult,
+              },
+            },
+          ],
+          metadata: { source: 'qwen-tool-use' },
+        });
+        return;
+      }
+
+      case 'tool_result': {
+        this.emitArtifact(taskId, {
+          artifactId: typeof message.id === 'string' ? message.id : newId('art'),
+          type: 'command-output',
+          parts: [
+            {
+              kind: 'data',
+              data: {
+                toolId: message.toolId,
+                content: message.content,
+                isError: message.isError,
+              },
+            },
+          ],
+          metadata: { source: 'qwen-tool-result' },
+        });
+        return;
+      }
+
+      case 'status': {
+        this.emitArtifact(taskId, {
+          artifactId: typeof message.id === 'string' ? message.id : newId('art'),
+          type: 'data',
+          parts: [
+            {
+              kind: 'data',
+              data: {
+                kind: 'status',
+                text: message.text,
+                tokens: message.tokens,
+              },
+            },
+          ],
+          metadata: { source: 'qwen-status' },
+        });
+        return;
+      }
+
+      case 'stream_end':
+      case 'complete':
+      case 'session_created':
+        return;
+
+      case 'error': {
+        const text =
+          typeof message.content === 'string' && message.content.length > 0
+            ? message.content
+            : 'Qwen reported an error';
+        this.emitState(taskId, 'failed', {
+          code: 'ADAPTER_RUNTIME_ERROR',
+          message: text,
+        });
+        this.active.delete(taskId);
+        return;
+      }
+
+      default: {
+        this.emitArtifact(taskId, {
+          artifactId: typeof message.id === 'string' ? message.id : newId('art'),
+          type: 'data',
+          parts: [{ kind: 'data', data: message as Record<string, unknown> }],
+          metadata: { source: `qwen-${String(message.kind ?? 'event')}` },
+        });
+      }
+    }
+  }
+}

package/server/modules/orchestration/a2a/agent-card.ts

@@ -1,55 +1,55 @@
-// server/modules/orchestration/a2a/agent-card.ts
-// Pixcode advertises itself as one A2A agent at /a2a/.well-known/agent-card.json.
-// Per-CLI adapters publish their own cards under /a2a/agents/:id/agent-card.
-
-import { readFileSync } from 'node:fs';
-import { dirname, resolve } from 'node:path';
-import { fileURLToPath } from 'node:url';
-
-import { adapterRegistry } from '@/modules/orchestration/a2a/adapter-registry.js';
-import type { AgentCard } from '@/modules/orchestration/a2a/types.js';
-
-// Resolve <repo-root>/package.json from this file's location.
-// Source layout:    server/modules/orchestration/a2a/agent-card.ts        (4 levels deep from repo root)
-// Built layout:     dist-server/server/modules/orchestration/a2a/agent-card.js  (5 levels deep)
-// Walk up until a package.json containing "name":"@pixelbyte-software/pixcode" is found.
-function readPixcodeVersion(): string {
-  let dir = dirname(fileURLToPath(import.meta.url));
-  for (let i = 0; i < 8; i++) {
-    try {
-      const candidate = resolve(dir, 'package.json');
-      const raw = readFileSync(candidate, 'utf8');
-      const pkg = JSON.parse(raw) as { name?: string; version?: string };
-      if (pkg.name === '@pixelbyte-software/pixcode' && typeof pkg.version === 'string') {
-        return pkg.version;
-      }
-    } catch {
-      // not here, walk up
-    }
-    const parent = dirname(dir);
-    if (parent === dir) break;
-    dir = parent;
-  }
-  return '0.0.0-dev';
-}
-
-const VERSION: string = readPixcodeVersion();
-
-export function buildPixcodeAgentCard(baseUrl: string): AgentCard {
-  const skills = adapterRegistry
-    .agentCards()
-    .flatMap((card) => card.skills)
-    .filter((skill, idx, arr) => arr.findIndex((s) => s.id === skill.id) === idx);
-
-  return {
-    name: 'pixcode',
-    description:
-      'Pixcode multi-CLI orchestration platform. Routes A2A tasks to ' +
-      'Claude Code, Codex, Cursor, Gemini, Qwen, or OpenCode adapters.',
-    url: `${baseUrl.replace(/\/$/, '')}/a2a`,
-    version: VERSION,
-    capabilities: ['streaming', 'taskRouting'],
-    skills,
-    authentication: { type: 'bearer' },
-  };
-}
+// server/modules/orchestration/a2a/agent-card.ts
+// Pixcode advertises itself as one A2A agent at /a2a/.well-known/agent-card.json.
+// Per-CLI adapters publish their own cards under /a2a/agents/:id/agent-card.
+
+import { readFileSync } from 'node:fs';
+import { dirname, resolve } from 'node:path';
+import { fileURLToPath } from 'node:url';
+
+import { adapterRegistry } from '@/modules/orchestration/a2a/adapter-registry.js';
+import type { AgentCard } from '@/modules/orchestration/a2a/types.js';
+
+// Resolve <repo-root>/package.json from this file's location.
+// Source layout:    server/modules/orchestration/a2a/agent-card.ts        (4 levels deep from repo root)
+// Built layout:     dist-server/server/modules/orchestration/a2a/agent-card.js  (5 levels deep)
+// Walk up until a package.json containing "name":"@pixelbyte-software/pixcode" is found.
+function readPixcodeVersion(): string {
+  let dir = dirname(fileURLToPath(import.meta.url));
+  for (let i = 0; i < 8; i++) {
+    try {
+      const candidate = resolve(dir, 'package.json');
+      const raw = readFileSync(candidate, 'utf8');
+      const pkg = JSON.parse(raw) as { name?: string; version?: string };
+      if (pkg.name === '@pixelbyte-software/pixcode' && typeof pkg.version === 'string') {
+        return pkg.version;
+      }
+    } catch {
+      // not here, walk up
+    }
+    const parent = dirname(dir);
+    if (parent === dir) break;
+    dir = parent;
+  }
+  return '0.0.0-dev';
+}
+
+const VERSION: string = readPixcodeVersion();
+
+export function buildPixcodeAgentCard(baseUrl: string): AgentCard {
+  const skills = adapterRegistry
+    .agentCards()
+    .flatMap((card) => card.skills)
+    .filter((skill, idx, arr) => arr.findIndex((s) => s.id === skill.id) === idx);
+
+  return {
+    name: 'pixcode',
+    description:
+      'Pixcode multi-CLI orchestration platform. Routes A2A tasks to ' +
+      'Claude Code, Codex, Cursor, Gemini, Qwen, or OpenCode adapters.',
+    url: `${baseUrl.replace(/\/$/, '')}/a2a`,
+    version: VERSION,
+    capabilities: ['streaming', 'taskRouting'],
+    skills,
+    authentication: { type: 'bearer' },
+  };
+}

package/server/modules/orchestration/a2a/auth.middleware.ts

@@ -1,29 +1,29 @@
-// server/modules/orchestration/a2a/auth.middleware.ts
-// Localhost callers bypass auth; everyone else needs a Bearer JWT
-// validated by pixcode's existing auth stack.
-
-import type { NextFunction, Request, Response } from 'express';
-
-// @ts-ignore — plain-JS module without type declarations
-// eslint-disable-next-line boundaries/no-unknown -- server/middleware/auth.js is a top-level auth runtime not yet classified by eslint.config.js; cleanup deferred.
-import { authenticateToken } from '@/middleware/auth.js';
-
-const LOCAL_HOSTS = new Set(['127.0.0.1', '::1', 'localhost', '::ffff:127.0.0.1']);
-
-function isLocalRequest(req: Request): boolean {
-  const remote = req.socket.remoteAddress ?? '';
-  if (LOCAL_HOSTS.has(remote)) return true;
-  // Trust the X-Forwarded-For header only when the inbound socket is local
-  // (i.e. the reverse proxy itself is on the same host).
-  return false;
-}
-
-export function a2aAuth(req: Request, res: Response, next: NextFunction): void {
-  if (isLocalRequest(req)) {
-    next();
-    return;
-  }
-  // Delegate to existing pixcode JWT middleware. authenticateToken
-  // populates req.user on success and 401s on failure.
-  authenticateToken(req, res, next);
-}
+// server/modules/orchestration/a2a/auth.middleware.ts
+// Localhost callers bypass auth; everyone else needs a Bearer JWT
+// validated by pixcode's existing auth stack.
+
+import type { NextFunction, Request, Response } from 'express';
+
+// @ts-ignore — plain-JS module without type declarations
+// eslint-disable-next-line boundaries/no-unknown -- server/middleware/auth.js is a top-level auth runtime not yet classified by eslint.config.js; cleanup deferred.
+import { authenticateToken } from '@/middleware/auth.js';
+
+const LOCAL_HOSTS = new Set(['127.0.0.1', '::1', 'localhost', '::ffff:127.0.0.1']);
+
+function isLocalRequest(req: Request): boolean {
+  const remote = req.socket.remoteAddress ?? '';
+  if (LOCAL_HOSTS.has(remote)) return true;
+  // Trust the X-Forwarded-For header only when the inbound socket is local
+  // (i.e. the reverse proxy itself is on the same host).
+  return false;
+}
+
+export function a2aAuth(req: Request, res: Response, next: NextFunction): void {
+  if (isLocalRequest(req)) {
+    next();
+    return;
+  }
+  // Delegate to existing pixcode JWT middleware. authenticateToken
+  // populates req.user on success and 401s on failure.
+  authenticateToken(req, res, next);
+}